This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/832edd-488f-44d8-810b-f7ad97c0ecbd/1/nj3BkwnmeMFIJfxyCDyh3seEP00.mft File: nj3BkwnmeMFIJfxyCDyh3seEP00.mft (raw, json) Hash identifier: LgKiL4BlXO/05OIHazQZsLXaTpV8JMmP3ShXthjHFhg= Subject key identifier: D1:2E:68:24:5A:79:8A:27:F6:8C:4C:52:F2:9B:F1:F8:DB:C7:C9:DC Authority key identifier: 9E:3D:C1:93:09:E6:78:C1:48:25:FC:72:08:3C:A1:DE:C7:84:3F:4D Certificate issuer: /CN=9e3dc19309e678c14825fc72083ca1dec7843f4d Certificate serial: 019AF3F83418323EF46E6D96337B7885E197 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nj3BkwnmeMFIJfxyCDyh3seEP00.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/832edd-488f-44d8-810b-f7ad97c0ecbd/1/nj3BkwnmeMFIJfxyCDyh3seEP00.mft Manifest number: 157F Signing time: Sat 06 Dec 2025 14:02:00 +0000 Manifest this update: Sat 06 Dec 2025 14:02:00 +0000 Manifest next update: Sun 07 Dec 2025 14:02:00 +0000 Files and hashes: 1: JbUoXDLL57xF-6BVNBln0RftcZM.roa (hash: t8EC2530fZ+9x7+BNfg3gfNISOK9q19vZC97hYMQk9g=) 2: nj3BkwnmeMFIJfxyCDyh3seEP00.crl (hash: 3vFSuDCrlpWQA0J3RsK4sDNCICeZSXm9GyWG6NoE/+s=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/832edd-488f-44d8-810b-f7ad97c0ecbd/1/nj3BkwnmeMFIJfxyCDyh3seEP00.crl rsync://rpki.ripe.net/repository/DEFAULT/6a/832edd-488f-44d8-810b-f7ad97c0ecbd/1/nj3BkwnmeMFIJfxyCDyh3seEP00.mft rsync://rpki.ripe.net/repository/DEFAULT/nj3BkwnmeMFIJfxyCDyh3seEP00.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:f8:34:18:32:3e:f4:6e:6d:96:33:7b:78:85:e1:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9e3dc19309e678c14825fc72083ca1dec7843f4d Validity Not Before: Dec 6 14:02:00 2025 GMT Not After : Dec 7 14:02:00 2025 GMT Subject: CN=d12e68245a798a27f68c4c52f29bf1f8dbc7c9dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:fa:44:77:6a:69:06:46:b5:2f:2c:35:a7:b7: 2f:2f:6e:22:4d:d0:40:22:94:e4:bd:50:92:80:95: 09:16:1c:3d:54:cd:b3:3a:68:a4:82:e5:b3:02:2e: 48:af:05:41:13:18:c2:7a:9b:4e:55:b1:d2:da:c9: 8c:87:76:68:38:3e:95:58:02:3d:76:5d:e9:66:8c: 4e:0b:8a:74:b1:6d:35:c8:ad:9e:66:02:88:1f:b9: 9e:5c:c6:e2:1e:24:a7:4e:b4:f8:7e:d5:b5:cc:11: 51:28:a1:13:c9:88:8a:41:dd:55:83:0c:1f:a7:96: 09:12:5d:2b:82:8f:fc:17:22:9c:e7:97:97:52:62: 4d:d2:f3:fe:b4:8b:f3:40:8d:28:72:e6:72:84:cc: c6:31:e7:bf:a6:97:1d:dc:28:dd:5f:9f:60:41:38: 84:04:33:f5:00:60:b0:3e:40:24:7b:1f:95:0c:91: a9:01:6d:22:fc:27:20:1e:c2:d0:94:63:9f:18:96: 0c:6a:ce:e3:67:c9:5c:75:dd:ab:40:a9:ac:66:7b: 13:ac:27:84:c9:68:c5:34:22:10:40:cc:ed:ea:d2: 96:9e:25:e8:9f:17:9f:11:6b:c4:30:53:de:b2:4f: ff:34:0a:25:fa:e7:3c:c0:a9:67:84:da:fb:4a:4d: 03:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:2E:68:24:5A:79:8A:27:F6:8C:4C:52:F2:9B:F1:F8:DB:C7:C9:DC X509v3 Authority Key Identifier: keyid:9E:3D:C1:93:09:E6:78:C1:48:25:FC:72:08:3C:A1:DE:C7:84:3F:4D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nj3BkwnmeMFIJfxyCDyh3seEP00.