This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/8a6692-f646-49f0-8821-0212b3eae97c/1/nSh1M866BkWhSM8QyMJ-qachoJ0.mft File: nSh1M866BkWhSM8QyMJ-qachoJ0.mft (raw, json) Hash identifier: ISh0LzwtAjhYeP2KdmQ5ZBWNRpOlRGH7MUE6p48Y04g= Subject key identifier: 3B:A1:77:A2:34:5B:85:70:EC:87:30:2E:B3:B4:CA:96:7F:DE:A5:F0 Authority key identifier: 9D:28:75:33:CE:BA:06:45:A1:48:CF:10:C8:C2:7E:A9:A7:21:A0:9D Certificate issuer: /CN=9d287533ceba0645a148cf10c8c27ea9a721a09d Certificate serial: 019AF19B4C3859B7CF38A14D22C154954057 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSh1M866BkWhSM8QyMJ-qachoJ0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/8a6692-f646-49f0-8821-0212b3eae97c/1/nSh1M866BkWhSM8QyMJ-qachoJ0.mft Manifest number: 1760 Signing time: Sat 06 Dec 2025 03:01:17 +0000 Manifest this update: Sat 06 Dec 2025 03:01:17 +0000 Manifest next update: Sun 07 Dec 2025 03:01:17 +0000 Files and hashes: 1: MEQtA-51-LVqFHEVZDRMjfjnudY.roa (hash: mP68hXGlyjMnNhpMDZaBlI/pFMVdjYCWoJ7Gpxv9o84=) 2: Re1CMq4a8GRTlVAhciRLdjmNzME.roa (hash: e1LlxuTfucQ1ynw/jUhK7unO/vlcuYPu64TBZ3UmBVk=) 3: nSh1M866BkWhSM8QyMJ-qachoJ0.crl (hash: Pg2iWtEDVgOVY//Y7uCp86PAycaB1MtvYDWPOgzYPSM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/8a6692-f646-49f0-8821-0212b3eae97c/1/nSh1M866BkWhSM8QyMJ-qachoJ0.crl rsync://rpki.ripe.net/repository/DEFAULT/bd/8a6692-f646-49f0-8821-0212b3eae97c/1/nSh1M866BkWhSM8QyMJ-qachoJ0.mft rsync://rpki.ripe.net/repository/DEFAULT/nSh1M866BkWhSM8QyMJ-qachoJ0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9b:4c:38:59:b7:cf:38:a1:4d:22:c1:54:95:40:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9d287533ceba0645a148cf10c8c27ea9a721a09d Validity Not Before: Dec 6 03:01:17 2025 GMT Not After : Dec 7 03:01:17 2025 GMT Subject: CN=3ba177a2345b8570ec87302eb3b4ca967fdea5f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:e7:19:b8:d1:3f:f9:10:f9:8c:47:e7:39:6a: c4:22:12:90:c1:72:79:41:d7:b2:c9:39:33:ab:fa: a6:44:4b:24:89:85:6d:20:8e:5f:72:12:b6:03:39: d5:99:5f:0c:2f:52:05:49:fa:4a:67:fa:8f:a2:81: a2:a2:ae:43:f0:31:81:e8:e5:51:c5:17:a0:d2:b6: 57:42:96:68:be:c1:76:48:4c:10:34:4b:e2:fe:ae: 96:4e:77:25:57:37:40:bf:c3:45:27:95:fc:db:4d: ac:48:82:6d:90:25:72:02:03:89:9b:73:b6:39:84: 7b:57:fb:97:6b:da:aa:dd:e6:31:5b:76:34:7c:a6: 92:d4:b9:18:d6:74:a1:0a:bf:e8:ca:06:f2:99:f0: d7:96:0b:13:08:2b:6d:b5:e0:f0:81:09:48:92:5b: 5f:a1:4c:af:f1:e1:48:27:f8:8f:14:a3:a4:28:0e: 49:7c:1a:72:93:e6:e9:7d:99:f2:4b:8f:b4:f6:6a: 7c:90:56:3d:8c:44:7f:25:1e:75:b0:3a:7c:06:38: 1a:de:f9:9e:32:30:db:79:4d:43:cd:54:87:20:cf: 38:b7:26:07:c0:7c:48:6c:a0:66:da:82:0c:1b:ee: 92:28:7c:2a:85:bf:a9:b8:01:8a:4f:b5:66:06:26: 67:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:A1:77:A2:34:5B:85:70:EC:87:30:2E:B3:B4:CA:96:7F:DE:A5:F0 X509v3 Authority Key Identifier: keyid:9D:28:75:33:CE:BA:06:45:A1:48:CF:10:C8:C2:7E:A9:A7:21:A0:9D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSh1M866BkWhSM8QyMJ-qachoJ0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/8a6692-f646-49f0-8821-0212b3eae97c/1/nSh1M866BkWhSM8QyMJ-qachoJ0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/8a6692-f646-49f0-8821-0212b3eae97c/1/nSh1M866BkWhSM8QyMJ-qachoJ0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9f:a5:8e:db:ad:19:4a:2f:06:f5:3c:84:66:ca:a1:02:3a:ab: 4a:3d:46:3e:8b:b0:51:1c:3b:cf:80:90:55:02:97:88:d3:ba: 0d:45:b9:39:e1:ba:5e:63:a9:99:d3:31:08:e6:b8:6b:6a:ef: 0e:4b:22:8d:8d:92:8b:6e:11:22:6d:39:fe:66:fc:98:b0:61: 40:2c:6e:ab:e3:11:1d:52:eb:00:d3:37:3d:fb:4e:dc:58:f2: 51:36:80:a2:2b:60:30:6b:a2:4e:d0:43:58:4b:47:2c:cf:27: 74:8f:78:b6:dd:52:04:b8:b2:51:2d:41:54:db:fe:e6:4f:a6: 64:99:9a:81:2d:76:a9:5b:f8:8c:6d:b2:8c:89:9d:46:c3:41: e6:49:2e:26:fd:2b:0a:1f:7a:c1:e2:61:c7:56:e8:f9:2f:11: ec:52:14:a7:c2:7a:45:86:92:80:51:a6:b3:55:46:d5:5d:9d: 44:47:23:b2:d5:7c:61:c0:9c:99:ac:32:56:65:f8:5b:f4:d9: d0:e3:70:fc:69:3f:25:46:96:16:e9:b5:5c:24:9d:dc:1a:ea: a4:13:11:30:45:2b:76:d1:35:f0:77:1b:d7:8d:93:36:9f:96: 63:26:9f:7c:09:08:4f:a1:9f:bd:a9:0c:97:2c:7d:e3:91:84: 50:a3:e9:1d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxm0w4WbfPOKFNIsFUlUBXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlkMjg3NTMzY2ViYTA2NDVhMTQ4Y2YxMGM4YzI3ZWE5YTcy MWEwOWQwHhcNMjUxMjA2MDMwMTE3WhcNMjUxMjA3MDMwMTE3WjAzMTEwLwYDVQQD EygzYmExNzdhMjM0NWI4NTcwZWM4NzMwMmViM2I0Y2E5NjdmZGVhNWYwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwucZuNE/+RD5jEfnOWrEIhKQwXJ5 QdeyyTkzq/qmREskiYVtII5fchK2AznVmV8ML1IFSfpKZ/qPooGioq5D8DGB6OVR xReg0rZXQpZovsF2SEwQNEvi/q6WTnclVzdAv8NFJ5X8202sSIJtkCVyAgOJm3O2 OYR7V/uXa9qq3eYxW3Y0fKaS1LkY1nShCr/oygbymfDXlgsTCCttteDwgQlIkltf oUyv8eFIJ/iPFKOkKA5JfBpyk+bpfZnyS4+09mp8kFY9jER/JR51sDp8Bjga3vme MjDbeU1DzVSHIM84tyYHwHxIbKBm2oIMG+6SKHwqhb+puAGKT7VmBiZneQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDuhd6I0W4Vw7IcwLrO0ypZ/3qXwMB8GA1UdIwQY MBaAFJ0odTPOugZFoUjPEMjCfqmnIaCdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvblNoMU04NjZCa1doU004UXlNSi1xYWNob0owLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC84YTY2OTItZjY0Ni00OWYwLTg4MjEt MDIxMmIzZWFlOTdjLzEvblNoMU04NjZCa1doU004UXlNSi1xYWNob0owLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZC84YTY2OTItZjY0Ni00OWYwLTg4MjEtMDIxMmIzZWFlOTdj LzEvblNoMU04NjZCa1doU004UXlNSi1xYWNob0owLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAn6WO260Z Si8G9TyEZsqhAjqrSj1GPouwURw7z4CQVQKXiNO6DUW5OeG6XmOpmdMxCOa4a2rv DksijY2Si24RIm05/mb8mLBhQCxuq+MRHVLrANM3PftO3FjyUTaAoitgMGuiTtBD WEtHLM8ndI94tt1SBLiyUS1BVNv+5k+mZJmagS12qVv4jG2yjImdRsNB5kkuJv0r Ch96weJhx1bo+S8R7FIUp8J6RYaSgFGms1VG1V2dREcjstV8YcCcmawyVmX4W/TZ 0ONw/Gk/JUaWFum1XCSd3BrqpBMRMEUrdtE18Hcb142TNp+WYyaffAkIT6GfvakM lyx945GEUKPpHQ== -----END CERTIFICATE-----Generated at Sat Dec 6 08:51:18 2025 by rpki-client