This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/221fcd-61e5-4b45-a359-72f6ca757a08/1/NQtAztNuMfkF4abo4DxiHp-_yyk.mft File: NQtAztNuMfkF4abo4DxiHp-_yyk.mft (raw, json) Hash identifier: MxRom7eRdUfsmwBEaOLshAl0cM5OzvzS0vucuHxFO7Y= Subject key identifier: A4:AD:E4:88:DA:7B:31:BC:E6:F1:62:D2:BC:33:22:81:1E:FB:E5:8B Authority key identifier: 35:0B:40:CE:D3:6E:31:F9:05:E1:A6:E8:E0:3C:62:1E:9F:BF:CB:29 Certificate issuer: /CN=350b40ced36e31f905e1a6e8e03c621e9fbfcb29 Certificate serial: 019B2D0B5F052380E26B9920ECDDE02CC25E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NQtAztNuMfkF4abo4DxiHp-_yyk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/221fcd-61e5-4b45-a359-72f6ca757a08/1/NQtAztNuMfkF4abo4DxiHp-_yyk.mft Manifest number: 14BD Signing time: Wed 17 Dec 2025 16:01:18 +0000 Manifest this update: Wed 17 Dec 2025 16:01:18 +0000 Manifest next update: Thu 18 Dec 2025 16:01:18 +0000 Files and hashes: 1: NQtAztNuMfkF4abo4DxiHp-_yyk.crl (hash: pYxfbLUBt9pxyUjqcmE0hvQDK1Fp9jUNqZ+Ek5P1EyM=) 2: u7-gL9wSp2bGW7DIF24NVuhmOKc.roa (hash: tP75Wdne3vqUbGN0hrtXpkGNXdZlPHZwjnI3xiXFlak=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/221fcd-61e5-4b45-a359-72f6ca757a08/1/NQtAztNuMfkF4abo4DxiHp-_yyk.crl rsync://rpki.ripe.net/repository/DEFAULT/aa/221fcd-61e5-4b45-a359-72f6ca757a08/1/NQtAztNuMfkF4abo4DxiHp-_yyk.mft rsync://rpki.ripe.net/repository/DEFAULT/NQtAztNuMfkF4abo4DxiHp-_yyk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 16:01:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2d:0b:5f:05:23:80:e2:6b:99:20:ec:dd:e0:2c:c2:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=350b40ced36e31f905e1a6e8e03c621e9fbfcb29 Validity Not Before: Dec 17 16:01:18 2025 GMT Not After : Dec 18 16:01:18 2025 GMT Subject: CN=a4ade488da7b31bce6f162d2bc3322811efbe58b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:9c:e7:cd:17:8c:68:3f:25:e0:ac:b6:48:82: ed:43:5e:f4:6e:8f:ea:52:13:a2:a2:14:89:17:79: 79:31:46:6b:5a:a1:4f:01:3c:29:39:e0:72:cd:44: 7d:c0:05:66:94:33:a4:90:5e:a2:ca:0c:14:e3:36: 51:0a:c6:1f:11:37:c3:2f:4e:ee:db:f9:51:6a:aa: c5:93:6e:b8:c8:ef:32:95:10:d3:ca:69:5c:6f:be: 4a:d7:08:07:8f:00:00:03:68:a7:3d:cc:42:3e:e6: 4c:20:56:f9:22:4f:e2:61:c9:74:c9:f5:6d:4c:e8: a4:5e:7a:aa:ae:bd:4a:10:09:41:51:fc:b3:0b:a6: 93:82:a7:ee:af:09:b1:12:12:bd:f9:af:f6:00:71: f7:0f:ac:a0:bd:bd:59:26:70:a0:7f:71:98:4a:56: e7:9b:bc:24:45:34:8b:b9:f8:72:d7:53:66:16:81: 23:3f:66:5f:2a:92:cc:c0:8f:6a:21:b9:2d:b7:63: a0:a9:ed:c8:11:e3:d7:68:6d:2b:07:4b:ea:3a:9d: 2f:38:0d:97:fd:1a:42:d4:c4:03:f0:d7:ec:8a:4d: 53:5d:2a:04:92:a5:77:0c:c1:b3:ab:47:32:30:3a: 91:cd:09:67:8e:7b:6c:4a:c2:fb:f8:48:28:ee:e4: b2:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:AD:E4:88:DA:7B:31:BC:E6:F1:62:D2:BC:33:22:81:1E:FB:E5:8B X509v3 Authority Key Identifier: keyid:35:0B:40:CE:D3:6E:31:F9:05:E1:A6:E8:E0:3C:62:1E:9F:BF:CB:29 