This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/6dac86-224b-4ae5-b2a8-496ba82492ce/1/nFVnZyAcUPayqVXbah5uAR36XUQ.mft File: nFVnZyAcUPayqVXbah5uAR36XUQ.mft (raw, json) Hash identifier: D2RGKg+bZrWUeUtW3m7zmKqPvXwCHMuX7ntbmeENsmk= Subject key identifier: EC:5E:C6:01:73:C8:C5:E8:4B:47:96:69:45:F3:4D:AC:43:18:F0:6B Authority key identifier: 9C:55:67:67:20:1C:50:F6:B2:A9:55:DB:6A:1E:6E:01:1D:FA:5D:44 Certificate issuer: /CN=9c556767201c50f6b2a955db6a1e6e011dfa5d44 Certificate serial: 019AF31D632C957A1D0643248B0C896590AB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nFVnZyAcUPayqVXbah5uAR36XUQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/6dac86-224b-4ae5-b2a8-496ba82492ce/1/nFVnZyAcUPayqVXbah5uAR36XUQ.mft Manifest number: 0C8A Signing time: Sat 06 Dec 2025 10:03:00 +0000 Manifest this update: Sat 06 Dec 2025 10:03:00 +0000 Manifest next update: Sun 07 Dec 2025 10:03:00 +0000 Files and hashes: 1: cmsoMlIRCcbLziNipTUjZc3lrew.roa (hash: a1CFCcY0jADOuS6DTKGkRSmsv5gzH4GzUcir7HG6pUE=) 2: nFVnZyAcUPayqVXbah5uAR36XUQ.crl (hash: cCZTMlHtzEIP5TlmWeCT6FO1jZfIstXI18YxBqW1LMI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/6dac86-224b-4ae5-b2a8-496ba82492ce/1/nFVnZyAcUPayqVXbah5uAR36XUQ.crl rsync://rpki.ripe.net/repository/DEFAULT/2f/6dac86-224b-4ae5-b2a8-496ba82492ce/1/nFVnZyAcUPayqVXbah5uAR36XUQ.mft rsync://rpki.ripe.net/repository/DEFAULT/nFVnZyAcUPayqVXbah5uAR36XUQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:1d:63:2c:95:7a:1d:06:43:24:8b:0c:89:65:90:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9c556767201c50f6b2a955db6a1e6e011dfa5d44 Validity Not Before: Dec 6 10:03:00 2025 GMT Not After : Dec 7 10:03:00 2025 GMT Subject: CN=ec5ec60173c8c5e84b47966945f34dac4318f06b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:3e:f7:d0:fe:06:81:d0:e0:39:db:b5:47:92: cf:9f:53:28:4a:56:9a:a8:56:1b:15:6d:a1:af:9c: 9f:a9:5a:18:f5:f9:58:32:c1:f8:3f:44:99:31:d2: 1e:4c:08:0b:1f:b5:30:1d:0e:ad:64:ab:34:d8:8a: 44:b4:62:9b:4e:08:15:5d:f7:88:ce:c8:93:f1:be: 15:7b:32:60:d6:75:b4:4b:c4:69:39:5b:d1:88:c7: 4d:64:f5:b8:ac:6c:06:08:81:21:ec:60:b0:cb:26: 8a:59:1b:44:e3:79:b5:4b:7c:ec:f7:68:d5:41:4b: ee:41:fd:9b:d8:9b:68:fd:2f:9f:d0:be:7c:53:57: e2:75:6b:4c:9c:85:3d:49:b4:b7:7a:1b:dc:8a:b1: 7a:aa:4c:95:22:dc:01:f5:ec:bd:5d:2f:c8:e5:50: 2e:03:e6:09:95:4d:3c:cd:a9:65:97:34:a5:70:26: 3d:ff:a4:4c:ca:57:d6:e6:bb:ed:22:c8:8c:91:aa: 6a:92:bb:47:51:c2:ac:58:2b:58:d5:be:cc:23:63: da:00:05:23:8b:31:ba:47:75:f3:d5:6d:3f:ae:04: 1a:0e:c6:31:4b:2b:5e:2b:63:37:0d:e3:23:17:3b: 38:a6:d9:cc:ba:3e:6a:6d:09:03:6d:90:a5:c7:dc: 2c:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:5E:C6:01:73:C8:C5:E8:4B:47:96:69:45:F3:4D:AC:43:18:F0:6B X509v3 Authority Key Identifier: keyid:9C:55:67:67:20:1C:50:F6:B2:A9:55:DB:6A:1E:6E:01:1D:FA:5D:44 