This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/Nia55ERl8L1xPAoeBQED05EdzWc.mft File: Nia55ERl8L1xPAoeBQED05EdzWc.mft (raw, json) Hash identifier: rb1oAoj8C7jYp3KtomgG9ZC8WVl6YvRWHw1NXZ/MHA8= Subject key identifier: F6:76:D6:13:4C:71:76:8A:4A:F0:7C:E0:B5:DF:A2:F9:12:48:E4:FD Authority key identifier: 36:26:B9:E4:44:65:F0:BD:71:3C:0A:1E:05:01:03:D3:91:1D:CD:67 Certificate issuer: /CN=3626b9e44465f0bd713c0a1e050103d3911dcd67 Certificate serial: 019B101454F0A508F0D45755DBD409FD1680 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nia55ERl8L1xPAoeBQED05EdzWc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/Nia55ERl8L1xPAoeBQED05EdzWc.mft Manifest number: 0D56 Signing time: Fri 12 Dec 2025 01:02:06 +0000 Manifest this update: Fri 12 Dec 2025 01:02:06 +0000 Manifest next update: Sat 13 Dec 2025 01:02:06 +0000 Files and hashes: 1: Nia55ERl8L1xPAoeBQED05EdzWc.crl (hash: 3rFdyaIOS0A/B2id1+9lxTOftWJpXLmiU1jxE0tOAx8=) 2: ijM-M3pW5i9OPaVJ9z7pdR0nkfo.roa (hash: BaCHQlpNW/709AUvEnmAV++DQu/RFZCpGAAySqc5kGo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/Nia55ERl8L1xPAoeBQED05EdzWc.crl rsync://rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/Nia55ERl8L1xPAoeBQED05EdzWc.mft rsync://rpki.ripe.net/repository/DEFAULT/Nia55ERl8L1xPAoeBQED05EdzWc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 19:27:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:10:14:54:f0:a5:08:f0:d4:57:55:db:d4:09:fd:16:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3626b9e44465f0bd713c0a1e050103d3911dcd67 Validity Not Before: Dec 12 01:02:06 2025 GMT Not After : Dec 13 01:02:06 2025 GMT Subject: CN=f676d6134c71768a4af07ce0b5dfa2f91248e4fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:7a:98:bc:24:a1:bf:27:4f:4b:94:41:b9:fd: c5:90:00:15:f5:7f:2c:bb:b4:7b:9e:4a:64:7b:bc: c1:31:77:7a:cb:69:0e:5e:87:a7:28:43:1d:75:8e: db:47:a2:9d:0b:16:54:77:00:70:93:b4:fc:c0:86: ca:19:b2:56:5e:97:31:01:a7:ff:20:ba:df:4f:45: 52:6a:6e:44:c6:1d:05:c5:82:cf:d7:05:76:dd:c2: 91:e9:66:e5:48:af:52:8e:e3:95:df:5a:55:ee:b6: cb:f5:53:44:4a:bb:b5:32:6f:81:5f:79:bb:77:35: f3:f1:91:33:ce:26:c4:6d:40:2f:bf:05:06:ac:da: b8:db:a6:0c:73:10:95:c3:5b:22:25:87:5b:2f:f0: 7d:cb:18:52:ed:ab:d4:a4:59:5b:81:52:e2:b3:22: 18:e4:3d:05:89:7a:00:64:6c:fe:0c:bb:31:1c:95: 25:6e:63:dc:ee:11:cb:3a:53:9d:3a:a0:47:08:dc: 5d:94:8d:27:0a:d0:53:3a:ce:2d:1d:76:a7:fe:e2: 90:e0:ff:d3:2b:7c:19:77:d9:1d:e6:e4:ab:2f:93: 90:63:db:77:af:00:39:49:70:90:6a:ab:63:83:29: 8b:6e:a6:fc:fc:20:b6:6a:dc:5a:94:bc:29:43:28: b1:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:76:D6:13:4C:71:76:8A:4A:F0:7C:E0:B5:DF:A2:F9:12:48:E4:FD X509v3 Authority Key Identifier: keyid:36:26:B9:E4:44:65:F0:BD:71:3C:0A:1E:05:01:03:D3:91:1D:CD:67 