This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/060859-7707-412a-9810-dbb2931a0f64/1/nSOcCOrZS7BPw-a0pl5uHH3POPQ.mft File: nSOcCOrZS7BPw-a0pl5uHH3POPQ.mft (raw, json) Hash identifier: dkgYF4+P8ndFnnbtl7p3wr51nylwT0X2B1yOBKXofqk= Subject key identifier: C9:30:50:F0:07:12:24:76:73:16:E4:EF:3F:18:72:4B:C1:59:7A:B3 Authority key identifier: 9D:23:9C:08:EA:D9:4B:B0:4F:C3:E6:B4:A6:5E:6E:1C:7D:CF:38:F4 Certificate issuer: /CN=9d239c08ead94bb04fc3e6b4a65e6e1c7dcf38f4 Certificate serial: 019B522AAA240A14768DF59D1A763FDA92A9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSOcCOrZS7BPw-a0pl5uHH3POPQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/060859-7707-412a-9810-dbb2931a0f64/1/nSOcCOrZS7BPw-a0pl5uHH3POPQ.mft Manifest number: 1795 Signing time: Wed 24 Dec 2025 21:01:26 +0000 Manifest this update: Wed 24 Dec 2025 21:01:26 +0000 Manifest next update: Thu 25 Dec 2025 21:01:26 +0000 Files and hashes: 1: CPqSq0ytAxDio98lkjeb_dYwRZ4.roa (hash: DBQ2P8ThG/7CNm8RF8WiO7psAqOGJ9hYf3OIiBNBEtw=) 2: nSOcCOrZS7BPw-a0pl5uHH3POPQ.crl (hash: fmucyqteWcckI3Epjd3Ol1eUd/i8IHtTiN1Wt97tJTM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/060859-7707-412a-9810-dbb2931a0f64/1/nSOcCOrZS7BPw-a0pl5uHH3POPQ.crl rsync://rpki.ripe.net/repository/DEFAULT/ba/060859-7707-412a-9810-dbb2931a0f64/1/nSOcCOrZS7BPw-a0pl5uHH3POPQ.mft rsync://rpki.ripe.net/repository/DEFAULT/nSOcCOrZS7BPw-a0pl5uHH3POPQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 25 Dec 2025 18:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:52:2a:aa:24:0a:14:76:8d:f5:9d:1a:76:3f:da:92:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9d239c08ead94bb04fc3e6b4a65e6e1c7dcf38f4 Validity Not Before: Dec 24 21:01:26 2025 GMT Not After : Dec 25 21:01:26 2025 GMT Subject: CN=c93050f0071224767316e4ef3f18724bc1597ab3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:cd:b8:30:11:ee:c4:6b:60:e2:cb:94:47:7d: f8:94:1f:c9:91:fa:7f:f9:7a:92:91:9f:06:3e:e9: 0a:11:41:72:55:00:99:8f:93:86:22:0e:60:c0:5a: 54:d2:10:f9:47:69:db:83:c3:84:68:8d:7f:0a:80: 85:64:80:ad:45:dc:ac:91:9b:4c:12:6e:a4:2a:4e: 74:53:e3:c3:bc:c7:38:04:c3:15:10:9e:82:80:fc: d3:6a:a4:0a:90:d9:60:a8:11:a5:b9:b1:bf:04:04: a0:76:ee:7a:bd:04:2c:cb:0a:9f:42:ce:62:f4:8b: a2:e4:a2:cd:44:eb:9e:9f:e7:62:3b:c2:85:bb:c7: 44:b3:98:9c:f5:23:71:85:fa:2b:42:91:0a:06:1e: 9f:fa:57:e6:37:f0:1e:87:3b:24:45:72:a7:ab:45: ca:70:c5:e3:c6:b8:0a:41:ce:69:49:34:b4:db:5a: 3b:f6:c2:b5:f8:88:b2:15:13:fe:d0:70:f8:c3:52: 3e:ad:e4:b7:47:af:24:21:50:93:4c:86:a7:ac:b2: 12:cb:cc:65:29:85:dc:d6:f5:92:20:42:d6:94:46: 78:af:b2:72:bd:06:27:6c:1e:81:36:5a:d9:3e:7b: 1c:60:ca:01:01:bc:09:89:32:24:75:cd:0e:d6:15: f7:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:30:50:F0:07:12:24:76:73:16:E4:EF:3F:18:72:4B:C1:59:7A:B3 X509v3 Authority Key Identifier: