This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/0f0a01-0cc4-4efc-9dd5-801ef38dea9c/1/NgHDzOanHKshpLut8KuE3ePyurI.mft File: NgHDzOanHKshpLut8KuE3ePyurI.mft (raw, json) Hash identifier: 57veUSb3y1oQ+Kk1t+zW9Orvv0mvpm9IkzG/zQK/qno= Subject key identifier: 8D:45:53:B4:40:17:31:7D:9D:69:30:08:5E:DF:28:AF:BD:AB:21:AC Authority key identifier: 36:01:C3:CC:E6:A7:1C:AB:21:A4:BB:AD:F0:AB:84:DD:E3:F2:BA:B2 Certificate issuer: /CN=3601c3cce6a71cab21a4bbadf0ab84dde3f2bab2 Certificate serial: 019B5976527CF4B7282ED799E29066363823 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NgHDzOanHKshpLut8KuE3ePyurI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/0f0a01-0cc4-4efc-9dd5-801ef38dea9c/1/NgHDzOanHKshpLut8KuE3ePyurI.mft Manifest number: 179A Signing time: Fri 26 Dec 2025 07:01:25 +0000 Manifest this update: Fri 26 Dec 2025 07:01:25 +0000 Manifest next update: Sat 27 Dec 2025 07:01:25 +0000 Files and hashes: 1: Mk7YYF4o9LB74wKwKgBbcKzvyH8.roa (hash: OCqXIpcMD6jOp7DHnSx2liWfa4cjdFDkG92oQWOUUNo=) 2: NgHDzOanHKshpLut8KuE3ePyurI.crl (hash: ++0t9bX3MkRowopgv3P2MHVOc58OGzK/LxHV/gHfdPE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/0f0a01-0cc4-4efc-9dd5-801ef38dea9c/1/NgHDzOanHKshpLut8KuE3ePyurI.crl rsync://rpki.ripe.net/repository/DEFAULT/f1/0f0a01-0cc4-4efc-9dd5-801ef38dea9c/1/NgHDzOanHKshpLut8KuE3ePyurI.mft rsync://rpki.ripe.net/repository/DEFAULT/NgHDzOanHKshpLut8KuE3ePyurI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:76:52:7c:f4:b7:28:2e:d7:99:e2:90:66:36:38:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3601c3cce6a71cab21a4bbadf0ab84dde3f2bab2 Validity Not Before: Dec 26 07:01:25 2025 GMT Not After : Dec 27 07:01:25 2025 GMT Subject: CN=8d4553b44017317d9d6930085edf28afbdab21ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:2a:8f:b5:8e:dc:06:49:bf:f9:93:33:82:0b: a6:71:51:11:90:23:66:0f:e7:2c:3b:b6:62:ed:97: 20:fd:98:7e:11:65:8a:1f:b2:1e:af:ac:cf:c5:34: 90:26:37:a9:bd:b9:89:db:74:19:76:5c:2f:6a:c3: 09:de:e1:b8:fe:19:c4:54:36:df:c2:24:b9:84:f2: 5f:79:59:5a:88:13:09:a1:b6:eb:f1:2d:5d:a8:f2: 57:25:42:4c:72:92:6b:0d:e4:42:a6:0d:c9:30:63: fa:ef:17:fc:a2:41:14:d1:1d:94:17:fb:bc:58:3e: 9d:19:5d:c4:cb:21:39:67:c2:3d:df:89:a3:62:02: 7f:f0:56:98:c1:40:bd:cb:17:55:10:fd:62:3d:19: 3f:76:b2:7f:f9:9d:42:ac:03:6f:e0:b7:50:6b:eb: 93:0f:bb:6a:c4:47:63:09:47:2f:c6:83:d2:f9:55: 2e:a9:84:4c:e4:b4:d3:8f:04:52:94:f6:ca:09:f6: 79:6c:5a:cb:cf:15:d6:0b:d6:b3:f1:23:e9:ee:6b: e8:0b:47:82:5c:ca:52:21:d1:6d:88:fb:61:8d:b8: 9f:ba:ac:47:e5:a7:b8:89:36:74:75:1c:8a:e1:b0: dc:65:b6:bf:f5:4a:84:2a:38:47:37:12:cf:29:7e: 7d:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:45:53:B4:40:17:31:7D:9D:69:30:08:5E:DF:28:AF:BD:AB:21:AC X509v3 Authority Key Identifier: