This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/76606e-7243-4b0b-82a3-3d06d242f992/1/gzoLVZQzmu_otVjjcpKQtCuxqXQ.mft File: gzoLVZQzmu_otVjjcpKQtCuxqXQ.mft (raw, json) Hash identifier: OQuPFm9MrIHLnhKJ7wPnXPUZlZhIVH0GVcJ0E7R+drc= Subject key identifier: AB:32:F8:EE:13:75:9A:EF:5B:4F:8B:CF:D3:B4:00:81:63:D7:2E:67 Authority key identifier: 83:3A:0B:55:94:33:9A:EF:E8:B5:58:E3:72:92:90:B4:2B:B1:A9:74 Certificate issuer: /CN=833a0b5594339aefe8b558e3729290b42bb1a974 Certificate serial: 019AF209227931722F1D93013DB1A43862C3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gzoLVZQzmu_otVjjcpKQtCuxqXQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/76606e-7243-4b0b-82a3-3d06d242f992/1/gzoLVZQzmu_otVjjcpKQtCuxqXQ.mft Manifest number: 10DA Signing time: Sat 06 Dec 2025 05:01:16 +0000 Manifest this update: Sat 06 Dec 2025 05:01:16 +0000 Manifest next update: Sun 07 Dec 2025 05:01:16 +0000 Files and hashes: 1: 1-27kWYKAbmGvckcGXREu8_O6E5Q.roa (hash: TMyKOohNPE+V9J//F3lIZGfAGQhVpkDHjFotXauXdgo=) 2: gzoLVZQzmu_otVjjcpKQtCuxqXQ.crl (hash: dIaiTiCK8ITl/rdnmLo8yi219ygPhlM3MF+hf+jI1gg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fc/76606e-7243-4b0b-82a3-3d06d242f992/1/gzoLVZQzmu_otVjjcpKQtCuxqXQ.crl rsync://rpki.ripe.net/repository/DEFAULT/fc/76606e-7243-4b0b-82a3-3d06d242f992/1/gzoLVZQzmu_otVjjcpKQtCuxqXQ.mft rsync://rpki.ripe.net/repository/DEFAULT/gzoLVZQzmu_otVjjcpKQtCuxqXQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:09:22:79:31:72:2f:1d:93:01:3d:b1:a4:38:62:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=833a0b5594339aefe8b558e3729290b42bb1a974 Validity Not Before: Dec 6 05:01:16 2025 GMT Not After : Dec 7 05:01:16 2025 GMT Subject: CN=ab32f8ee13759aef5b4f8bcfd3b4008163d72e67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:6b:a1:48:81:bd:4e:1f:c0:c0:1e:f5:13:7c: db:b7:6b:24:59:ba:66:68:5f:1b:7a:a0:04:a3:1c: 7a:25:74:7c:f6:5f:73:77:05:24:4e:b0:12:0c:31: 35:17:3b:4d:62:8e:42:08:a0:4a:0b:18:96:01:6b: 6c:14:ba:98:b2:c9:3c:0d:43:64:b2:06:34:d7:4a: c0:e6:17:d2:dd:c3:39:ad:26:ba:4a:4e:10:0e:ff: 99:60:08:3b:7f:04:05:3d:a2:cb:29:aa:02:c1:8c: 70:fe:33:da:6d:28:c0:bd:7c:51:41:de:2f:65:c3: d1:e2:e5:83:83:c4:ed:2b:a2:94:4c:64:ca:87:52: 80:42:06:85:ad:7e:44:02:12:3d:b1:99:f7:21:ce: df:03:0a:79:84:7b:cd:f4:e5:28:47:c8:aa:9d:3d: 2d:2c:2c:38:a2:8c:17:3e:44:ec:9e:2e:24:53:96: eb:b3:13:23:d8:07:f0:db:55:01:b2:a5:92:ed:b1: 8b:00:43:33:86:5a:36:db:3a:65:ec:45:6d:d4:12: 1e:c5:2a:60:db:70:61:21:b7:85:89:3f:df:3d:1d: 68:44:59:74:98:eb:74:f5:4a:17:fc:c0:5d:52:fb: b7:d4:c6:2d:97:bc:64:a0:cc:aa:38:b2:e3:2f:9a: f7:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:32:F8:EE:13:75:9A:EF:5B:4F:8B:CF:D3:B4:00:81:63:D7:2E:67 X509v3 Authority Key Identifier: keyid:83:3A:0B:55:94:33:9A:EF:E8:B5:58:E3:72:92:90:B4:2B:B1:A9:74 