This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/2fa7b8-a484-47df-b1c2-972c0fae67b8/1/nvnDHh7MuhkCs_YiWT3pcspxi1w.mft File: nvnDHh7MuhkCs_YiWT3pcspxi1w.mft (raw, json) Hash identifier: uHNIuiCKzxmvsb01ZAirDeJuIxPtc7WAA4GDA0X1ZHs= Subject key identifier: 03:28:02:5C:9A:A3:A5:75:A2:9D:2E:08:68:8A:C7:66:97:C6:04:E2 Authority key identifier: 9E:F9:C3:1E:1E:CC:BA:19:02:B3:F6:22:59:3D:E9:72:CA:71:8B:5C Certificate issuer: /CN=9ef9c31e1eccba1902b3f622593de972ca718b5c Certificate serial: 019AF209159C93AFD62AD4ED2C938043F9AC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nvnDHh7MuhkCs_YiWT3pcspxi1w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/2fa7b8-a484-47df-b1c2-972c0fae67b8/1/nvnDHh7MuhkCs_YiWT3pcspxi1w.mft Manifest number: 0EB9 Signing time: Sat 06 Dec 2025 05:01:12 +0000 Manifest this update: Sat 06 Dec 2025 05:01:12 +0000 Manifest next update: Sun 07 Dec 2025 05:01:12 +0000 Files and hashes: 1: nvnDHh7MuhkCs_YiWT3pcspxi1w.crl (hash: IZnK0SbClb74CKceRSa3DZWbgE++76vgusb77wGcUvw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/2fa7b8-a484-47df-b1c2-972c0fae67b8/1/nvnDHh7MuhkCs_YiWT3pcspxi1w.crl rsync://rpki.ripe.net/repository/DEFAULT/92/2fa7b8-a484-47df-b1c2-972c0fae67b8/1/nvnDHh7MuhkCs_YiWT3pcspxi1w.mft rsync://rpki.ripe.net/repository/DEFAULT/nvnDHh7MuhkCs_YiWT3pcspxi1w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:09:15:9c:93:af:d6:2a:d4:ed:2c:93:80:43:f9:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ef9c31e1eccba1902b3f622593de972ca718b5c Validity Not Before: Dec 6 05:01:12 2025 GMT Not After : Dec 7 05:01:12 2025 GMT Subject: CN=0328025c9aa3a575a29d2e08688ac76697c604e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:c0:ba:24:91:09:a0:67:a3:9f:8d:3b:1d:fb: f8:9e:f4:4f:82:ec:ed:a0:61:86:f1:da:90:dc:a4: 53:1c:ba:2a:f3:33:90:5b:c3:da:08:d6:85:1b:13: 6c:f8:16:28:ee:fc:c4:2a:bc:44:eb:aa:c8:0e:14: 73:79:f3:3b:cc:da:f9:1e:5b:ae:94:db:68:0b:8f: 3b:22:e8:e3:30:bc:4c:bd:56:12:30:39:c3:53:93: c2:ec:60:e6:7b:5f:94:f5:cc:45:77:06:46:c0:1a: 62:64:30:5b:dc:d9:6e:6d:11:03:f5:0b:48:b3:35: f2:75:b6:05:e6:b6:df:a8:81:7a:56:04:86:3c:71: 7c:27:bd:e6:d7:ac:82:5e:62:25:70:0a:ef:5b:f9: 7f:cb:7e:a9:ec:f5:4b:94:bc:cb:43:c7:a1:01:28: 07:a6:30:00:cb:9b:da:38:c2:bf:06:12:b9:c5:1c: 63:d7:59:55:42:b3:cd:a3:cd:73:e5:83:38:b7:a1: 43:88:68:f5:6c:08:97:da:a8:ee:3e:11:75:df:67: 34:ab:de:32:77:3d:8d:a2:0e:c7:de:f8:fd:af:47: 4c:31:e6:3f:00:6f:21:86:2a:43:93:02:d1:23:b2: cf:a6:92:5f:5c:0b:a7:11:52:3d:50:25:d3:b2:8d: 51:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:28:02:5C:9A:A3:A5:75:A2:9D:2E:08:68:8A:C7:66:97:C6:04:E2 X509v3 Authority Key Identifier: keyid:9E:F9:C3:1E:1E:CC:BA:19:02:B3:F6:22:59:3D:E9:72:CA:71:8B:5C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nvnDHh7MuhkCs_YiWT3pcspxi1w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/2fa7b8-a484-47df-b1c2-972c0fae67b8/1/nvnDHh7MuhkCs_YiWT3pcspxi1w.