This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/3d18dc-73c6-4c6f-8c28-5a57234ddb76/1/zUNP2FkiOudujXhkipNylejs15o.mft File: zUNP2FkiOudujXhkipNylejs15o.mft (raw, json) Hash identifier: hyyH79Y6nHiiqMRqjgG+UEgQNIYT3Yg9E5J8alWpgOc= Subject key identifier: D4:41:88:AC:A9:73:B2:BD:45:07:D3:7C:98:25:1B:14:E6:DD:4D:B3 Authority key identifier: CD:43:4F:D8:59:22:3A:E7:6E:8D:78:64:8A:93:72:95:E8:EC:D7:9A Certificate issuer: /CN=cd434fd859223ae76e8d78648a937295e8ecd79a Certificate serial: 019AF31D92606BC1EFD9EEC47CF85411BF69 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zUNP2FkiOudujXhkipNylejs15o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/3d18dc-73c6-4c6f-8c28-5a57234ddb76/1/zUNP2FkiOudujXhkipNylejs15o.mft Manifest number: 070F Signing time: Sat 06 Dec 2025 10:03:12 +0000 Manifest this update: Sat 06 Dec 2025 10:03:12 +0000 Manifest next update: Sun 07 Dec 2025 10:03:12 +0000 Files and hashes: 1: R9FIW-YXitjJpX1Q3jcy6-oEIFI.roa (hash: UPbldeCj6tFYKOIutM8BR+cGGez6vIB0/3ZKKmpjUZo=) 2: zUNP2FkiOudujXhkipNylejs15o.crl (hash: I7h0rNlUnrhv8t4qY3udEGwi/vvfdHnQcrnv7z5Tdn8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/3d18dc-73c6-4c6f-8c28-5a57234ddb76/1/zUNP2FkiOudujXhkipNylejs15o.crl rsync://rpki.ripe.net/repository/DEFAULT/f4/3d18dc-73c6-4c6f-8c28-5a57234ddb76/1/zUNP2FkiOudujXhkipNylejs15o.mft rsync://rpki.ripe.net/repository/DEFAULT/zUNP2FkiOudujXhkipNylejs15o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:1d:92:60:6b:c1:ef:d9:ee:c4:7c:f8:54:11:bf:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cd434fd859223ae76e8d78648a937295e8ecd79a Validity Not Before: Dec 6 10:03:12 2025 GMT Not After : Dec 7 10:03:12 2025 GMT Subject: CN=d44188aca973b2bd4507d37c98251b14e6dd4db3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:d4:6b:98:7c:82:9f:29:f4:1f:6a:1d:ba:7b: 91:c6:cc:45:21:56:3a:02:10:ab:17:22:39:37:ac: 2f:26:7b:4e:61:6a:37:f1:24:10:83:e7:db:c4:ed: 5b:77:2a:18:d8:59:61:6f:de:04:38:c6:ef:a6:ac: 2e:df:ed:1a:bc:44:66:82:86:46:4d:f8:36:1d:df: 08:3e:53:03:0e:e6:0d:a5:30:0c:e3:aa:0e:85:a0: da:05:c1:09:ce:fe:cb:cc:43:19:bb:3f:e0:2f:1b: e7:53:e0:81:84:18:7e:8e:e8:6f:d1:bc:d5:02:92: 48:87:6c:c4:dc:5c:02:56:5a:26:76:9a:1e:5c:85: fc:81:51:05:b0:ce:ef:62:cc:7b:69:bf:67:ca:51: ab:ba:1f:ea:a3:a3:a3:00:e2:6d:ad:db:eb:34:ad: 8f:bc:1c:05:cc:76:a4:aa:02:df:29:9b:96:80:ae: b2:7c:db:e7:a2:c2:2b:78:93:fb:d7:bf:7c:a9:e1: 7c:af:fe:9a:e7:02:16:ce:98:de:91:c8:29:d1:d6: 4d:64:2c:84:bb:6d:6a:49:e7:54:19:6a:fd:78:a4: 0b:5c:c5:a4:34:ca:95:1d:26:98:22:06:6b:48:80: be:31:7a:13:1d:c7:17:21:0d:c4:da:52:4c:97:d9: dd:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:41:88:AC:A9:73:B2:BD:45:07:D3:7C:98:25:1B:14:E6:DD:4D:B3 X509v3 Authority Key Identifier: keyid:CD:43:4F:D8:59:22:3A:E7:6E:8D:78:64:8A:93:72:95:E8:EC:D7:9A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zUNP2FkiOudujXhkipNylejs15o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/3d18dc-73c6-4c6f-8c28-5a57234ddb76/1/zUNP2FkiOudujXhkipNylejs15o.