This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/64c5a9-b379-4999-af7a-3c0fa18c58cb/1/1zCimUHvvHp5J_ApSB4scloaZxE.mft File: 1zCimUHvvHp5J_ApSB4scloaZxE.mft (raw, json) Hash identifier: KB+cwb+0vEdicA6IvHCvyw/2AfFzn5Dom8nCtd8SgCc= Subject key identifier: 1A:BB:B3:09:0E:53:39:A6:0D:81:92:88:B6:62:EC:AC:C9:D5:38:46 Authority key identifier: D7:30:A2:99:41:EF:BC:7A:79:27:F0:29:48:1E:2C:72:5A:1A:67:11 Certificate issuer: /CN=d730a29941efbc7a7927f029481e2c725a1a6711 Certificate serial: 019B679F8A2D1CF769F76B51FB43F14D8E81 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1zCimUHvvHp5J_ApSB4scloaZxE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/64c5a9-b379-4999-af7a-3c0fa18c58cb/1/1zCimUHvvHp5J_ApSB4scloaZxE.mft Manifest number: 179E Signing time: Mon 29 Dec 2025 01:01:07 +0000 Manifest this update: Mon 29 Dec 2025 01:01:07 +0000 Manifest next update: Tue 30 Dec 2025 01:01:07 +0000 Files and hashes: 1: 1zCimUHvvHp5J_ApSB4scloaZxE.crl (hash: RO7rBaFaTaBzYGQev23GqDiiclHE9+JUWTn3jDWelnY=) 2: J2pjS99ea6SMp7lb4ewsQffNh8c.roa (hash: 704wqH0ujui7TKq+2h1aj9AcNsB+Fn+EgZ7FOUmvebI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/64c5a9-b379-4999-af7a-3c0fa18c58cb/1/1zCimUHvvHp5J_ApSB4scloaZxE.crl rsync://rpki.ripe.net/repository/DEFAULT/0f/64c5a9-b379-4999-af7a-3c0fa18c58cb/1/1zCimUHvvHp5J_ApSB4scloaZxE.mft rsync://rpki.ripe.net/repository/DEFAULT/1zCimUHvvHp5J_ApSB4scloaZxE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 29 Dec 2025 20:59:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:67:9f:8a:2d:1c:f7:69:f7:6b:51:fb:43:f1:4d:8e:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d730a29941efbc7a7927f029481e2c725a1a6711 Validity Not Before: Dec 29 01:01:07 2025 GMT Not After : Dec 30 01:01:07 2025 GMT Subject: CN=1abbb3090e5339a60d819288b662ecacc9d53846 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:b8:a6:7a:1a:5f:75:10:71:f1:59:a0:2b:89: b0:45:24:f9:74:87:da:5f:c6:46:34:b9:39:3f:b5: d0:31:97:8c:95:97:a9:61:1d:21:09:9b:9f:af:4a: 0d:a1:3b:c7:0e:24:d4:b1:06:86:dc:b2:56:88:e2: d0:2c:c6:f1:86:6f:48:30:9e:64:de:58:3a:99:b7: 88:a9:ce:6d:bf:85:8d:7a:dc:2c:77:85:63:2e:ac: 34:b6:24:52:45:d1:66:44:72:f8:21:67:88:b4:d2: ac:5a:71:ea:1d:f9:a5:a3:72:12:dd:a8:90:dc:8d: 40:2a:d3:b0:a6:9a:f2:6d:92:36:b9:03:ab:b8:b1: 9b:7b:bc:57:6d:e6:4b:9b:0d:f9:7f:af:71:0f:ec: 0c:9b:2e:6c:ca:6b:e4:2c:05:b7:e3:ea:2e:53:cf: 07:54:80:99:7d:24:3c:29:af:7b:1e:66:f3:b9:f7: 2c:71:70:3a:36:ad:6b:e7:26:d1:2c:ae:13:50:10: 8d:ae:22:a7:24:35:dc:2a:11:ea:bb:4b:66:92:0b: 58:cd:5f:ea:a5:ca:53:78:63:cf:1d:5a:f1:b1:06: 28:5e:fe:a1:40:82:f3:cf:0c:10:ad:cc:df:96:9a: c7:ca:82:d5:dc:c1:db:a3:d0:c2:7e:ba:ce:f8:50: a5:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:BB:B3:09:0E:53:39:A6:0D:81:92:88:B6:62:EC:AC:C9:D5:38:46 X509v3 Authority Key Identifier: keyid:D7:30:A2:99:41:EF:BC:7A:79:27:F0:29:48:1E:2C:72:5A:1A:67:11 