This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.mft File: NIVmBh42jK_xiBviusZzff08Hbo.mft (raw, json) Hash identifier: IRTJVqspdg1eRkXx2NeZA03oPuZix/gqB1VpH9LEegA= Subject key identifier: 3E:DD:0D:AB:52:4F:9E:31:AE:04:5A:6E:3B:11:2A:7E:C9:E4:93:99 Authority key identifier: 34:85:66:06:1E:36:8C:AF:F1:88:1B:E2:BA:C6:73:7D:FD:3C:1D:BA Certificate issuer: /CN=348566061e368caff1881be2bac6737dfd3c1dba Certificate serial: 019AF2AD9A5B662BC3D0D01E1E3B3A6B8022 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NIVmBh42jK_xiBviusZzff08Hbo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.mft Manifest number: 1760 Signing time: Sat 06 Dec 2025 08:00:54 +0000 Manifest this update: Sat 06 Dec 2025 08:00:54 +0000 Manifest next update: Sun 07 Dec 2025 08:00:54 +0000 Files and hashes: 1: 0_2q2dp_nihFIcTaoAnETvnQKo4.roa (hash: bKtto0Xp3QOWNDaUxe4CkFxL1b1NtMArjGe69yHE/5w=) 2: NIVmBh42jK_xiBviusZzff08Hbo.crl (hash: tX6FwHbTgdG2P3OEEQe0ocbXP4ARsFa/thH+4kNeXmw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.crl rsync://rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.mft rsync://rpki.ripe.net/repository/DEFAULT/NIVmBh42jK_xiBviusZzff08Hbo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:ad:9a:5b:66:2b:c3:d0:d0:1e:1e:3b:3a:6b:80:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=348566061e368caff1881be2bac6737dfd3c1dba Validity Not Before: Dec 6 08:00:54 2025 GMT Not After : Dec 7 08:00:54 2025 GMT Subject: CN=3edd0dab524f9e31ae045a6e3b112a7ec9e49399 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:cf:8f:b8:cb:89:ed:4f:78:93:54:4b:a1:24: b6:48:cf:1a:17:7f:31:7b:b4:b4:01:db:64:75:bc: bc:bc:54:e4:c4:16:e9:e1:f8:b2:74:49:c2:2b:81: 30:8e:1f:ac:fa:30:ff:60:3c:fe:16:77:0b:42:86: fb:7f:2c:ca:1a:ea:57:de:2f:eb:3c:1d:43:c6:32: f5:5a:01:dc:bb:bf:1b:f8:d6:a9:ff:04:cc:56:13: ed:9c:0d:de:6d:cd:d9:b6:2b:03:d9:70:25:f6:1b: 57:91:fe:ca:93:c3:c4:05:1d:0a:ca:99:99:0e:c2: bf:37:00:6d:ae:e5:ab:d1:f8:98:a8:85:29:81:b3: 6d:9e:e4:42:c7:54:c2:4a:94:43:b9:3e:5c:99:d4: ad:cd:0b:b2:da:c6:35:13:a4:37:37:b4:44:bd:0a: dc:6b:cf:9a:98:5c:a7:68:5a:31:b4:59:2b:11:af: 1c:cf:69:bd:14:bb:79:51:39:01:07:d4:2b:21:07: f0:f6:73:a2:2a:6f:06:d4:11:51:ba:ba:44:96:94: eb:12:50:02:98:50:f7:4d:e5:f3:95:84:f9:85:47: c6:2a:a1:f4:f5:44:d0:a0:ff:24:12:2f:91:a0:83: 8f:2b:b9:9e:3a:ec:f0:02:2d:b9:84:e9:b7:bb:79: a2:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:DD:0D:AB:52:4F:9E:31:AE:04:5A:6E:3B:11:2A:7E:C9:E4:93:99 X509v3 Authority Key Identifier: keyid:34:85:66:06:1E:36:8C:AF:F1:88:1B:E2:BA:C6:73:7D:FD:3C:1D:BA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NIVmBh42jK_xiBviusZzff08Hbo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 46:92:9a:5b:3a:c6:ab:6b:a7:16:72:98:a4:35:bd:fa:9f:8e: eb:6e:0f:43:10:7f:9d:9d:a6:f9:8d:70:84:f2:a2:90:72:58: 1d:be:c1:bf:77:0b:29:6c:8a:a9:b8:37:bb:a7:0c:dc:1d:40: af:6b:af:03:14:54:51:6e:33:f7:49:56:e1:c6:1b:bb:45:05: 20:7e:e0:1a:aa:a4:fb:db:67:b0:77:28:35:9b:c6:71:8a:84: 7e:9a:a1:3c:51:83:2f:51:1b:bd:ee:46:18:36:84:32:c7:cb: 06:c9:89:f7:97:cb:c8:4c:3b:0d:7d:e7:be:80:0e:d8:99:35: 90:84:a2:6a:8b:c4:53:b9:d0:65:16:db:bd:2e:ff:79:6d:f9: 55:f9:e1:75:ba:78:0b:04:17:2f:f3:ef:2d:0a:a5:b5:f1:c5: 90:6c:5d:d3:69:66:e6:90:11:14:81:3e:3f:a4:11:c0:be:5d: 36:08:67:1f:72:7b:2c:aa:9f:2a:89:c2:46:0e:70:c6:62:8e: 23:10:4a:bd:a6:7d:bf:6f:24:64:1a:99:a4:12:07:d7:cb:63: 40:16:38:9d:05:e2:2c:96:a4:04:51:b1:b3:af:e8:16:ab:52: 9e:b2:78:48:38:c8:7e:0c:17:a9:bb:27:82:d4:ba:05:f0:dd: 86:26:0e:2f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryrZpbZivD0NAeHjs6a4AiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM0ODU2NjA2MWUzNjhjYWZmMTg4MWJlMmJhYzY3MzdkZmQz YzFkYmEwHhcNMjUxMjA2MDgwMDU0WhcNMjUxMjA3MDgwMDU0WjAzMTEwLwYDVQQD EygzZWRkMGRhYjUyNGY5ZTMxYWUwNDVhNmUzYjExMmE3ZWM5ZTQ5Mzk5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA28+PuMuJ7U94k1RLoSS2SM8aF38x e7S0Adtkdby8vFTkxBbp4fiydEnCK4Ewjh+s+jD/YDz+FncLQob7fyzKGupX3i/r PB1DxjL1WgHcu78b+Nap/wTMVhPtnA3ebc3ZtisD2XAl9htXkf7Kk8PEBR0KypmZ DsK/NwBtruWr0fiYqIUpgbNtnuRCx1TCSpRDuT5cmdStzQuy2sY1E6Q3N7REvQrc a8+amFynaFoxtFkrEa8cz2m9FLt5UTkBB9QrIQfw9nOiKm8G1BFRurpElpTrElAC mFD3TeXzlYT5hUfGKqH09UTQoP8kEi+RoIOPK7meOuzwAi25hOm3u3miZQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFD7dDatST54xrgRabjsRKn7J5JOZMB8GA1UdIwQY MBaAFDSFZgYeNoyv8Ygb4rrGc339PB26MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTklWbUJoNDJqS194aUJ2aXVzWnpmZjA4SGJvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OC9hZmZhYTEtMGU3Yi00MDFlLWE3YzUt MDYyNzBlYTgyMTU0LzEvTklWbUJoNDJqS194aUJ2aXVzWnpmZjA4SGJvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80OC9hZmZhYTEtMGU3Yi00MDFlLWE3YzUtMDYyNzBlYTgyMTU0 LzEvTklWbUJoNDJqS194aUJ2aXVzWnpmZjA4SGJvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARpKaWzrG q2unFnKYpDW9+p+O624PQxB/nZ2m+Y1whPKikHJYHb7Bv3cLKWyKqbg3u6cM3B1A r2uvAxRUUW4z90lW4cYbu0UFIH7gGqqk+9tnsHcoNZvGcYqEfpqhPFGDL1Ebve5G GDaEMsfLBsmJ95fLyEw7DX3nvoAO2Jk1kISiaovEU7nQZRbbvS7/eW35Vfnhdbp4 CwQXL/PvLQqltfHFkGxd02lm5pARFIE+P6QRwL5dNghnH3J7LKqfKonCRg5wxmKO IxBKvaZ9v28kZBqZpBIH18tjQBY4nQXiLJakBFGxs6/oFqtSnrJ4SDjIfgwXqbsn gtS6BfDdhiYOLw== -----END CERTIFICATE-----Generated at Sat Dec 6 15:19:55 2025 by rpki-client