This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/aee2fa-6131-47fa-b1e6-65a242002270/1/ZNrq4opB_HQBDQv7g_2AyjRcV_k.mft File: ZNrq4opB_HQBDQv7g_2AyjRcV_k.mft (raw, json) Hash identifier: vhHye/1UjxvO1yv7mJbM2lYlAewpIl1WxU3R62ISK/s= Subject key identifier: E4:FB:7B:88:19:B1:62:63:DD:1B:03:0D:A6:92:3C:67:E1:63:00:4A Authority key identifier: 64:DA:EA:E2:8A:41:FC:74:01:0D:0B:FB:83:FD:80:CA:34:5C:57:F9 Certificate issuer: /CN=64daeae28a41fc74010d0bfb83fd80ca345c57f9 Certificate serial: 019AF12D9F048AAD27D070510F5497BD1FAE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZNrq4opB_HQBDQv7g_2AyjRcV_k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/aee2fa-6131-47fa-b1e6-65a242002270/1/ZNrq4opB_HQBDQv7g_2AyjRcV_k.mft Manifest number: 16EF Signing time: Sat 06 Dec 2025 01:01:30 +0000 Manifest this update: Sat 06 Dec 2025 01:01:30 +0000 Manifest next update: Sun 07 Dec 2025 01:01:30 +0000 Files and hashes: 1: ZNrq4opB_HQBDQv7g_2AyjRcV_k.crl (hash: NM5xcIUX0mkNyJRTFxbgAcH7GsiYUbMHHKLNrTx/S7A=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/aee2fa-6131-47fa-b1e6-65a242002270/1/ZNrq4opB_HQBDQv7g_2AyjRcV_k.crl rsync://rpki.ripe.net/repository/DEFAULT/e3/aee2fa-6131-47fa-b1e6-65a242002270/1/ZNrq4opB_HQBDQv7g_2AyjRcV_k.mft rsync://rpki.ripe.net/repository/DEFAULT/ZNrq4opB_HQBDQv7g_2AyjRcV_k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:01:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2d:9f:04:8a:ad:27:d0:70:51:0f:54:97:bd:1f:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=64daeae28a41fc74010d0bfb83fd80ca345c57f9 Validity Not Before: Dec 6 01:01:30 2025 GMT Not After : Dec 7 01:01:30 2025 GMT Subject: CN=e4fb7b8819b16263dd1b030da6923c67e163004a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:55:22:7d:c6:41:ff:89:84:38:5e:68:02:aa: 45:b1:3c:fe:99:66:10:2f:d4:27:3f:0e:cd:32:ec: 0e:60:50:c4:7b:89:45:ed:c2:0e:c2:fc:c5:74:22: 1d:3f:00:a4:b1:e6:98:6a:a2:b0:6b:51:51:bb:4e: e8:d2:a6:9b:27:e5:24:76:5f:ab:5a:dc:99:0e:ac: b4:52:7b:ee:09:7e:1a:90:46:f3:59:5c:2b:48:6c: e2:81:74:12:37:3d:de:0f:f1:86:6f:ec:16:ee:46: c1:2c:a9:75:d6:93:73:be:ef:f8:55:71:10:d9:ab: 82:b8:0d:f5:4c:a2:30:b5:2a:6e:9d:c9:3a:8a:b4: b7:c3:d2:71:2e:26:3c:43:fb:34:fc:b8:d4:78:14: 3d:1f:96:0b:48:fc:fd:aa:50:7e:97:c1:e0:12:98: 32:2d:50:f6:84:a9:82:4d:79:1a:ef:db:ce:1d:c7: 5f:f0:bd:ec:28:fa:dd:e4:e0:37:3a:4e:33:81:40: 5b:cf:f3:e5:73:b3:bb:3b:a2:55:7b:7a:d4:c1:a1: 25:bc:ea:a1:40:8c:23:9a:33:19:a4:b6:52:e1:4b: 79:c0:eb:e8:66:4d:a3:a5:79:af:47:a0:2f:25:3c: 96:f8:d4:a7:cf:bf:0f:d8:4a:fd:7a:17:3c:0c:8f: 4e:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:FB:7B:88:19:B1:62:63:DD:1B:03:0D:A6:92:3C:67:E1:63:00:4A X509v3 Authority Key Identifier: keyid:64:DA:EA:E2:8A:41:FC:74:01:0D:0B:FB:83:FD:80:CA:34:5C:57:F9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZNrq4opB_HQBDQv7g_2AyjRcV_k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/aee2fa-6131-47fa-b1e6-65a242002270/1/ZNrq4opB_HQBDQv7g_2AyjRcV_k.