This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/2b3218-542c-4d95-ac07-60d35554ce64/1/NawwjJT1exHO4bqE7xJ4RHxnhes.mft File: NawwjJT1exHO4bqE7xJ4RHxnhes.mft (raw, json) Hash identifier: k8MtFH7lO5umAtrhAlrcnZmtEbCdGMy338do0xFzhp8= Subject key identifier: 67:EA:25:1F:D9:6A:0A:A3:9B:4F:19:96:6C:B0:BB:8C:F9:6A:55:15 Authority key identifier: 35:AC:30:8C:94:F5:7B:11:CE:E1:BA:84:EF:12:78:44:7C:67:85:EB Certificate issuer: /CN=35ac308c94f57b11cee1ba84ef1278447c6785eb Certificate serial: 019AF3C0842153624933D0C1CA1DBFF84CF1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NawwjJT1exHO4bqE7xJ4RHxnhes.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/2b3218-542c-4d95-ac07-60d35554ce64/1/NawwjJT1exHO4bqE7xJ4RHxnhes.mft Manifest number: 1764 Signing time: Sat 06 Dec 2025 13:01:11 +0000 Manifest this update: Sat 06 Dec 2025 13:01:11 +0000 Manifest next update: Sun 07 Dec 2025 13:01:11 +0000 Files and hashes: 1: NawwjJT1exHO4bqE7xJ4RHxnhes.crl (hash: 5FwIC4B+lx5qSmI9l8K6BDkpqXVjtk6MvUOukrJRrrc=) 2: ge72rIVKenfFe0v5asZR_PaxIp4.roa (hash: o9engqettqOIJ9n8PYQ/SXW11G8NZE3fZOewqKwRqSE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/2b3218-542c-4d95-ac07-60d35554ce64/1/NawwjJT1exHO4bqE7xJ4RHxnhes.crl rsync://rpki.ripe.net/repository/DEFAULT/40/2b3218-542c-4d95-ac07-60d35554ce64/1/NawwjJT1exHO4bqE7xJ4RHxnhes.mft rsync://rpki.ripe.net/repository/DEFAULT/NawwjJT1exHO4bqE7xJ4RHxnhes.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:01:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:c0:84:21:53:62:49:33:d0:c1:ca:1d:bf:f8:4c:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=35ac308c94f57b11cee1ba84ef1278447c6785eb Validity Not Before: Dec 6 13:01:11 2025 GMT Not After : Dec 7 13:01:11 2025 GMT Subject: CN=67ea251fd96a0aa39b4f19966cb0bb8cf96a5515 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:e6:99:17:7d:b9:7a:4e:cd:9b:cb:e2:29:59: 4a:e6:9f:6b:a5:13:c5:13:4e:fe:e0:3a:8b:cd:17: fe:a4:97:e8:f3:d2:4f:22:a0:27:b3:f5:55:68:f9: 7c:c0:cf:c5:8f:1d:61:10:bc:b6:a7:ce:d1:bc:17: bd:45:55:1d:0f:11:98:b7:18:ac:23:67:1e:77:ff: 67:c9:33:e7:cf:e9:3c:54:a0:bc:05:2f:4d:05:de: 46:bc:10:63:36:5c:9e:9b:7b:6d:81:2e:fa:75:fd: f9:6e:41:36:be:33:83:00:e2:9c:e8:19:d8:f3:35: 43:1e:67:9f:40:90:96:c5:0e:ce:69:26:c6:b1:29: 20:b7:cb:f8:b0:6c:22:04:2f:a6:5b:41:7b:bc:71: 12:37:96:ca:ee:85:9a:87:e1:18:9d:7a:a0:ad:8f: 14:55:db:bf:9c:16:9a:44:2f:d2:c7:77:70:5e:5d: c3:f8:3f:fb:68:25:83:c9:86:3d:d5:47:1b:51:7b: 91:b9:0c:13:35:d5:75:eb:a9:30:c5:5a:5b:3c:45: 31:ab:2d:c6:af:35:4b:bd:93:d8:76:a9:72:7e:9e: ed:4a:b0:69:97:de:b2:17:1e:85:26:d2:45:69:b5: 7d:73:6b:96:7e:ad:d0:5f:a8:a7:24:41:44:d8:45: c9:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:EA:25:1F:D9:6A:0A:A3:9B:4F:19:96:6C:B0:BB:8C:F9:6A:55:15 X509v3 Authority Key Identifier: keyid:35:AC:30:8C:94:F5:7B:11:CE:E1:BA:84:EF:12:78:44:7C:67:85:EB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NawwjJT1exHO4bqE7xJ4RHxnhes.