This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/4fd739-1d0d-4753-a845-907796e705da/1/npzXqbifTgVovUoLbCwRzRfn8OE.mft File: npzXqbifTgVovUoLbCwRzRfn8OE.mft (raw, json) Hash identifier: zca8In5zZjP//wNmB8HYbNpmSfBN4L4nM66Va6ayPUQ= Subject key identifier: 18:4E:07:75:97:2F:EE:0E:CB:DB:CE:11:D6:2D:A1:4C:DF:C3:F6:7C Authority key identifier: 9E:9C:D7:A9:B8:9F:4E:05:68:BD:4A:0B:6C:2C:11:CD:17:E7:F0:E1 Certificate issuer: /CN=9e9cd7a9b89f4e0568bd4a0b6c2c11cd17e7f0e1 Certificate serial: 019B59E3E6606C8326F279E44B432A78A10D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npzXqbifTgVovUoLbCwRzRfn8OE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/4fd739-1d0d-4753-a845-907796e705da/1/npzXqbifTgVovUoLbCwRzRfn8OE.mft Manifest number: 0549 Signing time: Fri 26 Dec 2025 09:01:06 +0000 Manifest this update: Fri 26 Dec 2025 09:01:06 +0000 Manifest next update: Sat 27 Dec 2025 09:01:06 +0000 Files and hashes: 1: npzXqbifTgVovUoLbCwRzRfn8OE.crl (hash: mITW/tg6hDin89x5HgxlZ6gawziffIizxSBEPw6tbfw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/4fd739-1d0d-4753-a845-907796e705da/1/npzXqbifTgVovUoLbCwRzRfn8OE.crl rsync://rpki.ripe.net/repository/DEFAULT/c7/4fd739-1d0d-4753-a845-907796e705da/1/npzXqbifTgVovUoLbCwRzRfn8OE.mft rsync://rpki.ripe.net/repository/DEFAULT/npzXqbifTgVovUoLbCwRzRfn8OE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 09:01:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:e3:e6:60:6c:83:26:f2:79:e4:4b:43:2a:78:a1:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9e9cd7a9b89f4e0568bd4a0b6c2c11cd17e7f0e1 Validity Not Before: Dec 26 09:01:06 2025 GMT Not After : Dec 27 09:01:06 2025 GMT Subject: CN=184e0775972fee0ecbdbce11d62da14cdfc3f67c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:81:d3:ba:07:a5:c3:d4:2a:18:dc:f5:60:b7: d1:38:68:f3:3f:06:32:37:cc:11:51:42:d8:07:08: b2:85:a4:59:de:91:64:d1:2f:55:c8:87:d0:75:bf: 1a:df:14:51:22:f7:83:a6:40:7b:52:32:40:93:30: cd:2e:f4:54:c8:c6:b6:e7:02:e2:87:3c:83:85:1f: 61:76:2e:dc:be:a3:12:e8:aa:35:2a:25:13:77:f4: 31:d0:d5:95:3f:87:bd:53:e5:6c:4b:fd:72:1d:77: ea:d8:c5:ca:65:52:c2:e1:53:66:4b:18:f7:b7:2d: e0:56:29:b5:f0:e2:e3:c9:89:e2:5c:81:fa:92:15: 69:00:7b:48:4d:8f:ce:d9:67:df:c2:52:a6:e9:f9: fe:64:58:46:94:2b:e7:91:36:a5:b9:e8:6d:a9:14: 2e:ac:cc:be:61:be:81:6f:fd:0b:95:4a:d1:2a:ef: 55:a8:76:b2:3b:c1:d9:7f:8d:9a:40:a4:ce:bb:0d: f5:b3:53:b0:33:a9:c6:71:03:d7:1b:83:31:04:4d: b6:90:c1:bc:7b:5b:21:ee:5b:21:95:c8:00:d1:51: 08:e1:d5:9a:d3:63:41:3b:67:05:ea:98:b0:6d:73: fd:ac:b9:29:af:a0:fb:b2:a1:e0:1c:9f:09:ee:b1: c1:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:4E:07:75:97:2F:EE:0E:CB:DB:CE:11:D6:2D:A1:4C:DF:C3:F6:7C X509v3 Authority Key Identifier: keyid:9E:9C:D7:A9:B8:9F:4E:05:68:BD:4A:0B:6C:2C:11:CD:17:E7:F0:E1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npzXqbifTgVovUoLbCwRzRfn8OE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/4fd739-1d0d-4753-a845-907796e705da/1/npzXqbifTgVovUoLbCwRzRfn8OE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/4fd739-1d0d-4753-a845-907796e705da/1/npzXqbifTgVovUoLbCwRzRfn8OE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 62:0c:14:be:65:47:f1:77:95:a5:82:04:a0:44:95:a2:cb:f2: db:35:35:a9:bd:f6:97:5a:38:0d:f2:b3:16:ae:f8:6e:76:94: e9:92:3f:63:27:29:ac:b1:16:f3:86:9b:61:d9:8e:8a:75:91: 04:46:79:57:6f:f9:5e:87:75:c2:a9:ee:dc:49:bf:b3:d7:4f: 96:8d:fd:83:91:61:54:32:3b:1f:21:33:8f:7d:4c:e4:26:1b: f8:91:21:98:4f:79:eb:84:30:cb:df:f4:46:a5:be:de:e8:99: b6:cc:29:ab:cb:87:d6:82:da:51:2b:e4:5e:2d:05:99:44:e5: cf:d3:35:ed:eb:89:3a:9f:fe:d9:fe:d6:29:66:62:88:21:af: d4:bc:b0:ac:9a:6f:e1:8a:fd:f2:86:5d:7a:b7:45:c9:95:c2: 7b:3e:de:5b:a7:79:f4:b9:24:bb:ed:9d:9b:60:95:fd:6f:e0: 6a:7b:b4:ec:94:ed:dc:5d:3d:f6:34:18:3c:14:3f:ca:ee:b7: 63:dc:43:ba:10:9f:55:f0:91:4e:61:a5:0e:c2:45:0c:b3:45: 7c:24:2c:21:3c:0d:3f:45:cf:68:8d:5e:7b:1b:f6:05:b2:db: 3c:c9:a9:f1:0c:c7:da:bd:f5:9b:65:cb:3d:68:c7:73:b7:d2: 23:d6:7c:8c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZ4+ZgbIMm8nnkS0MqeKENMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDllOWNkN2E5Yjg5ZjRlMDU2OGJkNGEwYjZjMmMxMWNkMTdl N2YwZTEwHhcNMjUxMjI2MDkwMTA2WhcNMjUxMjI3MDkwMTA2WjAzMTEwLwYDVQQD EygxODRlMDc3NTk3MmZlZTBlY2JkYmNlMTFkNjJkYTE0Y2RmYzNmNjdjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArIHTugelw9QqGNz1YLfROGjzPwYy N8wRUULYBwiyhaRZ3pFk0S9VyIfQdb8a3xRRIveDpkB7UjJAkzDNLvRUyMa25wLi hzyDhR9hdi7cvqMS6Ko1KiUTd/Qx0NWVP4e9U+VsS/1yHXfq2MXKZVLC4VNmSxj3 ty3gVim18OLjyYniXIH6khVpAHtITY/O2WffwlKm6fn+ZFhGlCvnkTaluehtqRQu rMy+Yb6Bb/0LlUrRKu9VqHayO8HZf42aQKTOuw31s1OwM6nGcQPXG4MxBE22kMG8 e1sh7lshlcgA0VEI4dWa02NBO2cF6piwbXP9rLkpr6D7sqHgHJ8J7rHBqwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBhOB3WXL+4Oy9vOEdYtoUzfw/Z8MB8GA1UdIwQY MBaAFJ6c16m4n04FaL1KC2wsEc0X5/DhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbnB6WHFiaWZUZ1ZvdlVvTGJDd1J6UmZuOE9FLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy80ZmQ3MzktMWQwZC00NzUzLWE4NDUt OTA3Nzk2ZTcwNWRhLzEvbnB6WHFiaWZUZ1ZvdlVvTGJDd1J6UmZuOE9FLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNy80ZmQ3MzktMWQwZC00NzUzLWE4NDUtOTA3Nzk2ZTcwNWRh LzEvbnB6WHFiaWZUZ1ZvdlVvTGJDd1J6UmZuOE9FLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYgwUvmVH 8XeVpYIEoESVosvy2zU1qb32l1o4DfKzFq74bnaU6ZI/YycprLEW84abYdmOinWR BEZ5V2/5Xod1wqnu3Em/s9dPlo39g5FhVDI7HyEzj31M5CYb+JEhmE9564Qwy9/0 RqW+3uiZtswpq8uH1oLaUSvkXi0FmUTlz9M17euJOp/+2f7WKWZiiCGv1LywrJpv 4Yr98oZderdFyZXCez7eW6d59Lkku+2dm2CV/W/ganu07JTt3F099jQYPBQ/yu63 Y9xDuhCfVfCRTmGlDsJFDLNFfCQsITwNP0XPaI1eexv2BbLbPMmp8QzH2r31m2XL PWjHc7fSI9Z8jA== -----END CERTIFICATE-----Generated at Fri Dec 26 16:03:55 2025 by rpki-client