This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/daccc4-36c8-4d4c-8c4e-5760b5d54df9/1/nHLoTFLlxJCdvHAqodIS1HiHX60.mft File: nHLoTFLlxJCdvHAqodIS1HiHX60.mft (raw, json) Hash identifier: udxhAMPLwsi84n0ofxwzjWlqsmb/MDNrz4baM9xjtk0= Subject key identifier: 2E:B6:0E:0C:A0:8D:5A:8B:8C:98:F6:AD:08:9A:41:CC:AC:BB:B9:DF Authority key identifier: 9C:72:E8:4C:52:E5:C4:90:9D:BC:70:2A:A1:D2:12:D4:78:87:5F:AD Certificate issuer: /CN=9c72e84c52e5c4909dbc702aa1d212d478875fad Certificate serial: 019AF31BCC22A393D42347FFCC78BBADC906 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nHLoTFLlxJCdvHAqodIS1HiHX60.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/daccc4-36c8-4d4c-8c4e-5760b5d54df9/1/nHLoTFLlxJCdvHAqodIS1HiHX60.mft Manifest number: 074D Signing time: Sat 06 Dec 2025 10:01:16 +0000 Manifest this update: Sat 06 Dec 2025 10:01:16 +0000 Manifest next update: Sun 07 Dec 2025 10:01:16 +0000 Files and hashes: 1: MJgreWjojTG3TWAm0IOsT3PX7yE.roa (hash: QQOCbVX4ydh8RHwVZnu9QI+n2Ns0Q1CadZGcMjFSReI=) 2: nHLoTFLlxJCdvHAqodIS1HiHX60.crl (hash: lSxBso14JHmTZ+WDccecX0uFEA6iN5jg8fwfFubtguU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/daccc4-36c8-4d4c-8c4e-5760b5d54df9/1/nHLoTFLlxJCdvHAqodIS1HiHX60.crl rsync://rpki.ripe.net/repository/DEFAULT/29/daccc4-36c8-4d4c-8c4e-5760b5d54df9/1/nHLoTFLlxJCdvHAqodIS1HiHX60.mft rsync://rpki.ripe.net/repository/DEFAULT/nHLoTFLlxJCdvHAqodIS1HiHX60.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 10:01:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:1b:cc:22:a3:93:d4:23:47:ff:cc:78:bb:ad:c9:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9c72e84c52e5c4909dbc702aa1d212d478875fad Validity Not Before: Dec 6 10:01:16 2025 GMT Not After : Dec 7 10:01:16 2025 GMT Subject: CN=2eb60e0ca08d5a8b8c98f6ad089a41ccacbbb9df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:a4:f7:b2:cc:3e:b7:62:7e:be:dc:88:4e:60: 8c:cd:81:8d:4f:2c:f5:46:df:6c:76:f2:47:14:c8: b1:5b:14:c9:c5:2b:1b:92:29:81:ce:30:40:6e:84: e9:6d:d2:04:66:50:6a:c5:fc:62:8a:3c:82:04:4c: 9e:a3:85:74:6e:1e:c4:67:b4:7e:ad:ce:0b:d7:fa: a2:91:c8:33:f6:36:89:bd:cb:1a:ce:38:49:84:2d: 35:09:32:fe:ee:78:8d:a5:8e:cd:91:54:e0:fe:da: 6c:89:71:e0:4c:5f:7d:d9:66:e2:f6:70:e5:4a:ea: b4:87:81:bf:22:57:95:cb:86:54:94:a1:17:f1:32: 76:38:bd:6c:fa:d7:f5:77:97:61:4d:cc:da:20:1d: 51:18:18:41:f8:0f:c5:74:8b:8b:bb:8f:b9:41:b8: d4:20:12:5c:e4:21:9f:10:9b:f9:bf:79:04:9c:3b: 60:53:09:d5:df:02:3b:bb:e7:cd:6c:43:fc:b1:2b: f4:17:bb:e9:dc:bd:1d:24:79:70:6a:06:26:41:5c: a3:b3:1f:ee:16:4c:df:2f:e7:6f:ab:f2:2e:d4:e7: d7:43:62:d4:b6:f6:bd:d4:00:6d:df:f8:f7:a9:bc: 1a:5a:53:c5:10:62:3a:60:ec:79:b4:16:15:ff:e8: 77:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:B6:0E:0C:A0:8D:5A:8B:8C:98:F6:AD:08:9A:41:CC:AC:BB:B9:DF X509v3 Authority Key Identifier: keyid:9C:72:E8:4C:52:E5:C4:90:9D:BC:70:2A:A1:D2:12:D4:78:87:5F:AD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nHLoTFLlxJCdvHAqodIS1HiHX60.