This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/19fa4a-f41d-4baf-b9ea-ec9b75521297/1/Z-HO3-CCbw-Xdb36jpQlMAvenxM.mft File: Z-HO3-CCbw-Xdb36jpQlMAvenxM.mft (raw, json) Hash identifier: fEIBq4+tijh4DCyRbXTcQAZRz86duEs4BXOZUW4lvFo= Subject key identifier: 05:C8:4D:33:41:63:69:C7:11:7B:28:D2:2A:08:C3:80:34:88:35:1D Authority key identifier: 67:E1:CE:DF:E0:82:6F:0F:97:75:BD:FA:8E:94:25:30:0B:DE:9F:13 Certificate issuer: /CN=67e1cedfe0826f0f9775bdfa8e9425300bde9f13 Certificate serial: 019B6BB290EC9ADF6F0372EF646E745A8542 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z-HO3-CCbw-Xdb36jpQlMAvenxM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/19fa4a-f41d-4baf-b9ea-ec9b75521297/1/Z-HO3-CCbw-Xdb36jpQlMAvenxM.mft Manifest number: 0DB5 Signing time: Mon 29 Dec 2025 20:00:23 +0000 Manifest this update: Mon 29 Dec 2025 20:00:23 +0000 Manifest next update: Tue 30 Dec 2025 20:00:23 +0000 Files and hashes: 1: IyubcYm7YNGoTHG6Zyl3Cm2IkRw.roa (hash: 4lmGSbybL+9qT7cvm7erjsIQir7v2NPime1p2riEn1k=) 2: Z-HO3-CCbw-Xdb36jpQlMAvenxM.crl (hash: 7b+CxxPWx3vcuvJKZsftNq2iseyWH6bVDiSAolB65WQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/19fa4a-f41d-4baf-b9ea-ec9b75521297/1/Z-HO3-CCbw-Xdb36jpQlMAvenxM.crl rsync://rpki.ripe.net/repository/DEFAULT/b3/19fa4a-f41d-4baf-b9ea-ec9b75521297/1/Z-HO3-CCbw-Xdb36jpQlMAvenxM.mft rsync://rpki.ripe.net/repository/DEFAULT/Z-HO3-CCbw-Xdb36jpQlMAvenxM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 30 Dec 2025 20:00:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:6b:b2:90:ec:9a:df:6f:03:72:ef:64:6e:74:5a:85:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67e1cedfe0826f0f9775bdfa8e9425300bde9f13 Validity Not Before: Dec 29 20:00:23 2025 GMT Not After : Dec 30 20:00:23 2025 GMT Subject: CN=05c84d33416369c7117b28d22a08c3803488351d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:1b:c0:37:4c:e3:7d:64:74:e6:bb:96:2f:b0: 18:ce:89:ea:4f:15:2a:08:ec:2f:25:55:16:1c:c2: 43:1e:5b:64:a4:72:ae:ea:9e:33:a8:e5:d1:8c:6a: c9:5e:d3:df:e5:32:61:06:a6:f6:da:4d:c0:e4:9b: 55:03:bb:b3:84:da:23:42:ff:54:e2:b9:ac:f6:df: b5:27:7e:3e:50:29:1d:88:98:9e:c6:c5:94:af:a7: af:32:e6:8c:08:5d:20:65:58:7c:a5:d5:e2:cb:c7: 0a:a4:87:ea:0f:75:61:d3:b6:22:28:05:21:ea:02: ed:40:17:df:96:0c:bb:92:bd:68:90:62:de:d7:c4: cb:fe:a0:1b:46:9a:b3:02:1f:d9:a4:af:16:ba:92: db:2b:36:0f:18:de:73:1b:80:af:57:8f:c4:5a:89: 3b:48:f1:98:f1:05:8c:1c:62:50:d6:af:cb:c3:64: e2:5a:dd:f2:88:6c:aa:6c:60:55:01:31:6f:3e:3c: 10:41:20:8a:a5:9e:e7:2e:8e:93:2f:a2:31:90:ac: dd:46:13:b8:99:02:7d:9f:48:2f:52:3b:e5:e0:fb: 4a:76:e0:0a:9b:c9:99:97:d1:e8:69:b6:85:38:8b: ad:13:ad:d2:4c:18:18:f6:19:73:f1:dd:4e:31:da: 63:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:C8:4D:33:41:63:69:C7:11:7B:28:D2:2A:08:C3:80:34:88:35:1D X509v3 Authority Key Identifier: keyid:67:E1:CE:DF:E0:82:6F:0F:97:75:BD:FA:8E:94:25:30:0B:DE:9F:13 