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nia55ERl8L1xPAoeBQED05EdzWc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/Nia55ERl8L1xPAoeBQED05EdzWc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/be/022af5-862c-428e-bee8-28a4681c37d6/1/Nia55ERl8L1xPAoeBQED05EdzWc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 20:06:33:cd:61:a8:14:c8:48:84:95:26:ca:b2:54:40:e5:25: 2d:e7:89:b8:ad:d8:3c:f0:e0:f3:18:3a:10:d5:91:0f:7d:22: c5:f4:b8:27:e2:78:34:e4:1a:f4:37:8a:58:03:9e:8b:e4:72: 53:9f:67:d3:79:80:c5:ca:bb:8e:dd:3c:21:19:5d:17:87:b4: 5c:a0:cc:8b:f4:f1:95:06:21:63:04:16:a0:c2:5d:6a:f7:ba: fa:2d:93:f8:79:74:da:56:da:7d:bf:6f:ac:8f:82:28:94:5f: 54:2c:07:be:43:1d:ad:df:9f:f4:ff:34:5d:9d:6c:76:94:0c: 8c:c2:15:f4:9e:4e:3b:98:da:fe:f7:dd:b8:f9:53:60:53:fe: fd:80:f4:64:93:31:88:a9:ce:bd:18:d5:7a:f6:52:c4:98:f9: f1:bf:a0:42:c9:d8:c5:38:bb:2b:d8:60:b1:22:71:cf:b8:a5: fa:0b:31:32:07:85:cd:07:85:69:1c:20:ce:e9:e7:2c:9a:c3: 90:82:f2:67:9e:83:32:35:5a:1c:bb:01:19:94:0e:f5:3b:7b: b4:56:d9:97:0c:82:7e:35:20:0b:08:07:35:2b:4c:ad:3d:36: 6b:f3:e6:48:d3:7e:c8:39:e7:e5:26:3e:36:4d:af:a9:9c:12: 56:5f:5d:b5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsQFFTwpQjw1FdV29QJ/RaAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM2MjZiOWU0NDQ2NWYwYmQ3MTNjMGExZTA1MDEwM2QzOTEx ZGNkNjcwHhcNMjUxMjEyMDEwMjA2WhcNMjUxMjEzMDEwMjA2WjAzMTEwLwYDVQQD EyhmNjc2ZDYxMzRjNzE3NjhhNGFmMDdjZTBiNWRmYTJmOTEyNDhlNGZkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAynqYvCShvydPS5RBuf3FkAAV9X8s u7R7nkpke7zBMXd6y2kOXoenKEMddY7bR6KdCxZUdwBwk7T8wIbKGbJWXpcxAaf/ ILrfT0VSam5Exh0FxYLP1wV23cKR6WblSK9SjuOV31pV7rbL9VNESru1Mm+BX3m7 dzXz8ZEzzibEbUAvvwUGrNq426YMcxCVw1siJYdbL/B9yxhS7avUpFlbgVLisyIY 5D0FiXoAZGz+DLsxHJUlbmPc7hHLOlOdOqBHCNxdlI0nCtBTOs4tHXan/uKQ4P/T K3wZd9kd5uSrL5OQY9t3rwA5SXCQaqtjgymLbqb8/CC2atxalLwpQyixeQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPZ21hNMcXaKSvB84LXfovkSSOT9MB8GA1UdIwQY MBaAFDYmueREZfC9cTwKHgUBA9ORHc1nMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTmlhNTVFUmw4TDF4UEFvZUJRRUQwNUVkeldjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZS8wMjJhZjUtODYyYy00MjhlLWJlZTgt MjhhNDY4MWMzN2Q2LzEvTmlhNTVFUmw4TDF4UEFvZUJRRUQwNUVkeldjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZS8wMjJhZjUtODYyYy00MjhlLWJlZTgtMjhhNDY4MWMzN2Q2 LzEvTmlhNTVFUmw4TDF4UEFvZUJRRUQwNUVkeldjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIAYzzWGo FMhIhJUmyrJUQOUlLeeJuK3YPPDg8xg6ENWRD30ixfS4J+J4NOQa9DeKWAOei+Ry U59n03mAxcq7jt08IRldF4e0XKDMi/TxlQYhYwQWoMJdave6+i2T+Hl02lbafb9v rI+CKJRfVCwHvkMdrd+f9P80XZ1sdpQMjMIV9J5OO5ja/vfduPlTYFP+/YD0ZJMx iKnOvRjVevZSxJj58b+gQsnYxTi7K9hgsSJxz7il+gsxMgeFzQeFaRwgzunnLJrD kILyZ56DMjVaHLsBGZQO9Tt7tFbZlwyCfjUgCwgHNStMrT02a/PmSNN+yDnn5SY+ Nk2vqZwSVl9dtQ== -----END CERTIFICATE-----Generated at Fri Dec 12 03:42:15 2025 by rpki-client