This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/8a6692-f646-49f0-8821-0212b3eae97c/1/nSh1M866BkWhSM8QyMJ-qachoJ0.mft File: nSh1M866BkWhSM8QyMJ-qachoJ0.mft (raw, json) Hash identifier: p/XceLJAdrM4f6k7eAAGJ5JQjQv67EeO+7J8YeOanzg= Subject key identifier: 3D:7A:2F:88:E1:1E:28:DD:68:38:8F:BA:5A:EE:1E:CD:7D:75:C5:8F Authority key identifier: 9D:28:75:33:CE:BA:06:45:A1:48:CF:10:C8:C2:7E:A9:A7:21:A0:9D Certificate issuer: /CN=9d287533ceba0645a148cf10c8c27ea9a721a09d Certificate serial: 019B4A70FEF5B2C2E28AB8BF4B3F9B6837E0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSh1M866BkWhSM8QyMJ-qachoJ0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/8a6692-f646-49f0-8821-0212b3eae97c/1/nSh1M866BkWhSM8QyMJ-qachoJ0.mft Manifest number: 178E Signing time: Tue 23 Dec 2025 09:01:17 +0000 Manifest this update: Tue 23 Dec 2025 09:01:17 +0000 Manifest next update: Wed 24 Dec 2025 09:01:17 +0000 Files and hashes: 1: MEQtA-51-LVqFHEVZDRMjfjnudY.roa (hash: mP68hXGlyjMnNhpMDZaBlI/pFMVdjYCWoJ7Gpxv9o84=) 2: Re1CMq4a8GRTlVAhciRLdjmNzME.roa (hash: e1LlxuTfucQ1ynw/jUhK7unO/vlcuYPu64TBZ3UmBVk=) 3: nSh1M866BkWhSM8QyMJ-qachoJ0.crl (hash: GXahkD80y9faoyDxSzI6o8fERe9p+ttUrlg6fCSdXDY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/8a6692-f646-49f0-8821-0212b3eae97c/1/nSh1M866BkWhSM8QyMJ-qachoJ0.crl rsync://rpki.ripe.net/repository/DEFAULT/bd/8a6692-f646-49f0-8821-0212b3eae97c/1/nSh1M866BkWhSM8QyMJ-qachoJ0.mft rsync://rpki.ripe.net/repository/DEFAULT/nSh1M866BkWhSM8QyMJ-qachoJ0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 24 Dec 2025 09:01:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:4a:70:fe:f5:b2:c2:e2:8a:b8:bf:4b:3f:9b:68:37:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9d287533ceba0645a148cf10c8c27ea9a721a09d Validity Not Before: Dec 23 09:01:17 2025 GMT Not After : Dec 24 09:01:17 2025 GMT Subject: CN=3d7a2f88e11e28dd68388fba5aee1ecd7d75c58f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:6e:ff:83:ee:8d:13:aa:7a:95:7d:09:50:c5: 30:bd:4d:04:11:c2:5c:66:a2:b2:fa:ee:75:39:16: 80:c1:d9:eb:79:3c:b2:30:68:1a:25:62:86:a3:1a: 68:e3:63:ce:72:e2:0b:14:93:b3:1d:43:62:c7:75: 8a:95:03:d6:d9:28:3b:e1:6f:f9:bf:7c:60:22:8d: 8a:ff:1f:41:38:71:be:87:04:2a:b1:73:d6:33:99: 05:09:75:b0:90:83:5a:aa:da:df:b5:2f:d7:cf:f8: 71:47:67:2a:37:af:6c:37:c3:87:7a:09:42:90:de: 2c:0f:be:f7:d2:5a:3a:63:db:2f:99:de:ad:00:1a: c6:8b:c5:13:62:c1:2a:e2:a6:93:22:2d:c1:1e:a1: 44:81:f5:c8:87:e7:77:54:44:06:77:1e:3d:a5:5e: 56:fd:69:a1:f4:49:2e:66:26:54:ff:ad:90:53:dd: c6:50:5a:85:b1:3a:5c:87:46:6a:86:cb:83:6a:b9: df:07:04:0c:fe:65:b8:22:82:20:fb:ce:0b:62:8a: 55:35:ef:7c:58:b1:d8:c1:8a:dd:85:2d:79:e7:76: 4c:aa:53:47:da:65:1e:e0:48:03:e5:d1:a4:28:d9: df:af:1f:cf:71:7d:0e:48:ac:dd:7c:52:3b:7c:16: 1c:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:7A:2F:88:E1:1E:28:DD:68:38:8F:BA:5A:EE:1E:CD:7D:75:C5:8F X509v3 Authority Key Identifier: keyid:9D:28:75:33:CE:BA:06:45:A1:48:CF:10:C8:C2:7E:A9:A7:21:A0:9D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSh1M866BkWhSM8QyMJ-qachoJ0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/8a6692-f646-49f0-8821-0212b3eae97c/1/nSh1M866BkWhSM8QyMJ-qachoJ0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/8a6692-f646-49f0-8821-0212b3eae97c/1/nSh1M866BkWhSM8QyMJ-qachoJ0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6a:80:a9:1c:33:b6:3c:50:72:ee:22:4e:80:b4:31:00:0a:bd: 7d:6a:20:a9:4c:d9:23:05:b9:f9:be:66:67:bc:7d:5d:38:b9: 11:58:62:d2:51:0a:8e:c6:90:db:1b:a9:fc:53:88:f0:0a:4b: 58:1a:34:87:e5:8a:3b:bc:58:ce:28:b5:32:81:88:2e:d7:c9: 92:ed:7d:c3:66:89:3a:31:bd:30:c8:94:e3:1b:82:bf:36:b8: bf:aa:4f:9c:66:4e:ef:52:7e:ea:dc:9d:23:91:d3:ee:82:24: 28:14:22:a6:a4:7a:ae:28:7a:bb:bd:67:e2:52:55:c2:0b:ef: 32:fe:30:4e:d5:d3:e0:c0:ac:b8:3b:fc:62:45:af:0b:82:0b: 1f:38:72:08:12:f3:55:64:12:7b:62:27:a7:0c:06:43:c9:e0: fe:7e:d4:28:ac:3a:aa:66:91:20:e1:41:37:4b:48:b0:a2:0f: c6:fc:3e:b5:18:47:c5:16:14:99:42:7e:75:b7:ef:37:15:e0: b6:8f:74:7d:51:c4:b6:d5:68:e2:fa:b8:b8:ed:cc:a4:cf:62: 7c:8e:a0:87:52:2d:07:bf:a6:46:14:d9:00:ca:f5:f6:fb:04: bf:52:eb:4d:cc:2b:2a:93:6e:af:23:26:2d:7a:c0:18:aa:33: 91:82:96:b2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtKcP71ssLiiri/Sz+baDfgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlkMjg3NTMzY2ViYTA2NDVhMTQ4Y2YxMGM4YzI3ZWE5YTcy MWEwOWQwHhcNMjUxMjIzMDkwMTE3WhcNMjUxMjI0MDkwMTE3WjAzMTEwLwYDVQQD EygzZDdhMmY4OGUxMWUyOGRkNjgzODhmYmE1YWVlMWVjZDdkNzVjNThmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtG7/g+6NE6p6lX0JUMUwvU0EEcJc ZqKy+u51ORaAwdnreTyyMGgaJWKGoxpo42POcuILFJOzHUNix3WKlQPW2Sg74W/5 v3xgIo2K/x9BOHG+hwQqsXPWM5kFCXWwkINaqtrftS/Xz/hxR2cqN69sN8OHeglC kN4sD7730lo6Y9svmd6tABrGi8UTYsEq4qaTIi3BHqFEgfXIh+d3VEQGdx49pV5W /Wmh9EkuZiZU/62QU93GUFqFsTpch0ZqhsuDarnfBwQM/mW4IoIg+84LYopVNe98 WLHYwYrdhS1553ZMqlNH2mUe4EgD5dGkKNnfrx/PcX0OSKzdfFI7fBYcqQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFD16L4jhHijdaDiPulruHs19dcWPMB8GA1UdIwQY MBaAFJ0odTPOugZFoUjPEMjCfqmnIaCdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvblNoMU04NjZCa1doU004UXlNSi1xYWNob0owLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC84YTY2OTItZjY0Ni00OWYwLTg4MjEt MDIxMmIzZWFlOTdjLzEvblNoMU04NjZCa1doU004UXlNSi1xYWNob0owLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZC84YTY2OTItZjY0Ni00OWYwLTg4MjEtMDIxMmIzZWFlOTdj LzEvblNoMU04NjZCa1doU004UXlNSi1xYWNob0owLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaoCpHDO2 PFBy7iJOgLQxAAq9fWogqUzZIwW5+b5mZ7x9XTi5EVhi0lEKjsaQ2xup/FOI8ApL WBo0h+WKO7xYzii1MoGILtfJku19w2aJOjG9MMiU4xuCvza4v6pPnGZO71J+6tyd I5HT7oIkKBQipqR6rih6u71n4lJVwgvvMv4wTtXT4MCsuDv8YkWvC4ILHzhyCBLz VWQSe2InpwwGQ8ng/n7UKKw6qmaRIOFBN0tIsKIPxvw+tRhHxRYUmUJ+dbfvNxXg to90fVHEttVo4vq4uO3MpM9ifI6gh1ItB7+mRhTZAMr19vsEv1LrTcwrKpNuryMm LXrAGKozkYKWsg== -----END CERTIFICATE-----Generated at Tue Dec 23 16:55:12 2025 by rpki-client