This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/a834da-1cca-4017-90b8-daee0aeafb2b/1/czsHKLegVDWEws0LSLdHjEGU7wo.mft File: czsHKLegVDWEws0LSLdHjEGU7wo.mft (raw, json) Hash identifier: XZOZlddgPa0OhH1RlrvVxOVnzOqLDO8c1yYwseqoJ3k= Subject key identifier: 0C:5C:80:27:AF:64:C4:C7:F6:D0:E5:16:9A:8D:48:06:11:6E:11:85 Authority key identifier: 73:3B:07:28:B7:A0:54:35:84:C2:CD:0B:48:B7:47:8C:41:94:EF:0A Certificate issuer: /CN=733b0728b7a0543584c2cd0b48b7478c4194ef0a Certificate serial: 019AF5097F68BB93127788BE70C904D6FD18 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/czsHKLegVDWEws0LSLdHjEGU7wo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/a834da-1cca-4017-90b8-daee0aeafb2b/1/czsHKLegVDWEws0LSLdHjEGU7wo.mft Manifest number: 089A Signing time: Sat 06 Dec 2025 19:00:31 +0000 Manifest this update: Sat 06 Dec 2025 19:00:31 +0000 Manifest next update: Sun 07 Dec 2025 19:00:31 +0000 Files and hashes: 1: 0o1YRHDHs6Y_Qq6pCAQcKlyWFz8.roa (hash: nsMIKNS3OeQBs34bWYRCT4THehdiZrvKLdywuELl5UY=) 2: U5txbLmFPtaoMKOU1TbkV_FaGV8.roa (hash: z+0QM51o7tqW6/RjLGXF1BwNrcfJdd2i6D7WxQKXfAc=) 3: czsHKLegVDWEws0LSLdHjEGU7wo.crl (hash: ital68Y4hJsEW3djBpWRWaLnH+2cXu0C2pWI54gPwNM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e6/a834da-1cca-4017-90b8-daee0aeafb2b/1/czsHKLegVDWEws0LSLdHjEGU7wo.crl rsync://rpki.ripe.net/repository/DEFAULT/e6/a834da-1cca-4017-90b8-daee0aeafb2b/1/czsHKLegVDWEws0LSLdHjEGU7wo.mft rsync://rpki.ripe.net/repository/DEFAULT/czsHKLegVDWEws0LSLdHjEGU7wo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 14:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:09:7f:68:bb:93:12:77:88:be:70:c9:04:d6:fd:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=733b0728b7a0543584c2cd0b48b7478c4194ef0a Validity Not Before: Dec 6 19:00:31 2025 GMT Not After : Dec 7 19:00:31 2025 GMT Subject: CN=0c5c8027af64c4c7f6d0e5169a8d4806116e1185 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:ad:df:f4:d1:8b:39:f6:f5:d6:af:72:42:05: 4c:7b:e6:cc:d1:b9:7b:c9:c7:cc:aa:3f:d1:0a:8a: 11:a1:5d:7e:6c:70:8b:9d:22:c2:5c:6c:aa:70:95: ef:7b:1e:9f:8d:cb:02:89:69:97:05:de:03:f5:58: 42:bf:ad:e1:05:58:7e:fa:47:c2:f6:85:6c:b1:48: 2a:9f:dd:8e:46:04:85:bc:75:5e:99:82:76:a7:d1: 25:96:d8:ea:73:6e:56:1d:bf:83:0a:64:e4:c3:71: 9b:f8:26:e6:ef:cb:69:ae:77:2b:37:77:a3:eb:a6: ea:8c:94:a6:bf:5f:81:4b:78:d0:1c:95:70:02:84: 62:b6:c0:63:e2:e7:9b:30:ad:49:e4:d5:63:dd:30: 9e:1b:76:bc:07:6c:5b:d6:84:db:3b:c1:a9:a3:8c: 14:c9:36:2e:ff:cf:ec:ff:3c:d2:4c:ac:8a:df:85: 66:36:6e:57:91:59:7f:63:fd:b2:19:70:9a:0c:f4: ef:f4:bb:c7:14:e4:70:0d:28:16:8c:7e:ca:22:5b: a6:6c:94:79:2d:c1:6f:4d:01:8a:d6:81:3c:b3:46: 48:e5:a0:46:6c:76:76:65:8f:ff:29:5a:e9:1d:4e: f6:08:ec:31:be:4c:04:97:e5:68:08:f1:43:3b:fc: 65:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:5C:80:27:AF:64:C4:C7:F6:D0:E5:16:9A:8D:48:06:11:6E:11:85 X509v3 Authority Key Identifier: