This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/0716df-341b-4a08-a451-596225031ee3/1/zyJMhK66hZuQyJNsumFn7kxE7Oc.mft File: zyJMhK66hZuQyJNsumFn7kxE7Oc.mft (raw, json) Hash identifier: htVNAHpgAKY1+L0QV7T2nh2L3zLI+oeayMioGmXZEwo= Subject key identifier: AC:89:D5:11:62:7D:2F:45:57:05:A4:1F:3F:FB:A6:64:D3:55:3B:15 Authority key identifier: CF:22:4C:84:AE:BA:85:9B:90:C8:93:6C:BA:61:67:EE:4C:44:EC:E7 Certificate issuer: /CN=cf224c84aeba859b90c8936cba6167ee4c44ece7 Certificate serial: 019B3BA2969C4521CE600375D1DB34A56627 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zyJMhK66hZuQyJNsumFn7kxE7Oc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/0716df-341b-4a08-a451-596225031ee3/1/zyJMhK66hZuQyJNsumFn7kxE7Oc.mft Manifest number: 07FB Signing time: Sat 20 Dec 2025 12:01:09 +0000 Manifest this update: Sat 20 Dec 2025 12:01:09 +0000 Manifest next update: Sun 21 Dec 2025 12:01:09 +0000 Files and hashes: 1: n3lj8Imlf54KOqF_Kqk-h0qcwVk.roa (hash: 2POYPsdH+jKImtpOmPpWEy8yit+ATY6Eb8geD/u6vK4=) 2: zyJMhK66hZuQyJNsumFn7kxE7Oc.crl (hash: WkCNMJ4L3uxKCFGJ5MnwZppTba2rkbCzKEBhSOSJRvs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/0716df-341b-4a08-a451-596225031ee3/1/zyJMhK66hZuQyJNsumFn7kxE7Oc.crl rsync://rpki.ripe.net/repository/DEFAULT/5f/0716df-341b-4a08-a451-596225031ee3/1/zyJMhK66hZuQyJNsumFn7kxE7Oc.mft rsync://rpki.ripe.net/repository/DEFAULT/zyJMhK66hZuQyJNsumFn7kxE7Oc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 09:56:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3b:a2:96:9c:45:21:ce:60:03:75:d1:db:34:a5:66:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cf224c84aeba859b90c8936cba6167ee4c44ece7 Validity Not Before: Dec 20 12:01:09 2025 GMT Not After : Dec 21 12:01:09 2025 GMT Subject: CN=ac89d511627d2f455705a41f3ffba664d3553b15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:d8:d8:fa:22:5b:71:1c:ed:bf:99:e9:ca:40: e1:82:d9:d9:fe:4a:e8:f0:82:aa:9d:0f:8c:ab:70: 29:e5:e9:23:5a:42:0a:35:85:51:57:87:63:97:a8: 01:8d:c6:4f:c4:90:12:0e:d8:c3:96:65:b6:9b:32: 3b:f5:f4:d6:32:6c:ea:e4:6c:e1:d9:0c:ed:93:b0: 28:38:c4:7e:23:db:4f:50:f7:20:79:2e:1a:4b:ca: e8:c2:01:12:50:67:76:a0:48:0e:ce:df:45:1b:0d: c2:1c:78:52:1d:bb:3c:53:f0:7f:c9:bb:78:b0:61: 30:a6:f9:24:20:bb:06:65:dc:29:ec:15:5e:07:be: 2f:9d:1b:ae:d7:a5:3c:ca:16:47:ec:e0:a1:e4:95: d6:fa:c2:e7:31:66:64:bb:25:b4:1b:a7:23:6d:ca: 88:62:ef:c7:cc:b4:81:3c:72:ac:fe:c2:3c:42:57: f5:2c:85:5c:46:ac:c1:ba:43:99:7c:2b:ff:66:7c: 51:25:a0:f4:a0:22:e8:d9:56:9b:38:05:f1:69:20: 31:ad:e4:e3:f7:f6:a4:5d:fe:30:8e:11:5c:f5:71: 2f:90:bf:12:06:9b:8a:58:54:da:5d:8c:f6:52:71: 1c:00:57:de:ab:04:88:d7:29:4f:bf:4e:6c:e7:9f: 98:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:89:D5:11:62:7D:2F:45:57:05:A4:1F:3F:FB:A6:64:D3:55:3B:15 X509v3 Authority Key Identifier: keyid:CF:22:4C:84:AE:BA:85:9B:90:C8:93:6C:BA:61:67:EE:4C:44:EC:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zyJMhK66hZuQyJNsumFn7kxE7Oc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/0716df-341b-4a08-a451-596225031ee3/1/zyJMhK66hZuQyJNsumFn7kxE7Oc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/0716df-341b-4a08-a451-596225031ee3/1/zyJMhK66hZuQyJNsumFn7kxE7Oc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2b:ce:d4:89:6b:c7:b7:aa:93:66:67:79:f8:d4:14:3b:3f:46: 9f:ad:3e:e6:af:6b:9a:5a:21:95:37:06:f1:c3:f7:cb:2c:0c: f2:08:cf:d2:f4:2e:4e:7f:45:8f:89:c2:f5:85:b9:6a:e8:b2: 99:c7:c0:c2:e3:1a:6a:26:88:03:36:6b:02:51:1c:06:69:a5: 43:bd:d0:00:c2:d4:5f:60:af:0c:70:52:a1:d1:1d:1d:1d:8f: 99:cd:08:cf:15:98:89:db:e3:e0:1e:80:70:6a:ad:4e:b9:ae: 24:37:8d:f5:a5:59:be:a2:20:22:20:33:f8:49:34:8d:26:f7: d1:97:2a:e3:59:7d:ae:04:84:7a:d0:58:ae:92:81:c3:d0:f3: f1:32:fb:e2:7f:5f:6d:e5:68:e2:a8:d8:d5:be:5a:e4:1c:42: af:72:02:5b:0b:0a:f0:91:00:55:18:bd:6d:52:91:18:f2:83: 97:1b:69:53:cb:0e:6a:e3:0e:ab:a9:86:06:d6:d2:33:9d:7d: 74:83:18:f4:3d:65:86:f1:71:eb:3c:3e:d6:e6:bd:38:c1:fa: 3d:c9:08:42:9b:91:09:04:7d:64:3d:61:86:99:c8:d6:a4:15: e3:94:c3:47:0f:11:54:b0:12:a4:94:47:1b:be:15:d8:fe:53: fe:5a:6f:2c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs7opacRSHOYAN10ds0pWYnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNmMjI0Yzg0YWViYTg1OWI5MGM4OTM2Y2JhNjE2N2VlNGM0 NGVjZTcwHhcNMjUxMjIwMTIwMTA5WhcNMjUxMjIxMTIwMTA5WjAzMTEwLwYDVQQD EyhhYzg5ZDUxMTYyN2QyZjQ1NTcwNWE0MWYzZmZiYTY2NGQzNTUzYjE1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAttjY+iJbcRztv5npykDhgtnZ/kro 8IKqnQ+Mq3Ap5ekjWkIKNYVRV4djl6gBjcZPxJASDtjDlmW2mzI79fTWMmzq5Gzh 2Qztk7AoOMR+I9tPUPcgeS4aS8rowgESUGd2oEgOzt9FGw3CHHhSHbs8U/B/ybt4 sGEwpvkkILsGZdwp7BVeB74vnRuu16U8yhZH7OCh5JXW+sLnMWZkuyW0G6cjbcqI Yu/HzLSBPHKs/sI8Qlf1LIVcRqzBukOZfCv/ZnxRJaD0oCLo2VabOAXxaSAxreTj 9/akXf4wjhFc9XEvkL8SBpuKWFTaXYz2UnEcAFfeqwSI1ylPv05s55+YwQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKyJ1RFifS9FVwWkHz/7pmTTVTsVMB8GA1UdIwQY MBaAFM8iTISuuoWbkMiTbLphZ+5MROznMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvenlKTWhLNjZoWnVReUpOc3VtRm43a3hFN09jLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi8wNzE2ZGYtMzQxYi00YTA4LWE0NTEt NTk2MjI1MDMxZWUzLzEvenlKTWhLNjZoWnVReUpOc3VtRm43a3hFN09jLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Zi8wNzE2ZGYtMzQxYi00YTA4LWE0NTEtNTk2MjI1MDMxZWUz LzEvenlKTWhLNjZoWnVReUpOc3VtRm43a3hFN09jLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAK87UiWvH t6qTZmd5+NQUOz9Gn60+5q9rmlohlTcG8cP3yywM8gjP0vQuTn9Fj4nC9YW5auiy mcfAwuMaaiaIAzZrAlEcBmmlQ73QAMLUX2CvDHBSodEdHR2Pmc0IzxWYidvj4B6A cGqtTrmuJDeN9aVZvqIgIiAz+Ek0jSb30Zcq41l9rgSEetBYrpKBw9Dz8TL74n9f beVo4qjY1b5a5BxCr3ICWwsK8JEAVRi9bVKRGPKDlxtpU8sOauMOq6mGBtbSM519 dIMY9D1lhvFx6zw+1ua9OMH6PckIQpuRCQR9ZD1hhpnI1qQV45TDRw8RVLASpJRH G74V2P5T/lpvLA== -----END CERTIFICATE-----Generated at Sat Dec 20 16:17:34 2025 by rpki-client