This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/9521f6-184e-430a-b667-524f3a2f68b3/1/NYrlgLL3tFw9Kunxnzwb6X6Dmqo.mft File: NYrlgLL3tFw9Kunxnzwb6X6Dmqo.mft (raw, json) Hash identifier: /0YUuYs39wX7zapvZ3LntMpB0bLC4FMrMlALWXFNqy8= Subject key identifier: 8D:79:85:9C:FD:77:3D:81:4A:7F:3C:54:10:1E:03:EA:BB:5D:82:04 Authority key identifier: 35:8A:E5:80:B2:F7:B4:5C:3D:2A:E9:F1:9F:3C:1B:E9:7E:83:9A:AA Certificate issuer: /CN=358ae580b2f7b45c3d2ae9f19f3c1be97e839aaa Certificate serial: 019AF5AEB9D9CE4C2A636068FCAEAF6C53EE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NYrlgLL3tFw9Kunxnzwb6X6Dmqo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/9521f6-184e-430a-b667-524f3a2f68b3/1/NYrlgLL3tFw9Kunxnzwb6X6Dmqo.mft Manifest number: 139B Signing time: Sat 06 Dec 2025 22:00:59 +0000 Manifest this update: Sat 06 Dec 2025 22:00:59 +0000 Manifest next update: Sun 07 Dec 2025 22:00:59 +0000 Files and hashes: 1: NYrlgLL3tFw9Kunxnzwb6X6Dmqo.crl (hash: tElTYXH2GVnvjLak67f09/KMoLwuf8LNsSwoWe1z4gc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/9521f6-184e-430a-b667-524f3a2f68b3/1/NYrlgLL3tFw9Kunxnzwb6X6Dmqo.crl rsync://rpki.ripe.net/repository/DEFAULT/36/9521f6-184e-430a-b667-524f3a2f68b3/1/NYrlgLL3tFw9Kunxnzwb6X6Dmqo.mft rsync://rpki.ripe.net/repository/DEFAULT/NYrlgLL3tFw9Kunxnzwb6X6Dmqo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 21:29:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:ae:b9:d9:ce:4c:2a:63:60:68:fc:ae:af:6c:53:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=358ae580b2f7b45c3d2ae9f19f3c1be97e839aaa Validity Not Before: Dec 6 22:00:59 2025 GMT Not After : Dec 7 22:00:59 2025 GMT Subject: CN=8d79859cfd773d814a7f3c54101e03eabb5d8204 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:4a:89:86:fc:f0:c3:a2:4d:73:15:31:2a:0b: a4:fd:fb:71:0a:1a:d8:03:f0:32:9e:92:42:10:1d: 54:fc:11:0d:15:ed:30:c8:00:e6:e6:98:20:94:e6: 69:3d:9f:67:e5:d8:a8:26:11:61:91:50:19:f5:bb: 5d:a7:09:4a:c2:1e:15:9d:be:44:2c:f0:3f:95:0b: 62:84:ff:bc:de:0a:41:10:a6:2c:16:d3:e1:36:a5: 6b:b6:0b:88:e6:d2:70:a8:ef:99:93:8f:8a:26:11: 63:79:c4:8e:cb:d3:50:d5:40:c2:61:1b:c3:23:64: a5:69:29:40:4f:16:05:83:f3:d7:9e:20:82:da:dd: 20:7b:17:9d:82:c4:8a:af:12:f8:e4:38:ed:75:e2: fe:4a:53:30:d4:ba:11:47:76:66:17:f7:c1:55:48: d1:c0:37:4a:fb:10:60:4e:4e:d8:fe:5e:b5:8d:da: a0:8a:9c:f3:d8:d8:a5:24:34:73:a1:b0:e9:79:b0: b3:a2:b3:b2:6c:93:65:2a:10:ab:a5:00:78:56:37: 3d:69:eb:61:00:43:79:91:35:d9:70:3e:3c:69:2a: e4:c1:95:62:0d:3f:2e:5e:f6:a5:3f:a6:17:9c:d4: 7b:b8:2e:e8:d8:2f:28:ec:c8:15:9e:10:ac:77:b5: c3:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:79:85:9C:FD:77:3D:81:4A:7F:3C:54:10:1E:03:EA:BB:5D:82:04 X509v3 Authority Key Identifier: keyid:35:8A:E5:80:B2:F7:B4:5C:3D:2A:E9:F1:9F:3C:1B:E9:7E:83:9A:AA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NYrlgLL3tFw9Kunxnzwb6X6Dmqo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/9521f6-184e-430a-b667-524f3a2f68b3/1/NYrlgLL3tFw9Kunxnzwb6X6Dmqo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/36/9521f6-184e-430a-b667-524f3a2f68b3/1/NYrlgLL3tFw9Kunxnzwb6X6Dmqo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 48:65:49:95:72:1a:20:1b:d0:6e:49:0b:99:ce:6f:f0:1a:9f: 9f:f5:27:92:da:77:89:ad:a6:e0:ac:d6:74:d3:d9:a5:97:b5: 20:89:f8:5e:57:5d:f3:5d:95:3a:3e:b8:73:01:54:48:95:74: b1:cf:9b:fb:d6:33:dd:d0:cb:91:46:9d:1c:77:82:a0:71:1d: 09:3a:fe:14:d2:c6:51:a1:db:3d:b0:f9:d7:b0:6d:23:82:7a: e1:57:ed:dc:75:a9:33:e5:7d:c3:7b:59:e2:fb:16:ed:91:22: 4e:63:1a:a9:95:9f:43:f5:16:4c:23:74:56:71:5c:59:34:9e: 21:22:c1:38:0c:ab:27:44:a1:91:52:d1:47:33:dd:40:b0:b6: 66:1c:67:c9:45:92:13:72:72:00:8c:10:92:8d:28:2d:49:87: c4:f4:71:ef:72:c1:51:11:57:8c:27:5b:01:95:ed:1b:fe:2d: 8e:80:32:d1:6f:bc:36:ba:ee:fb:69:c2:41:b2:85:b1:d2:b3: c6:75:ad:9d:48:bc:fd:86:ef:4a:39:bd:dc:11:6a:ab:7e:11: bb:55:b9:82:c5:df:08:57:e5:55:45:7c:eb:a0:ee:71:b9:21: ed:69:1f:c8:89:fe:84:a8:bd:e7:a5:bb:d4:dd:16:ff:77:bc: 6c:03:b5:b8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr1rrnZzkwqY2Bo/K6vbFPuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM1OGFlNTgwYjJmN2I0NWMzZDJhZTlmMTlmM2MxYmU5N2U4 MzlhYWEwHhcNMjUxMjA2MjIwMDU5WhcNMjUxMjA3MjIwMDU5WjAzMTEwLwYDVQQD Eyg4ZDc5ODU5Y2ZkNzczZDgxNGE3ZjNjNTQxMDFlMDNlYWJiNWQ4MjA0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2EqJhvzww6JNcxUxKguk/ftxChrY A/AynpJCEB1U/BENFe0wyADm5pgglOZpPZ9n5dioJhFhkVAZ9btdpwlKwh4Vnb5E LPA/lQtihP+83gpBEKYsFtPhNqVrtguI5tJwqO+Zk4+KJhFjecSOy9NQ1UDCYRvD I2SlaSlATxYFg/PXniCC2t0gexedgsSKrxL45DjtdeL+SlMw1LoRR3ZmF/fBVUjR wDdK+xBgTk7Y/l61jdqgipzz2NilJDRzobDpebCzorOybJNlKhCrpQB4Vjc9aeth AEN5kTXZcD48aSrkwZViDT8uXvalP6YXnNR7uC7o2C8o7MgVnhCsd7XDFQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFI15hZz9dz2BSn88VBAeA+q7XYIEMB8GA1UdIwQY MBaAFDWK5YCy97RcPSrp8Z88G+l+g5qqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTllybGdMTDN0Rnc5S3VueG56d2I2WDZEbXFvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi85NTIxZjYtMTg0ZS00MzBhLWI2Njct NTI0ZjNhMmY2OGIzLzEvTllybGdMTDN0Rnc5S3VueG56d2I2WDZEbXFvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNi85NTIxZjYtMTg0ZS00MzBhLWI2NjctNTI0ZjNhMmY2OGIz LzEvTllybGdMTDN0Rnc5S3VueG56d2I2WDZEbXFvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASGVJlXIa IBvQbkkLmc5v8Bqfn/Unktp3ia2m4KzWdNPZpZe1IIn4Xldd812VOj64cwFUSJV0 sc+b+9Yz3dDLkUadHHeCoHEdCTr+FNLGUaHbPbD517BtI4J64Vft3HWpM+V9w3tZ 4vsW7ZEiTmMaqZWfQ/UWTCN0VnFcWTSeISLBOAyrJ0ShkVLRRzPdQLC2ZhxnyUWS E3JyAIwQko0oLUmHxPRx73LBURFXjCdbAZXtG/4tjoAy0W+8Nrru+2nCQbKFsdKz xnWtnUi8/YbvSjm93BFqq34Ru1W5gsXfCFflVUV866Ducbkh7WkfyIn+hKi956W7 1N0W/3e8bAO1uA== -----END CERTIFICATE-----Generated at Sun Dec 7 00:59:28 2025 by rpki-client