This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/cb373f-764d-4532-8333-62d94af801b5/1/Z3emKEbfTtvlZmuJ6EIOkZqwhic.mft File: Z3emKEbfTtvlZmuJ6EIOkZqwhic.mft (raw, json) Hash identifier: fpH/vxim+UEOOStYk+zvSDvWWXKOSGg8pZBqbHKgPHQ= Subject key identifier: 63:F0:BE:4B:01:D2:37:B9:27:03:04:AA:1A:6F:8D:DF:39:97:35:C6 Authority key identifier: 67:77:A6:28:46:DF:4E:DB:E5:66:6B:89:E8:42:0E:91:9A:B0:86:27 Certificate issuer: /CN=6777a62846df4edbe5666b89e8420e919ab08627 Certificate serial: 019B42B703B007443D63AAC2B849D0F368A2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z3emKEbfTtvlZmuJ6EIOkZqwhic.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/cb373f-764d-4532-8333-62d94af801b5/1/Z3emKEbfTtvlZmuJ6EIOkZqwhic.mft Manifest number: 16E6 Signing time: Sun 21 Dec 2025 21:00:48 +0000 Manifest this update: Sun 21 Dec 2025 21:00:48 +0000 Manifest next update: Mon 22 Dec 2025 21:00:48 +0000 Files and hashes: 1: Z3emKEbfTtvlZmuJ6EIOkZqwhic.crl (hash: dlc8kzADCCIBSVBEghaC6BZ0dYhvLJfouHJqEW0B6lI=) 2: ZBPuASXAJcjpb4z2Gk47z8Bokws.roa (hash: xXQRbhIxvcjZLo2Nk1OZPyhXjwNTzt2gl2oGbinvPSA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/cb373f-764d-4532-8333-62d94af801b5/1/Z3emKEbfTtvlZmuJ6EIOkZqwhic.crl rsync://rpki.ripe.net/repository/DEFAULT/2f/cb373f-764d-4532-8333-62d94af801b5/1/Z3emKEbfTtvlZmuJ6EIOkZqwhic.mft rsync://rpki.ripe.net/repository/DEFAULT/Z3emKEbfTtvlZmuJ6EIOkZqwhic.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 21:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:42:b7:03:b0:07:44:3d:63:aa:c2:b8:49:d0:f3:68:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6777a62846df4edbe5666b89e8420e919ab08627 Validity Not Before: Dec 21 21:00:48 2025 GMT Not After : Dec 22 21:00:48 2025 GMT Subject: CN=63f0be4b01d237b9270304aa1a6f8ddf399735c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:93:f6:ee:22:75:2f:80:fc:02:59:d4:bc:67: 9a:55:63:ab:35:9a:8f:a0:40:e5:82:a3:f1:9a:64: 51:09:9e:b7:45:d4:61:52:1a:9c:38:3e:cb:f6:17: 91:92:a3:86:d8:4b:48:4f:ef:70:b9:2c:23:51:f9: dc:70:fb:a7:2c:40:f1:a4:d8:ff:67:aa:9f:42:0c: 6d:3b:06:b2:ae:20:bd:66:89:d6:ab:43:98:7c:f4: 45:c5:f3:8d:c4:da:24:a2:27:08:a6:09:85:2e:16: 65:ce:f4:43:1e:4a:0d:15:2b:cf:c4:00:f7:a1:c1: 33:8f:ac:3d:28:a5:af:c6:b3:e1:86:0f:ba:38:2d: d5:ff:42:f7:6a:25:d0:b3:18:74:43:a3:dd:70:e3: df:28:92:4b:bf:94:ec:aa:26:e0:30:f8:d5:5f:17: eb:dd:6b:00:e3:35:82:72:c3:2e:25:8f:6a:d5:cc: 9b:90:dc:4d:a4:7d:24:6d:4c:b7:8c:90:1b:5e:30: 36:82:1f:1a:19:4c:a0:ac:0d:00:12:52:c1:25:ff: 95:70:e5:b9:23:75:4b:4f:ba:83:9c:60:42:55:22: dd:65:e1:eb:5a:b5:3d:43:bc:af:9f:d5:3e:d7:cd: 3a:f5:96:3b:e8:9c:ec:e0:01:46:b6:8b:94:81:67: 7a:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:F0:BE:4B:01:D2:37:B9:27:03:04:AA:1A:6F:8D:DF:39:97:35:C6 X509v3 Authority Key Identifier: keyid:67:77:A6:28:46:DF:4E:DB:E5:66:6B:89:E8:42:0E:91:9A:B0:86:27 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z3emKEbfTtvlZmuJ6EIOkZqwhic.