This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8b5f1e-4190-48b6-bdc5-7d05f9888e98/1/ZhPZyFZESnCW46hQjK4wf968DNQ.mft File: ZhPZyFZESnCW46hQjK4wf968DNQ.mft (raw, json) Hash identifier: gm58NB7uZMQ7Ji3DWaOzbbHoYpIEMaJoj8o3kfVntPI= Subject key identifier: 76:46:50:10:3D:74:2F:98:C4:64:42:F0:4F:D9:17:FA:03:18:9E:7B Authority key identifier: 66:13:D9:C8:56:44:4A:70:96:E3:A8:50:8C:AE:30:7F:DE:BC:0C:D4 Certificate issuer: /CN=6613d9c856444a7096e3a8508cae307fdebc0cd4 Certificate serial: 019B405A914F432D1BEA08435FC02501691E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZhPZyFZESnCW46hQjK4wf968DNQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8b5f1e-4190-48b6-bdc5-7d05f9888e98/1/ZhPZyFZESnCW46hQjK4wf968DNQ.mft Manifest number: 178B Signing time: Sun 21 Dec 2025 10:00:35 +0000 Manifest this update: Sun 21 Dec 2025 10:00:35 +0000 Manifest next update: Mon 22 Dec 2025 10:00:35 +0000 Files and hashes: 1: 4D_rZ45BYofG_PKX7NdD5oQoUdM.roa (hash: 8wujCBX6hI1Ut+YVGttUi2MlgiyCoDf/nLWfLC5wQhA=) 2: ZhPZyFZESnCW46hQjK4wf968DNQ.crl (hash: TGqS8hKB9KUkU67K688qcwCP4UrEPItFA4z+CQLZ1v8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/8b5f1e-4190-48b6-bdc5-7d05f9888e98/1/ZhPZyFZESnCW46hQjK4wf968DNQ.crl rsync://rpki.ripe.net/repository/DEFAULT/bc/8b5f1e-4190-48b6-bdc5-7d05f9888e98/1/ZhPZyFZESnCW46hQjK4wf968DNQ.mft rsync://rpki.ripe.net/repository/DEFAULT/ZhPZyFZESnCW46hQjK4wf968DNQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 04:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:40:5a:91:4f:43:2d:1b:ea:08:43:5f:c0:25:01:69:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6613d9c856444a7096e3a8508cae307fdebc0cd4 Validity Not Before: Dec 21 10:00:35 2025 GMT Not After : Dec 22 10:00:35 2025 GMT Subject: CN=764650103d742f98c46442f04fd917fa03189e7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:03:40:27:f3:d5:70:0b:a9:67:50:02:a7:50: ab:a6:97:15:cc:64:94:f2:a9:bf:89:83:aa:89:74: 18:a9:18:89:3e:91:fc:3a:1e:02:db:6d:a5:35:cb: 1e:ec:fe:5f:88:16:d6:ef:42:05:b1:8c:0f:ab:1c: be:1d:d5:9d:ce:10:63:5c:de:61:34:e0:9c:0e:51: 1a:7e:0c:17:d8:2c:c1:38:c7:27:6f:bb:90:11:f7: 52:1b:96:9d:17:3d:f0:ff:48:6d:6c:e9:aa:08:de: b6:73:05:56:0a:a7:ad:67:62:36:88:8e:3a:82:62: d4:c8:17:b9:64:6e:d1:00:8b:46:46:21:72:d1:ec: e4:c2:75:62:d8:f1:74:fc:11:cb:ac:f8:e8:5b:83: 6b:bd:d8:62:63:9f:7a:ff:51:42:c8:8e:2b:a8:91: be:71:cb:51:4d:94:97:90:c9:cd:9c:4c:4a:1e:95: 8c:51:a9:e3:85:5e:cf:0e:ab:b1:f0:6a:36:88:c3: 16:93:a2:a4:be:d1:0d:4b:18:dd:73:82:dc:dd:f0: 1f:b7:70:d1:7f:cd:f8:b1:a6:8f:af:3b:03:2d:73: 6c:0e:20:8d:ae:8e:b2:3c:65:5d:57:8b:39:1f:c8: a7:a1:4d:dd:31:99:22:13:be:6a:69:af:55:5f:0f: 4e:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:46:50:10:3D:74:2F:98:C4:64:42:F0:4F:D9:17:FA:03:18:9E:7B X509v3 Authority Key Identifier: keyid:66:13:D9:C8:56:44:4A:70:96:E3:A8:50:8C:AE:30:7F:DE:BC:0C:D4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZhPZyFZESnCW46hQjK4wf968DNQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8b5f1e-4190-48b6-bdc5-7d05f9888e98/1/ZhPZyFZESnCW46hQjK4wf968DNQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8b5f1e-4190-48b6-bdc5-7d05f9888e98/1/ZhPZyFZESnCW46hQjK4wf968DNQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 56:54:4b:8c:26:bd:b0:13:48:7c:19:16:9e:bb:59:07:6c:08: 4f:3e:23:ee:2b:c4:ac:0f:9a:30:38:fe:9c:cc:0b:be:df:39: 28:8a:22:df:3d:58:f7:82:75:f9:2f:02:ae:ef:fa:5d:e8:5c: e0:4c:4f:97:d2:63:59:28:4b:6b:23:b0:e6:6d:fd:a1:53:c6: a3:b5:86:0b:1d:14:a3:0a:1a:5c:2a:38:30:ab:a4:24:b3:ac: 0e:ad:c5:a3:f9:7d:87:2b:17:7d:e4:1c:7f:9f:3a:18:28:8c: a5:db:e9:de:52:20:96:74:ed:3e:fb:c3:e1:15:82:69:ec:a5: e7:68:46:92:e6:b6:92:a1:a6:1b:a8:52:ee:8d:dc:46:1b:42: 61:9e:0e:ec:bc:d2:65:03:fb:4e:d0:31:e1:47:d3:6d:d6:34: 88:7a:1c:d6:e4:6b:fe:b1:c9:37:ad:97:72:83:0a:27:73:d6: 84:4d:64:50:fb:37:7e:bf:90:f5:63:4e:97:38:3b:6c:8f:90: bb:36:3c:75:03:23:fa:4f:bc:9e:21:34:03:bb:27:a4:16:d0: 82:be:35:b7:67:da:b6:b4:5d:bc:2e:ae:40:c7:3d:af:1c:7a: c2:d9:27:59:eb:57:62:d1:57:8c:5a:c7:98:70:0a:59:0e:80: b4:99:80:17 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtAWpFPQy0b6ghDX8AlAWkeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY2MTNkOWM4NTY0NDRhNzA5NmUzYTg1MDhjYWUzMDdmZGVi YzBjZDQwHhcNMjUxMjIxMTAwMDM1WhcNMjUxMjIyMTAwMDM1WjAzMTEwLwYDVQQD Eyg3NjQ2NTAxMDNkNzQyZjk4YzQ2NDQyZjA0ZmQ5MTdmYTAzMTg5ZTdiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+ANAJ/PVcAupZ1ACp1CrppcVzGSU 8qm/iYOqiXQYqRiJPpH8Oh4C222lNcse7P5fiBbW70IFsYwPqxy+HdWdzhBjXN5h NOCcDlEafgwX2CzBOMcnb7uQEfdSG5adFz3w/0htbOmqCN62cwVWCqetZ2I2iI46 gmLUyBe5ZG7RAItGRiFy0ezkwnVi2PF0/BHLrPjoW4NrvdhiY596/1FCyI4rqJG+ cctRTZSXkMnNnExKHpWMUanjhV7PDqux8Go2iMMWk6KkvtENSxjdc4Lc3fAft3DR f834saaPrzsDLXNsDiCNro6yPGVdV4s5H8inoU3dMZkiE75qaa9VXw9OdQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHZGUBA9dC+YxGRC8E/ZF/oDGJ57MB8GA1UdIwQY MBaAFGYT2chWREpwluOoUIyuMH/evAzUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWmhQWnlGWkVTbkNXNDZoUWpLNHdmOTY4RE5RLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy84YjVmMWUtNDE5MC00OGI2LWJkYzUt N2QwNWY5ODg4ZTk4LzEvWmhQWnlGWkVTbkNXNDZoUWpLNHdmOTY4RE5RLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYy84YjVmMWUtNDE5MC00OGI2LWJkYzUtN2QwNWY5ODg4ZTk4 LzEvWmhQWnlGWkVTbkNXNDZoUWpLNHdmOTY4RE5RLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVlRLjCa9 sBNIfBkWnrtZB2wITz4j7ivErA+aMDj+nMwLvt85KIoi3z1Y94J1+S8Cru/6Xehc 4ExPl9JjWShLayOw5m39oVPGo7WGCx0UowoaXCo4MKukJLOsDq3Fo/l9hysXfeQc f586GCiMpdvp3lIglnTtPvvD4RWCaeyl52hGkua2kqGmG6hS7o3cRhtCYZ4O7LzS ZQP7TtAx4UfTbdY0iHoc1uRr/rHJN62XcoMKJ3PWhE1kUPs3fr+Q9WNOlzg7bI+Q uzY8dQMj+k+8niE0A7snpBbQgr41t2fatrRdvC6uQMc9rxx6wtknWetXYtFXjFrH mHAKWQ6AtJmAFw== -----END CERTIFICATE-----Generated at Sun Dec 21 12:47:03 2025 by rpki-client