This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/fefc12-2fc2-430d-9606-f4946f03f542/1/NADZSQmD598yx88Xyh6tTwX3lkY.mft File: NADZSQmD598yx88Xyh6tTwX3lkY.mft (raw, json) Hash identifier: JhoS8gSuYQk7PRFZG73McXD07CxIEYVgLJ3JEd9qGOQ= Subject key identifier: F5:3E:F3:68:69:50:FD:F4:97:B2:CC:71:33:F3:A7:1B:4C:08:9B:77 Authority key identifier: 34:00:D9:49:09:83:E7:DF:32:C7:CF:17:CA:1E:AD:4F:05:F7:96:46 Certificate issuer: /CN=3400d9490983e7df32c7cf17ca1ead4f05f79646 Certificate serial: 019AF464F274348BF3D4C667768F8A971081 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NADZSQmD598yx88Xyh6tTwX3lkY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/fefc12-2fc2-430d-9606-f4946f03f542/1/NADZSQmD598yx88Xyh6tTwX3lkY.mft Manifest number: 08D5 Signing time: Sat 06 Dec 2025 16:00:47 +0000 Manifest this update: Sat 06 Dec 2025 16:00:47 +0000 Manifest next update: Sun 07 Dec 2025 16:00:47 +0000 Files and hashes: 1: NADZSQmD598yx88Xyh6tTwX3lkY.crl (hash: vmdNc6LdEkZRMD5A5up9/l5TZR5IaJg6/xIdnZwpy8A=) 2: wGV9gdNmWFtWWUn9dwqAU6O3Xlw.roa (hash: e5ewBGv57i41ziAigHZZOeL98kqI4hYVQ5SbzM8SjnI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/fefc12-2fc2-430d-9606-f4946f03f542/1/NADZSQmD598yx88Xyh6tTwX3lkY.crl rsync://rpki.ripe.net/repository/DEFAULT/4c/fefc12-2fc2-430d-9606-f4946f03f542/1/NADZSQmD598yx88Xyh6tTwX3lkY.mft rsync://rpki.ripe.net/repository/DEFAULT/NADZSQmD598yx88Xyh6tTwX3lkY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f4:64:f2:74:34:8b:f3:d4:c6:67:76:8f:8a:97:10:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3400d9490983e7df32c7cf17ca1ead4f05f79646 Validity Not Before: Dec 6 16:00:47 2025 GMT Not After : Dec 7 16:00:47 2025 GMT Subject: CN=f53ef3686950fdf497b2cc7133f3a71b4c089b77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:aa:0b:2e:ac:47:60:39:70:b2:06:3a:75:6a: ac:c1:ae:45:f9:1d:7f:ef:5f:dc:37:c7:99:b0:13: 27:3c:4e:19:21:85:45:c1:cc:4c:b0:62:1e:ef:73: d8:d0:ec:16:df:67:05:56:1e:60:ae:d0:bd:4c:d2: dd:6d:6f:c2:7d:d4:9d:b3:8f:32:6c:5a:eb:d3:c5: d4:e5:c1:a5:53:4a:48:80:f4:cf:c1:49:1b:71:15: 7e:30:06:39:9f:14:64:7c:6a:92:a3:c0:3e:63:df: 61:5f:96:77:66:4b:52:36:59:c8:36:b1:72:6c:ee: 30:76:7d:e4:e6:cc:0b:63:a6:ff:03:05:cb:8f:a1: 8b:be:c5:e2:ef:a7:26:2e:cc:37:d5:51:4c:24:9c: fa:fb:5f:b7:bf:e2:18:44:91:b4:a8:2a:cd:26:cf: 28:f0:25:36:5d:0c:e6:7e:85:5d:cd:2c:a1:21:b7: 05:6b:75:31:d2:9c:4c:f2:b2:80:e5:fc:54:1d:c9: cd:d2:ad:50:98:a3:f2:29:d4:d2:73:37:fd:e1:f6: fe:37:02:66:30:46:46:fa:cc:96:9b:b5:b5:37:7a: 2c:42:e5:99:17:fa:13:84:e2:1f:d5:d6:f4:8c:27: 09:a2:11:db:88:0c:b3:62:48:f0:80:5c:54:f6:fd: 07:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:3E:F3:68:69:50:FD:F4:97:B2:CC:71:33:F3:A7:1B:4C:08:9B:77 X509v3 Authority Key Identifier: keyid:34:00:D9:49:09:83:E7:DF:32:C7:CF:17:CA:1E:AD:4F:05:F7:96:46 