This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/0a4564-a525-4615-9a3a-8930ebb83e31/1/niX4djqjUWiba6M2JpqyHE4BILM.mft File: niX4djqjUWiba6M2JpqyHE4BILM.mft (raw, json) Hash identifier: SFrM/kVkJidPnO07vgvS3ghEwMEhbtLHoqK+zK9Fhn4= Subject key identifier: 8B:54:93:CA:68:9C:9F:E4:C9:71:DD:68:84:5B:41:62:30:97:5E:F4 Authority key identifier: 9E:25:F8:76:3A:A3:51:68:9B:6B:A3:36:26:9A:B2:1C:4E:01:20:B3 Certificate issuer: /CN=9e25f8763aa351689b6ba336269ab21c4e0120b3 Certificate serial: 019B59E38DA497CC081C6D69560E5899696E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/niX4djqjUWiba6M2JpqyHE4BILM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/0a4564-a525-4615-9a3a-8930ebb83e31/1/niX4djqjUWiba6M2JpqyHE4BILM.mft Manifest number: 05BB Signing time: Fri 26 Dec 2025 09:00:43 +0000 Manifest this update: Fri 26 Dec 2025 09:00:43 +0000 Manifest next update: Sat 27 Dec 2025 09:00:43 +0000 Files and hashes: 1: 3lv0MS0KMvs2NqTlqtd3HvxtHfA.roa (hash: Jn8Yd6x4goPshXFFHZFFSl5WpHb8SXFgvxZ7Lsgfvu4=) 2: niX4djqjUWiba6M2JpqyHE4BILM.crl (hash: sbae2To1NYcEfcEnwCKzmnRpYebYRaZLTRQtQkLiDeM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/0a4564-a525-4615-9a3a-8930ebb83e31/1/niX4djqjUWiba6M2JpqyHE4BILM.crl rsync://rpki.ripe.net/repository/DEFAULT/81/0a4564-a525-4615-9a3a-8930ebb83e31/1/niX4djqjUWiba6M2JpqyHE4BILM.mft rsync://rpki.ripe.net/repository/DEFAULT/niX4djqjUWiba6M2JpqyHE4BILM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:e3:8d:a4:97:cc:08:1c:6d:69:56:0e:58:99:69:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9e25f8763aa351689b6ba336269ab21c4e0120b3 Validity Not Before: Dec 26 09:00:43 2025 GMT Not After : Dec 27 09:00:43 2025 GMT Subject: CN=8b5493ca689c9fe4c971dd68845b416230975ef4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:0a:f7:5a:b8:56:4f:8f:ac:eb:f0:29:c3:c9: b1:41:3a:23:c2:ca:59:61:b9:88:49:ca:b6:2a:b7: ac:bd:18:b5:be:56:d4:02:6d:47:4a:63:c9:3f:43: c5:b3:d6:99:e0:44:a8:14:57:0c:2f:a9:1f:94:ad: 38:84:ff:0a:d6:3e:b6:3a:f3:a6:01:5e:15:b4:2c: 0c:c1:34:b2:24:65:93:26:d1:f2:da:fd:95:3b:d9: 74:b5:fc:d3:76:e4:b8:11:d1:2d:d6:88:b5:56:39: 53:f9:bb:d2:c5:9b:c4:5c:5b:98:95:61:d7:43:62: 15:18:ae:7f:b7:9b:7e:86:70:37:7e:be:35:6c:a2: a2:c0:80:f2:4b:ef:37:65:b4:cf:cb:c3:3a:26:d6: 3e:9d:5c:e8:c3:1a:05:71:a7:9c:11:b4:0e:ae:4e: 45:7a:83:1a:0d:b9:16:9e:32:ff:c6:0c:f1:06:84: df:4c:3d:2b:70:81:7a:51:9d:0e:f9:ff:6a:8c:f7: 4a:b7:a5:af:3e:cc:40:93:17:ee:5c:f5:12:92:a4: a3:fc:e9:cb:35:68:4e:7d:a5:8b:9b:e7:4c:72:49: 28:67:13:1d:b2:f3:ef:8c:c5:6a:52:8f:5f:6b:fd: 4b:86:68:0b:b5:11:6a:5e:00:58:61:65:68:04:af: e6:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:54:93:CA:68:9C:9F:E4:C9:71:DD:68:84:5B:41:62:30:97:5E:F4 X509v3 Authority Key Identifier: keyid:9E:25:F8:76:3A:A3:51:68:9B:6B:A3:36:26:9A:B2:1C:4E:01:20:B3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/niX4djqjUWiba6M2JpqyHE4BILM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/0a4564-a525-4615-9a3a-8930ebb83e31/1/niX4djqjUWiba6M2JpqyHE4BILM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/81/0a4564-a525-4615-9a3a-8930ebb83e31/1/niX4djqjUWiba6M2JpqyHE4BILM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a8:e0:ad:a0:05:bd:fd:1c:a1:6a:3c:14:de:b3:6e:3d:b4:6a: bd:cb:fb:a2:39:00:5f:f8:d3:8d:33:2d:6c:01:a4:c9:cc:48: 94:1b:5b:1b:20:28:fa:7e:b5:2a:c6:20:09:7e:c4:67:22:03: c5:5d:e9:9a:62:71:61:4d:39:dc:21:ad:12:9c:c2:95:1a:d8: 91:d0:ff:3b:1f:d8:c7:dc:8b:fd:0e:9c:8e:86:d3:bd:09:7c: 1b:85:ad:fb:f1:b4:40:cd:2d:81:4f:9d:8a:87:b9:1c:71:77: ce:5e:4f:b9:ad:5d:7b:6e:5c:50:19:b2:01:3b:d0:48:c7:ff: 64:cc:1c:fc:2d:bd:28:18:20:4e:a9:7d:6f:b2:00:92:f2:b5: 85:1a:d4:d8:a5:48:06:dd:8f:ec:b5:ee:77:ce:e6:8d:52:ca: 31:fa:58:ef:7c:10:fc:1e:09:73:06:cc:79:e5:09:1a:6a:52: 09:96:4e:76:33:44:5a:a4:91:d4:26:87:93:19:04:7d:20:71: 4b:e1:19:54:2d:d6:d1:fc:10:fd:32:71:db:76:b9:7a:d7:e3: d8:78:aa:f1:ad:85:12:94:39:97:81:de:de:1d:6c:60:a8:72: 2d:63:10:94:80:5f:1c:8d:0d:9e:43:5b:1f:a9:31:50:16:d3: 20:0c:5a:1a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZ442kl8wIHG1pVg5YmWluMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDllMjVmODc2M2FhMzUxNjg5YjZiYTMzNjI2OWFiMjFjNGUw MTIwYjMwHhcNMjUxMjI2MDkwMDQzWhcNMjUxMjI3MDkwMDQzWjAzMTEwLwYDVQQD Eyg4YjU0OTNjYTY4OWM5ZmU0Yzk3MWRkNjg4NDViNDE2MjMwOTc1ZWY0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAygr3WrhWT4+s6/Apw8mxQTojwspZ YbmIScq2KresvRi1vlbUAm1HSmPJP0PFs9aZ4ESoFFcML6kflK04hP8K1j62OvOm AV4VtCwMwTSyJGWTJtHy2v2VO9l0tfzTduS4EdEt1oi1VjlT+bvSxZvEXFuYlWHX Q2IVGK5/t5t+hnA3fr41bKKiwIDyS+83ZbTPy8M6JtY+nVzowxoFcaecEbQOrk5F eoMaDbkWnjL/xgzxBoTfTD0rcIF6UZ0O+f9qjPdKt6WvPsxAkxfuXPUSkqSj/OnL NWhOfaWLm+dMckkoZxMdsvPvjMVqUo9fa/1LhmgLtRFqXgBYYWVoBK/m7QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFItUk8ponJ/kyXHdaIRbQWIwl170MB8GA1UdIwQY MBaAFJ4l+HY6o1Fom2ujNiaashxOASCzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbmlYNGRqcWpVV2liYTZNMkpwcXlIRTRCSUxNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MS8wYTQ1NjQtYTUyNS00NjE1LTlhM2Et ODkzMGViYjgzZTMxLzEvbmlYNGRqcWpVV2liYTZNMkpwcXlIRTRCSUxNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84MS8wYTQ1NjQtYTUyNS00NjE1LTlhM2EtODkzMGViYjgzZTMx LzEvbmlYNGRqcWpVV2liYTZNMkpwcXlIRTRCSUxNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqOCtoAW9 /RyhajwU3rNuPbRqvcv7ojkAX/jTjTMtbAGkycxIlBtbGyAo+n61KsYgCX7EZyID xV3pmmJxYU053CGtEpzClRrYkdD/Ox/Yx9yL/Q6cjobTvQl8G4Wt+/G0QM0tgU+d ioe5HHF3zl5Pua1de25cUBmyATvQSMf/ZMwc/C29KBggTql9b7IAkvK1hRrU2KVI Bt2P7LXud87mjVLKMfpY73wQ/B4JcwbMeeUJGmpSCZZOdjNEWqSR1CaHkxkEfSBx S+EZVC3W0fwQ/TJx23a5etfj2Hiq8a2FEpQ5l4He3h1sYKhyLWMQlIBfHI0NnkNb H6kxUBbTIAxaGg== -----END CERTIFICATE-----Generated at Fri Dec 26 16:03:47 2025 by rpki-client