This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.mft File: NIVmBh42jK_xiBviusZzff08Hbo.mft (raw, json) Hash identifier: Ktixa0ZZQ7ysti88APvVo3YKwPnF/zGMGYTUdKVtmjM= Subject key identifier: 85:75:54:2E:26:56:88:CE:70:EE:A3:2D:17:DA:66:97:64:55:C4:E9 Authority key identifier: 34:85:66:06:1E:36:8C:AF:F1:88:1B:E2:BA:C6:73:7D:FD:3C:1D:BA Certificate issuer: /CN=348566061e368caff1881be2bac6737dfd3c1dba Certificate serial: 019B4994E73C525BE362266DA4FACE2121F0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NIVmBh42jK_xiBviusZzff08Hbo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.mft Manifest number: 178D Signing time: Tue 23 Dec 2025 05:00:53 +0000 Manifest this update: Tue 23 Dec 2025 05:00:53 +0000 Manifest next update: Wed 24 Dec 2025 05:00:53 +0000 Files and hashes: 1: 0_2q2dp_nihFIcTaoAnETvnQKo4.roa (hash: bKtto0Xp3QOWNDaUxe4CkFxL1b1NtMArjGe69yHE/5w=) 2: NIVmBh42jK_xiBviusZzff08Hbo.crl (hash: aZQxz4lAuGs2abXA/KWGWIoC6yATm7PiYO/bHaJKKZA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.crl rsync://rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.mft rsync://rpki.ripe.net/repository/DEFAULT/NIVmBh42jK_xiBviusZzff08Hbo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 23 Dec 2025 23:03:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:49:94:e7:3c:52:5b:e3:62:26:6d:a4:fa:ce:21:21:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=348566061e368caff1881be2bac6737dfd3c1dba Validity Not Before: Dec 23 05:00:53 2025 GMT Not After : Dec 24 05:00:53 2025 GMT Subject: CN=8575542e265688ce70eea32d17da66976455c4e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:d9:38:e3:e6:8e:a2:08:c2:bb:ed:a0:02:24: 28:69:a9:a5:5a:c8:a7:fc:e7:d6:c7:00:fd:8a:8d: 43:ad:8a:c6:95:be:bc:5b:b3:d0:b1:d3:be:6e:d8: 10:3a:cf:5c:a1:c2:cc:2d:16:d8:24:24:fa:12:86: 91:98:08:e7:f6:4a:bc:75:50:92:60:f8:06:64:9b: 43:24:8e:2f:20:e2:82:f1:df:c4:ea:65:f7:2f:d8: 75:08:d8:56:4f:8f:06:fc:9c:d6:71:b1:f4:7f:30: ca:20:1b:0b:0f:96:37:67:0d:f6:51:5a:43:49:2e: 55:cb:1c:76:57:b9:2f:55:4b:79:ad:ce:d5:77:74: ea:cd:b1:80:32:c9:25:d6:26:00:cb:34:2d:e8:42: 90:46:0e:aa:47:ea:96:11:c1:d5:0c:55:14:a1:ef: f0:05:0b:50:c5:9b:95:5a:44:53:ae:f7:b4:00:44: e9:2e:8d:33:69:72:97:7a:dd:ba:a5:b3:77:d6:e0: 82:80:d5:b1:b2:16:8a:dc:40:b1:0b:e5:37:5a:e6: 30:7d:72:5c:92:36:ef:ef:87:5d:78:37:f3:2a:dc: e1:f0:55:6c:e2:d2:af:bd:75:b5:02:8e:5b:c6:10: 69:38:3e:0c:99:59:bb:cc:13:8a:61:01:1a:36:2f: 0d:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:75:54:2E:26:56:88:CE:70:EE:A3:2D:17:DA:66:97:64:55:C4:E9 X509v3 Authority Key Identifier: