This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/96a524-2e1b-4e9e-b2d8-a9c3122984c5/1/zE1IcI2lBUlZ5hilguKMFV_vET8.mft File: zE1IcI2lBUlZ5hilguKMFV_vET8.mft (raw, json) Hash identifier: vrDwAHz4Z1Rf3LMtiRRof0akHIjOrQ78ZJskI3Rtidg= Subject key identifier: A0:6E:D0:BB:5C:8B:41:79:1D:60:90:A8:9B:C7:96:51:7A:B1:1A:D4 Authority key identifier: CC:4D:48:70:8D:A5:05:49:59:E6:18:A5:82:E2:8C:15:5F:EF:11:3F Certificate issuer: /CN=cc4d48708da5054959e618a582e28c155fef113f Certificate serial: 019B5C76BA773DF7300B62B7076D04AC9396 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zE1IcI2lBUlZ5hilguKMFV_vET8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/96a524-2e1b-4e9e-b2d8-a9c3122984c5/1/zE1IcI2lBUlZ5hilguKMFV_vET8.mft Manifest number: 06F4 Signing time: Fri 26 Dec 2025 21:00:43 +0000 Manifest this update: Fri 26 Dec 2025 21:00:43 +0000 Manifest next update: Sat 27 Dec 2025 21:00:43 +0000 Files and hashes: 1: r9Ux985jnVmfKHLZzNH9_T06wzU.roa (hash: SP4ahRSwbqs6nOlIBz3rDf0O3m+DJabQsDxWQ8oLOwM=) 2: zE1IcI2lBUlZ5hilguKMFV_vET8.crl (hash: GnmMBIDcS/QV6WJ0eBAvERFoAbMlVEke4hslsv1D79k=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/96a524-2e1b-4e9e-b2d8-a9c3122984c5/1/zE1IcI2lBUlZ5hilguKMFV_vET8.crl rsync://rpki.ripe.net/repository/DEFAULT/10/96a524-2e1b-4e9e-b2d8-a9c3122984c5/1/zE1IcI2lBUlZ5hilguKMFV_vET8.mft rsync://rpki.ripe.net/repository/DEFAULT/zE1IcI2lBUlZ5hilguKMFV_vET8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 20:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5c:76:ba:77:3d:f7:30:0b:62:b7:07:6d:04:ac:93:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cc4d48708da5054959e618a582e28c155fef113f Validity Not Before: Dec 26 21:00:43 2025 GMT Not After : Dec 27 21:00:43 2025 GMT Subject: CN=a06ed0bb5c8b41791d6090a89bc796517ab11ad4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:61:47:9d:86:69:fc:e0:8a:f1:c4:d5:a5:f2: c7:54:82:aa:8c:b6:40:ec:0a:74:61:e8:9d:ff:e8: 59:7b:7c:39:23:90:ae:e0:a1:13:1f:71:16:2b:a9: 02:95:16:93:68:85:64:0b:9d:4a:57:8b:2f:af:1c: 3f:d0:2a:01:70:30:6c:3e:14:08:d9:99:61:9c:27: bb:9f:b3:fd:c1:c3:54:8e:02:db:eb:f8:9c:60:31: e5:45:30:01:13:37:40:54:33:39:27:9a:0f:2c:f5: bd:6c:36:3b:86:c3:ff:a5:16:c6:f9:67:76:d0:56: c8:f6:b2:b3:8f:63:2a:53:ec:a2:c3:a8:01:11:06: b3:50:71:54:75:23:0a:78:ff:fd:23:77:ef:07:6c: 21:f3:56:85:f1:be:2c:02:1d:f2:c6:ff:ad:7b:df: a5:79:dd:33:42:e9:a0:ee:da:2e:42:0f:46:76:e1: 06:39:54:4e:c9:5f:34:16:0f:c2:54:ca:a0:47:5b: 95:ff:d2:6a:ca:97:53:b3:58:e0:fb:73:06:6d:62: 42:56:ad:04:21:bd:de:dd:05:d5:aa:a1:f4:c3:1f: 88:0f:84:7f:a4:db:7b:74:07:1f:80:fe:72:1d:96: c6:98:0c:6b:0a:19:69:14:e9:ea:07:78:15:6a:97: 06:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:6E:D0:BB:5C:8B:41:79:1D:60:90:A8:9B:C7:96:51:7A:B1:1A:D4 X509v3 Authority Key Identifier: keyid:CC:4D:48:70:8D:A5:05:49:59:E6:18:A5:82:E2:8C:15:5F:EF:11:3F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zE1IcI2lBUlZ5hilguKMFV_vET8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/96a524-2e1b-4e9e-b2d8-a9c3122984c5/1/zE1IcI2lBUlZ5hilguKMFV_vET8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/10/96a524-2e1b-4e9e-b2d8-a9c3122984c5/1/zE1IcI2lBUlZ5hilguKMFV_vET8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7d:2f:df:e0:92:dd:38:65:bf:9a:a3:6f:8e:d5:af:fa:05:3e: 2f:db:b0:ef:9e:61:ae:59:f9:77:9f:6b:6b:0b:40:5c:f3:42: 8c:38:1b:42:82:a7:18:f8:4d:13:ba:93:de:9d:4e:28:6c:7c: e8:e4:1f:65:ab:6c:82:31:65:4f:40:7a:5c:6c:0e:81:5f:19: 1f:02:f7:85:ab:47:11:e0:36:4b:5a:95:eb:2e:4b:3d:e3:54: f0:23:32:5f:f3:46:cb:ed:a5:6e:f9:c8:62:de:3c:6b:b0:17: a0:10:d2:e3:2e:31:54:c2:b2:20:a2:4d:37:9c:c9:fd:4b:1a: 24:f2:50:84:e7:3e:27:a0:1c:0f:ea:75:89:19:8e:08:4d:d7: 3c:97:91:f9:9e:c6:4c:90:9a:90:6b:c1:8b:45:31:b0:be:43: c5:67:7f:5e:4c:fc:ce:53:f8:e0:06:3d:7a:7f:65:99:a7:20: f9:3f:c8:10:4d:38:be:3b:87:0d:6b:14:b6:3c:2c:af:7f:17: 84:82:f3:55:c1:8e:55:6c:7e:0d:5a:83:03:68:95:0b:64:2e: 03:9c:21:3d:d0:c6:a5:82:b3:5b:7c:01:18:f8:65:8c:6e:d3: 2a:77:88:50:2e:85:9c:12:91:0d:12:79:92:a1:bd:10:1c:ff: 47:ba:a8:50 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtcdrp3PfcwC2K3B20ErJOWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNjNGQ0ODcwOGRhNTA1NDk1OWU2MThhNTgyZTI4YzE1NWZl ZjExM2YwHhcNMjUxMjI2MjEwMDQzWhcNMjUxMjI3MjEwMDQzWjAzMTEwLwYDVQQD EyhhMDZlZDBiYjVjOGI0MTc5MWQ2MDkwYTg5YmM3OTY1MTdhYjExYWQ0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnmFHnYZp/OCK8cTVpfLHVIKqjLZA 7Ap0Yeid/+hZe3w5I5Cu4KETH3EWK6kClRaTaIVkC51KV4svrxw/0CoBcDBsPhQI 2ZlhnCe7n7P9wcNUjgLb6/icYDHlRTABEzdAVDM5J5oPLPW9bDY7hsP/pRbG+Wd2 0FbI9rKzj2MqU+yiw6gBEQazUHFUdSMKeP/9I3fvB2wh81aF8b4sAh3yxv+te9+l ed0zQumg7touQg9GduEGOVROyV80Fg/CVMqgR1uV/9JqypdTs1jg+3MGbWJCVq0E Ib3e3QXVqqH0wx+ID4R/pNt7dAcfgP5yHZbGmAxrChlpFOnqB3gVapcGTwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKBu0Ltci0F5HWCQqJvHllF6sRrUMB8GA1UdIwQY MBaAFMxNSHCNpQVJWeYYpYLijBVf7xE/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvekUxSWNJMmxCVWxaNWhpbGd1S01GVl92RVQ4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC85NmE1MjQtMmUxYi00ZTllLWIyZDgt YTljMzEyMjk4NGM1LzEvekUxSWNJMmxCVWxaNWhpbGd1S01GVl92RVQ4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMC85NmE1MjQtMmUxYi00ZTllLWIyZDgtYTljMzEyMjk4NGM1 LzEvekUxSWNJMmxCVWxaNWhpbGd1S01GVl92RVQ4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfS/f4JLd OGW/mqNvjtWv+gU+L9uw755hrln5d59rawtAXPNCjDgbQoKnGPhNE7qT3p1OKGx8 6OQfZatsgjFlT0B6XGwOgV8ZHwL3hatHEeA2S1qV6y5LPeNU8CMyX/NGy+2lbvnI Yt48a7AXoBDS4y4xVMKyIKJNN5zJ/UsaJPJQhOc+J6AcD+p1iRmOCE3XPJeR+Z7G TJCakGvBi0UxsL5DxWd/Xkz8zlP44AY9en9lmacg+T/IEE04vjuHDWsUtjwsr38X hILzVcGOVWx+DVqDA2iVC2QuA5whPdDGpYKzW3wBGPhljG7TKneIUC6FnBKRDRJ5 kqG9EBz/R7qoUA== -----END CERTIFICATE-----Generated at Sat Dec 27 04:04:16 2025 by rpki-client