This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/bd9e02-c424-4e14-aab7-39461aaa5be7/1/nUMDoKmZ2BGLvH6WrTjvuxRJbqI.mft File: nUMDoKmZ2BGLvH6WrTjvuxRJbqI.mft (raw, json) Hash identifier: c8HWmV2s86MnjCZ0h+jE2UE4+jEVYW3GX/IH/y272S4= Subject key identifier: 92:CC:89:33:69:03:F3:DA:58:F3:60:AF:97:1A:02:45:78:6F:11:4A Authority key identifier: 9D:43:03:A0:A9:99:D8:11:8B:BC:7E:96:AD:38:EF:BB:14:49:6E:A2 Certificate issuer: /CN=9d4303a0a999d8118bbc7e96ad38efbb14496ea2 Certificate serial: 019B42B73769A54055320667EF4FB348E6D2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nUMDoKmZ2BGLvH6WrTjvuxRJbqI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/bd9e02-c424-4e14-aab7-39461aaa5be7/1/nUMDoKmZ2BGLvH6WrTjvuxRJbqI.mft Manifest number: 091F Signing time: Sun 21 Dec 2025 21:01:02 +0000 Manifest this update: Sun 21 Dec 2025 21:01:02 +0000 Manifest next update: Mon 22 Dec 2025 21:01:02 +0000 Files and hashes: 1: bre9O2wrDggeCO-gClQtVcXHgMs.roa (hash: TZRQyZuvSyRj0lGzf2b/FG9R/6ZAoSht1L/fXzqCZUg=) 2: nUMDoKmZ2BGLvH6WrTjvuxRJbqI.crl (hash: uvOLg3QMJ8o1IGX9U7310PhxcUEun6sHHLfEY1Ub6Zg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/bd9e02-c424-4e14-aab7-39461aaa5be7/1/nUMDoKmZ2BGLvH6WrTjvuxRJbqI.crl rsync://rpki.ripe.net/repository/DEFAULT/12/bd9e02-c424-4e14-aab7-39461aaa5be7/1/nUMDoKmZ2BGLvH6WrTjvuxRJbqI.mft rsync://rpki.ripe.net/repository/DEFAULT/nUMDoKmZ2BGLvH6WrTjvuxRJbqI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 13:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:42:b7:37:69:a5:40:55:32:06:67:ef:4f:b3:48:e6:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9d4303a0a999d8118bbc7e96ad38efbb14496ea2 Validity Not Before: Dec 21 21:01:02 2025 GMT Not After : Dec 22 21:01:02 2025 GMT Subject: CN=92cc89336903f3da58f360af971a0245786f114a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:b9:c3:fe:8c:7e:25:3c:27:eb:62:76:2f:e5: 6e:38:18:f0:83:f6:29:e3:fc:98:d1:8f:45:2a:80: a2:96:22:d1:77:5c:a6:5c:23:c3:f7:d2:2e:6e:12: ce:b0:6c:84:f0:9e:cd:76:8f:b6:22:0b:4b:04:7a: 0c:f2:e6:80:24:80:24:20:64:c1:fe:25:b6:a8:fc: 37:77:6d:b3:f6:9f:0e:5b:90:12:d8:00:d1:61:0a: 01:88:4b:77:48:74:71:ac:ab:2b:13:07:49:a2:5c: 00:53:06:bc:98:e7:60:1a:4a:0b:cc:ac:16:ee:b8: 3a:2e:cd:73:de:46:41:a3:72:50:08:93:55:80:52: 24:67:57:b4:0a:df:0a:32:a2:68:54:b8:ec:64:df: c7:92:5e:fb:f7:d1:9d:d3:f5:94:64:0d:d3:85:e2: 2a:f1:84:34:9c:94:ee:77:3e:d1:37:5c:91:eb:04: b9:a8:0e:23:50:9d:d3:22:fc:67:29:95:6a:a6:e2: 48:03:e8:2c:46:b9:ae:d4:63:36:17:20:eb:dc:0c: 37:1a:3e:07:71:05:2c:90:39:89:d4:66:c8:12:32: b0:1f:8c:ab:46:33:a7:b6:54:c2:6e:d3:15:8c:5b: 6e:8e:98:18:9b:62:ae:e5:8c:2b:61:c7:30:8f:cc: fa:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:CC:89:33:69:03:F3:DA:58:F3:60:AF:97:1A:02:45:78:6F:11:4A X509v3 Authority Key Identifier: keyid:9D:43:03:A0:A9:99:D8:11:8B:BC:7E:96:AD:38:EF:BB:14:49:6E:A2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nUMDoKmZ2BGLvH6WrTjvuxRJbqI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/bd9e02-c424-4e14-aab7-39461aaa5be7/1/nUMDoKmZ2BGLvH6WrTjvuxRJbqI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/bd9e02-c424-4e14-aab7-39461aaa5be7/1/nUMDoKmZ2BGLvH6WrTjvuxRJbqI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 56:f8:5a:46:94:21:8a:d2:4e:99:93:49:9b:6d:a2:dd:08:63: 17:8f:af:c6:40:a7:87:c0:a8:31:bb:1d:80:86:04:eb:f0:6c: ff:7b:3b:10:4d:e1:e9:d3:c3:7e:02:4c:de:0c:e5:3a:c5:fb: 16:0b:aa:f2:70:b1:c8:b8:83:bc:12:49:ba:fc:c1:2c:97:e6: ef:e4:c4:5e:8d:b7:79:97:4d:34:f8:39:ec:39:7b:99:bf:7c: c6:d1:1f:d9:da:81:b9:a3:4e:2c:b0:86:fb:e9:39:bd:d1:14: 78:8b:41:14:2a:40:7a:da:b4:97:2b:42:b9:3f:fa:79:98:f5: 82:de:77:cd:16:23:aa:fa:53:70:e2:e4:81:41:d9:90:f7:7f: 5b:b8:d4:40:c6:3d:e5:2f:59:23:49:db:55:1a:c6:b8:cd:69: d6:b6:e1:78:7c:9e:51:bd:32:b2:e0:5f:21:91:19:c1:0f:ca: f6:e1:85:82:b6:69:e0:27:76:d3:f6:c7:8d:83:a5:ce:70:a0: 25:c5:6f:b8:28:89:58:89:ee:49:96:08:14:30:f9:c5:bf:e7: aa:d8:47:d0:95:11:a2:7a:53:e2:50:d6:c9:6a:5e:f9:61:8b: a9:0c:ee:30:c6:e5:18:e3:57:ce:57:92:2b:1e:66:7e:93:88: f5:df:21:47 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtCtzdppUBVMgZn70+zSObSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlkNDMwM2EwYTk5OWQ4MTE4YmJjN2U5NmFkMzhlZmJiMTQ0 OTZlYTIwHhcNMjUxMjIxMjEwMTAyWhcNMjUxMjIyMjEwMTAyWjAzMTEwLwYDVQQD Eyg5MmNjODkzMzY5MDNmM2RhNThmMzYwYWY5NzFhMDI0NTc4NmYxMTRhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAobnD/ox+JTwn62J2L+VuOBjwg/Yp 4/yY0Y9FKoCiliLRd1ymXCPD99IubhLOsGyE8J7Ndo+2IgtLBHoM8uaAJIAkIGTB /iW2qPw3d22z9p8OW5AS2ADRYQoBiEt3SHRxrKsrEwdJolwAUwa8mOdgGkoLzKwW 7rg6Ls1z3kZBo3JQCJNVgFIkZ1e0Ct8KMqJoVLjsZN/Hkl7799Gd0/WUZA3TheIq 8YQ0nJTudz7RN1yR6wS5qA4jUJ3TIvxnKZVqpuJIA+gsRrmu1GM2FyDr3Aw3Gj4H cQUskDmJ1GbIEjKwH4yrRjOntlTCbtMVjFtujpgYm2Ku5YwrYccwj8z6wQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJLMiTNpA/PaWPNgr5caAkV4bxFKMB8GA1UdIwQY MBaAFJ1DA6CpmdgRi7x+lq0477sUSW6iMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvblVNRG9LbVoyQkdMdkg2V3JUanZ1eFJKYnFJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9iZDllMDItYzQyNC00ZTE0LWFhYjct Mzk0NjFhYWE1YmU3LzEvblVNRG9LbVoyQkdMdkg2V3JUanZ1eFJKYnFJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi9iZDllMDItYzQyNC00ZTE0LWFhYjctMzk0NjFhYWE1YmU3 LzEvblVNRG9LbVoyQkdMdkg2V3JUanZ1eFJKYnFJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVvhaRpQh itJOmZNJm22i3QhjF4+vxkCnh8CoMbsdgIYE6/Bs/3s7EE3h6dPDfgJM3gzlOsX7 Fguq8nCxyLiDvBJJuvzBLJfm7+TEXo23eZdNNPg57Dl7mb98xtEf2dqBuaNOLLCG ++k5vdEUeItBFCpAetq0lytCuT/6eZj1gt53zRYjqvpTcOLkgUHZkPd/W7jUQMY9 5S9ZI0nbVRrGuM1p1rbheHyeUb0ysuBfIZEZwQ/K9uGFgrZp4Cd20/bHjYOlznCg JcVvuCiJWInuSZYIFDD5xb/nqthH0JURonpT4lDWyWpe+WGLqQzuMMblGONXzleS Kx5mfpOI9d8hRw== -----END CERTIFICATE-----Generated at Sun Dec 21 22:37:22 2025 by rpki-client