This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/6b604b-4eed-4393-8e8c-cba0631f293f/1/mzYg1nmOfrGGY5xFSKBpavbjBYk.mft File: mzYg1nmOfrGGY5xFSKBpavbjBYk.mft (raw, json) Hash identifier: BWTEvJfJL4W2ZWRuPz01HB6E9xWeXrPvGVkNWxMYiaA= Subject key identifier: 3C:F9:0D:EF:BE:9C:16:E4:45:ED:50:46:F3:63:5F:9F:E1:7D:19:01 Authority key identifier: 9B:36:20:D6:79:8E:7E:B1:86:63:9C:45:48:A0:69:6A:F6:E3:05:89 Certificate issuer: /CN=9b3620d6798e7eb186639c4548a0696af6e30589 Certificate serial: 019B4B4C7F1E5D32A8DE1E4554FDBF7E2B00 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mzYg1nmOfrGGY5xFSKBpavbjBYk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/6b604b-4eed-4393-8e8c-cba0631f293f/1/mzYg1nmOfrGGY5xFSKBpavbjBYk.mft Manifest number: 0735 Signing time: Tue 23 Dec 2025 13:01:03 +0000 Manifest this update: Tue 23 Dec 2025 13:01:03 +0000 Manifest next update: Wed 24 Dec 2025 13:01:03 +0000 Files and hashes: 1: Q41X_j-X6MEBsrlAhkOF1wVzhbk.roa (hash: YBskpCx6COz+43ChHeDsLz5PAi6tPK0b2nqeQTQNIwI=) 2: mzYg1nmOfrGGY5xFSKBpavbjBYk.crl (hash: qK7XCmH/7J8ZzhftK9Jp4439aF4E4qTEWqmxFMN536s=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/6b604b-4eed-4393-8e8c-cba0631f293f/1/mzYg1nmOfrGGY5xFSKBpavbjBYk.crl rsync://rpki.ripe.net/repository/DEFAULT/0e/6b604b-4eed-4393-8e8c-cba0631f293f/1/mzYg1nmOfrGGY5xFSKBpavbjBYk.mft rsync://rpki.ripe.net/repository/DEFAULT/mzYg1nmOfrGGY5xFSKBpavbjBYk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 24 Dec 2025 13:01:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:4b:4c:7f:1e:5d:32:a8:de:1e:45:54:fd:bf:7e:2b:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9b3620d6798e7eb186639c4548a0696af6e30589 Validity Not Before: Dec 23 13:01:03 2025 GMT Not After : Dec 24 13:01:03 2025 GMT Subject: CN=3cf90defbe9c16e445ed5046f3635f9fe17d1901 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:09:5b:9f:a9:29:c0:50:c7:89:0b:dc:ad:12: e5:21:28:f5:26:70:e1:2e:81:1a:32:3d:1d:3d:44: f2:e0:99:b7:4b:fa:27:a7:bf:34:5f:93:da:ba:13: 38:cd:76:07:e8:0a:57:73:73:a8:78:e7:0d:1f:af: b6:ec:89:35:2e:c8:33:72:57:62:5c:0b:e4:b2:1f: 20:53:9c:ff:0e:e5:c1:8b:fa:95:b9:06:a5:06:34: b2:77:29:00:ed:82:87:82:3e:5d:ae:bf:19:d2:ab: a1:d9:14:fb:1b:db:9b:3b:e4:14:db:40:62:6d:93: f8:a4:b0:95:4c:1b:e5:bc:a9:a8:b5:00:88:9c:c0: 97:76:1a:cf:57:6e:de:6f:70:71:81:57:46:34:d0: 30:98:95:80:f2:5c:62:0a:0f:c4:28:77:0c:bd:3f: 54:d6:b2:6c:77:4f:d3:c2:f6:18:12:90:af:64:cb: f2:f4:14:eb:b0:a6:6f:33:d2:c4:54:da:31:a7:d3: 17:f1:05:92:1d:97:eb:8c:0d:28:0b:7f:58:40:12: ac:db:1b:a4:66:bc:94:44:f8:97:40:7b:10:ca:13: 7c:38:eb:ac:85:31:e1:4e:61:06:28:61:7b:5f:76: 16:f6:00:d4:33:4f:9a:7b:43:3c:a0:48:30:e7:3e: b7:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:F9:0D:EF:BE:9C:16:E4:45:ED:50:46:F3:63:5F:9F:E1:7D:19:01 X509v3 Authority Key Identifier: keyid:9B:36:20:D6:79:8E:7E:B1:86:63:9C:45:48:A0:69:6A:F6:E3:05:89 