This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/5e78f6-253a-4115-ae5d-5dc80faed2dc/1/nnQTW7B8ZUDNMHvaCMoGdLyEyTk.mft File: nnQTW7B8ZUDNMHvaCMoGdLyEyTk.mft (raw, json) Hash identifier: KfZxk3OmvGXKWKtRHDZIx4SoYh9zaStLJY3QUPfjk3c= Subject key identifier: 6D:F0:AA:E8:15:4A:71:25:F3:D2:0B:3F:43:CD:4B:F0:59:83:B5:F7 Authority key identifier: 9E:74:13:5B:B0:7C:65:40:CD:30:7B:DA:08:CA:06:74:BC:84:C9:39 Certificate issuer: /CN=9e74135bb07c6540cd307bda08ca0674bc84c939 Certificate serial: 019AF1D24A0DCFB6425C57DCD342067F9BBF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nnQTW7B8ZUDNMHvaCMoGdLyEyTk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/5e78f6-253a-4115-ae5d-5dc80faed2dc/1/nnQTW7B8ZUDNMHvaCMoGdLyEyTk.mft Manifest number: 1764 Signing time: Sat 06 Dec 2025 04:01:21 +0000 Manifest this update: Sat 06 Dec 2025 04:01:21 +0000 Manifest next update: Sun 07 Dec 2025 04:01:21 +0000 Files and hashes: 1: 1-T1wzl3TUKiA8m5iaH9QZh9hjp0.roa (hash: JRA15qBJeMepq09VmhJeTzptT8oyDdYWsjobeMnNOAk=) 2: nnQTW7B8ZUDNMHvaCMoGdLyEyTk.crl (hash: vCBCmh8iyN1XeMGqH+ScdHaY6ccUU4JfVl1iqi8kQfo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/5e78f6-253a-4115-ae5d-5dc80faed2dc/1/nnQTW7B8ZUDNMHvaCMoGdLyEyTk.crl rsync://rpki.ripe.net/repository/DEFAULT/31/5e78f6-253a-4115-ae5d-5dc80faed2dc/1/nnQTW7B8ZUDNMHvaCMoGdLyEyTk.mft rsync://rpki.ripe.net/repository/DEFAULT/nnQTW7B8ZUDNMHvaCMoGdLyEyTk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 04:01:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:d2:4a:0d:cf:b6:42:5c:57:dc:d3:42:06:7f:9b:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9e74135bb07c6540cd307bda08ca0674bc84c939 Validity Not Before: Dec 6 04:01:21 2025 GMT Not After : Dec 7 04:01:21 2025 GMT Subject: CN=6df0aae8154a7125f3d20b3f43cd4bf05983b5f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:ce:ab:5b:59:17:d8:7a:db:6d:36:d7:2f:a4: 2a:b3:49:90:45:9f:02:63:f4:a6:7a:74:07:e5:23: db:de:3a:ee:67:45:0d:b7:75:52:c1:a1:0d:16:0e: 1a:48:b0:05:34:c0:e1:8f:1e:a7:ec:cb:d6:ff:3a: dc:de:01:4d:b5:da:71:ba:cd:50:94:f8:ae:f0:a4: f2:45:46:e2:67:0f:49:76:2f:91:71:fe:1c:ef:0f: 91:fb:7d:45:04:eb:f7:1c:01:35:2b:93:3b:b5:b2: 1e:4f:61:08:37:cf:37:db:20:0a:b9:0e:5d:26:24: 35:b5:97:3c:b4:9f:07:9e:cf:32:18:b8:60:5b:90: 87:d2:7e:ec:fe:5c:44:00:f3:19:27:04:67:0e:0b: 3d:95:26:6a:54:08:69:fa:b7:8d:7e:23:40:b7:f9: 0c:d1:4d:6d:c0:53:87:86:cc:60:c0:0e:cd:e1:c5: 0a:45:a4:e5:28:99:84:9f:06:d0:c6:97:d3:b6:aa: e4:c7:24:a1:55:a1:28:5c:46:1a:1d:52:96:ab:09: 46:f6:71:20:f4:f7:33:ed:4c:e5:4d:48:63:d5:79: 2b:72:07:9a:0a:4f:53:c5:47:6a:39:03:51:58:3e: 82:1a:1c:b8:ed:72:9d:60:c9:0b:ce:5a:c5:2a:1a: 43:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:F0:AA:E8:15:4A:71:25:F3:D2:0B:3F:43:CD:4B:F0:59:83:B5:F7 X509v3 Authority Key Identifier: keyid:9E:74:13:5B:B0:7C:65:40:CD:30:7B:DA:08:CA:06:74:BC:84:C9:39 