This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/38b8ba-df6c-486d-b6cd-1d5dd2258c4e/1/nTYn2XZlFFeJQkIAUL-DqLEpFm4.mft File: nTYn2XZlFFeJQkIAUL-DqLEpFm4.mft (raw, json) Hash identifier: lQW6S5a1YHFvr1FkDhNM671DJWEq/nsDh61YpTJshWg= Subject key identifier: 58:CE:B3:A5:CC:86:61:45:06:76:EE:AE:01:9B:67:69:73:4A:18:E5 Authority key identifier: 9D:36:27:D9:76:65:14:57:89:42:42:00:50:BF:83:A8:B1:29:16:6E Certificate issuer: /CN=9d3627d9766514578942420050bf83a8b129166e Certificate serial: 019AF276D2E6E436BEEB1F966CEF4E30D0AA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nTYn2XZlFFeJQkIAUL-DqLEpFm4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/38b8ba-df6c-486d-b6cd-1d5dd2258c4e/1/nTYn2XZlFFeJQkIAUL-DqLEpFm4.mft Manifest number: 13F2 Signing time: Sat 06 Dec 2025 07:01:04 +0000 Manifest this update: Sat 06 Dec 2025 07:01:04 +0000 Manifest next update: Sun 07 Dec 2025 07:01:04 +0000 Files and hashes: 1: nTYn2XZlFFeJQkIAUL-DqLEpFm4.crl (hash: X3Ae+cCkUwNBmRMUxyICP5G8Rvh0zz2YME5FhwtMsqE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/38b8ba-df6c-486d-b6cd-1d5dd2258c4e/1/nTYn2XZlFFeJQkIAUL-DqLEpFm4.crl rsync://rpki.ripe.net/repository/DEFAULT/df/38b8ba-df6c-486d-b6cd-1d5dd2258c4e/1/nTYn2XZlFFeJQkIAUL-DqLEpFm4.mft rsync://rpki.ripe.net/repository/DEFAULT/nTYn2XZlFFeJQkIAUL-DqLEpFm4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:76:d2:e6:e4:36:be:eb:1f:96:6c:ef:4e:30:d0:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9d3627d9766514578942420050bf83a8b129166e Validity Not Before: Dec 6 07:01:04 2025 GMT Not After : Dec 7 07:01:04 2025 GMT Subject: CN=58ceb3a5cc8661450676eeae019b6769734a18e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:15:f6:1e:7b:87:88:bc:ed:92:8f:55:8e:86: 24:62:d1:3e:02:c5:d8:1e:7a:a0:51:ab:d3:f7:1a: 46:cd:9a:3b:62:b0:34:d0:ab:f6:26:9b:55:ea:8b: bc:d1:78:8b:12:a3:3f:83:63:6c:c2:c8:ea:5f:c4: fc:a0:c0:85:5d:39:c9:4d:b0:44:0c:6e:b8:f5:b5: 75:16:97:66:08:d4:32:2d:35:0f:96:7a:22:89:f7: 83:94:b8:7b:4b:5e:5c:aa:ef:40:53:42:74:bc:ed: 2f:1d:83:a7:fe:bd:18:b3:c7:e5:2e:ea:aa:5c:46: b7:6f:4e:01:b2:a6:98:08:c1:ba:97:96:1d:9a:96: 8e:98:22:c9:52:1d:2b:3a:a1:ff:e5:2f:52:f5:de: 79:a0:b0:81:24:4b:e6:4b:ac:42:67:23:5f:22:f1: 5b:95:7a:7a:e4:52:92:17:c1:c5:e8:f6:80:57:73: e6:b1:66:fc:0c:bf:0a:1a:e5:1d:fe:ac:55:b8:b6: 64:63:8d:c9:c0:73:1f:8c:36:78:c8:3e:8f:f5:0d: 92:40:d8:cc:bc:08:de:05:97:02:a3:bc:27:b4:72: aa:82:3c:56:a3:2e:9a:86:f4:4d:84:3c:87:67:55: 4a:91:42:65:0e:e7:82:71:c8:e7:a9:2e:86:8d:41: 35:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:CE:B3:A5:CC:86:61:45:06:76:EE:AE:01:9B:67:69:73:4A:18:E5 X509v3 Authority Key Identifier: keyid:9D:36:27:D9:76:65:14:57:89:42:42:00:50:BF:83:A8:B1:29:16:6E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nTYn2XZlFFeJQkIAUL-DqLEpFm4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/38b8ba-df6c-486d-b6cd-1d5dd2258c4e/1/nTYn2XZlFFeJQkIAUL-DqLEpFm4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/df/38b8ba-df6c-486d-b6cd-1d5dd2258c4e/1/nTYn2XZlFFeJQkIAUL-DqLEpFm4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7e:14:a8:60:e3:a7:50:1a:16:33:45:54:08:96:c0:09:11:8f: 3b:f3:3a:04:53:ff:d9:b4:ca:0d:45:48:87:40:05:cc:56:71: 70:dd:49:21:d6:ff:62:26:37:71:22:0a:30:f4:eb:5d:a3:c0: 66:f6:6a:5c:de:26:66:f4:d8:e3:b9:cd:59:dc:00:23:3e:45: a9:0b:82:cd:19:ff:ce:2a:39:26:2c:f6:cd:05:33:4a:b3:f7: 4b:7a:66:ab:78:92:e4:e9:d8:5d:18:db:db:07:4b:4b:5f:cf: d4:e0:c0:b2:e2:ce:88:bc:aa:d3:12:97:f8:cc:7a:d2:9a:2f: 29:85:87:5c:96:20:51:9e:c2:10:63:6c:40:3f:15:9b:d9:85: 6a:ed:bd:d2:0b:44:b3:77:7c:a9:c1:26:32:3f:90:3a:78:98: 87:e3:74:ac:cf:14:5b:ac:f6:6f:08:1b:9f:b0:59:28:c2:5f: a0:96:69:bc:10:6d:1e:20:ad:d3:6d:e7:c9:24:60:af:c8:b6: 82:5e:bd:ff:9a:95:6d:59:89:b3:b8:51:13:27:b8:67:66:83: 87:7c:91:91:f6:3d:08:5d:9d:e9:9b:4f:58:fa:d3:eb:96:f1: a9:5f:47:1e:82:d8:e8:c0:36:69:74:9f:48:c4:0d:0d:29:a1: eb:c6:fe:b2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrydtLm5Da+6x+WbO9OMNCqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlkMzYyN2Q5NzY2NTE0NTc4OTQyNDIwMDUwYmY4M2E4YjEy OTE2NmUwHhcNMjUxMjA2MDcwMTA0WhcNMjUxMjA3MDcwMTA0WjAzMTEwLwYDVQQD Eyg1OGNlYjNhNWNjODY2MTQ1MDY3NmVlYWUwMTliNjc2OTczNGExOGU1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArBX2HnuHiLztko9VjoYkYtE+AsXY HnqgUavT9xpGzZo7YrA00Kv2JptV6ou80XiLEqM/g2NswsjqX8T8oMCFXTnJTbBE DG649bV1FpdmCNQyLTUPlnoiifeDlLh7S15cqu9AU0J0vO0vHYOn/r0Ys8flLuqq XEa3b04BsqaYCMG6l5YdmpaOmCLJUh0rOqH/5S9S9d55oLCBJEvmS6xCZyNfIvFb lXp65FKSF8HF6PaAV3PmsWb8DL8KGuUd/qxVuLZkY43JwHMfjDZ4yD6P9Q2SQNjM vAjeBZcCo7wntHKqgjxWoy6ahvRNhDyHZ1VKkUJlDueCccjnqS6GjUE1/wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFjOs6XMhmFFBnburgGbZ2lzShjlMB8GA1UdIwQY MBaAFJ02J9l2ZRRXiUJCAFC/g6ixKRZuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvblRZbjJYWmxGRmVKUWtJQVVMLURxTEVwRm00LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi8zOGI4YmEtZGY2Yy00ODZkLWI2Y2Qt MWQ1ZGQyMjU4YzRlLzEvblRZbjJYWmxGRmVKUWtJQVVMLURxTEVwRm00Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZi8zOGI4YmEtZGY2Yy00ODZkLWI2Y2QtMWQ1ZGQyMjU4YzRl LzEvblRZbjJYWmxGRmVKUWtJQVVMLURxTEVwRm00LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfhSoYOOn UBoWM0VUCJbACRGPO/M6BFP/2bTKDUVIh0AFzFZxcN1JIdb/YiY3cSIKMPTrXaPA ZvZqXN4mZvTY47nNWdwAIz5FqQuCzRn/zio5Jiz2zQUzSrP3S3pmq3iS5OnYXRjb 2wdLS1/P1ODAsuLOiLyq0xKX+Mx60povKYWHXJYgUZ7CEGNsQD8Vm9mFau290gtE s3d8qcEmMj+QOniYh+N0rM8UW6z2bwgbn7BZKMJfoJZpvBBtHiCt023nySRgr8i2 gl69/5qVbVmJs7hREye4Z2aDh3yRkfY9CF2d6ZtPWPrT65bxqV9HHoLY6MA2aXSf SMQNDSmh68b+sg== -----END CERTIFICATE-----Generated at Sat Dec 6 10:01:25 2025 by rpki-client