This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/7d5e1c-9d79-4b39-b560-e997e558d73a/1/z0DiVgZlGgdUhMcJ-nZtgNrVLZw.mft File: z0DiVgZlGgdUhMcJ-nZtgNrVLZw.mft (raw, json) Hash identifier: G5z7+uyCIL721nPpjP6skMaC8YJqz53NhYqkaCDcJA0= Subject key identifier: 4A:71:C2:DC:54:49:82:97:17:46:BA:90:B4:6D:20:1D:6C:86:F2:AF Authority key identifier: CF:40:E2:56:06:65:1A:07:54:84:C7:09:FA:76:6D:80:DA:D5:2D:9C Certificate issuer: /CN=cf40e25606651a075484c709fa766d80dad52d9c Certificate serial: 019B3A910A5F9D0FF3B36E303830712811D5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z0DiVgZlGgdUhMcJ-nZtgNrVLZw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/7d5e1c-9d79-4b39-b560-e997e558d73a/1/z0DiVgZlGgdUhMcJ-nZtgNrVLZw.mft Manifest number: 0593 Signing time: Sat 20 Dec 2025 07:02:22 +0000 Manifest this update: Sat 20 Dec 2025 07:02:22 +0000 Manifest next update: Sun 21 Dec 2025 07:02:22 +0000 Files and hashes: 1: hGH_yKtqtaewmmke-m1I7cISSH0.roa (hash: T3QXU6gMQq0RcA3qUlvm1jUKiUtDYtXE4Lz78+TSbU8=) 2: z0DiVgZlGgdUhMcJ-nZtgNrVLZw.crl (hash: N/y/b3dWTgML341oW12OMLcsUD+8Ton8XdptnC2YNZ4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/7d5e1c-9d79-4b39-b560-e997e558d73a/1/z0DiVgZlGgdUhMcJ-nZtgNrVLZw.crl rsync://rpki.ripe.net/repository/DEFAULT/2c/7d5e1c-9d79-4b39-b560-e997e558d73a/1/z0DiVgZlGgdUhMcJ-nZtgNrVLZw.mft rsync://rpki.ripe.net/repository/DEFAULT/z0DiVgZlGgdUhMcJ-nZtgNrVLZw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 01:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3a:91:0a:5f:9d:0f:f3:b3:6e:30:38:30:71:28:11:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cf40e25606651a075484c709fa766d80dad52d9c Validity Not Before: Dec 20 07:02:22 2025 GMT Not After : Dec 21 07:02:22 2025 GMT Subject: CN=4a71c2dc544982971746ba90b46d201d6c86f2af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:19:29:56:9a:cf:e4:53:6a:1a:f5:dc:96:eb: 0c:eb:d9:20:ba:67:a8:eb:b8:fa:78:f7:e4:c8:a2: 59:72:4c:68:d8:a9:69:79:e8:f8:ab:d6:a9:03:c1: a9:e8:4b:d2:4c:53:13:e3:d7:c9:5b:0a:ab:92:d6: df:8d:2c:69:be:65:4f:ba:08:70:22:5a:25:2c:9a: a8:c4:5b:8c:41:11:a5:7d:32:30:f2:bf:ba:9a:0a: 9b:01:29:74:86:85:d6:bc:3d:27:ae:df:04:81:35: 5f:45:fd:8b:cb:7c:b9:ff:70:17:17:92:d6:99:c2: b3:03:1c:51:e9:ff:c3:fa:06:74:2e:bb:e5:cb:32: 1b:db:95:44:63:ce:5f:fc:dd:6a:21:6c:da:a9:f5: 9b:5a:5f:6e:38:32:fc:44:be:db:46:bf:59:e4:d3: 87:af:fc:b2:84:62:51:fc:3a:71:c3:78:af:79:40: 6f:6c:57:b1:86:e2:fb:51:fc:c2:7f:9d:93:a1:a1: 86:03:5b:9b:9d:3a:36:92:20:e9:2b:06:ce:ce:29: 84:58:2e:7e:48:e0:c0:75:46:de:68:6a:f8:bb:43: 55:51:8c:75:2a:4c:a8:83:d2:13:12:c1:a9:1d:78: bd:2f:b1:1c:6b:62:aa:8c:28:3e:22:2d:41:20:4a: 68:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:71:C2:DC:54:49:82:97:17:46:BA:90:B4:6D:20:1D:6C:86:F2:AF X509v3 Authority Key Identifier: keyid:CF:40:E2:56:06:65:1A:07:54:84:C7:09:FA:76:6D:80:DA:D5:2D:9C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z0DiVgZlGgdUhMcJ-nZtgNrVLZw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/7d5e1c-9d79-4b39-b560-e997e558d73a/1/z0DiVgZlGgdUhMcJ-nZtgNrVLZw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/7d5e1c-9d79-4b39-b560-e997e558d73a/1/z0DiVgZlGgdUhMcJ-nZtgNrVLZw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 17:e2:82:40:a5:6a:3e:d1:80:48:2c:d9:4b:ad:e0:be:1f:b8: e6:9a:a0:66:8b:1f:8a:fe:fd:93:02:55:5a:86:df:37:15:ba: a0:bb:1e:e2:ce:fe:76:42:0d:1a:71:d2:e5:ac:88:c8:b7:76: 74:54:d0:0d:58:fe:32:79:1b:e5:62:bf:eb:0c:05:4e:b1:49: 89:d8:b1:ec:81:63:7d:1b:02:20:c0:04:de:ea:ac:32:6c:52: 25:a4:1d:ec:bd:30:21:63:b5:ed:89:a5:d4:09:52:f4:cb:44: 49:f4:20:89:d4:d8:d2:74:25:db:48:9d:62:84:d1:22:ef:88: 1a:7e:41:7d:31:81:05:18:de:0f:33:0f:e0:bf:c6:13:7b:55: c5:93:bf:d2:4d:77:af:b8:85:ef:06:8d:1d:7a:e9:57:18:53: 39:57:f6:df:c9:b4:0c:2d:a4:7e:16:f5:df:2f:1b:2d:9a:33: fc:1b:10:0c:3d:29:2e:3e:96:69:bb:34:00:e4:31:39:3a:4c: 68:9a:4d:07:8f:9a:c0:91:ec:25:44:97:80:67:ed:84:53:7f: 13:dc:ba:7a:1a:a5:a9:fd:03:22:36:96:eb:fa:71:04:2d:b7: 6e:37:62:ae:ee:b3:b7:12:d9:e0:56:78:d4:c8:9d:43:11:50: 78:32:36:e3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs6kQpfnQ/zs24wODBxKBHVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNmNDBlMjU2MDY2NTFhMDc1NDg0YzcwOWZhNzY2ZDgwZGFk NTJkOWMwHhcNMjUxMjIwMDcwMjIyWhcNMjUxMjIxMDcwMjIyWjAzMTEwLwYDVQQD Eyg0YTcxYzJkYzU0NDk4Mjk3MTc0NmJhOTBiNDZkMjAxZDZjODZmMmFmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwBkpVprP5FNqGvXclusM69kgumeo 67j6ePfkyKJZckxo2Klpeej4q9apA8Gp6EvSTFMT49fJWwqrktbfjSxpvmVPughw IlolLJqoxFuMQRGlfTIw8r+6mgqbASl0hoXWvD0nrt8EgTVfRf2Ly3y5/3AXF5LW mcKzAxxR6f/D+gZ0LrvlyzIb25VEY85f/N1qIWzaqfWbWl9uODL8RL7bRr9Z5NOH r/yyhGJR/Dpxw3iveUBvbFexhuL7UfzCf52ToaGGA1ubnTo2kiDpKwbOzimEWC5+ SODAdUbeaGr4u0NVUYx1Kkyog9ITEsGpHXi9L7Eca2KqjCg+Ii1BIEpoRQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEpxwtxUSYKXF0a6kLRtIB1shvKvMB8GA1UdIwQY MBaAFM9A4lYGZRoHVITHCfp2bYDa1S2cMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvejBEaVZnWmxHZ2RVaE1jSi1uWnRnTnJWTFp3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYy83ZDVlMWMtOWQ3OS00YjM5LWI1NjAt ZTk5N2U1NThkNzNhLzEvejBEaVZnWmxHZ2RVaE1jSi1uWnRnTnJWTFp3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYy83ZDVlMWMtOWQ3OS00YjM5LWI1NjAtZTk5N2U1NThkNzNh LzEvejBEaVZnWmxHZ2RVaE1jSi1uWnRnTnJWTFp3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAF+KCQKVq PtGASCzZS63gvh+45pqgZosfiv79kwJVWobfNxW6oLse4s7+dkINGnHS5ayIyLd2 dFTQDVj+Mnkb5WK/6wwFTrFJidix7IFjfRsCIMAE3uqsMmxSJaQd7L0wIWO17Yml 1AlS9MtESfQgidTY0nQl20idYoTRIu+IGn5BfTGBBRjeDzMP4L/GE3tVxZO/0k13 r7iF7waNHXrpVxhTOVf238m0DC2kfhb13y8bLZoz/BsQDD0pLj6Wabs0AOQxOTpM aJpNB4+awJHsJUSXgGfthFN/E9y6ehqlqf0DIjaW6/pxBC23bjdiru6ztxLZ4FZ4 1MidQxFQeDI24w== -----END CERTIFICATE-----Generated at Sat Dec 20 10:34:42 2025 by rpki-client