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/832edd-488f-44d8-810b-f7ad97c0ecbd/1/nj3BkwnmeMFIJfxyCDyh3seEP00.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/832edd-488f-44d8-810b-f7ad97c0ecbd/1/nj3BkwnmeMFIJfxyCDyh3seEP00.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 36:90:20:db:d4:25:e5:38:31:5e:39:5f:89:7b:e6:bc:7c:44: ee:d0:4f:56:d3:e0:17:d9:47:33:2d:16:54:d9:31:f3:31:36: 69:cb:95:ff:a8:5e:6a:c7:fe:2c:36:c9:13:52:12:af:9a:ea: 72:90:ad:be:47:a1:80:2a:da:6d:d7:07:1d:db:59:e0:3b:34: 6c:de:56:08:06:5d:5a:65:03:f8:92:cf:b3:13:91:a9:2e:99: b0:38:c6:98:b0:3a:c7:43:87:a5:c1:bd:97:51:42:87:4a:6f: 50:bf:04:af:8d:34:ff:21:03:b2:95:10:8c:5c:23:47:90:39: 32:16:c3:d9:d2:9f:71:2c:47:e7:df:c0:f3:06:23:61:d2:ef: b1:50:77:20:7b:94:e0:2a:89:d7:ab:0b:7c:eb:03:4a:ee:83: 3e:ba:b7:fe:1d:71:72:cb:8b:89:69:dc:40:b8:3a:53:9d:68: 18:d6:0c:fb:87:db:81:0a:a9:3b:87:a8:5d:63:29:23:81:60: a4:3f:5c:58:e2:74:f4:07:67:4f:44:62:16:b7:5e:86:30:c4: b7:ed:51:0c:cd:5e:a5:ae:96:0f:cf:36:fa:30:fe:a3:2b:04: 34:59:ec:7c:d7:67:ff:b3:4b:22:72:9b:6a:cf:f2:60:df:cc: 7f:fe:35:75 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrz+DQYMj70bm2WM3t4heGXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDllM2RjMTkzMDllNjc4YzE0ODI1ZmM3MjA4M2NhMWRlYzc4 NDNmNGQwHhcNMjUxMjA2MTQwMjAwWhcNMjUxMjA3MTQwMjAwWjAzMTEwLwYDVQQD EyhkMTJlNjgyNDVhNzk4YTI3ZjY4YzRjNTJmMjliZjFmOGRiYzdjOWRjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2/pEd2ppBka1Lyw1p7cvL24iTdBA IpTkvVCSgJUJFhw9VM2zOmikguWzAi5IrwVBExjCeptOVbHS2smMh3ZoOD6VWAI9 dl3pZoxOC4p0sW01yK2eZgKIH7meXMbiHiSnTrT4ftW1zBFRKKETyYiKQd1Vgwwf p5YJEl0rgo/8FyKc55eXUmJN0vP+tIvzQI0ocuZyhMzGMee/ppcd3CjdX59gQTiE BDP1AGCwPkAkex+VDJGpAW0i/CcgHsLQlGOfGJYMas7jZ8lcdd2rQKmsZnsTrCeE yWjFNCIQQMzt6tKWniXonxefEWvEMFPesk//NAol+uc8wKlnhNr7Sk0DMwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNEuaCRaeYon9oxMUvKb8fjbx8ncMB8GA1UdIwQY MBaAFJ49wZMJ5njBSCX8cgg8od7HhD9NMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbmozQmt3bm1lTUZJSmZ4eUNEeWgzc2VFUDAwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82YS84MzJlZGQtNDg4Zi00NGQ4LTgxMGIt ZjdhZDk3YzBlY2JkLzEvbmozQmt3bm1lTUZJSmZ4eUNEeWgzc2VFUDAwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82YS84MzJlZGQtNDg4Zi00NGQ4LTgxMGItZjdhZDk3YzBlY2Jk LzEvbmozQmt3bm1lTUZJSmZ4eUNEeWgzc2VFUDAwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANpAg29Ql 5TgxXjlfiXvmvHxE7tBPVtPgF9lHMy0WVNkx8zE2acuV/6heasf+LDbJE1ISr5rq cpCtvkehgCrabdcHHdtZ4Ds0bN5WCAZdWmUD+JLPsxORqS6ZsDjGmLA6x0OHpcG9 l1FCh0pvUL8Er400/yEDspUQjFwjR5A5MhbD2dKfcSxH59/A8wYjYdLvsVB3IHuU 4CqJ16sLfOsDSu6DPrq3/h1xcsuLiWncQLg6U51oGNYM+4fbgQqpO4eoXWMpI4Fg pD9cWOJ09AdnT0RiFrdehjDEt+1RDM1epa6WD882+jD+oysENFnsfNdn/7NLInKb as/yYN/Mf/41dQ== -----END CERTIFICATE-----Generated at Sat Dec 6 22:29:57 2025 by rpki-client