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NADZSQmD598yx88Xyh6tTwX3lkY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/fefc12-2fc2-430d-9606-f4946f03f542/1/NADZSQmD598yx88Xyh6tTwX3lkY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/fefc12-2fc2-430d-9606-f4946f03f542/1/NADZSQmD598yx88Xyh6tTwX3lkY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 27:55:af:80:da:94:37:71:52:23:08:93:8f:f8:1e:ee:1c:24: e9:7e:b4:ae:4e:ad:d7:a9:ce:e6:04:84:5d:4b:45:d4:69:3e: 15:45:5a:f9:5d:4b:e0:09:9e:dc:9b:07:2b:70:e9:97:3c:56: cf:ab:7f:3f:23:62:f5:b9:00:88:e0:09:3f:8d:a4:09:d5:74: 65:99:4a:8f:8a:26:60:d6:f8:e6:e1:98:bd:56:cc:be:ae:f9: d5:8a:3e:af:50:4a:f1:5e:9a:fa:a6:d3:de:ab:40:07:0d:0c: e9:fa:9a:5e:b2:cc:8c:cc:6a:63:48:23:e0:da:03:ce:6b:36: 12:64:08:60:6e:e4:af:51:81:22:37:c7:1e:d8:1c:91:df:80: 18:b7:3f:96:2e:5f:6c:93:cf:ca:f9:d6:79:98:7c:b3:da:a9: 23:5c:b0:f8:11:b1:fe:c3:cb:89:ef:fa:a0:40:cc:dc:70:8a: 95:8b:a7:6b:b5:be:77:95:ef:47:23:69:6d:84:de:7c:9b:b4: de:3e:dd:cb:25:07:a9:82:31:d6:0b:e1:66:5c:52:61:da:32: 27:ac:fb:c7:07:45:68:53:1a:c7:04:24:1c:b6:5e:5a:88:93: ea:bd:61:c7:9b:8e:d0:6e:87:25:23:94:6d:7b:a9:bc:49:fb: 48:17:58:93 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr0ZPJ0NIvz1MZndo+KlxCBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM0MDBkOTQ5MDk4M2U3ZGYzMmM3Y2YxN2NhMWVhZDRmMDVm Nzk2NDYwHhcNMjUxMjA2MTYwMDQ3WhcNMjUxMjA3MTYwMDQ3WjAzMTEwLwYDVQQD EyhmNTNlZjM2ODY5NTBmZGY0OTdiMmNjNzEzM2YzYTcxYjRjMDg5Yjc3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA16oLLqxHYDlwsgY6dWqswa5F+R1/ 71/cN8eZsBMnPE4ZIYVFwcxMsGIe73PY0OwW32cFVh5grtC9TNLdbW/CfdSds48y bFrr08XU5cGlU0pIgPTPwUkbcRV+MAY5nxRkfGqSo8A+Y99hX5Z3ZktSNlnINrFy bO4wdn3k5swLY6b/AwXLj6GLvsXi76cmLsw31VFMJJz6+1+3v+IYRJG0qCrNJs8o 8CU2XQzmfoVdzSyhIbcFa3Ux0pxM8rKA5fxUHcnN0q1QmKPyKdTSczf94fb+NwJm MEZG+syWm7W1N3osQuWZF/oThOIf1db0jCcJohHbiAyzYkjwgFxU9v0HbQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPU+82hpUP30l7LMcTPzpxtMCJt3MB8GA1UdIwQY MBaAFDQA2UkJg+ffMsfPF8oerU8F95ZGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTkFEWlNRbUQ1OTh5eDg4WHloNnRUd1gzbGtZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy9mZWZjMTItMmZjMi00MzBkLTk2MDYt ZjQ5NDZmMDNmNTQyLzEvTkFEWlNRbUQ1OTh5eDg4WHloNnRUd1gzbGtZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Yy9mZWZjMTItMmZjMi00MzBkLTk2MDYtZjQ5NDZmMDNmNTQy LzEvTkFEWlNRbUQ1OTh5eDg4WHloNnRUd1gzbGtZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJ1WvgNqU N3FSIwiTj/ge7hwk6X60rk6t16nO5gSEXUtF1Gk+FUVa+V1L4Ame3JsHK3DplzxW z6t/PyNi9bkAiOAJP42kCdV0ZZlKj4omYNb45uGYvVbMvq751Yo+r1BK8V6a+qbT 3qtABw0M6fqaXrLMjMxqY0gj4NoDzms2EmQIYG7kr1GBIjfHHtgckd+AGLc/li5f bJPPyvnWeZh8s9qpI1yw+BGx/sPLie/6oEDM3HCKlYuna7W+d5XvRyNpbYTefJu0 3j7dyyUHqYIx1gvhZlxSYdoyJ6z7xwdFaFMaxwQkHLZeWoiT6r1hx5uO0G6HJSOU bXupvEn7SBdYkw== -----END CERTIFICATE-----Generated at Sat Dec 6 19:12:42 2025 by rpki-client