This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/767933-4a73-4b2f-ac84-daca26de6f7b/1/NT4_KOZH6SrIpxDDBcLiG2I-3Bw.mft File: NT4_KOZH6SrIpxDDBcLiG2I-3Bw.mft (raw, json) Hash identifier: EaYSEWnkqAJGhc8oTJhpBIV0tkILmqORIQ8AnXk7iAQ= Subject key identifier: 78:31:41:AD:A5:BC:16:EB:58:02:AA:D7:B8:2D:B4:35:B8:65:7B:68 Authority key identifier: 35:3E:3F:28:E6:47:E9:2A:C8:A7:10:C3:05:C2:E2:1B:62:3E:DC:1C Certificate issuer: /CN=353e3f28e647e92ac8a710c305c2e21b623edc1c Certificate serial: 019B1BAB2F14E0D1E71C17CDA9F05D8749C1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NT4_KOZH6SrIpxDDBcLiG2I-3Bw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/767933-4a73-4b2f-ac84-daca26de6f7b/1/NT4_KOZH6SrIpxDDBcLiG2I-3Bw.mft Manifest number: 1779 Signing time: Sun 14 Dec 2025 07:02:41 +0000 Manifest this update: Sun 14 Dec 2025 07:02:41 +0000 Manifest next update: Mon 15 Dec 2025 07:02:41 +0000 Files and hashes: 1: Jhw9faAWoEdqP1e__8w7b6zkmPk.roa (hash: TQENvT9b218+4xF+VAk4clIU0JMsKTFbzJxIDRXuwJ4=) 2: NT4_KOZH6SrIpxDDBcLiG2I-3Bw.crl (hash: UFCWzwkPxJOCtNuHNsqQouIKUABP5jDCBT4RB72y/34=) 3: fubcea_39IkkaWowT_0PbtN75oM.roa (hash: b26RPXGBBJCeMiSKu69amdDTbZc6gUFdxgY2Yx3wVnw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/767933-4a73-4b2f-ac84-daca26de6f7b/1/NT4_KOZH6SrIpxDDBcLiG2I-3Bw.crl rsync://rpki.ripe.net/repository/DEFAULT/2f/767933-4a73-4b2f-ac84-daca26de6f7b/1/NT4_KOZH6SrIpxDDBcLiG2I-3Bw.mft rsync://rpki.ripe.net/repository/DEFAULT/NT4_KOZH6SrIpxDDBcLiG2I-3Bw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 15 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:1b:ab:2f:14:e0:d1:e7:1c:17:cd:a9:f0:5d:87:49:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=353e3f28e647e92ac8a710c305c2e21b623edc1c Validity Not Before: Dec 14 07:02:41 2025 GMT Not After : Dec 15 07:02:41 2025 GMT Subject: CN=783141ada5bc16eb5802aad7b82db435b8657b68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:9b:f9:d7:22:a7:48:78:b4:fe:56:5f:93:2d: 5b:15:3a:ab:0d:ce:3d:76:b6:9f:5f:3f:e0:3d:81: 7f:fa:39:37:8c:e1:9d:d3:90:47:e5:45:9c:b4:71: d1:a0:c1:d1:b0:25:31:22:1d:2c:a8:ac:77:c0:85: 9c:dd:51:61:93:a3:c7:f6:2e:37:f8:60:52:ce:78: 53:14:df:40:55:99:47:57:5d:e6:2d:a2:0e:67:52: 78:68:00:50:b5:18:6e:c1:25:f3:0a:d5:a3:b1:12: 07:b5:b3:26:ae:86:cf:a2:20:f9:b9:bb:3a:73:57: 88:4a:a2:72:cf:18:15:f3:ca:b3:ad:93:3a:58:0b: dd:ce:bd:b1:b5:05:de:e7:9e:5f:86:7c:5e:87:46: 66:8a:fc:60:4d:25:a9:93:77:77:6b:39:1c:39:5f: a0:76:10:05:1a:46:71:04:17:ad:37:06:f7:1a:bf: 8b:00:51:9a:9a:5d:51:23:21:ff:46:9f:9d:ac:5f: 71:12:cc:bf:59:08:2c:39:45:63:e8:03:68:be:76: 57:70:3e:2b:87:b3:fc:de:ff:59:ae:26:1c:f6:f5: b7:90:cd:ec:b5:a2:16:d0:71:09:8c:02:a4:7d:a7: 89:db:62:61:d5:04:18:3e:65:0e:9a:4c:96:f1:4b: 7b:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:31:41:AD:A5:BC:16:EB:58:02:AA:D7:B8:2D:B4:35:B8:65:7B:68 X509v3 Authority Key Identifier: keyid:35:3E:3F:28:E6:47:E9:2A:C8:A7:10:C3:05:C2:E2:1B:62:3E:DC:1C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NT4_KOZH6SrIpxDDBcLiG2I-3Bw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/767933-4a73-4b2f-ac84-daca26de6f7b/1/NT4_KOZH6SrIpxDDBcLiG2I-3Bw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/767933-4a73-4b2f-ac84-daca26de6f7b/1/NT4_KOZH6SrIpxDDBcLiG2I-3Bw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 45:20:ce:c1:a0:63:73:e1:ac:0c:f8:0d:44:9f:d1:3c:52:23: c7:f8:91:61:a2:3a:40:02:87:b7:46:7b:4e:c6:77:94:df:33: 50:46:c9:92:4a:84:8a:d6:6c:cc:b9:d8:89:ab:4e:28:11:27: be:a6:4c:23:ce:ab:02:45:c3:3a:97:1d:e3:8c:88:d9:27:98: 19:c7:5a:29:72:26:00:70:ff:f7:c4:18:15:57:78:88:64:18: 58:25:cf:eb:81:09:73:17:33:7d:3c:f9:c1:9a:0c:f0:0b:6f: 33:3d:2a:bd:c7:93:b5:e1:f2:7e:80:fa:a4:e3:05:98:26:65: ac:9c:6d:c4:44:c4:3e:07:86:6d:48:b1:a0:94:39:bc:dd:dc: 8d:1c:33:a1:57:05:f4:fe:d8:fd:cf:12:d1:7c:15:88:68:6d: 45:7b:48:b5:82:bf:8a:58:7d:1f:5a:c8:7d:1c:81:ab:4b:0a: 48:9e:e5:76:27:b3:b8:5e:98:6d:83:3a:ac:51:8a:0c:cf:9c: 40:f7:41:8c:df:40:c1:a8:e6:d8:7b:b8:88:80:61:31:73:15: 45:fd:89:69:fd:1c:e0:f5:70:38:db:55:a4:5e:f8:c6:71:65: ef:94:3e:9e:ae:8e:22:32:6f:4c:f5:db:02:fd:c6:d4:1f:2d: 8d:be:10:fb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsbqy8U4NHnHBfNqfBdh0nBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM1M2UzZjI4ZTY0N2U5MmFjOGE3MTBjMzA1YzJlMjFiNjIz ZWRjMWMwHhcNMjUxMjE0MDcwMjQxWhcNMjUxMjE1MDcwMjQxWjAzMTEwLwYDVQQD Eyg3ODMxNDFhZGE1YmMxNmViNTgwMmFhZDdiODJkYjQzNWI4NjU3YjY4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzJv51yKnSHi0/lZfky1bFTqrDc49 drafXz/gPYF/+jk3jOGd05BH5UWctHHRoMHRsCUxIh0sqKx3wIWc3VFhk6PH9i43 +GBSznhTFN9AVZlHV13mLaIOZ1J4aABQtRhuwSXzCtWjsRIHtbMmrobPoiD5ubs6 c1eISqJyzxgV88qzrZM6WAvdzr2xtQXe555fhnxeh0ZmivxgTSWpk3d3azkcOV+g dhAFGkZxBBetNwb3Gr+LAFGaml1RIyH/Rp+drF9xEsy/WQgsOUVj6ANovnZXcD4r h7P83v9ZriYc9vW3kM3staIW0HEJjAKkfaeJ22Jh1QQYPmUOmkyW8Ut7sQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHgxQa2lvBbrWAKq17gttDW4ZXtoMB8GA1UdIwQY MBaAFDU+PyjmR+kqyKcQwwXC4htiPtwcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTlQ0X0tPWkg2U3JJcHhEREJjTGlHMkktM0J3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi83Njc5MzMtNGE3My00YjJmLWFjODQt ZGFjYTI2ZGU2ZjdiLzEvTlQ0X0tPWkg2U3JJcHhEREJjTGlHMkktM0J3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZi83Njc5MzMtNGE3My00YjJmLWFjODQtZGFjYTI2ZGU2Zjdi LzEvTlQ0X0tPWkg2U3JJcHhEREJjTGlHMkktM0J3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARSDOwaBj c+GsDPgNRJ/RPFIjx/iRYaI6QAKHt0Z7TsZ3lN8zUEbJkkqEitZszLnYiatOKBEn vqZMI86rAkXDOpcd44yI2SeYGcdaKXImAHD/98QYFVd4iGQYWCXP64EJcxczfTz5 wZoM8AtvMz0qvceTteHyfoD6pOMFmCZlrJxtxETEPgeGbUixoJQ5vN3cjRwzoVcF 9P7Y/c8S0XwViGhtRXtItYK/ilh9H1rIfRyBq0sKSJ7ldiezuF6YbYM6rFGKDM+c QPdBjN9Awajm2Hu4iIBhMXMVRf2Jaf0c4PVwONtVpF74xnFl75Q+nq6OIjJvTPXb Av3G1B8tjb4Q+w== -----END CERTIFICATE-----Generated at Sun Dec 14 11:48:54 2025 by rpki-client