This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/0109db-0333-498a-b6b6-35238040e8f9/1/Nv32jOyjdp6RsOdkjR-VWO1MfCk.mft File: Nv32jOyjdp6RsOdkjR-VWO1MfCk.mft (raw, json) Hash identifier: DauefIudb2xTl0jWXKM5HtEb1kpzXkIQcsB1i1CVDtw= Subject key identifier: 44:DE:0E:8E:04:96:09:7D:89:24:03:9A:AB:C3:CA:6D:73:68:36:10 Authority key identifier: 36:FD:F6:8C:EC:A3:76:9E:91:B0:E7:64:8D:1F:95:58:ED:4C:7C:29 Certificate issuer: /CN=36fdf68ceca3769e91b0e7648d1f9558ed4c7c29 Certificate serial: 019AF12E614663906C8E7E0CEFA5622D362C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nv32jOyjdp6RsOdkjR-VWO1MfCk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/0109db-0333-498a-b6b6-35238040e8f9/1/Nv32jOyjdp6RsOdkjR-VWO1MfCk.mft Manifest number: 0DF4 Signing time: Sat 06 Dec 2025 01:02:19 +0000 Manifest this update: Sat 06 Dec 2025 01:02:19 +0000 Manifest next update: Sun 07 Dec 2025 01:02:19 +0000 Files and hashes: 1: Nv32jOyjdp6RsOdkjR-VWO1MfCk.crl (hash: y7OJzMecAltuFJes8GLacuA2W7vv94w6ko8eb5KrYxs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/0109db-0333-498a-b6b6-35238040e8f9/1/Nv32jOyjdp6RsOdkjR-VWO1MfCk.crl rsync://rpki.ripe.net/repository/DEFAULT/94/0109db-0333-498a-b6b6-35238040e8f9/1/Nv32jOyjdp6RsOdkjR-VWO1MfCk.mft rsync://rpki.ripe.net/repository/DEFAULT/Nv32jOyjdp6RsOdkjR-VWO1MfCk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:02:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2e:61:46:63:90:6c:8e:7e:0c:ef:a5:62:2d:36:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=36fdf68ceca3769e91b0e7648d1f9558ed4c7c29 Validity Not Before: Dec 6 01:02:19 2025 GMT Not After : Dec 7 01:02:19 2025 GMT Subject: CN=44de0e8e0496097d8924039aabc3ca6d73683610 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:9a:ad:d0:33:24:b6:29:11:b9:85:eb:da:b9: 91:86:f9:b2:32:9b:de:70:4e:dd:6e:64:53:aa:90: c5:de:b2:da:a4:b7:24:1e:bd:fd:db:82:65:e2:57: d5:d3:a9:38:d2:e9:b7:25:5a:cb:c8:10:64:54:13: 26:76:8e:ff:a9:03:94:8c:8a:ba:af:3e:03:c1:9f: 5f:4b:d1:84:db:80:67:0c:66:6a:39:7b:5d:f9:02: 07:ca:93:5a:4b:cb:fb:c5:a3:b9:c2:46:d9:aa:88: 39:aa:5e:d3:20:16:db:bd:17:81:51:da:c5:a9:f8: bd:5b:b3:51:81:60:1e:7d:48:10:56:88:9b:6e:89: 4a:bc:a5:9c:99:4b:90:2f:10:1b:19:a4:0b:6a:c5: 8b:96:76:db:3d:f4:c4:23:fb:0d:7e:a2:d3:5b:46: 1a:21:b9:ce:71:3b:27:10:f4:23:15:a9:48:f5:3c: 64:04:08:8f:19:7f:06:d5:1e:ef:42:63:df:89:d8: 93:f1:0a:2d:3d:28:06:9b:a6:60:62:1a:2f:91:d7: 16:ca:38:b1:58:51:ef:d9:9e:7e:84:8f:96:15:69: 4c:c1:36:b2:3e:4e:49:31:46:e3:95:f9:50:de:45: a2:26:ff:37:d9:37:dc:a5:8d:7e:76:5c:09:ce:7d: c9:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:DE:0E:8E:04:96:09:7D:89:24:03:9A:AB:C3:CA:6D:73:68:36:10 X509v3 Authority Key Identifier: keyid:36:FD:F6:8C:EC:A3:76:9E:91:B0:E7:64:8D:1F:95:58:ED:4C:7C:29 