This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/9ce60b-cbc4-40d9-98ad-1cd506070bb5/1/NRZSuDj_LZZyrIyma6Zg3U5F1pk.mft File: NRZSuDj_LZZyrIyma6Zg3U5F1pk.mft (raw, json) Hash identifier: rQ3baAxRPFSbo0m8wgKO7n9KbfkSqdRiz65DTG9vTiU= Subject key identifier: 2E:A4:55:ED:6E:6D:24:3B:A1:D6:E3:18:F9:45:78:36:CC:26:8A:82 Authority key identifier: 35:16:52:B8:38:FF:2D:96:72:AC:8C:A6:6B:A6:60:DD:4E:45:D6:99 Certificate issuer: /CN=351652b838ff2d9672ac8ca66ba660dd4e45d699 Certificate serial: 019B34567F385C7712F9994D2241AB9C5FBD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NRZSuDj_LZZyrIyma6Zg3U5F1pk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/9ce60b-cbc4-40d9-98ad-1cd506070bb5/1/NRZSuDj_LZZyrIyma6Zg3U5F1pk.mft Manifest number: 0C68 Signing time: Fri 19 Dec 2025 02:00:42 +0000 Manifest this update: Fri 19 Dec 2025 02:00:42 +0000 Manifest next update: Sat 20 Dec 2025 02:00:42 +0000 Files and hashes: 1: NRZSuDj_LZZyrIyma6Zg3U5F1pk.crl (hash: rsNk7Yxgt14nYTsoGnNxTMG70wdmd0Uwt4NQfU/d6y0=) 2: Zk0y4tHHB8Yu3r49IrGLEovlzps.roa (hash: Z8BlFARu3PiIVKgAzCmvXp/n3Elo4eu1cJ/tXUB0sZU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/9ce60b-cbc4-40d9-98ad-1cd506070bb5/1/NRZSuDj_LZZyrIyma6Zg3U5F1pk.crl rsync://rpki.ripe.net/repository/DEFAULT/2b/9ce60b-cbc4-40d9-98ad-1cd506070bb5/1/NRZSuDj_LZZyrIyma6Zg3U5F1pk.mft rsync://rpki.ripe.net/repository/DEFAULT/NRZSuDj_LZZyrIyma6Zg3U5F1pk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:34:56:7f:38:5c:77:12:f9:99:4d:22:41:ab:9c:5f:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=351652b838ff2d9672ac8ca66ba660dd4e45d699 Validity Not Before: Dec 19 02:00:42 2025 GMT Not After : Dec 20 02:00:42 2025 GMT Subject: CN=2ea455ed6e6d243ba1d6e318f9457836cc268a82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:33:68:ca:95:dc:9b:d2:3f:64:97:48:cc:81: 55:35:5f:b9:2f:43:ef:0e:6b:cb:1b:e9:fd:87:e9: 13:16:22:26:71:06:e6:79:1c:1b:8d:a7:31:ed:9c: 03:bb:49:13:aa:2e:37:af:38:06:f3:a3:c2:9b:ff: 27:97:90:97:aa:f9:3d:f6:86:6b:39:79:15:9e:13: 7f:fa:5f:b2:e3:ed:61:9d:e4:94:ea:b2:9a:f7:e1: da:9a:67:ba:63:d5:f7:90:6a:1f:08:fd:f3:17:ed: 7c:e3:06:a3:ae:e7:37:9c:c6:23:7c:3e:7f:6d:6b: fe:44:e6:7d:3b:21:c4:18:e3:25:f9:3c:cd:a9:e3: 8c:39:e4:e0:92:af:5d:ad:b8:11:37:ad:99:14:df: bb:cd:7e:21:d6:23:f6:b2:82:52:18:50:1f:23:8c: b9:45:27:d9:97:bf:68:de:0c:7f:75:5b:58:94:07: fb:5f:36:4a:52:7e:f7:f7:71:fc:eb:3d:72:7b:c3: 60:56:32:09:84:75:46:e3:33:02:1d:c1:7b:45:72: 28:ca:be:bd:6c:50:3f:29:2d:5b:85:11:06:02:8a: 82:2d:e7:a4:b8:4b:b3:ea:9b:26:dd:8d:08:ff:02: 03:ca:4c:c2:74:70:2e:06:b3:c1:5f:c2:e6:f7:70: 8a:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:A4:55:ED:6E:6D:24:3B:A1:D6:E3:18:F9:45:78:36:CC:26:8A:82 X509v3 Authority Key Identifier: keyid:35:16:52:B8:38:FF:2D:96:72:AC:8C:A6:6B:A6:60:DD:4E:45:D6:99 