This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.mft File: nB7k05z6obOseZwX94grjOTigSA.mft (raw, json) Hash identifier: wqfr9jDphi6t/B7/2WJZxlNbLzVyhuD8cZF5ls+c8mE= Subject key identifier: 34:0F:57:6D:7A:70:46:C7:24:A0:91:43:00:24:2E:1E:A8:46:98:7B Authority key identifier: 9C:1E:E4:D3:9C:FA:A1:B3:AC:79:9C:17:F7:88:2B:8C:E4:E2:81:20 Certificate issuer: /CN=9c1ee4d39cfaa1b3ac799c17f7882b8ce4e28120 Certificate serial: 019B3CEC51FD107A18CA7273E8FC46F2CDD2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nB7k05z6obOseZwX94grjOTigSA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.mft Manifest number: 0A3B Signing time: Sat 20 Dec 2025 18:01:18 +0000 Manifest this update: Sat 20 Dec 2025 18:01:18 +0000 Manifest next update: Sun 21 Dec 2025 18:01:18 +0000 Files and hashes: 1: egM_lo5hkg5KA7_uP-5h7pmD4BM.roa (hash: LWEk9cOjEXdGtew0n3bgwHhe3Zn8McfotK81AHI+3M0=) 2: nB7k05z6obOseZwX94grjOTigSA.crl (hash: 6tcTQfGvuXQF8VLgC/xzhUD1wK58K/4S3YZVKeoJu+0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.crl rsync://rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.mft rsync://rpki.ripe.net/repository/DEFAULT/nB7k05z6obOseZwX94grjOTigSA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 15:46:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3c:ec:51:fd:10:7a:18:ca:72:73:e8:fc:46:f2:cd:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9c1ee4d39cfaa1b3ac799c17f7882b8ce4e28120 Validity Not Before: Dec 20 18:01:18 2025 GMT Not After : Dec 21 18:01:18 2025 GMT Subject: CN=340f576d7a7046c724a0914300242e1ea846987b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:fe:a3:0e:ad:93:b0:2f:f2:04:9b:33:9a:ec: 8d:3c:6f:3f:b6:31:5d:f7:c7:1a:c5:c5:ea:30:cf: 96:c1:bf:b8:75:a7:31:91:7a:2d:bb:09:ee:d6:2c: 5f:a8:85:99:bb:db:0b:17:3b:64:a3:c6:bf:e6:a1: c7:4b:db:5a:6e:15:8b:fb:a0:5f:5b:5f:61:94:12: b7:20:3e:85:cf:41:c7:0a:65:02:f2:89:d7:44:8b: d9:2b:3a:b9:87:ba:b1:f9:91:4f:61:07:f4:b1:b9: 7b:24:1c:5e:f8:a3:da:a1:e5:5b:09:55:15:cd:91: 5e:dd:e0:63:e0:5d:7e:2c:d7:4c:a0:85:d7:7c:9c: b2:8a:31:28:55:93:a0:30:4c:6c:4e:5c:cd:8f:96: ee:d3:19:e9:49:07:e5:0a:12:dd:93:c5:25:66:a4: ef:24:22:62:02:ff:ad:bb:7a:1e:86:95:10:df:e6: 65:4f:55:e1:93:a8:d7:e7:30:d4:69:98:3c:a8:89: b5:51:9d:06:48:30:a8:3b:06:84:fe:08:58:3c:49: c0:37:8a:07:af:64:87:c6:64:47:7c:fc:46:03:74: b9:81:35:47:f6:5c:21:af:e7:bb:5e:a5:23:6f:04: f0:09:fd:40:18:20:b7:80:73:c2:46:ef:2f:89:d1: 90:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:0F:57:6D:7A:70:46:C7:24:A0:91:43:00:24:2E:1E:A8:46:98:7B X509v3 Authority Key Identifier: keyid:9C:1E:E4:D3:9C:FA:A1:B3:AC:79:9C:17:F7:88:2B:8C:E4:E2:81:20 