This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/e8bb13-9f89-40ca-8a6b-a394e866b37c/1/_Nq63VYraOxeFY4easdvfalucyM.mft File: _Nq63VYraOxeFY4easdvfalucyM.mft (raw, json) Hash identifier: 7gWsj7wwUp8LWVcsMrdvwm6TavM8608rBVprJsQ/C6Q= Subject key identifier: 7A:08:93:DD:5C:C2:E2:B4:72:FC:64:81:2B:0A:B6:83:F5:B3:E4:46 Authority key identifier: FC:DA:BA:DD:56:2B:68:EC:5E:15:8E:1E:6A:C7:6F:7D:A9:6E:73:23 Certificate issuer: /CN=fcdabadd562b68ec5e158e1e6ac76f7da96e7323 Certificate serial: 019AF19AEA463C80EC9A9E55FAC13587C482 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_Nq63VYraOxeFY4easdvfalucyM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/e8bb13-9f89-40ca-8a6b-a394e866b37c/1/_Nq63VYraOxeFY4easdvfalucyM.mft Manifest number: 175F Signing time: Sat 06 Dec 2025 03:00:52 +0000 Manifest this update: Sat 06 Dec 2025 03:00:52 +0000 Manifest next update: Sun 07 Dec 2025 03:00:52 +0000 Files and hashes: 1: _Nq63VYraOxeFY4easdvfalucyM.crl (hash: t04PbbiSpihlhr4GuKBX3Nx8sSjTYLgaSyBpgK3Gs14=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/e8bb13-9f89-40ca-8a6b-a394e866b37c/1/_Nq63VYraOxeFY4easdvfalucyM.crl rsync://rpki.ripe.net/repository/DEFAULT/56/e8bb13-9f89-40ca-8a6b-a394e866b37c/1/_Nq63VYraOxeFY4easdvfalucyM.mft rsync://rpki.ripe.net/repository/DEFAULT/_Nq63VYraOxeFY4easdvfalucyM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 03:00:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9a:ea:46:3c:80:ec:9a:9e:55:fa:c1:35:87:c4:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fcdabadd562b68ec5e158e1e6ac76f7da96e7323 Validity Not Before: Dec 6 03:00:52 2025 GMT Not After : Dec 7 03:00:52 2025 GMT Subject: CN=7a0893dd5cc2e2b472fc64812b0ab683f5b3e446 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:6c:03:08:99:2a:f0:35:43:19:fa:5c:87:8c: 2b:3e:98:cf:6b:9c:aa:e7:5c:8d:91:1a:bf:54:9e: cb:56:d7:86:36:57:d7:55:e2:08:b6:05:d4:31:dc: 2a:c9:76:41:08:31:c0:50:14:c2:c0:4d:68:17:e5: c7:85:63:ba:1c:12:2a:42:0f:cd:51:0b:a8:fb:d6: ef:74:71:a2:7d:0d:53:ad:6c:eb:f3:85:61:23:b6: b3:93:85:42:3f:d3:22:8c:61:36:bc:25:2c:e5:64: 96:b2:11:d6:0b:6e:33:f1:a4:df:af:fd:2b:e9:52: 80:f4:3b:a9:cf:5a:52:52:ca:64:e1:17:c4:fd:2c: a9:22:fb:b7:03:a8:28:79:44:59:60:0a:e0:a6:48: 05:91:83:dc:6f:05:0c:aa:7f:7e:e2:3f:c4:76:ba: 9f:c4:3e:c1:be:95:c9:9a:43:6c:6c:09:13:4b:6c: a5:e7:42:a8:a0:26:f6:29:21:26:bd:1d:6c:9c:f0: 8d:7f:a2:80:bc:f8:09:2f:26:f1:6a:58:4a:d7:a1: 94:72:c8:62:89:0f:d9:3a:ac:62:79:59:ad:55:08: 92:c0:57:a3:c4:14:96:65:1f:be:e5:32:64:6c:32: 80:38:f1:dc:5c:bf:36:54:05:9a:08:dd:3e:d4:78: 16:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:08:93:DD:5C:C2:E2:B4:72:FC:64:81:2B:0A:B6:83:F5:B3:E4:46 X509v3 Authority Key Identifier: keyid:FC:DA:BA:DD:56:2B:68:EC:5E:15:8E:1E:6A:C7:6F:7D:A9:6E:73:23 