This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/22efbb-3659-4a3d-bea4-962d4f0c29b0/1/ny8WbQXql29prtWORqQfflBSRHU.mft File: ny8WbQXql29prtWORqQfflBSRHU.mft (raw, json) Hash identifier: 2luF5B/KfWyl4DB/NBZdcqg8xGWL/g7bR0oWESSg4SU= Subject key identifier: C0:E7:58:51:E7:A3:0C:CD:C9:C4:A3:55:66:9D:BC:E8:30:DE:96:05 Authority key identifier: 9F:2F:16:6D:05:EA:97:6F:69:AE:D5:8E:46:A4:1F:7E:50:52:44:75 Certificate issuer: /CN=9f2f166d05ea976f69aed58e46a41f7e50524475 Certificate serial: 019AF208AD80424E2AE7BF1F19690EBA14F7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ny8WbQXql29prtWORqQfflBSRHU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/22efbb-3659-4a3d-bea4-962d4f0c29b0/1/ny8WbQXql29prtWORqQfflBSRHU.mft Manifest number: 14D8 Signing time: Sat 06 Dec 2025 05:00:46 +0000 Manifest this update: Sat 06 Dec 2025 05:00:46 +0000 Manifest next update: Sun 07 Dec 2025 05:00:46 +0000 Files and hashes: 1: ny8WbQXql29prtWORqQfflBSRHU.crl (hash: Ht1Q+HCYCtN8E18o3q57hE7qWl7uvVGYshBWHdv+Tbk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/22efbb-3659-4a3d-bea4-962d4f0c29b0/1/ny8WbQXql29prtWORqQfflBSRHU.crl rsync://rpki.ripe.net/repository/DEFAULT/b4/22efbb-3659-4a3d-bea4-962d4f0c29b0/1/ny8WbQXql29prtWORqQfflBSRHU.mft rsync://rpki.ripe.net/repository/DEFAULT/ny8WbQXql29prtWORqQfflBSRHU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:08:ad:80:42:4e:2a:e7:bf:1f:19:69:0e:ba:14:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9f2f166d05ea976f69aed58e46a41f7e50524475 Validity Not Before: Dec 6 05:00:46 2025 GMT Not After : Dec 7 05:00:46 2025 GMT Subject: CN=c0e75851e7a30ccdc9c4a355669dbce830de9605 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:f4:ac:92:46:8f:fa:6e:32:95:f9:65:9f:da: 85:37:aa:6d:aa:8c:72:71:1d:45:ad:db:b7:c8:cf: f5:d3:0c:f8:80:e5:20:14:a8:ed:aa:fc:40:e3:a5: 2e:33:08:e1:5d:c3:f6:9f:72:56:8b:55:2f:f2:70: 59:ec:31:85:4d:66:91:00:c2:7a:a1:4a:b4:a9:a7: 03:c2:06:68:de:33:f3:63:96:f7:e3:d2:f4:d7:9f: d0:21:57:85:ed:52:09:91:2e:84:b4:a3:88:40:cf: 2f:ef:f8:a3:44:f0:60:82:dd:8c:01:44:6c:d1:09: bc:e7:9b:21:32:9d:f5:cd:55:aa:d5:17:94:86:22: 52:0e:48:c5:84:dd:8e:48:6b:08:1a:ac:c7:7e:39: 5a:3a:53:cb:7e:70:61:77:39:26:4e:fa:bc:02:bf: db:c4:66:ab:2e:40:f3:4a:60:ea:73:6b:6d:a3:2f: 45:66:ce:0a:df:d4:76:ff:46:c0:b0:9a:72:44:dd: 7b:eb:40:12:40:ac:e0:30:cc:89:40:ce:49:6b:34: 89:0d:97:3f:f5:ad:a0:ab:24:fd:3d:9b:e8:69:85: 50:b7:c6:d5:a8:b6:2b:00:fe:29:f3:fa:53:60:c9: 48:ca:41:67:b7:0b:f1:29:78:f0:2e:bd:78:86:41: 82:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:E7:58:51:E7:A3:0C:CD:C9:C4:A3:55:66:9D:BC:E8:30:DE:96:05 X509v3 Authority Key Identifier: keyid:9F:2F:16:6D:05:EA:97:6F:69:AE:D5:8E:46:A4:1F:7E:50:52:44:75 