This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/6cfb78-63bc-4820-b903-860c49d0eb6a/1/rzA4pxexVOHPpHEWgy2ibyiyowQ.mft File: rzA4pxexVOHPpHEWgy2ibyiyowQ.mft (raw, json) Hash identifier: R6nL4VE8APKhf9uqJMjm69xGSbLuAM+ZsgJF6+k5M9c= Subject key identifier: 19:49:71:3B:9C:F5:9B:E8:80:67:CE:23:BF:33:1B:D2:4A:87:AD:DF Authority key identifier: AF:30:38:A7:17:B1:54:E1:CF:A4:71:16:83:2D:A2:6F:28:B2:A3:04 Certificate issuer: /CN=af3038a717b154e1cfa47116832da26f28b2a304 Certificate serial: 019B3EA369F7F851752BE356F638A746F4AF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rzA4pxexVOHPpHEWgy2ibyiyowQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/6cfb78-63bc-4820-b903-860c49d0eb6a/1/rzA4pxexVOHPpHEWgy2ibyiyowQ.mft Manifest number: 1788 Signing time: Sun 21 Dec 2025 02:00:55 +0000 Manifest this update: Sun 21 Dec 2025 02:00:55 +0000 Manifest next update: Mon 22 Dec 2025 02:00:55 +0000 Files and hashes: 1: 9-nqsKi4Ev5jKkuKWzG_WIBo83k.roa (hash: SHAm2ssxR7ZkFZ7Brw788jEHfHi8MZS6JxMLuTDqDJs=) 2: rzA4pxexVOHPpHEWgy2ibyiyowQ.crl (hash: YeDheUn6FdVXODQDpyiRc7bohrJs/5SdH6a6TjmEKwY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/6cfb78-63bc-4820-b903-860c49d0eb6a/1/rzA4pxexVOHPpHEWgy2ibyiyowQ.crl rsync://rpki.ripe.net/repository/DEFAULT/e7/6cfb78-63bc-4820-b903-860c49d0eb6a/1/rzA4pxexVOHPpHEWgy2ibyiyowQ.mft rsync://rpki.ripe.net/repository/DEFAULT/rzA4pxexVOHPpHEWgy2ibyiyowQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 19:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3e:a3:69:f7:f8:51:75:2b:e3:56:f6:38:a7:46:f4:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=af3038a717b154e1cfa47116832da26f28b2a304 Validity Not Before: Dec 21 02:00:55 2025 GMT Not After : Dec 22 02:00:55 2025 GMT Subject: CN=1949713b9cf59be88067ce23bf331bd24a87addf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:28:85:63:f1:05:31:e8:bd:3e:8e:8f:0b:09: 4c:4b:b1:11:07:61:d0:b9:f6:bc:a7:c0:98:de:9e: ef:26:ca:c5:bc:99:be:b1:55:ef:97:c4:c8:51:12: 17:5f:f6:2d:7b:43:0f:ec:ee:b1:89:ba:5f:b5:9e: 22:5e:39:b5:79:e9:4d:11:3d:06:45:d5:26:37:7f: bd:ab:1a:4e:ac:9e:ad:c0:42:c8:5f:77:f2:ff:a2: 24:42:b7:f3:49:b0:db:ec:e8:52:01:cd:55:31:22: e2:c1:2d:db:b9:9d:03:9e:16:93:1a:11:c3:e1:1c: 6e:d3:a2:f2:df:56:79:58:32:81:d5:a1:84:f0:21: 5b:82:b7:07:94:ed:d7:7e:4a:9f:7f:a2:87:a3:83: 2c:66:dc:1f:1c:d1:db:c8:22:03:74:fd:39:30:b2: a1:00:25:f7:da:f0:f9:c0:e7:df:0d:2d:f1:ed:18: fc:3b:c6:10:8d:6c:d8:b8:c7:63:b9:95:9d:2a:4a: b2:24:01:6b:a0:c8:d2:ea:18:b9:c8:51:61:2f:ba: 55:36:a8:ee:b9:5a:d5:fe:48:a3:1a:6d:a3:a6:5e: a9:92:14:5e:96:4d:97:48:fc:5e:0d:2b:6d:7e:63: 8d:19:3b:35:60:1e:82:84:e3:c9:0d:ee:c8:4e:f6: 43:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:49:71:3B:9C:F5:9B:E8:80:67:CE:23:BF:33:1B:D2:4A:87:AD:DF X509v3 Authority Key Identifier: keyid:AF:30:38:A7:17:B1:54:E1:CF:A4:71:16:83:2D:A2:6F:28:B2:A3:04 