This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/e2f4e1-a70a-4ca1-921c-594c69fb0711/1/sZ1GpqM2NTqQ8XT6mQ_CJBIB6xw.mft File: sZ1GpqM2NTqQ8XT6mQ_CJBIB6xw.mft (raw, json) Hash identifier: 2X0FbgAv4cmeeIMmxmDG56OGaL7WQIYCLmlFGC3cVhQ= Subject key identifier: 94:21:7D:03:51:A1:A5:AC:0C:B5:5D:72:D3:59:4B:33:8C:59:6C:48 Authority key identifier: B1:9D:46:A6:A3:36:35:3A:90:F1:74:FA:99:0F:C2:24:12:01:EB:1C Certificate issuer: /CN=b19d46a6a336353a90f174fa990fc2241201eb1c Certificate serial: 019B39B403BF8C2F5E9E75CEC295C8486A62 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sZ1GpqM2NTqQ8XT6mQ_CJBIB6xw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/e2f4e1-a70a-4ca1-921c-594c69fb0711/1/sZ1GpqM2NTqQ8XT6mQ_CJBIB6xw.mft Manifest number: 070D Signing time: Sat 20 Dec 2025 03:00:57 +0000 Manifest this update: Sat 20 Dec 2025 03:00:57 +0000 Manifest next update: Sun 21 Dec 2025 03:00:57 +0000 Files and hashes: 1: sZ1GpqM2NTqQ8XT6mQ_CJBIB6xw.crl (hash: V6KmAfXPBgOjtCPvj87HXPw5UO04V01DHVFXHPgURtk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/e2f4e1-a70a-4ca1-921c-594c69fb0711/1/sZ1GpqM2NTqQ8XT6mQ_CJBIB6xw.crl rsync://rpki.ripe.net/repository/DEFAULT/66/e2f4e1-a70a-4ca1-921c-594c69fb0711/1/sZ1GpqM2NTqQ8XT6mQ_CJBIB6xw.mft rsync://rpki.ripe.net/repository/DEFAULT/sZ1GpqM2NTqQ8XT6mQ_CJBIB6xw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 03:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:39:b4:03:bf:8c:2f:5e:9e:75:ce:c2:95:c8:48:6a:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b19d46a6a336353a90f174fa990fc2241201eb1c Validity Not Before: Dec 20 03:00:57 2025 GMT Not After : Dec 21 03:00:57 2025 GMT Subject: CN=94217d0351a1a5ac0cb55d72d3594b338c596c48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:58:77:fe:70:46:e4:6f:68:ef:d1:9a:b7:7c: ee:2c:ec:ee:a2:d4:c8:60:6a:0f:84:10:57:d9:e2: 43:7e:dd:f7:a8:0a:68:50:ee:86:ce:94:c9:25:66: e2:94:67:44:02:33:4c:31:91:6c:ba:b7:be:86:2d: 9d:85:24:65:4a:86:5c:6b:2c:5b:a3:26:68:1b:ae: c8:3a:1a:13:35:01:3a:a0:67:42:9c:58:85:9b:ea: 9d:11:27:8e:39:59:11:79:5e:a7:26:14:fe:4e:a3: 4c:fd:5e:c4:2d:87:74:9b:d4:33:a4:bb:33:d0:92: 34:6c:e3:8e:58:98:24:cc:cf:5b:63:16:da:13:dc: e8:9d:56:e9:01:22:66:7e:59:79:f4:6b:6e:1e:84: 4c:3f:62:dc:52:a0:b5:b1:6f:d1:e2:c3:35:bd:f3: 62:e1:7b:e2:ee:59:e2:08:18:f1:f7:3f:23:86:bc: 82:6f:fc:3b:e1:2a:1e:a3:c8:5c:62:f2:ad:18:a6: 0d:bb:e6:d3:13:ce:9c:71:bd:aa:e1:f1:39:d8:90: 22:3d:ff:2b:c6:81:33:62:bb:5f:7a:0d:4f:06:2f: 05:55:c4:c6:d1:ba:a2:71:3a:e7:5e:b8:32:67:2c: 43:59:81:ed:37:9c:48:ef:63:99:29:d0:89:03:20: bf:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:21:7D:03:51:A1:A5:AC:0C:B5:5D:72:D3:59:4B:33:8C:59:6C:48 X509v3 Authority Key Identifier: