This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.mft File: nB7k05z6obOseZwX94grjOTigSA.mft (raw, json) Hash identifier: Vn6+PQMcgjWytnyx0/MZupk9badpNSlct6kIzuC4D98= Subject key identifier: 8A:33:0D:CC:9E:7E:6D:33:E9:0F:59:12:5C:03:64:D5:C6:4D:BD:D2 Authority key identifier: 9C:1E:E4:D3:9C:FA:A1:B3:AC:79:9C:17:F7:88:2B:8C:E4:E2:81:20 Certificate issuer: /CN=9c1ee4d39cfaa1b3ac799c17f7882b8ce4e28120 Certificate serial: 019B6D33BDBA2CC12B4A3C417E3427EB90C7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nB7k05z6obOseZwX94grjOTigSA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.mft Manifest number: 0A54 Signing time: Tue 30 Dec 2025 03:01:06 +0000 Manifest this update: Tue 30 Dec 2025 03:01:06 +0000 Manifest next update: Wed 31 Dec 2025 03:01:06 +0000 Files and hashes: 1: egM_lo5hkg5KA7_uP-5h7pmD4BM.roa (hash: LWEk9cOjEXdGtew0n3bgwHhe3Zn8McfotK81AHI+3M0=) 2: nB7k05z6obOseZwX94grjOTigSA.crl (hash: U6tnQfLMr8a13Xk20uCVSGixcn5qN3n6NK5tQpDTuWg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.crl rsync://rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.mft rsync://rpki.ripe.net/repository/DEFAULT/nB7k05z6obOseZwX94grjOTigSA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 31 Dec 2025 00:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:6d:33:bd:ba:2c:c1:2b:4a:3c:41:7e:34:27:eb:90:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9c1ee4d39cfaa1b3ac799c17f7882b8ce4e28120 Validity Not Before: Dec 30 03:01:06 2025 GMT Not After : Dec 31 03:01:06 2025 GMT Subject: CN=8a330dcc9e7e6d33e90f59125c0364d5c64dbdd2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:e6:14:23:5e:d6:ae:3f:7c:05:7e:a0:df:c0: c5:40:ae:c8:ce:f1:28:ff:12:ca:b6:d3:87:c6:56: 7d:55:c8:51:56:f9:25:11:61:07:c2:ef:03:b2:0f: d8:24:1f:90:3e:3b:e9:17:c1:62:79:96:61:8c:fe: d6:45:04:f5:ff:49:f7:69:e9:30:ed:5e:7e:fd:20: 28:fe:3d:26:70:b4:63:14:68:a0:c2:27:1d:f1:65: 56:ba:42:d3:dc:b7:8c:cd:54:2d:59:8e:76:ac:bd: f8:37:c2:1c:fe:19:6b:b6:70:6b:6d:7c:42:b1:47: a6:6a:a6:b8:83:63:8d:9a:63:dc:85:9c:0f:9a:61: b0:c4:95:60:c3:c6:97:a2:c6:99:a3:76:9e:72:8e: fa:75:86:e6:b9:5e:8d:11:a5:d3:56:27:30:26:e6: 20:95:9b:55:e0:ac:8e:55:86:40:59:2a:cb:da:3d: 1c:3e:3c:61:26:49:bb:78:31:cf:a3:5b:56:98:c1: 4d:e8:1a:a2:16:ae:43:a4:7c:81:d6:0e:d6:56:8f: 0b:25:32:ad:e0:a0:11:93:db:ab:c6:71:b7:dd:42: e7:cb:1e:72:d5:44:5b:8c:77:79:83:6e:8a:9a:9a: 2d:8a:ca:97:56:a9:95:b8:2c:53:8d:d1:fd:2d:34: b0:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:33:0D:CC:9E:7E:6D:33:E9:0F:59:12:5C:03:64:D5:C6:4D:BD:D2 X509v3 Authority Key Identifier: keyid:9C:1E:E4:D3:9C:FA:A1:B3:AC:79:9C:17:F7:88:2B:8C:E4:E2:81:20 