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nv32jOyjdp6RsOdkjR-VWO1MfCk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/0109db-0333-498a-b6b6-35238040e8f9/1/Nv32jOyjdp6RsOdkjR-VWO1MfCk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/94/0109db-0333-498a-b6b6-35238040e8f9/1/Nv32jOyjdp6RsOdkjR-VWO1MfCk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 14:d6:b8:9c:84:de:f8:cb:4a:f8:9c:ff:45:b3:74:be:6e:d2: e2:00:fc:f3:f5:e4:9f:9d:ba:94:a9:22:64:90:42:9a:da:2d: df:8f:42:5e:77:db:c2:6b:6c:9e:0a:cc:7c:76:7e:f1:da:d7: 4f:a9:db:ec:0c:e2:6e:a0:5b:22:fc:82:be:bf:de:82:97:eb: 22:97:d3:42:98:68:0e:e3:f8:fa:04:d3:e1:2c:8b:6f:e4:8b: a2:aa:44:58:d4:7c:b7:d3:17:bf:9a:3b:75:16:d5:8f:a8:29: 62:46:4f:25:87:48:99:cc:cc:a5:22:72:79:17:99:95:37:12: ca:88:cb:b3:a5:51:4c:1d:db:72:a9:3f:d4:4a:f3:3a:47:12: b9:d0:82:c7:79:22:99:c1:d8:c5:f1:8e:a0:99:44:aa:6f:8e: dc:e5:eb:99:45:60:18:4a:6c:44:98:ee:1c:4b:40:86:1e:e9: 92:bb:6f:8a:e5:38:56:d7:ec:d1:fc:f8:29:4a:8c:fe:c4:ca: f7:0a:91:d9:8d:64:ca:79:0e:f4:54:bf:97:5a:72:f3:37:f1: 64:60:9c:0b:59:7f:61:3d:93:30:fa:36:b1:18:26:d0:c8:f9: 6a:77:fc:4a:0a:72:b4:60:05:e7:99:a2:7e:5b:50:f0:39:97: 62:d1:44:76 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLmFGY5Bsjn4M76ViLTYsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM2ZmRmNjhjZWNhMzc2OWU5MWIwZTc2NDhkMWY5NTU4ZWQ0 YzdjMjkwHhcNMjUxMjA2MDEwMjE5WhcNMjUxMjA3MDEwMjE5WjAzMTEwLwYDVQQD Eyg0NGRlMGU4ZTA0OTYwOTdkODkyNDAzOWFhYmMzY2E2ZDczNjgzNjEwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoJqt0DMktikRuYXr2rmRhvmyMpve cE7dbmRTqpDF3rLapLckHr3924Jl4lfV06k40um3JVrLyBBkVBMmdo7/qQOUjIq6 rz4DwZ9fS9GE24BnDGZqOXtd+QIHypNaS8v7xaO5wkbZqog5ql7TIBbbvReBUdrF qfi9W7NRgWAefUgQVoibbolKvKWcmUuQLxAbGaQLasWLlnbbPfTEI/sNfqLTW0Ya IbnOcTsnEPQjFalI9TxkBAiPGX8G1R7vQmPfidiT8QotPSgGm6ZgYhovkdcWyjix WFHv2Z5+hI+WFWlMwTayPk5JMUbjlflQ3kWiJv832TfcpY1+dlwJzn3JAQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFETeDo4Elgl9iSQDmqvDym1zaDYQMB8GA1UdIwQY MBaAFDb99ozso3aekbDnZI0flVjtTHwpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTnYzMmpPeWpkcDZSc09ka2pSLVZXTzFNZkNrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NC8wMTA5ZGItMDMzMy00OThhLWI2YjYt MzUyMzgwNDBlOGY5LzEvTnYzMmpPeWpkcDZSc09ka2pSLVZXTzFNZkNrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85NC8wMTA5ZGItMDMzMy00OThhLWI2YjYtMzUyMzgwNDBlOGY5 LzEvTnYzMmpPeWpkcDZSc09ka2pSLVZXTzFNZkNrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFNa4nITe +MtK+Jz/RbN0vm7S4gD88/Xkn526lKkiZJBCmtot349CXnfbwmtsngrMfHZ+8drX T6nb7AzibqBbIvyCvr/egpfrIpfTQphoDuP4+gTT4SyLb+SLoqpEWNR8t9MXv5o7 dRbVj6gpYkZPJYdImczMpSJyeReZlTcSyojLs6VRTB3bcqk/1ErzOkcSudCCx3ki mcHYxfGOoJlEqm+O3OXrmUVgGEpsRJjuHEtAhh7pkrtviuU4Vtfs0fz4KUqM/sTK 9wqR2Y1kynkO9FS/l1py8zfxZGCcC1l/YT2TMPo2sRgm0Mj5anf8SgpytGAF55mi fltQ8DmXYtFEdg== -----END CERTIFICATE-----Generated at Sat Dec 6 07:21:20 2025 by rpki-client