This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/a17b93-cc89-4d08-a5b2-636d6fc0048f/1/n4o8mp7fZEc1qU6wnwHKs5hV0ng.mft File: n4o8mp7fZEc1qU6wnwHKs5hV0ng.mft (raw, json) Hash identifier: l7vwKcqBOAH90EnkR+TXp6Zn38Ay9Z24XoAQnFdxJmk= Subject key identifier: D4:2E:51:EE:30:5B:BD:E0:16:C7:6A:DC:B0:08:4D:01:78:33:C8:39 Authority key identifier: 9F:8A:3C:9A:9E:DF:64:47:35:A9:4E:B0:9F:01:CA:B3:98:55:D2:78 Certificate issuer: /CN=9f8a3c9a9edf644735a94eb09f01cab39855d278 Certificate serial: 019B3B3513A2E4575877C7750E59FC7679BB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/n4o8mp7fZEc1qU6wnwHKs5hV0ng.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/a17b93-cc89-4d08-a5b2-636d6fc0048f/1/n4o8mp7fZEc1qU6wnwHKs5hV0ng.mft Manifest number: 0BF4 Signing time: Sat 20 Dec 2025 10:01:32 +0000 Manifest this update: Sat 20 Dec 2025 10:01:32 +0000 Manifest next update: Sun 21 Dec 2025 10:01:32 +0000 Files and hashes: 1: 9nrkqBfEEEVb2ilynt5HJRxEGWw.roa (hash: 9p3+VvNvFq4rrBtC/Z9UeyBNK7rF8lIsM8oxPtubKQs=) 2: n4o8mp7fZEc1qU6wnwHKs5hV0ng.crl (hash: +zx6ENyt0Wp3/r5rnTpaPew8t0GrI4bFxoHC+q3VYjA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/a17b93-cc89-4d08-a5b2-636d6fc0048f/1/n4o8mp7fZEc1qU6wnwHKs5hV0ng.crl rsync://rpki.ripe.net/repository/DEFAULT/45/a17b93-cc89-4d08-a5b2-636d6fc0048f/1/n4o8mp7fZEc1qU6wnwHKs5hV0ng.mft rsync://rpki.ripe.net/repository/DEFAULT/n4o8mp7fZEc1qU6wnwHKs5hV0ng.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 09:56:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3b:35:13:a2:e4:57:58:77:c7:75:0e:59:fc:76:79:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9f8a3c9a9edf644735a94eb09f01cab39855d278 Validity Not Before: Dec 20 10:01:32 2025 GMT Not After : Dec 21 10:01:32 2025 GMT Subject: CN=d42e51ee305bbde016c76adcb0084d017833c839 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:7d:28:5f:eb:cd:82:ff:7a:0e:dc:a5:f5:39: 4d:6e:22:d3:58:81:64:c3:ce:d9:4c:ec:41:b4:94: d4:9f:f5:0e:c2:1e:8f:a6:b8:e6:ab:b3:10:f9:23: 16:57:b9:2e:f7:e0:88:d5:82:b7:58:51:3a:29:ee: 15:a6:20:ad:6e:63:c1:f8:0f:11:30:2e:88:86:bf: 7b:a0:fe:b0:2c:bf:9d:00:88:bf:f0:ac:5e:7b:c8: df:8a:cd:f9:8e:95:3e:9b:5d:69:0d:c3:97:b8:e6: 72:af:07:99:79:86:45:4e:7d:64:e6:b0:3f:ee:0a: 0a:79:45:5d:43:11:44:d6:f0:13:54:07:80:d3:df: 2e:c1:47:9f:63:d9:78:89:f6:56:45:0a:c2:25:9e: 91:54:3f:7b:7e:35:2f:46:f2:71:c0:57:84:70:fa: 79:83:54:d8:e1:b0:0c:f5:e7:22:ff:01:4a:b9:d9: 4b:99:47:2f:dc:32:e6:23:97:54:63:22:86:11:33: 52:90:50:90:98:3f:0f:04:f1:f5:96:2c:7f:f4:fe: d1:e6:33:23:8a:09:9d:20:1b:b9:48:df:6e:7a:d6: b3:b5:97:c1:34:59:c9:18:70:ad:32:a9:29:38:ad: 87:91:89:d6:25:05:7d:f3:74:9c:38:e5:0a:20:ae: a8:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:2E:51:EE:30:5B:BD:E0:16:C7:6A:DC:B0:08:4D:01:78:33:C8:39 X509v3 Authority Key Identifier: keyid:9F:8A:3C:9A:9E:DF:64:47:35:A9:4E:B0:9F:01:CA:B3:98:55:D2:78 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/n4o8mp7fZEc1qU6wnwHKs5hV0ng.