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nB7k05z6obOseZwX94grjOTigSA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 69:74:ad:40:b5:26:28:27:e4:ae:9c:71:b6:ee:e2:fd:0e:a3: c4:b5:fc:a4:37:a2:72:39:a6:eb:d1:0a:79:f1:5c:5c:bf:fb: 73:dc:f7:1e:f9:f9:ee:f5:77:44:2b:fa:f9:54:32:2a:ab:42: 2d:52:17:f6:9e:4a:14:29:cd:0b:07:e3:12:7b:32:78:a4:a4: 31:4f:84:2d:45:5b:05:9e:8e:f2:8a:5b:2f:12:d9:d4:ee:87: ad:02:df:97:fc:b0:a3:95:90:29:d9:01:e3:43:ef:af:84:46: 01:29:72:39:7b:4a:01:8e:e1:04:7b:a9:33:e6:b8:f2:b1:4a: 48:2d:5c:82:f2:56:b2:cb:f5:fe:dd:f4:eb:fc:89:c2:11:5b: 71:dd:83:cb:77:5e:bf:66:18:bf:ad:52:30:ea:70:be:4e:6f: 49:49:f4:b7:52:77:3e:ff:f9:3c:58:33:15:80:7e:4f:ba:cc: f7:ed:f8:0f:9e:09:3d:82:e6:87:be:ea:55:e5:0a:60:17:58: 8a:82:2c:92:2f:43:aa:5d:a3:50:47:95:17:ff:ab:fa:9b:a3: 85:55:c7:01:d8:57:8c:ea:c2:91:20:74:23:81:b2:68:a6:0a: e7:d6:c9:09:73:db:1c:c6:4b:a7:bf:23:ca:11:24:e6:16:8f: a2:c2:e7:68 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZttM726LMErSjxBfjQn65DHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDljMWVlNGQzOWNmYWExYjNhYzc5OWMxN2Y3ODgyYjhjZTRl MjgxMjAwHhcNMjUxMjMwMDMwMTA2WhcNMjUxMjMxMDMwMTA2WjAzMTEwLwYDVQQD Eyg4YTMzMGRjYzllN2U2ZDMzZTkwZjU5MTI1YzAzNjRkNWM2NGRiZGQyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm+YUI17Wrj98BX6g38DFQK7IzvEo /xLKttOHxlZ9VchRVvklEWEHwu8Dsg/YJB+QPjvpF8FieZZhjP7WRQT1/0n3aekw 7V5+/SAo/j0mcLRjFGigwicd8WVWukLT3LeMzVQtWY52rL34N8Ic/hlrtnBrbXxC sUemaqa4g2ONmmPchZwPmmGwxJVgw8aXosaZo3aeco76dYbmuV6NEaXTVicwJuYg lZtV4KyOVYZAWSrL2j0cPjxhJkm7eDHPo1tWmMFN6BqiFq5DpHyB1g7WVo8LJTKt 4KARk9urxnG33ULnyx5y1URbjHd5g26KmpotisqXVqmVuCxTjdH9LTSw2QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIozDcyefm0z6Q9ZElwDZNXGTb3SMB8GA1UdIwQY MBaAFJwe5NOc+qGzrHmcF/eIK4zk4oEgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbkI3azA1ejZvYk9zZVp3WDk0Z3JqT1RpZ1NBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYi9iYjk3ZDktN2I4MS00NDlmLTkwNjAt YmQ0NjVjZTcxMWJiLzEvbkI3azA1ejZvYk9zZVp3WDk0Z3JqT1RpZ1NBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYi9iYjk3ZDktN2I4MS00NDlmLTkwNjAtYmQ0NjVjZTcxMWJi LzEvbkI3azA1ejZvYk9zZVp3WDk0Z3JqT1RpZ1NBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaXStQLUm KCfkrpxxtu7i/Q6jxLX8pDeicjmm69EKefFcXL/7c9z3Hvn57vV3RCv6+VQyKqtC LVIX9p5KFCnNCwfjEnsyeKSkMU+ELUVbBZ6O8opbLxLZ1O6HrQLfl/ywo5WQKdkB 40Pvr4RGASlyOXtKAY7hBHupM+a48rFKSC1cgvJWssv1/t306/yJwhFbcd2Dy3de v2YYv61SMOpwvk5vSUn0t1J3Pv/5PFgzFYB+T7rM9+34D54JPYLmh77qVeUKYBdY ioIski9Dql2jUEeVF/+r+pujhVXHAdhXjOrCkSB0I4GyaKYK59bJCXPbHMZLp78j yhEk5haPosLnaA== -----END CERTIFICATE-----Generated at Tue Dec 30 07:05:22 2025 by rpki-client