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1zCimUHvvHp5J_ApSB4scloaZxE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/64c5a9-b379-4999-af7a-3c0fa18c58cb/1/1zCimUHvvHp5J_ApSB4scloaZxE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/64c5a9-b379-4999-af7a-3c0fa18c58cb/1/1zCimUHvvHp5J_ApSB4scloaZxE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 81:54:08:a8:17:4f:1d:f7:05:91:a0:6a:b1:d5:fd:4a:09:e0: bb:1b:4e:cb:e7:88:11:51:05:69:74:5a:41:d7:ec:24:5c:fe: 88:f8:ed:b9:10:62:62:c8:59:15:5d:a3:ac:15:aa:f7:3d:95: 30:fa:91:79:9e:6c:e4:93:55:c3:56:69:4a:b0:e4:c6:c8:a9: d9:89:18:8b:ea:4b:27:36:cd:4a:2a:b2:62:ea:87:a0:9e:e4: 71:10:f6:6f:e5:c2:2b:63:67:67:23:c5:ed:dd:57:d0:35:48: e9:dc:f4:1e:fc:0f:07:f4:a5:11:cb:23:1e:2c:e0:04:b9:b2: d2:0d:2d:13:3d:39:1c:99:49:3c:fe:a4:74:a7:97:6a:86:3b: 51:05:c6:2a:8c:67:57:f3:be:ab:4f:1f:29:46:29:3e:ad:2a: 41:30:ab:2b:4c:25:20:bb:3c:56:67:1e:7c:04:0c:d3:af:b3: f3:2f:ae:ae:3e:b6:2c:74:51:f5:3f:29:ed:91:67:e2:f0:67: 39:04:9c:f1:5d:64:d4:f9:25:38:12:7e:bb:13:fe:07:76:61: ed:23:9a:f4:ea:46:68:4c:1f:a7:83:c5:45:bd:7c:5b:3a:bf: d2:da:36:4f:94:fc:7c:c1:00:51:7f:0a:e1:47:d2:b8:4b:a5: 64:d0:ed:50 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtnn4otHPdp92tR+0PxTY6BMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ3MzBhMjk5NDFlZmJjN2E3OTI3ZjAyOTQ4MWUyYzcyNWEx YTY3MTEwHhcNMjUxMjI5MDEwMTA3WhcNMjUxMjMwMDEwMTA3WjAzMTEwLwYDVQQD EygxYWJiYjMwOTBlNTMzOWE2MGQ4MTkyODhiNjYyZWNhY2M5ZDUzODQ2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs7imehpfdRBx8VmgK4mwRST5dIfa X8ZGNLk5P7XQMZeMlZepYR0hCZufr0oNoTvHDiTUsQaG3LJWiOLQLMbxhm9IMJ5k 3lg6mbeIqc5tv4WNetwsd4VjLqw0tiRSRdFmRHL4IWeItNKsWnHqHfmlo3IS3aiQ 3I1AKtOwpprybZI2uQOruLGbe7xXbeZLmw35f69xD+wMmy5symvkLAW34+ouU88H VICZfSQ8Ka97HmbzufcscXA6Nq1r5ybRLK4TUBCNriKnJDXcKhHqu0tmkgtYzV/q pcpTeGPPHVrxsQYoXv6hQILzzwwQrczflprHyoLV3MHbo9DCfrrO+FCl1QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBq7swkOUzmmDYGSiLZi7KzJ1ThGMB8GA1UdIwQY MBaAFNcwoplB77x6eSfwKUgeLHJaGmcRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMXpDaW1VSHZ2SHA1Sl9BcFNCNHNjbG9hWnhFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZi82NGM1YTktYjM3OS00OTk5LWFmN2Et M2MwZmExOGM1OGNiLzEvMXpDaW1VSHZ2SHA1Sl9BcFNCNHNjbG9hWnhFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZi82NGM1YTktYjM3OS00OTk5LWFmN2EtM2MwZmExOGM1OGNi LzEvMXpDaW1VSHZ2SHA1Sl9BcFNCNHNjbG9hWnhFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgVQIqBdP HfcFkaBqsdX9SgnguxtOy+eIEVEFaXRaQdfsJFz+iPjtuRBiYshZFV2jrBWq9z2V MPqReZ5s5JNVw1ZpSrDkxsip2YkYi+pLJzbNSiqyYuqHoJ7kcRD2b+XCK2NnZyPF 7d1X0DVI6dz0HvwPB/SlEcsjHizgBLmy0g0tEz05HJlJPP6kdKeXaoY7UQXGKoxn V/O+q08fKUYpPq0qQTCrK0wlILs8VmcefAQM06+z8y+urj62LHRR9T8p7ZFn4vBn OQSc8V1k1PklOBJ+uxP+B3Zh7SOa9OpGaEwfp4PFRb18Wzq/0to2T5T8fMEAUX8K 4UfSuEulZNDtUA== -----END CERTIFICATE-----Generated at Mon Dec 29 04:15:56 2025 by rpki-client