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z-HO3-CCbw-Xdb36jpQlMAvenxM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/19fa4a-f41d-4baf-b9ea-ec9b75521297/1/Z-HO3-CCbw-Xdb36jpQlMAvenxM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/19fa4a-f41d-4baf-b9ea-ec9b75521297/1/Z-HO3-CCbw-Xdb36jpQlMAvenxM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 53:51:b4:cf:99:30:ab:60:06:c3:61:74:53:00:64:ba:91:c3: 8b:b6:d0:23:78:a8:45:7b:a9:b5:c3:af:42:07:58:78:b9:5b: d4:62:9e:f6:9f:9f:c3:1a:46:43:e5:7c:a5:d0:00:41:63:a1: b8:86:a2:c0:bf:40:3c:da:46:a9:f7:a7:db:f3:2c:63:dc:95: 7f:f5:6c:76:9c:40:c5:cd:3d:63:26:3b:08:6a:ed:66:57:88: e3:81:db:32:ba:4e:98:51:7a:49:ad:ad:fc:b3:fb:12:4f:14: 3a:d3:58:a6:dd:f4:8d:2e:34:d9:fb:63:20:af:4e:46:f1:20: d6:45:30:4e:1d:f3:5a:ad:b1:85:c2:2b:9f:a3:9a:ee:a8:8c: 86:78:9e:0e:15:a5:55:aa:a3:14:ac:16:db:89:0d:24:8f:81: 1f:0b:85:59:82:80:c1:0c:4f:0f:41:5e:0f:e1:cf:00:4c:92: cb:3c:4d:8c:ec:c5:1b:23:87:af:4b:1a:64:78:e8:0d:54:eb: 70:21:23:d6:d0:46:a5:df:fd:34:f6:c7:ff:b9:16:d5:7b:14: 7f:a3:38:dc:94:0d:5d:d5:d9:d9:a1:9d:11:43:6b:b2:fa:1b: 1d:79:9d:74:ee:00:77:34:a0:4b:89:2d:aa:e3:86:51:f1:21: ce:4b:39:8d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtrspDsmt9vA3LvZG50WoVCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY3ZTFjZWRmZTA4MjZmMGY5Nzc1YmRmYThlOTQyNTMwMGJk ZTlmMTMwHhcNMjUxMjI5MjAwMDIzWhcNMjUxMjMwMjAwMDIzWjAzMTEwLwYDVQQD EygwNWM4NGQzMzQxNjM2OWM3MTE3YjI4ZDIyYTA4YzM4MDM0ODgzNTFkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2BvAN0zjfWR05ruWL7AYzonqTxUq COwvJVUWHMJDHltkpHKu6p4zqOXRjGrJXtPf5TJhBqb22k3A5JtVA7uzhNojQv9U 4rms9t+1J34+UCkdiJiexsWUr6evMuaMCF0gZVh8pdXiy8cKpIfqD3Vh07YiKAUh 6gLtQBfflgy7kr1okGLe18TL/qAbRpqzAh/ZpK8WupLbKzYPGN5zG4CvV4/EWok7 SPGY8QWMHGJQ1q/Lw2TiWt3yiGyqbGBVATFvPjwQQSCKpZ7nLo6TL6IxkKzdRhO4 mQJ9n0gvUjvl4PtKduAKm8mZl9HoabaFOIutE63STBgY9hlz8d1OMdpjowIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAXITTNBY2nHEXso0ioIw4A0iDUdMB8GA1UdIwQY MBaAFGfhzt/ggm8Pl3W9+o6UJTAL3p8TMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWi1ITzMtQ0Nidy1YZGIzNmpwUWxNQXZlbnhNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMy8xOWZhNGEtZjQxZC00YmFmLWI5ZWEt ZWM5Yjc1NTIxMjk3LzEvWi1ITzMtQ0Nidy1YZGIzNmpwUWxNQXZlbnhNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMy8xOWZhNGEtZjQxZC00YmFmLWI5ZWEtZWM5Yjc1NTIxMjk3 LzEvWi1ITzMtQ0Nidy1YZGIzNmpwUWxNQXZlbnhNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAU1G0z5kw q2AGw2F0UwBkupHDi7bQI3ioRXuptcOvQgdYeLlb1GKe9p+fwxpGQ+V8pdAAQWOh uIaiwL9APNpGqfen2/MsY9yVf/VsdpxAxc09YyY7CGrtZleI44HbMrpOmFF6Sa2t /LP7Ek8UOtNYpt30jS402ftjIK9ORvEg1kUwTh3zWq2xhcIrn6Oa7qiMhnieDhWl VaqjFKwW24kNJI+BHwuFWYKAwQxPD0FeD+HPAEySyzxNjOzFGyOHr0saZHjoDVTr cCEj1tBGpd/9NPbH/7kW1XsUf6M43JQNXdXZ2aGdEUNrsvobHXmddO4AdzSgS4kt quOGUfEhzks5jQ== -----END CERTIFICATE-----Generated at Tue Dec 30 04:53:51 2025 by rpki-client