This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.mft File: NTPUOQNczcXww50bP7FhlbVV_KM.mft (raw, json) Hash identifier: Wkz1VVxsGj2njy8rO12XbFgnjuMbo+9pftN5QpFbslw= Subject key identifier: F7:6D:C7:36:75:AF:64:53:BF:C2:EC:57:F2:0D:C9:4F:80:5A:FF:EA Authority key identifier: 35:33:D4:39:03:5C:CD:C5:F0:C3:9D:1B:3F:B1:61:95:B5:55:FC:A3 Certificate issuer: /CN=3533d439035ccdc5f0c39d1b3fb16195b555fca3 Certificate serial: 019AF208FBD1A06276F393CDCC742A18D670 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NTPUOQNczcXww50bP7FhlbVV_KM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.mft Manifest number: 0C57 Signing time: Sat 06 Dec 2025 05:01:06 +0000 Manifest this update: Sat 06 Dec 2025 05:01:06 +0000 Manifest next update: Sun 07 Dec 2025 05:01:06 +0000 Files and hashes: 1: NTPUOQNczcXww50bP7FhlbVV_KM.crl (hash: 86SEXS3XfGgL1Yxu2h7wAzaTW/9dgov3Sh4+25TzsnY=) 2: rAVoUvT6eIAoJ9DaPocwQDvvkoc.roa (hash: 1BFZOwvrkIRFql6imBqxsdk52Ly1yvo/6JadLNNcDZs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.crl rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.mft rsync://rpki.ripe.net/repository/DEFAULT/NTPUOQNczcXww50bP7FhlbVV_KM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:08:fb:d1:a0:62:76:f3:93:cd:cc:74:2a:18:d6:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3533d439035ccdc5f0c39d1b3fb16195b555fca3 Validity Not Before: Dec 6 05:01:06 2025 GMT Not After : Dec 7 05:01:06 2025 GMT Subject: CN=f76dc73675af6453bfc2ec57f20dc94f805affea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:34:70:2a:e1:fb:5f:93:e3:5e:63:77:3d:ad: d7:32:ac:01:9a:5b:02:95:40:70:e5:1b:bc:ca:9e: cf:f0:5c:d3:75:d8:79:c2:e0:2f:a7:d0:76:0f:b9: 12:81:a8:9f:91:49:eb:2f:46:8f:03:80:b3:b8:cf: b1:d9:65:a5:ff:a7:29:e4:bc:a3:cc:6d:ac:6c:1f: 71:ce:a8:61:64:7f:73:ce:96:22:d6:32:32:52:c2: 20:48:c0:ba:3b:21:97:73:48:6f:3c:2e:ae:96:9c: 17:92:98:3c:82:f5:c1:db:5d:72:71:5b:13:aa:b8: 74:c4:57:9b:a0:b0:92:03:2e:26:42:1d:38:a0:32: 93:0c:28:17:20:6a:cb:ad:84:25:ac:7d:d2:db:e4: be:dd:ed:6c:4e:f4:57:46:62:e0:5c:fc:a7:00:27: c3:ef:2c:69:49:c0:60:47:47:58:d6:e1:62:c8:d8: e7:6b:af:27:18:d4:4c:59:64:9e:06:39:7b:7d:37: 79:95:0b:d1:50:67:ab:bc:c4:ed:97:38:4c:3f:c4: ed:f6:a9:31:b9:25:c2:71:37:a5:1b:38:13:21:f5: bd:38:86:c1:a7:72:ed:ca:5c:3c:81:ff:0f:db:8c: 21:21:40:90:dc:a0:5f:0b:51:78:d8:9c:21:f1:39: af:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:6D:C7:36:75:AF:64:53:BF:C2:EC:57:F2:0D:C9:4F:80:5A:FF:EA X509v3 Authority Key Identifier: keyid:35:33:D4:39:03:5C:CD:C5:F0:C3:9D:1B:3F:B1:61:95:B5:55:FC:A3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NTPUOQNczcXww50bP7FhlbVV_KM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption af:94:2c:37:4b:c3:0f:5e:b4:e3:d3:12:23:42:fd:85:ac:18: 90:b2:04:cd:bd:be:88:f8:b6:33:18:8d:d4:6c:f1:9b:4e:6c: f5:ee:dc:35:e7:46:3d:9e:9e:78:ed:02:b8:ca:b3:fc:cf:9e: df:62:96:21:0b:cf:a4:83:c2:10:81:c9:94:b4:2c:bb:0b:ba: 33:5c:f4:f3:5d:21:35:71:19:d9:b0:29:44:4c:52:e3:9c:19: 0a:dc:3a:03:7e:d1:51:11:5f:ac:06:56:93:69:0e:43:60:78: 7f:c3:dc:e1:c8:a4:12:d3:ac:92:4b:d6:e0:2d:fd:f2:e9:38: 5b:79:7b:35:fe:3a:2e:9e:cd:55:cf:d9:ae:cf:5a:ea:d4:7b: 99:62:9f:d1:2b:31:f1:f2:65:c0:07:0a:9b:ef:de:b3:49:36: 25:88:2e:46:e1:0c:d2:1f:02:45:68:90:70:6c:0a:a1:57:0e: 96:9d:42:84:0f:f6:70:fd:ae:4a:73:65:ef:da:bd:0c:d8:92: ba:c9:1b:ed:95:89:d1:e9:18:ec:29:d9:37:ff:44:d9:85:64: 29:d6:3a:f6:74:79:d9:6a:c2:45:1c:60:84:73:a3:60:3b:f0: 42:4e:10:d8:d4:24:4c:9d:e7:94:25:ff:4f:90:7f:bd:c8:1e: ab:68:b5:af -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCPvRoGJ285PNzHQqGNZwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM1MzNkNDM5MDM1Y2NkYzVmMGMzOWQxYjNmYjE2MTk1YjU1 NWZjYTMwHhcNMjUxMjA2MDUwMTA2WhcNMjUxMjA3MDUwMTA2WjAzMTEwLwYDVQQD EyhmNzZkYzczNjc1YWY2NDUzYmZjMmVjNTdmMjBkYzk0ZjgwNWFmZmVhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9zRwKuH7X5PjXmN3Pa3XMqwBmlsC lUBw5Ru8yp7P8FzTddh5wuAvp9B2D7kSgaifkUnrL0aPA4CzuM+x2WWl/6cp5Lyj zG2sbB9xzqhhZH9zzpYi1jIyUsIgSMC6OyGXc0hvPC6ulpwXkpg8gvXB211ycVsT qrh0xFeboLCSAy4mQh04oDKTDCgXIGrLrYQlrH3S2+S+3e1sTvRXRmLgXPynACfD 7yxpScBgR0dY1uFiyNjna68nGNRMWWSeBjl7fTd5lQvRUGervMTtlzhMP8Tt9qkx uSXCcTelGzgTIfW9OIbBp3Ltylw8gf8P24whIUCQ3KBfC1F42Jwh8TmvpQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPdtxzZ1r2RTv8LsV/INyU+AWv/qMB8GA1UdIwQY MBaAFDUz1DkDXM3F8MOdGz+xYZW1VfyjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTlRQVU9RTmN6Y1h3dzUwYlA3RmhsYlZWX0tNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNy84Y2YyYTYtNDUyOS00M2Q5LWI3ODIt MzZlODVhYmU1MmZmLzEvTlRQVU9RTmN6Y1h3dzUwYlA3RmhsYlZWX0tNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNy84Y2YyYTYtNDUyOS00M2Q5LWI3ODItMzZlODVhYmU1MmZm LzEvTlRQVU9RTmN6Y1h3dzUwYlA3RmhsYlZWX0tNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAr5QsN0vD D16049MSI0L9hawYkLIEzb2+iPi2MxiN1Gzxm05s9e7cNedGPZ6eeO0CuMqz/M+e 32KWIQvPpIPCEIHJlLQsuwu6M1z0810hNXEZ2bApRExS45wZCtw6A37RURFfrAZW k2kOQ2B4f8Pc4cikEtOskkvW4C398uk4W3l7Nf46Lp7NVc/Zrs9a6tR7mWKf0Ssx 8fJlwAcKm+/es0k2JYguRuEM0h8CRWiQcGwKoVcOlp1ChA/2cP2uSnNl79q9DNiS uskb7ZWJ0ekY7CnZN/9E2YVkKdY69nR52WrCRRxghHOjYDvwQk4Q2NQkTJ3nlCX/ T5B/vcgeq2i1rw== -----END CERTIFICATE-----Generated at Sat Dec 6 10:42:22 2025 by rpki-client