This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/7d20ed-3d4a-44d3-a2d7-d64d70612a17/1/jh_mbZ9htuZFpEe28GvUm9PgC84.mft File: jh_mbZ9htuZFpEe28GvUm9PgC84.mft (raw, json) Hash identifier: J/f8+0ruigD2v3nEHMNHa6gL8P35Iv4zP/v68SnBtvg= Subject key identifier: 27:60:D4:EC:6C:90:C5:D9:F4:14:CF:CE:AB:CB:C2:6F:23:91:C2:BD Authority key identifier: 8E:1F:E6:6D:9F:61:B6:E6:45:A4:47:B6:F0:6B:D4:9B:D3:E0:0B:CE Certificate issuer: /CN=8e1fe66d9f61b6e645a447b6f06bd49bd3e00bce Certificate serial: 019B2A780B8769EA6283BF6A310DF72C856D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jh_mbZ9htuZFpEe28GvUm9PgC84.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/7d20ed-3d4a-44d3-a2d7-d64d70612a17/1/jh_mbZ9htuZFpEe28GvUm9PgC84.mft Manifest number: 1410 Signing time: Wed 17 Dec 2025 04:01:08 +0000 Manifest this update: Wed 17 Dec 2025 04:01:08 +0000 Manifest next update: Thu 18 Dec 2025 04:01:08 +0000 Files and hashes: 1: jh_mbZ9htuZFpEe28GvUm9PgC84.crl (hash: Yq47x3uXz3pLHQ6IJ3Z2MTU1cHikjQhGQKgaxGOZMBo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/7d20ed-3d4a-44d3-a2d7-d64d70612a17/1/jh_mbZ9htuZFpEe28GvUm9PgC84.crl rsync://rpki.ripe.net/repository/DEFAULT/09/7d20ed-3d4a-44d3-a2d7-d64d70612a17/1/jh_mbZ9htuZFpEe28GvUm9PgC84.mft rsync://rpki.ripe.net/repository/DEFAULT/jh_mbZ9htuZFpEe28GvUm9PgC84.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 04:01:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2a:78:0b:87:69:ea:62:83:bf:6a:31:0d:f7:2c:85:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8e1fe66d9f61b6e645a447b6f06bd49bd3e00bce Validity Not Before: Dec 17 04:01:08 2025 GMT Not After : Dec 18 04:01:08 2025 GMT Subject: CN=2760d4ec6c90c5d9f414cfceabcbc26f2391c2bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:bf:e7:5a:3c:a2:65:22:4c:4c:a6:56:b1:7c: 0e:91:14:34:53:b8:e1:29:42:80:30:06:e9:b4:69: a8:63:33:20:c3:58:79:c4:a1:a0:f6:c8:c7:2f:72: 11:33:ef:31:c8:83:b8:28:df:1d:9e:a4:5d:b2:48: 7e:8b:2f:d3:6e:40:e9:cc:6c:4c:f7:53:f5:c4:a8: a1:04:ed:fd:b4:0e:00:1c:7f:c2:63:40:b1:e0:6e: 28:93:50:dc:99:5c:6f:d7:cc:e5:96:3c:fa:12:cf: f6:fb:72:d1:f6:02:ac:0a:53:c3:9d:50:9e:21:70: cf:cc:b3:dd:3d:1f:64:df:9d:e2:12:93:6b:d1:1e: 26:d5:62:b3:5a:a3:af:fc:a5:a9:0f:6d:cf:ad:bc: e3:68:f8:01:d5:97:5f:52:ee:36:49:61:b2:84:0a: 59:29:ed:41:e8:f7:97:ea:9e:f4:c6:1b:fd:8a:4b: b4:db:6d:0e:62:e1:e2:55:d1:9b:c1:57:5b:4c:0d: 80:13:a2:74:ac:8d:5e:0c:b0:d1:d6:58:57:97:6c: 06:e0:31:03:64:ff:c0:fd:ac:d5:0e:1a:a7:bb:7e: c9:cd:3f:12:02:a2:9d:61:49:c7:d1:38:c1:a3:ec: ec:9a:e4:a4:d0:cb:36:72:a0:5e:d8:fb:d4:77:ae: d1:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:60:D4:EC:6C:90:C5:D9:F4:14:CF:CE:AB:CB:C2:6F:23:91:C2:BD X509v3 Authority Key Identifier: keyid:8E:1F:E6:6D:9F:61:B6:E6:45:A4:47:B6:F0:6B:D4:9B:D3:E0:0B:CE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jh_mbZ9htuZFpEe28GvUm9PgC84.