This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/736db2-0c64-45ed-833a-a94dd8ccaf9f/1/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.mft File: ZNq6FdHTZstTCVQS0GSQ4jSY4XA.mft (raw, json) Hash identifier: zXk5+7Kd7Y5tK9RB8gfAj/iwIzH8x5xjljblRFfX6k4= Subject key identifier: 99:EE:26:F6:4B:39:C0:45:13:1C:43:D1:03:B4:24:54:C2:8D:53:22 Authority key identifier: 64:DA:BA:15:D1:D3:66:CB:53:09:54:12:D0:64:90:E2:34:98:E1:70 Certificate issuer: /CN=64daba15d1d366cb53095412d06490e23498e170 Certificate serial: 019B5977985A09D935C1BCD5DA5A0A7CEF73 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/736db2-0c64-45ed-833a-a94dd8ccaf9f/1/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.mft Manifest number: 1795 Signing time: Fri 26 Dec 2025 07:02:48 +0000 Manifest this update: Fri 26 Dec 2025 07:02:48 +0000 Manifest next update: Sat 27 Dec 2025 07:02:48 +0000 Files and hashes: 1: 7vdGx51ck_YIgYpkt1SPNVfsVKE.roa (hash: Nw+uAqY1I65YKmQSbXqROB23bDhd2atga2x/5hREPHM=) 2: ZNq6FdHTZstTCVQS0GSQ4jSY4XA.crl (hash: vxiQI+UOu0RRLEHCJfnu4WpSFugf739MYLTCMNBcz4s=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/736db2-0c64-45ed-833a-a94dd8ccaf9f/1/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.crl rsync://rpki.ripe.net/repository/DEFAULT/a2/736db2-0c64-45ed-833a-a94dd8ccaf9f/1/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.mft rsync://rpki.ripe.net/repository/DEFAULT/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:77:98:5a:09:d9:35:c1:bc:d5:da:5a:0a:7c:ef:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=64daba15d1d366cb53095412d06490e23498e170 Validity Not Before: Dec 26 07:02:48 2025 GMT Not After : Dec 27 07:02:48 2025 GMT Subject: CN=99ee26f64b39c045131c43d103b42454c28d5322 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:6f:41:6a:f9:11:4b:5f:51:09:f9:61:09:d9: 8f:4c:7d:28:ae:64:74:3f:4a:df:af:b9:db:63:66: 2a:08:f5:ab:c4:f7:1c:ec:db:35:07:a9:fe:08:38: fb:f6:c1:a7:be:ee:23:bf:40:77:62:e0:86:3b:a5: 49:26:55:c1:34:00:44:c0:9e:77:46:5c:c1:6d:cd: 8d:f5:ee:d5:9d:02:de:b5:85:ef:c0:39:a1:0d:cd: 14:23:f1:c6:f2:22:6d:6f:59:17:35:44:6b:25:c9: 0f:7f:b1:14:22:b8:af:9d:c3:8a:14:89:90:3f:1b: 0c:92:94:4c:16:c2:e9:f9:5c:6e:cd:72:f6:1e:8f: da:ea:ec:04:a4:35:da:5f:2a:cb:31:81:9e:43:c8: ff:81:16:d6:8f:88:e1:e9:70:8b:a4:f3:b2:34:55: 20:1f:eb:22:fe:a7:98:49:b5:83:e6:2e:5d:45:5e: 22:87:eb:30:e5:8f:f8:8b:00:ea:42:b4:76:29:9d: f5:f1:dd:c1:3c:54:d6:ac:5c:d7:be:35:73:59:2b: a6:a2:7e:1f:95:d6:17:83:d1:6c:14:b8:0a:86:84: 15:97:38:aa:bb:fe:e6:fd:e5:98:8d:4f:50:85:81: a0:f8:77:1f:c8:a0:17:d0:ab:37:fd:75:0c:50:f6: 7b:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:EE:26:F6:4B:39:C0:45:13:1C:43:D1:03:B4:24:54:C2:8D:53:22 X509v3 Authority Key Identifier: keyid:64:DA:BA:15:D1:D3:66:CB:53:09:54:12:D0:64:90:E2:34:98:E1:70 