This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/0716df-341b-4a08-a451-596225031ee3/1/zyJMhK66hZuQyJNsumFn7kxE7Oc.mft File: zyJMhK66hZuQyJNsumFn7kxE7Oc.mft (raw, json) Hash identifier: OvM5PBmPOBjtxc0vBbTS0k2IESfn7o2+Yh5j74mmkfE= Subject key identifier: 93:C7:69:1C:81:49:19:FA:52:CA:F6:1A:65:C9:24:C4:57:94:27:8A Authority key identifier: CF:22:4C:84:AE:BA:85:9B:90:C8:93:6C:BA:61:67:EE:4C:44:EC:E7 Certificate issuer: /CN=cf224c84aeba859b90c8936cba6167ee4c44ece7 Certificate serial: 019B50E03BCD6B71E20D38A916C47A0AE9F1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zyJMhK66hZuQyJNsumFn7kxE7Oc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/0716df-341b-4a08-a451-596225031ee3/1/zyJMhK66hZuQyJNsumFn7kxE7Oc.mft Manifest number: 0806 Signing time: Wed 24 Dec 2025 15:00:31 +0000 Manifest this update: Wed 24 Dec 2025 15:00:31 +0000 Manifest next update: Thu 25 Dec 2025 15:00:31 +0000 Files and hashes: 1: n3lj8Imlf54KOqF_Kqk-h0qcwVk.roa (hash: 2POYPsdH+jKImtpOmPpWEy8yit+ATY6Eb8geD/u6vK4=) 2: zyJMhK66hZuQyJNsumFn7kxE7Oc.crl (hash: 8YDE9xeZWxz3YIZyE75yptRmXeLl2xJd5kr97pda1js=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/0716df-341b-4a08-a451-596225031ee3/1/zyJMhK66hZuQyJNsumFn7kxE7Oc.crl rsync://rpki.ripe.net/repository/DEFAULT/5f/0716df-341b-4a08-a451-596225031ee3/1/zyJMhK66hZuQyJNsumFn7kxE7Oc.mft rsync://rpki.ripe.net/repository/DEFAULT/zyJMhK66hZuQyJNsumFn7kxE7Oc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 25 Dec 2025 14:30:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:50:e0:3b:cd:6b:71:e2:0d:38:a9:16:c4:7a:0a:e9:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cf224c84aeba859b90c8936cba6167ee4c44ece7 Validity Not Before: Dec 24 15:00:31 2025 GMT Not After : Dec 25 15:00:31 2025 GMT Subject: CN=93c7691c814919fa52caf61a65c924c45794278a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:64:d9:78:81:84:01:21:7c:82:a6:be:7f:cb: 38:7f:1a:47:6f:4f:10:47:b0:53:6c:9b:c3:88:39: ba:fd:7f:01:bf:09:71:1b:6a:b0:80:71:3e:c1:53: 69:08:1d:a9:06:1a:a5:f1:67:88:5a:a8:aa:4e:ab: 9e:bb:d3:7b:ab:27:a3:c0:73:a7:ac:bc:94:09:79: 24:e3:f1:66:88:3c:fd:95:62:10:c0:d0:6b:b0:95: 5b:e7:30:5a:05:c4:d1:7c:da:37:a7:a3:3e:54:94: dd:cc:aa:9b:8f:51:71:81:28:a5:e1:83:2a:31:c9: aa:bc:43:c1:e0:56:23:cc:b7:84:b0:f3:49:9d:cd: 2c:21:81:10:d9:da:b8:34:85:8c:3b:23:42:40:14: a1:23:46:b3:89:8f:09:11:12:22:ee:75:ba:e2:b8: 00:c5:12:48:c8:84:47:94:5b:ee:76:88:b6:0f:01: a5:65:a0:cd:93:34:07:81:c1:b1:6f:14:66:72:2b: 1f:3a:2e:6c:ea:9a:e2:ed:64:e9:59:35:8e:f6:96: 93:22:5f:b8:08:22:2d:14:d5:19:bc:95:2e:e3:8b: ec:a8:bb:67:d6:e7:3f:49:1a:79:e2:9c:03:c2:2a: 93:d6:68:bf:f8:ba:14:fd:49:be:2d:7a:d4:a4:00: 69:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:C7:69:1C:81:49:19:FA:52:CA:F6:1A:65:C9:24:C4:57:94:27:8A X509v3 Authority Key Identifier: keyid:CF:22:4C:84:AE:BA:85:9B:90:C8:93:6C:BA:61:67:EE:4C:44:EC:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zyJMhK66hZuQyJNsumFn7kxE7Oc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/0716df-341b-4a08-a451-596225031ee3/1/zyJMhK66hZuQyJNsumFn7kxE7Oc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/0716df-341b-4a08-a451-596225031ee3/1/zyJMhK66hZuQyJNsumFn7kxE7Oc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1b:4b:f7:2b:86:6e:eb:2c:8b:7d:00:41:16:e9:35:2a:ed:5f: 63:9c:8a:dc:cc:09:52:77:64:31:b6:83:35:74:86:46:ce:82: 7a:c9:85:83:78:c9:10:04:5c:ca:83:0f:01:09:2e:f0:a9:f5: 17:f6:85:02:55:e7:30:e5:72:bf:a3:40:1c:5e:65:d6:90:5b: 47:88:8b:cf:ca:1b:da:b8:6a:bd:65:ec:8e:5d:65:1e:48:12: b3:50:3a:4c:2a:49:ee:e3:b2:fd:0f:5b:eb:c0:61:d8:93:d2: 84:dc:b4:14:a6:3b:f9:23:6a:ae:c3:71:38:cb:c8:a2:17:72: a4:89:12:68:2e:2f:7c:88:e9:f9:85:c1:a3:cf:52:2a:c6:7a: 95:9e:99:be:0b:90:32:19:d9:97:c0:6d:bb:78:bb:1d:a2:2f: 8f:36:6f:c1:5d:4d:89:10:48:a9:c7:58:6c:a0:15:d4:b3:71: a4:0d:65:8f:a1:5f:dc:6c:a0:23:18:01:5c:44:45:db:f3:b5: 05:92:9f:32:b1:09:4f:62:4e:d2:b5:11:c6:59:9f:c4:74:d6: 9c:e1:fb:48:dc:b5:a0:76:bf:89:09:b8:fc:bd:05:7e:3c:dd: 08:d9:7a:eb:f8:fa:7f:92:4a:5e:c5:72:db:bf:88:3d:ec:a5: 1e:7c:5f:e0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtQ4DvNa3HiDTipFsR6CunxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNmMjI0Yzg0YWViYTg1OWI5MGM4OTM2Y2JhNjE2N2VlNGM0 NGVjZTcwHhcNMjUxMjI0MTUwMDMxWhcNMjUxMjI1MTUwMDMxWjAzMTEwLwYDVQQD Eyg5M2M3NjkxYzgxNDkxOWZhNTJjYWY2MWE2NWM5MjRjNDU3OTQyNzhhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvmTZeIGEASF8gqa+f8s4fxpHb08Q R7BTbJvDiDm6/X8BvwlxG2qwgHE+wVNpCB2pBhql8WeIWqiqTqueu9N7qyejwHOn rLyUCXkk4/FmiDz9lWIQwNBrsJVb5zBaBcTRfNo3p6M+VJTdzKqbj1FxgSil4YMq McmqvEPB4FYjzLeEsPNJnc0sIYEQ2dq4NIWMOyNCQBShI0aziY8JERIi7nW64rgA xRJIyIRHlFvudoi2DwGlZaDNkzQHgcGxbxRmcisfOi5s6pri7WTpWTWO9paTIl+4 CCItFNUZvJUu44vsqLtn1uc/SRp54pwDwiqT1mi/+LoU/Um+LXrUpABpRQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJPHaRyBSRn6Usr2GmXJJMRXlCeKMB8GA1UdIwQY MBaAFM8iTISuuoWbkMiTbLphZ+5MROznMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvenlKTWhLNjZoWnVReUpOc3VtRm43a3hFN09jLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi8wNzE2ZGYtMzQxYi00YTA4LWE0NTEt NTk2MjI1MDMxZWUzLzEvenlKTWhLNjZoWnVReUpOc3VtRm43a3hFN09jLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Zi8wNzE2ZGYtMzQxYi00YTA4LWE0NTEtNTk2MjI1MDMxZWUz LzEvenlKTWhLNjZoWnVReUpOc3VtRm43a3hFN09jLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAG0v3K4Zu 6yyLfQBBFuk1Ku1fY5yK3MwJUndkMbaDNXSGRs6CesmFg3jJEARcyoMPAQku8Kn1 F/aFAlXnMOVyv6NAHF5l1pBbR4iLz8ob2rhqvWXsjl1lHkgSs1A6TCpJ7uOy/Q9b 68Bh2JPShNy0FKY7+SNqrsNxOMvIohdypIkSaC4vfIjp+YXBo89SKsZ6lZ6ZvguQ MhnZl8Btu3i7HaIvjzZvwV1NiRBIqcdYbKAV1LNxpA1lj6Ff3GygIxgBXERF2/O1 BZKfMrEJT2JO0rURxlmfxHTWnOH7SNy1oHa/iQm4/L0FfjzdCNl66/j6f5JKXsVy 27+IPeylHnxf4A== -----END CERTIFICATE-----Generated at Wed Dec 24 23:28:35 2025 by rpki-client