This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/2aeca7-0837-468d-bd62-03bb21aefba0/1/NB54rk8RnAGERACQzx2JrMiyLCQ.mft File: NB54rk8RnAGERACQzx2JrMiyLCQ.mft (raw, json) Hash identifier: QrOZ7vkaYH7rXjCFjv2aKxsYj/sDEW9XpZmxxhDu4MU= Subject key identifier: 75:F9:52:CD:B8:13:99:BF:BC:73:BE:FC:E7:97:DA:1C:3B:1D:6E:C8 Authority key identifier: 34:1E:78:AE:4F:11:9C:01:84:44:00:90:CF:1D:89:AC:C8:B2:2C:24 Certificate issuer: /CN=341e78ae4f119c0184440090cf1d89acc8b22c24 Certificate serial: 019B59080E0399B10F0EE1A99FDFB5EE5CFB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NB54rk8RnAGERACQzx2JrMiyLCQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/2aeca7-0837-468d-bd62-03bb21aefba0/1/NB54rk8RnAGERACQzx2JrMiyLCQ.mft Manifest number: 0554 Signing time: Fri 26 Dec 2025 05:00:58 +0000 Manifest this update: Fri 26 Dec 2025 05:00:58 +0000 Manifest next update: Sat 27 Dec 2025 05:00:58 +0000 Files and hashes: 1: NB54rk8RnAGERACQzx2JrMiyLCQ.crl (hash: Da9UIxum+Vk9r0Com6ffUZgv3nFDd+kGpZppoKZE4uc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/2aeca7-0837-468d-bd62-03bb21aefba0/1/NB54rk8RnAGERACQzx2JrMiyLCQ.crl rsync://rpki.ripe.net/repository/DEFAULT/73/2aeca7-0837-468d-bd62-03bb21aefba0/1/NB54rk8RnAGERACQzx2JrMiyLCQ.mft rsync://rpki.ripe.net/repository/DEFAULT/NB54rk8RnAGERACQzx2JrMiyLCQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 05:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:08:0e:03:99:b1:0f:0e:e1:a9:9f:df:b5:ee:5c:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=341e78ae4f119c0184440090cf1d89acc8b22c24 Validity Not Before: Dec 26 05:00:58 2025 GMT Not After : Dec 27 05:00:58 2025 GMT Subject: CN=75f952cdb81399bfbc73befce797da1c3b1d6ec8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:40:4d:73:e3:5e:99:9d:5d:25:50:98:a4:b8: 30:73:ce:70:85:fd:a6:1b:e9:4f:90:2f:b9:6d:73: 63:64:8e:45:63:5c:ce:d9:76:24:77:57:95:77:e6: af:ec:de:54:5d:8c:41:b7:da:19:06:36:aa:1e:9f: b0:73:d4:b5:31:36:7b:73:17:3c:b0:3b:cd:d0:c7: 04:8a:1e:bb:19:0f:40:d6:a2:a1:6e:a7:6d:87:ec: a0:7f:3a:8c:c6:df:bf:88:87:2f:af:f0:d7:42:5e: 7f:44:97:bc:e9:5a:de:aa:8b:b3:6b:e9:d9:dd:e1: c4:6a:26:0e:b7:46:66:34:38:a6:3a:6b:cf:a5:16: 23:53:3c:17:60:c2:f5:12:83:7d:2c:14:8b:b1:dd: 44:c7:15:ed:7e:02:3c:8c:a2:92:6f:42:21:92:4f: 27:c8:23:69:fa:e3:41:9b:07:4c:8d:fb:60:4d:06: 5a:39:71:21:09:2c:f8:b9:5a:84:a5:ff:38:fe:cb: 63:5a:41:28:8a:77:aa:9e:fb:43:8f:0d:8b:77:9c: 66:b7:60:f8:30:8e:e0:14:28:67:5f:d6:c6:0e:26: ce:d4:67:ae:83:71:1c:52:d8:f6:5b:19:c6:76:97: a3:65:df:82:89:75:44:65:99:d7:2c:80:1a:dc:07: ee:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:F9:52:CD:B8:13:99:BF:BC:73:BE:FC:E7:97:DA:1C:3B:1D:6E:C8 X509v3 Authority Key Identifier: keyid:34:1E:78:AE:4F:11:9C:01:84:44:00:90:CF:1D:89:AC:C8:B2:2C:24 