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mzYg1nmOfrGGY5xFSKBpavbjBYk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/6b604b-4eed-4393-8e8c-cba0631f293f/1/mzYg1nmOfrGGY5xFSKBpavbjBYk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/6b604b-4eed-4393-8e8c-cba0631f293f/1/mzYg1nmOfrGGY5xFSKBpavbjBYk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 24:15:b0:47:81:11:7f:d7:bb:20:eb:ca:ed:fc:8b:f1:78:13: e3:9e:ca:0f:18:8c:63:45:ab:be:9a:d2:2c:9e:60:8f:3a:e0: b0:8e:d3:ad:11:44:84:94:90:17:02:7f:f0:cd:66:fc:c0:65: 93:c9:ee:7c:73:4d:00:33:39:06:a5:29:02:2e:59:b1:e9:4c: e7:5a:0a:88:41:7c:fd:75:83:17:b9:54:a9:be:79:53:1f:4f: ae:ce:99:07:3b:61:00:04:33:93:42:9b:b5:83:45:2f:b5:f3: a4:02:8e:20:55:92:d6:0c:47:7c:b0:85:7b:c1:72:6e:32:f9: a3:5c:0e:a1:59:8c:5d:41:fa:01:fc:0a:fd:7b:d5:aa:a2:b4: 21:5e:43:f7:3f:fb:d1:11:ce:6a:c3:64:bb:c3:e2:5e:9c:22: ca:77:44:ed:f7:b7:70:80:cc:19:ce:77:72:be:80:40:07:50: 40:0c:71:7b:3a:c6:dc:44:87:78:21:c3:f9:e3:9c:30:6a:85: 5c:f8:ac:a5:5d:96:f9:d7:55:5b:fc:98:c8:3c:07:0f:92:26: 30:65:a8:36:82:84:3d:c8:d5:8c:96:9d:ca:81:3c:e7:2b:8d: 85:fb:57:2d:9c:88:1b:33:3e:79:53:84:4b:01:ef:81:60:c9: cc:3e:75:a4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtLTH8eXTKo3h5FVP2/fisAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDliMzYyMGQ2Nzk4ZTdlYjE4NjYzOWM0NTQ4YTA2OTZhZjZl MzA1ODkwHhcNMjUxMjIzMTMwMTAzWhcNMjUxMjI0MTMwMTAzWjAzMTEwLwYDVQQD EygzY2Y5MGRlZmJlOWMxNmU0NDVlZDUwNDZmMzYzNWY5ZmUxN2QxOTAxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9Albn6kpwFDHiQvcrRLlISj1JnDh LoEaMj0dPUTy4Jm3S/onp780X5PauhM4zXYH6ApXc3OoeOcNH6+27Ik1Lsgzcldi XAvksh8gU5z/DuXBi/qVuQalBjSydykA7YKHgj5drr8Z0quh2RT7G9ubO+QU20Bi bZP4pLCVTBvlvKmotQCInMCXdhrPV27eb3BxgVdGNNAwmJWA8lxiCg/EKHcMvT9U 1rJsd0/TwvYYEpCvZMvy9BTrsKZvM9LEVNoxp9MX8QWSHZfrjA0oC39YQBKs2xuk ZryURPiXQHsQyhN8OOushTHhTmEGKGF7X3YW9gDUM0+ae0M8oEgw5z63bQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDz5De++nBbkRe1QRvNjX5/hfRkBMB8GA1UdIwQY MBaAFJs2INZ5jn6xhmOcRUigaWr24wWJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbXpZZzFubU9mckdHWTV4RlNLQnBhdmJqQllrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZS82YjYwNGItNGVlZC00MzkzLThlOGMt Y2JhMDYzMWYyOTNmLzEvbXpZZzFubU9mckdHWTV4RlNLQnBhdmJqQllrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZS82YjYwNGItNGVlZC00MzkzLThlOGMtY2JhMDYzMWYyOTNm LzEvbXpZZzFubU9mckdHWTV4RlNLQnBhdmJqQllrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJBWwR4ER f9e7IOvK7fyL8XgT457KDxiMY0WrvprSLJ5gjzrgsI7TrRFEhJSQFwJ/8M1m/MBl k8nufHNNADM5BqUpAi5ZselM51oKiEF8/XWDF7lUqb55Ux9Prs6ZBzthAAQzk0Kb tYNFL7XzpAKOIFWS1gxHfLCFe8FybjL5o1wOoVmMXUH6AfwK/XvVqqK0IV5D9z/7 0RHOasNku8PiXpwiyndE7fe3cIDMGc53cr6AQAdQQAxxezrG3ESHeCHD+eOcMGqF XPispV2W+ddVW/yYyDwHD5ImMGWoNoKEPcjVjJadyoE85yuNhftXLZyIGzM+eVOE SwHvgWDJzD51pA== -----END CERTIFICATE-----Generated at Tue Dec 23 20:34:32 2025 by rpki-client