keyid:34:85:66:06:1E:36:8C:AF:F1:88:1B:E2:BA:C6:73:7D:FD:3C:1D:BA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NIVmBh42jK_xiBviusZzff08Hbo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 94:fb:5f:40:c6:3c:45:5a:9f:01:eb:9f:a6:3f:14:a2:3f:d5: 42:75:b8:e7:36:df:aa:7e:f5:73:39:69:26:5f:7a:40:cf:75: c7:f1:de:f5:7f:dc:fe:fa:d6:0b:cd:cb:46:de:f3:d2:06:91: a0:51:ab:3b:b1:2c:f8:90:07:21:d9:c2:a8:43:65:fd:6c:26: a0:7d:05:f1:36:78:00:51:e2:e5:9b:12:cf:98:98:f5:a1:56: 25:37:07:ee:de:26:da:c4:15:fb:2b:c9:ad:9f:5b:d3:a6:27: cc:88:06:c0:f7:32:a3:d0:d3:9c:1d:75:b4:b8:26:51:72:e9: 6a:6a:9c:3a:47:a6:76:ff:3e:c3:de:ba:26:64:cb:b6:81:4a: c2:7e:cf:77:1c:36:e0:54:31:08:68:7d:2a:7e:6f:94:a0:93: 69:14:32:f1:16:15:0c:4e:43:02:9f:cb:cb:67:45:d5:c8:9a: 07:f2:52:29:59:38:9d:ac:4c:d3:c2:77:f9:a4:a7:92:46:21: d3:2b:3e:c2:8f:7d:92:22:fe:74:13:8c:cf:fa:3f:02:03:da: dc:8d:04:2e:1e:02:08:2c:55:84:77:3b:a2:62:cf:26:6c:a5: c8:da:73:bb:01:64:9d:e7:ae:eb:8a:d6:97:ae:4f:d2:38:31: 62:ea:43:c0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtJlOc8UlvjYiZtpPrOISHwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM0ODU2NjA2MWUzNjhjYWZmMTg4MWJlMmJhYzY3MzdkZmQz YzFkYmEwHhcNMjUxMjIzMDUwMDUzWhcNMjUxMjI0MDUwMDUzWjAzMTEwLwYDVQQD Eyg4NTc1NTQyZTI2NTY4OGNlNzBlZWEzMmQxN2RhNjY5NzY0NTVjNGU5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAndk44+aOogjCu+2gAiQoaamlWsin /OfWxwD9io1DrYrGlb68W7PQsdO+btgQOs9cocLMLRbYJCT6EoaRmAjn9kq8dVCS YPgGZJtDJI4vIOKC8d/E6mX3L9h1CNhWT48G/JzWcbH0fzDKIBsLD5Y3Zw32UVpD SS5Vyxx2V7kvVUt5rc7Vd3TqzbGAMskl1iYAyzQt6EKQRg6qR+qWEcHVDFUUoe/w BQtQxZuVWkRTrve0AETpLo0zaXKXet26pbN31uCCgNWxshaK3ECxC+U3WuYwfXJc kjbv74ddeDfzKtzh8FVs4tKvvXW1Ao5bxhBpOD4MmVm7zBOKYQEaNi8NKwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIV1VC4mVojOcO6jLRfaZpdkVcTpMB8GA1UdIwQY MBaAFDSFZgYeNoyv8Ygb4rrGc339PB26MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTklWbUJoNDJqS194aUJ2aXVzWnpmZjA4SGJvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OC9hZmZhYTEtMGU3Yi00MDFlLWE3YzUt MDYyNzBlYTgyMTU0LzEvTklWbUJoNDJqS194aUJ2aXVzWnpmZjA4SGJvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80OC9hZmZhYTEtMGU3Yi00MDFlLWE3YzUtMDYyNzBlYTgyMTU0 LzEvTklWbUJoNDJqS194aUJ2aXVzWnpmZjA4SGJvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlPtfQMY8 RVqfAeufpj8Uoj/VQnW45zbfqn71czlpJl96QM91x/He9X/c/vrWC83LRt7z0gaR oFGrO7Es+JAHIdnCqENl/WwmoH0F8TZ4AFHi5ZsSz5iY9aFWJTcH7t4m2sQV+yvJ rZ9b06YnzIgGwPcyo9DTnB11tLgmUXLpamqcOkemdv8+w966JmTLtoFKwn7Pdxw2 4FQxCGh9Kn5vlKCTaRQy8RYVDE5DAp/Ly2dF1ciaB/JSKVk4naxM08J3+aSnkkYh 0ys+wo99kiL+dBOMz/o/AgPa3I0ELh4CCCxVhHc7omLPJmylyNpzuwFkneeu64rW l65P0jgxYupDwA== -----END CERTIFICATE-----Generated at Tue Dec 23 07:21:02 2025 by rpki-client