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/92/2fa7b8-a484-47df-b1c2-972c0fae67b8/1/nvnDHh7MuhkCs_YiWT3pcspxi1w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6e:33:41:93:62:dd:90:12:bf:00:94:75:7e:49:05:2a:2b:a3: 42:9e:4b:14:6a:43:1a:d0:46:88:a1:bb:1e:31:98:99:69:88: bc:ae:71:8a:42:90:d7:19:64:2e:41:7a:39:4d:62:64:2c:4e: 2e:a6:1c:69:44:a9:3a:b9:35:48:f7:92:38:69:e0:38:b9:0f: 52:1a:a2:86:8c:96:ea:e2:e9:bf:b9:77:54:f0:f6:68:df:f8: 2c:82:d2:f5:bb:1f:88:4c:67:71:66:77:4b:05:9b:1d:1a:16: 19:65:9e:b1:64:b8:c0:a7:68:1b:9f:1a:4e:19:ba:87:88:34: b2:ee:22:e7:c5:4f:27:91:11:d0:4f:37:e2:2d:8c:5d:0b:69: 43:8b:a9:58:87:2e:a9:80:05:87:21:c5:34:78:63:25:4d:18: 1a:b3:91:c3:76:a1:02:5c:e3:96:3b:c4:5c:54:d5:ab:eb:c4: a2:5c:3d:1c:cc:b3:e5:92:db:93:71:10:07:85:f4:9c:a9:d5: bb:61:ea:4e:46:66:11:b3:87:b8:aa:03:6d:6e:70:a8:df:8c: 08:34:ea:90:16:43:c0:59:23:21:8e:da:43:70:07:dd:3d:d8: 24:90:f9:83:7f:9b:2e:f9:16:5f:9f:0f:a9:d8:22:9e:b4:fe: ef:77:22:62 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCRWck6/WKtTtLJOAQ/msMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDllZjljMzFlMWVjY2JhMTkwMmIzZjYyMjU5M2RlOTcyY2E3 MThiNWMwHhcNMjUxMjA2MDUwMTEyWhcNMjUxMjA3MDUwMTEyWjAzMTEwLwYDVQQD EygwMzI4MDI1YzlhYTNhNTc1YTI5ZDJlMDg2ODhhYzc2Njk3YzYwNGUyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAosC6JJEJoGejn407Hfv4nvRPguzt oGGG8dqQ3KRTHLoq8zOQW8PaCNaFGxNs+BYo7vzEKrxE66rIDhRzefM7zNr5Hluu lNtoC487IujjMLxMvVYSMDnDU5PC7GDme1+U9cxFdwZGwBpiZDBb3NlubRED9QtI szXydbYF5rbfqIF6VgSGPHF8J73m16yCXmIlcArvW/l/y36p7PVLlLzLQ8ehASgH pjAAy5vaOMK/BhK5xRxj11lVQrPNo81z5YM4t6FDiGj1bAiX2qjuPhF132c0q94y dz2Nog7H3vj9r0dMMeY/AG8hhipDkwLRI7LPppJfXAunEVI9UCXTso1RuwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAMoAlyao6V1op0uCGiKx2aXxgTiMB8GA1UdIwQY MBaAFJ75wx4ezLoZArP2Ilk96XLKcYtcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbnZuREhoN011aGtDc19ZaVdUM3Bjc3B4aTF3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi8yZmE3YjgtYTQ4NC00N2RmLWIxYzIt OTcyYzBmYWU2N2I4LzEvbnZuREhoN011aGtDc19ZaVdUM3Bjc3B4aTF3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Mi8yZmE3YjgtYTQ4NC00N2RmLWIxYzItOTcyYzBmYWU2N2I4 LzEvbnZuREhoN011aGtDc19ZaVdUM3Bjc3B4aTF3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbjNBk2Ld kBK/AJR1fkkFKiujQp5LFGpDGtBGiKG7HjGYmWmIvK5xikKQ1xlkLkF6OU1iZCxO LqYcaUSpOrk1SPeSOGngOLkPUhqihoyW6uLpv7l3VPD2aN/4LILS9bsfiExncWZ3 SwWbHRoWGWWesWS4wKdoG58aThm6h4g0su4i58VPJ5ER0E834i2MXQtpQ4upWIcu qYAFhyHFNHhjJU0YGrORw3ahAlzjljvEXFTVq+vEolw9HMyz5ZLbk3EQB4X0nKnV u2HqTkZmEbOHuKoDbW5wqN+MCDTqkBZDwFkjIY7aQ3AH3T3YJJD5g3+bLvkWX58P qdginrT+73ciYg== -----END CERTIFICATE-----Generated at Sat Dec 6 12:34:12 2025 by rpki-client