keyid:36:01:C3:CC:E6:A7:1C:AB:21:A4:BB:AD:F0:AB:84:DD:E3:F2:BA:B2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NgHDzOanHKshpLut8KuE3ePyurI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/0f0a01-0cc4-4efc-9dd5-801ef38dea9c/1/NgHDzOanHKshpLut8KuE3ePyurI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/0f0a01-0cc4-4efc-9dd5-801ef38dea9c/1/NgHDzOanHKshpLut8KuE3ePyurI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4c:9c:b2:39:ed:d0:57:82:d7:46:e5:f9:41:c1:12:87:fa:6c: fb:25:82:2c:9e:d3:ea:2f:d8:9c:51:2d:de:ae:9a:74:1c:78: d9:e3:3a:de:b1:5d:40:13:53:ed:5b:0d:58:cc:10:cf:8b:c2: bf:18:35:f7:fd:fd:de:cb:a0:9f:67:68:86:f7:ff:7f:ab:8f: 1d:a3:05:a7:71:69:7a:a8:03:18:1c:47:14:8b:5d:52:3c:54: 52:2a:90:21:15:b0:ab:45:98:60:31:b2:a0:ab:83:35:76:42: 10:b4:9f:4e:37:d8:71:f5:f8:ca:b0:10:95:4e:ba:ce:77:4f: 15:ef:f3:3f:6d:6e:79:fa:0c:b5:75:f5:9d:5a:83:83:09:52: 63:a4:23:b1:bf:43:53:62:38:81:11:ef:3c:0d:41:0e:bd:2c: e6:20:9d:5a:cf:f6:13:9b:1f:8c:37:1b:7c:a2:3c:0f:ea:77: 61:e3:a9:97:bf:40:11:6c:74:eb:4b:b8:21:74:cd:21:fd:82: c9:2b:65:f2:de:43:86:b0:6a:6c:d9:b8:d8:ec:bf:32:bd:b7: 7e:e2:fe:b0:d7:81:f4:a4:b2:b2:4c:72:bf:54:0c:bc:57:32: 1a:1e:b4:96:0a:b9:17:6e:25:40:e0:7e:eb:6b:ba:e1:26:90: 20:d9:63:42 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZdlJ89LcoLteZ4pBmNjgjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM2MDFjM2NjZTZhNzFjYWIyMWE0YmJhZGYwYWI4NGRkZTNm MmJhYjIwHhcNMjUxMjI2MDcwMTI1WhcNMjUxMjI3MDcwMTI1WjAzMTEwLwYDVQQD Eyg4ZDQ1NTNiNDQwMTczMTdkOWQ2OTMwMDg1ZWRmMjhhZmJkYWIyMWFjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0SqPtY7cBkm/+ZMzggumcVERkCNm D+csO7Zi7Zcg/Zh+EWWKH7Ier6zPxTSQJjepvbmJ23QZdlwvasMJ3uG4/hnEVDbf wiS5hPJfeVlaiBMJobbr8S1dqPJXJUJMcpJrDeRCpg3JMGP67xf8okEU0R2UF/u8 WD6dGV3EyyE5Z8I934mjYgJ/8FaYwUC9yxdVEP1iPRk/drJ/+Z1CrANv4LdQa+uT D7tqxEdjCUcvxoPS+VUuqYRM5LTTjwRSlPbKCfZ5bFrLzxXWC9az8SPp7mvoC0eC XMpSIdFtiPthjbifuqxH5ae4iTZ0dRyK4bDcZba/9UqEKjhHNxLPKX597QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFI1FU7RAFzF9nWkwCF7fKK+9qyGsMB8GA1UdIwQY MBaAFDYBw8zmpxyrIaS7rfCrhN3j8rqyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTmdIRHpPYW5IS3NocEx1dDhLdUUzZVB5dXJJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMS8wZjBhMDEtMGNjNC00ZWZjLTlkZDUt ODAxZWYzOGRlYTljLzEvTmdIRHpPYW5IS3NocEx1dDhLdUUzZVB5dXJJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMS8wZjBhMDEtMGNjNC00ZWZjLTlkZDUtODAxZWYzOGRlYTlj LzEvTmdIRHpPYW5IS3NocEx1dDhLdUUzZVB5dXJJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATJyyOe3Q V4LXRuX5QcESh/ps+yWCLJ7T6i/YnFEt3q6adBx42eM63rFdQBNT7VsNWMwQz4vC vxg19/393sugn2dohvf/f6uPHaMFp3FpeqgDGBxHFItdUjxUUiqQIRWwq0WYYDGy oKuDNXZCELSfTjfYcfX4yrAQlU66zndPFe/zP21uefoMtXX1nVqDgwlSY6Qjsb9D U2I4gRHvPA1BDr0s5iCdWs/2E5sfjDcbfKI8D+p3YeOpl79AEWx060u4IXTNIf2C yStl8t5DhrBqbNm42Oy/Mr23fuL+sNeB9KSyskxyv1QMvFcyGh60lgq5F24lQOB+ 62u64SaQINljQg== -----END CERTIFICATE-----Generated at Fri Dec 26 15:45:42 2025 by rpki-client