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gzoLVZQzmu_otVjjcpKQtCuxqXQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/76606e-7243-4b0b-82a3-3d06d242f992/1/gzoLVZQzmu_otVjjcpKQtCuxqXQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/76606e-7243-4b0b-82a3-3d06d242f992/1/gzoLVZQzmu_otVjjcpKQtCuxqXQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 32:6e:02:ac:97:c0:a6:96:a6:84:de:d5:d8:c0:95:f8:af:e5: 12:aa:0c:fd:4e:b8:fd:a5:0e:26:2c:fa:77:de:16:58:d9:d8: 72:12:ba:8d:1f:02:d6:5c:97:c8:ec:8f:d5:ae:e6:94:cd:98: d6:80:93:2a:0a:ed:de:32:f6:84:fd:cd:bc:52:ff:88:f5:d2: b8:0f:77:28:58:e3:2e:f6:3d:9c:c4:bd:9a:a8:8c:96:ae:31: a2:e2:ca:30:59:19:54:df:99:b5:90:89:b6:a5:a4:39:93:db: fa:98:e6:18:32:4c:ea:b7:04:1c:19:74:3b:98:b9:c4:86:e3: 5e:dc:5f:02:56:aa:ea:b2:5a:02:9e:6d:9f:ea:27:b1:9b:a2: 66:9e:51:ad:47:79:da:5e:71:d3:34:03:c4:3e:d0:0a:6d:57: 2d:91:14:b3:68:25:29:b8:7e:ae:24:b3:be:14:dd:5d:ee:f9: 6a:e0:03:69:9b:7b:a2:4c:98:3d:25:29:02:76:b3:14:f8:47: 86:6d:48:11:27:85:a0:fd:4f:98:7a:af:05:9b:e0:3b:3f:81: 28:8f:61:a9:74:d0:44:bc:ca:4c:d6:dd:ab:66:e6:f1:5a:86: 1f:aa:b8:96:1b:c8:ff:51:25:b5:e7:cf:52:b7:e1:01:76:ba: 91:80:d7:d7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCSJ5MXIvHZMBPbGkOGLDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgzM2EwYjU1OTQzMzlhZWZlOGI1NThlMzcyOTI5MGI0MmJi MWE5NzQwHhcNMjUxMjA2MDUwMTE2WhcNMjUxMjA3MDUwMTE2WjAzMTEwLwYDVQQD EyhhYjMyZjhlZTEzNzU5YWVmNWI0ZjhiY2ZkM2I0MDA4MTYzZDcyZTY3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkWuhSIG9Th/AwB71E3zbt2skWbpm aF8beqAEoxx6JXR89l9zdwUkTrASDDE1FztNYo5CCKBKCxiWAWtsFLqYssk8DUNk sgY010rA5hfS3cM5rSa6Sk4QDv+ZYAg7fwQFPaLLKaoCwYxw/jPabSjAvXxRQd4v ZcPR4uWDg8TtK6KUTGTKh1KAQgaFrX5EAhI9sZn3Ic7fAwp5hHvN9OUoR8iqnT0t LCw4oowXPkTsni4kU5brsxMj2Afw21UBsqWS7bGLAEMzhlo22zpl7EVt1BIexSpg 23BhIbeFiT/fPR1oRFl0mOt09UoX/MBdUvu31MYtl7xkoMyqOLLjL5r3iQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKsy+O4TdZrvW0+Lz9O0AIFj1y5nMB8GA1UdIwQY MBaAFIM6C1WUM5rv6LVY43KSkLQrsal0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ3pvTFZaUXptdV9vdFZqamNwS1F0Q3V4cVhRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYy83NjYwNmUtNzI0My00YjBiLTgyYTMt M2QwNmQyNDJmOTkyLzEvZ3pvTFZaUXptdV9vdFZqamNwS1F0Q3V4cVhRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mYy83NjYwNmUtNzI0My00YjBiLTgyYTMtM2QwNmQyNDJmOTky LzEvZ3pvTFZaUXptdV9vdFZqamNwS1F0Q3V4cVhRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMm4CrJfA ppamhN7V2MCV+K/lEqoM/U64/aUOJiz6d94WWNnYchK6jR8C1lyXyOyP1a7mlM2Y 1oCTKgrt3jL2hP3NvFL/iPXSuA93KFjjLvY9nMS9mqiMlq4xouLKMFkZVN+ZtZCJ tqWkOZPb+pjmGDJM6rcEHBl0O5i5xIbjXtxfAlaq6rJaAp5tn+onsZuiZp5RrUd5 2l5x0zQDxD7QCm1XLZEUs2glKbh+riSzvhTdXe75auADaZt7okyYPSUpAnazFPhH hm1IESeFoP1PmHqvBZvgOz+BKI9hqXTQRLzKTNbdq2bm8VqGH6q4lhvI/1EltefP UrfhAXa6kYDX1w== -----END CERTIFICATE-----Generated at Sat Dec 6 08:12:51 2025 by rpki-client