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NQtAztNuMfkF4abo4DxiHp-_yyk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/221fcd-61e5-4b45-a359-72f6ca757a08/1/NQtAztNuMfkF4abo4DxiHp-_yyk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/221fcd-61e5-4b45-a359-72f6ca757a08/1/NQtAztNuMfkF4abo4DxiHp-_yyk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 68:0b:82:9a:d8:57:3a:20:1d:e4:cf:9c:4e:ba:31:ca:ab:dd: 65:e4:15:01:1a:6a:fe:53:40:57:ed:35:b5:75:f9:e5:2e:13: a7:8c:e5:4c:a2:4c:c7:98:62:5e:f9:52:c9:61:33:73:6d:59: b3:93:70:7c:0a:87:1c:21:74:30:22:a2:3c:35:43:3e:96:71: 1f:13:a3:2d:e0:16:14:08:a7:9e:2c:a9:14:67:f2:29:a5:5a: 40:67:c2:46:48:e2:36:e6:c5:db:96:c2:d6:2e:a2:4f:ae:5a: e3:bc:0a:35:76:43:10:ee:4a:ba:5b:e4:62:04:21:e1:3d:73: 5b:2a:b7:3e:a6:99:fd:8b:eb:6f:ab:12:68:84:70:66:6a:41: 01:ce:87:a3:2e:cb:3f:73:39:45:2c:90:c7:be:85:7c:ef:92: a5:b0:3e:ac:f5:ea:fe:f0:ea:43:e4:58:40:cd:c2:43:7c:28: 7c:62:df:43:e9:4f:21:c0:d0:9c:bf:07:24:6a:e8:93:9b:5b: f8:b9:e6:42:90:6a:c7:f7:4a:8f:d4:40:f1:0b:71:78:bc:51: 90:a1:bd:71:ea:9d:91:80:ca:50:f4:cb:51:6c:12:36:41:69: b2:1f:79:23:21:f8:f0:15:63:38:4c:80:9c:84:e7:f4:18:93: d1:c7:99:6c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZstC18FI4Dia5kg7N3gLMJeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM1MGI0MGNlZDM2ZTMxZjkwNWUxYTZlOGUwM2M2MjFlOWZi ZmNiMjkwHhcNMjUxMjE3MTYwMTE4WhcNMjUxMjE4MTYwMTE4WjAzMTEwLwYDVQQD EyhhNGFkZTQ4OGRhN2IzMWJjZTZmMTYyZDJiYzMzMjI4MTFlZmJlNThiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkZznzReMaD8l4Ky2SILtQ170bo/q UhOiohSJF3l5MUZrWqFPATwpOeByzUR9wAVmlDOkkF6iygwU4zZRCsYfETfDL07u 2/lRaqrFk264yO8ylRDTymlcb75K1wgHjwAAA2inPcxCPuZMIFb5Ik/iYcl0yfVt TOikXnqqrr1KEAlBUfyzC6aTgqfurwmxEhK9+a/2AHH3D6ygvb1ZJnCgf3GYSlbn m7wkRTSLufhy11NmFoEjP2ZfKpLMwI9qIbktt2Ogqe3IEePXaG0rB0vqOp0vOA2X /RpC1MQD8Nfsik1TXSoEkqV3DMGzq0cyMDqRzQlnjntsSsL7+Ego7uSylQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKSt5IjaezG85vFi0rwzIoEe++WLMB8GA1UdIwQY MBaAFDULQM7TbjH5BeGm6OA8Yh6fv8spMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTlF0QXp0TnVNZmtGNGFibzREeGlIcC1feXlrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS8yMjFmY2QtNjFlNS00YjQ1LWEzNTkt NzJmNmNhNzU3YTA4LzEvTlF0QXp0TnVNZmtGNGFibzREeGlIcC1feXlrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYS8yMjFmY2QtNjFlNS00YjQ1LWEzNTktNzJmNmNhNzU3YTA4 LzEvTlF0QXp0TnVNZmtGNGFibzREeGlIcC1feXlrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaAuCmthX OiAd5M+cTroxyqvdZeQVARpq/lNAV+01tXX55S4Tp4zlTKJMx5hiXvlSyWEzc21Z s5NwfAqHHCF0MCKiPDVDPpZxHxOjLeAWFAinniypFGfyKaVaQGfCRkjiNubF25bC 1i6iT65a47wKNXZDEO5KulvkYgQh4T1zWyq3PqaZ/Yvrb6sSaIRwZmpBAc6Hoy7L P3M5RSyQx76FfO+SpbA+rPXq/vDqQ+RYQM3CQ3wofGLfQ+lPIcDQnL8HJGrok5tb +LnmQpBqx/dKj9RA8QtxeLxRkKG9ceqdkYDKUPTLUWwSNkFpsh95IyH48BVjOEyA nITn9BiT0ceZbA== -----END CERTIFICATE-----Generated at Wed Dec 17 22:03:27 2025 by rpki-client