This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/b76d34-5f07-42d8-a131-a8781add2423/1/zf9bPNry6tG8MwlBG_lJLNmHr7o.mft File: zf9bPNry6tG8MwlBG_lJLNmHr7o.mft (raw, json) Hash identifier: l3D2AIqUi9J2OPnja1ML1AFHCn3QrKDpt9kyocYpjHk= Subject key identifier: 61:21:B9:93:58:48:13:E1:A5:3A:F7:B5:02:40:61:A0:08:82:B4:81 Authority key identifier: CD:FF:5B:3C:DA:F2:EA:D1:BC:33:09:41:1B:F9:49:2C:D9:87:AF:BA Certificate issuer: /CN=cdff5b3cdaf2ead1bc3309411bf9492cd987afba Certificate serial: 019B476FA317D2BE6CB3DF57EFBA2937189A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zf9bPNry6tG8MwlBG_lJLNmHr7o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/b76d34-5f07-42d8-a131-a8781add2423/1/zf9bPNry6tG8MwlBG_lJLNmHr7o.mft Manifest number: 05E8 Signing time: Mon 22 Dec 2025 19:00:57 +0000 Manifest this update: Mon 22 Dec 2025 19:00:57 +0000 Manifest next update: Tue 23 Dec 2025 19:00:57 +0000 Files and hashes: 1: k3TRYEDrQBrO6eEJRbpRNKXsKDY.roa (hash: 4LCjfvPAnVknZ+aHhkSXzNTjWeSMT085uGaEj2C566Q=) 2: zf9bPNry6tG8MwlBG_lJLNmHr7o.crl (hash: EMLJgXKwbCA1X+Kqissm/PUuVRLmrgHLnEUsxHz7T98=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/b76d34-5f07-42d8-a131-a8781add2423/1/zf9bPNry6tG8MwlBG_lJLNmHr7o.crl rsync://rpki.ripe.net/repository/DEFAULT/13/b76d34-5f07-42d8-a131-a8781add2423/1/zf9bPNry6tG8MwlBG_lJLNmHr7o.mft rsync://rpki.ripe.net/repository/DEFAULT/zf9bPNry6tG8MwlBG_lJLNmHr7o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 23 Dec 2025 19:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:47:6f:a3:17:d2:be:6c:b3:df:57:ef:ba:29:37:18:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cdff5b3cdaf2ead1bc3309411bf9492cd987afba Validity Not Before: Dec 22 19:00:57 2025 GMT Not After : Dec 23 19:00:57 2025 GMT Subject: CN=6121b993584813e1a53af7b5024061a00882b481 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:1c:88:d9:b5:dd:69:61:bc:b7:19:3e:ee:13: 80:0a:2c:6c:c7:9d:5b:4d:78:31:f8:60:73:99:39: 67:8c:13:3c:98:ac:c9:73:2e:62:da:1a:a4:8b:ae: 88:90:39:bd:70:a8:e1:81:ab:8a:11:e0:56:43:a3: 0e:1f:f3:8f:e3:d9:60:21:10:42:c2:00:15:be:da: f2:b4:95:36:7e:d8:bd:53:d1:e5:32:a2:1f:4b:d1: 06:a1:95:7b:99:f1:10:29:08:95:af:bc:8d:1f:bb: 4e:a8:c5:71:ab:e7:cf:4a:05:e6:f7:7d:7a:07:65: 3f:3f:60:02:0d:48:ef:bc:b3:8e:f8:2e:82:1b:04: d6:5c:aa:a3:65:7c:f7:7d:52:ae:56:78:8a:2a:38: d4:57:8a:55:58:3a:fd:e9:c9:07:71:2a:d2:9f:53: 15:91:b3:4d:85:67:d0:23:a4:a7:53:25:17:e4:04: ba:85:a4:c2:0b:f3:a0:a1:11:3b:40:43:87:93:52: db:61:8f:2b:51:c0:5d:d8:ed:42:fe:a2:06:bd:52: 7e:47:13:74:ca:49:a3:5f:26:1a:cf:4d:3a:65:a8: f2:aa:96:7b:b4:c7:19:37:cb:aa:e9:05:30:88:8c: 3c:02:18:14:c5:c3:a3:9c:a1:bd:40:70:96:1e:f0: 46:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:21:B9:93:58:48:13:E1:A5:3A:F7:B5:02:40:61:A0:08:82:B4:81 X509v3 Authority Key Identifier: keyid:CD:FF:5B:3C:DA:F2:EA:D1:BC:33:09:41:1B:F9:49:2C:D9:87:AF:BA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zf9bPNry6tG8MwlBG_lJLNmHr7o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/b76d34-5f07-42d8-a131-a8781add2423/1/zf9bPNry6tG8MwlBG_lJLNmHr7o.