This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/4eca4d-3a2e-4a84-a789-01577a927fa9/1/nSP0y0urXBCAGncGWN-JHPuMaMY.mft File: nSP0y0urXBCAGncGWN-JHPuMaMY.mft (raw, json) Hash identifier: 3n0FdRrlOnO0QT2oYp/EScs+eRdeW1TA0kVtZNFZRos= Subject key identifier: 64:E9:CD:8D:EF:9E:24:34:E5:9E:02:50:7D:27:DA:5C:DD:A2:73:DF Authority key identifier: 9D:23:F4:CB:4B:AB:5C:10:80:1A:77:06:58:DF:89:1C:FB:8C:68:C6 Certificate issuer: /CN=9d23f4cb4bab5c10801a770658df891cfb8c68c6 Certificate serial: 019AF16419CC98560C5937DF9285AC5ABFC4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSP0y0urXBCAGncGWN-JHPuMaMY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/4eca4d-3a2e-4a84-a789-01577a927fa9/1/nSP0y0urXBCAGncGWN-JHPuMaMY.mft Manifest number: 1741 Signing time: Sat 06 Dec 2025 02:01:00 +0000 Manifest this update: Sat 06 Dec 2025 02:01:00 +0000 Manifest next update: Sun 07 Dec 2025 02:01:00 +0000 Files and hashes: 1: 8fw2tBPm8-dk07FF86WEj68NsSM.roa (hash: 9R57W9brfUx0SayL8ULp3+gRula33F2inaK6dFDPaew=) 2: JUWn6tZ6js3OQBG2kVmBzCYaASs.roa (hash: ZWaMncDoxletMNjHKIW8FwbEakDn9YubUJeGI0AcYdQ=) 3: miGTaFk5Cl8OYVzdHPitg-4uIW0.roa (hash: AGqT78lBpkV9yA91ZQMLyqGPYCLhxFGELYf24q65eEw=) 4: nSP0y0urXBCAGncGWN-JHPuMaMY.crl (hash: C6g5d8fxqCO2fzcZcNay6Lhfbg1JcGMk+DyEMkozV0E=) 5: q06qTUv5-JCRpItbJ_9COQqHH6A.roa (hash: elj4UEL+GeLcIcxtH4+ahp+BuvQR4jhMQkNkTFsz2eM=) 6: ugvVJv1QPdlsdCOHyojPtazbLYI.roa (hash: pXfm5LL3VQOgBalVDK4dGytbPCPO103M4zKNQiaOMks=) 7: zn7RiYTFSuY_H6EW4hkd0ugXhg4.roa (hash: TjPxbEKTKC4G0EExaKEE++vAM3LyoGQfvbpHNfpM9R0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/4eca4d-3a2e-4a84-a789-01577a927fa9/1/nSP0y0urXBCAGncGWN-JHPuMaMY.crl rsync://rpki.ripe.net/repository/DEFAULT/1a/4eca4d-3a2e-4a84-a789-01577a927fa9/1/nSP0y0urXBCAGncGWN-JHPuMaMY.mft rsync://rpki.ripe.net/repository/DEFAULT/nSP0y0urXBCAGncGWN-JHPuMaMY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:64:19:cc:98:56:0c:59:37:df:92:85:ac:5a:bf:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9d23f4cb4bab5c10801a770658df891cfb8c68c6 Validity Not Before: Dec 6 02:01:00 2025 GMT Not After : Dec 7 02:01:00 2025 GMT Subject: CN=64e9cd8def9e2434e59e02507d27da5cdda273df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:3b:28:85:70:80:c4:c5:70:9a:db:d3:57:17: c5:e0:84:05:e2:e2:c3:12:16:61:76:17:84:2a:12: 98:95:47:46:25:6e:a6:c5:9b:72:d4:90:b4:d5:bd: e2:e3:a7:61:03:fb:ac:65:2d:9e:03:75:91:69:de: a7:3d:24:2c:9d:42:6c:3d:89:6c:a6:e7:53:8a:1a: 72:61:fc:0f:2d:65:08:83:1b:bb:e8:5e:62:d3:69: 36:36:15:60:ff:a0:20:79:0e:65:68:90:76:e0:08: 79:71:ff:2b:37:ea:70:bc:80:57:be:1b:de:6f:4f: d4:29:f8:1a:d7:11:1c:27:68:be:8e:ad:0f:65:6d: 4e:9a:e5:c4:8e:aa:45:bc:d6:64:39:e1:12:98:b0: 31:62:6a:19:ab:d7:d0:10:ac:1c:e8:20:c5:26:5c: dc:0d:65:a0:18:c4:ff:c8:ac:63:cd:21:5a:34:b8: 79:52:24:f3:72:77:d3:39:ae:a4:5e:36:a7:ac:d8: 84:a3:d1:25:d8:f1:18:18:88:68:a3:0a:19:32:cd: 9d:43:ae:89:12:d0:d7:dd:3d:e5:2d:41:3e:32:7f: 3d:f6:13:9f:85:b2:8d:8c:68:80:5b:69:ca:2f:25: 9b:b5:ff:aa:0b:6f:89:22:d3:19:0e:36:31:df:36: c8:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:E9:CD:8D:EF:9E:24:34:E5:9E:02:50:7D:27:DA:5C:DD:A2:73:DF X509v3 Authority Key Identifier: keyid:9D:23:F4:CB:4B:AB:5C:10:80:1A:77:06:58:DF:89:1C:FB:8C:68:C6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSP0y0urXBCAGncGWN-JHPuMaMY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/4eca4d-3a2e-4a84-a789-01577a927fa9/1/nSP0y0urXBCAGncGWN-JHPuMaMY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/4eca4d-3a2e-4a84-a789-01577a927fa9/1/nSP0y0urXBCAGncGWN-JHPuMaMY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 65:01:6f:2a:f3:18:bc:62:1c:07:36:54:cc:52:18:d3:d9:bf: 6f:68:f6:05:9f:c6:2c:09:81:26:c1:3c:76:ab:77:e0:df:c8: 8e:70:97:11:cc:31:7e:e9:fc:f9:0e:5b:15:4c:0f:cf:1d:a8: 68:6b:3e:b2:cf:2f:b0:04:d5:26:95:8c:a8:ff:5f:a2:8a:2e: 86:ba:cc:bb:85:96:a3:63:39:ef:4c:3a:bc:aa:83:85:ef:50: c1:22:2b:59:9a:51:be:38:2d:7d:e1:43:46:9d:a2:c1:76:ac: 50:0e:24:dd:27:c9:4f:be:29:d4:7e:99:55:17:b0:4d:9c:75: b0:fe:e6:a1:bb:54:7d:43:ed:a9:3f:f0:a5:d1:f8:30:61:3e: 47:f1:87:51:71:d9:4f:d8:19:39:67:bf:c2:85:03:cf:92:af: 53:ba:4a:74:a4:63:71:20:5e:d5:75:ee:9d:78:ae:e0:90:a3: 80:86:af:34:92:22:f5:c6:7c:ec:01:a0:99:04:ac:da:70:06: 45:64:e7:2c:11:15:0c:a5:36:23:e7:5d:0b:d9:91:e8:25:9d: 22:27:6b:51:7c:d5:50:f2:e9:0e:3d:0d:e0:30:1e:a3:52:3e: 2f:e6:93:70:a7:70:49:6d:b8:35:8c:63:ff:1e:83:86:75:b0: 4b:ee:f9:4b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxZBnMmFYMWTffkoWsWr/EMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlkMjNmNGNiNGJhYjVjMTA4MDFhNzcwNjU4ZGY4OTFjZmI4 YzY4YzYwHhcNMjUxMjA2MDIwMTAwWhcNMjUxMjA3MDIwMTAwWjAzMTEwLwYDVQQD Eyg2NGU5Y2Q4ZGVmOWUyNDM0ZTU5ZTAyNTA3ZDI3ZGE1Y2RkYTI3M2RmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzDsohXCAxMVwmtvTVxfF4IQF4uLD EhZhdheEKhKYlUdGJW6mxZty1JC01b3i46dhA/usZS2eA3WRad6nPSQsnUJsPYls pudTihpyYfwPLWUIgxu76F5i02k2NhVg/6AgeQ5laJB24Ah5cf8rN+pwvIBXvhve b0/UKfga1xEcJ2i+jq0PZW1OmuXEjqpFvNZkOeESmLAxYmoZq9fQEKwc6CDFJlzc DWWgGMT/yKxjzSFaNLh5UiTzcnfTOa6kXjanrNiEo9El2PEYGIhoowoZMs2dQ66J EtDX3T3lLUE+Mn899hOfhbKNjGiAW2nKLyWbtf+qC2+JItMZDjYx3zbItwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGTpzY3vniQ05Z4CUH0n2lzdonPfMB8GA1UdIwQY MBaAFJ0j9MtLq1wQgBp3BljfiRz7jGjGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvblNQMHkwdXJYQkNBR25jR1dOLUpIUHVNYU1ZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYS80ZWNhNGQtM2EyZS00YTg0LWE3ODkt MDE1NzdhOTI3ZmE5LzEvblNQMHkwdXJYQkNBR25jR1dOLUpIUHVNYU1ZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYS80ZWNhNGQtM2EyZS00YTg0LWE3ODktMDE1NzdhOTI3ZmE5 LzEvblNQMHkwdXJYQkNBR25jR1dOLUpIUHVNYU1ZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZQFvKvMY vGIcBzZUzFIY09m/b2j2BZ/GLAmBJsE8dqt34N/IjnCXEcwxfun8+Q5bFUwPzx2o aGs+ss8vsATVJpWMqP9fooouhrrMu4WWo2M570w6vKqDhe9QwSIrWZpRvjgtfeFD Rp2iwXasUA4k3SfJT74p1H6ZVRewTZx1sP7mobtUfUPtqT/wpdH4MGE+R/GHUXHZ T9gZOWe/woUDz5KvU7pKdKRjcSBe1XXunXiu4JCjgIavNJIi9cZ87AGgmQSs2nAG RWTnLBEVDKU2I+ddC9mR6CWdIidrUXzVUPLpDj0N4DAeo1I+L+aTcKdwSW24NYxj /x6DhnWwS+75Sw== -----END CERTIFICATE-----Generated at Sat Dec 6 08:19:01 2025 by rpki-client