This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/394dc0-75aa-40a8-8222-ee4a4618524c/1/zgQm-dLl8wq4eoJ2f9iW7rpLHFc.mft File: zgQm-dLl8wq4eoJ2f9iW7rpLHFc.mft (raw, json) Hash identifier: fTTGhE/Er9MEQW0Jco/6eDwODWs/4oa8aKfcEcyLlDo= Subject key identifier: 3B:D4:7E:E5:1D:E0:94:A6:6F:EA:03:EE:0A:1B:C1:ED:91:EC:7D:55 Authority key identifier: CE:04:26:F9:D2:E5:F3:0A:B8:7A:82:76:7F:D8:96:EE:BA:4B:1C:57 Certificate issuer: /CN=ce0426f9d2e5f30ab87a82767fd896eeba4b1c57 Certificate serial: 019AF5E606D04031C051EF70D6F87D790F5B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zgQm-dLl8wq4eoJ2f9iW7rpLHFc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/394dc0-75aa-40a8-8222-ee4a4618524c/1/zgQm-dLl8wq4eoJ2f9iW7rpLHFc.mft Manifest number: 0B9C Signing time: Sat 06 Dec 2025 23:01:24 +0000 Manifest this update: Sat 06 Dec 2025 23:01:24 +0000 Manifest next update: Sun 07 Dec 2025 23:01:24 +0000 Files and hashes: 1: zgQm-dLl8wq4eoJ2f9iW7rpLHFc.crl (hash: PuQgrO/9jDYtH4lH5FsGVwr5WPCU84WIESR7w5ZeQEc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/394dc0-75aa-40a8-8222-ee4a4618524c/1/zgQm-dLl8wq4eoJ2f9iW7rpLHFc.crl rsync://rpki.ripe.net/repository/DEFAULT/e2/394dc0-75aa-40a8-8222-ee4a4618524c/1/zgQm-dLl8wq4eoJ2f9iW7rpLHFc.mft rsync://rpki.ripe.net/repository/DEFAULT/zgQm-dLl8wq4eoJ2f9iW7rpLHFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 21:29:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:e6:06:d0:40:31:c0:51:ef:70:d6:f8:7d:79:0f:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ce0426f9d2e5f30ab87a82767fd896eeba4b1c57 Validity Not Before: Dec 6 23:01:24 2025 GMT Not After : Dec 7 23:01:24 2025 GMT Subject: CN=3bd47ee51de094a66fea03ee0a1bc1ed91ec7d55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:72:8f:9d:c6:d4:ef:13:e6:85:6c:71:53:74: 43:bf:e0:05:0d:69:ae:21:55:21:4e:a8:34:05:67: fd:19:f5:f5:f2:fe:b5:21:fd:ba:4c:6d:b4:85:c8: 4c:eb:bd:af:5c:54:33:85:b5:97:d5:cc:3e:74:05: cd:18:c8:1c:6e:f9:f7:99:87:eb:ef:bc:b5:09:3a: f3:54:09:21:42:71:67:30:35:ef:62:0f:29:a4:0f: d5:1f:72:1f:36:42:3b:ab:c5:38:a2:1e:f9:a1:e9: 19:7c:be:f4:a6:43:ad:63:49:31:a4:be:17:73:89: 14:90:76:85:27:2e:79:e4:5c:d7:7b:3d:59:11:17: 9c:a1:77:26:c1:64:ec:fa:37:7d:f5:43:97:3e:bd: da:ed:bf:ca:ec:0e:f4:c3:32:5d:0b:66:32:4b:cb: 01:d2:b6:a1:9b:ca:c8:98:78:c2:0c:2d:bb:ee:e2: 38:cb:b3:1c:cd:c8:c6:c2:fb:ce:f8:7e:94:ec:fa: 3b:83:bc:07:9b:a0:3a:38:48:20:81:f2:a6:8b:a7: d3:5c:cd:5e:25:5a:6c:fc:bb:05:ff:a5:64:13:d6: cd:8c:4c:fc:1e:85:52:0a:8c:c1:3a:b2:89:94:ca: f2:27:07:3f:31:66:fb:9a:b7:87:e1:1a:50:60:a6: 29:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:D4:7E:E5:1D:E0:94:A6:6F:EA:03:EE:0A:1B:C1:ED:91:EC:7D:55 X509v3 Authority Key Identifier: keyid:CE:04:26:F9:D2:E5:F3:0A:B8:7A:82:76:7F:D8:96:EE:BA:4B:1C:57 