This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/25f375-140f-46e9-967e-6e459a58e1d6/1/nKkOfa8VwXwbmrxXIVe8fZF7OZE.mft File: nKkOfa8VwXwbmrxXIVe8fZF7OZE.mft (raw, json) Hash identifier: NDtZYE0DPc39y/i+t4oRyySJeT3iSek+Ln4j8qMr++U= Subject key identifier: C7:B0:11:5D:D6:82:48:F6:62:DF:33:44:FF:51:43:00:B2:96:5D:09 Authority key identifier: 9C:A9:0E:7D:AF:15:C1:7C:1B:9A:BC:57:21:57:BC:7D:91:7B:39:91 Certificate issuer: /CN=9ca90e7daf15c17c1b9abc572157bc7d917b3991 Certificate serial: 019B255279B48BE45C98C705097FD82CBD65 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nKkOfa8VwXwbmrxXIVe8fZF7OZE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/25f375-140f-46e9-967e-6e459a58e1d6/1/nKkOfa8VwXwbmrxXIVe8fZF7OZE.mft Manifest number: 1302 Signing time: Tue 16 Dec 2025 04:02:00 +0000 Manifest this update: Tue 16 Dec 2025 04:02:00 +0000 Manifest next update: Wed 17 Dec 2025 04:02:00 +0000 Files and hashes: 1: nKkOfa8VwXwbmrxXIVe8fZF7OZE.crl (hash: f+5FzC6+QsyFyFKwcsp2hLS9Q6Pr8DQru6TlPmcBXno=) 2: rbFhRWy7PnH1-c74EqjQ8O_SsH8.roa (hash: +OgMhgDQLZldm2bdOQKGi3uI3dnjtK1GBopk2ba9vPU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/25f375-140f-46e9-967e-6e459a58e1d6/1/nKkOfa8VwXwbmrxXIVe8fZF7OZE.crl rsync://rpki.ripe.net/repository/DEFAULT/f3/25f375-140f-46e9-967e-6e459a58e1d6/1/nKkOfa8VwXwbmrxXIVe8fZF7OZE.mft rsync://rpki.ripe.net/repository/DEFAULT/nKkOfa8VwXwbmrxXIVe8fZF7OZE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:25:52:79:b4:8b:e4:5c:98:c7:05:09:7f:d8:2c:bd:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ca90e7daf15c17c1b9abc572157bc7d917b3991 Validity Not Before: Dec 16 04:02:00 2025 GMT Not After : Dec 17 04:02:00 2025 GMT Subject: CN=c7b0115dd68248f662df3344ff514300b2965d09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:d1:19:96:ee:e4:69:21:14:41:b8:ee:62:49: fe:9d:d1:71:43:c0:d5:2b:7f:ef:56:75:08:a7:19: d3:29:a7:78:de:4d:29:a4:45:02:a2:48:93:72:a5: 69:6f:c6:8c:e3:67:4a:6e:4a:36:f1:4c:76:53:c6: e9:aa:bb:d5:a6:d8:9a:a8:24:19:72:1c:2a:8c:1d: 00:e5:8f:a8:04:61:f4:2e:2b:d1:77:1c:23:f3:21: 6b:d6:65:70:b9:6e:96:7d:8a:eb:80:76:3f:74:e1: 4e:34:80:d0:a5:f1:3e:da:f5:97:ee:e1:50:9a:41: 5f:e2:14:4a:9c:3e:38:72:01:af:6f:92:81:5a:53: db:dd:5d:62:db:48:ed:04:5d:c5:d8:11:04:43:99: 3c:ea:2f:11:86:19:8c:29:78:7f:7a:84:c1:d4:ec: 1e:0b:1a:05:bb:72:b7:8e:69:71:82:f7:3d:08:28: 10:2d:f2:39:88:7e:6e:ca:88:3a:da:d2:08:b1:41: 2b:eb:eb:42:e2:c5:30:6e:b4:04:a1:12:9c:be:6d: 22:4e:fa:99:e3:f7:86:4d:18:38:b1:9d:bf:b9:47: 0f:b6:b4:38:ff:e5:5a:ca:09:e0:e3:85:a7:92:14: 04:8e:1f:f1:74:a4:d0:e4:05:97:ce:97:8e:5e:b4: 1a:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:B0:11:5D:D6:82:48:F6:62:DF:33:44:FF:51:43:00:B2:96:5D:09 X509v3 Authority Key Identifier: keyid:9C:A9:0E:7D:AF:15:C1:7C:1B:9A:BC:57:21:57:BC:7D:91:7B:39:91 