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/736db2-0c64-45ed-833a-a94dd8ccaf9f/1/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/736db2-0c64-45ed-833a-a94dd8ccaf9f/1/ZNq6FdHTZstTCVQS0GSQ4jSY4XA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 39:3e:58:c3:1e:01:8a:17:3f:8e:f3:1e:8f:81:a0:0f:3f:22: d9:33:3b:e3:83:2f:04:23:7d:7a:3b:9e:02:f7:48:10:80:73: 68:72:7e:c5:04:7b:1e:1b:9f:36:bd:39:92:17:43:52:be:94: 3f:88:fc:2e:02:bd:5e:e0:15:15:2b:85:64:c4:6d:ec:12:ea: 64:56:df:d0:eb:7b:9a:40:29:9d:ad:9a:17:47:40:62:9d:f6: b0:c7:e9:6b:a2:14:87:8b:dc:71:bc:0e:a5:e9:12:b4:54:b4: 4e:f0:ab:71:9e:26:c5:fe:38:da:73:4e:77:3f:1d:56:a7:3a: 60:1b:a0:3a:8e:dd:8e:40:d0:51:07:42:5c:74:76:c6:75:93: 12:24:d9:56:ee:14:b1:19:7b:7f:51:d4:3b:22:36:f4:5e:81: d8:80:62:6b:bf:70:03:56:a6:37:9b:08:d1:ed:b9:6b:03:fe: 3d:2d:25:9a:58:5d:cb:02:fa:b6:63:56:6c:2e:af:03:c6:e2: 98:ed:96:49:86:83:b4:5f:0d:a6:32:e6:68:75:f6:12:08:d8: a8:60:6d:fe:b3:c4:d6:28:d6:10:fe:37:3b:72:ec:37:4d:a4: 27:a1:89:ff:80:01:3e:5d:c9:3c:46:e2:bc:1b:68:83:73:6f: 9a:7a:de:27 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZd5haCdk1wbzV2loKfO9zMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY0ZGFiYTE1ZDFkMzY2Y2I1MzA5NTQxMmQwNjQ5MGUyMzQ5 OGUxNzAwHhcNMjUxMjI2MDcwMjQ4WhcNMjUxMjI3MDcwMjQ4WjAzMTEwLwYDVQQD Eyg5OWVlMjZmNjRiMzljMDQ1MTMxYzQzZDEwM2I0MjQ1NGMyOGQ1MzIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzG9BavkRS19RCflhCdmPTH0ormR0 P0rfr7nbY2YqCPWrxPcc7Ns1B6n+CDj79sGnvu4jv0B3YuCGO6VJJlXBNABEwJ53 RlzBbc2N9e7VnQLetYXvwDmhDc0UI/HG8iJtb1kXNURrJckPf7EUIrivncOKFImQ PxsMkpRMFsLp+VxuzXL2Ho/a6uwEpDXaXyrLMYGeQ8j/gRbWj4jh6XCLpPOyNFUg H+si/qeYSbWD5i5dRV4ih+sw5Y/4iwDqQrR2KZ318d3BPFTWrFzXvjVzWSumon4f ldYXg9FsFLgKhoQVlziqu/7m/eWYjU9QhYGg+HcfyKAX0Ks3/XUMUPZ7XQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJnuJvZLOcBFExxD0QO0JFTCjVMiMB8GA1UdIwQY MBaAFGTauhXR02bLUwlUEtBkkOI0mOFwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWk5xNkZkSFRac3RUQ1ZRUzBHU1E0alNZNFhBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMi83MzZkYjItMGM2NC00NWVkLTgzM2Et YTk0ZGQ4Y2NhZjlmLzEvWk5xNkZkSFRac3RUQ1ZRUzBHU1E0alNZNFhBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMi83MzZkYjItMGM2NC00NWVkLTgzM2EtYTk0ZGQ4Y2NhZjlm LzEvWk5xNkZkSFRac3RUQ1ZRUzBHU1E0alNZNFhBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOT5Ywx4B ihc/jvMej4GgDz8i2TM744MvBCN9ejueAvdIEIBzaHJ+xQR7HhufNr05khdDUr6U P4j8LgK9XuAVFSuFZMRt7BLqZFbf0Ot7mkApna2aF0dAYp32sMfpa6IUh4vccbwO pekStFS0TvCrcZ4mxf442nNOdz8dVqc6YBugOo7djkDQUQdCXHR2xnWTEiTZVu4U sRl7f1HUOyI29F6B2IBia79wA1amN5sI0e25awP+PS0lmlhdywL6tmNWbC6vA8bi mO2WSYaDtF8NpjLmaHX2EgjYqGBt/rPE1ijWEP43O3LsN02kJ6GJ/4ABPl3JPEbi vBtog3NvmnreJw== -----END CERTIFICATE-----Generated at Fri Dec 26 14:31:14 2025 by rpki-client