This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/9602a9-74b6-4992-b71d-bab247fe7d7c/1/_ZTgRMvlw1KV-rxEWALakFgTtzI.mft File: _ZTgRMvlw1KV-rxEWALakFgTtzI.mft (raw, json) Hash identifier: JPt/7m0Nw8+rzPzMvp+tVFbwZweZDr65jV/XR77BqSU= Subject key identifier: 44:92:85:C6:9A:B4:C7:94:03:98:7B:F8:0C:57:10:45:B6:9F:4B:ED Authority key identifier: FD:94:E0:44:CB:E5:C3:52:95:FA:BC:44:58:02:DA:90:58:13:B7:32 Certificate issuer: /CN=fd94e044cbe5c35295fabc445802da905813b732 Certificate serial: 019AF1D1F684862912935EBD3EC40A3717F5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_ZTgRMvlw1KV-rxEWALakFgTtzI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/9602a9-74b6-4992-b71d-bab247fe7d7c/1/_ZTgRMvlw1KV-rxEWALakFgTtzI.mft Manifest number: 03BF Signing time: Sat 06 Dec 2025 04:01:00 +0000 Manifest this update: Sat 06 Dec 2025 04:01:00 +0000 Manifest next update: Sun 07 Dec 2025 04:01:00 +0000 Files and hashes: 1: _ZTgRMvlw1KV-rxEWALakFgTtzI.crl (hash: 3QkD1Vsx+nsO/VviVeq1WzRh9aMMo4oou6vQMdEHAGI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/9602a9-74b6-4992-b71d-bab247fe7d7c/1/_ZTgRMvlw1KV-rxEWALakFgTtzI.crl rsync://rpki.ripe.net/repository/DEFAULT/e4/9602a9-74b6-4992-b71d-bab247fe7d7c/1/_ZTgRMvlw1KV-rxEWALakFgTtzI.mft rsync://rpki.ripe.net/repository/DEFAULT/_ZTgRMvlw1KV-rxEWALakFgTtzI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:d1:f6:84:86:29:12:93:5e:bd:3e:c4:0a:37:17:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fd94e044cbe5c35295fabc445802da905813b732 Validity Not Before: Dec 6 04:01:00 2025 GMT Not After : Dec 7 04:01:00 2025 GMT Subject: CN=449285c69ab4c79403987bf80c571045b69f4bed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:38:7e:78:88:af:b1:ef:32:69:04:53:76:a8: ab:ca:31:5a:1f:06:9c:17:58:e2:9f:0a:9f:2f:39: 81:08:25:6d:b6:b7:64:07:ba:9d:89:20:36:3c:28: 3d:44:cf:aa:4f:90:25:91:49:02:b1:d9:c1:20:77: 62:fd:79:0c:07:e0:6b:76:20:2e:c5:04:09:19:3b: 23:1f:3c:70:8a:0f:b5:12:31:cf:8a:27:d5:30:40: d0:e0:4f:84:f2:da:67:f7:3f:59:1e:9b:c4:5c:07: 47:5f:c0:d2:2a:4c:bf:1b:d1:35:0d:40:a1:68:e7: 61:2c:b6:67:96:66:34:9e:9b:75:0d:60:fa:36:7c: 03:f7:22:62:4a:1f:f5:70:65:25:3f:ba:62:60:99: 90:7c:38:92:ef:b9:0a:2c:f2:3a:ae:60:bd:9f:5f: d4:b4:54:ca:bb:87:11:3c:4a:e8:6c:c2:0a:58:b3: ce:2e:a2:fc:24:51:21:41:28:a6:c1:51:08:95:9f: 3a:c2:59:a0:69:1a:93:4a:9e:80:a8:bb:99:49:75: cc:46:4a:1c:28:d5:83:c5:df:8e:b2:1b:37:fb:f1: 12:48:2d:9d:89:f0:1b:d5:e4:f8:45:15:c5:91:53: 3c:3f:98:f2:d1:ed:dd:86:8d:3d:79:5f:ee:72:21: 2e:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:92:85:C6:9A:B4:C7:94:03:98:7B:F8:0C:57:10:45:B6:9F:4B:ED X509v3 Authority Key Identifier: keyid:FD:94:E0:44:CB:E5:C3:52:95:FA:BC:44:58:02:DA:90:58:13:B7:32 