This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/464260-8d7e-4507-b44b-2864707b2b3f/1/nHIayAejJvhxu6oYSWPNYCtcwtY.mft File: nHIayAejJvhxu6oYSWPNYCtcwtY.mft (raw, json) Hash identifier: 6Yj3RIL60zsQoRzlIun2BN34WmY9/UB7t2b/VUqkDeQ= Subject key identifier: 8C:12:05:15:93:7A:1B:8A:87:F5:32:D3:0E:50:E6:B9:1B:92:5C:E7 Authority key identifier: 9C:72:1A:C8:07:A3:26:F8:71:BB:AA:18:49:63:CD:60:2B:5C:C2:D6 Certificate issuer: /CN=9c721ac807a326f871bbaa184963cd602b5cc2d6 Certificate serial: 019AF42E0F16B52970F8663DD4A1B20D01D7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nHIayAejJvhxu6oYSWPNYCtcwtY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/464260-8d7e-4507-b44b-2864707b2b3f/1/nHIayAejJvhxu6oYSWPNYCtcwtY.mft Manifest number: 1763 Signing time: Sat 06 Dec 2025 15:00:50 +0000 Manifest this update: Sat 06 Dec 2025 15:00:50 +0000 Manifest next update: Sun 07 Dec 2025 15:00:50 +0000 Files and hashes: 1: 9jfoHjHhXlQUp0QHnvy8Xfhd38g.roa (hash: /upMq7FxxL/VBqHPpqBK/s+Z/2QbORhxGy0ijXbQbKE=) 2: nHIayAejJvhxu6oYSWPNYCtcwtY.crl (hash: unyDIn+SHkY8mCd0IWrnCaQMJNUIefN8qcLRXp+qgWk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/464260-8d7e-4507-b44b-2864707b2b3f/1/nHIayAejJvhxu6oYSWPNYCtcwtY.crl rsync://rpki.ripe.net/repository/DEFAULT/0b/464260-8d7e-4507-b44b-2864707b2b3f/1/nHIayAejJvhxu6oYSWPNYCtcwtY.mft rsync://rpki.ripe.net/repository/DEFAULT/nHIayAejJvhxu6oYSWPNYCtcwtY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f4:2e:0f:16:b5:29:70:f8:66:3d:d4:a1:b2:0d:01:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9c721ac807a326f871bbaa184963cd602b5cc2d6 Validity Not Before: Dec 6 15:00:50 2025 GMT Not After : Dec 7 15:00:50 2025 GMT Subject: CN=8c120515937a1b8a87f532d30e50e6b91b925ce7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fd:db:8e:85:93:4e:80:5d:ed:9a:04:5f:ae:eb: a0:72:56:4d:5a:ac:c6:ac:f2:f3:64:d6:8b:d4:08: cd:3b:d5:75:d4:b2:01:ca:84:a6:48:d0:51:62:fc: 20:35:f4:17:cb:bf:70:58:48:5f:10:b9:48:f9:ef: ec:93:67:30:cd:89:40:22:f8:29:4c:6c:56:94:12: 33:99:be:04:29:71:bc:1f:b4:96:ad:69:a7:34:ad: b5:f8:f7:4b:ac:94:04:e6:64:f2:5b:37:16:3f:54: 12:6a:7c:ab:37:9a:f7:6f:ca:a5:4a:48:a0:59:a4: 14:5a:fd:24:87:53:73:a5:9e:a5:ef:a6:12:57:f8: 9b:30:0c:3f:fd:ca:3b:0d:4a:d1:39:87:13:9d:1b: 2b:72:fe:b3:87:bf:71:13:1e:eb:c2:2a:52:bd:8d: 9e:93:83:7b:50:ee:3c:15:25:59:59:a1:7d:51:b0: 07:9f:4f:73:04:fe:ed:24:6f:0f:93:0c:f5:98:55: 0c:27:17:8c:78:b6:eb:e8:f0:e8:f1:1f:43:ad:62: 5a:a6:1e:e0:a1:af:e5:de:2f:c0:23:39:d5:4b:0e: b0:d5:01:a9:0d:71:55:26:cc:55:88:3c:bf:c0:f8: 52:cc:f7:98:d0:a6:89:7a:92:d0:d4:98:22:0e:8c: f7:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:12:05:15:93:7A:1B:8A:87:F5:32:D3:0E:50:E6:B9:1B:92:5C:E7 X509v3 Authority Key Identifier: keyid:9C:72:1A:C8:07:A3:26:F8:71:BB:AA:18:49:63:CD:60:2B:5C:C2:D6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nHIayAejJvhxu6oYSWPNYCtcwtY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/464260-8d7e-4507-b44b-2864707b2b3f/1/nHIayAejJvhxu6oYSWPNYCtcwtY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/464260-8d7e-4507-b44b-2864707b2b3f/1/nHIayAejJvhxu6oYSWPNYCtcwtY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 55:90:4d:4c:f8:3d:ef:0c:7c:d8:c5:57:50:50:e0:ac:59:c7: 81:4c:11:80:60:b3:6a:e9:3f:c5:6c:3d:8f:85:8f:bd:fa:a1: a3:74:e8:79:28:a6:92:02:4f:42:78:c6:f4:d7:2e:aa:4f:14: b6:d3:5a:e6:45:c0:16:6f:06:44:4c:37:cf:9f:a2:1d:46:9d: c3:a3:c4:90:28:b2:ef:52:e2:db:59:9b:4c:cb:b0:bd:df:fb: 58:13:43:09:c1:50:8b:06:4d:e9:13:b6:d3:a6:16:06:4d:37: c9:68:1f:ef:22:1b:84:0c:d1:2d:df:23:44:0e:b3:80:53:b8: 2b:6f:a2:29:39:a0:ef:08:d9:29:da:4c:e5:dc:91:6c:9a:d5: b1:3f:13:19:d8:6c:e1:a3:1a:5a:2c:5b:bc:69:bb:ae:c7:1e: 8e:13:8b:9c:39:10:19:1f:29:f7:8b:e1:7b:e1:3e:a9:63:00: c6:d8:93:a5:47:be:ec:a2:32:4f:c5:61:b7:85:3d:62:4a:c2: 36:92:c7:6d:53:99:e1:4e:b8:42:b0:88:fd:27:cc:c0:61:db: e7:47:f0:b0:f4:52:0c:f9:45:8d:b3:15:c7:e9:e7:c2:19:01: 19:ad:f5:53:ac:10:69:e9:6e:18:54:e1:cc:32:3c:f6:12:24: 88:b7:d9:1a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr0Lg8WtSlw+GY91KGyDQHXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDljNzIxYWM4MDdhMzI2Zjg3MWJiYWExODQ5NjNjZDYwMmI1 Y2MyZDYwHhcNMjUxMjA2MTUwMDUwWhcNMjUxMjA3MTUwMDUwWjAzMTEwLwYDVQQD Eyg4YzEyMDUxNTkzN2ExYjhhODdmNTMyZDMwZTUwZTZiOTFiOTI1Y2U3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA/duOhZNOgF3tmgRfruugclZNWqzG rPLzZNaL1AjNO9V11LIByoSmSNBRYvwgNfQXy79wWEhfELlI+e/sk2cwzYlAIvgp TGxWlBIzmb4EKXG8H7SWrWmnNK21+PdLrJQE5mTyWzcWP1QSanyrN5r3b8qlSkig WaQUWv0kh1NzpZ6l76YSV/ibMAw//co7DUrROYcTnRsrcv6zh79xEx7rwipSvY2e k4N7UO48FSVZWaF9UbAHn09zBP7tJG8Pkwz1mFUMJxeMeLbr6PDo8R9DrWJaph7g oa/l3i/AIznVSw6w1QGpDXFVJsxViDy/wPhSzPeY0KaJepLQ1JgiDoz3TwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIwSBRWTehuKh/Uy0w5Q5rkbklznMB8GA1UdIwQY MBaAFJxyGsgHoyb4cbuqGEljzWArXMLWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbkhJYXlBZWpKdmh4dTZvWVNXUE5ZQ3Rjd3RZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi80NjQyNjAtOGQ3ZS00NTA3LWI0NGIt Mjg2NDcwN2IyYjNmLzEvbkhJYXlBZWpKdmh4dTZvWVNXUE5ZQ3Rjd3RZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYi80NjQyNjAtOGQ3ZS00NTA3LWI0NGItMjg2NDcwN2IyYjNm LzEvbkhJYXlBZWpKdmh4dTZvWVNXUE5ZQ3Rjd3RZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVZBNTPg9 7wx82MVXUFDgrFnHgUwRgGCzauk/xWw9j4WPvfqho3ToeSimkgJPQnjG9Ncuqk8U ttNa5kXAFm8GREw3z5+iHUadw6PEkCiy71Li21mbTMuwvd/7WBNDCcFQiwZN6RO2 06YWBk03yWgf7yIbhAzRLd8jRA6zgFO4K2+iKTmg7wjZKdpM5dyRbJrVsT8TGdhs 4aMaWixbvGm7rscejhOLnDkQGR8p94vhe+E+qWMAxtiTpUe+7KIyT8Vht4U9YkrC NpLHbVOZ4U64QrCI/SfMwGHb50fwsPRSDPlFjbMVx+nnwhkBGa31U6wQaeluGFTh zDI89hIkiLfZGg== -----END CERTIFICATE-----Generated at Sat Dec 6 18:52:48 2025 by rpki-client