This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/9e8166-160f-4ce2-9017-1e151aa1afdc/1/nY85NIPUicQp_Biwk0LXbQr-QkQ.mft File: nY85NIPUicQp_Biwk0LXbQr-QkQ.mft (raw, json) Hash identifier: RbKRZGMbeYYMdjj4YniNJQ4vOddoDallBYPe9canT0s= Subject key identifier: 15:CF:9B:F0:FC:58:08:99:B8:F3:09:02:C8:88:EA:C7:84:51:25:86 Authority key identifier: 9D:8F:39:34:83:D4:89:C4:29:FC:18:B0:93:42:D7:6D:0A:FE:42:44 Certificate issuer: /CN=9d8f393483d489c429fc18b09342d76d0afe4244 Certificate serial: 019AF276F516AC93124CCFD88F9D69947998 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nY85NIPUicQp_Biwk0LXbQr-QkQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/9e8166-160f-4ce2-9017-1e151aa1afdc/1/nY85NIPUicQp_Biwk0LXbQr-QkQ.mft Manifest number: 134B Signing time: Sat 06 Dec 2025 07:01:13 +0000 Manifest this update: Sat 06 Dec 2025 07:01:13 +0000 Manifest next update: Sun 07 Dec 2025 07:01:13 +0000 Files and hashes: 1: fCKBgjNaPgCYlEAaSC02t2TX-HQ.roa (hash: z50OwHqPJLgmTj1OD+z+QDtPxp5JJkD8lN3khIG3bwQ=) 2: nY85NIPUicQp_Biwk0LXbQr-QkQ.crl (hash: CUrRul/Q1RIQ2TLLm+zSKIV6MDuckH6ts4mGQ8xj/ak=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/9e8166-160f-4ce2-9017-1e151aa1afdc/1/nY85NIPUicQp_Biwk0LXbQr-QkQ.crl rsync://rpki.ripe.net/repository/DEFAULT/e4/9e8166-160f-4ce2-9017-1e151aa1afdc/1/nY85NIPUicQp_Biwk0LXbQr-QkQ.mft rsync://rpki.ripe.net/repository/DEFAULT/nY85NIPUicQp_Biwk0LXbQr-QkQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:76:f5:16:ac:93:12:4c:cf:d8:8f:9d:69:94:79:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9d8f393483d489c429fc18b09342d76d0afe4244 Validity Not Before: Dec 6 07:01:13 2025 GMT Not After : Dec 7 07:01:13 2025 GMT Subject: CN=15cf9bf0fc580899b8f30902c888eac784512586 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:44:af:dc:66:7d:0f:07:5c:93:0e:62:76:9f: a7:36:3b:61:f1:c5:a6:f1:6a:c4:5f:35:a9:2e:5d: 68:77:19:21:bb:d2:fe:a6:94:8d:98:dd:a8:0f:07: 82:75:df:e3:95:44:c1:82:35:f3:d5:00:91:b5:62: b6:70:24:d3:b3:f1:3e:dd:9f:82:39:64:eb:32:f6: 9a:c3:5c:71:2e:90:29:4e:18:ca:84:ce:d6:a7:25: 13:09:2a:f8:98:9d:8d:97:97:32:fe:86:7b:fb:66: 8b:03:c5:9d:61:7e:b7:25:2a:82:53:e7:2d:96:25: 10:7c:56:b6:f8:50:e0:6d:37:66:5b:1e:58:c8:ef: 5e:8f:44:e0:03:1f:c2:62:33:db:f1:db:a5:12:2f: 8a:2a:2f:a9:a3:a5:0f:36:95:c7:b0:ea:ae:31:97: 7f:23:cc:21:96:a4:c1:c9:3b:2a:e3:46:c2:1c:c4: 62:74:77:5f:b0:e1:f1:44:24:55:e3:d3:3a:12:59: 9e:cb:8e:37:e8:67:66:6e:5b:99:c3:a1:ee:21:c1: 3a:9e:88:0c:07:46:5a:e6:94:ab:1f:30:05:21:8c: 22:1c:0d:72:f2:1c:a0:28:0c:d3:c1:f7:af:07:87: a6:dc:c6:64:65:5a:41:15:50:b6:a1:fd:d5:fe:46: 2f:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:CF:9B:F0:FC:58:08:99:B8:F3:09:02:C8:88:EA:C7:84:51:25:86 X509v3 Authority Key Identifier: keyid:9D:8F:39:34:83:D4:89:C4:29:FC:18:B0:93:42:D7:6D:0A:FE:42:44 