This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/2ebc79-7b94-4bf8-9133-4b05774de371/1/0Zk_eMrkRZqbniaJrTDwvETMZyQ.mft File: 0Zk_eMrkRZqbniaJrTDwvETMZyQ.mft (raw, json) Hash identifier: bDYje4XocuOFhTgkYAWDLQ9vqEYu2M/wB5mS2EOpNg4= Subject key identifier: 98:30:55:9E:73:2E:78:1A:3E:81:FA:31:1D:C2:09:82:76:AA:E8:D2 Authority key identifier: D1:99:3F:78:CA:E4:45:9A:9B:9E:26:89:AD:30:F0:BC:44:CC:67:24 Certificate issuer: /CN=d1993f78cae4459a9b9e2689ad30f0bc44cc6724 Certificate serial: 019AF50A07E8DDC55A692C7750F46DAC80A7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Zk_eMrkRZqbniaJrTDwvETMZyQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/2ebc79-7b94-4bf8-9133-4b05774de371/1/0Zk_eMrkRZqbniaJrTDwvETMZyQ.mft Manifest number: 04B7 Signing time: Sat 06 Dec 2025 19:01:06 +0000 Manifest this update: Sat 06 Dec 2025 19:01:06 +0000 Manifest next update: Sun 07 Dec 2025 19:01:06 +0000 Files and hashes: 1: 0Zk_eMrkRZqbniaJrTDwvETMZyQ.crl (hash: FoQZW5qCi9G1cdSOJcg0ElBFYbIcFY2bWW3kJs0J9oo=) 2: 5KVSG33DPZC1TKz5q9NlgQSJY8U.roa (hash: GwSKpHIjNmK499qIKezXAfYrejsXUCWzE4VXptKGrTs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/2ebc79-7b94-4bf8-9133-4b05774de371/1/0Zk_eMrkRZqbniaJrTDwvETMZyQ.crl rsync://rpki.ripe.net/repository/DEFAULT/fd/2ebc79-7b94-4bf8-9133-4b05774de371/1/0Zk_eMrkRZqbniaJrTDwvETMZyQ.mft rsync://rpki.ripe.net/repository/DEFAULT/0Zk_eMrkRZqbniaJrTDwvETMZyQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 19:01:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:0a:07:e8:dd:c5:5a:69:2c:77:50:f4:6d:ac:80:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d1993f78cae4459a9b9e2689ad30f0bc44cc6724 Validity Not Before: Dec 6 19:01:06 2025 GMT Not After : Dec 7 19:01:06 2025 GMT Subject: CN=9830559e732e781a3e81fa311dc2098276aae8d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:08:ed:4e:61:cf:00:67:ba:4c:cb:e2:fa:06: ee:61:81:68:3b:0d:89:03:3a:4f:a4:af:5b:81:6a: d3:03:25:95:1a:49:7e:18:ae:86:f4:56:a8:0e:30: 28:70:fa:39:79:7e:12:4f:4d:c4:20:4e:2a:fb:bc: 48:a2:59:74:7b:2d:9a:2b:d3:ad:20:99:4f:a8:c4: 55:b3:9e:46:64:08:df:1a:df:a7:c2:be:57:97:7d: 1b:71:0c:75:55:3f:15:91:7d:ae:0a:c8:20:d0:4c: b8:a7:a3:13:0c:c9:e7:0f:14:45:1e:b5:47:95:19: 02:36:66:54:c9:c1:e4:8d:d6:79:f6:cd:ab:c4:0a: 41:ef:28:0c:12:53:78:ab:a4:10:de:03:e2:d0:cf: 05:30:91:ae:14:60:85:dd:72:f5:30:e9:a5:1f:e3: 3b:11:11:9d:76:28:c8:62:d2:83:64:0f:bc:0e:13: 7d:4b:ca:75:8f:6a:09:8b:71:0e:5b:00:2a:1b:56: a2:f2:ca:53:05:a5:51:56:3a:d0:e5:9e:65:4c:32: 85:f6:1c:1b:ab:df:4a:86:68:d6:dc:37:b9:ca:c5: 58:f6:e4:a6:a6:c6:4f:22:1a:f4:c3:1b:57:f8:b5: 0b:cb:45:2c:ca:29:0a:f4:26:50:1f:17:b2:ff:98: 8d:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:30:55:9E:73:2E:78:1A:3E:81:FA:31:1D:C2:09:82:76:AA:E8:D2 X509v3 Authority Key Identifier: keyid:D1:99:3F:78:CA:E4:45:9A:9B:9E:26:89:AD:30:F0:BC:44:CC:67:24 