This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/f22743-1898-47e5-96e2-f797e1f544d9/1/z431Kt_i_Oaulvb-BdFAieAkfO4.mft File: z431Kt_i_Oaulvb-BdFAieAkfO4.mft (raw, json) Hash identifier: BnLfbnCLdLnER+vDCMzWPy4CIBKtOL/pDBNH2DQf5QU= Subject key identifier: 50:BD:7D:EE:EB:82:16:AB:EF:63:80:0F:A4:8A:53:3E:E8:9F:52:FC Authority key identifier: CF:8D:F5:2A:DF:E2:FC:E6:AE:96:F6:FE:05:D1:40:89:E0:24:7C:EE Certificate issuer: /CN=cf8df52adfe2fce6ae96f6fe05d14089e0247cee Certificate serial: 019B51F2DF9C54536C0DF7FB761AB52EE579 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z431Kt_i_Oaulvb-BdFAieAkfO4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/f22743-1898-47e5-96e2-f797e1f544d9/1/z431Kt_i_Oaulvb-BdFAieAkfO4.mft Manifest number: 0F48 Signing time: Wed 24 Dec 2025 20:00:29 +0000 Manifest this update: Wed 24 Dec 2025 20:00:29 +0000 Manifest next update: Thu 25 Dec 2025 20:00:29 +0000 Files and hashes: 1: bKLPz97n1fyeQY7tRgFpUGwaGko.roa (hash: FI1BN6cDTbhHTXeu2LM7vTppLhImBVy2yuzHdJKMz2g=) 2: z431Kt_i_Oaulvb-BdFAieAkfO4.crl (hash: iK5Z09pw/0KT0fa8b/I15fMGRWGp2cH4TT2LMUmVUus=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/f22743-1898-47e5-96e2-f797e1f544d9/1/z431Kt_i_Oaulvb-BdFAieAkfO4.crl rsync://rpki.ripe.net/repository/DEFAULT/12/f22743-1898-47e5-96e2-f797e1f544d9/1/z431Kt_i_Oaulvb-BdFAieAkfO4.mft rsync://rpki.ripe.net/repository/DEFAULT/z431Kt_i_Oaulvb-BdFAieAkfO4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 25 Dec 2025 20:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:51:f2:df:9c:54:53:6c:0d:f7:fb:76:1a:b5:2e:e5:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cf8df52adfe2fce6ae96f6fe05d14089e0247cee Validity Not Before: Dec 24 20:00:29 2025 GMT Not After : Dec 25 20:00:29 2025 GMT Subject: CN=50bd7deeeb8216abef63800fa48a533ee89f52fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:ae:37:94:a7:f7:f4:6b:77:c1:58:ed:63:06: 23:e7:99:d0:f0:bd:01:9a:12:ba:83:0e:ce:3c:a8: 1c:ec:31:5c:55:e4:5f:bf:f7:32:b3:a6:f4:4a:2d: c2:74:ae:6b:b5:f1:33:a3:2b:38:a9:47:73:03:ea: f5:8a:a5:a8:bf:09:1d:73:65:36:b1:e1:cd:b8:64: 07:6b:58:fa:26:09:38:9c:98:ac:85:08:ea:af:7e: 2d:37:89:66:9d:d8:cf:6b:c0:db:10:61:61:74:a7: cb:79:df:83:9d:bf:3c:e8:f4:f1:22:45:89:8b:f9: 51:7f:24:e6:a7:7f:26:d2:6e:9a:3f:eb:ac:0e:59: a9:24:01:62:bb:7b:07:7f:21:10:24:db:04:ba:25: f0:5c:ec:0f:10:2c:19:fe:e3:78:27:d5:89:1e:05: bc:b2:a2:25:26:4c:ac:8f:c5:b0:ff:1f:ff:41:5c: 38:c0:0a:71:8c:c7:7b:0e:4e:2c:b3:d7:f1:3e:5b: 43:ca:c2:70:72:cc:93:cc:11:47:61:f2:34:08:85: 6c:3d:85:63:80:c9:27:69:af:ef:c2:1b:0c:44:d7: a1:1d:cf:cb:7f:ee:9f:3b:c5:a3:75:95:98:f8:58: d6:4f:d3:12:92:ee:58:87:e9:3c:9e:f7:71:b9:a9: ba:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:BD:7D:EE:EB:82:16:AB:EF:63:80:0F:A4:8A:53:3E:E8:9F:52:FC X509v3 Authority Key Identifier: keyid:CF:8D:F5:2A:DF:E2:FC:E6:AE:96:F6:FE:05:D1:40:89:E0:24:7C:EE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z431Kt_i_Oaulvb-BdFAieAkfO4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/f22743-1898-47e5-96e2-f797e1f544d9/1/z431Kt_i_Oaulvb-BdFAieAkfO4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/f22743-1898-47e5-96e2-f797e1f544d9/1/z431Kt_i_Oaulvb-BdFAieAkfO4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a0:8d:fe:ec:b3:c8:ca:c0:92:c8:c3:bc:d7:e2:ce:04:88:89: da:65:43:3c:ff:b4:83:ab:e5:5e:5d:80:eb:84:0f:55:a0:00: a5:03:0f:bf:9d:01:d3:a4:8e:7d:cd:6e:6c:11:73:73:97:70: 38:82:cd:da:ce:46:c9:c8:15:5d:99:16:65:38:f1:63:71:30: e1:ef:ff:07:d8:07:e7:30:06:ac:dd:5c:5f:ca:7d:cf:33:10: 79:c5:18:df:49:05:ec:28:d3:44:02:0f:62:d4:66:c2:32:86: 12:65:9b:ec:f3:83:e8:43:4a:68:c8:7d:96:1f:c7:8d:3f:33: 2a:db:d6:fe:d1:74:a9:96:06:1b:71:b1:d2:cd:5f:98:a0:9a: e0:e6:e5:a0:5b:bb:f0:54:56:00:43:6c:6d:c7:75:a5:34:e0: 12:cc:1c:7f:05:44:c0:8a:95:57:69:8d:4f:f0:4a:3a:fc:ac: 0f:84:4a:51:5d:c0:d5:df:52:40:5f:05:84:a9:1d:13:a9:f5: a6:ce:0e:fc:3e:43:40:eb:ed:c3:3c:35:c4:ae:0c:d1:55:92: 0c:85:04:8b:27:4f:27:5c:84:86:da:2b:c7:af:45:be:2d:ce: 43:87:86:e4:05:99:9c:67:1e:c0:85:17:87:cb:29:f4:77:94: 1e:93:27:35 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtR8t+cVFNsDff7dhq1LuV5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNmOGRmNTJhZGZlMmZjZTZhZTk2ZjZmZTA1ZDE0MDg5ZTAy NDdjZWUwHhcNMjUxMjI0MjAwMDI5WhcNMjUxMjI1MjAwMDI5WjAzMTEwLwYDVQQD Eyg1MGJkN2RlZWViODIxNmFiZWY2MzgwMGZhNDhhNTMzZWU4OWY1MmZjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsa43lKf39Gt3wVjtYwYj55nQ8L0B mhK6gw7OPKgc7DFcVeRfv/cys6b0Si3CdK5rtfEzoys4qUdzA+r1iqWovwkdc2U2 seHNuGQHa1j6Jgk4nJishQjqr34tN4lmndjPa8DbEGFhdKfLed+Dnb886PTxIkWJ i/lRfyTmp38m0m6aP+usDlmpJAFiu3sHfyEQJNsEuiXwXOwPECwZ/uN4J9WJHgW8 sqIlJkysj8Ww/x//QVw4wApxjMd7Dk4ss9fxPltDysJwcsyTzBFHYfI0CIVsPYVj gMknaa/vwhsMRNehHc/Lf+6fO8WjdZWY+FjWT9MSku5Yh+k8nvdxuam6bQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFC9fe7rghar72OAD6SKUz7on1L8MB8GA1UdIwQY MBaAFM+N9Srf4vzmrpb2/gXRQIngJHzuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvejQzMUt0X2lfT2F1bHZiLUJkRkFpZUFrZk80LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9mMjI3NDMtMTg5OC00N2U1LTk2ZTIt Zjc5N2UxZjU0NGQ5LzEvejQzMUt0X2lfT2F1bHZiLUJkRkFpZUFrZk80Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi9mMjI3NDMtMTg5OC00N2U1LTk2ZTItZjc5N2UxZjU0NGQ5 LzEvejQzMUt0X2lfT2F1bHZiLUJkRkFpZUFrZk80LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoI3+7LPI ysCSyMO81+LOBIiJ2mVDPP+0g6vlXl2A64QPVaAApQMPv50B06SOfc1ubBFzc5dw OILN2s5GycgVXZkWZTjxY3Ew4e//B9gH5zAGrN1cX8p9zzMQecUY30kF7CjTRAIP YtRmwjKGEmWb7POD6ENKaMh9lh/HjT8zKtvW/tF0qZYGG3Gx0s1fmKCa4ObloFu7 8FRWAENsbcd1pTTgEswcfwVEwIqVV2mNT/BKOvysD4RKUV3A1d9SQF8FhKkdE6n1 ps4O/D5DQOvtwzw1xK4M0VWSDIUEiydPJ1yEhtorx69Fvi3OQ4eG5AWZnGcewIUX h8sp9HeUHpMnNQ== -----END CERTIFICATE-----Generated at Thu Dec 25 05:16:24 2025 by rpki-client