This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/6ca852-ed4b-41d1-a7b6-84a71cc32d48/1/NehMBjohgLI_X20xYqdbMJL1wY0.mft File: NehMBjohgLI_X20xYqdbMJL1wY0.mft (raw, json) Hash identifier: dng2AvmJNjFTz2qRLq63cB4MvXV+BdSHLQlPoBQ5HWM= Subject key identifier: B1:42:B9:2F:18:89:CD:D0:2B:E7:12:5E:54:60:B3:2E:B1:4E:E8:D5 Authority key identifier: 35:E8:4C:06:3A:21:80:B2:3F:5F:6D:31:62:A7:5B:30:92:F5:C1:8D Certificate issuer: /CN=35e84c063a2180b23f5f6d3162a75b3092f5c18d Certificate serial: 019AF16433625EB15993CC04216BEC0DD833 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NehMBjohgLI_X20xYqdbMJL1wY0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/6ca852-ed4b-41d1-a7b6-84a71cc32d48/1/NehMBjohgLI_X20xYqdbMJL1wY0.mft Manifest number: 175F Signing time: Sat 06 Dec 2025 02:01:07 +0000 Manifest this update: Sat 06 Dec 2025 02:01:07 +0000 Manifest next update: Sun 07 Dec 2025 02:01:07 +0000 Files and hashes: 1: NehMBjohgLI_X20xYqdbMJL1wY0.crl (hash: ilpXMYfdQlQj9Ut+DR1SqSYfb1kqyff3HGPk88ees3M=) 2: W3mDa3qMM3UMHKwdjXNmQQYwzCo.roa (hash: uhcnNrB9w8L6u9yOsZumoNimMZDsDc9Fp+1S6uVCDDA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/6ca852-ed4b-41d1-a7b6-84a71cc32d48/1/NehMBjohgLI_X20xYqdbMJL1wY0.crl rsync://rpki.ripe.net/repository/DEFAULT/54/6ca852-ed4b-41d1-a7b6-84a71cc32d48/1/NehMBjohgLI_X20xYqdbMJL1wY0.mft rsync://rpki.ripe.net/repository/DEFAULT/NehMBjohgLI_X20xYqdbMJL1wY0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:64:33:62:5e:b1:59:93:cc:04:21:6b:ec:0d:d8:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=35e84c063a2180b23f5f6d3162a75b3092f5c18d Validity Not Before: Dec 6 02:01:07 2025 GMT Not After : Dec 7 02:01:07 2025 GMT Subject: CN=b142b92f1889cdd02be7125e5460b32eb14ee8d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:ba:e0:e7:49:f4:0e:34:2a:af:c8:e1:ce:1d: 20:21:42:1c:10:23:78:46:3c:d9:04:19:34:d5:93: 7b:59:cd:cc:cb:be:02:c8:33:6d:2a:ba:30:ab:eb: 10:09:74:40:65:e8:55:07:5e:c5:6e:96:10:f9:d8: 5e:6e:84:be:3e:6e:01:a4:19:25:ee:a2:cf:b8:fb: ef:c1:c1:94:27:1f:e7:a2:55:c9:f9:c7:66:8b:93: f2:ae:8a:57:ef:58:cf:07:0a:13:5f:96:64:ff:b2: 29:18:2b:9b:bd:8c:8d:34:c9:72:0b:51:43:16:60: cb:c8:6b:77:12:64:97:03:08:79:56:76:50:ea:50: 0b:6b:52:80:79:33:06:5e:46:ce:35:55:04:9f:d6: 79:d5:8a:3e:38:d5:d3:94:8e:90:bc:16:b1:12:f3: d2:8e:56:38:ad:dd:c7:71:ce:6e:9c:58:08:e1:78: f2:9f:85:74:46:2d:61:89:90:7f:41:9f:3f:e1:5e: 69:a2:b8:67:8e:e9:ed:fd:41:11:f0:59:0d:d2:3d: 00:99:2d:19:9b:f5:4e:f3:d0:ca:94:9c:e1:09:13: 12:02:0e:6c:5a:96:48:cb:27:4d:7c:49:4c:49:d2: ed:5b:8f:a3:84:34:7a:6b:24:a2:dc:a4:28:8d:d4: 3b:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:42:B9:2F:18:89:CD:D0:2B:E7:12:5E:54:60:B3:2E:B1:4E:E8:D5 X509v3 Authority Key Identifier: keyid:35:E8:4C:06:3A:21:80:B2:3F:5F:6D:31:62:A7:5B:30:92:F5:C1:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NehMBjohgLI_X20xYqdbMJL1wY0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/6ca852-ed4b-41d1-a7b6-84a71cc32d48/1/NehMBjohgLI_X20xYqdbMJL1wY0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/54/6ca852-ed4b-41d1-a7b6-84a71cc32d48/1/NehMBjohgLI_X20xYqdbMJL1wY0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3c:17:01:c2:a1:81:5d:e5:03:49:c5:3b:b1:1e:5e:6d:80:fb: e8:4a:46:4b:30:1c:5e:be:f4:5f:9c:39:e4:2d:bf:10:75:10: 37:6c:ac:f4:05:39:00:fa:d3:82:7b:31:8d:7c:50:d1:67:a3: af:01:15:67:c5:fe:6b:52:94:76:00:b8:b1:1b:24:e3:f2:fc: 1d:40:34:95:9d:d7:1d:0c:f5:14:7c:ef:df:bb:ad:d6:01:fa: 7e:ec:40:6a:bd:51:38:aa:e8:11:4e:57:86:d2:8f:35:9c:35: a7:1a:be:f1:2c:4f:78:b2:ea:24:0c:ac:81:a6:bd:2b:12:86: 92:67:f9:ee:f5:9c:cd:04:50:50:14:a5:b6:ec:82:9a:7f:0a: ea:dc:d1:a9:8a:02:18:7a:67:dc:25:54:8e:51:6b:b3:a9:39: 99:b8:66:9f:b3:a8:40:b8:01:f3:d9:fa:72:6b:57:d5:50:76: 7c:91:68:cd:8f:42:24:30:33:99:bd:52:db:b5:60:58:92:b9: 96:c9:c0:34:dd:c6:33:c4:25:d3:98:e8:68:a2:ec:84:5a:1d: 58:53:17:52:59:33:76:26:af:cc:b5:43:18:31:a0:0e:1b:29: 72:ca:bc:ed:44:4e:ea:3c:ef:11:b8:8f:60:5a:a6:ad:2a:d4: a0:91:24:8a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxZDNiXrFZk8wEIWvsDdgzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM1ZTg0YzA2M2EyMTgwYjIzZjVmNmQzMTYyYTc1YjMwOTJm NWMxOGQwHhcNMjUxMjA2MDIwMTA3WhcNMjUxMjA3MDIwMTA3WjAzMTEwLwYDVQQD EyhiMTQyYjkyZjE4ODljZGQwMmJlNzEyNWU1NDYwYjMyZWIxNGVlOGQ1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt7rg50n0DjQqr8jhzh0gIUIcECN4 RjzZBBk01ZN7Wc3My74CyDNtKrowq+sQCXRAZehVB17FbpYQ+dheboS+Pm4BpBkl 7qLPuPvvwcGUJx/nolXJ+cdmi5PyropX71jPBwoTX5Zk/7IpGCubvYyNNMlyC1FD FmDLyGt3EmSXAwh5VnZQ6lALa1KAeTMGXkbONVUEn9Z51Yo+ONXTlI6QvBaxEvPS jlY4rd3Hcc5unFgI4Xjyn4V0Ri1hiZB/QZ8/4V5porhnjunt/UER8FkN0j0AmS0Z m/VO89DKlJzhCRMSAg5sWpZIyydNfElMSdLtW4+jhDR6aySi3KQojdQ71wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLFCuS8Yic3QK+cSXlRgsy6xTujVMB8GA1UdIwQY MBaAFDXoTAY6IYCyP19tMWKnWzCS9cGNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTmVoTUJqb2hnTElfWDIweFlxZGJNSkwxd1kwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC82Y2E4NTItZWQ0Yi00MWQxLWE3YjYt ODRhNzFjYzMyZDQ4LzEvTmVoTUJqb2hnTElfWDIweFlxZGJNSkwxd1kwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81NC82Y2E4NTItZWQ0Yi00MWQxLWE3YjYtODRhNzFjYzMyZDQ4 LzEvTmVoTUJqb2hnTElfWDIweFlxZGJNSkwxd1kwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPBcBwqGB XeUDScU7sR5ebYD76EpGSzAcXr70X5w55C2/EHUQN2ys9AU5APrTgnsxjXxQ0Wej rwEVZ8X+a1KUdgC4sRsk4/L8HUA0lZ3XHQz1FHzv37ut1gH6fuxAar1ROKroEU5X htKPNZw1pxq+8SxPeLLqJAysgaa9KxKGkmf57vWczQRQUBSltuyCmn8K6tzRqYoC GHpn3CVUjlFrs6k5mbhmn7OoQLgB89n6cmtX1VB2fJFozY9CJDAzmb1S27VgWJK5 lsnANN3GM8Ql05joaKLshFodWFMXUlkzdiavzLVDGDGgDhspcsq87URO6jzvEbiP YFqmrSrUoJEkig== -----END CERTIFICATE-----Generated at Sat Dec 6 07:23:35 2025 by rpki-client