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nFVnZyAcUPayqVXbah5uAR36XUQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/6dac86-224b-4ae5-b2a8-496ba82492ce/1/nFVnZyAcUPayqVXbah5uAR36XUQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/6dac86-224b-4ae5-b2a8-496ba82492ce/1/nFVnZyAcUPayqVXbah5uAR36XUQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 62:b5:c4:5a:88:fb:58:4f:6c:e2:a3:ef:4d:ba:93:1a:cc:16: 43:81:fd:5a:93:a1:5a:f4:d0:8b:2e:4d:33:8d:63:da:5e:da: 01:a1:c7:51:e6:fd:e9:e8:4d:c0:0f:e0:d0:49:06:f4:30:df: 5c:b5:fe:93:88:73:a3:ac:0c:d5:57:fc:b8:5f:b6:2a:b7:0e: bd:eb:ec:f5:69:01:e2:bd:8a:ce:81:9c:7c:02:d0:86:5a:1f: c0:e7:ec:37:0a:29:d0:6e:b2:cf:40:72:e4:76:9e:f9:d2:fd: 6e:03:fe:04:20:c6:68:4e:c1:be:ed:4f:56:dc:aa:1f:a4:6f: e2:7e:9b:72:fc:b9:21:7c:4e:51:57:90:ff:81:27:af:94:c6: e0:2f:02:32:f1:e1:4e:fd:40:6f:c4:78:9c:1a:9c:91:81:4e: 12:6b:ae:92:3b:2b:9d:78:a0:5e:8d:80:7c:1f:b8:02:b5:66: 85:9a:56:c8:ca:0e:d7:71:10:4d:9a:f0:c1:d5:e8:eb:96:86: e5:8f:4e:13:d7:9a:ea:bf:1d:f1:34:8b:e4:70:53:37:50:0f: 83:66:7b:d6:06:40:19:da:e5:f1:56:f6:aa:59:82:75:6e:a5: 02:4c:6f:53:5f:a1:9a:60:ed:09:6b:f4:eb:d5:05:07:64:76: 5d:41:6a:79 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzHWMslXodBkMkiwyJZZCrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDljNTU2NzY3MjAxYzUwZjZiMmE5NTVkYjZhMWU2ZTAxMWRm YTVkNDQwHhcNMjUxMjA2MTAwMzAwWhcNMjUxMjA3MTAwMzAwWjAzMTEwLwYDVQQD EyhlYzVlYzYwMTczYzhjNWU4NGI0Nzk2Njk0NWYzNGRhYzQzMThmMDZiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmj730P4GgdDgOdu1R5LPn1MoSlaa qFYbFW2hr5yfqVoY9flYMsH4P0SZMdIeTAgLH7UwHQ6tZKs02IpEtGKbTggVXfeI zsiT8b4VezJg1nW0S8RpOVvRiMdNZPW4rGwGCIEh7GCwyyaKWRtE43m1S3zs92jV QUvuQf2b2Jto/S+f0L58U1fidWtMnIU9SbS3ehvcirF6qkyVItwB9ey9XS/I5VAu A+YJlU08zalllzSlcCY9/6RMylfW5rvtIsiMkapqkrtHUcKsWCtY1b7MI2PaAAUj izG6R3Xz1W0/rgQaDsYxSyteK2M3DeMjFzs4ptnMuj5qbQkDbZClx9wsNQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOxexgFzyMXoS0eWaUXzTaxDGPBrMB8GA1UdIwQY MBaAFJxVZ2cgHFD2sqlV22oebgEd+l1EMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbkZWblp5QWNVUGF5cVZYYmFoNXVBUjM2WFVRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi82ZGFjODYtMjI0Yi00YWU1LWIyYTgt NDk2YmE4MjQ5MmNlLzEvbkZWblp5QWNVUGF5cVZYYmFoNXVBUjM2WFVRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZi82ZGFjODYtMjI0Yi00YWU1LWIyYTgtNDk2YmE4MjQ5MmNl LzEvbkZWblp5QWNVUGF5cVZYYmFoNXVBUjM2WFVRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYrXEWoj7 WE9s4qPvTbqTGswWQ4H9WpOhWvTQiy5NM41j2l7aAaHHUeb96ehNwA/g0EkG9DDf XLX+k4hzo6wM1Vf8uF+2KrcOvevs9WkB4r2KzoGcfALQhlofwOfsNwop0G6yz0By 5Hae+dL9bgP+BCDGaE7Bvu1PVtyqH6Rv4n6bcvy5IXxOUVeQ/4Enr5TG4C8CMvHh Tv1Ab8R4nBqckYFOEmuukjsrnXigXo2AfB+4ArVmhZpWyMoO13EQTZrwwdXo65aG 5Y9OE9ea6r8d8TSL5HBTN1APg2Z71gZAGdrl8Vb2qlmCdW6lAkxvU1+hmmDtCWv0 69UFB2R2XUFqeQ== -----END CERTIFICATE-----Generated at Sat Dec 6 13:51:42 2025 by rpki-client