This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/608114-a97a-4877-94c7-dc2d557503ee/1/zYa4ziIkgqFPmxNGjOV-mZJoSWE.mft File: zYa4ziIkgqFPmxNGjOV-mZJoSWE.mft (raw, json) Hash identifier: WGqhRHUyoz8hs6age2rGwl1npUIGs2tAJQS1U/cjT+M= Subject key identifier: 50:B3:FE:D1:66:0D:92:E6:ED:72:DE:FA:B6:8A:BF:FD:55:6A:70:4B Authority key identifier: CD:86:B8:CE:22:24:82:A1:4F:9B:13:46:8C:E5:7E:99:92:68:49:61 Certificate issuer: /CN=cd86b8ce222482a14f9b13468ce57e9992684961 Certificate serial: 019AF5AECC061371E5FF77A33F576C46B5F4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zYa4ziIkgqFPmxNGjOV-mZJoSWE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/608114-a97a-4877-94c7-dc2d557503ee/1/zYa4ziIkgqFPmxNGjOV-mZJoSWE.mft Manifest number: 0738 Signing time: Sat 06 Dec 2025 22:01:04 +0000 Manifest this update: Sat 06 Dec 2025 22:01:04 +0000 Manifest next update: Sun 07 Dec 2025 22:01:04 +0000 Files and hashes: 1: DQHOKV8IKLhzD_DKbK2yKJLy3qI.roa (hash: PB4sy0lCqmdf8gfZUrxsVqDoVfWeVXqM8PmI2EwyuMw=) 2: zYa4ziIkgqFPmxNGjOV-mZJoSWE.crl (hash: tUU7iGF1HhSabDRAmWDta7tAspUNhBmrLc+280zFIiM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/608114-a97a-4877-94c7-dc2d557503ee/1/zYa4ziIkgqFPmxNGjOV-mZJoSWE.crl rsync://rpki.ripe.net/repository/DEFAULT/e4/608114-a97a-4877-94c7-dc2d557503ee/1/zYa4ziIkgqFPmxNGjOV-mZJoSWE.mft rsync://rpki.ripe.net/repository/DEFAULT/zYa4ziIkgqFPmxNGjOV-mZJoSWE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 14:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:ae:cc:06:13:71:e5:ff:77:a3:3f:57:6c:46:b5:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cd86b8ce222482a14f9b13468ce57e9992684961 Validity Not Before: Dec 6 22:01:04 2025 GMT Not After : Dec 7 22:01:04 2025 GMT Subject: CN=50b3fed1660d92e6ed72defab68abffd556a704b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:7c:f4:e9:3e:20:fe:5d:0d:35:64:87:53:b8: 21:ce:95:36:6e:7d:ee:89:48:5f:23:e1:cf:ce:0d: f6:17:7c:c8:1b:b9:8b:77:9d:92:0c:bb:d7:4a:a6: a1:ae:87:13:27:62:0a:51:50:e1:c0:d3:7b:3b:85: f2:da:c4:8d:ce:28:59:54:a7:32:4c:76:94:f8:48: a1:33:24:1a:ce:ae:ba:6c:ba:17:22:22:7d:a2:e1: 5c:8c:b1:a4:d7:58:ba:e7:fb:a3:af:65:f0:74:d8: 47:1e:34:cd:dd:6a:8e:b1:db:8f:41:ef:ac:9c:ce: 6d:ae:4a:3b:e4:62:a1:4d:8e:57:53:ad:44:32:53: 4b:d3:a5:fb:e8:6c:ff:87:33:77:90:39:90:e6:4e: f0:f0:1b:63:29:b2:ee:8a:9e:db:94:29:c3:44:b7: 59:50:40:d3:0d:ff:fc:0b:ad:06:81:d5:a7:6e:c7: ee:06:57:54:3c:ae:f5:6a:1c:6f:7a:5f:d2:30:a5: 30:33:a6:2a:09:81:2c:42:02:40:d1:4b:41:92:e0: e8:9e:70:0a:e2:00:72:dd:da:f9:0b:e6:f0:4a:e6: 95:b1:fb:46:bd:33:c4:90:68:47:c2:d5:6a:42:ce: c5:2b:f4:18:a2:0e:bd:79:7e:7a:61:ae:8c:f5:92: 70:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:B3:FE:D1:66:0D:92:E6:ED:72:DE:FA:B6:8A:BF:FD:55:6A:70:4B X509v3 Authority Key Identifier: keyid:CD:86:B8:CE:22:24:82:A1:4F:9B:13:46:8C:E5:7E:99:92:68:49:61 