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nB7k05z6obOseZwX94grjOTigSA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4e:37:e8:cd:97:e5:f3:1d:60:24:1c:d7:22:ef:fb:dd:b5:19: ad:f5:18:f8:a7:04:d8:cc:70:da:c9:29:eb:e0:fe:6f:c6:58: ac:e7:70:6d:9f:1b:94:da:e1:90:4f:16:09:d6:53:45:81:59: 57:e8:35:3f:51:a0:8b:ab:60:61:e2:f6:bd:0d:5a:ba:a7:47: 1c:bd:7e:fb:18:e8:a4:c6:11:8f:7c:a8:d4:84:13:b9:0e:89: ed:81:7c:74:b9:88:71:2d:0d:7f:50:36:a1:4b:55:84:2e:c7: fa:82:d2:b1:cc:8e:43:8d:2d:74:e5:82:9d:95:01:cf:21:b8: a0:c9:20:95:a5:81:19:d0:aa:1e:81:24:76:77:29:84:4b:5e: 4b:9d:51:13:f0:a1:7a:05:fb:e0:18:ab:a8:eb:ee:49:89:cf: 64:ec:ea:47:38:ad:e9:b8:61:ac:ca:d8:f1:ae:bd:79:fc:ea: 56:f0:77:82:77:72:1a:1d:ea:41:4b:b3:1e:95:16:4e:d1:bc: 67:87:41:c0:6f:d0:04:71:08:d7:96:8d:88:6a:db:06:27:5c: 91:42:ad:21:ff:a7:26:0c:e2:13:8d:3c:1d:65:cb:ec:1c:3d: 5d:bb:ad:37:9c:65:3c:7c:57:b8:a6:56:5c:79:2b:85:6f:79: be:35:d9:ac -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs87FH9EHoYynJz6PxG8s3SMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDljMWVlNGQzOWNmYWExYjNhYzc5OWMxN2Y3ODgyYjhjZTRl MjgxMjAwHhcNMjUxMjIwMTgwMTE4WhcNMjUxMjIxMTgwMTE4WjAzMTEwLwYDVQQD EygzNDBmNTc2ZDdhNzA0NmM3MjRhMDkxNDMwMDI0MmUxZWE4NDY5ODdiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqf6jDq2TsC/yBJszmuyNPG8/tjFd 98caxcXqMM+Wwb+4dacxkXotuwnu1ixfqIWZu9sLFztko8a/5qHHS9tabhWL+6Bf W19hlBK3ID6Fz0HHCmUC8onXRIvZKzq5h7qx+ZFPYQf0sbl7JBxe+KPaoeVbCVUV zZFe3eBj4F1+LNdMoIXXfJyyijEoVZOgMExsTlzNj5bu0xnpSQflChLdk8UlZqTv JCJiAv+tu3oehpUQ3+ZlT1Xhk6jX5zDUaZg8qIm1UZ0GSDCoOwaE/ghYPEnAN4oH r2SHxmRHfPxGA3S5gTVH9lwhr+e7XqUjbwTwCf1AGCC3gHPCRu8vidGQOwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDQPV216cEbHJKCRQwAkLh6oRph7MB8GA1UdIwQY MBaAFJwe5NOc+qGzrHmcF/eIK4zk4oEgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbkI3azA1ejZvYk9zZVp3WDk0Z3JqT1RpZ1NBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYi9iYjk3ZDktN2I4MS00NDlmLTkwNjAt YmQ0NjVjZTcxMWJiLzEvbkI3azA1ejZvYk9zZVp3WDk0Z3JqT1RpZ1NBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYi9iYjk3ZDktN2I4MS00NDlmLTkwNjAtYmQ0NjVjZTcxMWJi LzEvbkI3azA1ejZvYk9zZVp3WDk0Z3JqT1RpZ1NBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATjfozZfl 8x1gJBzXIu/73bUZrfUY+KcE2Mxw2skp6+D+b8ZYrOdwbZ8blNrhkE8WCdZTRYFZ V+g1P1Ggi6tgYeL2vQ1auqdHHL1++xjopMYRj3yo1IQTuQ6J7YF8dLmIcS0Nf1A2 oUtVhC7H+oLSscyOQ40tdOWCnZUBzyG4oMkglaWBGdCqHoEkdncphEteS51RE/Ch egX74BirqOvuSYnPZOzqRzit6bhhrMrY8a69efzqVvB3gndyGh3qQUuzHpUWTtG8 Z4dBwG/QBHEI15aNiGrbBidckUKtIf+nJgziE408HWXL7Bw9XbutN5xlPHxXuKZW XHkrhW95vjXZrA== -----END CERTIFICATE-----Generated at Sun Dec 21 00:58:04 2025 by rpki-client