This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/10bf3d-4eb5-4a13-83b7-2bb81d99d5f1/1/N2mLTzfYCBw1Ba2guqhSIZNDQb4.mft File: N2mLTzfYCBw1Ba2guqhSIZNDQb4.mft (raw, json) Hash identifier: ZiNPzuJd/PHOF4Ku7wAqtxKo/f8UkOjgoBCAHOvdQD8= Subject key identifier: 0D:82:66:67:92:85:06:6F:D0:FB:FB:8D:8C:DA:31:3C:AD:18:1E:6C Authority key identifier: 37:69:8B:4F:37:D8:08:1C:35:05:AD:A0:BA:A8:52:21:93:43:41:BE Certificate issuer: /CN=37698b4f37d8081c3505ada0baa85221934341be Certificate serial: 019AF31C20D8CD751096EBB75199A4D67A7B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N2mLTzfYCBw1Ba2guqhSIZNDQb4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/10bf3d-4eb5-4a13-83b7-2bb81d99d5f1/1/N2mLTzfYCBw1Ba2guqhSIZNDQb4.mft Manifest number: 0FBE Signing time: Sat 06 Dec 2025 10:01:38 +0000 Manifest this update: Sat 06 Dec 2025 10:01:38 +0000 Manifest next update: Sun 07 Dec 2025 10:01:38 +0000 Files and hashes: 1: N2mLTzfYCBw1Ba2guqhSIZNDQb4.crl (hash: thncr1SDioTgA7Plznil0D05PNRNUHyUNhcWhPd5ZUM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/10bf3d-4eb5-4a13-83b7-2bb81d99d5f1/1/N2mLTzfYCBw1Ba2guqhSIZNDQb4.crl rsync://rpki.ripe.net/repository/DEFAULT/1d/10bf3d-4eb5-4a13-83b7-2bb81d99d5f1/1/N2mLTzfYCBw1Ba2guqhSIZNDQb4.mft rsync://rpki.ripe.net/repository/DEFAULT/N2mLTzfYCBw1Ba2guqhSIZNDQb4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:1c:20:d8:cd:75:10:96:eb:b7:51:99:a4:d6:7a:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=37698b4f37d8081c3505ada0baa85221934341be Validity Not Before: Dec 6 10:01:38 2025 GMT Not After : Dec 7 10:01:38 2025 GMT Subject: CN=0d8266679285066fd0fbfb8d8cda313cad181e6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:6b:11:70:8a:cc:08:a0:79:7f:7a:a3:4b:7f: 7d:f0:38:4d:57:99:21:af:35:fd:b9:6a:8d:1c:39: 53:56:e7:b9:ba:2b:ff:78:cd:d8:e4:28:48:8b:92: 6d:4e:4c:ef:ea:15:33:a4:02:ec:ee:93:4c:b1:d3: 25:88:06:97:78:2b:8d:10:14:43:b1:55:ee:7a:54: 61:a5:9e:e6:5f:a8:72:80:8f:0d:11:79:02:73:18: 2f:34:cb:e3:f3:7b:65:e6:09:eb:13:b2:0f:24:2e: 38:7d:a8:43:4a:44:6e:66:a5:fb:04:e8:14:3c:90: 68:27:e0:e6:b3:67:c6:d0:f5:81:31:97:cb:25:3e: b9:9f:ea:03:22:b1:ec:57:8a:8b:ea:68:2d:eb:66: 35:cc:c2:f7:3f:26:b1:a0:d4:bd:a2:1b:4c:6b:3d: 3d:1b:db:f1:c3:f2:51:9c:cb:37:7f:85:a2:8f:f3: 59:3e:e4:40:b9:29:ed:9a:0e:73:c2:68:08:6f:28: 35:21:ee:c6:65:d9:63:41:ce:b5:76:4d:19:2f:f8: b8:cc:81:7d:86:84:48:36:7b:2d:a7:f1:ca:ea:97: f4:a9:b8:30:be:9c:bb:c9:e3:af:87:ec:e3:87:aa: 42:c4:72:7e:75:5f:a5:a0:a6:02:27:9b:ab:06:ae: 41:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:82:66:67:92:85:06:6F:D0:FB:FB:8D:8C:DA:31:3C:AD:18:1E:6C X509v3 Authority Key Identifier: keyid:37:69:8B:4F:37:D8:08:1C:35:05:AD:A0:BA:A8:52:21:93:43:41:BE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N2mLTzfYCBw1Ba2guqhSIZNDQb4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/10bf3d-4eb5-4a13-83b7-2bb81d99d5f1/1/N2mLTzfYCBw1Ba2guqhSIZNDQb4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/10bf3d-4eb5-4a13-83b7-2bb81d99d5f1/1/N2mLTzfYCBw1Ba2guqhSIZNDQb4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2b:7d:60:76:e3:b3:e7:b8:e2:03:14:d2:3a:61:46:9e:a6:eb: f0:b7:0a:5d:51:1c:39:64:7e:3e:26:1b:22:f4:83:c3:67:4a: 0e:dc:1f:c1:3a:3c:5e:71:ac:06:8f:d0:ff:5f:4d:1b:22:c2: 80:52:ff:f1:48:7c:ae:00:12:9a:2c:f1:5d:ce:43:52:8f:dc: e6:9e:8b:2e:b7:e8:6c:91:47:c0:01:d0:79:6c:1d:d2:c6:0b: f3:f8:9e:03:72:b7:6c:04:92:dd:6e:6a:7f:62:70:53:ac:82: de:78:c8:49:e1:34:d7:64:44:a3:24:ba:3a:e6:30:4f:e6:49: df:92:8f:b1:03:aa:95:3a:f7:63:d6:b1:36:bb:8b:93:da:74: 6e:83:5a:fc:63:49:5e:4b:4f:df:f7:51:38:d9:19:37:ec:33: e7:17:06:b5:85:ab:f4:57:80:98:e0:81:e2:1f:4d:4f:06:62: ea:fa:18:fb:02:f7:15:e0:e7:b3:35:86:78:da:38:58:16:41: 99:69:0c:71:be:33:e5:9d:a9:37:39:b3:d0:02:52:e3:0b:d2: a2:2f:f5:88:20:8b:dc:98:75:a0:94:d0:a3:ce:c5:b3:a6:b3: 36:96:82:0a:95:87:06:19:d1:15:fb:0e:c0:92:2a:e3:3e:a1: 55:7e:b7:27 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzHCDYzXUQluu3UZmk1np7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM3Njk4YjRmMzdkODA4MWMzNTA1YWRhMGJhYTg1MjIxOTM0 MzQxYmUwHhcNMjUxMjA2MTAwMTM4WhcNMjUxMjA3MTAwMTM4WjAzMTEwLwYDVQQD EygwZDgyNjY2NzkyODUwNjZmZDBmYmZiOGQ4Y2RhMzEzY2FkMTgxZTZjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk2sRcIrMCKB5f3qjS3998DhNV5kh rzX9uWqNHDlTVue5uiv/eM3Y5ChIi5JtTkzv6hUzpALs7pNMsdMliAaXeCuNEBRD sVXuelRhpZ7mX6hygI8NEXkCcxgvNMvj83tl5gnrE7IPJC44fahDSkRuZqX7BOgU PJBoJ+Dms2fG0PWBMZfLJT65n+oDIrHsV4qL6mgt62Y1zML3PyaxoNS9ohtMaz09 G9vxw/JRnMs3f4Wij/NZPuRAuSntmg5zwmgIbyg1Ie7GZdljQc61dk0ZL/i4zIF9 hoRINnstp/HK6pf0qbgwvpy7yeOvh+zjh6pCxHJ+dV+loKYCJ5urBq5B2wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFA2CZmeShQZv0Pv7jYzaMTytGB5sMB8GA1UdIwQY MBaAFDdpi0832AgcNQWtoLqoUiGTQ0G+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTjJtTFR6ZllDQncxQmEyZ3VxaFNJWk5EUWI0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZC8xMGJmM2QtNGViNS00YTEzLTgzYjct MmJiODFkOTlkNWYxLzEvTjJtTFR6ZllDQncxQmEyZ3VxaFNJWk5EUWI0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZC8xMGJmM2QtNGViNS00YTEzLTgzYjctMmJiODFkOTlkNWYx LzEvTjJtTFR6ZllDQncxQmEyZ3VxaFNJWk5EUWI0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAK31gduOz 57jiAxTSOmFGnqbr8LcKXVEcOWR+PiYbIvSDw2dKDtwfwTo8XnGsBo/Q/19NGyLC gFL/8Uh8rgASmizxXc5DUo/c5p6LLrfobJFHwAHQeWwd0sYL8/ieA3K3bASS3W5q f2JwU6yC3njISeE012REoyS6OuYwT+ZJ35KPsQOqlTr3Y9axNruLk9p0boNa/GNJ XktP3/dRONkZN+wz5xcGtYWr9FeAmOCB4h9NTwZi6voY+wL3FeDnszWGeNo4WBZB mWkMcb4z5Z2pNzmz0AJS4wvSoi/1iCCL3Jh1oJTQo87Fs6azNpaCCpWHBhnRFfsO wJIq4z6hVX63Jw== -----END CERTIFICATE-----Generated at Sat Dec 6 11:56:17 2025 by rpki-client