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NRZSuDj_LZZyrIyma6Zg3U5F1pk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/9ce60b-cbc4-40d9-98ad-1cd506070bb5/1/NRZSuDj_LZZyrIyma6Zg3U5F1pk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/9ce60b-cbc4-40d9-98ad-1cd506070bb5/1/NRZSuDj_LZZyrIyma6Zg3U5F1pk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5e:96:17:59:0f:f1:52:0e:90:23:2f:ab:84:9c:46:7c:ea:d7: 03:e0:ad:22:72:23:5a:e9:a7:4a:3d:b1:d0:28:b7:1e:6e:3a: f5:89:1d:58:91:be:28:a8:0e:99:ca:a7:06:05:fe:1e:82:d5: 97:05:72:46:86:a8:11:8e:a3:d3:b4:d0:78:03:05:58:2f:ea: e2:99:65:c3:57:09:ee:11:69:2a:b6:4d:74:47:b0:9f:61:72: f7:1c:be:ca:b3:5b:20:bf:14:f3:f6:09:8e:94:56:d4:d7:14: a6:f7:e7:02:e9:58:ae:4f:cd:0c:98:40:8a:c4:9d:91:72:01: ac:60:13:c4:06:08:0c:9e:31:f2:06:4e:80:c1:d6:ae:da:00: ae:ac:06:68:97:8a:83:08:e1:6f:6f:8c:96:0b:0f:97:bf:21: 96:c4:7e:ce:c8:db:1a:7a:48:c8:eb:49:51:1e:4a:bf:bd:4a: a7:5d:95:56:5b:82:ef:c9:3c:e9:0b:69:fa:82:fe:42:9d:1a: 81:80:9f:db:e0:00:1f:a9:59:3e:b6:4d:5f:6a:4d:e9:8b:05: 3b:0c:02:55:4c:dc:2f:ac:74:af:74:87:75:0d:8c:60:10:94: 76:12:d7:1f:c8:5a:98:22:df:09:16:cd:f9:16:dd:38:a8:16: a7:96:1a:91 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs0Vn84XHcS+ZlNIkGrnF+9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM1MTY1MmI4MzhmZjJkOTY3MmFjOGNhNjZiYTY2MGRkNGU0 NWQ2OTkwHhcNMjUxMjE5MDIwMDQyWhcNMjUxMjIwMDIwMDQyWjAzMTEwLwYDVQQD EygyZWE0NTVlZDZlNmQyNDNiYTFkNmUzMThmOTQ1NzgzNmNjMjY4YTgyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwzNoypXcm9I/ZJdIzIFVNV+5L0Pv DmvLG+n9h+kTFiImcQbmeRwbjacx7ZwDu0kTqi43rzgG86PCm/8nl5CXqvk99oZr OXkVnhN/+l+y4+1hneSU6rKa9+Hamme6Y9X3kGofCP3zF+184wajruc3nMYjfD5/ bWv+ROZ9OyHEGOMl+TzNqeOMOeTgkq9drbgRN62ZFN+7zX4h1iP2soJSGFAfI4y5 RSfZl79o3gx/dVtYlAf7XzZKUn7393H86z1ye8NgVjIJhHVG4zMCHcF7RXIoyr69 bFA/KS1bhREGAoqCLeekuEuz6psm3Y0I/wIDykzCdHAuBrPBX8Lm93CK7QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFC6kVe1ubSQ7odbjGPlFeDbMJoqCMB8GA1UdIwQY MBaAFDUWUrg4/y2WcqyMpmumYN1ORdaZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTlJaU3VEal9MWlp5ckl5bWE2WmczVTVGMXBrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi85Y2U2MGItY2JjNC00MGQ5LTk4YWQt MWNkNTA2MDcwYmI1LzEvTlJaU3VEal9MWlp5ckl5bWE2WmczVTVGMXBrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYi85Y2U2MGItY2JjNC00MGQ5LTk4YWQtMWNkNTA2MDcwYmI1 LzEvTlJaU3VEal9MWlp5ckl5bWE2WmczVTVGMXBrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXpYXWQ/x Ug6QIy+rhJxGfOrXA+CtInIjWumnSj2x0Ci3Hm469YkdWJG+KKgOmcqnBgX+HoLV lwVyRoaoEY6j07TQeAMFWC/q4pllw1cJ7hFpKrZNdEewn2Fy9xy+yrNbIL8U8/YJ jpRW1NcUpvfnAulYrk/NDJhAisSdkXIBrGATxAYIDJ4x8gZOgMHWrtoArqwGaJeK gwjhb2+MlgsPl78hlsR+zsjbGnpIyOtJUR5Kv71Kp12VVluC78k86Qtp+oL+Qp0a gYCf2+AAH6lZPrZNX2pN6YsFOwwCVUzcL6x0r3SHdQ2MYBCUdhLXH8hamCLfCRbN +RbdOKgWp5YakQ== -----END CERTIFICATE-----Generated at Fri Dec 19 11:06:36 2025 by rpki-client