This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/a280d8-8dba-4566-a238-33a3f3f003a5/1/NHBSPMWdTwUnV-cSKR4rt535KAA.mft File: NHBSPMWdTwUnV-cSKR4rt535KAA.mft (raw, json) Hash identifier: pNJtSNO0UrHjBxfWJ1vwKaImUwnPg6H/T+7crirJoe8= Subject key identifier: 91:EB:1B:20:86:AA:58:73:CB:0D:3C:C7:4E:C6:0D:C3:81:1E:BE:19 Authority key identifier: 34:70:52:3C:C5:9D:4F:05:27:57:E7:12:29:1E:2B:B7:9D:F9:28:00 Certificate issuer: /CN=3470523cc59d4f052757e712291e2bb79df92800 Certificate serial: 019AF3F74A4BC35EF79EF55D5956B4017375 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NHBSPMWdTwUnV-cSKR4rt535KAA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/a280d8-8dba-4566-a238-33a3f3f003a5/1/NHBSPMWdTwUnV-cSKR4rt535KAA.mft Manifest number: 0271 Signing time: Sat 06 Dec 2025 14:01:01 +0000 Manifest this update: Sat 06 Dec 2025 14:01:01 +0000 Manifest next update: Sun 07 Dec 2025 14:01:01 +0000 Files and hashes: 1: NHBSPMWdTwUnV-cSKR4rt535KAA.crl (hash: IgrEw2bE2CelyvGGEu0tup7G4xbaCQ+8Ghk6C5HcBcI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/a280d8-8dba-4566-a238-33a3f3f003a5/1/NHBSPMWdTwUnV-cSKR4rt535KAA.crl rsync://rpki.ripe.net/repository/DEFAULT/24/a280d8-8dba-4566-a238-33a3f3f003a5/1/NHBSPMWdTwUnV-cSKR4rt535KAA.mft rsync://rpki.ripe.net/repository/DEFAULT/NHBSPMWdTwUnV-cSKR4rt535KAA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:f7:4a:4b:c3:5e:f7:9e:f5:5d:59:56:b4:01:73:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3470523cc59d4f052757e712291e2bb79df92800 Validity Not Before: Dec 6 14:01:01 2025 GMT Not After : Dec 7 14:01:01 2025 GMT Subject: CN=91eb1b2086aa5873cb0d3cc74ec60dc3811ebe19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:53:2f:3a:51:c1:34:55:42:cb:44:dc:92:2c: 34:06:cb:4c:5b:77:2e:f3:bb:dd:a2:2a:e2:98:6f: c9:c7:76:b4:7b:2b:1f:40:a4:5c:ad:ef:55:d0:3e: ca:00:f8:83:e2:79:0d:da:35:8e:42:90:c5:2f:ee: 2b:9a:ef:78:a0:6b:59:25:ee:8c:87:67:d3:29:19: 93:99:6b:e5:e1:e5:5e:bf:9b:ff:ea:51:33:97:b1: 3b:32:b0:ff:85:24:6d:3e:56:c9:d3:49:e3:af:a4: 58:7c:41:57:a6:ab:08:80:cf:a5:43:57:80:c2:de: 6c:75:fa:e5:c9:0e:0c:84:1f:a1:e8:58:0d:a2:e2: bf:93:bb:4a:59:e9:2c:7b:ee:69:3b:b8:17:45:6b: ec:0b:18:ea:08:87:ba:42:d0:7c:6d:b7:fc:a1:1e: 2f:6e:40:cb:35:79:12:72:27:59:1a:15:de:2b:5b: 65:df:7f:60:ad:fb:5c:7f:1d:46:40:4d:f8:10:23: 88:9e:59:bd:b4:d4:3d:35:02:81:b6:62:30:63:58: 42:d1:f5:ad:bd:3e:dd:0b:bc:ad:d0:11:55:94:aa: 1f:bb:20:1d:e4:1f:95:29:09:7a:c6:2f:1b:fe:88: dc:bb:65:b3:cd:2a:41:0d:d0:95:ab:58:57:9e:3d: 80:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:EB:1B:20:86:AA:58:73:CB:0D:3C:C7:4E:C6:0D:C3:81:1E:BE:19 X509v3 Authority Key Identifier: keyid:34:70:52:3C:C5:9D:4F:05:27:57:E7:12:29:1E:2B:B7:9D:F9:28:00 