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/7d20ed-3d4a-44d3-a2d7-d64d70612a17/1/jh_mbZ9htuZFpEe28GvUm9PgC84.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/09/7d20ed-3d4a-44d3-a2d7-d64d70612a17/1/jh_mbZ9htuZFpEe28GvUm9PgC84.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 84:f5:b4:cf:12:1c:55:f5:d0:6c:1f:bb:60:57:47:cf:85:da: 7f:68:bc:cf:70:72:06:fe:ca:a6:9d:bc:ad:d3:fe:b4:c5:19: 9a:02:2e:b1:f6:04:4e:74:49:15:0f:d8:75:2b:27:96:c7:1a: c6:15:aa:01:9c:1e:30:a1:81:ff:7d:7c:77:27:05:61:7d:a1: 08:25:2d:94:64:21:bc:4c:08:14:9e:12:a6:82:b9:50:ef:ad: 08:ed:45:37:af:5e:53:f7:98:a1:19:38:dd:da:96:85:70:2f: 30:54:08:1a:a5:db:d9:85:f2:91:88:1f:70:f4:21:2c:dc:50: 38:f3:80:e6:27:ff:f7:53:48:ff:a1:a7:ef:65:e4:84:8f:24: d8:09:dd:22:66:ee:b9:6c:0d:87:cb:da:07:c9:84:d5:62:f3: 41:76:b3:b5:0a:dc:7a:2b:f7:5a:dd:30:11:e3:d7:b2:6e:1f: d3:24:11:b3:ca:3e:17:67:b5:bb:96:65:fa:57:d5:09:bc:83: b3:be:91:0d:9d:b6:bd:ef:e2:42:ca:f5:37:a1:3d:ce:fa:03: b7:b8:7c:1f:cc:a4:57:b1:6d:e9:07:86:f3:bf:a1:59:c7:e1: bd:e6:f5:b4:3b:9b:51:ea:80:d7:5b:46:f7:d9:4f:85:02:13: ff:d9:40:88 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsqeAuHaepig79qMQ33LIVtMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhlMWZlNjZkOWY2MWI2ZTY0NWE0NDdiNmYwNmJkNDliZDNl MDBiY2UwHhcNMjUxMjE3MDQwMTA4WhcNMjUxMjE4MDQwMTA4WjAzMTEwLwYDVQQD EygyNzYwZDRlYzZjOTBjNWQ5ZjQxNGNmY2VhYmNiYzI2ZjIzOTFjMmJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx7/nWjyiZSJMTKZWsXwOkRQ0U7jh KUKAMAbptGmoYzMgw1h5xKGg9sjHL3IRM+8xyIO4KN8dnqRdskh+iy/TbkDpzGxM 91P1xKihBO39tA4AHH/CY0Cx4G4ok1DcmVxv18zlljz6Es/2+3LR9gKsClPDnVCe IXDPzLPdPR9k353iEpNr0R4m1WKzWqOv/KWpD23PrbzjaPgB1ZdfUu42SWGyhApZ Ke1B6PeX6p70xhv9iku0220OYuHiVdGbwVdbTA2AE6J0rI1eDLDR1lhXl2wG4DED ZP/A/azVDhqnu37JzT8SAqKdYUnH0TjBo+zsmuSk0Ms2cqBe2PvUd67R1QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCdg1OxskMXZ9BTPzqvLwm8jkcK9MB8GA1UdIwQY MBaAFI4f5m2fYbbmRaRHtvBr1JvT4AvOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvamhfbWJaOWh0dVpGcEVlMjhHdlVtOVBnQzg0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS83ZDIwZWQtM2Q0YS00NGQzLWEyZDct ZDY0ZDcwNjEyYTE3LzEvamhfbWJaOWh0dVpGcEVlMjhHdlVtOVBnQzg0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wOS83ZDIwZWQtM2Q0YS00NGQzLWEyZDctZDY0ZDcwNjEyYTE3 LzEvamhfbWJaOWh0dVpGcEVlMjhHdlVtOVBnQzg0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhPW0zxIc VfXQbB+7YFdHz4Xaf2i8z3ByBv7Kpp28rdP+tMUZmgIusfYETnRJFQ/YdSsnlsca xhWqAZweMKGB/318dycFYX2hCCUtlGQhvEwIFJ4SpoK5UO+tCO1FN69eU/eYoRk4 3dqWhXAvMFQIGqXb2YXykYgfcPQhLNxQOPOA5if/91NI/6Gn72XkhI8k2AndImbu uWwNh8vaB8mE1WLzQXaztQrceiv3Wt0wEePXsm4f0yQRs8o+F2e1u5Zl+lfVCbyD s76RDZ22ve/iQsr1N6E9zvoDt7h8H8ykV7Ft6QeG87+hWcfhveb1tDubUeqA11tG 99lPhQIT/9lAiA== -----END CERTIFICATE-----Generated at Wed Dec 17 13:48:43 2025 by rpki-client