This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/3433fe-6408-468d-81e4-f03eb8740c3e/1/nAMai2oolAx5NrpueCuUoJYr-yc.mft File: nAMai2oolAx5NrpueCuUoJYr-yc.mft (raw, json) Hash identifier: vgTPutaNmIq2dJ4V+cbhMCOkpfnICYni3TuESr3WpR0= Subject key identifier: 53:D9:D1:0C:B3:F7:5F:06:8D:34:24:FF:38:94:A6:01:34:62:8D:AD Authority key identifier: 9C:03:1A:8B:6A:28:94:0C:79:36:BA:6E:78:2B:94:A0:96:2B:FB:27 Certificate issuer: /CN=9c031a8b6a28940c7936ba6e782b94a0962bfb27 Certificate serial: 019AF31B353A0C8D995F84F69331609EC5B8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nAMai2oolAx5NrpueCuUoJYr-yc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/3433fe-6408-468d-81e4-f03eb8740c3e/1/nAMai2oolAx5NrpueCuUoJYr-yc.mft Manifest number: 04F1 Signing time: Sat 06 Dec 2025 10:00:37 +0000 Manifest this update: Sat 06 Dec 2025 10:00:37 +0000 Manifest next update: Sun 07 Dec 2025 10:00:37 +0000 Files and hashes: 1: nAMai2oolAx5NrpueCuUoJYr-yc.crl (hash: c55R3C30e3G50dG1Sw4iGcdZ/XqE82gcUA+qtoQJwzg=) 2: sazfzVz6q9bIns0N5tJ_KIxOhyU.roa (hash: 7Dx7RnLHW4HsXUHgAbio+tOs+19yMbUTjmWX8tX1e1E=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/3433fe-6408-468d-81e4-f03eb8740c3e/1/nAMai2oolAx5NrpueCuUoJYr-yc.crl rsync://rpki.ripe.net/repository/DEFAULT/5c/3433fe-6408-468d-81e4-f03eb8740c3e/1/nAMai2oolAx5NrpueCuUoJYr-yc.mft rsync://rpki.ripe.net/repository/DEFAULT/nAMai2oolAx5NrpueCuUoJYr-yc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:1b:35:3a:0c:8d:99:5f:84:f6:93:31:60:9e:c5:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9c031a8b6a28940c7936ba6e782b94a0962bfb27 Validity Not Before: Dec 6 10:00:37 2025 GMT Not After : Dec 7 10:00:37 2025 GMT Subject: CN=53d9d10cb3f75f068d3424ff3894a60134628dad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:43:cb:03:31:e9:24:6c:be:ee:29:a9:2a:92: 5d:b2:c0:c1:6e:fe:c4:d3:89:e6:58:bb:c9:ba:48: 47:1b:3a:ef:86:27:37:1b:d9:cc:39:23:4a:20:78: 7a:ff:eb:ac:ad:79:df:78:75:23:33:7f:43:c9:b7: f0:4e:0e:7c:94:1b:69:6b:1e:73:c1:0d:a4:f0:13: 28:a4:7e:dc:f2:0e:40:4a:82:ff:22:30:ce:79:9a: aa:f9:4c:aa:a8:be:7f:56:ea:50:f5:65:09:69:3d: 22:62:1b:39:c5:bd:a6:b7:65:dd:6d:c1:96:d4:86: 42:08:a8:a3:44:74:b2:a6:12:1c:75:a1:b4:ea:ae: a3:0f:6d:b9:bf:6d:73:65:f3:e9:d9:80:c2:00:ba: eb:7b:19:72:df:fe:42:db:92:b2:52:cc:51:52:d3: 64:44:5e:64:03:07:6f:dd:a5:29:e8:74:59:83:50: 01:92:74:76:dd:a0:47:7a:ae:3b:53:d5:38:6b:a4: 98:60:b4:b5:af:25:8c:4f:9d:89:8b:13:c7:27:ab: 68:b0:9a:c2:32:c1:af:46:34:bb:b0:55:37:9c:e6: d0:a3:14:c8:70:d0:3e:07:d5:98:7c:50:a3:bb:c6: 95:e8:8e:50:f0:5f:2a:14:0b:83:bc:a2:4c:ef:54: cf:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:D9:D1:0C:B3:F7:5F:06:8D:34:24:FF:38:94:A6:01:34:62:8D:AD X509v3 Authority Key Identifier: keyid:9C:03:1A:8B:6A:28:94:0C:79:36:BA:6E:78:2B:94:A0:96:2B:FB:27 