This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/Nia55ERl8L1xPAoeBQED05EdzWc.mft File: Nia55ERl8L1xPAoeBQED05EdzWc.mft (raw, json) Hash identifier: XohgG+EExI4IlbZPaKWGYgjQxrLHFdYpThFfuUuMNOE= Subject key identifier: A0:7B:3B:A5:90:82:68:4E:3D:6B:65:A7:AD:79:4B:86:53:84:36:57 Authority key identifier: 36:26:B9:E4:44:65:F0:BD:71:3C:0A:1E:05:01:03:D3:91:1D:CD:67 Certificate issuer: /CN=3626b9e44465f0bd713c0a1e050103d3911dcd67 Certificate serial: 019AF31D1D67A537E7F76B4D3162635EED92 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nia55ERl8L1xPAoeBQED05EdzWc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/Nia55ERl8L1xPAoeBQED05EdzWc.mft Manifest number: 0D47 Signing time: Sat 06 Dec 2025 10:02:42 +0000 Manifest this update: Sat 06 Dec 2025 10:02:42 +0000 Manifest next update: Sun 07 Dec 2025 10:02:42 +0000 Files and hashes: 1: Nia55ERl8L1xPAoeBQED05EdzWc.crl (hash: wlbtTDM7DFzlNS+DeurVgXcd1NKN+5n20BBPnf5iZMA=) 2: ijM-M3pW5i9OPaVJ9z7pdR0nkfo.roa (hash: BaCHQlpNW/709AUvEnmAV++DQu/RFZCpGAAySqc5kGo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/Nia55ERl8L1xPAoeBQED05EdzWc.crl rsync://rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/Nia55ERl8L1xPAoeBQED05EdzWc.mft rsync://rpki.ripe.net/repository/DEFAULT/Nia55ERl8L1xPAoeBQED05EdzWc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:1d:1d:67:a5:37:e7:f7:6b:4d:31:62:63:5e:ed:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3626b9e44465f0bd713c0a1e050103d3911dcd67 Validity Not Before: Dec 6 10:02:42 2025 GMT Not After : Dec 7 10:02:42 2025 GMT Subject: CN=a07b3ba59082684e3d6b65a7ad794b8653843657 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:cf:88:b1:d6:f9:35:96:b4:15:f1:d8:b3:ec: a1:70:91:07:9c:5b:eb:84:c8:6b:b7:c9:27:df:a8: 00:b1:4c:b3:99:2c:0a:1b:98:bf:1a:6f:8b:9b:e9: f0:d5:b7:3d:e8:2c:c8:df:af:55:7e:a7:6c:dc:06: 76:4d:94:f4:53:14:53:27:8e:c0:46:c7:fd:a6:b0: f9:47:a4:3e:d2:06:6d:e6:c4:e6:9a:6e:41:62:42: d2:ca:f9:19:a4:15:32:8a:f8:fc:fe:2c:0e:d6:49: 19:42:bd:0e:07:85:ac:92:72:e8:bd:ad:22:8c:6d: c1:36:9c:14:87:cb:c0:f6:48:9b:52:2c:1f:25:98: eb:c3:f3:fd:26:60:5b:41:9b:c4:95:82:60:fe:8e: 80:44:3a:c2:7c:ab:60:81:4f:57:aa:86:73:66:72: 77:15:67:6c:ff:ad:d4:48:ee:78:39:91:36:3c:d9: 1d:c3:c4:ac:c5:0e:8e:79:39:7c:2f:a7:4b:11:ac: 45:e8:08:62:d4:c0:ff:12:05:4b:5b:d4:f6:45:c5: 2f:ce:a6:e9:f1:47:c7:17:7a:71:77:5d:b6:24:9d: 1b:3e:e4:29:6e:e0:77:5d:a0:b5:fe:c1:93:dc:8f: 05:8c:e5:0a:53:e0:84:3a:a8:f6:53:03:d7:c6:77: d4:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:7B:3B:A5:90:82:68:4E:3D:6B:65:A7:AD:79:4B:86:53:84:36:57 X509v3 Authority Key Identifier: keyid:36:26:B9:E4:44:65:F0:BD:71:3C:0A:1E:05:01:03:D3:91:1D:CD:67 