This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/72a405-1598-4033-8e2b-878507ed46f7/1/NN1AJtKQ8yAdKO9oTTxawTyW7G0.mft File: NN1AJtKQ8yAdKO9oTTxawTyW7G0.mft (raw, json) Hash identifier: V1I1soIK+m7xp/11zB5vY/vORFOpRky8PenSvcITzEs= Subject key identifier: 03:BA:CA:7A:4F:0D:7D:C0:FF:71:96:3E:6F:6F:C3:18:F5:CA:F5:4A Authority key identifier: 34:DD:40:26:D2:90:F3:20:1D:28:EF:68:4D:3C:5A:C1:3C:96:EC:6D Certificate issuer: /CN=34dd4026d290f3201d28ef684d3c5ac13c96ec6d Certificate serial: 019B0E24E66FE918FC2F1A55551661EDA89E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NN1AJtKQ8yAdKO9oTTxawTyW7G0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/72a405-1598-4033-8e2b-878507ed46f7/1/NN1AJtKQ8yAdKO9oTTxawTyW7G0.mft Manifest number: 02BE Signing time: Thu 11 Dec 2025 16:00:57 +0000 Manifest this update: Thu 11 Dec 2025 16:00:57 +0000 Manifest next update: Fri 12 Dec 2025 16:00:57 +0000 Files and hashes: 1: NN1AJtKQ8yAdKO9oTTxawTyW7G0.crl (hash: 1SN7txpruvD0sNMs/Or5cWcajfoP75u4MG6yxoATScM=) 2: NkwYBQBRVrFsj-xUN7Cv_m6lwSA.roa (hash: gjr66sRTq1kait53s7UP3QklI69yHhHqmsXxB/qlKCc=) 3: V4v-VxZ-7OAHRrY5C50VFKZqDnc.roa (hash: 6nRk9oygeeOeb7rjfRo1H5M200eI6zr7Rlb7ujC3GZM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/72a405-1598-4033-8e2b-878507ed46f7/1/NN1AJtKQ8yAdKO9oTTxawTyW7G0.crl rsync://rpki.ripe.net/repository/DEFAULT/a3/72a405-1598-4033-8e2b-878507ed46f7/1/NN1AJtKQ8yAdKO9oTTxawTyW7G0.mft rsync://rpki.ripe.net/repository/DEFAULT/NN1AJtKQ8yAdKO9oTTxawTyW7G0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 14:45:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0e:24:e6:6f:e9:18:fc:2f:1a:55:55:16:61:ed:a8:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=34dd4026d290f3201d28ef684d3c5ac13c96ec6d Validity Not Before: Dec 11 16:00:57 2025 GMT Not After : Dec 12 16:00:57 2025 GMT Subject: CN=03baca7a4f0d7dc0ff71963e6f6fc318f5caf54a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:3c:e7:45:69:de:ca:f6:7c:16:b3:f0:ca:52: cd:80:e2:0d:3e:f7:2e:c4:69:b2:ac:59:3c:3c:15: ac:72:ca:c2:3e:7e:72:a3:34:1f:03:a8:06:52:85: 63:ed:f1:96:2f:c3:91:3e:6f:f3:3c:d1:35:22:69: 48:ca:f5:36:59:c6:7f:1c:11:bf:f9:d9:fe:05:7a: 75:bb:51:8b:94:8d:0c:52:fb:8c:c6:5b:d0:c7:31: f0:34:06:97:1c:74:5e:49:db:74:8e:fb:d7:2e:ec: 4d:4c:a7:7a:c5:6c:59:fd:8c:10:3c:7e:ca:5f:f9: 3f:8f:6f:3f:06:bf:68:51:ed:bb:36:94:56:9f:bc: 82:89:94:b8:01:3d:56:19:91:eb:56:54:65:72:62: ce:90:10:16:dc:d8:b0:f2:91:a0:d6:c2:c6:91:d2: cd:e2:02:23:ed:f0:25:07:14:52:a1:c0:4c:42:67: d7:98:cb:84:3e:fe:c2:48:af:f8:aa:fe:9d:a2:0d: 32:52:e7:fd:96:6e:26:16:e4:0e:d1:bb:df:9b:f1: d2:bd:c5:92:16:00:48:a5:2c:5f:47:c4:68:ab:17: 03:97:a4:98:67:4f:32:64:b5:23:0d:6c:a2:7a:af: 43:a1:92:c5:de:f0:e4:17:3c:16:be:8b:77:c2:d7: e1:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:BA:CA:7A:4F:0D:7D:C0:FF:71:96:3E:6F:6F:C3:18:F5:CA:F5:4A X509v3 Authority Key Identifier: keyid:34:DD:40:26:D2:90:F3:20:1D:28:EF:68:4D:3C:5A:C1:3C:96:EC:6D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NN1AJtKQ8yAdKO9oTTxawTyW7G0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/72a405-1598-4033-8e2b-878507ed46f7/1/NN1AJtKQ8yAdKO9oTTxawTyW7G0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/72a405-1598-4033-8e2b-878507ed46f7/1/NN1AJtKQ8yAdKO9oTTxawTyW7G0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 58:fc:b7:22:23:cd:f9:15:f2:15:f1:2e:91:4e:4b:a2:24:40: 00:2f:4f:9b:e4:ec:4b:48:dd:4b:1f:47:31:7a:4a:de:4d:8d: 06:c1:c0:3d:d0:a0:ac:02:5e:c7:73:9f:3c:3c:9b:97:ff:36: d5:b5:da:6d:68:7e:fc:1b:7f:e5:9a:e7:70:0d:8b:28:4f:4a: 61:4b:ff:2f:b9:12:a6:e2:32:92:21:ed:f7:2a:7d:01:25:a9: a1:4f:b1:2a:3a:e3:62:aa:ea:dd:8f:ac:1f:6f:a9:08:5b:e9: a2:95:ca:cd:d2:26:14:48:77:88:e3:00:d3:9c:c8:26:33:c5: 31:ea:4a:d5:c3:64:96:6e:5e:a0:c1:d6:c1:ea:99:0d:60:57: 18:5f:d7:41:24:df:b0:57:bc:63:74:1e:f4:6a:e3:54:19:48: dc:5a:a1:cd:f0:f7:1b:72:ed:aa:27:1c:40:79:ec:b1:32:7f: 43:0b:1c:bb:91:b8:dc:5d:17:3d:b8:b1:47:38:fb:6e:16:fd: c8:5d:c1:f9:64:95:04:cc:e7:be:d9:b0:98:ee:83:a6:c9:a0: ba:64:85:3e:64:65:41:b2:18:b9:aa:57:b2:e3:ba:e8:17:eb: 1b:f4:e9:80:b1:9d:3f:ca:cf:a2:26:7d:ee:2b:04:55:15:00: 99:e7:52:ea -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsOJOZv6Rj8LxpVVRZh7aieMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM0ZGQ0MDI2ZDI5MGYzMjAxZDI4ZWY2ODRkM2M1YWMxM2M5 NmVjNmQwHhcNMjUxMjExMTYwMDU3WhcNMjUxMjEyMTYwMDU3WjAzMTEwLwYDVQQD EygwM2JhY2E3YTRmMGQ3ZGMwZmY3MTk2M2U2ZjZmYzMxOGY1Y2FmNTRhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4TznRWneyvZ8FrPwylLNgOINPvcu xGmyrFk8PBWscsrCPn5yozQfA6gGUoVj7fGWL8ORPm/zPNE1ImlIyvU2WcZ/HBG/ +dn+BXp1u1GLlI0MUvuMxlvQxzHwNAaXHHReSdt0jvvXLuxNTKd6xWxZ/YwQPH7K X/k/j28/Br9oUe27NpRWn7yCiZS4AT1WGZHrVlRlcmLOkBAW3Niw8pGg1sLGkdLN 4gIj7fAlBxRSocBMQmfXmMuEPv7CSK/4qv6dog0yUuf9lm4mFuQO0bvfm/HSvcWS FgBIpSxfR8RoqxcDl6SYZ08yZLUjDWyieq9DoZLF3vDkFzwWvot3wtfhlwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAO6ynpPDX3A/3GWPm9vwxj1yvVKMB8GA1UdIwQY MBaAFDTdQCbSkPMgHSjvaE08WsE8luxtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTk4xQUp0S1E4eUFkS085b1RUeGF3VHlXN0cwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy83MmE0MDUtMTU5OC00MDMzLThlMmIt ODc4NTA3ZWQ0NmY3LzEvTk4xQUp0S1E4eUFkS085b1RUeGF3VHlXN0cwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMy83MmE0MDUtMTU5OC00MDMzLThlMmItODc4NTA3ZWQ0NmY3 LzEvTk4xQUp0S1E4eUFkS085b1RUeGF3VHlXN0cwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWPy3IiPN +RXyFfEukU5LoiRAAC9Pm+TsS0jdSx9HMXpK3k2NBsHAPdCgrAJex3OfPDybl/82 1bXabWh+/Bt/5ZrncA2LKE9KYUv/L7kSpuIykiHt9yp9ASWpoU+xKjrjYqrq3Y+s H2+pCFvpopXKzdImFEh3iOMA05zIJjPFMepK1cNklm5eoMHWweqZDWBXGF/XQSTf sFe8Y3Qe9GrjVBlI3FqhzfD3G3LtqiccQHnssTJ/Qwscu5G43F0XPbixRzj7bhb9 yF3B+WSVBMznvtmwmO6DpsmgumSFPmRlQbIYuapXsuO66BfrG/TpgLGdP8rPoiZ9 7isEVRUAmedS6g== -----END CERTIFICATE-----Generated at Thu Dec 11 23:13:26 2025 by rpki-client