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ny8WbQXql29prtWORqQfflBSRHU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/22efbb-3659-4a3d-bea4-962d4f0c29b0/1/ny8WbQXql29prtWORqQfflBSRHU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/22efbb-3659-4a3d-bea4-962d4f0c29b0/1/ny8WbQXql29prtWORqQfflBSRHU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0a:c2:91:4b:7b:d9:54:8b:9a:32:a0:e1:b3:d8:72:ea:45:84: b0:98:54:36:6c:bc:66:4d:04:bb:3d:85:80:d7:1f:d0:fe:5e: 89:0d:eb:7a:6c:b4:cd:c9:7f:92:b8:05:1c:49:a6:dd:42:43: 77:74:6b:e0:ea:bc:fa:45:d4:f7:4f:7e:32:a9:f9:19:a1:3a: a7:e6:34:25:71:c7:df:af:38:4f:18:d1:b8:cb:26:d5:06:3b: 2f:98:3e:db:7b:54:70:ca:5b:2e:99:be:95:17:ac:10:27:11: 4b:b3:67:98:61:d6:68:8f:ac:a2:12:a9:ee:d6:48:34:ee:82: 88:59:80:24:a2:98:84:7a:66:9f:6d:bc:40:b6:bd:04:34:3d: 57:d0:a5:3a:da:f1:b4:a0:04:a4:7e:59:00:b2:c9:99:f5:6f: e0:41:9a:2b:4d:b3:a3:e8:69:11:02:e0:c7:15:05:3c:08:3c: 23:2e:d2:96:5a:18:9f:ca:a0:42:79:70:6c:bc:c3:6d:dc:00: 9f:82:57:d7:ea:5d:3b:1f:48:9b:6a:8b:38:19:55:70:10:84: df:df:f8:73:35:51:0e:96:54:70:97:4f:b6:ea:38:41:50:29: 0d:ab:e7:c1:ef:5b:79:ce:db:6a:cc:9a:24:13:c2:0f:bb:32: c1:65:a1:bc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCK2AQk4q578fGWkOuhT3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlmMmYxNjZkMDVlYTk3NmY2OWFlZDU4ZTQ2YTQxZjdlNTA1 MjQ0NzUwHhcNMjUxMjA2MDUwMDQ2WhcNMjUxMjA3MDUwMDQ2WjAzMTEwLwYDVQQD EyhjMGU3NTg1MWU3YTMwY2NkYzljNGEzNTU2NjlkYmNlODMwZGU5NjA1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvPSskkaP+m4ylflln9qFN6ptqoxy cR1Frdu3yM/10wz4gOUgFKjtqvxA46UuMwjhXcP2n3JWi1Uv8nBZ7DGFTWaRAMJ6 oUq0qacDwgZo3jPzY5b349L015/QIVeF7VIJkS6EtKOIQM8v7/ijRPBggt2MAURs 0Qm855shMp31zVWq1ReUhiJSDkjFhN2OSGsIGqzHfjlaOlPLfnBhdzkmTvq8Ar/b xGarLkDzSmDqc2ttoy9FZs4K39R2/0bAsJpyRN1760ASQKzgMMyJQM5JazSJDZc/ 9a2gqyT9PZvoaYVQt8bVqLYrAP4p8/pTYMlIykFntwvxKXjwLr14hkGCYwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMDnWFHnowzNycSjVWadvOgw3pYFMB8GA1UdIwQY MBaAFJ8vFm0F6pdvaa7VjkakH35QUkR1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbnk4V2JRWHFsMjlwcnRXT1JxUWZmbEJTUkhVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC8yMmVmYmItMzY1OS00YTNkLWJlYTQt OTYyZDRmMGMyOWIwLzEvbnk4V2JRWHFsMjlwcnRXT1JxUWZmbEJTUkhVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNC8yMmVmYmItMzY1OS00YTNkLWJlYTQtOTYyZDRmMGMyOWIw LzEvbnk4V2JRWHFsMjlwcnRXT1JxUWZmbEJTUkhVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACsKRS3vZ VIuaMqDhs9hy6kWEsJhUNmy8Zk0Euz2FgNcf0P5eiQ3remy0zcl/krgFHEmm3UJD d3Rr4Oq8+kXU909+Mqn5GaE6p+Y0JXHH3684TxjRuMsm1QY7L5g+23tUcMpbLpm+ lResECcRS7NnmGHWaI+sohKp7tZINO6CiFmAJKKYhHpmn228QLa9BDQ9V9ClOtrx tKAEpH5ZALLJmfVv4EGaK02zo+hpEQLgxxUFPAg8Iy7SlloYn8qgQnlwbLzDbdwA n4JX1+pdOx9Im2qLOBlVcBCE39/4czVRDpZUcJdPtuo4QVApDavnwe9bec7basya JBPCD7sywWWhvA== -----END CERTIFICATE-----Generated at Sat Dec 6 12:04:41 2025 by rpki-client