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zYa4ziIkgqFPmxNGjOV-mZJoSWE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/608114-a97a-4877-94c7-dc2d557503ee/1/zYa4ziIkgqFPmxNGjOV-mZJoSWE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/608114-a97a-4877-94c7-dc2d557503ee/1/zYa4ziIkgqFPmxNGjOV-mZJoSWE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 49:8b:95:fd:33:42:b5:38:76:7f:01:fd:62:b3:08:06:0f:16: 24:9a:50:ac:74:c9:06:42:75:0d:0e:43:ef:d3:43:90:45:8b: 92:51:12:0b:fc:ba:e6:90:6a:77:8e:e9:f3:34:25:76:bd:01: fd:87:4e:5b:55:51:07:7d:5f:1e:23:47:73:fe:69:8b:02:3c: 6e:4b:16:d5:6f:55:6c:4e:2f:22:95:98:c7:16:70:a7:a3:eb: 4b:98:18:92:c1:a2:a6:3b:fe:5d:36:7c:7a:7d:25:e4:bb:cb: 3b:51:89:e6:50:16:e7:08:82:21:07:92:c2:42:65:0a:97:24: 52:10:58:0a:a4:c3:fd:e2:f8:0e:b7:a2:e0:7d:29:d0:65:0d: 60:40:31:31:74:51:85:b0:92:54:c1:a6:57:d8:11:a5:cb:0a: 01:2b:aa:b2:91:be:13:06:98:ed:f5:b2:aa:54:ec:20:0d:83: 5f:8c:eb:27:fb:8a:3a:ac:73:bb:30:3c:5c:f4:16:f4:ab:ec: 0d:c6:5a:74:a8:d1:f8:4b:51:2c:f5:ea:a4:36:71:78:5f:5a: f9:59:f6:a4:9a:3f:f3:69:ec:b1:15:df:d2:a1:2c:e9:3e:8a: 86:ea:73:47:b2:a6:57:62:c3:ff:fb:6c:74:4d:0f:24:ca:24: b2:d2:2c:d7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr1rswGE3Hl/3ejP1dsRrX0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNkODZiOGNlMjIyNDgyYTE0ZjliMTM0NjhjZTU3ZTk5OTI2 ODQ5NjEwHhcNMjUxMjA2MjIwMTA0WhcNMjUxMjA3MjIwMTA0WjAzMTEwLwYDVQQD Eyg1MGIzZmVkMTY2MGQ5MmU2ZWQ3MmRlZmFiNjhhYmZmZDU1NmE3MDRiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAznz06T4g/l0NNWSHU7ghzpU2bn3u iUhfI+HPzg32F3zIG7mLd52SDLvXSqahrocTJ2IKUVDhwNN7O4Xy2sSNzihZVKcy THaU+EihMyQazq66bLoXIiJ9ouFcjLGk11i65/ujr2XwdNhHHjTN3WqOsduPQe+s nM5trko75GKhTY5XU61EMlNL06X76Gz/hzN3kDmQ5k7w8BtjKbLuip7blCnDRLdZ UEDTDf/8C60GgdWnbsfuBldUPK71ahxvel/SMKUwM6YqCYEsQgJA0UtBkuDonnAK 4gBy3dr5C+bwSuaVsftGvTPEkGhHwtVqQs7FK/QYog69eX56Ya6M9ZJwNQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFCz/tFmDZLm7XLe+raKv/1VanBLMB8GA1UdIwQY MBaAFM2GuM4iJIKhT5sTRozlfpmSaElhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvellhNHppSWtncUZQbXhOR2pPVi1tWkpvU1dFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNC82MDgxMTQtYTk3YS00ODc3LTk0Yzct ZGMyZDU1NzUwM2VlLzEvellhNHppSWtncUZQbXhOR2pPVi1tWkpvU1dFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNC82MDgxMTQtYTk3YS00ODc3LTk0YzctZGMyZDU1NzUwM2Vl LzEvellhNHppSWtncUZQbXhOR2pPVi1tWkpvU1dFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASYuV/TNC tTh2fwH9YrMIBg8WJJpQrHTJBkJ1DQ5D79NDkEWLklESC/y65pBqd47p8zQldr0B /YdOW1VRB31fHiNHc/5piwI8bksW1W9VbE4vIpWYxxZwp6PrS5gYksGipjv+XTZ8 en0l5LvLO1GJ5lAW5wiCIQeSwkJlCpckUhBYCqTD/eL4Drei4H0p0GUNYEAxMXRR hbCSVMGmV9gRpcsKASuqspG+EwaY7fWyqlTsIA2DX4zrJ/uKOqxzuzA8XPQW9Kvs DcZadKjR+EtRLPXqpDZxeF9a+Vn2pJo/82nssRXf0qEs6T6KhupzR7KmV2LD//ts dE0PJMokstIs1w== -----END CERTIFICATE-----Generated at Sat Dec 6 23:44:50 2025 by rpki-client