This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/87f2a0-e07f-4d10-aa9b-2d06eb7f299f/1/Nk1Ii4xzG5HUpaK5CmZs7rwOGMk.mft File: Nk1Ii4xzG5HUpaK5CmZs7rwOGMk.mft (raw, json) Hash identifier: 7t16QhYDbZnOfZiD/bGTABDWx5benLFboBwCAnR/Wvw= Subject key identifier: 95:EB:5E:70:57:C4:03:CD:F2:ED:13:D2:29:7C:A6:F8:53:DE:09:F3 Authority key identifier: 36:4D:48:8B:8C:73:1B:91:D4:A5:A2:B9:0A:66:6C:EE:BC:0E:18:C9 Certificate issuer: /CN=364d488b8c731b91d4a5a2b90a666ceebc0e18c9 Certificate serial: 019B30E7DCF21DD563F48A0A1A237A4EFB71 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nk1Ii4xzG5HUpaK5CmZs7rwOGMk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/87f2a0-e07f-4d10-aa9b-2d06eb7f299f/1/Nk1Ii4xzG5HUpaK5CmZs7rwOGMk.mft Manifest number: 0294 Signing time: Thu 18 Dec 2025 10:01:00 +0000 Manifest this update: Thu 18 Dec 2025 10:01:00 +0000 Manifest next update: Fri 19 Dec 2025 10:01:00 +0000 Files and hashes: 1: Nk1Ii4xzG5HUpaK5CmZs7rwOGMk.crl (hash: CI2tJTRo3DFhw4yvlprp1z7AhDbcJAfdqfZN4Iy9Hls=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/87f2a0-e07f-4d10-aa9b-2d06eb7f299f/1/Nk1Ii4xzG5HUpaK5CmZs7rwOGMk.crl rsync://rpki.ripe.net/repository/DEFAULT/89/87f2a0-e07f-4d10-aa9b-2d06eb7f299f/1/Nk1Ii4xzG5HUpaK5CmZs7rwOGMk.mft rsync://rpki.ripe.net/repository/DEFAULT/Nk1Ii4xzG5HUpaK5CmZs7rwOGMk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 10:01:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:30:e7:dc:f2:1d:d5:63:f4:8a:0a:1a:23:7a:4e:fb:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=364d488b8c731b91d4a5a2b90a666ceebc0e18c9 Validity Not Before: Dec 18 10:01:00 2025 GMT Not After : Dec 19 10:01:00 2025 GMT Subject: CN=95eb5e7057c403cdf2ed13d2297ca6f853de09f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:e5:fb:f7:01:f4:23:e3:58:74:77:26:34:d6: 51:71:25:7b:2d:bf:6b:7d:cc:d2:0e:d9:52:04:a8: 55:3f:af:7d:40:61:06:77:44:d3:53:bc:a5:11:c5: c9:68:c7:c1:29:8b:60:5b:5a:bc:25:a7:bb:9b:1d: 90:89:ca:84:6c:d6:88:77:21:c8:6e:ba:e6:4a:34: 56:f4:51:24:62:14:1d:27:51:0f:98:a1:c2:8f:c3: 7b:18:6f:b9:27:5b:c1:ae:7a:3f:a1:c7:5a:81:c9: 53:79:5e:ba:8e:ce:f5:1a:49:c8:86:97:c6:86:48: d4:a4:08:6a:40:2d:95:8b:96:6e:30:17:47:7f:28: e8:79:01:d0:f0:0a:62:57:b4:f2:cf:ce:71:fd:84: 5f:4a:84:f8:74:06:06:59:8f:e6:0f:6c:c3:52:81: e1:06:25:9a:1e:7d:40:32:65:4b:02:ba:77:c3:57: 91:1e:9e:27:cb:f0:1c:58:04:f5:5b:ef:6b:c6:e1: ea:79:59:56:b6:ba:9c:04:e5:e0:92:1e:92:2e:bd: e5:4d:55:7d:94:4b:1a:f9:2e:07:b5:73:11:a6:ff: ff:1d:c1:99:36:1b:ac:b9:22:ef:74:c8:0c:d8:7e: d3:79:7d:e0:4d:0a:5a:32:f6:ac:17:dd:f4:cf:ac: 27:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:EB:5E:70:57:C4:03:CD:F2:ED:13:D2:29:7C:A6:F8:53:DE:09:F3 X509v3 Authority Key Identifier: keyid:36:4D:48:8B:8C:73:1B:91:D4:A5:A2:B9:0A:66:6C:EE:BC:0E:18:C9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nk1Ii4xzG5HUpaK5CmZs7rwOGMk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/87f2a0-e07f-4d10-aa9b-2d06eb7f299f/1/Nk1Ii4xzG5HUpaK5CmZs7rwOGMk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/89/87f2a0-e07f-4d10-aa9b-2d06eb7f299f/1/Nk1Ii4xzG5HUpaK5CmZs7rwOGMk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8d:41:c6:5e:1f:07:53:e4:43:25:e8:55:d3:08:18:c4:d5:66: 9c:21:85:70:a2:06:3c:0f:eb:15:89:03:b9:7a:e4:19:0c:1f: bd:fd:67:d1:b2:4c:8e:de:88:58:18:96:9b:86:a2:a5:9f:cf: 60:6f:5a:42:41:0f:b2:e7:af:61:78:8e:42:c5:f2:55:a4:01: 29:a3:51:18:22:ae:d8:9f:b8:d7:d6:16:bd:72:60:9f:79:36: a2:5b:0c:88:35:25:1c:b5:25:08:2b:ca:2d:87:6f:e9:bd:cb: 75:99:9e:fb:ac:3d:ed:cc:7b:0b:83:c5:05:ac:06:90:27:c3: fb:8f:fb:f4:32:7a:1e:a4:6a:b9:1b:c9:0f:c0:f1:fc:22:35: 5a:20:e8:a4:93:e7:e1:5e:6a:44:ac:aa:b7:29:33:e4:fe:2c: 7d:3a:8a:f2:ae:e5:7f:40:c1:f6:c0:e4:db:2c:cf:43:9b:f1: bd:bb:7c:da:5d:1b:6d:4b:79:4f:d2:76:c9:12:e4:02:44:76: 1c:06:7c:07:88:16:cd:0d:8b:99:b2:07:a3:4d:c7:50:30:88: aa:3e:01:e8:89:93:28:3c:e9:ea:d4:77:74:6f:1c:86:a4:5d: 2d:05:25:f2:e1:4e:da:bf:ef:a7:f9:67:05:ce:a6:19:3f:a8: e8:87:dd:5f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsw59zyHdVj9IoKGiN6TvtxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM2NGQ0ODhiOGM3MzFiOTFkNGE1YTJiOTBhNjY2Y2VlYmMw ZTE4YzkwHhcNMjUxMjE4MTAwMTAwWhcNMjUxMjE5MTAwMTAwWjAzMTEwLwYDVQQD Eyg5NWViNWU3MDU3YzQwM2NkZjJlZDEzZDIyOTdjYTZmODUzZGUwOWYzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsuX79wH0I+NYdHcmNNZRcSV7Lb9r fczSDtlSBKhVP699QGEGd0TTU7ylEcXJaMfBKYtgW1q8Jae7mx2QicqEbNaIdyHI brrmSjRW9FEkYhQdJ1EPmKHCj8N7GG+5J1vBrno/ocdagclTeV66js71GknIhpfG hkjUpAhqQC2Vi5ZuMBdHfyjoeQHQ8ApiV7Tyz85x/YRfSoT4dAYGWY/mD2zDUoHh BiWaHn1AMmVLArp3w1eRHp4ny/AcWAT1W+9rxuHqeVlWtrqcBOXgkh6SLr3lTVV9 lEsa+S4HtXMRpv//HcGZNhusuSLvdMgM2H7TeX3gTQpaMvasF930z6wnqwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJXrXnBXxAPN8u0T0il8pvhT3gnzMB8GA1UdIwQY MBaAFDZNSIuMcxuR1KWiuQpmbO68DhjJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTmsxSWk0eHpHNUhVcGFLNUNtWnM3cndPR01rLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OS84N2YyYTAtZTA3Zi00ZDEwLWFhOWIt MmQwNmViN2YyOTlmLzEvTmsxSWk0eHpHNUhVcGFLNUNtWnM3cndPR01rLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84OS84N2YyYTAtZTA3Zi00ZDEwLWFhOWItMmQwNmViN2YyOTlm LzEvTmsxSWk0eHpHNUhVcGFLNUNtWnM3cndPR01rLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjUHGXh8H U+RDJehV0wgYxNVmnCGFcKIGPA/rFYkDuXrkGQwfvf1n0bJMjt6IWBiWm4aipZ/P YG9aQkEPsuevYXiOQsXyVaQBKaNRGCKu2J+419YWvXJgn3k2olsMiDUlHLUlCCvK LYdv6b3LdZme+6w97cx7C4PFBawGkCfD+4/79DJ6HqRquRvJD8Dx/CI1WiDopJPn 4V5qRKyqtykz5P4sfTqK8q7lf0DB9sDk2yzPQ5vxvbt82l0bbUt5T9J2yRLkAkR2 HAZ8B4gWzQ2LmbIHo03HUDCIqj4B6ImTKDzp6tR3dG8chqRdLQUl8uFO2r/vp/ln Bc6mGT+o6IfdXw== -----END CERTIFICATE-----Generated at Thu Dec 18 15:41:32 2025 by rpki-client