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nAMai2oolAx5NrpueCuUoJYr-yc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/3433fe-6408-468d-81e4-f03eb8740c3e/1/nAMai2oolAx5NrpueCuUoJYr-yc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/3433fe-6408-468d-81e4-f03eb8740c3e/1/nAMai2oolAx5NrpueCuUoJYr-yc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6e:da:f1:0a:76:0a:9f:51:62:cf:8b:cc:d8:da:2a:dd:22:1e: 4b:1e:f3:46:0c:5b:2d:89:9c:79:6a:ad:b3:62:f2:d6:84:de: 93:bd:ba:58:cb:14:1e:e3:62:55:d0:29:66:f1:b5:d2:d3:43: 11:ba:15:07:19:8e:dc:9d:c4:6f:96:c7:7d:15:34:a9:97:e3: e7:4c:8b:18:02:22:c4:a7:a1:83:42:4a:6c:09:4e:52:ef:cd: 05:4d:9c:a2:d7:ae:8a:76:94:c4:de:50:fc:c7:03:f0:35:75: fd:e4:3f:06:dd:0e:43:8c:75:64:b6:1c:f2:97:c3:ca:43:2e: 6d:ac:ee:1c:c2:4a:13:1e:9a:16:96:69:e8:f8:6f:93:f4:82: 92:eb:96:12:01:5c:39:0a:53:f1:8a:a3:9d:1f:e9:4b:28:72: 0d:a6:31:17:23:6a:15:51:02:0e:56:55:0a:11:79:98:ed:af: 29:65:b9:ee:31:c6:57:ff:07:6e:08:fb:27:d7:56:ac:a1:3d: 37:08:04:0c:c1:75:a7:16:72:f5:58:8c:58:88:59:71:a1:32: 17:ad:39:03:ab:20:53:94:d4:ea:a3:9e:3d:c0:92:f0:ea:32: 0b:56:ec:0b:0e:1b:f0:5b:c1:64:5d:83:34:f1:ee:b3:03:75: f9:40:50:84 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzGzU6DI2ZX4T2kzFgnsW4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDljMDMxYThiNmEyODk0MGM3OTM2YmE2ZTc4MmI5NGEwOTYy YmZiMjcwHhcNMjUxMjA2MTAwMDM3WhcNMjUxMjA3MTAwMDM3WjAzMTEwLwYDVQQD Eyg1M2Q5ZDEwY2IzZjc1ZjA2OGQzNDI0ZmYzODk0YTYwMTM0NjI4ZGFkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs0PLAzHpJGy+7impKpJdssDBbv7E 04nmWLvJukhHGzrvhic3G9nMOSNKIHh6/+usrXnfeHUjM39DybfwTg58lBtpax5z wQ2k8BMopH7c8g5ASoL/IjDOeZqq+UyqqL5/VupQ9WUJaT0iYhs5xb2mt2XdbcGW 1IZCCKijRHSyphIcdaG06q6jD225v21zZfPp2YDCALrrexly3/5C25KyUsxRUtNk RF5kAwdv3aUp6HRZg1ABknR23aBHeq47U9U4a6SYYLS1ryWMT52JixPHJ6tosJrC MsGvRjS7sFU3nObQoxTIcNA+B9WYfFCju8aV6I5Q8F8qFAuDvKJM71TPrQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFPZ0Qyz918GjTQk/ziUpgE0Yo2tMB8GA1UdIwQY MBaAFJwDGotqKJQMeTa6bngrlKCWK/snMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbkFNYWkyb29sQXg1TnJwdWVDdVVvSllyLXljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yy8zNDMzZmUtNjQwOC00NjhkLTgxZTQt ZjAzZWI4NzQwYzNlLzEvbkFNYWkyb29sQXg1TnJwdWVDdVVvSllyLXljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yy8zNDMzZmUtNjQwOC00NjhkLTgxZTQtZjAzZWI4NzQwYzNl LzEvbkFNYWkyb29sQXg1TnJwdWVDdVVvSllyLXljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbtrxCnYK n1Fiz4vM2Noq3SIeSx7zRgxbLYmceWqts2Ly1oTek726WMsUHuNiVdApZvG10tND EboVBxmO3J3Eb5bHfRU0qZfj50yLGAIixKehg0JKbAlOUu/NBU2coteuinaUxN5Q /McD8DV1/eQ/Bt0OQ4x1ZLYc8pfDykMubazuHMJKEx6aFpZp6Phvk/SCkuuWEgFc OQpT8YqjnR/pSyhyDaYxFyNqFVECDlZVChF5mO2vKWW57jHGV/8Hbgj7J9dWrKE9 NwgEDMF1pxZy9ViMWIhZcaEyF605A6sgU5TU6qOePcCS8OoyC1bsCw4b8FvBZF2D NPHuswN1+UBQhA== -----END CERTIFICATE-----Generated at Sat Dec 6 14:14:32 2025 by rpki-client