This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.mft File: NTPUOQNczcXww50bP7FhlbVV_KM.mft (raw, json) Hash identifier: K+NlRHqALs0tOBOF3AMgsC++b/bIjojzhH/wM9VRKgo= Subject key identifier: 6C:0F:22:7D:AB:14:AA:99:56:16:F1:A7:B6:6B:B6:22:D6:4A:D1:E1 Authority key identifier: 35:33:D4:39:03:5C:CD:C5:F0:C3:9D:1B:3F:B1:61:95:B5:55:FC:A3 Certificate issuer: /CN=3533d439035ccdc5f0c39d1b3fb16195b555fca3 Certificate serial: 019B31C40354C070F5E9913960F51617DDBB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NTPUOQNczcXww50bP7FhlbVV_KM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.mft Manifest number: 0C78 Signing time: Thu 18 Dec 2025 14:01:28 +0000 Manifest this update: Thu 18 Dec 2025 14:01:28 +0000 Manifest next update: Fri 19 Dec 2025 14:01:28 +0000 Files and hashes: 1: NTPUOQNczcXww50bP7FhlbVV_KM.crl (hash: S0aDUpHPmwgAw6U1NrNN80ShkdP0o8PbJciUkLHvPIo=) 2: rAVoUvT6eIAoJ9DaPocwQDvvkoc.roa (hash: 1BFZOwvrkIRFql6imBqxsdk52Ly1yvo/6JadLNNcDZs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.crl rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.mft rsync://rpki.ripe.net/repository/DEFAULT/NTPUOQNczcXww50bP7FhlbVV_KM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 14:01:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:31:c4:03:54:c0:70:f5:e9:91:39:60:f5:16:17:dd:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3533d439035ccdc5f0c39d1b3fb16195b555fca3 Validity Not Before: Dec 18 14:01:28 2025 GMT Not After : Dec 19 14:01:28 2025 GMT Subject: CN=6c0f227dab14aa995616f1a7b66bb622d64ad1e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:db:4e:dd:e2:c1:44:93:f1:d2:e4:d5:5c:16: 86:ba:99:bc:81:2f:17:c5:60:06:bd:a6:25:a3:89: d1:39:5a:83:61:1a:a6:c4:79:82:56:09:52:b9:30: ab:19:c9:2b:7d:eb:59:76:bc:4c:6d:af:6a:e1:f3: 0d:10:4c:e4:13:19:5c:99:4b:37:50:73:ab:d2:63: 13:12:9e:ef:fe:f7:f1:88:a7:1a:74:94:9c:34:d0: e1:44:34:d8:ef:4a:7c:b1:e9:d6:4b:40:a9:32:cc: 23:0b:b1:65:f9:86:37:fe:4f:6e:1f:51:97:b3:f8: 5b:47:2a:7f:2e:ed:5e:c3:de:29:c6:f7:0c:3b:5b: e3:0b:b1:b7:bd:cb:d0:68:14:3e:78:a1:64:37:0a: 57:82:29:c6:b9:58:50:9d:c8:91:be:1b:19:82:62: 50:c9:26:8b:1a:58:76:63:bc:7e:d7:85:14:79:57: a2:63:18:27:68:f0:0c:3b:45:92:fd:5a:dc:e5:1a: 74:c7:d3:1b:24:39:0c:4c:1f:a0:bf:62:e8:fb:f1: e5:79:c4:50:86:62:00:98:e6:67:14:84:53:5f:d9: 0b:c3:e5:01:4a:52:a8:2c:95:99:bd:36:c6:a9:cf: 7b:3a:0a:36:29:92:ee:a7:9f:b1:cd:c2:95:8e:5b: 84:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:0F:22:7D:AB:14:AA:99:56:16:F1:A7:B6:6B:B6:22:D6:4A:D1:E1 X509v3 Authority Key Identifier: keyid:35:33:D4:39:03:5C:CD:C5:F0:C3:9D:1B:3F:B1:61:95:B5:55:FC:A3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NTPUOQNczcXww50bP7FhlbVV_KM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0c:96:dc:45:b3:e5:4c:43:3b:74:ea:5c:4c:7c:d6:e3:08:d1: 02:ad:3d:fd:56:77:17:06:44:52:c9:01:8d:ec:4c:03:eb:36: e4:de:96:d3:c1:a1:d7:f7:10:52:de:81:eb:ee:2e:a0:b7:30: fa:04:e0:d6:27:27:3f:f2:ea:b2:6d:1f:4c:0a:67:fa:80:0a: 80:24:89:31:db:c1:f2:58:6f:75:c5:4e:83:54:51:a4:f1:e3: 77:a0:39:d1:24:0a:3e:ec:7f:10:c1:6e:de:3e:60:d7:ec:3c: 73:48:03:35:89:5b:b8:76:fb:fe:07:82:a5:f0:89:72:c3:44: ba:b5:f8:d9:1f:f2:88:80:fc:00:c4:69:00:8c:22:6a:e0:38: ce:23:8e:27:10:78:50:d7:4c:32:f2:06:23:2f:15:a9:7f:0c: fa:38:b8:7a:87:62:6c:33:51:70:46:f8:c4:1c:16:48:60:f8: 98:4f:f8:8e:e8:fb:80:50:05:e3:13:06:da:ad:ec:4a:1e:3a: 32:64:43:86:49:5a:b8:99:db:9c:31:2a:9a:8f:34:59:f6:6a: 89:ef:9e:bf:fa:97:8b:27:6b:ee:af:d1:36:64:2c:91:1b:d7: f3:b5:b4:c3:f4:9c:1d:2b:4c:80:2f:ec:fa:b8:bb:d6:db:ea: ee:6c:26:3a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsxxANUwHD16ZE5YPUWF927MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM1MzNkNDM5MDM1Y2NkYzVmMGMzOWQxYjNmYjE2MTk1YjU1 NWZjYTMwHhcNMjUxMjE4MTQwMTI4WhcNMjUxMjE5MTQwMTI4WjAzMTEwLwYDVQQD Eyg2YzBmMjI3ZGFiMTRhYTk5NTYxNmYxYTdiNjZiYjYyMmQ2NGFkMWUxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApdtO3eLBRJPx0uTVXBaGupm8gS8X xWAGvaYlo4nROVqDYRqmxHmCVglSuTCrGckrfetZdrxMba9q4fMNEEzkExlcmUs3 UHOr0mMTEp7v/vfxiKcadJScNNDhRDTY70p8senWS0CpMswjC7Fl+YY3/k9uH1GX s/hbRyp/Lu1ew94pxvcMO1vjC7G3vcvQaBQ+eKFkNwpXginGuVhQnciRvhsZgmJQ ySaLGlh2Y7x+14UUeVeiYxgnaPAMO0WS/Vrc5Rp0x9MbJDkMTB+gv2Lo+/HlecRQ hmIAmOZnFIRTX9kLw+UBSlKoLJWZvTbGqc97Ogo2KZLup5+xzcKVjluEOQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGwPIn2rFKqZVhbxp7ZrtiLWStHhMB8GA1UdIwQY MBaAFDUz1DkDXM3F8MOdGz+xYZW1VfyjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTlRQVU9RTmN6Y1h3dzUwYlA3RmhsYlZWX0tNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNy84Y2YyYTYtNDUyOS00M2Q5LWI3ODIt MzZlODVhYmU1MmZmLzEvTlRQVU9RTmN6Y1h3dzUwYlA3RmhsYlZWX0tNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNy84Y2YyYTYtNDUyOS00M2Q5LWI3ODItMzZlODVhYmU1MmZm LzEvTlRQVU9RTmN6Y1h3dzUwYlA3RmhsYlZWX0tNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADJbcRbPl TEM7dOpcTHzW4wjRAq09/VZ3FwZEUskBjexMA+s25N6W08Gh1/cQUt6B6+4uoLcw +gTg1icnP/Lqsm0fTApn+oAKgCSJMdvB8lhvdcVOg1RRpPHjd6A50SQKPux/EMFu 3j5g1+w8c0gDNYlbuHb7/geCpfCJcsNEurX42R/yiID8AMRpAIwiauA4ziOOJxB4 UNdMMvIGIy8VqX8M+ji4eodibDNRcEb4xBwWSGD4mE/4juj7gFAF4xMG2q3sSh46 MmRDhklauJnbnDEqmo80WfZqie+ev/qXiydr7q/RNmQskRvX87W0w/ScHStMgC/s +ri71tvq7mwmOg== -----END CERTIFICATE-----Generated at Fri Dec 19 00:16:44 2025 by rpki-client