This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/6b2a58-becc-49bc-8d84-a03892fc340b/1/nwAKfifXFIcphPrjeIda9lvkBWw.mft File: nwAKfifXFIcphPrjeIda9lvkBWw.mft (raw, json) Hash identifier: L2Jm0JVdraDXXs80Bi6ZpjVxczruMD0pZTOJq20nbTQ= Subject key identifier: 27:8C:C6:76:EF:37:B5:CF:21:40:62:08:94:AE:3F:AB:18:D5:24:46 Authority key identifier: 9F:00:0A:7E:27:D7:14:87:29:84:FA:E3:78:87:5A:F6:5B:E4:05:6C Certificate issuer: /CN=9f000a7e27d714872984fae378875af65be4056c Certificate serial: 019AF3521907699FE3E8C781E91BFAD287A6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nwAKfifXFIcphPrjeIda9lvkBWw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/6b2a58-becc-49bc-8d84-a03892fc340b/1/nwAKfifXFIcphPrjeIda9lvkBWw.mft Manifest number: 01B6 Signing time: Sat 06 Dec 2025 11:00:35 +0000 Manifest this update: Sat 06 Dec 2025 11:00:35 +0000 Manifest next update: Sun 07 Dec 2025 11:00:35 +0000 Files and hashes: 1: nwAKfifXFIcphPrjeIda9lvkBWw.crl (hash: jXbvkfllY2bdGXGehyKrt9Gh58p81ECUvl//9m7JD5o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/6b2a58-becc-49bc-8d84-a03892fc340b/1/nwAKfifXFIcphPrjeIda9lvkBWw.crl rsync://rpki.ripe.net/repository/DEFAULT/09/6b2a58-becc-49bc-8d84-a03892fc340b/1/nwAKfifXFIcphPrjeIda9lvkBWw.mft rsync://rpki.ripe.net/repository/DEFAULT/nwAKfifXFIcphPrjeIda9lvkBWw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 11:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:52:19:07:69:9f:e3:e8:c7:81:e9:1b:fa:d2:87:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9f000a7e27d714872984fae378875af65be4056c Validity Not Before: Dec 6 11:00:35 2025 GMT Not After : Dec 7 11:00:35 2025 GMT Subject: CN=278cc676ef37b5cf2140620894ae3fab18d52446 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:d7:30:0f:d8:95:c3:2a:cf:5b:44:3d:50:42: 6d:f4:ac:db:d3:27:74:f0:7a:91:ef:14:3a:3b:64: d6:28:8e:e3:9b:1a:9b:8c:e7:d6:db:45:74:c7:83: 79:1c:92:b8:15:bc:d7:fb:aa:3c:30:38:bd:d1:68: c0:54:fd:49:73:81:13:0f:4d:a2:2e:a4:2d:c4:49: a0:8a:6f:38:9c:bf:ca:74:e2:84:3d:dc:22:37:4b: a9:95:2a:3f:3b:9b:a5:77:fb:9d:77:64:e1:97:b4: 70:45:47:b9:7d:c0:f1:e1:99:87:99:a2:07:8f:1e: 9e:29:be:b9:7d:a2:04:a9:1c:9d:84:26:2c:c9:df: 4b:66:40:a3:f7:7e:d2:77:2c:58:fe:fc:ab:0a:09: 5b:9f:fd:dc:47:a6:30:d4:05:34:0a:ee:a6:02:b0: ed:eb:a0:66:08:e6:48:fe:76:68:25:ce:9d:8e:4c: 85:69:ac:af:f1:92:3a:98:86:37:9f:58:23:80:d5: 86:80:aa:ac:2c:14:2c:2c:74:a0:78:68:89:de:41: 5f:54:48:3c:9f:80:e0:40:73:ec:4a:f5:5c:19:14: d3:71:88:8f:8f:17:7f:85:76:65:5b:0b:de:60:7c: f6:4b:7b:53:6d:01:62:9d:a1:16:8a:10:71:46:27: cd:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:8C:C6:76:EF:37:B5:CF:21:40:62:08:94:AE:3F:AB:18:D5:24:46 X509v3 Authority Key Identifier: keyid:9F:00:0A:7E:27:D7:14:87:29:84:FA:E3:78:87:5A:F6:5B:E4:05:6C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nwAKfifXFIcphPrjeIda9lvkBWw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/6b2a58-becc-49bc-8d84-a03892fc340b/1/nwAKfifXFIcphPrjeIda9lvkBWw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/09/6b2a58-becc-49bc-8d84-a03892fc340b/1/nwAKfifXFIcphPrjeIda9lvkBWw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 44:8a:55:1a:76:7b:bd:3d:07:b7:81:63:ae:a9:77:62:cc:78: 8b:0c:db:1b:e6:6b:8d:c9:7d:a7:83:ee:ac:04:a3:05:ba:4a: 09:59:2f:44:63:67:3f:5f:a1:4f:52:fe:ec:cc:dd:5d:8a:c1: dc:bc:41:07:12:9f:e1:ac:b3:1d:27:e8:d3:df:39:5a:48:65: 8b:f5:aa:41:ab:bb:f9:15:c5:36:ec:62:6d:aa:95:83:2b:e5: 4c:e1:9f:16:24:fa:af:9f:20:ea:aa:85:cf:d9:70:db:25:4a: 65:e5:a1:f3:3b:85:77:ac:d5:2c:65:f8:7f:4e:e8:32:7a:81: fd:02:5b:2e:6a:b9:ef:70:40:4e:09:54:d4:22:18:aa:7f:53: b5:e2:ef:16:60:6d:a5:a5:e6:b4:93:8d:42:ba:df:d5:06:57: c4:65:9d:34:c4:cf:12:67:9e:9f:07:bb:ba:ac:be:50:4c:b9: 94:8d:81:86:3e:2d:62:3d:43:74:ee:1f:61:c3:b0:c1:9c:06: 14:25:b6:21:6c:a3:46:bf:29:f3:3a:6f:5d:ef:56:a3:47:5d: 53:37:15:b2:e2:53:13:a0:75:49:9f:a8:21:b6:a3:71:fc:a0: a9:24:6a:ed:d6:0e:85:3c:e9:8a:39:29:2a:29:db:6d:73:68: d1:2e:fc:4f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzUhkHaZ/j6MeB6Rv60oemMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlmMDAwYTdlMjdkNzE0ODcyOTg0ZmFlMzc4ODc1YWY2NWJl NDA1NmMwHhcNMjUxMjA2MTEwMDM1WhcNMjUxMjA3MTEwMDM1WjAzMTEwLwYDVQQD EygyNzhjYzY3NmVmMzdiNWNmMjE0MDYyMDg5NGFlM2ZhYjE4ZDUyNDQ2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxtcwD9iVwyrPW0Q9UEJt9Kzb0yd0 8HqR7xQ6O2TWKI7jmxqbjOfW20V0x4N5HJK4FbzX+6o8MDi90WjAVP1Jc4ETD02i LqQtxEmgim84nL/KdOKEPdwiN0uplSo/O5uld/udd2Thl7RwRUe5fcDx4ZmHmaIH jx6eKb65faIEqRydhCYsyd9LZkCj937SdyxY/vyrCglbn/3cR6Yw1AU0Cu6mArDt 66BmCOZI/nZoJc6djkyFaayv8ZI6mIY3n1gjgNWGgKqsLBQsLHSgeGiJ3kFfVEg8 n4DgQHPsSvVcGRTTcYiPjxd/hXZlWwveYHz2S3tTbQFinaEWihBxRifN6wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCeMxnbvN7XPIUBiCJSuP6sY1SRGMB8GA1UdIwQY MBaAFJ8ACn4n1xSHKYT643iHWvZb5AVsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbndBS2ZpZlhGSWNwaFByamVJZGE5bHZrQld3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS82YjJhNTgtYmVjYy00OWJjLThkODQt YTAzODkyZmMzNDBiLzEvbndBS2ZpZlhGSWNwaFByamVJZGE5bHZrQld3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wOS82YjJhNTgtYmVjYy00OWJjLThkODQtYTAzODkyZmMzNDBi LzEvbndBS2ZpZlhGSWNwaFByamVJZGE5bHZrQld3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARIpVGnZ7 vT0Ht4Fjrql3Ysx4iwzbG+Zrjcl9p4PurASjBbpKCVkvRGNnP1+hT1L+7MzdXYrB 3LxBBxKf4ayzHSfo0985Wkhli/WqQau7+RXFNuxibaqVgyvlTOGfFiT6r58g6qqF z9lw2yVKZeWh8zuFd6zVLGX4f07oMnqB/QJbLmq573BATglU1CIYqn9TteLvFmBt paXmtJONQrrf1QZXxGWdNMTPEmeenwe7uqy+UEy5lI2Bhj4tYj1DdO4fYcOwwZwG FCW2IWyjRr8p8zpvXe9Wo0ddUzcVsuJTE6B1SZ+oIbajcfygqSRq7dYOhTzpijkp KinbbXNo0S78Tw== -----END CERTIFICATE-----Generated at Sat Dec 6 15:40:30 2025 by rpki-client