This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/5a2ed9-8f8e-4c1d-aaf3-30c65ad83291/1/NIMjF9JURDS2WeVpIHHY5MSTiwY.mft File: NIMjF9JURDS2WeVpIHHY5MSTiwY.mft (raw, json) Hash identifier: GJDKf7jjwh7FMVLRJaAm2YeACjt+4viooc+O5zwFd64= Subject key identifier: 03:4A:94:41:06:AD:66:D4:1C:2E:29:A2:43:C3:52:68:5B:DD:49:00 Authority key identifier: 34:83:23:17:D2:54:44:34:B6:59:E5:69:20:71:D8:E4:C4:93:8B:06 Certificate issuer: /CN=34832317d2544434b659e5692071d8e4c4938b06 Certificate serial: 019AF389286FF3FAFE9356437CB927ACD874 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NIMjF9JURDS2WeVpIHHY5MSTiwY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/5a2ed9-8f8e-4c1d-aaf3-30c65ad83291/1/NIMjF9JURDS2WeVpIHHY5MSTiwY.mft Manifest number: 04D4 Signing time: Sat 06 Dec 2025 12:00:43 +0000 Manifest this update: Sat 06 Dec 2025 12:00:43 +0000 Manifest next update: Sun 07 Dec 2025 12:00:43 +0000 Files and hashes: 1: NIMjF9JURDS2WeVpIHHY5MSTiwY.crl (hash: gB9qMTQLWXyab7fkL4W/masCylvCVVIfn7pG0mRBxLg=) 2: x2Xaez7Ra9vjvF4FG3Er4hO4ovk.roa (hash: T67Ch/iuLueDDibfJIFSKnLQW9UiEIt+71JVmL/jUzg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/5a2ed9-8f8e-4c1d-aaf3-30c65ad83291/1/NIMjF9JURDS2WeVpIHHY5MSTiwY.crl rsync://rpki.ripe.net/repository/DEFAULT/11/5a2ed9-8f8e-4c1d-aaf3-30c65ad83291/1/NIMjF9JURDS2WeVpIHHY5MSTiwY.mft rsync://rpki.ripe.net/repository/DEFAULT/NIMjF9JURDS2WeVpIHHY5MSTiwY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 12:00:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:89:28:6f:f3:fa:fe:93:56:43:7c:b9:27:ac:d8:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=34832317d2544434b659e5692071d8e4c4938b06 Validity Not Before: Dec 6 12:00:43 2025 GMT Not After : Dec 7 12:00:43 2025 GMT Subject: CN=034a944106ad66d41c2e29a243c352685bdd4900 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:3c:72:b0:16:e0:e6:64:2c:fa:ff:45:7c:df: 2e:6a:c8:f3:9c:ce:77:9d:66:e1:8a:08:de:2f:9b: 4c:e1:8b:a4:c6:c0:fa:58:d9:35:04:03:4d:f3:63: c4:f9:9d:65:05:ab:4d:13:79:4d:54:ec:f4:71:81: 7b:b0:4f:d5:e7:c8:71:85:04:11:50:a4:38:66:92: 26:f4:d8:31:f1:ac:ed:66:92:d2:6d:44:ae:1f:c0: dc:33:75:0a:81:65:ef:ee:e5:e2:5c:a1:3c:3f:1c: 74:87:5b:25:1c:fb:fd:90:cc:27:07:93:65:f7:f9: 11:d0:cd:30:10:d1:0d:22:04:40:bd:8c:9c:d1:d0: 8d:c5:8c:12:5d:0e:78:d9:81:c6:13:1e:cf:1d:f2: cd:9d:18:1b:ae:ea:01:d5:7e:26:2e:2f:0b:ce:e8: 0b:a4:22:5c:ea:1c:b0:fa:e1:19:3a:2a:2d:e4:b6: cb:ac:de:f6:06:bd:d5:4d:4f:09:5c:4c:35:86:a5: dd:c2:07:a3:04:25:59:5b:09:53:e1:d9:aa:39:12: 4c:27:cb:ae:41:48:1a:d2:f5:04:da:71:64:ba:80: a3:1f:86:ad:31:8f:19:6e:af:1e:02:73:84:8b:40: e8:7e:43:d0:6a:ba:15:7b:8e:1e:c1:50:27:ea:09: fc:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:4A:94:41:06:AD:66:D4:1C:2E:29:A2:43:C3:52:68:5B:DD:49:00 X509v3 Authority Key Identifier: keyid:34:83:23:17:D2:54:44:34:B6:59:E5:69:20:71:D8:E4:C4:93:8B:06 