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Zk_eMrkRZqbniaJrTDwvETMZyQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/2ebc79-7b94-4bf8-9133-4b05774de371/1/0Zk_eMrkRZqbniaJrTDwvETMZyQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/2ebc79-7b94-4bf8-9133-4b05774de371/1/0Zk_eMrkRZqbniaJrTDwvETMZyQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5a:e7:89:32:6e:a0:28:d8:39:87:62:60:50:8e:ab:c8:c1:48: ec:15:4a:5b:b0:bf:12:67:19:c1:5b:49:55:c9:bd:0f:2c:d4: e0:a1:fc:b1:a5:7c:fd:4e:18:22:39:b3:1a:db:43:ed:d5:26: 61:66:54:43:bd:b0:88:26:a2:47:f9:8a:fe:4c:55:41:db:a5: 5b:c2:93:54:f8:ba:57:30:6f:de:8d:0e:4a:d1:3b:09:1c:40: f8:78:4e:db:3c:65:f8:72:79:f7:26:0e:96:bf:a5:48:d4:d8: 20:55:1c:ec:4b:17:cd:6e:7b:00:d7:8f:27:f3:92:31:67:dc: 85:ed:4e:db:f6:26:af:52:0c:4c:3c:b1:1a:f9:d5:bb:b7:dd: 94:49:9b:0b:eb:f0:5a:89:3b:06:d9:34:ca:87:08:dd:b6:aa: 1f:ec:ec:63:25:73:e9:1a:a1:f2:f4:23:c2:84:22:93:5a:a2: 4c:f5:bd:8f:59:98:ad:f4:36:cc:1f:0c:a6:ec:66:e6:99:10: 3a:9c:20:0a:ec:86:e6:0e:42:ce:62:82:48:3a:a5:41:75:12: 52:d5:f2:86:7b:5d:f7:7d:3a:c6:44:b7:34:36:9d:38:e6:94: 5b:39:72:56:cb:fc:56:1d:06:6f:2f:1f:01:d9:99:8c:98:a0: 21:59:5c:96 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr1Cgfo3cVaaSx3UPRtrICnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQxOTkzZjc4Y2FlNDQ1OWE5YjllMjY4OWFkMzBmMGJjNDRj YzY3MjQwHhcNMjUxMjA2MTkwMTA2WhcNMjUxMjA3MTkwMTA2WjAzMTEwLwYDVQQD Eyg5ODMwNTU5ZTczMmU3ODFhM2U4MWZhMzExZGMyMDk4Mjc2YWFlOGQyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAswjtTmHPAGe6TMvi+gbuYYFoOw2J AzpPpK9bgWrTAyWVGkl+GK6G9FaoDjAocPo5eX4ST03EIE4q+7xIoll0ey2aK9Ot IJlPqMRVs55GZAjfGt+nwr5Xl30bcQx1VT8VkX2uCsgg0Ey4p6MTDMnnDxRFHrVH lRkCNmZUycHkjdZ59s2rxApB7ygMElN4q6QQ3gPi0M8FMJGuFGCF3XL1MOmlH+M7 ERGddijIYtKDZA+8DhN9S8p1j2oJi3EOWwAqG1ai8spTBaVRVjrQ5Z5lTDKF9hwb q99KhmjW3De5ysVY9uSmpsZPIhr0wxtX+LULy0UsyikK9CZQHxey/5iN2wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJgwVZ5zLngaPoH6MR3CCYJ2qujSMB8GA1UdIwQY MBaAFNGZP3jK5EWam54mia0w8LxEzGckMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMFprX2VNcmtSWnFibmlhSnJURHd2RVRNWnlRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC8yZWJjNzktN2I5NC00YmY4LTkxMzMt NGIwNTc3NGRlMzcxLzEvMFprX2VNcmtSWnFibmlhSnJURHd2RVRNWnlRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZC8yZWJjNzktN2I5NC00YmY4LTkxMzMtNGIwNTc3NGRlMzcx LzEvMFprX2VNcmtSWnFibmlhSnJURHd2RVRNWnlRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWueJMm6g KNg5h2JgUI6ryMFI7BVKW7C/EmcZwVtJVcm9DyzU4KH8saV8/U4YIjmzGttD7dUm YWZUQ72wiCaiR/mK/kxVQdulW8KTVPi6VzBv3o0OStE7CRxA+HhO2zxl+HJ59yYO lr+lSNTYIFUc7EsXzW57ANePJ/OSMWfche1O2/Ymr1IMTDyxGvnVu7fdlEmbC+vw Wok7Btk0yocI3baqH+zsYyVz6Rqh8vQjwoQik1qiTPW9j1mYrfQ2zB8Mpuxm5pkQ OpwgCuyG5g5CzmKCSDqlQXUSUtXyhntd9306xkS3NDadOOaUWzlyVsv8Vh0Gby8f AdmZjJigIVlclg== -----END CERTIFICATE-----Generated at Sun Dec 7 01:35:22 2025 by rpki-client