This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/bb7c0e-ee68-4bf8-bb34-12e6a0d4318a/1/nzcg6XD6oOB_UKY4nnrlOvpDnas.mft File: nzcg6XD6oOB_UKY4nnrlOvpDnas.mft (raw, json) Hash identifier: AvNVqCKrXfgVUGTxr1HSYrOsZSoOZWy8jvnzFnrVrho= Subject key identifier: CF:66:59:05:98:68:DB:DB:4B:28:FA:C1:C7:FA:C2:BC:EE:12:20:62 Authority key identifier: 9F:37:20:E9:70:FA:A0:E0:7F:50:A6:38:9E:7A:E5:3A:FA:43:9D:AB Certificate issuer: /CN=9f3720e970faa0e07f50a6389e7ae53afa439dab Certificate serial: 019B25BF6CD6B29A0B867B57D151E9E48151 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nzcg6XD6oOB_UKY4nnrlOvpDnas.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/bb7c0e-ee68-4bf8-bb34-12e6a0d4318a/1/nzcg6XD6oOB_UKY4nnrlOvpDnas.mft Manifest number: 1781 Signing time: Tue 16 Dec 2025 06:01:00 +0000 Manifest this update: Tue 16 Dec 2025 06:01:00 +0000 Manifest next update: Wed 17 Dec 2025 06:01:00 +0000 Files and hashes: 1: Etd-zR5nQJ_3oZWsvX_yh9qZs04.roa (hash: Va9UidVPtYR8CQHobQQrWe+S/Z2ABdjjbhF7ggqh2M0=) 2: nzcg6XD6oOB_UKY4nnrlOvpDnas.crl (hash: 3A4Gl35fctJIlDOh+Wj52OHFeVnuLkcAhtxr8ZO2f+c=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/bb7c0e-ee68-4bf8-bb34-12e6a0d4318a/1/nzcg6XD6oOB_UKY4nnrlOvpDnas.crl rsync://rpki.ripe.net/repository/DEFAULT/d0/bb7c0e-ee68-4bf8-bb34-12e6a0d4318a/1/nzcg6XD6oOB_UKY4nnrlOvpDnas.mft rsync://rpki.ripe.net/repository/DEFAULT/nzcg6XD6oOB_UKY4nnrlOvpDnas.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 06:01:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:25:bf:6c:d6:b2:9a:0b:86:7b:57:d1:51:e9:e4:81:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9f3720e970faa0e07f50a6389e7ae53afa439dab Validity Not Before: Dec 16 06:01:00 2025 GMT Not After : Dec 17 06:01:00 2025 GMT Subject: CN=cf6659059868dbdb4b28fac1c7fac2bcee122062 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:e9:49:6f:02:e2:30:5d:e6:dd:f3:c4:14:2f: a1:72:fc:de:16:b5:34:6b:03:e9:ef:b5:4a:9a:60: 9d:18:fa:09:3c:f1:83:ba:de:3d:32:d8:27:f3:83: bd:11:6f:bd:91:51:50:3a:f9:3d:e7:08:65:01:d1: 77:66:63:58:b7:88:bd:fa:18:65:0f:53:22:c9:c1: 65:8c:3c:3b:30:cc:12:7f:12:3b:87:d5:4a:32:20: 7a:6a:33:6b:ff:56:8c:81:b9:87:9c:50:38:50:24: 62:a9:af:8f:2f:bc:e2:07:7c:94:f4:77:37:91:76: 73:3b:e6:c5:91:8b:bd:3c:73:63:13:5e:a7:08:ff: f8:24:9e:e7:e0:a5:c8:aa:d2:12:26:2f:9a:8a:55: ca:65:22:aa:59:02:ca:aa:04:34:c2:a9:d2:94:68: cb:5a:70:0a:60:c7:c4:33:5e:13:2a:33:68:c4:81: d5:3b:de:b9:da:73:27:a2:0f:56:c1:42:f5:43:dc: 1a:d3:86:5d:29:7f:ee:49:fc:8c:a9:77:e7:d6:9c: fd:36:f7:a7:31:e1:ce:19:fd:24:65:36:cc:b0:d0: f1:c1:33:85:7a:bd:9c:31:5e:bb:f6:a3:50:53:8e: 59:05:27:57:ef:08:ab:75:2b:02:4e:4c:30:07:d0: 47:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:66:59:05:98:68:DB:DB:4B:28:FA:C1:C7:FA:C2:BC:EE:12:20:62 X509v3 Authority Key Identifier: keyid:9F:37:20:E9:70:FA:A0:E0:7F:50:A6:38:9E:7A:E5:3A:FA:43:9D:AB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nzcg6XD6oOB_UKY4nnrlOvpDnas.