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_ZTgRMvlw1KV-rxEWALakFgTtzI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/9602a9-74b6-4992-b71d-bab247fe7d7c/1/_ZTgRMvlw1KV-rxEWALakFgTtzI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/9602a9-74b6-4992-b71d-bab247fe7d7c/1/_ZTgRMvlw1KV-rxEWALakFgTtzI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2a:b4:b8:40:ab:e9:06:f8:b7:7f:d8:b3:4f:58:d9:83:95:f3: ad:28:92:97:70:30:34:c5:fd:8d:fd:4b:50:3d:19:d1:d2:71: 49:6c:13:87:63:e8:e5:d2:7f:71:a9:6c:18:fd:ce:7a:2d:fe: 8c:6c:53:7c:3b:3d:77:5d:93:77:e1:d3:59:ef:2c:42:21:f0: b0:ab:2c:f6:1e:a1:ad:0e:0a:ea:4c:e5:f4:b1:07:95:85:55: cc:db:36:52:23:4c:ab:f0:61:ac:3f:60:0e:9b:0c:4c:72:c1: a8:67:a0:f1:ac:e6:c1:38:b4:f8:64:62:61:06:99:28:bd:f2: a8:f4:b8:95:24:35:72:06:e0:d0:25:86:66:da:88:3c:20:3d: c6:45:48:3c:b1:2a:8c:51:a7:de:5f:4a:b2:6a:d9:e1:23:5e: e2:65:85:57:80:6f:81:89:72:d6:79:b3:35:6f:1a:aa:13:5c: d2:ce:e0:ec:8d:86:58:b9:df:a3:a8:b2:05:99:83:55:78:15: 76:97:05:f0:e3:ec:ab:01:d0:f8:15:16:ed:27:8f:1d:44:1a: a1:5b:05:07:b0:49:4e:da:ef:9c:e7:0b:15:3a:e5:d6:da:c2: db:36:c9:9a:93:4d:71:3d:c1:cd:81:de:18:5f:ff:fa:40:ff: 39:fc:9a:8c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrx0faEhikSk169PsQKNxf1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZkOTRlMDQ0Y2JlNWMzNTI5NWZhYmM0NDU4MDJkYTkwNTgx M2I3MzIwHhcNMjUxMjA2MDQwMTAwWhcNMjUxMjA3MDQwMTAwWjAzMTEwLwYDVQQD Eyg0NDkyODVjNjlhYjRjNzk0MDM5ODdiZjgwYzU3MTA0NWI2OWY0YmVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAljh+eIivse8yaQRTdqiryjFaHwac F1jinwqfLzmBCCVttrdkB7qdiSA2PCg9RM+qT5AlkUkCsdnBIHdi/XkMB+BrdiAu xQQJGTsjHzxwig+1EjHPiifVMEDQ4E+E8tpn9z9ZHpvEXAdHX8DSKky/G9E1DUCh aOdhLLZnlmY0npt1DWD6NnwD9yJiSh/1cGUlP7piYJmQfDiS77kKLPI6rmC9n1/U tFTKu4cRPErobMIKWLPOLqL8JFEhQSimwVEIlZ86wlmgaRqTSp6AqLuZSXXMRkoc KNWDxd+Oshs3+/ESSC2difAb1eT4RRXFkVM8P5jy0e3dho09eV/uciEumQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFESShcaatMeUA5h7+AxXEEW2n0vtMB8GA1UdIwQY MBaAFP2U4ETL5cNSlfq8RFgC2pBYE7cyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvX1pUZ1JNdmx3MUtWLXJ4RVdBTGFrRmdUdHpJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNC85NjAyYTktNzRiNi00OTkyLWI3MWQt YmFiMjQ3ZmU3ZDdjLzEvX1pUZ1JNdmx3MUtWLXJ4RVdBTGFrRmdUdHpJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNC85NjAyYTktNzRiNi00OTkyLWI3MWQtYmFiMjQ3ZmU3ZDdj LzEvX1pUZ1JNdmx3MUtWLXJ4RVdBTGFrRmdUdHpJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKrS4QKvp Bvi3f9izT1jZg5XzrSiSl3AwNMX9jf1LUD0Z0dJxSWwTh2Po5dJ/calsGP3Oei3+ jGxTfDs9d12Td+HTWe8sQiHwsKss9h6hrQ4K6kzl9LEHlYVVzNs2UiNMq/BhrD9g DpsMTHLBqGeg8azmwTi0+GRiYQaZKL3yqPS4lSQ1cgbg0CWGZtqIPCA9xkVIPLEq jFGn3l9KsmrZ4SNe4mWFV4BvgYly1nmzNW8aqhNc0s7g7I2GWLnfo6iyBZmDVXgV dpcF8OPsqwHQ+BUW7SePHUQaoVsFB7BJTtrvnOcLFTrl1trC2zbJmpNNcT3BzYHe GF//+kD/OfyajA== -----END CERTIFICATE-----Generated at Sat Dec 6 07:11:39 2025 by rpki-client