This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/1d27da-b39f-42a9-949f-b6c39ad983dd/1/RzrT6YeegYYjFqEICLtcQhKVTLo.mft File: RzrT6YeegYYjFqEICLtcQhKVTLo.mft (raw, json) Hash identifier: Z6o42T7mv+kZYVeQ4yzKjXHOEMqE8vxBLLnc2PHKNrg= Subject key identifier: AA:16:51:6B:E2:EC:22:61:D0:DE:DD:D5:9F:9F:98:EB:3A:27:DC:68 Authority key identifier: 47:3A:D3:E9:87:9E:81:86:23:16:A1:08:08:BB:5C:42:12:95:4C:BA Certificate issuer: /CN=473ad3e9879e81862316a10808bb5c4212954cba Certificate serial: 019B4626D8153AB1F01E7967BA1A1591E085 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RzrT6YeegYYjFqEICLtcQhKVTLo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/1d27da-b39f-42a9-949f-b6c39ad983dd/1/RzrT6YeegYYjFqEICLtcQhKVTLo.mft Manifest number: 103A Signing time: Mon 22 Dec 2025 13:01:49 +0000 Manifest this update: Mon 22 Dec 2025 13:01:49 +0000 Manifest next update: Tue 23 Dec 2025 13:01:49 +0000 Files and hashes: 1: RzrT6YeegYYjFqEICLtcQhKVTLo.crl (hash: Fs39gtqVsNKm0KH4DlD1F3BoZZ+6eI8W3mvv1uKgfrw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/1d27da-b39f-42a9-949f-b6c39ad983dd/1/RzrT6YeegYYjFqEICLtcQhKVTLo.crl rsync://rpki.ripe.net/repository/DEFAULT/02/1d27da-b39f-42a9-949f-b6c39ad983dd/1/RzrT6YeegYYjFqEICLtcQhKVTLo.mft rsync://rpki.ripe.net/repository/DEFAULT/RzrT6YeegYYjFqEICLtcQhKVTLo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 23 Dec 2025 10:00:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:46:26:d8:15:3a:b1:f0:1e:79:67:ba:1a:15:91:e0:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=473ad3e9879e81862316a10808bb5c4212954cba Validity Not Before: Dec 22 13:01:49 2025 GMT Not After : Dec 23 13:01:49 2025 GMT Subject: CN=aa16516be2ec2261d0deddd59f9f98eb3a27dc68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:32:6d:05:4a:e1:38:2f:35:7b:93:4d:26:a4: 7b:f1:1f:26:3c:e1:5a:68:e2:07:b2:cc:f5:7c:c7: 93:0d:ca:ca:a8:45:40:0f:f3:7a:59:87:dd:6e:c9: de:a4:0a:14:e8:45:eb:3e:63:cd:a4:ae:51:11:51: 93:28:b9:90:32:59:13:fc:ca:26:42:d5:03:91:45: 42:32:e5:b8:e4:bb:d8:02:8f:b2:c1:44:59:b4:c3: 98:1d:88:cd:56:19:0d:0b:fe:0d:4d:dc:a3:19:3a: 57:ae:6f:be:a1:04:08:33:1b:d2:aa:79:a1:ca:8f: 6e:d0:65:aa:42:3d:a8:66:f4:44:56:a6:3a:46:5b: 45:e2:a1:c6:b6:cc:1c:0c:af:3b:69:35:b1:5a:0e: 7f:7c:ba:72:15:bc:b4:2a:6f:db:7f:0c:8a:a0:cd: 75:98:03:cf:fa:73:19:21:85:ca:c0:6c:94:ed:b5: 86:7c:3f:2d:24:6a:95:78:52:32:94:2b:85:0d:22: 7b:ff:a7:84:dc:14:89:f8:d1:7b:64:6c:d6:a2:fb: 12:ab:03:11:48:d0:ea:fb:e9:90:f9:29:40:d7:2a: ef:84:1c:92:cd:04:83:bb:36:c4:09:29:f7:e2:f0: d5:9c:55:9c:ae:bb:41:8a:ec:1a:b2:99:ec:2f:68: d1:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:16:51:6B:E2:EC:22:61:D0:DE:DD:D5:9F:9F:98:EB:3A:27:DC:68 X509v3 Authority Key Identifier: keyid:47:3A:D3:E9:87:9E:81:86:23:16:A1:08:08:BB:5C:42:12:95:4C:BA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RzrT6YeegYYjFqEICLtcQhKVTLo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/1d27da-b39f-42a9-949f-b6c39ad983dd/1/RzrT6YeegYYjFqEICLtcQhKVTLo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/02/1d27da-b39f-42a9-949f-b6c39ad983dd/1/RzrT6YeegYYjFqEICLtcQhKVTLo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 43:9e:a4:c8:ce:6d:10:c7:d2:5a:8a:09:f8:73:90:7a:8d:1f: 8a:55:5a:08:1a:d4:61:3b:ea:22:4d:c8:29:7f:6c:cd:54:56: 07:9a:e3:8a:de:84:d7:e3:89:5e:2b:1b:ef:8b:e9:36:b5:92: 5e:bc:26:c9:33:77:81:b2:00:f5:d1:7a:71:32:8e:62:c7:37: 79:b4:3e:79:d6:18:08:e8:93:72:9d:78:48:20:c3:7a:28:40: cc:47:54:3d:0a:9c:0f:e0:bb:8b:0c:ba:de:84:9a:c3:1e:49: 09:84:eb:bf:a1:21:57:02:98:17:39:4c:85:ec:1f:d3:06:2e: 43:68:56:40:96:f4:ae:ac:95:2b:d2:02:59:c2:07:4f:6a:a0: 60:92:16:dd:17:fb:5c:df:97:b1:ea:7d:dd:a4:e9:66:ec:9e: 92:c5:9f:51:4a:6a:98:b0:3b:6a:27:cf:15:85:b9:18:67:83: 75:0f:8a:6b:25:c7:09:16:30:4d:a5:e8:c1:72:0a:a6:11:46: 8f:28:f0:28:fa:67:63:14:04:96:a9:a5:4c:c1:32:5b:d1:7f: e7:d0:74:b4:19:b2:97:72:e0:28:f3:c4:f0:78:88:56:50:82: 2c:f2:5a:2c:b6:12:4e:5c:35:14:91:cf:66:32:89:eb:cb:c3: 1f:43:be:84 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtGJtgVOrHwHnlnuhoVkeCFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ3M2FkM2U5ODc5ZTgxODYyMzE2YTEwODA4YmI1YzQyMTI5 NTRjYmEwHhcNMjUxMjIyMTMwMTQ5WhcNMjUxMjIzMTMwMTQ5WjAzMTEwLwYDVQQD EyhhYTE2NTE2YmUyZWMyMjYxZDBkZWRkZDU5ZjlmOThlYjNhMjdkYzY4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtjJtBUrhOC81e5NNJqR78R8mPOFa aOIHssz1fMeTDcrKqEVAD/N6WYfdbsnepAoU6EXrPmPNpK5REVGTKLmQMlkT/Mom QtUDkUVCMuW45LvYAo+ywURZtMOYHYjNVhkNC/4NTdyjGTpXrm++oQQIMxvSqnmh yo9u0GWqQj2oZvREVqY6RltF4qHGtswcDK87aTWxWg5/fLpyFby0Km/bfwyKoM11 mAPP+nMZIYXKwGyU7bWGfD8tJGqVeFIylCuFDSJ7/6eE3BSJ+NF7ZGzWovsSqwMR SNDq++mQ+SlA1yrvhBySzQSDuzbECSn34vDVnFWcrrtBiuwaspnsL2jRhQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKoWUWvi7CJh0N7d1Z+fmOs6J9xoMB8GA1UdIwQY MBaAFEc60+mHnoGGIxahCAi7XEISlUy6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUnpyVDZZZWVnWVlqRnFFSUNMdGNRaEtWVExvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi8xZDI3ZGEtYjM5Zi00MmE5LTk0OWYt YjZjMzlhZDk4M2RkLzEvUnpyVDZZZWVnWVlqRnFFSUNMdGNRaEtWVExvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMi8xZDI3ZGEtYjM5Zi00MmE5LTk0OWYtYjZjMzlhZDk4M2Rk LzEvUnpyVDZZZWVnWVlqRnFFSUNMdGNRaEtWVExvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQ56kyM5t EMfSWooJ+HOQeo0filVaCBrUYTvqIk3IKX9szVRWB5rjit6E1+OJXisb74vpNrWS XrwmyTN3gbIA9dF6cTKOYsc3ebQ+edYYCOiTcp14SCDDeihAzEdUPQqcD+C7iwy6 3oSawx5JCYTrv6EhVwKYFzlMhewf0wYuQ2hWQJb0rqyVK9ICWcIHT2qgYJIW3Rf7 XN+Xsep93aTpZuyeksWfUUpqmLA7aifPFYW5GGeDdQ+KayXHCRYwTaXowXIKphFG jyjwKPpnYxQElqmlTMEyW9F/59B0tBmyl3LgKPPE8HiIVlCCLPJaLLYSTlw1FJHP ZjKJ68vDH0O+hA== -----END CERTIFICATE-----Generated at Mon Dec 22 15:39:52 2025 by rpki-client