This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/96a524-2e1b-4e9e-b2d8-a9c3122984c5/1/zE1IcI2lBUlZ5hilguKMFV_vET8.mft File: zE1IcI2lBUlZ5hilguKMFV_vET8.mft (raw, json) Hash identifier: CM+5Gh6qsZ5RzzrOr4DXkhi9bILpo6YiIu8D7kijslk= Subject key identifier: 3C:3E:9A:68:7F:54:74:5F:B6:02:3F:69:2A:5C:76:54:29:70:0A:BC Authority key identifier: CC:4D:48:70:8D:A5:05:49:59:E6:18:A5:82:E2:8C:15:5F:EF:11:3F Certificate issuer: /CN=cc4d48708da5054959e618a582e28c155fef113f Certificate serial: 019B3F7EFB43CDD193C7C4C3450A4F7C7A2C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zE1IcI2lBUlZ5hilguKMFV_vET8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/96a524-2e1b-4e9e-b2d8-a9c3122984c5/1/zE1IcI2lBUlZ5hilguKMFV_vET8.mft Manifest number: 06E5 Signing time: Sun 21 Dec 2025 06:00:45 +0000 Manifest this update: Sun 21 Dec 2025 06:00:45 +0000 Manifest next update: Mon 22 Dec 2025 06:00:45 +0000 Files and hashes: 1: r9Ux985jnVmfKHLZzNH9_T06wzU.roa (hash: SP4ahRSwbqs6nOlIBz3rDf0O3m+DJabQsDxWQ8oLOwM=) 2: zE1IcI2lBUlZ5hilguKMFV_vET8.crl (hash: N9Hy/nW6HWfrLJ3F+y65AftdOGJ1Py0C8E5GzYLjpc0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/96a524-2e1b-4e9e-b2d8-a9c3122984c5/1/zE1IcI2lBUlZ5hilguKMFV_vET8.crl rsync://rpki.ripe.net/repository/DEFAULT/10/96a524-2e1b-4e9e-b2d8-a9c3122984c5/1/zE1IcI2lBUlZ5hilguKMFV_vET8.mft rsync://rpki.ripe.net/repository/DEFAULT/zE1IcI2lBUlZ5hilguKMFV_vET8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3f:7e:fb:43:cd:d1:93:c7:c4:c3:45:0a:4f:7c:7a:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cc4d48708da5054959e618a582e28c155fef113f Validity Not Before: Dec 21 06:00:45 2025 GMT Not After : Dec 22 06:00:45 2025 GMT Subject: CN=3c3e9a687f54745fb6023f692a5c765429700abc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:97:c6:73:00:7b:7d:57:f9:5a:a7:dc:d1:a8: 87:b2:e5:e7:b0:b0:c4:32:45:57:70:27:1d:3f:e1: 12:e7:94:31:fd:ad:2a:a7:61:82:cc:14:f3:8b:fa: 0f:b7:06:56:0c:ed:9e:d5:f5:05:d6:24:8b:15:86: 3b:27:33:9d:0f:d5:85:fb:a1:7f:67:05:df:28:d0: 40:fe:e6:7b:56:02:09:1f:27:a1:f5:09:13:a1:9a: 00:c2:f7:d4:ed:3d:a2:d4:b6:f2:ea:9a:55:87:3c: 0b:ca:51:eb:39:6c:8c:bd:67:ca:6e:13:82:91:bd: f3:14:37:29:fe:6a:4c:71:c4:94:0c:21:99:52:21: cb:63:b0:c5:cc:6c:7c:2a:d7:e9:53:2c:dc:50:6e: 36:2d:c2:c7:e5:c2:7d:35:d7:29:bb:c7:58:70:47: a3:57:9c:c2:d0:7e:17:0b:8c:70:fb:32:53:54:c0: 20:94:87:18:45:34:77:e4:a5:a3:9f:9a:ef:07:8e: 95:0b:73:7d:83:a4:fa:c4:28:9f:61:f2:23:a4:23: 64:89:c8:c1:5e:64:92:b8:bd:83:2d:b9:e1:7c:de: c2:d5:d2:7a:5d:af:b6:6c:d6:4e:42:da:1e:fa:55: f5:b3:d7:f8:64:f2:a1:92:f5:6f:a2:5b:2d:b5:4a: ad:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:3E:9A:68:7F:54:74:5F:B6:02:3F:69:2A:5C:76:54:29:70:0A:BC X509v3 Authority Key Identifier: keyid:CC:4D:48:70:8D:A5:05:49:59:E6:18:A5:82:E2:8C:15:5F:EF:11:3F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zE1IcI2lBUlZ5hilguKMFV_vET8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/96a524-2e1b-4e9e-b2d8-a9c3122984c5/1/zE1IcI2lBUlZ5hilguKMFV_vET8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/10/96a524-2e1b-4e9e-b2d8-a9c3122984c5/1/zE1IcI2lBUlZ5hilguKMFV_vET8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2d:11:5c:ef:a5:7d:dc:f0:ec:63:ff:3c:88:5a:a7:32:34:af: cf:9c:59:42:03:94:4e:23:39:1d:37:55:b0:10:70:a9:19:da: fc:a5:ff:07:38:cb:d8:93:78:b6:59:2c:9a:11:71:66:84:86: 99:97:0e:68:44:9a:78:90:23:80:10:5f:2a:7d:19:ab:c1:b3: 7e:d7:7b:e6:f9:66:db:56:fa:49:f3:45:02:f8:dc:60:af:f2: 6a:1e:45:2e:1c:76:3e:d6:16:2c:f3:67:b0:15:5f:52:d0:bd: 87:53:bb:8b:77:a2:78:06:df:3a:70:c9:b5:b0:3e:ee:db:2f: 0f:2e:3f:58:03:15:09:54:e5:47:48:ca:41:fe:f1:71:00:43: 1e:5a:fb:06:7c:42:8d:84:75:73:23:f6:b0:2f:be:4c:7e:7e: 65:6e:7f:f7:0b:b3:c4:87:67:1c:a9:8c:92:d4:26:33:03:53: 9e:39:be:03:31:bf:91:1a:8a:3f:b7:46:64:65:47:0a:01:73: fa:fd:8e:db:86:11:d4:7e:2a:5c:1c:ef:5c:1f:cb:bb:8d:fd: 46:90:5d:16:f3:1a:83:dc:a3:80:a4:0a:7b:45:83:d8:57:bf: c3:4f:fa:98:c2:4f:13:7d:60:96:21:92:4c:20:c9:cc:3a:9e: ee:25:19:97 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs/fvtDzdGTx8TDRQpPfHosMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNjNGQ0ODcwOGRhNTA1NDk1OWU2MThhNTgyZTI4YzE1NWZl ZjExM2YwHhcNMjUxMjIxMDYwMDQ1WhcNMjUxMjIyMDYwMDQ1WjAzMTEwLwYDVQQD EygzYzNlOWE2ODdmNTQ3NDVmYjYwMjNmNjkyYTVjNzY1NDI5NzAwYWJjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnpfGcwB7fVf5Wqfc0aiHsuXnsLDE MkVXcCcdP+ES55Qx/a0qp2GCzBTzi/oPtwZWDO2e1fUF1iSLFYY7JzOdD9WF+6F/ ZwXfKNBA/uZ7VgIJHyeh9QkToZoAwvfU7T2i1Lby6ppVhzwLylHrOWyMvWfKbhOC kb3zFDcp/mpMccSUDCGZUiHLY7DFzGx8KtfpUyzcUG42LcLH5cJ9Ndcpu8dYcEej V5zC0H4XC4xw+zJTVMAglIcYRTR35KWjn5rvB46VC3N9g6T6xCifYfIjpCNkicjB XmSSuL2DLbnhfN7C1dJ6Xa+2bNZOQtoe+lX1s9f4ZPKhkvVvolsttUqteQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDw+mmh/VHRftgI/aSpcdlQpcAq8MB8GA1UdIwQY MBaAFMxNSHCNpQVJWeYYpYLijBVf7xE/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvekUxSWNJMmxCVWxaNWhpbGd1S01GVl92RVQ4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC85NmE1MjQtMmUxYi00ZTllLWIyZDgt YTljMzEyMjk4NGM1LzEvekUxSWNJMmxCVWxaNWhpbGd1S01GVl92RVQ4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMC85NmE1MjQtMmUxYi00ZTllLWIyZDgtYTljMzEyMjk4NGM1 LzEvekUxSWNJMmxCVWxaNWhpbGd1S01GVl92RVQ4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALRFc76V9 3PDsY/88iFqnMjSvz5xZQgOUTiM5HTdVsBBwqRna/KX/BzjL2JN4tlksmhFxZoSG mZcOaESaeJAjgBBfKn0Zq8Gzftd75vlm21b6SfNFAvjcYK/yah5FLhx2PtYWLPNn sBVfUtC9h1O7i3eieAbfOnDJtbA+7tsvDy4/WAMVCVTlR0jKQf7xcQBDHlr7BnxC jYR1cyP2sC++TH5+ZW5/9wuzxIdnHKmMktQmMwNTnjm+AzG/kRqKP7dGZGVHCgFz +v2O24YR1H4qXBzvXB/Lu439RpBdFvMag9yjgKQKe0WD2Fe/w0/6mMJPE31gliGS TCDJzDqe7iUZlw== -----END CERTIFICATE-----Generated at Sun Dec 21 10:04:15 2025 by rpki-client