This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/50635a-630d-4f64-ac43-cca3528e20e2/1/ndrXzlnL6NGaA0EfocbJug1CAqI.mft File: ndrXzlnL6NGaA0EfocbJug1CAqI.mft (raw, json) Hash identifier: a7vOrHo48kPJ76cIT8vVqKGgryGVxYl0Y9fcuyw9sL8= Subject key identifier: FF:AC:B4:3F:31:06:BC:17:10:AA:98:9A:3D:34:62:14:F5:14:15:AB Authority key identifier: 9D:DA:D7:CE:59:CB:E8:D1:9A:03:41:1F:A1:C6:C9:BA:0D:42:02:A2 Certificate issuer: /CN=9ddad7ce59cbe8d19a03411fa1c6c9ba0d4202a2 Certificate serial: 019AF31B2D27DA44830E9F368544AE0B6224 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ndrXzlnL6NGaA0EfocbJug1CAqI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/50635a-630d-4f64-ac43-cca3528e20e2/1/ndrXzlnL6NGaA0EfocbJug1CAqI.mft Manifest number: 0AD2 Signing time: Sat 06 Dec 2025 10:00:35 +0000 Manifest this update: Sat 06 Dec 2025 10:00:35 +0000 Manifest next update: Sun 07 Dec 2025 10:00:35 +0000 Files and hashes: 1: ndrXzlnL6NGaA0EfocbJug1CAqI.crl (hash: oiol6Um4OpL74LkZVcFh0NS0xzWYx0CJYBCqPU/fj1M=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/50635a-630d-4f64-ac43-cca3528e20e2/1/ndrXzlnL6NGaA0EfocbJug1CAqI.crl rsync://rpki.ripe.net/repository/DEFAULT/92/50635a-630d-4f64-ac43-cca3528e20e2/1/ndrXzlnL6NGaA0EfocbJug1CAqI.mft rsync://rpki.ripe.net/repository/DEFAULT/ndrXzlnL6NGaA0EfocbJug1CAqI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 10:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:1b:2d:27:da:44:83:0e:9f:36:85:44:ae:0b:62:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ddad7ce59cbe8d19a03411fa1c6c9ba0d4202a2 Validity Not Before: Dec 6 10:00:35 2025 GMT Not After : Dec 7 10:00:35 2025 GMT Subject: CN=ffacb43f3106bc1710aa989a3d346214f51415ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:bf:69:af:f4:ab:2d:fa:88:6e:33:84:75:90: 75:de:f2:28:c9:3f:3b:ae:e4:00:0c:8c:e5:f0:53: 54:2c:47:58:8d:d7:2b:7f:56:c3:4d:d3:7f:c7:c1: 2b:01:b0:f1:d4:45:6f:3b:52:c2:d5:6c:4a:a6:03: 9e:be:33:8c:58:2a:0e:52:2c:a1:7d:98:0d:38:c0: 7a:85:c2:d4:02:30:bc:0c:48:e8:9b:72:51:69:57: 9b:1f:1a:a3:fc:06:84:d6:52:ff:7a:46:a8:86:2e: 71:3f:15:80:f8:91:2a:24:75:42:80:e0:63:6e:b1: c6:4e:d3:1f:dc:53:7e:96:89:94:67:43:e9:4d:f5: 52:89:4b:e2:7d:3a:29:71:02:ee:f8:12:16:4c:1e: 87:65:52:fe:42:94:57:4c:1f:2e:34:98:56:ee:32: 7d:39:a7:70:ac:dc:6d:28:57:b3:b0:9a:0c:44:0b: c0:1f:6a:7f:67:31:ff:a8:5e:3c:a9:54:27:74:0c: 5a:f9:8f:1d:1f:61:20:e5:bd:09:3d:ab:6b:05:a6: 59:fc:04:35:e5:3e:a9:9c:fc:22:ca:50:e5:46:00: 71:65:85:1d:3a:c3:b1:b9:bd:3f:93:86:19:5b:b9: 58:f5:d6:04:ae:05:eb:84:19:3c:14:c4:09:37:59: 91:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:AC:B4:3F:31:06:BC:17:10:AA:98:9A:3D:34:62:14:F5:14:15:AB X509v3 Authority Key Identifier: keyid:9D:DA:D7:CE:59:CB:E8:D1:9A:03:41:1F:A1:C6:C9:BA:0D:42:02:A2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ndrXzlnL6NGaA0EfocbJug1CAqI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/50635a-630d-4f64-ac43-cca3528e20e2/1/ndrXzlnL6NGaA0EfocbJug1CAqI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/92/50635a-630d-4f64-ac43-cca3528e20e2/1/ndrXzlnL6NGaA0EfocbJug1CAqI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 69:11:4c:e0:b1:b4:bb:a5:83:6c:d3:32:ec:49:8a:ad:ba:6a: 89:52:8d:e7:3a:bb:6c:20:65:7c:62:ab:64:9e:72:26:73:28: e3:c8:60:13:a3:79:bd:b9:5a:46:fa:97:01:46:dc:32:65:9a: 3b:05:3d:11:5f:9c:76:6a:51:41:70:e6:ff:6b:4a:93:55:dc: ec:3c:be:5c:31:36:90:c3:d8:1a:81:ea:85:a3:09:7d:93:cb: b6:d0:0e:30:2a:02:a9:02:ad:86:0c:43:38:7c:9f:44:d9:64: bd:9f:ed:f9:bd:78:98:c1:df:94:a9:f2:4d:35:fb:dc:99:43: 90:bb:6d:ed:0b:1f:32:18:be:87:58:11:bb:95:9b:db:ac:b5: 95:ef:e3:58:25:2e:17:aa:6f:73:1c:39:35:85:2f:e4:7b:2d: a6:8f:ac:88:b8:25:c9:2e:aa:d5:c9:55:a2:b7:17:82:3f:4b: b0:73:fc:10:b0:9a:4f:2a:87:51:27:cb:50:0c:b3:c6:83:b8: ca:7e:cd:6b:09:46:66:f2:aa:ff:8d:95:f1:36:f3:04:e7:10: 2f:23:60:a1:0d:6a:44:eb:04:bd:32:1a:b9:f5:a8:67:c2:c3: 5b:12:38:d2:2d:eb:d0:20:52:91:0e:86:50:eb:8c:51:26:9f: 4b:b9:d2:07 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzGy0n2kSDDp82hUSuC2IkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlkZGFkN2NlNTljYmU4ZDE5YTAzNDExZmExYzZjOWJhMGQ0 MjAyYTIwHhcNMjUxMjA2MTAwMDM1WhcNMjUxMjA3MTAwMDM1WjAzMTEwLwYDVQQD EyhmZmFjYjQzZjMxMDZiYzE3MTBhYTk4OWEzZDM0NjIxNGY1MTQxNWFiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxr9pr/SrLfqIbjOEdZB13vIoyT87 ruQADIzl8FNULEdYjdcrf1bDTdN/x8ErAbDx1EVvO1LC1WxKpgOevjOMWCoOUiyh fZgNOMB6hcLUAjC8DEjom3JRaVebHxqj/AaE1lL/ekaohi5xPxWA+JEqJHVCgOBj brHGTtMf3FN+lomUZ0PpTfVSiUvifTopcQLu+BIWTB6HZVL+QpRXTB8uNJhW7jJ9 OadwrNxtKFezsJoMRAvAH2p/ZzH/qF48qVQndAxa+Y8dH2Eg5b0JPatrBaZZ/AQ1 5T6pnPwiylDlRgBxZYUdOsOxub0/k4YZW7lY9dYErgXrhBk8FMQJN1mRcQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFP+stD8xBrwXEKqYmj00YhT1FBWrMB8GA1UdIwQY MBaAFJ3a185Zy+jRmgNBH6HGyboNQgKiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbmRyWHpsbkw2TkdhQTBFZm9jYkp1ZzFDQXFJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi81MDYzNWEtNjMwZC00ZjY0LWFjNDMt Y2NhMzUyOGUyMGUyLzEvbmRyWHpsbkw2TkdhQTBFZm9jYkp1ZzFDQXFJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Mi81MDYzNWEtNjMwZC00ZjY0LWFjNDMtY2NhMzUyOGUyMGUy LzEvbmRyWHpsbkw2TkdhQTBFZm9jYkp1ZzFDQXFJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaRFM4LG0 u6WDbNMy7EmKrbpqiVKN5zq7bCBlfGKrZJ5yJnMo48hgE6N5vblaRvqXAUbcMmWa OwU9EV+cdmpRQXDm/2tKk1Xc7Dy+XDE2kMPYGoHqhaMJfZPLttAOMCoCqQKthgxD OHyfRNlkvZ/t+b14mMHflKnyTTX73JlDkLtt7QsfMhi+h1gRu5Wb26y1le/jWCUu F6pvcxw5NYUv5Hstpo+siLglyS6q1clVorcXgj9LsHP8ELCaTyqHUSfLUAyzxoO4 yn7NawlGZvKq/42V8TbzBOcQLyNgoQ1qROsEvTIaufWoZ8LDWxI40i3r0CBSkQ6G UOuMUSafS7nSBw== -----END CERTIFICATE-----Generated at Sat Dec 6 18:51:14 2025 by rpki-client