keyid:B1:9D:46:A6:A3:36:35:3A:90:F1:74:FA:99:0F:C2:24:12:01:EB:1C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sZ1GpqM2NTqQ8XT6mQ_CJBIB6xw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/e2f4e1-a70a-4ca1-921c-594c69fb0711/1/sZ1GpqM2NTqQ8XT6mQ_CJBIB6xw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/66/e2f4e1-a70a-4ca1-921c-594c69fb0711/1/sZ1GpqM2NTqQ8XT6mQ_CJBIB6xw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 31:19:0f:81:e1:88:65:33:b8:dc:4c:7f:6d:b1:0c:36:ef:f1: 29:94:42:d7:2c:2b:48:61:48:32:65:3b:ac:a6:7d:3c:13:2f: 9d:27:3c:c0:81:79:9a:74:50:81:35:9f:1d:6c:3d:cb:a1:67: af:8a:c7:3d:ab:d3:ac:44:f8:ef:30:f2:0d:4c:60:0d:5d:20: e2:53:1e:9f:81:6c:a4:53:99:6a:62:7f:37:2e:e0:c2:cb:33: c2:9b:45:83:fe:de:5f:11:02:1b:fb:fd:a4:de:a2:eb:9e:91: e0:6f:22:62:4d:fc:7f:0f:d6:ce:d6:88:a7:fe:4e:77:43:3f: cf:b3:ae:a0:4b:8d:89:5a:94:8f:80:f4:ba:3a:f6:27:ab:c1: 26:3e:d8:ad:18:15:cf:d7:b8:78:0b:40:cb:87:a6:89:9b:3d: aa:4e:a2:a5:04:20:3a:a6:5f:87:cb:97:0b:f8:20:c8:c6:a4: 31:9a:31:10:cf:63:ef:b7:af:b9:d1:12:e5:f8:a1:bf:47:2b: 7f:fc:f9:a5:de:5c:bc:0b:9e:1e:cf:83:32:e3:2c:71:63:12: c5:79:4c:aa:96:f8:49:72:c9:2a:45:fc:b5:7e:7b:6f:f6:e6: 83:be:75:0d:98:b3:c5:34:d7:aa:2e:0a:cb:03:a1:1f:65:75: f0:5b:c2:6b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs5tAO/jC9ennXOwpXISGpiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIxOWQ0NmE2YTMzNjM1M2E5MGYxNzRmYTk5MGZjMjI0MTIw MWViMWMwHhcNMjUxMjIwMDMwMDU3WhcNMjUxMjIxMDMwMDU3WjAzMTEwLwYDVQQD Eyg5NDIxN2QwMzUxYTFhNWFjMGNiNTVkNzJkMzU5NGIzMzhjNTk2YzQ4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArFh3/nBG5G9o79Gat3zuLOzuotTI YGoPhBBX2eJDft33qApoUO6GzpTJJWbilGdEAjNMMZFsure+hi2dhSRlSoZcayxb oyZoG67IOhoTNQE6oGdCnFiFm+qdESeOOVkReV6nJhT+TqNM/V7ELYd0m9QzpLsz 0JI0bOOOWJgkzM9bYxbaE9zonVbpASJmfll59GtuHoRMP2LcUqC1sW/R4sM1vfNi 4Xvi7lniCBjx9z8jhryCb/w74Soeo8hcYvKtGKYNu+bTE86ccb2q4fE52JAiPf8r xoEzYrtfeg1PBi8FVcTG0bqicTrnXrgyZyxDWYHtN5xI72OZKdCJAyC/WwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJQhfQNRoaWsDLVdctNZSzOMWWxIMB8GA1UdIwQY MBaAFLGdRqajNjU6kPF0+pkPwiQSAescMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc1oxR3BxTTJOVHFROFhUNm1RX0NKQklCNnh3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni9lMmY0ZTEtYTcwYS00Y2ExLTkyMWMt NTk0YzY5ZmIwNzExLzEvc1oxR3BxTTJOVHFROFhUNm1RX0NKQklCNnh3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ni9lMmY0ZTEtYTcwYS00Y2ExLTkyMWMtNTk0YzY5ZmIwNzEx LzEvc1oxR3BxTTJOVHFROFhUNm1RX0NKQklCNnh3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMRkPgeGI ZTO43Ex/bbEMNu/xKZRC1ywrSGFIMmU7rKZ9PBMvnSc8wIF5mnRQgTWfHWw9y6Fn r4rHPavTrET47zDyDUxgDV0g4lMen4FspFOZamJ/Ny7gwsszwptFg/7eXxECG/v9 pN6i656R4G8iYk38fw/WztaIp/5Od0M/z7OuoEuNiVqUj4D0ujr2J6vBJj7YrRgV z9e4eAtAy4emiZs9qk6ipQQgOqZfh8uXC/ggyMakMZoxEM9j77evudES5fihv0cr f/z5pd5cvAueHs+DMuMscWMSxXlMqpb4SXLJKkX8tX57b/bmg751DZizxTTXqi4K ywOhH2V18FvCaw== -----END CERTIFICATE-----Generated at Sat Dec 20 12:21:53 2025 by rpki-client