This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/4f2367-73f3-4816-bea8-a045ff8e2ac0/1/nM47EZfQz5URVAVypY_TctzAdIk.mft File: nM47EZfQz5URVAVypY_TctzAdIk.mft (raw, json) Hash identifier: Rkw+Kxg8i8/yj5ZVg/FxAGf2qwXOJJ6P8alYF66AvP8= Subject key identifier: E3:F7:D9:1A:8D:EB:94:1D:3A:5F:3A:4A:43:34:3B:1C:FD:B2:24:70 Authority key identifier: 9C:CE:3B:11:97:D0:CF:95:11:54:05:72:A5:8F:D3:72:DC:C0:74:89 Certificate issuer: /CN=9cce3b1197d0cf9511540572a58fd372dcc07489 Certificate serial: 019B1FF44430929D720ED9306123C8BB70FD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nM47EZfQz5URVAVypY_TctzAdIk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/4f2367-73f3-4816-bea8-a045ff8e2ac0/1/nM47EZfQz5URVAVypY_TctzAdIk.mft Manifest number: 1274 Signing time: Mon 15 Dec 2025 03:01:00 +0000 Manifest this update: Mon 15 Dec 2025 03:01:00 +0000 Manifest next update: Tue 16 Dec 2025 03:01:00 +0000 Files and hashes: 1: B5L5vO55nBhfniljBpOUow8aXpw.roa (hash: DIMd34dyf8uJUIUl3TvafcV9IS2e08ZcTMFZLeGk8KM=) 2: JafDMsZo_2WlBv1_b3upjycXmLU.roa (hash: cGcJ9xKOVuAlrxxUBxsd3T744wFpR+9phZElM6fNzW0=) 3: SHsQx5nLK3je9BRJdGpJA5FmBJw.roa (hash: w1LS0Na0/a/or8fsG3pHVRaGF64EW4fSRED25Ol57DY=) 4: bVTa17baMARG71NZ_lURgWWh_4Y.roa (hash: A1ALFNaBHdD7deqRm4EdGoE1FRnMJSkvg8oyd+Kqmgc=) 5: lkc-0MlfE6wjagT9foeguXGZhBk.roa (hash: Dk9iF0id/HpCNZDFa+BXpH9AMMGx3UOmasYJ8e7rqkM=) 6: nM47EZfQz5URVAVypY_TctzAdIk.crl (hash: nxWSYzafPNeEQA0se1OnoNRRbLrGtG12ylJkCHiAZCI=) 7: rfouL44lCXKFlJx3f-T9zbjuGS4.roa (hash: tCYRZzQeGaABrV6yDW5xOTTpQ0NtqSv/VFgzFAs4QHg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/4f2367-73f3-4816-bea8-a045ff8e2ac0/1/nM47EZfQz5URVAVypY_TctzAdIk.crl rsync://rpki.ripe.net/repository/DEFAULT/74/4f2367-73f3-4816-bea8-a045ff8e2ac0/1/nM47EZfQz5URVAVypY_TctzAdIk.mft rsync://rpki.ripe.net/repository/DEFAULT/nM47EZfQz5URVAVypY_TctzAdIk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 03:01:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:1f:f4:44:30:92:9d:72:0e:d9:30:61:23:c8:bb:70:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9cce3b1197d0cf9511540572a58fd372dcc07489 Validity Not Before: Dec 15 03:01:00 2025 GMT Not After : Dec 16 03:01:00 2025 GMT Subject: CN=e3f7d91a8deb941d3a5f3a4a43343b1cfdb22470 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:04:fb:a4:db:ea:6e:12:ce:ea:85:38:c8:56: 4a:ba:b4:20:f8:1a:85:b7:81:99:51:87:a3:e5:fd: 31:82:14:29:34:d0:00:f8:7b:25:1c:8f:64:40:98: bb:16:97:5b:78:e4:94:85:93:e7:e7:c6:3b:11:20: 86:b4:47:c7:63:10:6b:0f:70:fb:af:1b:46:0c:a4: 96:d5:fe:31:1f:44:45:48:6f:72:27:a1:6b:91:00: d7:00:12:f7:30:48:2a:4d:b3:74:c6:15:90:5e:7f: aa:bf:a2:5b:a0:6e:3b:00:73:50:7b:09:60:5e:ec: b7:b6:6b:ce:b8:26:12:dd:62:52:ed:96:7b:69:6b: c8:95:5a:55:8d:25:d7:49:e3:25:ba:1d:c2:64:49: fc:87:34:f4:64:51:31:ae:03:dd:10:bf:6c:b8:d0: a7:1b:0e:64:fe:93:4f:62:66:51:6d:ec:75:75:de: f2:31:3c:09:45:e9:8a:a7:72:00:89:8f:a9:c5:9f: d9:ca:3d:a9:c0:ce:fd:27:67:93:92:46:ee:e7:1f: 9e:68:8f:d7:3c:1b:ae:44:46:bc:e5:d1:db:ee:fb: 34:d0:0c:33:00:80:79:4a:41:06:f8:02:d3:af:15: 05:a1:c5:7c:98:99:52:84:f7:ec:8b:73:ae:56:8c: 