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/bb7c0e-ee68-4bf8-bb34-12e6a0d4318a/1/nzcg6XD6oOB_UKY4nnrlOvpDnas.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/bb7c0e-ee68-4bf8-bb34-12e6a0d4318a/1/nzcg6XD6oOB_UKY4nnrlOvpDnas.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 03:e7:4a:e6:7a:a9:e3:1e:d0:8e:5e:d5:eb:bc:0f:91:47:2a: ba:f5:eb:1c:0e:38:46:6e:37:54:29:ea:94:e0:70:0f:39:75: b6:e6:e3:5f:f2:61:14:a0:55:c8:ee:25:af:70:21:57:bb:84: b7:36:b2:59:59:4c:f0:6c:92:0b:17:77:09:08:7f:64:d0:b2: 4f:10:16:8b:ea:1d:28:3e:a8:fa:cc:2a:ea:c3:79:41:ec:e0: 73:ce:20:11:1b:1b:12:0d:63:55:db:2d:26:3c:e8:7e:de:06: b9:89:2d:67:63:1e:14:3f:0b:d6:36:15:c0:e0:e3:82:87:81: 9f:61:13:87:e1:8b:ef:98:56:88:45:88:8a:18:29:ff:16:0f: 73:a7:f8:65:94:99:93:9f:b5:e8:c9:18:5b:cc:49:ca:ef:49: ff:85:38:05:ce:96:2d:9d:f9:f1:2a:c1:9f:b4:52:7c:43:8e: 0f:2f:d9:50:ef:15:28:ea:de:f7:9d:2a:71:54:4a:e4:85:39: 32:4d:93:8c:c5:ff:f9:89:ac:66:26:da:b2:ac:17:81:77:c3: 91:f8:e0:89:f2:df:3e:20:3e:62:18:2b:de:c8:9a:e8:27:66: 98:a2:2c:7f:ee:03:a8:25:a5:ba:e4:58:34:9d:97:ed:b3:1d: dc:cb:d8:89 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZslv2zWspoLhntX0VHp5IFRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlmMzcyMGU5NzBmYWEwZTA3ZjUwYTYzODllN2FlNTNhZmE0 MzlkYWIwHhcNMjUxMjE2MDYwMTAwWhcNMjUxMjE3MDYwMTAwWjAzMTEwLwYDVQQD EyhjZjY2NTkwNTk4NjhkYmRiNGIyOGZhYzFjN2ZhYzJiY2VlMTIyMDYyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmelJbwLiMF3m3fPEFC+hcvzeFrU0 awPp77VKmmCdGPoJPPGDut49Mtgn84O9EW+9kVFQOvk95whlAdF3ZmNYt4i9+hhl D1MiycFljDw7MMwSfxI7h9VKMiB6ajNr/1aMgbmHnFA4UCRiqa+PL7ziB3yU9Hc3 kXZzO+bFkYu9PHNjE16nCP/4JJ7n4KXIqtISJi+ailXKZSKqWQLKqgQ0wqnSlGjL WnAKYMfEM14TKjNoxIHVO9652nMnog9WwUL1Q9wa04ZdKX/uSfyMqXfn1pz9Nven MeHOGf0kZTbMsNDxwTOFer2cMV679qNQU45ZBSdX7wirdSsCTkwwB9BHxwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFM9mWQWYaNvbSyj6wcf6wrzuEiBiMB8GA1UdIwQY MBaAFJ83IOlw+qDgf1CmOJ565Tr6Q52rMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbnpjZzZYRDZvT0JfVUtZNG5ucmxPdnBEbmFzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC9iYjdjMGUtZWU2OC00YmY4LWJiMzQt MTJlNmEwZDQzMThhLzEvbnpjZzZYRDZvT0JfVUtZNG5ucmxPdnBEbmFzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMC9iYjdjMGUtZWU2OC00YmY4LWJiMzQtMTJlNmEwZDQzMThh LzEvbnpjZzZYRDZvT0JfVUtZNG5ucmxPdnBEbmFzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAA+dK5nqp 4x7Qjl7V67wPkUcquvXrHA44Rm43VCnqlOBwDzl1tubjX/JhFKBVyO4lr3AhV7uE tzayWVlM8GySCxd3CQh/ZNCyTxAWi+odKD6o+swq6sN5Qezgc84gERsbEg1jVdst Jjzoft4GuYktZ2MeFD8L1jYVwODjgoeBn2ETh+GL75hWiEWIihgp/xYPc6f4ZZSZ k5+16MkYW8xJyu9J/4U4Bc6WLZ358SrBn7RSfEOODy/ZUO8VKOre950qcVRK5IU5 Mk2TjMX/+YmsZibasqwXgXfDkfjgifLfPiA+Yhgr3sia6CdmmKIsf+4DqCWluuRY NJ2X7bMd3MvYiQ== -----END CERTIFICATE-----Generated at Tue Dec 16 11:35:48 2025 by rpki-client