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/daccc4-36c8-4d4c-8c4e-5760b5d54df9/1/nHLoTFLlxJCdvHAqodIS1HiHX60.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/29/daccc4-36c8-4d4c-8c4e-5760b5d54df9/1/nHLoTFLlxJCdvHAqodIS1HiHX60.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0c:91:93:67:be:6d:b2:40:bc:92:1d:01:b2:eb:79:3a:f8:c7: e7:d4:e5:07:24:8b:c6:7d:56:85:27:ad:92:ca:47:cb:89:05: 6c:62:ba:12:f3:a3:34:78:ad:28:f0:40:7d:c4:6d:a9:94:c2: b8:64:06:15:ce:1f:06:f2:5e:88:1b:c3:a7:55:68:18:39:ab: cc:59:8a:90:08:0e:cc:c3:e6:87:c9:a1:e4:0f:2a:47:d1:ff: 75:bd:27:bf:4d:e0:d0:02:1c:ee:2c:ed:6b:89:c3:12:7c:39: e3:17:1d:6b:d7:e2:86:14:f3:2c:ad:23:c7:8f:9f:c6:28:83: 07:7f:7b:58:3c:94:a2:e9:42:28:56:77:52:59:43:28:02:ae: ff:09:f7:42:2c:ae:a3:51:c6:20:44:fe:6d:fa:18:1f:0f:d2: 33:60:fc:ec:fb:7b:ad:e4:58:ca:df:86:7d:d1:97:d8:f3:b3: 84:e5:df:d5:06:f3:28:02:33:2b:26:a0:29:dc:ef:50:22:78: f5:8e:01:64:ee:52:2e:96:3e:dd:77:f7:8d:58:69:64:5a:7a: f6:a8:ba:55:86:47:c5:c5:b7:8b:6a:05:95:37:36:d0:b6:19: a7:ce:98:98:0d:73:16:ff:a6:f8:0c:eb:7d:56:86:31:ac:4a: a6:a6:9a:93 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzG8wio5PUI0f/zHi7rckGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDljNzJlODRjNTJlNWM0OTA5ZGJjNzAyYWExZDIxMmQ0Nzg4 NzVmYWQwHhcNMjUxMjA2MTAwMTE2WhcNMjUxMjA3MTAwMTE2WjAzMTEwLwYDVQQD EygyZWI2MGUwY2EwOGQ1YThiOGM5OGY2YWQwODlhNDFjY2FjYmJiOWRmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnaT3ssw+t2J+vtyITmCMzYGNTyz1 Rt9sdvJHFMixWxTJxSsbkimBzjBAboTpbdIEZlBqxfxiijyCBEyeo4V0bh7EZ7R+ rc4L1/qikcgz9jaJvcsazjhJhC01CTL+7niNpY7NkVTg/tpsiXHgTF992Wbi9nDl Suq0h4G/IleVy4ZUlKEX8TJ2OL1s+tf1d5dhTczaIB1RGBhB+A/FdIuLu4+5QbjU IBJc5CGfEJv5v3kEnDtgUwnV3wI7u+fNbEP8sSv0F7vp3L0dJHlwagYmQVyjsx/u FkzfL+dvq/Iu1OfXQ2LUtva91ABt3/j3qbwaWlPFEGI6YOx5tBYV/+h3owIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFC62DgygjVqLjJj2rQiaQcysu7nfMB8GA1UdIwQY MBaAFJxy6ExS5cSQnbxwKqHSEtR4h1+tMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbkhMb1RGTGx4SkNkdkhBcW9kSVMxSGlIWDYwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS9kYWNjYzQtMzZjOC00ZDRjLThjNGUt NTc2MGI1ZDU0ZGY5LzEvbkhMb1RGTGx4SkNkdkhBcW9kSVMxSGlIWDYwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOS9kYWNjYzQtMzZjOC00ZDRjLThjNGUtNTc2MGI1ZDU0ZGY5 LzEvbkhMb1RGTGx4SkNkdkhBcW9kSVMxSGlIWDYwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADJGTZ75t skC8kh0Bsut5OvjH59TlBySLxn1WhSetkspHy4kFbGK6EvOjNHitKPBAfcRtqZTC uGQGFc4fBvJeiBvDp1VoGDmrzFmKkAgOzMPmh8mh5A8qR9H/db0nv03g0AIc7izt a4nDEnw54xcda9fihhTzLK0jx4+fxiiDB397WDyUoulCKFZ3UllDKAKu/wn3Qiyu o1HGIET+bfoYHw/SM2D87Pt7reRYyt+GfdGX2POzhOXf1QbzKAIzKyagKdzvUCJ4 9Y4BZO5SLpY+3Xf3jVhpZFp69qi6VYZHxcW3i2oFlTc20LYZp86YmA1zFv+m+Azr fVaGMaxKpqaakw== -----END CERTIFICATE-----Generated at Sat Dec 6 20:48:53 2025 by rpki-client