This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/b35379-2122-4191-8821-c47e18df0371/1/nHPZRT--37gMRUO7Up_DMMH4wc4.mft File: nHPZRT--37gMRUO7Up_DMMH4wc4.mft (raw, json) Hash identifier: 5G0QnguH+m0eK9CZCBicoqcKvr21aCY14gfx9hmDUmo= Subject key identifier: 6F:CD:4B:9B:84:FD:F3:0B:F9:9B:19:94:C5:AE:27:FE:23:71:6F:31 Authority key identifier: 9C:73:D9:45:3F:BE:DF:B8:0C:45:43:BB:52:9F:C3:30:C1:F8:C1:CE Certificate issuer: /CN=9c73d9453fbedfb80c4543bb529fc330c1f8c1ce Certificate serial: 019B299BBAC08A55F8B2B8E3E953394AB976 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nHPZRT--37gMRUO7Up_DMMH4wc4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/b35379-2122-4191-8821-c47e18df0371/1/nHPZRT--37gMRUO7Up_DMMH4wc4.mft Manifest number: 0D36 Signing time: Wed 17 Dec 2025 00:00:30 +0000 Manifest this update: Wed 17 Dec 2025 00:00:30 +0000 Manifest next update: Thu 18 Dec 2025 00:00:30 +0000 Files and hashes: 1: AMTfdcOhvN2UxA7mt3gv3KECuGg.roa (hash: k51GSY+oL6d3vSnVOqR7gGcER+6PBSvBsmHDXYmEq2c=) 2: IZ4_8o0uG1RVAax56_hcAW3WTtc.roa (hash: BLF9NvSAp12xGKGCWF6fmakXoIQEimqM8wkdCYNJdbY=) 3: U3sT87GYwy9D9SgOPVW_RiOktmI.roa (hash: 1ZFvEfBkgKcB/Gz4D0UF4KApAihzQ1ZYW/CMo5SgnsM=) 4: ieAfCh_vwbBTbF3DGBJXQYMx9Pw.roa (hash: N095uXaZbk2Jvru/0oYsrQzeZ/eKCMXo6ETE3DefpcQ=) 5: j4cd6L8tYRDjLejdv94aClKAGXU.roa (hash: WlNinENED4PfFKrXHfbYinzDLlIPfYjUPCjvbvhk+i8=) 6: nHPZRT--37gMRUO7Up_DMMH4wc4.crl (hash: nxMooe1N9VayPBhY/v3/WUrYTIqJpUokZ87E45WNUvI=) 7: xe-87aH9X1grSznD-2-c4OZyYHo.roa (hash: S80ekAfHbqsZOpsBTbZwj0DAL1iEaOufRZ1+nQUXDqE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/b35379-2122-4191-8821-c47e18df0371/1/nHPZRT--37gMRUO7Up_DMMH4wc4.crl rsync://rpki.ripe.net/repository/DEFAULT/b0/b35379-2122-4191-8821-c47e18df0371/1/nHPZRT--37gMRUO7Up_DMMH4wc4.mft rsync://rpki.ripe.net/repository/DEFAULT/nHPZRT--37gMRUO7Up_DMMH4wc4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 00:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:29:9b:ba:c0:8a:55:f8:b2:b8:e3:e9:53:39:4a:b9:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9c73d9453fbedfb80c4543bb529fc330c1f8c1ce Validity Not Before: Dec 17 00:00:30 2025 GMT Not After : Dec 18 00:00:30 2025 GMT Subject: CN=6fcd4b9b84fdf30bf99b1994c5ae27fe23716f31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:e5:1c:44:88:d9:74:eb:80:1e:ac:fa:c0:9f: 76:1a:2b:ec:90:44:21:e2:de:a5:53:72:23:eb:88: db:e9:1b:c3:73:72:d3:6c:83:ec:ed:25:10:8c:69: 4a:96:4a:1e:06:e8:6c:92:f2:59:74:60:8a:05:07: d6:5c:d2:50:b6:f5:14:bf:1e:85:8e:9a:88:7d:80: 2f:66:9c:8a:de:86:71:b2:e5:6b:a9:8e:58:39:02: b7:02:41:be:68:bf:45:c3:41:08:6a:3b:14:9c:52: aa:9c:1f:f3:4f:94:57:d9:37:a2:64:58:69:92:8d: 1d:a5:44:f6:b9:41:ee:c4:8e:74:fd:77:5d:37:61: 26:fa:5e:e0:b3:47:d1:39:89:57:89:fa:37:d1:48: 4b:c0:91:59:ac:34:a4:94:b9:71:94:15:d0:aa:00: ff:08:cd:af:e3:80:f2:91:a8:5a:b4:9f:c9:22:15: f7:b4:46:cf:24:25:6d:da:57:4a:50:2b:78:44:4b: fe:1b:d4:bf:de:40:ec:c9:11:6a:d9:ab:6f:61:c2: 15:42:ad:fd:9f:9d:d6:4f:1d:f3:e4:50:d3:da:d4: a8:47:8e:c8:73:b9:4d:7c:e1:3f:a4:9c:cd:83:10: 48:19:fb:41:0f:87:9c:4d:be:51:79:a6:28:44:f4: f8:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:CD:4B:9B:84:FD:F3:0B:F9:9B:19:94:C5:AE:27:FE:23:71:6F:31 X509v3 Authority Key Identifier: keyid:9C:73:D9:45:3F:BE:DF:B8:0C:45:43:BB:52:9F:C3:30:C1:F8:C1:CE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nHPZRT--37gMRUO7Up_DMMH4wc4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/b35379-2122-4191-8821-c47e18df0371/1/nHPZRT--37gMRUO7Up_DMMH4wc4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/b35379-2122-4191-8821-c47e18df0371/1/nHPZRT--37gMRUO7Up_DMMH4wc4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6c:a3:e7:5a:03:9a:84:d2:2e:82:48:7d:aa:97:78:79:36:80: c5:e6:10:ea:cb:f6:11:57:53:b9:83:d0:97:61:60:c1:24:94: e8:f1:02:5c:dd:bc:bf:f2:b4:37:f2:08:09:e7:98:6d:24:93: 52:3a:06:ac:88:de:ae:58:65:02:63:e4:66:ed:5f:f8:64:a1: 50:8d:ac:91:d2:87:72:4b:9b:ed:62:23:61:96:3f:70:13:42: cc:41:14:b2:31:fd:7b:b0:8d:4f:f6:7e:23:a3:17:4a:b7:d0: 8b:bb:17:17:d3:9d:2d:be:0d:f4:28:24:a1:06:69:f2:68:96: 25:87:be:f4:db:59:78:77:f1:4f:c3:c0:4b:91:56:96:28:3c: 01:40:45:c1:1b:d9:b7:16:1c:28:e1:ce:27:16:6d:93:a0:43: a3:b1:6f:8d:10:bc:8f:11:81:74:c1:65:71:ba:b4:b3:78:20: 64:11:2d:5d:76:e2:4f:df:2c:2f:68:eb:6e:f9:a4:c1:3b:93: 6b:d5:0c:50:f3:db:2b:c5:58:e4:f6:15:2d:24:0b:de:59:c7: 01:72:49:fc:b1:64:f9:b6:88:d0:ce:ba:b7:65:07:65:5f:99: 67:e4:2a:7a:93:c6:e5:07:24:16:55:9e:21:61:08:54:78:3f: cd:d5:84:85 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZspm7rAilX4srjj6VM5Srl2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDljNzNkOTQ1M2ZiZWRmYjgwYzQ1NDNiYjUyOWZjMzMwYzFm OGMxY2UwHhcNMjUxMjE3MDAwMDMwWhcNMjUxMjE4MDAwMDMwWjAzMTEwLwYDVQQD Eyg2ZmNkNGI5Yjg0ZmRmMzBiZjk5YjE5OTRjNWFlMjdmZTIzNzE2ZjMxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsuUcRIjZdOuAHqz6wJ92GivskEQh 4t6lU3Ij64jb6RvDc3LTbIPs7SUQjGlKlkoeBuhskvJZdGCKBQfWXNJQtvUUvx6F jpqIfYAvZpyK3oZxsuVrqY5YOQK3AkG+aL9Fw0EIajsUnFKqnB/zT5RX2TeiZFhp ko0dpUT2uUHuxI50/XddN2Em+l7gs0fROYlXifo30UhLwJFZrDSklLlxlBXQqgD/ CM2v44DykahatJ/JIhX3tEbPJCVt2ldKUCt4REv+G9S/3kDsyRFq2atvYcIVQq39 n53WTx3z5FDT2tSoR47Ic7lNfOE/pJzNgxBIGftBD4ecTb5ReaYoRPT4CQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFG/NS5uE/fML+ZsZlMWuJ/4jcW8xMB8GA1UdIwQY MBaAFJxz2UU/vt+4DEVDu1KfwzDB+MHOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbkhQWlJULS0zN2dNUlVPN1VwX0RNTUg0d2M0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC9iMzUzNzktMjEyMi00MTkxLTg4MjEt YzQ3ZTE4ZGYwMzcxLzEvbkhQWlJULS0zN2dNUlVPN1VwX0RNTUg0d2M0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMC9iMzUzNzktMjEyMi00MTkxLTg4MjEtYzQ3ZTE4ZGYwMzcx LzEvbkhQWlJULS0zN2dNUlVPN1VwX0RNTUg0d2M0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbKPnWgOa hNIugkh9qpd4eTaAxeYQ6sv2EVdTuYPQl2FgwSSU6PECXN28v/K0N/IICeeYbSST UjoGrIjerlhlAmPkZu1f+GShUI2skdKHckub7WIjYZY/cBNCzEEUsjH9e7CNT/Z+ I6MXSrfQi7sXF9OdLb4N9CgkoQZp8miWJYe+9NtZeHfxT8PAS5FWlig8AUBFwRvZ txYcKOHOJxZtk6BDo7FvjRC8jxGBdMFlcbq0s3ggZBEtXXbiT98sL2jrbvmkwTuT a9UMUPPbK8VY5PYVLSQL3lnHAXJJ/LFk+baI0M66t2UHZV+ZZ+QqepPG5QckFlWe IWEIVHg/zdWEhQ== -----END CERTIFICATE-----Generated at Wed Dec 17 10:46:57 2025 by rpki-client