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rzA4pxexVOHPpHEWgy2ibyiyowQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/6cfb78-63bc-4820-b903-860c49d0eb6a/1/rzA4pxexVOHPpHEWgy2ibyiyowQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/6cfb78-63bc-4820-b903-860c49d0eb6a/1/rzA4pxexVOHPpHEWgy2ibyiyowQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 27:13:fd:f8:19:06:2c:21:df:70:de:0b:7b:62:0a:cd:3f:f8: 80:26:49:4a:c1:de:47:78:e1:c0:5b:c2:ef:68:97:d4:5d:71: 07:99:7a:80:78:e2:07:ea:53:ec:a4:8e:c1:d3:8e:b2:99:3c: 42:6c:32:5b:25:cf:d4:d5:8a:66:d6:27:b0:f8:95:4d:00:04: 39:d7:c6:20:60:ea:ca:c0:99:5e:c1:a7:d6:61:ec:c2:7c:63: a5:d0:6a:3d:b2:a5:a2:75:0b:e5:39:e1:0e:85:e2:99:ca:b6: 20:eb:6b:b4:4c:77:ba:08:a3:99:c6:97:f9:d5:6d:c2:d4:e9: e4:fa:92:6f:46:2a:ac:2a:2b:16:eb:a0:2c:23:8e:dd:19:f1: 85:9d:30:9b:42:4a:14:68:8e:53:20:48:1f:84:8b:7d:1f:a2: 08:d5:17:49:69:94:33:22:2f:ab:64:2d:45:fb:c5:bb:ad:46: 8d:ca:3d:3b:5c:26:0c:4b:ce:45:1b:e3:c7:4a:be:e1:bd:8f: 7a:93:f8:9e:6a:a8:53:14:80:08:dc:8f:0f:ad:ab:39:54:fa: 5b:94:96:7f:c6:f4:8c:d3:a4:6d:53:5a:f1:22:0f:5c:09:a6: 18:46:aa:50:6e:e2:b2:89:9e:62:32:ab:4c:7f:f1:e6:82:81: dc:69:40:ad -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs+o2n3+FF1K+NW9jinRvSvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFmMzAzOGE3MTdiMTU0ZTFjZmE0NzExNjgzMmRhMjZmMjhi MmEzMDQwHhcNMjUxMjIxMDIwMDU1WhcNMjUxMjIyMDIwMDU1WjAzMTEwLwYDVQQD EygxOTQ5NzEzYjljZjU5YmU4ODA2N2NlMjNiZjMzMWJkMjRhODdhZGRmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlSiFY/EFMei9Po6PCwlMS7ERB2HQ ufa8p8CY3p7vJsrFvJm+sVXvl8TIURIXX/Yte0MP7O6xibpftZ4iXjm1eelNET0G RdUmN3+9qxpOrJ6twELIX3fy/6IkQrfzSbDb7OhSAc1VMSLiwS3buZ0DnhaTGhHD 4Rxu06Ly31Z5WDKB1aGE8CFbgrcHlO3Xfkqff6KHo4MsZtwfHNHbyCIDdP05MLKh ACX32vD5wOffDS3x7Rj8O8YQjWzYuMdjuZWdKkqyJAFroMjS6hi5yFFhL7pVNqju uVrV/kijGm2jpl6pkhRelk2XSPxeDSttfmONGTs1YB6ChOPJDe7ITvZDIQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBlJcTuc9ZvogGfOI78zG9JKh63fMB8GA1UdIwQY MBaAFK8wOKcXsVThz6RxFoMtom8osqMEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcnpBNHB4ZXhWT0hQcEhFV2d5MmlieWl5b3dRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNy82Y2ZiNzgtNjNiYy00ODIwLWI5MDMt ODYwYzQ5ZDBlYjZhLzEvcnpBNHB4ZXhWT0hQcEhFV2d5MmlieWl5b3dRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNy82Y2ZiNzgtNjNiYy00ODIwLWI5MDMtODYwYzQ5ZDBlYjZh LzEvcnpBNHB4ZXhWT0hQcEhFV2d5MmlieWl5b3dRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJxP9+BkG LCHfcN4Le2IKzT/4gCZJSsHeR3jhwFvC72iX1F1xB5l6gHjiB+pT7KSOwdOOspk8 QmwyWyXP1NWKZtYnsPiVTQAEOdfGIGDqysCZXsGn1mHswnxjpdBqPbKlonUL5Tnh DoXimcq2IOtrtEx3ugijmcaX+dVtwtTp5PqSb0YqrCorFuugLCOO3RnxhZ0wm0JK FGiOUyBIH4SLfR+iCNUXSWmUMyIvq2QtRfvFu61Gjco9O1wmDEvORRvjx0q+4b2P epP4nmqoUxSACNyPD62rOVT6W5SWf8b0jNOkbVNa8SIPXAmmGEaqUG7isomeYjKr TH/x5oKB3GlArQ== -----END CERTIFICATE-----Generated at Sun Dec 21 04:10:09 2025 by rpki-client