This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/408e37-fae2-48b5-bd15-73d94cb54526/1/MzBvg92caNG7WukbUMJukpyB0v0.mft File: MzBvg92caNG7WukbUMJukpyB0v0.mft (raw, json) Hash identifier: 2ls1vYralUhAkwlAMk0B5N6Wvu95+i/GcLXHRHo7Ae4= Subject key identifier: DC:14:B0:C8:5C:61:FC:6C:5D:4A:1A:4E:E8:AB:B1:93:C2:75:3A:5F Authority key identifier: 33:30:6F:83:DD:9C:68:D1:BB:5A:E9:1B:50:C2:6E:92:9C:81:D2:FD Certificate issuer: /CN=33306f83dd9c68d1bb5ae91b50c26e929c81d2fd Certificate serial: 019B2A40DC9198A4E9CEC3F4B288B1D8E479 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MzBvg92caNG7WukbUMJukpyB0v0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/408e37-fae2-48b5-bd15-73d94cb54526/1/MzBvg92caNG7WukbUMJukpyB0v0.mft Manifest number: 02D3 Signing time: Wed 17 Dec 2025 03:00:52 +0000 Manifest this update: Wed 17 Dec 2025 03:00:52 +0000 Manifest next update: Thu 18 Dec 2025 03:00:52 +0000 Files and hashes: 1: 0-WwVD2zFPGNgQhhntKyco3wY3I.roa (hash: bPryhs2CIXqAzaBTX4TIyszyma7cGcWiYG+PS79estE=) 2: MzBvg92caNG7WukbUMJukpyB0v0.crl (hash: 6P2tc+yQsYZvomDbfGQmbRmq9Bd2MqvqkDtD7fNX/6M=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/408e37-fae2-48b5-bd15-73d94cb54526/1/MzBvg92caNG7WukbUMJukpyB0v0.crl rsync://rpki.ripe.net/repository/DEFAULT/f9/408e37-fae2-48b5-bd15-73d94cb54526/1/MzBvg92caNG7WukbUMJukpyB0v0.mft rsync://rpki.ripe.net/repository/DEFAULT/MzBvg92caNG7WukbUMJukpyB0v0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 03:00:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2a:40:dc:91:98:a4:e9:ce:c3:f4:b2:88:b1:d8:e4:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33306f83dd9c68d1bb5ae91b50c26e929c81d2fd Validity Not Before: Dec 17 03:00:52 2025 GMT Not After : Dec 18 03:00:52 2025 GMT Subject: CN=dc14b0c85c61fc6c5d4a1a4ee8abb193c2753a5f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:54:18:35:40:13:e1:ad:2e:3c:6b:f1:af:9c: ac:c3:f5:e5:3b:b3:7a:f6:4e:b2:e9:e8:3d:9a:dd: f6:fd:fc:bf:02:3a:0e:a9:0d:9b:49:a9:53:df:3a: 83:9e:33:42:da:41:49:d5:97:91:40:54:bb:5c:22: e2:c8:8a:2e:31:cf:1b:fa:00:0e:bc:91:22:55:af: f1:7c:d4:0c:76:7c:17:31:e3:f0:09:a4:f5:0e:86: 3d:3a:8b:27:1b:04:eb:95:f2:1d:e5:10:c9:7e:09: b7:25:f4:88:41:1f:bb:3e:2a:e0:67:b7:26:2f:17: 46:97:fa:2d:7c:8f:aa:9d:07:94:67:37:0d:2f:74: 1b:fa:e1:8e:41:e4:cd:62:d4:d4:e0:b7:a6:40:39: ac:97:94:b4:70:97:3a:4b:c4:ad:98:5f:92:e6:d4: f4:e7:e3:e2:5e:b6:ee:81:60:ff:7c:58:72:26:7a: 42:c4:7f:bd:ca:24:fa:73:4d:9f:9f:e7:fc:dd:10: 85:fe:de:3e:c1:09:03:18:1b:1f:f5:f9:72:69:57: 3a:06:8b:2f:52:ef:96:ca:cd:0b:5e:07:a6:7e:72: f6:d1:d0:fb:b3:94:cd:58:6d:95:3d:11:1e:91:41: 67:af:57:76:7e:ff:21:8c:ce:8f:c1:f5:8e:78:58: 24:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:14:B0:C8:5C:61:FC:6C:5D:4A:1A:4E:E8:AB:B1:93:C2:75:3A:5F X509v3 Authority Key Identifier: keyid:33:30:6F:83:DD:9C:68:D1:BB:5A:E9:1B:50:C2:6E:92:9C:81:D2:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MzBvg92caNG7WukbUMJukpyB0v0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/408e37-fae2-48b5-bd15-73d94cb54526/1/MzBvg92caNG7WukbUMJukpyB0v0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/408e37-fae2-48b5-bd15-73d94cb54526/1/MzBvg92caNG7WukbUMJukpyB0v0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption cc:bb:9c:fa:0d:dc:00:81:be:24:6d:a6:9c:53:0c:19:f0:2a: e2:fd:49:69:53:96:06:1b:4e:30:7a:ff:02:36:3d:6f:e9:72: b6:04:26:9a:26:11:bd:27:cc:63:e4:94:f2:22:2a:71:8d:eb: d0:7c:39:3e:97:cd:3c:de:26:2d:ed:d0:a9:cc:bf:31:b5:87: 0c:14:b6:eb:dd:f7:43:35:20:ce:13:99:27:f4:81:a6:4d:20: f3:a7:95:83:7c:f5:0a:70:92:5a:59:2f:c0:f8:4c:07:0f:76: 04:d8:53:68:0b:31:be:37:25:cb:7a:57:52:99:2e:da:e4:2b: 7a:57:1c:2b:db:9e:fc:a7:66:fe:23:38:e0:2b:e9:a7:6b:33: f1:62:a5:73:23:d1:d1:70:e9:85:ed:bd:bf:40:61:89:66:8f: ea:79:d9:9d:42:d0:d2:06:5f:62:95:9d:55:bb:72:2b:93:7d: 7c:ac:bb:76:5f:68:4b:57:54:c8:6e:f3:2b:77:4d:ba:50:a8: 80:26:97:4b:14:27:33:03:d1:5d:10:64:4a:a7:5f:38:61:58: 11:56:fe:7c:f9:72:03:91:bc:70:a2:61:54:f0:d1:85:b3:c5: 1a:49:59:bb:da:2b:bc:27:12:4f:de:22:ed:e4:e5:5e:4f:86: 6f:9a:15:96 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsqQNyRmKTpzsP0soix2OR5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMzMzA2ZjgzZGQ5YzY4ZDFiYjVhZTkxYjUwYzI2ZTkyOWM4 MWQyZmQwHhcNMjUxMjE3MDMwMDUyWhcNMjUxMjE4MDMwMDUyWjAzMTEwLwYDVQQD EyhkYzE0YjBjODVjNjFmYzZjNWQ0YTFhNGVlOGFiYjE5M2MyNzUzYTVmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnVQYNUAT4a0uPGvxr5ysw/XlO7N6 9k6y6eg9mt32/fy/AjoOqQ2bSalT3zqDnjNC2kFJ1ZeRQFS7XCLiyIouMc8b+gAO vJEiVa/xfNQMdnwXMePwCaT1DoY9OosnGwTrlfId5RDJfgm3JfSIQR+7PirgZ7cm LxdGl/otfI+qnQeUZzcNL3Qb+uGOQeTNYtTU4LemQDmsl5S0cJc6S8StmF+S5tT0 5+PiXrbugWD/fFhyJnpCxH+9yiT6c02fn+f83RCF/t4+wQkDGBsf9flyaVc6Bosv Uu+Wys0LXgemfnL20dD7s5TNWG2VPREekUFnr1d2fv8hjM6PwfWOeFgkUwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNwUsMhcYfxsXUoaTuirsZPCdTpfMB8GA1UdIwQY MBaAFDMwb4PdnGjRu1rpG1DCbpKcgdL9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTXpCdmc5MmNhTkc3V3VrYlVNSnVrcHlCMHYwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOS80MDhlMzctZmFlMi00OGI1LWJkMTUt NzNkOTRjYjU0NTI2LzEvTXpCdmc5MmNhTkc3V3VrYlVNSnVrcHlCMHYwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mOS80MDhlMzctZmFlMi00OGI1LWJkMTUtNzNkOTRjYjU0NTI2 LzEvTXpCdmc5MmNhTkc3V3VrYlVNSnVrcHlCMHYwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAzLuc+g3c AIG+JG2mnFMMGfAq4v1JaVOWBhtOMHr/AjY9b+lytgQmmiYRvSfMY+SU8iIqcY3r 0Hw5PpfNPN4mLe3Qqcy/MbWHDBS26933QzUgzhOZJ/SBpk0g86eVg3z1CnCSWlkv wPhMBw92BNhTaAsxvjcly3pXUpku2uQrelccK9ue/Kdm/iM44Cvpp2sz8WKlcyPR 0XDphe29v0BhiWaP6nnZnULQ0gZfYpWdVbtyK5N9fKy7dl9oS1dUyG7zK3dNulCo gCaXSxQnMwPRXRBkSqdfOGFYEVb+fPlyA5G8cKJhVPDRhbPFGklZu9orvCcST94i 7eTlXk+Gb5oVlg== -----END CERTIFICATE-----Generated at Wed Dec 17 11:19:00 2025 by rpki-client