This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/87f92e-4e67-4ac9-96c5-a779baaa7599/1/NAahLsxTolGnXOe6yqyeQa7otMo.mft File: NAahLsxTolGnXOe6yqyeQa7otMo.mft (raw, json) Hash identifier: A69+GFtXAM5vHuExnnspBt7hQa9LrRfORr9IgKtiYuI= Subject key identifier: 39:E4:C6:67:DE:9E:48:44:5D:EE:50:E6:2C:4C:BD:63:51:B4:08:F2 Authority key identifier: 34:06:A1:2E:CC:53:A2:51:A7:5C:E7:BA:CA:AC:9E:41:AE:E8:B4:CA Certificate issuer: /CN=3406a12ecc53a251a75ce7bacaac9e41aee8b4ca Certificate serial: 019AF19B8F0201E3709067B83236DA09D2D0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NAahLsxTolGnXOe6yqyeQa7otMo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/87f92e-4e67-4ac9-96c5-a779baaa7599/1/NAahLsxTolGnXOe6yqyeQa7otMo.mft Manifest number: 1760 Signing time: Sat 06 Dec 2025 03:01:34 +0000 Manifest this update: Sat 06 Dec 2025 03:01:34 +0000 Manifest next update: Sun 07 Dec 2025 03:01:34 +0000 Files and hashes: 1: 9N71vXZ6iYuqWW-If0CgsO_Wjpg.roa (hash: plP8bbCihgTmT1C8mtLaGAuAfGPMZ93aIA1Z/LkRd90=) 2: NAahLsxTolGnXOe6yqyeQa7otMo.crl (hash: 0gcTm4i2EDb4Np6pl62E5i9MdWjckoa/OMZL8xxhibw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/87f92e-4e67-4ac9-96c5-a779baaa7599/1/NAahLsxTolGnXOe6yqyeQa7otMo.crl rsync://rpki.ripe.net/repository/DEFAULT/72/87f92e-4e67-4ac9-96c5-a779baaa7599/1/NAahLsxTolGnXOe6yqyeQa7otMo.mft rsync://rpki.ripe.net/repository/DEFAULT/NAahLsxTolGnXOe6yqyeQa7otMo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 03:01:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9b:8f:02:01:e3:70:90:67:b8:32:36:da:09:d2:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3406a12ecc53a251a75ce7bacaac9e41aee8b4ca Validity Not Before: Dec 6 03:01:34 2025 GMT Not After : Dec 7 03:01:34 2025 GMT Subject: CN=39e4c667de9e48445dee50e62c4cbd6351b408f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:37:ad:c9:a6:5c:db:da:49:9f:90:ac:f2:a6: db:54:da:2b:81:4e:c0:13:fd:47:8b:51:2e:ba:7a: cf:88:d8:08:53:75:8a:d4:cf:e6:55:df:32:92:d8: 12:74:82:bb:ae:4b:01:2b:e2:88:c3:a8:89:0a:4e: cb:a5:e3:fb:fb:f4:67:a0:c5:b6:70:bc:cd:8d:d0: 35:f7:8a:c1:75:83:4f:1a:05:eb:14:46:02:79:c1: 77:dd:ad:84:d9:84:5d:c8:e1:6f:14:45:89:81:c4: 25:54:01:18:07:1d:8f:eb:ea:91:f6:b7:94:89:0e: a9:30:9d:bf:5b:1a:c9:f0:d0:34:f5:56:39:f6:fd: de:a9:6b:67:dc:b7:6a:fa:ca:ee:59:8a:81:fb:ea: fe:16:57:48:c9:3f:00:e2:b8:59:d9:1b:ca:b8:c7: b9:92:0d:f5:88:dd:95:7e:30:f2:41:eb:12:53:2c: ab:b2:9a:2d:6e:02:89:57:6b:14:09:ed:4e:60:05: 77:f0:13:96:fd:d8:96:66:c7:d9:75:10:f5:48:51: c5:83:e3:8e:a3:84:ca:c3:f7:45:90:ce:a8:15:2e: a9:b9:c7:ca:d0:a7:c4:3f:96:d7:f5:5d:a2:76:0e: 8b:8c:68:0d:e9:e7:36:98:3c:0e:5c:a8:c0:30:f4: 9e:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:E4:C6:67:DE:9E:48:44:5D:EE:50:E6:2C:4C:BD:63:51:B4:08:F2 X509v3 Authority Key Identifier: keyid:34:06:A1:2E:CC:53:A2:51:A7:5C:E7:BA:CA:AC:9E:41:AE:E8:B4:CA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NAahLsxTolGnXOe6yqyeQa7otMo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/87f92e-4e67-4ac9-96c5-a779baaa7599/1/NAahLsxTolGnXOe6yqyeQa7otMo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/72/87f92e-4e67-4ac9-96c5-a779baaa7599/1/NAahLsxTolGnXOe6yqyeQa7otMo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b8:2f:e2:68:35:25:b2:ee:f3:b0:41:a0:c2:48:97:42:2a:8b: 25:c0:da:f5:01:5a:76:c8:43:a4:b3:c5:e5:42:24:6d:e1:59: 19:d7:b9:7c:f2:9a:4a:ff:df:4e:88:1d:0b:88:3d:9e:63:a7: 0c:36:34:b8:69:02:8a:31:f5:6e:50:e8:02:8b:4e:c1:9b:20: f2:b9:8d:8a:b0:03:e4:48:6c:c0:17:b4:9f:fc:b1:91:56:18: f7:e7:ae:0c:4c:89:a0:b4:3c:8e:c4:14:ff:fb:a6:71:41:ee: 36:04:7b:29:87:b1:47:a5:e5:bf:72:91:6f:b4:b3:2e:bc:42: d6:45:fb:74:59:9c:12:19:88:24:05:c8:4b:58:86:25:91:05: 6f:de:e2:fa:83:00:6a:15:63:c3:17:74:00:8e:44:f6:d0:2c: 30:42:3b:de:a5:d5:b0:4f:ab:06:82:20:0a:8e:5a:67:46:1b: bd:87:83:5a:a9:40:e7:46:96:ab:c5:0f:99:20:95:23:2c:d0: 53:a6:67:91:a1:b3:47:03:3e:93:49:aa:4e:7e:c4:55:2e:d7: 5d:de:04:a8:11:1c:1d:67:32:10:b6:e4:16:4d:db:36:95:ac: 18:f6:5d:32:18:63:95:b6:ea:47:8c:25:68:4f:d0:f3:46:0a: a8:2e:9a:28 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxm48CAeNwkGe4MjbaCdLQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM0MDZhMTJlY2M1M2EyNTFhNzVjZTdiYWNhYWM5ZTQxYWVl OGI0Y2EwHhcNMjUxMjA2MDMwMTM0WhcNMjUxMjA3MDMwMTM0WjAzMTEwLwYDVQQD EygzOWU0YzY2N2RlOWU0ODQ0NWRlZTUwZTYyYzRjYmQ2MzUxYjQwOGYyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArjetyaZc29pJn5Cs8qbbVNorgU7A E/1Hi1EuunrPiNgIU3WK1M/mVd8yktgSdIK7rksBK+KIw6iJCk7LpeP7+/RnoMW2 cLzNjdA194rBdYNPGgXrFEYCecF33a2E2YRdyOFvFEWJgcQlVAEYBx2P6+qR9reU iQ6pMJ2/WxrJ8NA09VY59v3eqWtn3Ldq+sruWYqB++r+FldIyT8A4rhZ2RvKuMe5 kg31iN2VfjDyQesSUyyrspotbgKJV2sUCe1OYAV38BOW/diWZsfZdRD1SFHFg+OO o4TKw/dFkM6oFS6pucfK0KfEP5bX9V2idg6LjGgN6ec2mDwOXKjAMPSeawIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDnkxmfenkhEXe5Q5ixMvWNRtAjyMB8GA1UdIwQY MBaAFDQGoS7MU6JRp1znusqsnkGu6LTKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTkFhaExzeFRvbEduWE9lNnlxeWVRYTdvdE1vLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Mi84N2Y5MmUtNGU2Ny00YWM5LTk2YzUt YTc3OWJhYWE3NTk5LzEvTkFhaExzeFRvbEduWE9lNnlxeWVRYTdvdE1vLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Mi84N2Y5MmUtNGU2Ny00YWM5LTk2YzUtYTc3OWJhYWE3NTk5 LzEvTkFhaExzeFRvbEduWE9lNnlxeWVRYTdvdE1vLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAuC/iaDUl su7zsEGgwkiXQiqLJcDa9QFadshDpLPF5UIkbeFZGde5fPKaSv/fTogdC4g9nmOn DDY0uGkCijH1blDoAotOwZsg8rmNirAD5EhswBe0n/yxkVYY9+euDEyJoLQ8jsQU //umcUHuNgR7KYexR6Xlv3KRb7SzLrxC1kX7dFmcEhmIJAXIS1iGJZEFb97i+oMA ahVjwxd0AI5E9tAsMEI73qXVsE+rBoIgCo5aZ0YbvYeDWqlA50aWq8UPmSCVIyzQ U6ZnkaGzRwM+k0mqTn7EVS7XXd4EqBEcHWcyELbkFk3bNpWsGPZdMhhjlbbqR4wl aE/Q80YKqC6aKA== -----END CERTIFICATE-----Generated at Sat Dec 6 12:14:45 2025 by rpki-client