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_Nq63VYraOxeFY4easdvfalucyM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/e8bb13-9f89-40ca-8a6b-a394e866b37c/1/_Nq63VYraOxeFY4easdvfalucyM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/56/e8bb13-9f89-40ca-8a6b-a394e866b37c/1/_Nq63VYraOxeFY4easdvfalucyM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7b:7a:2a:0f:2c:ef:f2:07:43:05:50:e5:a4:5b:b9:07:79:df: 0e:96:50:c0:7f:e5:3c:27:53:42:c7:fa:da:03:6b:35:21:bf: b9:16:9a:0f:07:e9:70:2b:96:be:5c:8a:a2:cd:7c:9c:14:2e: 1d:77:11:71:59:b3:f6:82:5e:f6:8b:b5:48:fb:f6:91:51:0e: bd:74:a8:5a:96:f2:84:7a:4b:13:96:48:fb:1e:5c:0c:42:d7: 68:68:ff:2e:78:ca:5b:d1:d9:25:e1:27:cf:4c:4b:b7:f2:62: 5f:4f:ed:80:fe:e4:50:ae:3c:5e:6c:89:fc:d4:90:1f:c9:9e: 13:2a:df:aa:61:5c:7f:2c:91:c3:73:ea:86:c6:38:b9:32:3f: aa:55:f2:3b:f3:b4:16:cb:93:63:ab:02:9a:3e:d0:ce:b0:f9: 61:57:db:c9:58:77:0c:d8:3d:15:d8:be:0c:32:2e:63:6f:7a: ce:73:d4:ed:7b:04:13:9a:59:87:fa:44:6f:d3:8b:0e:14:27: a0:fa:6f:f3:f6:64:b7:c1:9f:f6:a9:95:1f:3e:95:72:53:23: e4:60:92:9a:1f:60:77:51:b9:5d:8a:02:f6:3d:1f:d9:a1:f3: 1b:97:3a:a6:0c:2a:54:ac:c8:24:b8:e4:d9:89:3c:9e:44:0e: 23:86:77:45 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxmupGPIDsmp5V+sE1h8SCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZjZGFiYWRkNTYyYjY4ZWM1ZTE1OGUxZTZhYzc2ZjdkYTk2 ZTczMjMwHhcNMjUxMjA2MDMwMDUyWhcNMjUxMjA3MDMwMDUyWjAzMTEwLwYDVQQD Eyg3YTA4OTNkZDVjYzJlMmI0NzJmYzY0ODEyYjBhYjY4M2Y1YjNlNDQ2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAomwDCJkq8DVDGfpch4wrPpjPa5yq 51yNkRq/VJ7LVteGNlfXVeIItgXUMdwqyXZBCDHAUBTCwE1oF+XHhWO6HBIqQg/N UQuo+9bvdHGifQ1TrWzr84VhI7azk4VCP9MijGE2vCUs5WSWshHWC24z8aTfr/0r 6VKA9Dupz1pSUspk4RfE/SypIvu3A6goeURZYArgpkgFkYPcbwUMqn9+4j/Edrqf xD7BvpXJmkNsbAkTS2yl50KooCb2KSEmvR1snPCNf6KAvPgJLybxalhK16GUcshi iQ/ZOqxieVmtVQiSwFejxBSWZR++5TJkbDKAOPHcXL82VAWaCN0+1HgWQQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHoIk91cwuK0cvxkgSsKtoP1s+RGMB8GA1UdIwQY MBaAFPzaut1WK2jsXhWOHmrHb32pbnMjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvX05xNjNWWXJhT3hlRlk0ZWFzZHZmYWx1Y3lNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ni9lOGJiMTMtOWY4OS00MGNhLThhNmIt YTM5NGU4NjZiMzdjLzEvX05xNjNWWXJhT3hlRlk0ZWFzZHZmYWx1Y3lNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Ni9lOGJiMTMtOWY4OS00MGNhLThhNmItYTM5NGU4NjZiMzdj LzEvX05xNjNWWXJhT3hlRlk0ZWFzZHZmYWx1Y3lNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAe3oqDyzv 8gdDBVDlpFu5B3nfDpZQwH/lPCdTQsf62gNrNSG/uRaaDwfpcCuWvlyKos18nBQu HXcRcVmz9oJe9ou1SPv2kVEOvXSoWpbyhHpLE5ZI+x5cDELXaGj/LnjKW9HZJeEn z0xLt/JiX0/tgP7kUK48XmyJ/NSQH8meEyrfqmFcfyyRw3PqhsY4uTI/qlXyO/O0 FsuTY6sCmj7QzrD5YVfbyVh3DNg9Fdi+DDIuY296znPU7XsEE5pZh/pEb9OLDhQn oPpv8/Zkt8Gf9qmVHz6VclMj5GCSmh9gd1G5XYoC9j0f2aHzG5c6pgwqVKzIJLjk 2Yk8nkQOI4Z3RQ== -----END CERTIFICATE-----Generated at Sat Dec 6 10:37:38 2025 by rpki-client