This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.mft File: NTPUOQNczcXww50bP7FhlbVV_KM.mft (raw, json) Hash identifier: KelDVlenbRV/DVmFojOBUMynnnjXWT/mUPoos9SwhD8= Subject key identifier: 45:54:B1:44:E1:DE:8F:F0:F6:EF:74:5C:45:1D:BD:79:ED:6F:2A:24 Authority key identifier: 35:33:D4:39:03:5C:CD:C5:F0:C3:9D:1B:3F:B1:61:95:B5:55:FC:A3 Certificate issuer: /CN=3533d439035ccdc5f0c39d1b3fb16195b555fca3 Certificate serial: 019B4136FB86C5FBA4EF32A081AE5C16F8B2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NTPUOQNczcXww50bP7FhlbVV_KM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.mft Manifest number: 0C80 Signing time: Sun 21 Dec 2025 14:01:20 +0000 Manifest this update: Sun 21 Dec 2025 14:01:20 +0000 Manifest next update: Mon 22 Dec 2025 14:01:20 +0000 Files and hashes: 1: NTPUOQNczcXww50bP7FhlbVV_KM.crl (hash: Nupqpb17cA0+fQkQKVVq9HRT5SFI0nqbx2H9cyG5vA4=) 2: rAVoUvT6eIAoJ9DaPocwQDvvkoc.roa (hash: 1BFZOwvrkIRFql6imBqxsdk52Ly1yvo/6JadLNNcDZs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.crl rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.mft rsync://rpki.ripe.net/repository/DEFAULT/NTPUOQNczcXww50bP7FhlbVV_KM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 13:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:41:36:fb:86:c5:fb:a4:ef:32:a0:81:ae:5c:16:f8:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3533d439035ccdc5f0c39d1b3fb16195b555fca3 Validity Not Before: Dec 21 14:01:20 2025 GMT Not After : Dec 22 14:01:20 2025 GMT Subject: CN=4554b144e1de8ff0f6ef745c451dbd79ed6f2a24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:b7:f1:a3:ee:39:d5:b5:26:1e:eb:e6:4e:ec: 08:72:3c:fc:50:21:7d:c0:51:97:06:ac:da:c3:e2: c7:5a:87:28:82:6d:67:03:c2:9b:03:2a:84:c9:99: f4:8a:50:9c:1c:5a:32:04:29:21:8b:f1:40:4a:93: dd:ec:5a:38:15:b2:af:2c:c3:4b:5a:7d:07:fa:2c: 87:6e:ed:9d:b2:5a:7e:cd:1b:45:c0:67:ad:7a:b2: 7f:db:4e:e8:34:c6:cd:2b:3a:0c:b8:1e:a1:89:b5: b0:51:6e:50:30:d5:87:21:1c:f1:e0:1a:5a:fd:d4: 5d:15:dd:b1:e9:72:6e:99:17:38:b8:e7:87:1a:d8: 87:c3:80:97:db:fe:8f:70:aa:de:df:17:3e:9d:25: 94:c3:65:f8:e5:2f:ec:88:39:f5:65:e2:26:bc:43: 52:34:23:5d:88:2b:31:c1:df:7b:b3:d3:e8:1a:e6: a9:1d:1d:b8:d5:25:b6:67:2c:15:49:38:14:91:e2: db:5d:61:71:df:06:a6:c0:1e:23:d5:da:11:6d:43: 99:46:6c:f2:0e:e2:6b:f4:b4:2f:87:88:39:31:98: 3f:cd:f3:22:07:dc:64:64:59:31:5b:7c:f6:a6:da: 29:1e:67:a6:8d:42:c5:14:ad:9b:c3:0f:71:12:67: a2:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:54:B1:44:E1:DE:8F:F0:F6:EF:74:5C:45:1D:BD:79:ED:6F:2A:24 X509v3 Authority Key Identifier: keyid:35:33:D4:39:03:5C:CD:C5:F0:C3:9D:1B:3F:B1:61:95:B5:55:FC:A3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NTPUOQNczcXww50bP7FhlbVV_KM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c4:1f:29:83:33:4e:9b:73:f5:ef:13:9c:30:10:07:50:43:50: 6b:dc:46:08:3e:bb:12:29:0f:b3:56:a0:f0:34:63:ac:75:3b: af:52:6a:1e:f5:6c:72:f0:22:da:c8:fa:1d:bd:c1:7e:8f:83: 31:c7:6a:61:81:8b:ca:d4:fe:58:8f:8e:82:3f:5b:5a:bc:c8: 18:00:a4:14:2f:b8:41:de:96:72:9d:45:3b:29:79:11:c7:de: 44:51:e9:4b:0d:56:7c:42:26:33:c7:95:6c:f9:7a:7d:82:62: ec:52:de:d0:0d:96:47:83:c4:0e:eb:d7:b0:b8:29:94:d4:a7: 18:93:6a:77:6a:4f:01:81:28:2a:c2:ff:88:15:1a:63:ab:94: a1:77:16:1a:6d:c8:f8:a8:6b:83:05:bf:e1:dd:a5:12:76:bc: 1b:87:b4:94:9b:02:6a:cb:c8:ef:3f:fd:7e:3b:59:fe:27:bc: 33:46:07:51:54:50:d3:12:fd:13:18:42:d5:85:d1:46:1c:0c: e6:88:a0:45:a4:6a:21:a2:f9:43:1c:f9:a2:1f:a8:3c:9a:0c: 66:9b:58:36:8d:fb:4d:ea:3b:97:ce:d3:91:bb:26:8f:53:2b: 08:22:31:47:ba:13:86:13:01:15:82:6a:15:ab:07:01:12:da: a0:68:f6:71 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtBNvuGxfuk7zKgga5cFviyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM1MzNkNDM5MDM1Y2NkYzVmMGMzOWQxYjNmYjE2MTk1YjU1 NWZjYTMwHhcNMjUxMjIxMTQwMTIwWhcNMjUxMjIyMTQwMTIwWjAzMTEwLwYDVQQD Eyg0NTU0YjE0NGUxZGU4ZmYwZjZlZjc0NWM0NTFkYmQ3OWVkNmYyYTI0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA87fxo+451bUmHuvmTuwIcjz8UCF9 wFGXBqzaw+LHWocogm1nA8KbAyqEyZn0ilCcHFoyBCkhi/FASpPd7Fo4FbKvLMNL Wn0H+iyHbu2dslp+zRtFwGeterJ/207oNMbNKzoMuB6hibWwUW5QMNWHIRzx4Bpa /dRdFd2x6XJumRc4uOeHGtiHw4CX2/6PcKre3xc+nSWUw2X45S/siDn1ZeImvENS NCNdiCsxwd97s9PoGuapHR241SW2ZywVSTgUkeLbXWFx3wamwB4j1doRbUOZRmzy DuJr9LQvh4g5MZg/zfMiB9xkZFkxW3z2ptopHmemjULFFK2bww9xEmeioQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEVUsUTh3o/w9u90XEUdvXntbyokMB8GA1UdIwQY MBaAFDUz1DkDXM3F8MOdGz+xYZW1VfyjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTlRQVU9RTmN6Y1h3dzUwYlA3RmhsYlZWX0tNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNy84Y2YyYTYtNDUyOS00M2Q5LWI3ODIt MzZlODVhYmU1MmZmLzEvTlRQVU9RTmN6Y1h3dzUwYlA3RmhsYlZWX0tNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNy84Y2YyYTYtNDUyOS00M2Q5LWI3ODItMzZlODVhYmU1MmZm LzEvTlRQVU9RTmN6Y1h3dzUwYlA3RmhsYlZWX0tNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAxB8pgzNO m3P17xOcMBAHUENQa9xGCD67EikPs1ag8DRjrHU7r1JqHvVscvAi2sj6Hb3Bfo+D McdqYYGLytT+WI+Ogj9bWrzIGACkFC+4Qd6Wcp1FOyl5EcfeRFHpSw1WfEImM8eV bPl6fYJi7FLe0A2WR4PEDuvXsLgplNSnGJNqd2pPAYEoKsL/iBUaY6uUoXcWGm3I +KhrgwW/4d2lEna8G4e0lJsCasvI7z/9fjtZ/ie8M0YHUVRQ0xL9ExhC1YXRRhwM 5oigRaRqIaL5Qxz5oh+oPJoMZptYNo37Teo7l87Tkbsmj1MrCCIxR7oThhMBFYJq FasHARLaoGj2cQ== -----END CERTIFICATE-----Generated at Sun Dec 21 19:29:31 2025 by rpki-client