This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/9b4d9e-c25e-4d8a-aa63-2b8fabc4e05c/1/NyWOvuZ0XwbXM-S23Q0npzv9-2U.mft File: NyWOvuZ0XwbXM-S23Q0npzv9-2U.mft (raw, json) Hash identifier: L7h+ehSJt6wUWWQEwHmP+40rWxVINvss4KxX+jZ5w10= Subject key identifier: B4:CE:D6:8A:D7:31:74:E5:E3:07:33:2C:5E:CA:09:C2:1C:3E:9D:1B Authority key identifier: 37:25:8E:BE:E6:74:5F:06:D7:33:E4:B6:DD:0D:27:A7:3B:FD:FB:65 Certificate issuer: /CN=37258ebee6745f06d733e4b6dd0d27a73bfdfb65 Certificate serial: 019AF509D3B1090D0035C44AC2A8A2D78410 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NyWOvuZ0XwbXM-S23Q0npzv9-2U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/9b4d9e-c25e-4d8a-aa63-2b8fabc4e05c/1/NyWOvuZ0XwbXM-S23Q0npzv9-2U.mft Manifest number: 1483 Signing time: Sat 06 Dec 2025 19:00:53 +0000 Manifest this update: Sat 06 Dec 2025 19:00:53 +0000 Manifest next update: Sun 07 Dec 2025 19:00:53 +0000 Files and hashes: 1: NyWOvuZ0XwbXM-S23Q0npzv9-2U.crl (hash: 88yhAHMvnooSLCs7yD6xtpOlbnEpdgUqNg7WeBCmH1I=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/9b4d9e-c25e-4d8a-aa63-2b8fabc4e05c/1/NyWOvuZ0XwbXM-S23Q0npzv9-2U.crl rsync://rpki.ripe.net/repository/DEFAULT/73/9b4d9e-c25e-4d8a-aa63-2b8fabc4e05c/1/NyWOvuZ0XwbXM-S23Q0npzv9-2U.mft rsync://rpki.ripe.net/repository/DEFAULT/NyWOvuZ0XwbXM-S23Q0npzv9-2U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 19:00:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:09:d3:b1:09:0d:00:35:c4:4a:c2:a8:a2:d7:84:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=37258ebee6745f06d733e4b6dd0d27a73bfdfb65 Validity Not Before: Dec 6 19:00:53 2025 GMT Not After : Dec 7 19:00:53 2025 GMT Subject: CN=b4ced68ad73174e5e307332c5eca09c21c3e9d1b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:57:03:72:dc:9a:9c:5c:7f:1b:3f:0f:26:81: 6a:a7:46:0b:43:c2:2f:93:df:79:7f:b5:ad:1b:1f: 28:6d:78:2c:69:b6:5f:03:4a:2b:74:6a:f0:b2:5b: 59:10:c3:17:65:41:e9:e4:5a:eb:4c:e2:a9:af:3f: 3b:c2:96:fa:ca:c5:5e:df:c0:c8:8b:50:85:9b:56: f6:ae:8a:e8:29:8a:21:63:3b:78:5e:96:fc:87:78: 05:bd:de:54:f3:f4:72:66:d3:21:da:3f:e8:86:77: 7d:f3:a6:89:19:09:ad:ba:1f:a6:0c:51:23:91:e7: 2d:60:8f:d6:32:83:f3:c4:50:c6:62:9b:cc:62:5a: b4:9d:15:26:8b:2f:e4:a6:2a:a9:5b:f2:17:1b:a6: 0c:d6:2a:59:cd:db:5d:dc:52:07:6f:79:0e:63:1c: 1f:e1:9e:8e:99:e9:19:fa:27:41:e6:90:a8:3a:36: d4:b7:85:45:86:cb:ec:d6:fd:94:73:5b:50:c1:1a: 1a:3f:46:d3:48:b9:30:8b:59:ab:5b:fe:1c:74:f6: e6:17:50:75:5c:ef:10:11:85:dc:d5:17:36:5b:e3: 25:92:9e:ed:9e:ce:59:d7:b9:31:8d:55:76:3b:8e: ce:35:de:0d:bd:26:f5:25:f6:d0:65:96:ab:6a:81: b9:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:CE:D6:8A:D7:31:74:E5:E3:07:33:2C:5E:CA:09:C2:1C:3E:9D:1B X509v3 Authority Key Identifier: keyid:37:25:8E:BE:E6:74:5F:06:D7:33:E4:B6:DD:0D:27:A7:3B:FD:FB:65 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NyWOvuZ0XwbXM-S23Q0npzv9-2U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/9b4d9e-c25e-4d8a-aa63-2b8fabc4e05c/1/NyWOvuZ0XwbXM-S23Q0npzv9-2U.