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NIMjF9JURDS2WeVpIHHY5MSTiwY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/5a2ed9-8f8e-4c1d-aaf3-30c65ad83291/1/NIMjF9JURDS2WeVpIHHY5MSTiwY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/11/5a2ed9-8f8e-4c1d-aaf3-30c65ad83291/1/NIMjF9JURDS2WeVpIHHY5MSTiwY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption cf:78:0c:a0:bb:8c:32:60:44:d7:98:db:01:e6:df:be:92:32: 11:c8:95:a8:a4:4b:3f:b1:ff:47:13:cd:36:50:8c:9c:c7:41: ff:11:eb:2d:66:95:86:c9:a2:c6:6b:8f:1b:52:57:b5:37:f1: 59:6e:a3:41:dc:dc:7c:01:f6:07:e1:6c:16:a5:de:6d:97:1a: 9f:a8:e2:ac:91:dc:d7:c6:c7:29:2c:5a:72:95:92:8b:e9:86: bc:93:8c:33:3b:ca:dd:d9:d4:3a:9c:b6:44:d7:09:31:92:dc: c2:2e:fa:70:cf:34:55:2f:e7:ad:0f:eb:30:ef:ee:18:78:ca: ee:04:61:78:62:09:87:1b:05:3b:82:11:b8:82:5e:3f:e1:be: e1:64:2f:51:39:d7:63:49:7a:9d:a8:c3:24:ea:b9:f7:ab:e3: 85:6d:d2:31:66:b8:cf:f8:b8:b6:e4:9e:3d:7a:0e:cd:72:5b: 76:b2:7b:bc:40:c2:36:ff:bc:e3:5b:52:37:a8:fc:3d:e1:10: 7a:d8:15:ae:2d:32:51:b0:89:6e:5f:d0:4d:b2:fe:41:c9:0b: 5e:f7:18:75:e9:99:a8:83:64:52:fb:5e:8c:9d:ea:ac:a0:bb: dc:74:d9:e6:fc:6b:b3:06:db:47:6d:af:32:30:c4:0b:83:8c: 4e:fe:7c:1d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrziShv8/r+k1ZDfLknrNh0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM0ODMyMzE3ZDI1NDQ0MzRiNjU5ZTU2OTIwNzFkOGU0YzQ5 MzhiMDYwHhcNMjUxMjA2MTIwMDQzWhcNMjUxMjA3MTIwMDQzWjAzMTEwLwYDVQQD EygwMzRhOTQ0MTA2YWQ2NmQ0MWMyZTI5YTI0M2MzNTI2ODViZGQ0OTAwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkzxysBbg5mQs+v9FfN8uasjznM53 nWbhigjeL5tM4YukxsD6WNk1BANN82PE+Z1lBatNE3lNVOz0cYF7sE/V58hxhQQR UKQ4ZpIm9Ngx8aztZpLSbUSuH8DcM3UKgWXv7uXiXKE8Pxx0h1slHPv9kMwnB5Nl 9/kR0M0wENENIgRAvYyc0dCNxYwSXQ542YHGEx7PHfLNnRgbruoB1X4mLi8LzugL pCJc6hyw+uEZOiot5LbLrN72Br3VTU8JXEw1hqXdwgejBCVZWwlT4dmqORJMJ8uu QUga0vUE2nFkuoCjH4atMY8Zbq8eAnOEi0DofkPQaroVe44ewVAn6gn8UwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFANKlEEGrWbUHC4pokPDUmhb3UkAMB8GA1UdIwQY MBaAFDSDIxfSVEQ0tlnlaSBx2OTEk4sGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTklNakY5SlVSRFMyV2VWcElISFk1TVNUaXdZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS81YTJlZDktOGY4ZS00YzFkLWFhZjMt MzBjNjVhZDgzMjkxLzEvTklNakY5SlVSRFMyV2VWcElISFk1TVNUaXdZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMS81YTJlZDktOGY4ZS00YzFkLWFhZjMtMzBjNjVhZDgzMjkx LzEvTklNakY5SlVSRFMyV2VWcElISFk1TVNUaXdZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAz3gMoLuM MmBE15jbAebfvpIyEciVqKRLP7H/RxPNNlCMnMdB/xHrLWaVhsmixmuPG1JXtTfx WW6jQdzcfAH2B+FsFqXebZcan6jirJHc18bHKSxacpWSi+mGvJOMMzvK3dnUOpy2 RNcJMZLcwi76cM80VS/nrQ/rMO/uGHjK7gRheGIJhxsFO4IRuIJeP+G+4WQvUTnX Y0l6najDJOq596vjhW3SMWa4z/i4tuSePXoOzXJbdrJ7vEDCNv+841tSN6j8PeEQ etgVri0yUbCJbl/QTbL+QckLXvcYdemZqINkUvtejJ3qrKC73HTZ5vxrswbbR22v MjDEC4OMTv58HQ== -----END CERTIFICATE-----Generated at Sat Dec 6 19:07:08 2025 by rpki-client