This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/8669d3-76cd-4cb0-8278-82c67c69e923/1/nGfqNKARpHc4cVg-w5VOeR2MAo0.mft File: nGfqNKARpHc4cVg-w5VOeR2MAo0.mft (raw, json) Hash identifier: guq+7CidsUu+OJEVLTWE0qTIa3bMW4VqKGWZohZE1/Q= Subject key identifier: 98:5B:7A:C5:64:0F:EC:50:F3:21:01:DD:84:AD:6F:72:07:0E:BB:30 Authority key identifier: 9C:67:EA:34:A0:11:A4:77:38:71:58:3E:C3:95:4E:79:1D:8C:02:8D Certificate issuer: /CN=9c67ea34a011a4773871583ec3954e791d8c028d Certificate serial: 019B33B2508022359C1D3B0DA9C189DA6949 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nGfqNKARpHc4cVg-w5VOeR2MAo0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/8669d3-76cd-4cb0-8278-82c67c69e923/1/nGfqNKARpHc4cVg-w5VOeR2MAo0.mft Manifest number: 0E68 Signing time: Thu 18 Dec 2025 23:01:22 +0000 Manifest this update: Thu 18 Dec 2025 23:01:22 +0000 Manifest next update: Fri 19 Dec 2025 23:01:22 +0000 Files and hashes: 1: NCPzn1GpZq4vT4gRDeBcmpEUhRQ.roa (hash: Vq8Q1+OKJnlcLx/yX0O6NcYNdeQRXSpw2T1WMWL6+Zw=) 2: nGfqNKARpHc4cVg-w5VOeR2MAo0.crl (hash: AazJHp5/zeAbTElXSk2dGmNQXZRdmkCc9B2OulheRFM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/8669d3-76cd-4cb0-8278-82c67c69e923/1/nGfqNKARpHc4cVg-w5VOeR2MAo0.crl rsync://rpki.ripe.net/repository/DEFAULT/4e/8669d3-76cd-4cb0-8278-82c67c69e923/1/nGfqNKARpHc4cVg-w5VOeR2MAo0.mft rsync://rpki.ripe.net/repository/DEFAULT/nGfqNKARpHc4cVg-w5VOeR2MAo0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 20:16:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:33:b2:50:80:22:35:9c:1d:3b:0d:a9:c1:89:da:69:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9c67ea34a011a4773871583ec3954e791d8c028d Validity Not Before: Dec 18 23:01:22 2025 GMT Not After : Dec 19 23:01:22 2025 GMT Subject: CN=985b7ac5640fec50f32101dd84ad6f72070ebb30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:32:56:d4:af:7d:b0:75:cc:41:56:c9:ca:de: 31:36:56:80:0b:ad:08:29:1b:d2:4f:0b:f6:4c:11: 87:55:ec:bd:1a:5d:26:45:8a:15:a6:17:f3:3b:20: f2:d8:fe:8b:37:25:45:1b:0d:d5:f4:dd:b5:98:2d: 55:81:5e:cb:27:f1:7b:b6:f8:c4:54:be:c8:30:fd: a3:fe:a5:7f:12:4b:9b:9d:7c:3a:cd:f1:17:97:fb: 71:63:d0:a6:c2:ae:e9:fd:d9:b4:ab:04:68:67:9d: 63:05:dd:f1:d7:1c:f7:93:2c:18:86:bf:ed:91:24: 47:24:d2:04:b2:d5:6c:fa:69:8f:cd:55:7f:b6:b6: d0:d6:4f:4a:53:24:ba:77:4e:b8:78:93:70:87:6c: ab:76:2c:fa:0e:5e:4f:3a:1a:76:67:be:bd:4c:18: fd:05:06:51:e4:0c:0f:3e:bc:be:42:80:55:4e:ac: 0b:ab:62:5b:0d:75:33:87:63:9e:a4:b2:03:ff:3e: 4a:c6:d8:be:e6:10:ec:89:95:67:55:e8:dc:ba:fb: 8f:f7:19:ac:ee:a9:3b:90:18:ff:96:54:b0:97:3a: 2a:f6:e0:c9:9a:ea:ec:bb:b3:1d:e9:b4:09:f3:84: ed:d4:d9:41:33:e5:f5:c8:17:b4:60:e1:16:51:09: 1b:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:5B:7A:C5:64:0F:EC:50:F3:21:01:DD:84:AD:6F:72:07:0E:BB:30 X509v3 Authority Key Identifier: