This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/4f2367-73f3-4816-bea8-a045ff8e2ac0/1/nM47EZfQz5URVAVypY_TctzAdIk.mft File: nM47EZfQz5URVAVypY_TctzAdIk.mft (raw, json) Hash identifier: VNWgoGglT4qVb7xkFZ/XYpAOycxxAWL+ECnTZ7BWgfk= Subject key identifier: 9C:83:E6:31:89:AB:75:29:6B:40:48:7A:63:3A:81:86:2E:BB:43:66 Authority key identifier: 9C:CE:3B:11:97:D0:CF:95:11:54:05:72:A5:8F:D3:72:DC:C0:74:89 Certificate issuer: /CN=9cce3b1197d0cf9511540572a58fd372dcc07489 Certificate serial: 019B1080F90669F54806DF142CB5625A670F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nM47EZfQz5URVAVypY_TctzAdIk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/4f2367-73f3-4816-bea8-a045ff8e2ac0/1/nM47EZfQz5URVAVypY_TctzAdIk.mft Manifest number: 126C Signing time: Fri 12 Dec 2025 03:00:46 +0000 Manifest this update: Fri 12 Dec 2025 03:00:46 +0000 Manifest next update: Sat 13 Dec 2025 03:00:46 +0000 Files and hashes: 1: B5L5vO55nBhfniljBpOUow8aXpw.roa (hash: DIMd34dyf8uJUIUl3TvafcV9IS2e08ZcTMFZLeGk8KM=) 2: JafDMsZo_2WlBv1_b3upjycXmLU.roa (hash: cGcJ9xKOVuAlrxxUBxsd3T744wFpR+9phZElM6fNzW0=) 3: SHsQx5nLK3je9BRJdGpJA5FmBJw.roa (hash: w1LS0Na0/a/or8fsG3pHVRaGF64EW4fSRED25Ol57DY=) 4: bVTa17baMARG71NZ_lURgWWh_4Y.roa (hash: A1ALFNaBHdD7deqRm4EdGoE1FRnMJSkvg8oyd+Kqmgc=) 5: lkc-0MlfE6wjagT9foeguXGZhBk.roa (hash: Dk9iF0id/HpCNZDFa+BXpH9AMMGx3UOmasYJ8e7rqkM=) 6: nM47EZfQz5URVAVypY_TctzAdIk.crl (hash: KzAjGLDXkpFUENo9V0EJSiycL17wvOn6hwtLIaQq7g8=) 7: rfouL44lCXKFlJx3f-T9zbjuGS4.roa (hash: tCYRZzQeGaABrV6yDW5xOTTpQ0NtqSv/VFgzFAs4QHg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/4f2367-73f3-4816-bea8-a045ff8e2ac0/1/nM47EZfQz5URVAVypY_TctzAdIk.crl rsync://rpki.ripe.net/repository/DEFAULT/74/4f2367-73f3-4816-bea8-a045ff8e2ac0/1/nM47EZfQz5URVAVypY_TctzAdIk.mft rsync://rpki.ripe.net/repository/DEFAULT/nM47EZfQz5URVAVypY_TctzAdIk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 23:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:10:80:f9:06:69:f5:48:06:df:14:2c:b5:62:5a:67:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9cce3b1197d0cf9511540572a58fd372dcc07489 Validity Not Before: Dec 12 03:00:46 2025 GMT Not After : Dec 13 03:00:46 2025 GMT Subject: CN=9c83e63189ab75296b40487a633a81862ebb4366 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:46:46:1d:e5:64:77:e3:57:d4:e1:8d:6f:e0: 61:eb:a5:b9:b7:c9:a2:06:6d:f5:7f:61:22:96:8d: e4:af:a5:bf:0d:9d:73:b1:a3:72:03:a0:d9:c0:33: 03:55:c5:de:37:2a:fc:10:9a:14:4e:5e:b5:a5:c1: f1:44:62:cc:97:5d:bd:2e:c9:48:d2:71:a2:d8:b5: e7:93:e0:05:d0:3f:d5:1d:2d:99:cb:e8:20:e3:57: d0:63:f1:aa:b0:86:bf:af:b8:76:92:0b:e2:3b:80: 5d:94:23:e2:36:a9:a1:7f:b4:29:95:88:b4:3f:23: 11:01:c8:a5:bd:69:53:3a:9e:fb:97:25:0e:26:76: 52:76:4b:cf:65:5b:ec:17:34:a1:8f:31:8e:14:2d: b9:b3:d3:14:b1:0a:e1:de:b2:3d:3f:8c:15:8e:4d: e4:76:10:51:6e:ec:23:44:1f:d6:fb:b3:cd:81:01: 1a:7e:0c:47:71:6e:ee:ea:0c:77:f5:3a:e4:ba:74: dd:ba:d5:c9:b2:24:18:52:b5:fe:4f:a1:b1:99:8f: 78:61:c0:b9:d9:65:e5:71:5d:a0:24:c9:75:7b:aa: 71:ad:21:10:12:41:e5:0f:ca:1f:85:ba:e4:75:29: 89:5d:9e:87:f7:dc:e4:01:6e:3a:5a:49:8d:cc:e7: df:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:83:E6:31:89:AB:75:29:6B:40:48:7A:63:3A:81:86:2E:BB:43:66 X509v3 Authority Key Identifier: keyid:9C:CE:3B:11:97:D0:CF:95:11:54:05:72:A5:8F:D3:72:DC:C0:74:89 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nM47EZfQz5URVAVypY_TctzAdIk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/4f2367-73f3-4816-bea8-a045ff8e2ac0/1/nM47EZfQz5URVAVypY_TctzAdIk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/74/4f2367-73f3-4816-bea8-a045ff8e2ac0/1/nM47EZfQz5URVAVypY_TctzAdIk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9c:e8:29:0d:06:19:04:44:5b:24:db:44:88:21:b7:af:f0:51: 0c:3c:f5:11:90:c5:b1:8f:ba:65:d4:42:d1:7c:3d:14:6d:fd: 47:d1:dc:61:87:00:56:d9:46:5c:e6:c2:05:f0:f4:f8:26:8d: d2:5f:66:8f:aa:ae:19:c3:a2:71:19:63:3d:67:ea:08:fa:ee: 22:21:9b:92:00:dd:6b:06:93:4b:50:f6:6b:2d:3d:47:84:ee: 41:46:d7:ff:01:91:de:14:50:cb:bb:a4:37:5c:18:ec:aa:4e: 8f:68:64:c1:8a:59:c0:b2:c5:95:10:bf:72:17:ae:9f:f0:7a: 3b:44:d0:a4:95:ba:46:95:78:de:78:f8:05:cb:16:cd:9e:4f: 77:5f:7b:1f:d3:fd:f6:74:7e:c8:28:77:e2:c2:e0:cb:1d:69: 88:f7:37:01:bc:90:78:56:92:68:53:31:1e:e5:c5:28:ec:2c: 7c:f2:24:37:13:98:77:63:ad:18:21:e6:34:5b:b8:6b:54:23: 0b:42:f5:fb:df:06:a4:6c:8e:4a:60:e8:e3:82:e1:27:ca:f9: 4e:42:b9:07:f6:77:e6:d8:63:ef:0c:b3:4a:19:e3:15:62:d4: 20:6e:e5:98:4d:ad:bf:32:86:42:5b:05:b4:29:86:df:ae:19: 72:6d:a1:12 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsQgPkGafVIBt8ULLViWmcPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDljY2UzYjExOTdkMGNmOTUxMTU0MDU3MmE1OGZkMzcyZGNj MDc0ODkwHhcNMjUxMjEyMDMwMDQ2WhcNMjUxMjEzMDMwMDQ2WjAzMTEwLwYDVQQD Eyg5YzgzZTYzMTg5YWI3NTI5NmI0MDQ4N2E2MzNhODE4NjJlYmI0MzY2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7kZGHeVkd+NX1OGNb+Bh66W5t8mi Bm31f2Eilo3kr6W/DZ1zsaNyA6DZwDMDVcXeNyr8EJoUTl61pcHxRGLMl129LslI 0nGi2LXnk+AF0D/VHS2Zy+gg41fQY/GqsIa/r7h2kgviO4BdlCPiNqmhf7QplYi0 PyMRAcilvWlTOp77lyUOJnZSdkvPZVvsFzShjzGOFC25s9MUsQrh3rI9P4wVjk3k dhBRbuwjRB/W+7PNgQEafgxHcW7u6gx39TrkunTdutXJsiQYUrX+T6GxmY94YcC5 2WXlcV2gJMl1e6pxrSEQEkHlD8ofhbrkdSmJXZ6H99zkAW46WkmNzOffLQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJyD5jGJq3Upa0BIemM6gYYuu0NmMB8GA1UdIwQY MBaAFJzOOxGX0M+VEVQFcqWP03LcwHSJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbk00N0VaZlF6NVVSVkFWeXBZX1RjdHpBZElrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NC80ZjIzNjctNzNmMy00ODE2LWJlYTgt YTA0NWZmOGUyYWMwLzEvbk00N0VaZlF6NVVSVkFWeXBZX1RjdHpBZElrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83NC80ZjIzNjctNzNmMy00ODE2LWJlYTgtYTA0NWZmOGUyYWMw LzEvbk00N0VaZlF6NVVSVkFWeXBZX1RjdHpBZElrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnOgpDQYZ BERbJNtEiCG3r/BRDDz1EZDFsY+6ZdRC0Xw9FG39R9HcYYcAVtlGXObCBfD0+CaN 0l9mj6quGcOicRljPWfqCPruIiGbkgDdawaTS1D2ay09R4TuQUbX/wGR3hRQy7uk N1wY7KpOj2hkwYpZwLLFlRC/cheun/B6O0TQpJW6RpV43nj4BcsWzZ5Pd197H9P9 9nR+yCh34sLgyx1piPc3AbyQeFaSaFMxHuXFKOwsfPIkNxOYd2OtGCHmNFu4a1Qj C0L1+98GpGyOSmDo44LhJ8r5TkK5B/Z35thj7wyzShnjFWLUIG7lmE2tvzKGQlsF tCmG364Zcm2hEg== -----END CERTIFICATE-----Generated at Fri Dec 12 08:03:44 2025 by rpki-client