This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/4eca4d-3a2e-4a84-a789-01577a927fa9/1/nSP0y0urXBCAGncGWN-JHPuMaMY.mft File: nSP0y0urXBCAGncGWN-JHPuMaMY.mft (raw, json) Hash identifier: 6Cm9z0W8L6sJ4UuKZIR9NrmT/qc3ghAuAoGrceHevD4= Subject key identifier: 95:56:EB:07:F1:DE:3E:9C:49:BF:1D:A8:1B:B9:23:3A:92:E7:25:3B Authority key identifier: 9D:23:F4:CB:4B:AB:5C:10:80:1A:77:06:58:DF:89:1C:FB:8C:68:C6 Certificate issuer: /CN=9d23f4cb4bab5c10801a770658df891cfb8c68c6 Certificate serial: 019B3AC668DD0A36BD4A624D91D247F7E08A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSP0y0urXBCAGncGWN-JHPuMaMY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/4eca4d-3a2e-4a84-a789-01577a927fa9/1/nSP0y0urXBCAGncGWN-JHPuMaMY.mft Manifest number: 1767 Signing time: Sat 20 Dec 2025 08:00:40 +0000 Manifest this update: Sat 20 Dec 2025 08:00:40 +0000 Manifest next update: Sun 21 Dec 2025 08:00:40 +0000 Files and hashes: 1: 8fw2tBPm8-dk07FF86WEj68NsSM.roa (hash: 9R57W9brfUx0SayL8ULp3+gRula33F2inaK6dFDPaew=) 2: JUWn6tZ6js3OQBG2kVmBzCYaASs.roa (hash: ZWaMncDoxletMNjHKIW8FwbEakDn9YubUJeGI0AcYdQ=) 3: miGTaFk5Cl8OYVzdHPitg-4uIW0.roa (hash: AGqT78lBpkV9yA91ZQMLyqGPYCLhxFGELYf24q65eEw=) 4: nSP0y0urXBCAGncGWN-JHPuMaMY.crl (hash: YCoYzCgmE9bibb9OTJgaHVqVd0mu1Uz9iXly1VWmRyA=) 5: q06qTUv5-JCRpItbJ_9COQqHH6A.roa (hash: elj4UEL+GeLcIcxtH4+ahp+BuvQR4jhMQkNkTFsz2eM=) 6: ugvVJv1QPdlsdCOHyojPtazbLYI.roa (hash: pXfm5LL3VQOgBalVDK4dGytbPCPO103M4zKNQiaOMks=) 7: zn7RiYTFSuY_H6EW4hkd0ugXhg4.roa (hash: TjPxbEKTKC4G0EExaKEE++vAM3LyoGQfvbpHNfpM9R0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/4eca4d-3a2e-4a84-a789-01577a927fa9/1/nSP0y0urXBCAGncGWN-JHPuMaMY.crl rsync://rpki.ripe.net/repository/DEFAULT/1a/4eca4d-3a2e-4a84-a789-01577a927fa9/1/nSP0y0urXBCAGncGWN-JHPuMaMY.mft rsync://rpki.ripe.net/repository/DEFAULT/nSP0y0urXBCAGncGWN-JHPuMaMY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 08:00:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3a:c6:68:dd:0a:36:bd:4a:62:4d:91:d2:47:f7:e0:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9d23f4cb4bab5c10801a770658df891cfb8c68c6 Validity Not Before: Dec 20 08:00:40 2025 GMT Not After : Dec 21 08:00:40 2025 GMT Subject: CN=9556eb07f1de3e9c49bf1da81bb9233a92e7253b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:e4:3a:26:f3:8d:1e:8d:ad:18:73:31:4e:88: df:f3:44:8a:f2:94:01:29:8c:b8:1b:72:70:30:e2: af:9a:8b:71:1c:05:ec:79:59:ed:6f:60:df:a0:6d: 49:ec:ad:e8:28:bb:d3:29:4f:ae:87:c3:2a:ff:51: 58:27:dc:85:c5:55:5c:2f:1a:36:a2:d6:31:74:11: ad:f1:fb:3f:a3:e4:08:ba:bf:23:63:39:9a:ac:b0: 26:32:25:d8:91:9a:b8:47:4e:75:9e:7f:b2:4f:59: 64:20:4a:2c:4f:0d:8b:a2:82:b1:72:6c:c1:47:21: 83:e2:ff:e0:86:75:96:95:9a:e2:b2:ba:9f:25:c8: 5e:f3:00:2c:2a:24:60:1f:23:1c:15:d6:ee:ec:a8: f3:74:70:85:7a:00:40:9d:b7:bc:b4:25:29:a1:b8: 45:3f:a2:fe:57:e0:99:2a:24:66:01:81:ef:cf:d0: f8:1a:25:53:8f:f9:94:35:e9:b6:2e:63:80:f5:70: 08:69:5f:0f:6f:6a:48:95:32:e3:b2:f6:17:df:21: 63:90:53:75:73:a4:26:ba:c0:ee:b6:cd:4f:7e:76: 9f:80:2a:d2:2d:7c:d2:d0:2f:37:5c:30:09:62:9e: 6a:4f:a6:78:4d:6a:ae:dd:6c:4a:49:be:a1:98:81: ca:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:56:EB:07:F1:DE:3E:9C:49:BF:1D:A8:1B:B9:23:3A:92:E7:25:3B X509v3 Authority Key Identifier: keyid:9D:23:F4:CB:4B:AB:5C:10:80:1A:77:06:58:DF:89:1C:FB:8C:68:C6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSP0y0urXBCAGncGWN-JHPuMaMY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/4eca4d-3a2e-4a84-a789-01577a927fa9/1/nSP0y0urXBCAGncGWN-JHPuMaMY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/4eca4d-3a2e-4a84-a789-01577a927fa9/1/nSP0y0urXBCAGncGWN-JHPuMaMY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 07:75:52:06:89:77:91:d7:89:ac:f8:dc:19:04:c4:e7:80:a2: 85:5d:40:44:21:ed:e8:99:21:98:f0:14:24:4b:39:02:d4:77: ff:2b:53:9d:a2:88:b1:19:87:9e:ee:52:2d:2f:f7:2c:58:58: 29:91:6e:e8:b3:ba:b6:ef:1f:41:a6:e9:43:e5:b6:59:77:b6: 2b:74:f2:d6:d8:14:33:ce:24:6a:f9:c8:96:79:8a:8a:ba:82: 65:7e:8e:cb:3f:18:66:42:2f:bb:12:66:41:c8:d0:9b:6f:c7: 1e:bf:e4:3c:e3:67:e3:60:1b:9b:57:71:c9:56:e8:ba:38:26: 3b:2e:b4:2e:bc:bc:ff:d2:ab:7b:11:76:da:84:08:3e:74:6d: 60:ae:52:c2:68:55:3b:46:e1:3b:fc:49:b3:2f:48:31:e6:11: cd:e6:46:7f:cf:5a:ed:30:1c:7f:ec:0c:8b:e3:d8:2e:ca:13: 1e:f4:fe:c6:fb:a6:3d:e7:d2:47:69:98:51:ac:14:3f:45:59: 23:d5:b4:15:4e:41:eb:8b:9a:8d:bc:b3:45:07:8f:75:ae:4e: bf:0c:cc:ba:2d:7d:b4:da:06:11:c3:05:bf:84:ff:4b:d3:99: a1:cb:60:2a:fe:8a:7a:98:b6:10:77:d9:8d:25:8c:1d:31:36: c9:bb:3a:4b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs6xmjdCja9SmJNkdJH9+CKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlkMjNmNGNiNGJhYjVjMTA4MDFhNzcwNjU4ZGY4OTFjZmI4 YzY4YzYwHhcNMjUxMjIwMDgwMDQwWhcNMjUxMjIxMDgwMDQwWjAzMTEwLwYDVQQD Eyg5NTU2ZWIwN2YxZGUzZTljNDliZjFkYTgxYmI5MjMzYTkyZTcyNTNiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArOQ6JvONHo2tGHMxTojf80SK8pQB KYy4G3JwMOKvmotxHAXseVntb2DfoG1J7K3oKLvTKU+uh8Mq/1FYJ9yFxVVcLxo2 otYxdBGt8fs/o+QIur8jYzmarLAmMiXYkZq4R051nn+yT1lkIEosTw2LooKxcmzB RyGD4v/ghnWWlZrisrqfJche8wAsKiRgHyMcFdbu7KjzdHCFegBAnbe8tCUpobhF P6L+V+CZKiRmAYHvz9D4GiVTj/mUNem2LmOA9XAIaV8Pb2pIlTLjsvYX3yFjkFN1 c6QmusDuts1PfnafgCrSLXzS0C83XDAJYp5qT6Z4TWqu3WxKSb6hmIHKcwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJVW6wfx3j6cSb8dqBu5IzqS5yU7MB8GA1UdIwQY MBaAFJ0j9MtLq1wQgBp3BljfiRz7jGjGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvblNQMHkwdXJYQkNBR25jR1dOLUpIUHVNYU1ZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYS80ZWNhNGQtM2EyZS00YTg0LWE3ODkt MDE1NzdhOTI3ZmE5LzEvblNQMHkwdXJYQkNBR25jR1dOLUpIUHVNYU1ZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYS80ZWNhNGQtM2EyZS00YTg0LWE3ODktMDE1NzdhOTI3ZmE5 LzEvblNQMHkwdXJYQkNBR25jR1dOLUpIUHVNYU1ZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAB3VSBol3 kdeJrPjcGQTE54CihV1ARCHt6JkhmPAUJEs5AtR3/ytTnaKIsRmHnu5SLS/3LFhY KZFu6LO6tu8fQabpQ+W2WXe2K3Ty1tgUM84kavnIlnmKirqCZX6Oyz8YZkIvuxJm QcjQm2/HHr/kPONn42Abm1dxyVboujgmOy60Lry8/9KrexF22oQIPnRtYK5SwmhV O0bhO/xJsy9IMeYRzeZGf89a7TAcf+wMi+PYLsoTHvT+xvumPefSR2mYUawUP0VZ I9W0FU5B64uajbyzRQePda5OvwzMui19tNoGEcMFv4T/S9OZoctgKv6Kepi2EHfZ jSWMHTE2ybs6Sw== -----END CERTIFICATE-----Generated at Sat Dec 20 15:03:37 2025 by rpki-client