This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/ba0085-3060-4c96-90da-a45b1a4ace56/1/NmTkRiopAqUvgm2uOFZXMe_FvdM.mft File: NmTkRiopAqUvgm2uOFZXMe_FvdM.mft (raw, json) Hash identifier: kbfVFX4Vz1NoYz5PXxBMgnzzUMFfVQSFVc2k3zRaoNo= Subject key identifier: CA:C5:94:26:11:9C:53:91:3D:4C:58:B0:53:6B:3A:23:0D:31:0A:1A Authority key identifier: 36:64:E4:46:2A:29:02:A5:2F:82:6D:AE:38:56:57:31:EF:C5:BD:D3 Certificate issuer: /CN=3664e4462a2902a52f826dae38565731efc5bdd3 Certificate serial: 019AF208F2A2982F9CF1B8442B5EBFF77227 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NmTkRiopAqUvgm2uOFZXMe_FvdM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/ba0085-3060-4c96-90da-a45b1a4ace56/1/NmTkRiopAqUvgm2uOFZXMe_FvdM.mft Manifest number: 16B1 Signing time: Sat 06 Dec 2025 05:01:03 +0000 Manifest this update: Sat 06 Dec 2025 05:01:03 +0000 Manifest next update: Sun 07 Dec 2025 05:01:03 +0000 Files and hashes: 1: NmTkRiopAqUvgm2uOFZXMe_FvdM.crl (hash: QFERun6L3p8RByaxu7NqPEaWgIrFmK0s0C+gr1gv2VA=) 2: bRSiH3Ltu0n345442eKdUINyK3s.roa (hash: WObRy2TpZce8N0K21ZTeL8NwUXrbmFADn/Y+S73z7rk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/ba0085-3060-4c96-90da-a45b1a4ace56/1/NmTkRiopAqUvgm2uOFZXMe_FvdM.crl rsync://rpki.ripe.net/repository/DEFAULT/87/ba0085-3060-4c96-90da-a45b1a4ace56/1/NmTkRiopAqUvgm2uOFZXMe_FvdM.mft rsync://rpki.ripe.net/repository/DEFAULT/NmTkRiopAqUvgm2uOFZXMe_FvdM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:08:f2:a2:98:2f:9c:f1:b8:44:2b:5e:bf:f7:72:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3664e4462a2902a52f826dae38565731efc5bdd3 Validity Not Before: Dec 6 05:01:03 2025 GMT Not After : Dec 7 05:01:03 2025 GMT Subject: CN=cac59426119c53913d4c58b0536b3a230d310a1a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:41:92:9c:a6:0c:35:a2:ff:90:c1:16:88:86: b4:14:9e:0b:99:00:4e:7c:43:3b:f6:3f:83:9d:f4: 85:33:92:57:09:3e:61:a9:66:88:c2:ce:89:10:81: b2:cb:48:b1:bf:f7:d1:5f:91:cf:0e:fc:de:cc:98: 5c:8d:c3:d0:68:5e:f5:fa:c0:a4:28:1c:14:0b:29: a4:e3:da:29:c9:7a:21:9d:f0:56:d4:6f:96:56:3c: dd:47:ec:19:16:19:17:10:26:9c:76:cb:83:ee:39: 23:7d:e5:69:3a:44:a5:5c:66:bc:a0:f5:d8:99:9f: 6d:6f:d7:97:ac:03:60:f0:9e:75:2a:ee:65:7f:87: 76:27:aa:74:3e:10:79:9b:82:bb:85:88:72:be:59: 56:5b:e5:4c:48:d1:0a:37:2d:72:f0:df:ea:74:a6: a4:83:7c:bf:3d:1a:fe:4b:5f:7e:03:6f:dc:ed:3b: b1:39:e2:a3:d0:4c:b2:a1:d1:d6:60:5d:5a:38:62: 72:9f:74:31:a4:77:c0:18:96:ae:bc:71:c6:de:ef: 9d:f0:9c:9d:b5:3a:1a:14:44:1b:c5:e4:fb:f1:67: f9:d9:e1:08:93:1f:a2:20:8d:9e:5a:de:8e:37:37: 5b:dd:c0:99:0c:c8:98:d8:0a:8d:f7:13:af:e1:32: ab:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:C5:94:26:11:9C:53:91:3D:4C:58:B0:53:6B:3A:23:0D:31:0A:1A X509v3 Authority Key Identifier: keyid:36:64:E4:46:2A:29:02:A5:2F:82:6D:AE:38:56:57:31:EF:C5:BD:D3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NmTkRiopAqUvgm2uOFZXMe_FvdM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/ba0085-3060-4c96-90da-a45b1a4ace56/1/NmTkRiopAqUvgm2uOFZXMe_FvdM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/87/ba0085-3060-4c96-90da-a45b1a4ace56/1/NmTkRiopAqUvgm2uOFZXMe_FvdM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 94:b2:a5:2c:5f:c4:ed:8c:4b:f0:3a:77:57:fb:a0:61:0e:ef: 5b:99:06:54:4f:aa:d8:da:79:ea:e8:9c:07:38:b6:13:71:31: ff:5b:be:62:8d:f7:69:43:1c:a1:8f:fc:c8:2d:ca:9d:b0:d1: 99:26:96:77:6f:12:b2:ff:90:b0:9a:06:80:16:c2:d5:db:49: e0:64:5a:0c:d7:37:95:d1:6a:4a:2e:98:ca:20:8b:74:ec:ca: 96:74:57:1e:a5:a1:78:2e:3a:c3:ea:a1:15:6e:07:57:00:9b: 70:ee:1f:40:38:b7:f2:a6:a8:30:51:1c:1a:5a:1e:ab:31:d9: 4f:0e:8f:aa:8c:22:32:a3:af:32:f7:5e:49:e1:2d:2c:d8:bc: 7b:2e:49:a8:21:70:e9:f8:ef:b7:4f:6c:3b:77:08:53:e4:70: dc:38:88:27:88:33:95:7d:8a:2f:07:76:d1:a8:8f:09:ab:8a: ac:b0:93:f1:bc:9f:43:bf:aa:af:f3:4a:71:67:32:7d:f2:39: 3c:43:79:18:17:b1:71:6f:ff:94:a8:f6:66:f7:ea:45:87:0e: 4a:40:4a:f6:9c:eb:99:aa:4b:4a:a6:19:76:19:19:42:74:d8: f5:b7:fc:35:71:59:81:77:dc:95:6f:23:4d:42:90:6b:e6:e5: 6e:08:16:1e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCPKimC+c8bhEK16/93InMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM2NjRlNDQ2MmEyOTAyYTUyZjgyNmRhZTM4NTY1NzMxZWZj NWJkZDMwHhcNMjUxMjA2MDUwMTAzWhcNMjUxMjA3MDUwMTAzWjAzMTEwLwYDVQQD EyhjYWM1OTQyNjExOWM1MzkxM2Q0YzU4YjA1MzZiM2EyMzBkMzEwYTFhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt0GSnKYMNaL/kMEWiIa0FJ4LmQBO fEM79j+DnfSFM5JXCT5hqWaIws6JEIGyy0ixv/fRX5HPDvzezJhcjcPQaF71+sCk KBwUCymk49opyXohnfBW1G+WVjzdR+wZFhkXECacdsuD7jkjfeVpOkSlXGa8oPXY mZ9tb9eXrANg8J51Ku5lf4d2J6p0PhB5m4K7hYhyvllWW+VMSNEKNy1y8N/qdKak g3y/PRr+S19+A2/c7TuxOeKj0EyyodHWYF1aOGJyn3QxpHfAGJauvHHG3u+d8Jyd tToaFEQbxeT78Wf52eEIkx+iII2eWt6ONzdb3cCZDMiY2AqN9xOv4TKrhwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMrFlCYRnFORPUxYsFNrOiMNMQoaMB8GA1UdIwQY MBaAFDZk5EYqKQKlL4JtrjhWVzHvxb3TMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTm1Ua1Jpb3BBcVV2Z20ydU9GWlhNZV9GdmRNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny9iYTAwODUtMzA2MC00Yzk2LTkwZGEt YTQ1YjFhNGFjZTU2LzEvTm1Ua1Jpb3BBcVV2Z20ydU9GWlhNZV9GdmRNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Ny9iYTAwODUtMzA2MC00Yzk2LTkwZGEtYTQ1YjFhNGFjZTU2 LzEvTm1Ua1Jpb3BBcVV2Z20ydU9GWlhNZV9GdmRNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlLKlLF/E 7YxL8Dp3V/ugYQ7vW5kGVE+q2Np56uicBzi2E3Ex/1u+Yo33aUMcoY/8yC3KnbDR mSaWd28Ssv+QsJoGgBbC1dtJ4GRaDNc3ldFqSi6YyiCLdOzKlnRXHqWheC46w+qh FW4HVwCbcO4fQDi38qaoMFEcGloeqzHZTw6PqowiMqOvMvdeSeEtLNi8ey5JqCFw 6fjvt09sO3cIU+Rw3DiIJ4gzlX2KLwd20aiPCauKrLCT8byfQ7+qr/NKcWcyffI5 PEN5GBexcW//lKj2ZvfqRYcOSkBK9pzrmapLSqYZdhkZQnTY9bf8NXFZgXfclW8j TUKQa+blbggWHg== -----END CERTIFICATE-----Generated at Sat Dec 6 08:23:24 2025 by rpki-client