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/a17b93-cc89-4d08-a5b2-636d6fc0048f/1/n4o8mp7fZEc1qU6wnwHKs5hV0ng.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/45/a17b93-cc89-4d08-a5b2-636d6fc0048f/1/n4o8mp7fZEc1qU6wnwHKs5hV0ng.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption d0:2f:c0:cf:03:ef:e4:ed:c9:78:8d:8c:4d:b7:92:f2:bc:21: 8a:24:a7:16:33:18:29:ac:70:92:03:66:c2:5d:9d:08:04:87: 3c:91:45:60:14:d6:99:62:97:3f:a8:f5:75:c0:f1:da:64:40: 64:e0:cc:21:13:4b:77:e6:55:f5:ec:36:0c:83:76:0d:3e:ad: 63:51:91:cf:ad:33:83:f6:f3:09:1c:4a:65:31:94:75:cb:5f: 5f:c8:64:e1:c0:e8:fa:d0:3e:db:63:41:d5:a6:d3:47:5d:17: 2e:27:5f:48:91:45:86:24:bb:8a:ea:3c:63:b7:26:f3:a3:bb: c9:28:6c:8a:56:f6:50:a6:24:a1:fb:e7:04:8d:e8:cc:ae:4b: ca:38:91:b6:69:69:1d:d7:83:0f:d2:1c:f4:9f:75:f2:5d:b2: a7:29:1b:ab:b6:e1:0d:2e:2b:a4:9c:49:4b:03:e2:d4:38:6d: 99:bc:53:53:30:2a:ed:1b:fd:05:99:ec:5f:6e:59:12:e9:54: fc:d5:6a:da:ce:04:21:91:a1:ed:56:a6:42:1f:67:32:46:8a: fd:86:6f:bb:b0:7a:fd:bc:65:1e:26:b4:de:cf:c5:0b:18:25: e9:dd:1e:2b:44:82:47:4e:0a:65:c5:be:80:4c:e6:9a:69:90: d4:c7:4f:ea -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs7NROi5FdYd8d1Dln8dnm7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlmOGEzYzlhOWVkZjY0NDczNWE5NGViMDlmMDFjYWIzOTg1 NWQyNzgwHhcNMjUxMjIwMTAwMTMyWhcNMjUxMjIxMTAwMTMyWjAzMTEwLwYDVQQD EyhkNDJlNTFlZTMwNWJiZGUwMTZjNzZhZGNiMDA4NGQwMTc4MzNjODM5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnX0oX+vNgv96Dtyl9TlNbiLTWIFk w87ZTOxBtJTUn/UOwh6Pprjmq7MQ+SMWV7ku9+CI1YK3WFE6Ke4VpiCtbmPB+A8R MC6Ihr97oP6wLL+dAIi/8Kxee8jfis35jpU+m11pDcOXuOZyrweZeYZFTn1k5rA/ 7goKeUVdQxFE1vATVAeA098uwUefY9l4ifZWRQrCJZ6RVD97fjUvRvJxwFeEcPp5 g1TY4bAM9eci/wFKudlLmUcv3DLmI5dUYyKGETNSkFCQmD8PBPH1lix/9P7R5jMj igmdIBu5SN9uetaztZfBNFnJGHCtMqkpOK2HkYnWJQV983ScOOUKIK6ouwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNQuUe4wW73gFsdq3LAITQF4M8g5MB8GA1UdIwQY MBaAFJ+KPJqe32RHNalOsJ8ByrOYVdJ4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbjRvOG1wN2ZaRWMxcVU2d253SEtzNWhWMG5nLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NS9hMTdiOTMtY2M4OS00ZDA4LWE1YjIt NjM2ZDZmYzAwNDhmLzEvbjRvOG1wN2ZaRWMxcVU2d253SEtzNWhWMG5nLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80NS9hMTdiOTMtY2M4OS00ZDA4LWE1YjItNjM2ZDZmYzAwNDhm LzEvbjRvOG1wN2ZaRWMxcVU2d253SEtzNWhWMG5nLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA0C/AzwPv 5O3JeI2MTbeS8rwhiiSnFjMYKaxwkgNmwl2dCASHPJFFYBTWmWKXP6j1dcDx2mRA ZODMIRNLd+ZV9ew2DIN2DT6tY1GRz60zg/bzCRxKZTGUdctfX8hk4cDo+tA+22NB 1abTR10XLidfSJFFhiS7iuo8Y7cm86O7yShsilb2UKYkofvnBI3ozK5LyjiRtmlp HdeDD9Ic9J918l2ypykbq7bhDS4rpJxJSwPi1DhtmbxTUzAq7Rv9BZnsX25ZEulU /NVq2s4EIZGh7VamQh9nMkaK/YZvu7B6/bxlHia03s/FCxgl6d0eK0SCR04KZcW+ gEzmmmmQ1MdP6g== -----END CERTIFICATE-----Generated at Sat Dec 20 16:49:17 2025 by rpki-client