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zgQm-dLl8wq4eoJ2f9iW7rpLHFc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/394dc0-75aa-40a8-8222-ee4a4618524c/1/zgQm-dLl8wq4eoJ2f9iW7rpLHFc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/394dc0-75aa-40a8-8222-ee4a4618524c/1/zgQm-dLl8wq4eoJ2f9iW7rpLHFc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 79:2b:40:2b:45:04:f1:68:aa:44:6c:1d:44:4e:11:63:37:9c: ed:5d:18:7a:d4:7c:95:57:22:46:b6:3b:7e:8e:e7:7a:0e:60: f4:a6:4f:77:90:d9:af:a4:47:30:c0:2b:98:e9:1d:e8:e4:1b: ce:d9:75:41:00:78:a9:df:10:1b:c4:19:87:6b:74:1b:8d:8a: d2:a6:b7:ae:5e:cd:4d:d1:90:95:87:b0:4f:58:26:06:c4:64: 5e:2e:c6:0d:b3:c2:9d:4d:88:eb:2d:95:d0:18:61:85:a7:cb: aa:c8:0f:8d:f5:72:0e:7b:4a:bb:05:96:d0:5f:a8:82:a7:45: be:6e:9c:aa:68:fc:80:03:04:ce:62:f3:cc:93:b1:e5:70:bd: 55:84:2b:51:67:8b:26:8d:73:91:bb:45:c9:77:05:d7:94:d0: f0:54:aa:28:0e:f9:5d:24:4e:62:4e:50:26:23:9e:e0:07:cf: 7e:e2:8a:cc:f2:fe:2d:3c:79:34:65:12:00:20:4e:f1:b0:ff: d0:9d:f3:02:16:85:c6:f5:3c:b3:a2:29:90:7d:80:99:3f:57: 1e:ae:2a:07:de:0c:af:b8:2b:ec:a9:52:22:79:58:ff:bd:e3: cc:fd:13:c5:56:db:ca:33:d6:bd:eb:17:a7:c9:13:bd:2e:c3: 65:9e:4f:03 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr15gbQQDHAUe9w1vh9eQ9bMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNlMDQyNmY5ZDJlNWYzMGFiODdhODI3NjdmZDg5NmVlYmE0 YjFjNTcwHhcNMjUxMjA2MjMwMTI0WhcNMjUxMjA3MjMwMTI0WjAzMTEwLwYDVQQD EygzYmQ0N2VlNTFkZTA5NGE2NmZlYTAzZWUwYTFiYzFlZDkxZWM3ZDU1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr3KPncbU7xPmhWxxU3RDv+AFDWmu IVUhTqg0BWf9GfX18v61If26TG20hchM672vXFQzhbWX1cw+dAXNGMgcbvn3mYfr 77y1CTrzVAkhQnFnMDXvYg8ppA/VH3IfNkI7q8U4oh75oekZfL70pkOtY0kxpL4X c4kUkHaFJy555FzXez1ZERecoXcmwWTs+jd99UOXPr3a7b/K7A70wzJdC2YyS8sB 0rahm8rImHjCDC277uI4y7MczcjGwvvO+H6U7Po7g7wHm6A6OEgggfKmi6fTXM1e JVps/LsF/6VkE9bNjEz8HoVSCozBOrKJlMryJwc/MWb7mreH4RpQYKYpfQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDvUfuUd4JSmb+oD7gobwe2R7H1VMB8GA1UdIwQY MBaAFM4EJvnS5fMKuHqCdn/Ylu66SxxXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvemdRbS1kTGw4d3E0ZW9KMmY5aVc3cnBMSEZjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMi8zOTRkYzAtNzVhYS00MGE4LTgyMjIt ZWU0YTQ2MTg1MjRjLzEvemdRbS1kTGw4d3E0ZW9KMmY5aVc3cnBMSEZjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMi8zOTRkYzAtNzVhYS00MGE4LTgyMjItZWU0YTQ2MTg1MjRj LzEvemdRbS1kTGw4d3E0ZW9KMmY5aVc3cnBMSEZjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeStAK0UE 8WiqRGwdRE4RYzec7V0YetR8lVciRrY7fo7neg5g9KZPd5DZr6RHMMArmOkd6OQb ztl1QQB4qd8QG8QZh2t0G42K0qa3rl7NTdGQlYewT1gmBsRkXi7GDbPCnU2I6y2V 0BhhhafLqsgPjfVyDntKuwWW0F+ogqdFvm6cqmj8gAMEzmLzzJOx5XC9VYQrUWeL Jo1zkbtFyXcF15TQ8FSqKA75XSROYk5QJiOe4AfPfuKKzPL+LTx5NGUSACBO8bD/ 0J3zAhaFxvU8s6IpkH2AmT9XHq4qB94Mr7gr7KlSInlY/73jzP0TxVbbyjPWvesX p8kTvS7DZZ5PAw== -----END CERTIFICATE-----Generated at Sun Dec 7 04:16:21 2025 by rpki-client