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/aee2fa-6131-47fa-b1e6-65a242002270/1/ZNrq4opB_HQBDQv7g_2AyjRcV_k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 09:4b:b5:10:ea:3a:e7:fc:d1:b6:dc:09:e4:b9:e7:ce:70:ec: 62:54:d4:e0:0d:40:7e:69:6a:93:43:54:c0:62:44:6e:dd:72: d7:5e:01:c7:ef:0f:08:60:26:36:41:42:01:f3:3d:83:df:f4: 90:58:a4:ba:2e:01:c2:31:be:ba:27:90:db:b0:d0:b4:47:2c: 80:54:75:d4:ed:47:a8:6d:2c:48:60:ac:d4:a0:a3:c9:15:ec: b5:3e:d8:73:df:6f:17:d7:82:76:9a:6d:a5:98:09:e0:3e:ee: 71:41:21:3c:2e:59:2e:77:e1:f2:ae:23:17:d6:70:2a:28:77: b0:6b:57:39:c1:35:52:78:95:fb:2b:7b:65:7e:4d:98:21:f3: c7:03:e1:8a:8a:f2:f7:22:ad:f0:28:1c:bf:16:a5:33:8f:5b: 84:d3:20:da:19:68:94:c7:e9:68:9a:ef:42:c7:b9:3b:18:20: fd:77:8e:9d:b8:9a:5c:cc:2e:23:e7:50:23:51:3b:b9:74:68: a9:7e:06:93:e0:04:5f:f2:a5:b8:6c:2e:f5:9c:4c:79:74:cc: bf:2d:cd:a4:11:ae:6a:13:bc:18:0c:4d:b0:f4:e1:68:59:8b: 08:8c:1a:de:cb:4d:59:39:9f:41:6e:29:3e:32:47:d0:98:1c: c5:58:8d:af -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLZ8Eiq0n0HBRD1SXvR+uMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY0ZGFlYWUyOGE0MWZjNzQwMTBkMGJmYjgzZmQ4MGNhMzQ1 YzU3ZjkwHhcNMjUxMjA2MDEwMTMwWhcNMjUxMjA3MDEwMTMwWjAzMTEwLwYDVQQD EyhlNGZiN2I4ODE5YjE2MjYzZGQxYjAzMGRhNjkyM2M2N2UxNjMwMDRhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmlUifcZB/4mEOF5oAqpFsTz+mWYQ L9QnPw7NMuwOYFDEe4lF7cIOwvzFdCIdPwCkseaYaqKwa1FRu07o0qabJ+Ukdl+r WtyZDqy0UnvuCX4akEbzWVwrSGzigXQSNz3eD/GGb+wW7kbBLKl11pNzvu/4VXEQ 2auCuA31TKIwtSpunck6irS3w9JxLiY8Q/s0/LjUeBQ9H5YLSPz9qlB+l8HgEpgy LVD2hKmCTXka79vOHcdf8L3sKPrd5OA3Ok4zgUBbz/Plc7O7O6JVe3rUwaElvOqh QIwjmjMZpLZS4Ut5wOvoZk2jpXmvR6AvJTyW+NSnz78P2Er9ehc8DI9OXQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOT7e4gZsWJj3RsDDaaSPGfhYwBKMB8GA1UdIwQY MBaAFGTa6uKKQfx0AQ0L+4P9gMo0XFf5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWk5ycTRvcEJfSFFCRFF2N2dfMkF5alJjVl9rLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMy9hZWUyZmEtNjEzMS00N2ZhLWIxZTYt NjVhMjQyMDAyMjcwLzEvWk5ycTRvcEJfSFFCRFF2N2dfMkF5alJjVl9rLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMy9hZWUyZmEtNjEzMS00N2ZhLWIxZTYtNjVhMjQyMDAyMjcw LzEvWk5ycTRvcEJfSFFCRFF2N2dfMkF5alJjVl9rLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACUu1EOo6 5/zRttwJ5LnnznDsYlTU4A1Afmlqk0NUwGJEbt1y114Bx+8PCGAmNkFCAfM9g9/0 kFikui4BwjG+uieQ27DQtEcsgFR11O1HqG0sSGCs1KCjyRXstT7Yc99vF9eCdppt pZgJ4D7ucUEhPC5ZLnfh8q4jF9ZwKih3sGtXOcE1UniV+yt7ZX5NmCHzxwPhiory 9yKt8CgcvxalM49bhNMg2hlolMfpaJrvQse5Oxgg/XeOnbiaXMwuI+dQI1E7uXRo qX4Gk+AEX/KluGwu9ZxMeXTMvy3NpBGuahO8GAxNsPThaFmLCIwa3stNWTmfQW4p PjJH0JgcxViNrw== -----END CERTIFICATE-----Generated at Sat Dec 6 08:24:48 2025 by rpki-client