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/13/b76d34-5f07-42d8-a131-a8781add2423/1/zf9bPNry6tG8MwlBG_lJLNmHr7o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 77:3c:d4:5e:d3:1c:5d:37:a6:17:73:f0:22:6c:66:12:99:63: 1f:78:1c:0e:96:5d:2d:d1:71:9d:79:dc:a4:cc:74:f6:e1:ae: 28:a3:a5:40:05:3f:2d:d2:c3:a7:a0:03:a2:b0:08:a1:69:47: 15:7d:1d:72:ee:78:15:2b:b9:84:13:64:9c:a2:c9:39:3d:ec: 35:73:4e:1a:e9:6a:8b:10:13:1f:c1:c8:34:e0:c6:f0:19:9c: eb:23:12:4b:09:09:04:e4:e0:3b:0c:97:e7:9f:ab:32:99:76: c5:b3:f3:9b:c3:4c:8d:ab:34:d5:aa:a1:48:b7:03:b5:fc:f4: 7e:42:6e:9a:b4:c7:72:9f:89:7f:9c:1c:23:88:9d:c3:23:f5: 72:3e:c6:ff:39:6a:e0:5f:4f:e0:78:d6:cf:bc:91:85:9b:74: d5:e6:b0:7a:22:3e:2f:c4:e6:09:b4:a0:a8:5c:e5:91:84:f4: bd:1c:76:64:15:8d:08:18:a4:5b:62:89:4f:e5:18:a4:c6:85: 27:61:97:97:85:6f:e6:79:d8:c2:29:5a:8a:2c:4b:95:e3:1b: e3:5d:96:9b:52:ef:d9:52:1d:a7:9c:ac:88:06:8f:6c:68:dd: 75:06:73:6a:69:7b:52:04:fb:3f:f8:61:3c:40:9e:85:d3:0e: 59:f5:5e:96 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtHb6MX0r5ss99X77opNxiaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNkZmY1YjNjZGFmMmVhZDFiYzMzMDk0MTFiZjk0OTJjZDk4 N2FmYmEwHhcNMjUxMjIyMTkwMDU3WhcNMjUxMjIzMTkwMDU3WjAzMTEwLwYDVQQD Eyg2MTIxYjk5MzU4NDgxM2UxYTUzYWY3YjUwMjQwNjFhMDA4ODJiNDgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvhyI2bXdaWG8txk+7hOACixsx51b TXgx+GBzmTlnjBM8mKzJcy5i2hqki66IkDm9cKjhgauKEeBWQ6MOH/OP49lgIRBC wgAVvtrytJU2fti9U9HlMqIfS9EGoZV7mfEQKQiVr7yNH7tOqMVxq+fPSgXm9316 B2U/P2ACDUjvvLOO+C6CGwTWXKqjZXz3fVKuVniKKjjUV4pVWDr96ckHcSrSn1MV kbNNhWfQI6SnUyUX5AS6haTCC/OgoRE7QEOHk1LbYY8rUcBd2O1C/qIGvVJ+RxN0 ykmjXyYaz006ZajyqpZ7tMcZN8uq6QUwiIw8AhgUxcOjnKG9QHCWHvBGiwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGEhuZNYSBPhpTr3tQJAYaAIgrSBMB8GA1UdIwQY MBaAFM3/Wzza8urRvDMJQRv5SSzZh6+6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvemY5YlBOcnk2dEc4TXdsQkdfbEpMTm1IcjdvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9iNzZkMzQtNWYwNy00MmQ4LWExMzEt YTg3ODFhZGQyNDIzLzEvemY5YlBOcnk2dEc4TXdsQkdfbEpMTm1IcjdvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMy9iNzZkMzQtNWYwNy00MmQ4LWExMzEtYTg3ODFhZGQyNDIz LzEvemY5YlBOcnk2dEc4TXdsQkdfbEpMTm1IcjdvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdzzUXtMc XTemF3PwImxmEpljH3gcDpZdLdFxnXncpMx09uGuKKOlQAU/LdLDp6ADorAIoWlH FX0dcu54FSu5hBNknKLJOT3sNXNOGulqixATH8HINODG8Bmc6yMSSwkJBOTgOwyX 55+rMpl2xbPzm8NMjas01aqhSLcDtfz0fkJumrTHcp+Jf5wcI4idwyP1cj7G/zlq 4F9P4HjWz7yRhZt01eaweiI+L8TmCbSgqFzlkYT0vRx2ZBWNCBikW2KJT+UYpMaF J2GXl4Vv5nnYwilaiixLleMb412Wm1Lv2VIdp5ysiAaPbGjddQZzaml7UgT7P/hh PECehdMOWfVelg== -----END CERTIFICATE-----Generated at Tue Dec 23 02:52:38 2025 by rpki-client