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NHBSPMWdTwUnV-cSKR4rt535KAA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/a280d8-8dba-4566-a238-33a3f3f003a5/1/NHBSPMWdTwUnV-cSKR4rt535KAA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/24/a280d8-8dba-4566-a238-33a3f3f003a5/1/NHBSPMWdTwUnV-cSKR4rt535KAA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3f:7c:dc:4d:0c:b7:d6:1b:d4:bc:28:79:bf:fd:fe:87:f2:da: b1:b3:63:f2:4f:c1:72:34:cd:be:47:1d:e9:fb:b7:c0:05:41: 2c:83:9a:02:21:1d:91:29:5f:f7:32:c6:df:47:ad:d8:af:6c: b2:3b:0a:2e:21:b7:ba:9c:e7:61:53:61:52:36:a2:5c:0c:fe: a9:d4:56:8e:ef:8d:ff:ad:da:b5:6b:4e:c0:45:0b:51:7e:54: f8:43:14:b0:04:c2:97:f6:60:f4:ff:af:5e:49:73:20:e3:af: bf:38:8c:32:03:81:e6:04:7d:35:8e:3b:5c:c1:49:d8:2c:8c: 52:8d:32:e5:ff:89:e9:89:e3:1e:a8:eb:df:6c:33:b7:8e:fb: 63:02:e6:12:1f:c8:29:c1:04:f6:20:4f:4a:c8:2e:54:19:32: 5e:df:51:70:cf:a4:dc:db:9d:6a:1d:a7:c9:6e:a1:5e:95:16: 2b:4e:a5:ae:76:0d:f6:72:e6:b6:2e:d8:f9:fb:8a:a5:e5:e9: ea:3e:28:b5:3d:71:6f:d0:fd:b1:c1:cb:0e:37:31:80:6f:75: dc:a2:b6:19:07:bc:e8:5c:cb:bf:f4:d6:52:ce:43:ac:dd:4f: 9f:03:75:9b:68:f7:82:38:59:ac:2e:14:31:bb:a2:57:a7:b2: 28:aa:3d:11 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrz90pLw173nvVdWVa0AXN1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM0NzA1MjNjYzU5ZDRmMDUyNzU3ZTcxMjI5MWUyYmI3OWRm OTI4MDAwHhcNMjUxMjA2MTQwMTAxWhcNMjUxMjA3MTQwMTAxWjAzMTEwLwYDVQQD Eyg5MWViMWIyMDg2YWE1ODczY2IwZDNjYzc0ZWM2MGRjMzgxMWViZTE5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvlMvOlHBNFVCy0Tckiw0BstMW3cu 87vdoirimG/Jx3a0eysfQKRcre9V0D7KAPiD4nkN2jWOQpDFL+4rmu94oGtZJe6M h2fTKRmTmWvl4eVev5v/6lEzl7E7MrD/hSRtPlbJ00njr6RYfEFXpqsIgM+lQ1eA wt5sdfrlyQ4MhB+h6FgNouK/k7tKWekse+5pO7gXRWvsCxjqCIe6QtB8bbf8oR4v bkDLNXkScidZGhXeK1tl339grftcfx1GQE34ECOInlm9tNQ9NQKBtmIwY1hC0fWt vT7dC7yt0BFVlKofuyAd5B+VKQl6xi8b/ojcu2WzzSpBDdCVq1hXnj2AYwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJHrGyCGqlhzyw08x07GDcOBHr4ZMB8GA1UdIwQY MBaAFDRwUjzFnU8FJ1fnEikeK7ed+SgAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTkhCU1BNV2RUd1VuVi1jU0tSNHJ0NTM1S0FBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC9hMjgwZDgtOGRiYS00NTY2LWEyMzgt MzNhM2YzZjAwM2E1LzEvTkhCU1BNV2RUd1VuVi1jU0tSNHJ0NTM1S0FBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNC9hMjgwZDgtOGRiYS00NTY2LWEyMzgtMzNhM2YzZjAwM2E1 LzEvTkhCU1BNV2RUd1VuVi1jU0tSNHJ0NTM1S0FBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAP3zcTQy3 1hvUvCh5v/3+h/LasbNj8k/BcjTNvkcd6fu3wAVBLIOaAiEdkSlf9zLG30et2K9s sjsKLiG3upznYVNhUjaiXAz+qdRWju+N/63atWtOwEULUX5U+EMUsATCl/Zg9P+v XklzIOOvvziMMgOB5gR9NY47XMFJ2CyMUo0y5f+J6YnjHqjr32wzt477YwLmEh/I KcEE9iBPSsguVBkyXt9RcM+k3Nudah2nyW6hXpUWK06lrnYN9nLmti7Y+fuKpeXp 6j4otT1xb9D9scHLDjcxgG913KK2GQe86FzLv/TWUs5DrN1PnwN1m2j3gjhZrC4U MbuiV6eyKKo9EQ== -----END CERTIFICATE-----Generated at Sat Dec 6 16:43:54 2025 by rpki-client