keyid:73:3B:07:28:B7:A0:54:35:84:C2:CD:0B:48:B7:47:8C:41:94:EF:0A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/czsHKLegVDWEws0LSLdHjEGU7wo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/a834da-1cca-4017-90b8-daee0aeafb2b/1/czsHKLegVDWEws0LSLdHjEGU7wo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/a834da-1cca-4017-90b8-daee0aeafb2b/1/czsHKLegVDWEws0LSLdHjEGU7wo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1d:46:94:d2:f6:58:6e:c2:79:0a:7b:18:a6:71:2c:42:d3:76: 60:11:35:2f:45:40:da:34:cf:9c:93:27:b8:d1:1f:24:a4:10: bf:f0:48:02:5c:c9:22:40:43:6e:d7:53:40:a5:4b:45:88:ae: b2:cc:0f:07:04:10:c2:c3:31:b0:db:ec:8f:37:fd:9a:02:42: cd:43:db:7b:19:a3:53:6a:47:7f:7d:95:8b:f1:2b:f5:18:ec: 85:05:8f:15:b6:c7:10:ed:7f:05:1b:29:a8:fe:77:10:ab:cd: 50:61:f8:4a:db:04:ab:bd:26:39:b3:bd:9c:7b:1a:70:12:b2: 0f:e2:43:43:27:09:ee:66:5a:de:29:33:0b:33:fc:a4:9c:93: e0:cf:f0:24:26:3b:83:6a:58:fd:38:56:62:be:f9:ab:ae:6e: 29:ed:97:41:5d:6f:bd:cf:d3:a8:33:e2:8f:3f:d2:7b:20:5a: 1a:73:dd:76:54:4a:88:0c:1c:54:64:08:53:94:c5:92:fd:7a: 36:a6:87:46:c4:c4:57:d0:a2:c1:d5:64:17:07:a1:29:ec:fe: c0:f3:81:f7:19:12:56:09:a2:d1:c1:e6:2b:26:5b:c3:00:4e: 93:98:4a:88:aa:75:a4:22:28:8e:b9:bd:90:9d:03:95:59:fa: 26:eb:7c:d2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr1CX9ou5MSd4i+cMkE1v0YMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDczM2IwNzI4YjdhMDU0MzU4NGMyY2QwYjQ4Yjc0NzhjNDE5 NGVmMGEwHhcNMjUxMjA2MTkwMDMxWhcNMjUxMjA3MTkwMDMxWjAzMTEwLwYDVQQD EygwYzVjODAyN2FmNjRjNGM3ZjZkMGU1MTY5YThkNDgwNjExNmUxMTg1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo63f9NGLOfb11q9yQgVMe+bM0bl7 ycfMqj/RCooRoV1+bHCLnSLCXGyqcJXvex6fjcsCiWmXBd4D9VhCv63hBVh++kfC 9oVssUgqn92ORgSFvHVemYJ2p9Elltjqc25WHb+DCmTkw3Gb+Cbm78tprncrN3ej 66bqjJSmv1+BS3jQHJVwAoRitsBj4uebMK1J5NVj3TCeG3a8B2xb1oTbO8Gpo4wU yTYu/8/s/zzSTKyK34VmNm5XkVl/Y/2yGXCaDPTv9LvHFORwDSgWjH7KIlumbJR5 LcFvTQGK1oE8s0ZI5aBGbHZ2ZY//KVrpHU72COwxvkwEl+VoCPFDO/xldQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAxcgCevZMTH9tDlFpqNSAYRbhGFMB8GA1UdIwQY MBaAFHM7Byi3oFQ1hMLNC0i3R4xBlO8KMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY3pzSEtMZWdWRFdFd3MwTFNMZEhqRUdVN3dvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNi9hODM0ZGEtMWNjYS00MDE3LTkwYjgt ZGFlZTBhZWFmYjJiLzEvY3pzSEtMZWdWRFdFd3MwTFNMZEhqRUdVN3dvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNi9hODM0ZGEtMWNjYS00MDE3LTkwYjgtZGFlZTBhZWFmYjJi LzEvY3pzSEtMZWdWRFdFd3MwTFNMZEhqRUdVN3dvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHUaU0vZY bsJ5CnsYpnEsQtN2YBE1L0VA2jTPnJMnuNEfJKQQv/BIAlzJIkBDbtdTQKVLRYiu sswPBwQQwsMxsNvsjzf9mgJCzUPbexmjU2pHf32Vi/Er9RjshQWPFbbHEO1/BRsp qP53EKvNUGH4StsEq70mObO9nHsacBKyD+JDQycJ7mZa3ikzCzP8pJyT4M/wJCY7 g2pY/ThWYr75q65uKe2XQV1vvc/TqDPijz/SeyBaGnPddlRKiAwcVGQIU5TFkv16 NqaHRsTEV9CiwdVkFwehKez+wPOB9xkSVgmi0cHmKyZbwwBOk5hKiKp1pCIojrm9 kJ0DlVn6Jut80g== -----END CERTIFICATE-----Generated at Sun Dec 7 00:14:25 2025 by rpki-client