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/cb373f-764d-4532-8333-62d94af801b5/1/Z3emKEbfTtvlZmuJ6EIOkZqwhic.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/cb373f-764d-4532-8333-62d94af801b5/1/Z3emKEbfTtvlZmuJ6EIOkZqwhic.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 42:17:bd:c6:5b:8a:a7:c9:be:f2:8a:49:3d:6c:19:8b:db:f3: 3a:f6:58:b1:90:10:7e:48:4f:96:22:62:1c:81:ab:7b:5d:3f: 61:46:ab:15:70:3b:b1:76:09:54:c7:a5:2f:cd:c1:f7:50:4e: 09:10:f7:fe:b5:65:39:52:78:62:60:94:ec:11:8e:5f:8d:e2: 16:db:64:e2:7f:9a:24:67:b0:1c:cc:93:f3:c2:32:81:61:34: 27:45:d6:1d:1f:ce:c6:5e:35:84:22:57:0a:f7:a6:d6:8c:3b: 2a:63:a1:65:af:07:50:e5:d8:fa:9c:df:c0:f5:a7:af:e9:ae: 1a:b9:4d:f7:8a:f5:dc:e3:ca:78:ab:1f:57:33:fc:27:e5:d8: c8:db:eb:4a:b7:f8:c5:5c:43:aa:b8:5b:ec:aa:35:56:68:86: 58:83:4a:78:f7:7d:2f:13:5d:4c:4a:4b:ff:16:8f:68:e6:7d: 71:8a:ef:bf:f3:82:8d:24:a1:04:51:ff:13:fb:2d:98:2a:d7: 95:98:4a:c0:34:f4:1d:13:f4:22:cf:29:01:de:62:8e:67:49: 12:bb:ed:7b:b2:87:f2:f6:1b:2d:05:fc:a9:04:03:78:07:02: 4b:ea:31:9a:94:e3:70:e8:37:2f:7d:a7:fd:cf:b4:e3:c5:3e: 95:b8:98:2a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtCtwOwB0Q9Y6rCuEnQ82iiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY3NzdhNjI4NDZkZjRlZGJlNTY2NmI4OWU4NDIwZTkxOWFi MDg2MjcwHhcNMjUxMjIxMjEwMDQ4WhcNMjUxMjIyMjEwMDQ4WjAzMTEwLwYDVQQD Eyg2M2YwYmU0YjAxZDIzN2I5MjcwMzA0YWExYTZmOGRkZjM5OTczNWM2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnJP27iJ1L4D8AlnUvGeaVWOrNZqP oEDlgqPxmmRRCZ63RdRhUhqcOD7L9heRkqOG2EtIT+9wuSwjUfnccPunLEDxpNj/ Z6qfQgxtOwayriC9ZonWq0OYfPRFxfONxNokoicIpgmFLhZlzvRDHkoNFSvPxAD3 ocEzj6w9KKWvxrPhhg+6OC3V/0L3aiXQsxh0Q6PdcOPfKJJLv5TsqibgMPjVXxfr 3WsA4zWCcsMuJY9q1cybkNxNpH0kbUy3jJAbXjA2gh8aGUygrA0AElLBJf+VcOW5 I3VLT7qDnGBCVSLdZeHrWrU9Q7yvn9U+18069ZY76Jzs4AFGtouUgWd6HQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGPwvksB0je5JwMEqhpvjd85lzXGMB8GA1UdIwQY MBaAFGd3pihG307b5WZriehCDpGasIYnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWjNlbUtFYmZUdHZsWm11SjZFSU9rWnF3aGljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi9jYjM3M2YtNzY0ZC00NTMyLTgzMzMt NjJkOTRhZjgwMWI1LzEvWjNlbUtFYmZUdHZsWm11SjZFSU9rWnF3aGljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZi9jYjM3M2YtNzY0ZC00NTMyLTgzMzMtNjJkOTRhZjgwMWI1 LzEvWjNlbUtFYmZUdHZsWm11SjZFSU9rWnF3aGljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQhe9xluK p8m+8opJPWwZi9vzOvZYsZAQfkhPliJiHIGre10/YUarFXA7sXYJVMelL83B91BO CRD3/rVlOVJ4YmCU7BGOX43iFttk4n+aJGewHMyT88IygWE0J0XWHR/Oxl41hCJX Cvem1ow7KmOhZa8HUOXY+pzfwPWnr+muGrlN94r13OPKeKsfVzP8J+XYyNvrSrf4 xVxDqrhb7Ko1VmiGWINKePd9LxNdTEpL/xaPaOZ9cYrvv/OCjSShBFH/E/stmCrX lZhKwDT0HRP0Is8pAd5ijmdJErvte7KH8vYbLQX8qQQDeAcCS+oxmpTjcOg3L32n /c+048U+lbiYKg== -----END CERTIFICATE-----Generated at Mon Dec 22 02:51:08 2025 by rpki-client