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nKkOfa8VwXwbmrxXIVe8fZF7OZE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/25f375-140f-46e9-967e-6e459a58e1d6/1/nKkOfa8VwXwbmrxXIVe8fZF7OZE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/25f375-140f-46e9-967e-6e459a58e1d6/1/nKkOfa8VwXwbmrxXIVe8fZF7OZE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 70:77:8c:27:67:4d:df:82:01:85:f7:82:40:43:59:ed:f9:ed: f9:33:5e:6d:98:5c:c8:c8:20:d8:a0:fe:77:a7:5e:f7:80:5f: fc:fb:f0:27:3a:17:b0:54:87:a6:e7:8b:55:c8:47:9d:c4:4c: 62:f0:f6:a5:13:fb:bf:be:1d:bd:76:52:b7:43:0b:c4:68:da: 56:4f:13:98:a0:6f:89:d1:f1:b9:1b:c0:71:31:f1:df:20:b5: 25:b7:e5:e9:4a:49:2a:91:4c:91:c3:8e:34:58:f3:d6:09:6e: 05:fc:d8:df:ae:dc:05:25:b0:ca:46:d2:cf:a5:e1:97:cf:49: 3f:7d:88:00:c8:fa:8d:92:30:e3:aa:73:cf:c2:61:ed:10:28: d9:ed:ac:38:15:87:fe:2b:3c:75:85:b2:48:2c:cb:45:46:1a: 5f:35:72:c1:1e:3c:96:80:54:7e:76:47:d9:2b:85:1d:b1:54: 36:d6:e2:01:46:d1:a2:7b:87:5f:60:26:ca:9b:ca:c3:6c:e4: 39:6b:18:3a:94:1a:0c:9c:9f:27:ac:d7:b5:77:6c:d9:aa:63: 52:25:24:b8:60:ac:ae:ac:a8:5a:e1:90:6a:47:90:a0:ad:e1: 57:e4:91:51:eb:5c:51:23:a2:b3:41:38:72:d9:c5:a5:37:20: 3c:75:f6:22 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZslUnm0i+RcmMcFCX/YLL1lMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDljYTkwZTdkYWYxNWMxN2MxYjlhYmM1NzIxNTdiYzdkOTE3 YjM5OTEwHhcNMjUxMjE2MDQwMjAwWhcNMjUxMjE3MDQwMjAwWjAzMTEwLwYDVQQD EyhjN2IwMTE1ZGQ2ODI0OGY2NjJkZjMzNDRmZjUxNDMwMGIyOTY1ZDA5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwdEZlu7kaSEUQbjuYkn+ndFxQ8DV K3/vVnUIpxnTKad43k0ppEUCokiTcqVpb8aM42dKbko28Ux2U8bpqrvVptiaqCQZ chwqjB0A5Y+oBGH0LivRdxwj8yFr1mVwuW6WfYrrgHY/dOFONIDQpfE+2vWX7uFQ mkFf4hRKnD44cgGvb5KBWlPb3V1i20jtBF3F2BEEQ5k86i8RhhmMKXh/eoTB1Owe CxoFu3K3jmlxgvc9CCgQLfI5iH5uyog62tIIsUEr6+tC4sUwbrQEoRKcvm0iTvqZ 4/eGTRg4sZ2/uUcPtrQ4/+Vaygng44WnkhQEjh/xdKTQ5AWXzpeOXrQaBwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMewEV3Wgkj2Yt8zRP9RQwCyll0JMB8GA1UdIwQY MBaAFJypDn2vFcF8G5q8VyFXvH2RezmRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbktrT2ZhOFZ3WHdibXJ4WElWZThmWkY3T1pFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMy8yNWYzNzUtMTQwZi00NmU5LTk2N2Ut NmU0NTlhNThlMWQ2LzEvbktrT2ZhOFZ3WHdibXJ4WElWZThmWkY3T1pFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMy8yNWYzNzUtMTQwZi00NmU5LTk2N2UtNmU0NTlhNThlMWQ2 LzEvbktrT2ZhOFZ3WHdibXJ4WElWZThmWkY3T1pFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcHeMJ2dN 34IBhfeCQENZ7fnt+TNebZhcyMgg2KD+d6de94Bf/PvwJzoXsFSHpueLVchHncRM YvD2pRP7v74dvXZSt0MLxGjaVk8TmKBvidHxuRvAcTHx3yC1Jbfl6UpJKpFMkcOO NFjz1gluBfzY367cBSWwykbSz6Xhl89JP32IAMj6jZIw46pzz8Jh7RAo2e2sOBWH /is8dYWySCzLRUYaXzVywR48loBUfnZH2SuFHbFUNtbiAUbRonuHX2AmypvKw2zk OWsYOpQaDJyfJ6zXtXds2apjUiUkuGCsrqyoWuGQakeQoK3hV+SRUetcUSOis0E4 ctnFpTcgPHX2Ig== -----END CERTIFICATE-----Generated at Tue Dec 16 06:19:56 2025 by rpki-client