This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/56b4c1-8015-4189-a3e5-5ad3026d8f28/1/Nqm4K9WaymNA9t9U_o0zYAt-keQ.mft File: Nqm4K9WaymNA9t9U_o0zYAt-keQ.mft (raw, json) Hash identifier: Ugw1U4z2E4kTEdW7rs2M0kF/hkeAcNXMkcIwDdfppDk= Subject key identifier: 9C:9C:5A:06:C5:F6:42:2D:03:40:94:8B:A7:92:F6:66:79:51:FB:38 Authority key identifier: 36:A9:B8:2B:D5:9A:CA:63:40:F6:DF:54:FE:8D:33:60:0B:7E:91:E4 Certificate issuer: /CN=36a9b82bd59aca6340f6df54fe8d33600b7e91e4 Certificate serial: 019AF163F4437523DB960536C8EE0BF9D228 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nqm4K9WaymNA9t9U_o0zYAt-keQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/56b4c1-8015-4189-a3e5-5ad3026d8f28/1/Nqm4K9WaymNA9t9U_o0zYAt-keQ.mft Manifest number: A3 Signing time: Sat 06 Dec 2025 02:00:50 +0000 Manifest this update: Sat 06 Dec 2025 02:00:50 +0000 Manifest next update: Sun 07 Dec 2025 02:00:50 +0000 Files and hashes: 1: Nqm4K9WaymNA9t9U_o0zYAt-keQ.crl (hash: vxTfSb6bsemTjQIhGpIYP2xBk+N03Rt1eKRWfT74S38=) 2: XTgOcjNR8wb1-tvvZiXLrq9V1rE.roa (hash: 1gsq3L9BAGQsVCvDdI2JTTbvR819vWRtg2jfK/LpLoo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/56b4c1-8015-4189-a3e5-5ad3026d8f28/1/Nqm4K9WaymNA9t9U_o0zYAt-keQ.crl rsync://rpki.ripe.net/repository/DEFAULT/c4/56b4c1-8015-4189-a3e5-5ad3026d8f28/1/Nqm4K9WaymNA9t9U_o0zYAt-keQ.mft rsync://rpki.ripe.net/repository/DEFAULT/Nqm4K9WaymNA9t9U_o0zYAt-keQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:63:f4:43:75:23:db:96:05:36:c8:ee:0b:f9:d2:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=36a9b82bd59aca6340f6df54fe8d33600b7e91e4 Validity Not Before: Dec 6 02:00:50 2025 GMT Not After : Dec 7 02:00:50 2025 GMT Subject: CN=9c9c5a06c5f6422d0340948ba792f6667951fb38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:5b:b5:93:75:24:09:53:30:22:c8:09:3e:c0: af:4c:07:7d:b2:3a:8e:7e:61:ea:dd:97:d6:df:4f: fc:3f:e9:25:1f:aa:bc:51:cf:0a:90:d6:53:cd:fc: c3:6f:50:8f:8a:33:7d:4b:10:32:e6:03:94:75:ab: e4:7a:ae:fb:4c:78:93:e9:ec:79:b5:f9:22:d7:43: 5c:5c:7b:9e:f8:7c:a5:c5:f1:be:f6:42:a2:fd:6f: 8c:b3:26:8b:00:a3:3a:f0:47:c4:0d:38:08:72:db: 26:de:65:cb:0f:e0:8e:4f:f6:fa:78:ab:95:62:dc: e3:59:1e:39:ee:45:a2:f6:ce:18:3a:be:f8:76:31: 85:6d:0c:d3:ee:9a:58:3d:30:78:7e:0a:9f:d8:92: 43:7e:b6:21:b0:b5:48:57:56:45:7a:95:67:bf:c0: 55:cd:10:ae:03:77:9e:3a:62:d7:d3:81:23:09:78: c0:3c:80:1a:84:3f:0c:26:0b:e7:3f:b2:54:69:46: b9:5b:fc:6c:2b:49:a1:aa:e8:65:2c:8a:45:a3:2d: ef:db:7b:35:3e:f8:ef:60:9b:b1:a7:b5:dc:a3:91: 39:70:d6:e5:94:a5:cc:66:eb:aa:70:8e:8e:eb:43: e5:9a:0e:8f:40:1a:80:59:77:55:84:50:9c:8e:e0: 7e:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:9C:5A:06:C5:F6:42:2D:03:40:94:8B:A7:92:F6:66:79:51:FB:38 X509v3 Authority Key Identifier: keyid:36:A9:B8:2B:D5:9A:CA:63:40:F6:DF:54:FE:8D:33:60:0B:7E:91:E4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nqm4K9WaymNA9t9U_o0zYAt-keQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/56b4c1-8015-4189-a3e5-5ad3026d8f28/1/Nqm4K9WaymNA9t9U_o0zYAt-keQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/56b4c1-8015-4189-a3e5-5ad3026d8f28/1/Nqm4K9WaymNA9t9U_o0zYAt-keQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 80:98:be:59:31:d7:a2:98:1c:1d:7f:ed:71:fb:ee:54:9e:a9: bb:88:a1:06:73:09:7a:8f:44:f9:e4:88:99:06:4b:d3:5f:c8: 61:bc:e6:85:cc:4d:90:fe:78:b0:79:f4:54:ea:d6:e6:1d:bc: f1:d1:ba:07:79:9c:3e:9d:4f:03:fd:3a:8b:79:35:a8:cc:4c: 1b:9f:18:df:0b:be:93:70:9f:ba:01:fc:ec:74:28:32:7d:cc: ab:da:5a:09:18:53:1f:35:1c:cb:01:51:63:06:28:c6:6c:da: 22:00:d3:80:94:da:dd:fe:b3:ee:33:71:20:6e:30:12:6e:35: 74:a8:00:14:55:4f:04:78:b7:87:fb:ed:49:89:9c:ae:7f:0c: 33:c2:6a:f5:70:dd:7c:c0:7c:38:86:83:56:f5:7f:09:c9:e0: 7c:5b:14:30:b9:a0:21:36:0d:6f:53:4e:f1:db:f4:2c:2e:5a: 82:8f:c2:f8:10:69:e7:41:b2:1a:f1:68:5e:00:4f:da:c0:fb: f0:90:d0:37:fe:93:c8:46:2a:45:51:c6:92:5e:9d:c7:a2:2a: 1f:8f:cf:32:e6:af:46:44:b1:be:0e:3a:91:ed:ee:d8:30:55: 0a:24:92:81:72:8b:e5:e7:ba:41:87:ac:bd:73:14:7c:0a:94: 12:87:6b:95 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxY/RDdSPblgU2yO4L+dIoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM2YTliODJiZDU5YWNhNjM0MGY2ZGY1NGZlOGQzMzYwMGI3 ZTkxZTQwHhcNMjUxMjA2MDIwMDUwWhcNMjUxMjA3MDIwMDUwWjAzMTEwLwYDVQQD Eyg5YzljNWEwNmM1ZjY0MjJkMDM0MDk0OGJhNzkyZjY2Njc5NTFmYjM4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoVu1k3UkCVMwIsgJPsCvTAd9sjqO fmHq3ZfW30/8P+klH6q8Uc8KkNZTzfzDb1CPijN9SxAy5gOUdavkeq77THiT6ex5 tfki10NcXHue+HylxfG+9kKi/W+MsyaLAKM68EfEDTgIctsm3mXLD+COT/b6eKuV YtzjWR457kWi9s4YOr74djGFbQzT7ppYPTB4fgqf2JJDfrYhsLVIV1ZFepVnv8BV zRCuA3eeOmLX04EjCXjAPIAahD8MJgvnP7JUaUa5W/xsK0mhquhlLIpFoy3v23s1 PvjvYJuxp7Xco5E5cNbllKXMZuuqcI6O60Plmg6PQBqAWXdVhFCcjuB+IwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJycWgbF9kItA0CUi6eS9mZ5Ufs4MB8GA1UdIwQY MBaAFDapuCvVmspjQPbfVP6NM2ALfpHkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTnFtNEs5V2F5bU5BOXQ5VV9vMHpZQXQta2VRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNC81NmI0YzEtODAxNS00MTg5LWEzZTUt NWFkMzAyNmQ4ZjI4LzEvTnFtNEs5V2F5bU5BOXQ5VV9vMHpZQXQta2VRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNC81NmI0YzEtODAxNS00MTg5LWEzZTUtNWFkMzAyNmQ4ZjI4 LzEvTnFtNEs5V2F5bU5BOXQ5VV9vMHpZQXQta2VRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgJi+WTHX opgcHX/tcfvuVJ6pu4ihBnMJeo9E+eSImQZL01/IYbzmhcxNkP54sHn0VOrW5h28 8dG6B3mcPp1PA/06i3k1qMxMG58Y3wu+k3CfugH87HQoMn3Mq9paCRhTHzUcywFR YwYoxmzaIgDTgJTa3f6z7jNxIG4wEm41dKgAFFVPBHi3h/vtSYmcrn8MM8Jq9XDd fMB8OIaDVvV/CcngfFsUMLmgITYNb1NO8dv0LC5ago/C+BBp50GyGvFoXgBP2sD7 8JDQN/6TyEYqRVHGkl6dx6IqH4/PMuavRkSxvg46ke3u2DBVCiSSgXKL5ee6QYes vXMUfAqUEodrlQ== -----END CERTIFICATE-----Generated at Sat Dec 6 08:09:02 2025 by rpki-client