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nia55ERl8L1xPAoeBQED05EdzWc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/Nia55ERl8L1xPAoeBQED05EdzWc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/Nia55ERl8L1xPAoeBQED05EdzWc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6b:e0:a5:6c:d7:63:54:55:b6:67:d6:56:29:38:c1:ee:0b:9d: c2:35:49:a6:c1:87:6d:66:df:2a:14:9c:7d:f6:20:ab:c4:03: a6:ea:6b:f0:4d:0a:d4:a4:60:d3:ee:04:d0:c0:4b:7f:6f:e3: f7:ed:20:8a:35:e9:b2:52:fe:69:eb:72:88:f2:d0:75:a5:d4: 68:28:e7:e8:1a:82:fb:a7:4a:96:1c:6e:c2:2f:31:17:9f:3d: a9:1b:18:1c:b3:e6:35:63:60:a0:77:20:bb:9f:59:9a:25:21: 15:a6:33:90:b3:51:15:18:0d:fa:9a:10:17:a3:56:c0:2c:b9: 1b:e1:81:bf:28:e8:6b:cf:19:f1:6b:08:2f:ed:86:53:b0:3a: 15:f3:1e:63:8e:1d:d9:83:dc:ea:26:84:cd:d2:e7:b2:45:09: 3b:e6:45:9a:63:e0:cb:8e:b4:7f:76:fd:f4:94:4a:74:56:1c: 1b:f3:63:25:f1:d6:35:91:e1:e9:5d:d7:5a:cb:60:3f:af:d8: 2d:8b:7f:e6:1c:12:84:5e:0c:ab:f0:2d:22:1d:18:54:d7:5f: a5:4c:e0:19:29:08:1d:bd:c8:dd:ad:6e:02:7c:99:23:85:4e: 15:4a:ab:46:65:c3:a9:a9:62:be:79:d1:0f:3a:01:ad:f3:d6: cf:8a:37:51 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzHR1npTfn92tNMWJjXu2SMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM2MjZiOWU0NDQ2NWYwYmQ3MTNjMGExZTA1MDEwM2QzOTEx ZGNkNjcwHhcNMjUxMjA2MTAwMjQyWhcNMjUxMjA3MTAwMjQyWjAzMTEwLwYDVQQD EyhhMDdiM2JhNTkwODI2ODRlM2Q2YjY1YTdhZDc5NGI4NjUzODQzNjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtc+Isdb5NZa0FfHYs+yhcJEHnFvr hMhrt8kn36gAsUyzmSwKG5i/Gm+Lm+nw1bc96CzI369Vfqds3AZ2TZT0UxRTJ47A Rsf9prD5R6Q+0gZt5sTmmm5BYkLSyvkZpBUyivj8/iwO1kkZQr0OB4WsknLova0i jG3BNpwUh8vA9kibUiwfJZjrw/P9JmBbQZvElYJg/o6ARDrCfKtggU9XqoZzZnJ3 FWds/63USO54OZE2PNkdw8SsxQ6OeTl8L6dLEaxF6Ahi1MD/EgVLW9T2RcUvzqbp 8UfHF3pxd122JJ0bPuQpbuB3XaC1/sGT3I8FjOUKU+CEOqj2UwPXxnfUowIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKB7O6WQgmhOPWtlp615S4ZThDZXMB8GA1UdIwQY MBaAFDYmueREZfC9cTwKHgUBA9ORHc1nMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTmlhNTVFUmw4TDF4UEFvZUJRRUQwNUVkeldjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZS8wMjJhZjUtODYyYy00MjhlLWJlZTgt MjhhNDY4MWMzN2Q2LzEvTmlhNTVFUmw4TDF4UEFvZUJRRUQwNUVkeldjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZS8wMjJhZjUtODYyYy00MjhlLWJlZTgtMjhhNDY4MWMzN2Q2 LzEvTmlhNTVFUmw4TDF4UEFvZUJRRUQwNUVkeldjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAa+ClbNdj VFW2Z9ZWKTjB7gudwjVJpsGHbWbfKhScffYgq8QDpupr8E0K1KRg0+4E0MBLf2/j 9+0gijXpslL+aetyiPLQdaXUaCjn6BqC+6dKlhxuwi8xF589qRsYHLPmNWNgoHcg u59ZmiUhFaYzkLNRFRgN+poQF6NWwCy5G+GBvyjoa88Z8WsIL+2GU7A6FfMeY44d 2YPc6iaEzdLnskUJO+ZFmmPgy460f3b99JRKdFYcG/NjJfHWNZHh6V3XWstgP6/Y LYt/5hwShF4Mq/AtIh0YVNdfpUzgGSkIHb3I3a1uAnyZI4VOFUqrRmXDqalivnnR DzoBrfPWz4o3UQ== -----END CERTIFICATE-----Generated at Sat Dec 6 13:21:07 2025 by rpki-client