8d:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:F7:D9:1A:8D:EB:94:1D:3A:5F:3A:4A:43:34:3B:1C:FD:B2:24:70 X509v3 Authority Key Identifier: keyid:9C:CE:3B:11:97:D0:CF:95:11:54:05:72:A5:8F:D3:72:DC:C0:74:89 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nM47EZfQz5URVAVypY_TctzAdIk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/4f2367-73f3-4816-bea8-a045ff8e2ac0/1/nM47EZfQz5URVAVypY_TctzAdIk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/74/4f2367-73f3-4816-bea8-a045ff8e2ac0/1/nM47EZfQz5URVAVypY_TctzAdIk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 92:a1:57:a8:94:9a:e0:db:b8:97:af:0f:45:37:ea:06:d6:cd: 07:6d:eb:07:59:58:95:c8:12:87:45:22:50:2c:78:dc:fd:ea: 9f:28:29:31:64:ac:ce:82:4c:21:8b:bb:71:cd:66:7d:f5:1e: 04:1e:cd:ea:bc:d4:cd:62:59:2d:41:64:85:66:2c:d7:0f:c8: 39:2a:ed:ea:7f:2f:0f:e6:1e:02:d1:ec:8d:b8:50:5e:ab:77: d1:50:11:03:8a:df:45:28:69:45:53:b1:ca:86:ea:20:d9:15: 44:cd:af:d5:2e:8d:0c:06:28:b8:49:44:84:6f:a5:17:d8:8c: 35:0e:ca:9a:23:7f:b7:f9:ca:1c:8e:b9:4e:1a:e5:14:ec:db: 4e:b8:b5:ff:75:37:f1:74:ae:3e:f2:07:a5:80:84:e3:63:07: c0:be:aa:88:fe:f7:b5:be:2c:27:00:f0:25:36:c1:19:ed:3e: 7d:2c:c3:ec:82:35:3e:35:22:41:67:81:30:2d:6b:70:ac:03: c6:1c:3b:04:0b:62:f1:23:93:3c:24:ae:00:09:a0:1b:f1:73: 4a:e2:6b:3a:f2:bf:00:4b:0b:a0:32:e6:c4:97:d9:ce:a2:0f: b2:48:be:d0:98:d5:74:f2:1c:96:84:9f:8f:5c:68:66:a1:ff: 5e:0e:5d:2a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsf9EQwkp1yDtkwYSPIu3D9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDljY2UzYjExOTdkMGNmOTUxMTU0MDU3MmE1OGZkMzcyZGNj MDc0ODkwHhcNMjUxMjE1MDMwMTAwWhcNMjUxMjE2MDMwMTAwWjAzMTEwLwYDVQQD EyhlM2Y3ZDkxYThkZWI5NDFkM2E1ZjNhNGE0MzM0M2IxY2ZkYjIyNDcwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwgT7pNvqbhLO6oU4yFZKurQg+BqF t4GZUYej5f0xghQpNNAA+HslHI9kQJi7FpdbeOSUhZPn58Y7ESCGtEfHYxBrD3D7 rxtGDKSW1f4xH0RFSG9yJ6FrkQDXABL3MEgqTbN0xhWQXn+qv6JboG47AHNQewlg Xuy3tmvOuCYS3WJS7ZZ7aWvIlVpVjSXXSeMluh3CZEn8hzT0ZFExrgPdEL9suNCn Gw5k/pNPYmZRbex1dd7yMTwJRemKp3IAiY+pxZ/Zyj2pwM79J2eTkkbu5x+eaI/X PBuuREa85dHb7vs00AwzAIB5SkEG+ALTrxUFocV8mJlShPfsi3OuVoyNCwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOP32RqN65QdOl86SkM0Oxz9siRwMB8GA1UdIwQY MBaAFJzOOxGX0M+VEVQFcqWP03LcwHSJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbk00N0VaZlF6NVVSVkFWeXBZX1RjdHpBZElrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NC80ZjIzNjctNzNmMy00ODE2LWJlYTgt YTA0NWZmOGUyYWMwLzEvbk00N0VaZlF6NVVSVkFWeXBZX1RjdHpBZElrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83NC80ZjIzNjctNzNmMy00ODE2LWJlYTgtYTA0NWZmOGUyYWMw LzEvbk00N0VaZlF6NVVSVkFWeXBZX1RjdHpBZElrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkqFXqJSa 4Nu4l68PRTfqBtbNB23rB1lYlcgSh0UiUCx43P3qnygpMWSszoJMIYu7cc1mffUe BB7N6rzUzWJZLUFkhWYs1w/IOSrt6n8vD+YeAtHsjbhQXqt30VARA4rfRShpRVOx yobqINkVRM2v1S6NDAYouElEhG+lF9iMNQ7KmiN/t/nKHI65ThrlFOzbTri1/3U3 8XSuPvIHpYCE42MHwL6qiP73tb4sJwDwJTbBGe0+fSzD7II1PjUiQWeBMC1rcKwD xhw7BAti8SOTPCSuAAmgG/FzSuJrOvK/AEsLoDLmxJfZzqIPski+0JjVdPIcloSf j1xoZqH/Xg5dKg== -----END CERTIFICATE-----Generated at Mon Dec 15 12:08:28 2025 by rpki-client