keyid:9D:23:9C:08:EA:D9:4B:B0:4F:C3:E6:B4:A6:5E:6E:1C:7D:CF:38:F4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSOcCOrZS7BPw-a0pl5uHH3POPQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/060859-7707-412a-9810-dbb2931a0f64/1/nSOcCOrZS7BPw-a0pl5uHH3POPQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/060859-7707-412a-9810-dbb2931a0f64/1/nSOcCOrZS7BPw-a0pl5uHH3POPQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 57:00:fd:a6:bf:de:d3:fd:0e:55:6f:db:c8:98:23:9d:c1:b8: b1:50:aa:8b:83:4c:14:4e:fd:f8:5a:74:2b:a1:ad:c6:72:31: e7:55:d2:4a:80:59:95:3c:a3:9c:88:43:8d:e7:45:63:18:c4: 7d:73:13:9c:cc:f9:c5:27:1f:63:0c:a2:96:20:9b:48:ab:ba: 27:58:8d:7e:b9:0e:c6:df:df:53:e3:05:9c:fb:86:cf:63:69: f7:27:98:f9:a8:57:5d:3d:e3:e3:e2:5d:df:5d:5b:f8:88:7c: 0b:f5:82:46:8a:06:34:cd:f4:21:4b:36:4e:b4:bb:5a:53:bf: 4d:66:05:92:58:8f:44:87:d7:16:8e:94:5e:c7:a6:c4:39:9b: 3a:af:55:11:86:12:5b:19:8f:7b:b7:9c:58:bb:d4:df:a5:4c: 4e:dc:bf:53:2b:a5:6b:64:b8:30:e4:44:8f:0e:9a:3e:a3:4a: 21:2a:14:59:20:5a:98:49:55:01:91:ec:12:b7:6d:bc:8b:9e: a5:9f:38:1e:bf:e5:b1:0f:cf:54:7b:ab:03:55:1b:13:cc:97: 0a:a7:8a:57:20:bd:d8:8a:5a:87:f6:9e:39:18:c7:69:e4:52: 5f:cc:cc:49:5d:e0:a8:6b:50:da:17:4c:5d:c9:cd:bc:c0:13: 3f:e2:0b:e7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtSKqokChR2jfWdGnY/2pKpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlkMjM5YzA4ZWFkOTRiYjA0ZmMzZTZiNGE2NWU2ZTFjN2Rj ZjM4ZjQwHhcNMjUxMjI0MjEwMTI2WhcNMjUxMjI1MjEwMTI2WjAzMTEwLwYDVQQD EyhjOTMwNTBmMDA3MTIyNDc2NzMxNmU0ZWYzZjE4NzI0YmMxNTk3YWIzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4M24MBHuxGtg4suUR334lB/Jkfp/ +XqSkZ8GPukKEUFyVQCZj5OGIg5gwFpU0hD5R2nbg8OEaI1/CoCFZICtRdyskZtM Em6kKk50U+PDvMc4BMMVEJ6CgPzTaqQKkNlgqBGlubG/BASgdu56vQQsywqfQs5i 9Iui5KLNROuen+diO8KFu8dEs5ic9SNxhforQpEKBh6f+lfmN/AehzskRXKnq0XK cMXjxrgKQc5pSTS021o79sK1+IiyFRP+0HD4w1I+reS3R68kIVCTTIanrLISy8xl KYXc1vWSIELWlEZ4r7JyvQYnbB6BNlrZPnscYMoBAbwJiTIkdc0O1hX3CwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMkwUPAHEiR2cxbk7z8YckvBWXqzMB8GA1UdIwQY MBaAFJ0jnAjq2UuwT8PmtKZebhx9zzj0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvblNPY0NPclpTN0JQdy1hMHBsNXVISDNQT1BRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYS8wNjA4NTktNzcwNy00MTJhLTk4MTAt ZGJiMjkzMWEwZjY0LzEvblNPY0NPclpTN0JQdy1hMHBsNXVISDNQT1BRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYS8wNjA4NTktNzcwNy00MTJhLTk4MTAtZGJiMjkzMWEwZjY0 LzEvblNPY0NPclpTN0JQdy1hMHBsNXVISDNQT1BRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVwD9pr/e 0/0OVW/byJgjncG4sVCqi4NMFE79+Fp0K6GtxnIx51XSSoBZlTyjnIhDjedFYxjE fXMTnMz5xScfYwyiliCbSKu6J1iNfrkOxt/fU+MFnPuGz2Np9yeY+ahXXT3j4+Jd 311b+Ih8C/WCRooGNM30IUs2TrS7WlO/TWYFkliPRIfXFo6UXsemxDmbOq9VEYYS WxmPe7ecWLvU36VMTty/Uyula2S4MOREjw6aPqNKISoUWSBamElVAZHsErdtvIue pZ84Hr/lsQ/PVHurA1UbE8yXCqeKVyC92Ipah/aeORjHaeRSX8zMSV3gqGtQ2hdM XcnNvMATP+IL5w== -----END CERTIFICATE-----Generated at Thu Dec 25 04:33:44 2025 by rpki-client