keyid:9C:67:EA:34:A0:11:A4:77:38:71:58:3E:C3:95:4E:79:1D:8C:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nGfqNKARpHc4cVg-w5VOeR2MAo0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/8669d3-76cd-4cb0-8278-82c67c69e923/1/nGfqNKARpHc4cVg-w5VOeR2MAo0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/8669d3-76cd-4cb0-8278-82c67c69e923/1/nGfqNKARpHc4cVg-w5VOeR2MAo0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6b:8e:2c:41:70:ca:f9:54:63:90:cc:74:8b:08:f0:e0:0e:46: ac:22:62:58:6a:41:ae:c0:fd:34:08:15:a0:a4:53:4b:d0:a7: 92:40:22:48:a4:b0:81:cb:de:5f:a7:dd:c7:29:b4:df:d9:27: 1b:6d:de:71:7e:5c:24:3d:22:fb:af:05:0e:d5:83:87:db:98: ea:88:b6:eb:17:80:f3:bd:08:af:a9:d9:46:e3:a1:9f:91:a5: 7b:bf:8f:d7:32:df:3a:ce:cb:67:f2:0a:ab:f5:1e:74:7d:ff: 0b:2b:88:25:0f:89:f7:42:da:ee:11:4b:76:85:1a:47:e6:0b: b9:ae:8b:ca:f5:8f:4c:3a:06:24:28:c8:5e:31:91:a4:a1:ec: 16:08:86:d2:c0:c0:a6:4b:21:7a:2f:fc:49:5e:4a:11:e9:a2: 6c:0a:a8:0a:d7:ab:de:8b:77:28:82:15:8f:95:c1:45:e6:d0: f9:43:f2:2e:bd:a3:09:88:4e:7b:de:cb:15:2a:65:30:09:e5: 7f:49:57:a5:84:5d:08:54:35:c2:f0:97:a1:30:5b:79:16:1d: 19:dd:b3:57:9d:85:4b:b0:0a:f8:40:47:74:2d:7f:d9:84:0c: af:9e:28:08:d3:a3:3b:cc:0a:10:06:4e:6d:dd:f3:97:15:eb: 0c:f1:c5:b7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZszslCAIjWcHTsNqcGJ2mlJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDljNjdlYTM0YTAxMWE0NzczODcxNTgzZWMzOTU0ZTc5MWQ4 YzAyOGQwHhcNMjUxMjE4MjMwMTIyWhcNMjUxMjE5MjMwMTIyWjAzMTEwLwYDVQQD Eyg5ODViN2FjNTY0MGZlYzUwZjMyMTAxZGQ4NGFkNmY3MjA3MGViYjMwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoTJW1K99sHXMQVbJyt4xNlaAC60I KRvSTwv2TBGHVey9Gl0mRYoVphfzOyDy2P6LNyVFGw3V9N21mC1VgV7LJ/F7tvjE VL7IMP2j/qV/EkubnXw6zfEXl/txY9Cmwq7p/dm0qwRoZ51jBd3x1xz3kywYhr/t kSRHJNIEstVs+mmPzVV/trbQ1k9KUyS6d064eJNwh2yrdiz6Dl5POhp2Z769TBj9 BQZR5AwPPry+QoBVTqwLq2JbDXUzh2OepLID/z5Kxti+5hDsiZVnVejcuvuP9xms 7qk7kBj/llSwlzoq9uDJmursu7Md6bQJ84Tt1NlBM+X1yBe0YOEWUQkbewIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJhbesVkD+xQ8yEB3YStb3IHDrswMB8GA1UdIwQY MBaAFJxn6jSgEaR3OHFYPsOVTnkdjAKNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbkdmcU5LQVJwSGM0Y1ZnLXc1Vk9lUjJNQW8wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZS84NjY5ZDMtNzZjZC00Y2IwLTgyNzgt ODJjNjdjNjllOTIzLzEvbkdmcU5LQVJwSGM0Y1ZnLXc1Vk9lUjJNQW8wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80ZS84NjY5ZDMtNzZjZC00Y2IwLTgyNzgtODJjNjdjNjllOTIz LzEvbkdmcU5LQVJwSGM0Y1ZnLXc1Vk9lUjJNQW8wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAa44sQXDK +VRjkMx0iwjw4A5GrCJiWGpBrsD9NAgVoKRTS9CnkkAiSKSwgcveX6fdxym039kn G23ecX5cJD0i+68FDtWDh9uY6oi26xeA870Ir6nZRuOhn5Gle7+P1zLfOs7LZ/IK q/UedH3/CyuIJQ+J90La7hFLdoUaR+YLua6LyvWPTDoGJCjIXjGRpKHsFgiG0sDA pkshei/8SV5KEemibAqoCter3ot3KIIVj5XBRebQ+UPyLr2jCYhOe97LFSplMAnl f0lXpYRdCFQ1wvCXoTBbeRYdGd2zV52FS7AK+EBHdC1/2YQMr54oCNOjO8wKEAZO bd3zlxXrDPHFtw== -----END CERTIFICATE-----Generated at Fri Dec 19 01:25:45 2025 by rpki-client