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/73/9b4d9e-c25e-4d8a-aa63-2b8fabc4e05c/1/NyWOvuZ0XwbXM-S23Q0npzv9-2U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 62:90:1c:6c:55:6f:4c:0d:78:f3:32:86:a8:9f:b7:4a:a9:17: ed:26:8a:57:86:99:c8:db:a8:5d:18:78:e8:34:1e:c4:0a:a5: c7:fe:63:fd:3e:3e:fd:39:4b:8f:96:84:16:47:d0:79:c5:76: 3c:0d:1b:02:6e:f4:38:18:64:01:f2:95:1d:54:4e:59:9d:b7: e3:fc:99:b4:26:fd:da:75:aa:85:28:2f:7c:56:60:71:26:97: cd:bb:93:ce:90:0f:01:98:51:da:d0:a1:98:2f:c8:3e:25:fe: af:6c:88:ed:45:88:92:82:82:37:41:fe:52:03:f9:18:1b:f3: 7c:4a:59:70:c9:93:e8:9d:cf:f0:08:30:67:9b:f5:d8:b9:12: 2c:a1:38:bc:e0:55:33:be:a4:72:29:c8:2e:82:82:8f:3c:98: 34:a3:24:f9:0b:7b:a8:6d:b8:ed:c9:75:08:85:0d:37:1b:6a: 90:f4:84:92:df:b5:98:9c:2b:4d:7a:e8:1c:a4:12:a4:91:d1: fa:e0:ae:01:09:01:8b:b6:91:52:3a:01:fa:b1:93:e8:bb:3f: cd:61:f6:75:aa:25:fc:d0:be:6c:e5:47:d0:e1:4a:d0:e0:6b: 38:2b:07:80:e0:c7:d9:9e:1a:1d:bb:d9:f3:dd:23:a2:bf:65: 31:a0:49:53 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr1CdOxCQ0ANcRKwqii14QQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM3MjU4ZWJlZTY3NDVmMDZkNzMzZTRiNmRkMGQyN2E3M2Jm ZGZiNjUwHhcNMjUxMjA2MTkwMDUzWhcNMjUxMjA3MTkwMDUzWjAzMTEwLwYDVQQD EyhiNGNlZDY4YWQ3MzE3NGU1ZTMwNzMzMmM1ZWNhMDljMjFjM2U5ZDFiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA01cDctyanFx/Gz8PJoFqp0YLQ8Iv k995f7WtGx8obXgsabZfA0ordGrwsltZEMMXZUHp5FrrTOKprz87wpb6ysVe38DI i1CFm1b2roroKYohYzt4Xpb8h3gFvd5U8/RyZtMh2j/ohnd986aJGQmtuh+mDFEj kectYI/WMoPzxFDGYpvMYlq0nRUmiy/kpiqpW/IXG6YM1ipZzdtd3FIHb3kOYxwf 4Z6OmekZ+idB5pCoOjbUt4VFhsvs1v2Uc1tQwRoaP0bTSLkwi1mrW/4cdPbmF1B1 XO8QEYXc1Rc2W+Mlkp7tns5Z17kxjVV2O47ONd4NvSb1JfbQZZaraoG57QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLTO1orXMXTl4wczLF7KCcIcPp0bMB8GA1UdIwQY MBaAFDcljr7mdF8G1zPktt0NJ6c7/ftlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTnlXT3Z1WjBYd2JYTS1TMjNRMG5wenY5LTJVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83My85YjRkOWUtYzI1ZS00ZDhhLWFhNjMt MmI4ZmFiYzRlMDVjLzEvTnlXT3Z1WjBYd2JYTS1TMjNRMG5wenY5LTJVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83My85YjRkOWUtYzI1ZS00ZDhhLWFhNjMtMmI4ZmFiYzRlMDVj LzEvTnlXT3Z1WjBYd2JYTS1TMjNRMG5wenY5LTJVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYpAcbFVv TA148zKGqJ+3SqkX7SaKV4aZyNuoXRh46DQexAqlx/5j/T4+/TlLj5aEFkfQecV2 PA0bAm70OBhkAfKVHVROWZ234/yZtCb92nWqhSgvfFZgcSaXzbuTzpAPAZhR2tCh mC/IPiX+r2yI7UWIkoKCN0H+UgP5GBvzfEpZcMmT6J3P8AgwZ5v12LkSLKE4vOBV M76kcinILoKCjzyYNKMk+Qt7qG247cl1CIUNNxtqkPSEkt+1mJwrTXroHKQSpJHR +uCuAQkBi7aRUjoB+rGT6Ls/zWH2daol/NC+bOVH0OFK0OBrOCsHgODH2Z4aHbvZ 890jor9lMaBJUw== -----END CERTIFICATE-----Generated at Sun Dec 7 01:49:25 2025 by rpki-client