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nY85NIPUicQp_Biwk0LXbQr-QkQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/9e8166-160f-4ce2-9017-1e151aa1afdc/1/nY85NIPUicQp_Biwk0LXbQr-QkQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/9e8166-160f-4ce2-9017-1e151aa1afdc/1/nY85NIPUicQp_Biwk0LXbQr-QkQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 84:d3:3c:48:75:93:0f:bb:5c:1c:5e:46:10:7c:83:92:05:59: 18:c6:1e:d0:f4:57:d8:15:ec:25:82:c4:ee:4d:75:e7:f4:2b: c7:58:ba:73:ab:80:ab:0e:f5:37:7e:54:48:66:7a:7d:83:10: d0:80:7e:38:20:ae:11:48:00:f4:52:27:1f:80:4f:c4:93:5f: c2:19:2c:6b:38:e4:e9:0c:ce:c4:b1:a5:01:68:2c:7e:ed:07: 0b:34:72:77:ca:52:9f:c2:33:ae:5f:f3:21:7c:98:a4:ad:7c: cf:31:69:ea:9c:69:fb:3c:32:bd:e0:6e:3d:37:8f:1f:a5:06: 84:48:77:1c:67:05:b4:21:48:4c:6e:08:76:96:b9:0d:1d:ad: 8c:d3:ec:e6:d2:da:d2:f1:61:16:05:30:91:c8:e5:a2:59:9a: c5:50:ba:02:b9:f7:1b:5d:3e:af:63:c8:5e:ab:1a:4e:ae:cb: 56:bf:7b:f4:10:5a:2d:0e:08:64:72:69:02:91:15:39:10:e5: 8d:cd:bd:70:4b:fb:13:d1:89:62:d2:06:1b:c0:4c:a2:53:df: 2b:c0:99:8f:ec:d5:5f:40:71:55:62:eb:ef:60:72:a7:16:be: 9e:95:e3:40:f9:60:c6:67:e0:e6:57:1e:bd:6d:3a:a1:df:5e: 30:58:62:59 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrydvUWrJMSTM/Yj51plHmYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlkOGYzOTM0ODNkNDg5YzQyOWZjMThiMDkzNDJkNzZkMGFm ZTQyNDQwHhcNMjUxMjA2MDcwMTEzWhcNMjUxMjA3MDcwMTEzWjAzMTEwLwYDVQQD EygxNWNmOWJmMGZjNTgwODk5YjhmMzA5MDJjODg4ZWFjNzg0NTEyNTg2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzkSv3GZ9Dwdckw5idp+nNjth8cWm 8WrEXzWpLl1odxkhu9L+ppSNmN2oDweCdd/jlUTBgjXz1QCRtWK2cCTTs/E+3Z+C OWTrMvaaw1xxLpApThjKhM7WpyUTCSr4mJ2Nl5cy/oZ7+2aLA8WdYX63JSqCU+ct liUQfFa2+FDgbTdmWx5YyO9ej0TgAx/CYjPb8dulEi+KKi+po6UPNpXHsOquMZd/ I8whlqTByTsq40bCHMRidHdfsOHxRCRV49M6Elmey4436GdmbluZw6HuIcE6nogM B0Za5pSrHzAFIYwiHA1y8hygKAzTwfevB4em3MZkZVpBFVC2of3V/kYvDQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBXPm/D8WAiZuPMJAsiI6seEUSWGMB8GA1UdIwQY MBaAFJ2POTSD1InEKfwYsJNC120K/kJEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvblk4NU5JUFVpY1FwX0Jpd2swTFhiUXItUWtRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNC85ZTgxNjYtMTYwZi00Y2UyLTkwMTct MWUxNTFhYTFhZmRjLzEvblk4NU5JUFVpY1FwX0Jpd2swTFhiUXItUWtRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNC85ZTgxNjYtMTYwZi00Y2UyLTkwMTctMWUxNTFhYTFhZmRj LzEvblk4NU5JUFVpY1FwX0Jpd2swTFhiUXItUWtRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhNM8SHWT D7tcHF5GEHyDkgVZGMYe0PRX2BXsJYLE7k115/Qrx1i6c6uAqw71N35USGZ6fYMQ 0IB+OCCuEUgA9FInH4BPxJNfwhksazjk6QzOxLGlAWgsfu0HCzRyd8pSn8Izrl/z IXyYpK18zzFp6pxp+zwyveBuPTePH6UGhEh3HGcFtCFITG4Idpa5DR2tjNPs5tLa 0vFhFgUwkcjlolmaxVC6Arn3G10+r2PIXqsaTq7LVr979BBaLQ4IZHJpApEVORDl jc29cEv7E9GJYtIGG8BMolPfK8CZj+zVX0BxVWLr72Bypxa+npXjQPlgxmfg5lce vW06od9eMFhiWQ== -----END CERTIFICATE-----Generated at Sat Dec 6 09:21:37 2025 by rpki-client