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NB54rk8RnAGERACQzx2JrMiyLCQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/2aeca7-0837-468d-bd62-03bb21aefba0/1/NB54rk8RnAGERACQzx2JrMiyLCQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/73/2aeca7-0837-468d-bd62-03bb21aefba0/1/NB54rk8RnAGERACQzx2JrMiyLCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 54:9f:1d:0c:ba:7e:5a:02:f5:48:f7:85:d4:f4:23:88:41:37: f9:b3:05:b7:6d:03:78:8a:2e:15:2b:b2:21:d7:ba:ba:00:2c: ee:06:03:d1:c9:f5:d0:61:42:01:af:ca:51:78:68:ca:46:5c: 2b:c0:ee:ca:15:b4:2a:41:aa:cb:22:f3:90:d9:89:51:8e:59: 99:19:98:b1:53:30:09:17:11:9f:0b:aa:4b:74:a8:1d:4f:2e: 03:c8:01:c6:5b:83:12:11:49:25:da:30:a4:44:d7:c1:c9:6a: 64:55:77:0a:cf:18:1d:aa:d3:b9:2c:25:b5:c9:93:3c:f0:dd: e1:d3:f6:1d:46:92:95:04:af:6d:9f:cc:b0:22:b3:b6:47:b9: 38:26:1b:9e:d8:eb:26:eb:bb:af:e2:49:72:4a:82:69:37:9d: 1f:50:52:ef:9e:ea:be:54:1a:0f:7f:43:d8:45:c5:4b:64:ef: 67:3d:dd:4a:d8:f1:f3:c6:06:77:21:bf:d8:4f:c0:8d:5f:63: be:ed:91:69:99:6b:df:3f:44:c8:9e:f4:71:a1:eb:b1:d6:57: 5a:48:06:3b:a8:4d:04:10:63:05:a5:02:ea:3f:12:fb:1f:15: 91:d7:11:7f:3d:b4:56:6e:0c:ab:a4:f1:a6:9e:80:5a:25:b1: 44:d9:11:e5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZCA4DmbEPDuGpn9+17lz7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM0MWU3OGFlNGYxMTljMDE4NDQ0MDA5MGNmMWQ4OWFjYzhi MjJjMjQwHhcNMjUxMjI2MDUwMDU4WhcNMjUxMjI3MDUwMDU4WjAzMTEwLwYDVQQD Eyg3NWY5NTJjZGI4MTM5OWJmYmM3M2JlZmNlNzk3ZGExYzNiMWQ2ZWM4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyEBNc+NemZ1dJVCYpLgwc85whf2m G+lPkC+5bXNjZI5FY1zO2XYkd1eVd+av7N5UXYxBt9oZBjaqHp+wc9S1MTZ7cxc8 sDvN0McEih67GQ9A1qKhbqdth+ygfzqMxt+/iIcvr/DXQl5/RJe86Vreqouza+nZ 3eHEaiYOt0ZmNDimOmvPpRYjUzwXYML1EoN9LBSLsd1ExxXtfgI8jKKSb0Ihkk8n yCNp+uNBmwdMjftgTQZaOXEhCSz4uVqEpf84/stjWkEoineqnvtDjw2Ld5xmt2D4 MI7gFChnX9bGDibO1Geug3EcUtj2WxnGdpejZd+CiXVEZZnXLIAa3AfuvQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHX5Us24E5m/vHO+/OeX2hw7HW7IMB8GA1UdIwQY MBaAFDQeeK5PEZwBhEQAkM8diazIsiwkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTkI1NHJrOFJuQUdFUkFDUXp4MkpyTWl5TENRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83My8yYWVjYTctMDgzNy00NjhkLWJkNjIt MDNiYjIxYWVmYmEwLzEvTkI1NHJrOFJuQUdFUkFDUXp4MkpyTWl5TENRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83My8yYWVjYTctMDgzNy00NjhkLWJkNjItMDNiYjIxYWVmYmEw LzEvTkI1NHJrOFJuQUdFUkFDUXp4MkpyTWl5TENRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVJ8dDLp+ WgL1SPeF1PQjiEE3+bMFt20DeIouFSuyIde6ugAs7gYD0cn10GFCAa/KUXhoykZc K8DuyhW0KkGqyyLzkNmJUY5ZmRmYsVMwCRcRnwuqS3SoHU8uA8gBxluDEhFJJdow pETXwclqZFV3Cs8YHarTuSwltcmTPPDd4dP2HUaSlQSvbZ/MsCKztke5OCYbntjr Juu7r+JJckqCaTedH1BS757qvlQaD39D2EXFS2TvZz3dStjx88YGdyG/2E/AjV9j vu2RaZlr3z9EyJ70caHrsdZXWkgGO6hNBBBjBaUC6j8S+x8VkdcRfz20Vm4Mq6Tx pp6AWiWxRNkR5Q== -----END CERTIFICATE-----Generated at Fri Dec 26 14:18:24 2025 by rpki-client