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/3d18dc-73c6-4c6f-8c28-5a57234ddb76/1/zUNP2FkiOudujXhkipNylejs15o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2b:65:f3:93:4e:71:a1:fd:0e:57:91:98:05:e5:c1:07:a3:f6: cc:d3:1a:26:05:73:8f:d0:94:e9:56:39:f7:24:4d:61:7e:c7: f8:2f:fe:00:77:cb:d5:b6:8e:cd:87:85:f3:d7:39:8a:ef:0b: 7a:7a:84:41:a0:7c:cb:17:eb:b9:55:34:45:b7:d0:77:5b:af: 42:45:f5:70:f7:69:65:8b:44:25:28:fc:6d:48:19:6c:6e:d2: b1:17:87:b3:c4:fc:2b:c4:5e:6f:b2:65:35:13:95:b2:5c:c1: 51:1d:bc:34:e1:9a:0e:5f:35:4e:2c:64:09:ca:da:cb:da:d8: 9b:0e:4e:dc:01:a8:4f:29:bd:2b:8b:23:88:31:6e:bb:6e:62: df:b9:fa:c0:63:f7:7a:8f:a3:c9:2a:8b:67:fd:1a:85:d5:ab: 9b:c5:a2:05:08:97:d7:7a:b9:00:37:61:82:d8:61:a4:48:50: 78:6c:e1:34:56:3a:80:0d:8f:5a:d1:be:24:7b:bb:e6:0c:6b: 8f:b9:3d:4b:4d:7d:79:e9:da:6e:52:c3:6f:29:a3:76:57:3d: 2b:44:5b:38:59:0e:db:aa:0b:18:e2:39:0d:42:16:68:85:ad: 38:5c:a0:49:18:e4:d8:05:98:55:73:a3:fa:09:5a:06:bd:02: d1:ab:ee:05 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzHZJga8Hv2e7EfPhUEb9pMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNkNDM0ZmQ4NTkyMjNhZTc2ZThkNzg2NDhhOTM3Mjk1ZThl Y2Q3OWEwHhcNMjUxMjA2MTAwMzEyWhcNMjUxMjA3MTAwMzEyWjAzMTEwLwYDVQQD EyhkNDQxODhhY2E5NzNiMmJkNDUwN2QzN2M5ODI1MWIxNGU2ZGQ0ZGIzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtNRrmHyCnyn0H2odunuRxsxFIVY6 AhCrFyI5N6wvJntOYWo38SQQg+fbxO1bdyoY2Flhb94EOMbvpqwu3+0avERmgoZG Tfg2Hd8IPlMDDuYNpTAM46oOhaDaBcEJzv7LzEMZuz/gLxvnU+CBhBh+juhv0bzV ApJIh2zE3FwCVlomdpoeXIX8gVEFsM7vYsx7ab9nylGruh/qo6OjAOJtrdvrNK2P vBwFzHakqgLfKZuWgK6yfNvnosIreJP71798qeF8r/6a5wIWzpjekcgp0dZNZCyE u21qSedUGWr9eKQLXMWkNMqVHSaYIgZrSIC+MXoTHccXIQ3E2lJMl9ndeQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNRBiKypc7K9RQfTfJglGxTm3U2zMB8GA1UdIwQY MBaAFM1DT9hZIjrnbo14ZIqTcpXo7NeaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvelVOUDJGa2lPdWR1alhoa2lwTnlsZWpzMTVvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNC8zZDE4ZGMtNzNjNi00YzZmLThjMjgt NWE1NzIzNGRkYjc2LzEvelVOUDJGa2lPdWR1alhoa2lwTnlsZWpzMTVvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNC8zZDE4ZGMtNzNjNi00YzZmLThjMjgtNWE1NzIzNGRkYjc2 LzEvelVOUDJGa2lPdWR1alhoa2lwTnlsZWpzMTVvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAK2Xzk05x of0OV5GYBeXBB6P2zNMaJgVzj9CU6VY59yRNYX7H+C/+AHfL1baOzYeF89c5iu8L enqEQaB8yxfruVU0RbfQd1uvQkX1cPdpZYtEJSj8bUgZbG7SsReHs8T8K8Reb7Jl NROVslzBUR28NOGaDl81TixkCcray9rYmw5O3AGoTym9K4sjiDFuu25i37n6wGP3 eo+jySqLZ/0ahdWrm8WiBQiX13q5ADdhgthhpEhQeGzhNFY6gA2PWtG+JHu75gxr j7k9S019eenablLDbymjdlc9K0RbOFkO26oLGOI5DUIWaIWtOFygSRjk2AWYVXOj +glaBr0C0avuBQ== -----END CERTIFICATE-----Generated at Sat Dec 6 11:55:05 2025 by rpki-client