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/2b3218-542c-4d95-ac07-60d35554ce64/1/NawwjJT1exHO4bqE7xJ4RHxnhes.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/40/2b3218-542c-4d95-ac07-60d35554ce64/1/NawwjJT1exHO4bqE7xJ4RHxnhes.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 56:5d:29:24:e2:ee:89:e0:1d:13:aa:59:3e:16:d0:61:8a:1f: 16:76:79:ec:9f:3a:7f:ea:e0:e6:d0:a1:a4:3b:c4:1a:a4:f1: 01:2a:fc:32:63:a0:a4:64:1c:e6:74:6c:4b:3f:04:82:e1:4f: b8:35:12:03:d0:9f:1c:a7:18:a3:3c:e1:21:c0:b6:69:ae:e6: a6:45:e0:60:02:4b:d6:b1:a9:ce:a2:f9:e4:ca:a8:04:63:09: ee:f1:ab:69:ac:19:16:bb:b8:f8:bf:d8:e7:c0:9d:9c:b5:10: 0d:4b:b1:7e:0b:cf:c1:14:1e:c5:82:57:2c:54:dd:ae:ce:43: 20:2a:1c:09:dd:84:ac:62:7c:42:0b:62:b2:a4:95:56:3e:97: fb:eb:8a:61:28:9e:53:f5:9b:1a:77:70:30:6a:5d:a9:90:55: df:8d:19:46:2e:6c:1a:24:0d:c6:93:cc:4f:8d:b0:25:c8:b7: 86:6b:b9:59:53:a1:31:ec:84:62:cd:05:d9:63:6b:74:d3:30: 5a:21:98:9b:80:a9:3b:67:78:b6:b5:79:4b:f6:b6:0c:48:57: 00:97:c3:94:64:fe:7f:1a:53:a9:37:15:55:f9:b9:98:0d:0c: 83:0e:77:6f:71:40:8b:01:d8:08:df:14:13:cd:60:90:bc:e6: ba:85:54:ae -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzwIQhU2JJM9DByh2/+EzxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM1YWMzMDhjOTRmNTdiMTFjZWUxYmE4NGVmMTI3ODQ0N2M2 Nzg1ZWIwHhcNMjUxMjA2MTMwMTExWhcNMjUxMjA3MTMwMTExWjAzMTEwLwYDVQQD Eyg2N2VhMjUxZmQ5NmEwYWEzOWI0ZjE5OTY2Y2IwYmI4Y2Y5NmE1NTE1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm+aZF325ek7Nm8viKVlK5p9rpRPF E07+4DqLzRf+pJfo89JPIqAns/VVaPl8wM/Fjx1hELy2p87RvBe9RVUdDxGYtxis I2ced/9nyTPnz+k8VKC8BS9NBd5GvBBjNlyem3ttgS76df35bkE2vjODAOKc6BnY 8zVDHmefQJCWxQ7OaSbGsSkgt8v4sGwiBC+mW0F7vHESN5bK7oWah+EYnXqgrY8U Vdu/nBaaRC/Sx3dwXl3D+D/7aCWDyYY91UcbUXuRuQwTNdV166kwxVpbPEUxqy3G rzVLvZPYdqlyfp7tSrBpl96yFx6FJtJFabV9c2uWfq3QX6inJEFE2EXJ0wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGfqJR/Zagqjm08Zlmywu4z5alUVMB8GA1UdIwQY MBaAFDWsMIyU9XsRzuG6hO8SeER8Z4XrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTmF3d2pKVDFleEhPNGJxRTd4SjRSSHhuaGVzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC8yYjMyMTgtNTQyYy00ZDk1LWFjMDct NjBkMzU1NTRjZTY0LzEvTmF3d2pKVDFleEhPNGJxRTd4SjRSSHhuaGVzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MC8yYjMyMTgtNTQyYy00ZDk1LWFjMDctNjBkMzU1NTRjZTY0 LzEvTmF3d2pKVDFleEhPNGJxRTd4SjRSSHhuaGVzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVl0pJOLu ieAdE6pZPhbQYYofFnZ57J86f+rg5tChpDvEGqTxASr8MmOgpGQc5nRsSz8EguFP uDUSA9CfHKcYozzhIcC2aa7mpkXgYAJL1rGpzqL55MqoBGMJ7vGraawZFru4+L/Y 58CdnLUQDUuxfgvPwRQexYJXLFTdrs5DICocCd2ErGJ8QgtisqSVVj6X++uKYSie U/WbGndwMGpdqZBV340ZRi5sGiQNxpPMT42wJci3hmu5WVOhMeyEYs0F2WNrdNMw WiGYm4CpO2d4trV5S/a2DEhXAJfDlGT+fxpTqTcVVfm5mA0Mgw53b3FAiwHYCN8U E81gkLzmuoVUrg== -----END CERTIFICATE-----Generated at Sat Dec 6 18:04:12 2025 by rpki-client