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nnQTW7B8ZUDNMHvaCMoGdLyEyTk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/5e78f6-253a-4115-ae5d-5dc80faed2dc/1/nnQTW7B8ZUDNMHvaCMoGdLyEyTk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/31/5e78f6-253a-4115-ae5d-5dc80faed2dc/1/nnQTW7B8ZUDNMHvaCMoGdLyEyTk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 18:bf:a0:8d:8e:e6:21:d5:4a:0f:95:fa:ff:da:30:8f:38:1f: c5:57:25:23:2a:3e:ee:47:94:8c:8c:9c:d8:dd:80:4c:0f:3b: 14:6b:26:d6:4c:30:e7:7d:cc:0b:fb:49:1e:59:4e:9d:dc:b9: 8f:c8:3a:15:89:da:a1:98:31:29:ce:24:ef:e0:86:ea:d5:ad: 01:29:16:a0:8a:e7:4c:c3:bf:a5:e3:a4:80:03:4c:45:b1:fc: 45:e8:b7:2f:22:92:82:0d:56:ab:fd:ab:84:df:1b:0c:bf:68: 4a:86:4a:ab:8e:65:95:b9:5d:6e:a1:67:64:9c:cc:81:4d:16: 46:c7:fe:0b:27:8e:a1:05:ae:af:e1:b0:4b:bc:8b:bf:52:97: 5e:26:c5:5c:cd:3b:f1:3d:99:0a:a6:12:fc:70:76:f5:29:a0: ba:70:1f:34:ef:9d:41:94:aa:ff:55:e7:73:e8:f2:35:26:ce: 93:f3:2a:09:0b:47:ea:e7:37:ea:4b:ef:b9:5a:eb:df:0f:22: de:eb:1b:f9:47:d9:bb:ad:d0:7f:94:08:68:3d:35:1f:8b:9e: 8b:a8:cd:fc:a0:80:98:8c:1d:98:38:42:87:1e:92:a1:06:2e: 87:88:60:f1:6b:a0:77:02:e6:df:4a:3a:24:eb:55:37:73:f1: fd:fd:89:7d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrx0koNz7ZCXFfc00IGf5u/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDllNzQxMzViYjA3YzY1NDBjZDMwN2JkYTA4Y2EwNjc0YmM4 NGM5MzkwHhcNMjUxMjA2MDQwMTIxWhcNMjUxMjA3MDQwMTIxWjAzMTEwLwYDVQQD Eyg2ZGYwYWFlODE1NGE3MTI1ZjNkMjBiM2Y0M2NkNGJmMDU5ODNiNWY3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1M6rW1kX2HrbbTbXL6Qqs0mQRZ8C Y/SmenQH5SPb3jruZ0UNt3VSwaENFg4aSLAFNMDhjx6n7MvW/zrc3gFNtdpxus1Q lPiu8KTyRUbiZw9Jdi+Rcf4c7w+R+31FBOv3HAE1K5M7tbIeT2EIN8832yAKuQ5d JiQ1tZc8tJ8Hns8yGLhgW5CH0n7s/lxEAPMZJwRnDgs9lSZqVAhp+reNfiNAt/kM 0U1twFOHhsxgwA7N4cUKRaTlKJmEnwbQxpfTtqrkxyShVaEoXEYaHVKWqwlG9nEg 9Pcz7UzlTUhj1XkrcgeaCk9TxUdqOQNRWD6CGhy47XKdYMkLzlrFKhpDHQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFG3wqugVSnEl89ILP0PNS/BZg7X3MB8GA1UdIwQY MBaAFJ50E1uwfGVAzTB72gjKBnS8hMk5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbm5RVFc3QjhaVUROTUh2YUNNb0dkTHlFeVRrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS81ZTc4ZjYtMjUzYS00MTE1LWFlNWQt NWRjODBmYWVkMmRjLzEvbm5RVFc3QjhaVUROTUh2YUNNb0dkTHlFeVRrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMS81ZTc4ZjYtMjUzYS00MTE1LWFlNWQtNWRjODBmYWVkMmRj LzEvbm5RVFc3QjhaVUROTUh2YUNNb0dkTHlFeVRrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGL+gjY7m IdVKD5X6/9owjzgfxVclIyo+7keUjIyc2N2ATA87FGsm1kww533MC/tJHllOndy5 j8g6FYnaoZgxKc4k7+CG6tWtASkWoIrnTMO/peOkgANMRbH8Rei3LyKSgg1Wq/2r hN8bDL9oSoZKq45llbldbqFnZJzMgU0WRsf+CyeOoQWur+GwS7yLv1KXXibFXM07 8T2ZCqYS/HB29SmgunAfNO+dQZSq/1Xnc+jyNSbOk/MqCQtH6uc36kvvuVrr3w8i 3usb+UfZu63Qf5QIaD01H4uei6jN/KCAmIwdmDhChx6SoQYuh4hg8WugdwLm30o6 JOtVN3Px/f2JfQ== -----END CERTIFICATE-----Generated at Sat Dec 6 12:59:31 2025 by rpki-client