This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/227b53-473d-46af-8201-98e879ea3726/1/jbK0TyPcypwGBL7WkPKKatkBeZk.mft File: jbK0TyPcypwGBL7WkPKKatkBeZk.mft (raw, json) Hash identifier: B/xtdmshpkrI5Fxkj7kNRnj5+9z1SPjvkvRaNFw9pY8= Subject key identifier: 92:E0:23:41:78:82:F5:3C:A1:0E:6C:20:BA:56:7D:87:E7:C4:A7:99 Authority key identifier: 8D:B2:B4:4F:23:DC:CA:9C:06:04:BE:D6:90:F2:8A:6A:D9:01:79:99 Certificate issuer: /CN=8db2b44f23dcca9c0604bed690f28a6ad9017999 Certificate serial: 019AF12CE0FC61F6B2E61FA50D23A2C00FE2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jbK0TyPcypwGBL7WkPKKatkBeZk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/227b53-473d-46af-8201-98e879ea3726/1/jbK0TyPcypwGBL7WkPKKatkBeZk.mft Manifest number: 41 Signing time: Sat 06 Dec 2025 01:00:41 +0000 Manifest this update: Sat 06 Dec 2025 01:00:41 +0000 Manifest next update: Sun 07 Dec 2025 01:00:41 +0000 Files and hashes: 1: 5WohgI8tokdWePAAZwHEQvswWYU.roa (hash: eFTYXxWMtPfD9bURTpn9aVW+rjoqm6VU8HSnGT9lP2I=) 2: jbK0TyPcypwGBL7WkPKKatkBeZk.crl (hash: MzNVk1X/B2zipXuRIaBNHyE7Uf7d3DwLZ6wUs2dG1qc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/227b53-473d-46af-8201-98e879ea3726/1/jbK0TyPcypwGBL7WkPKKatkBeZk.crl rsync://rpki.ripe.net/repository/DEFAULT/19/227b53-473d-46af-8201-98e879ea3726/1/jbK0TyPcypwGBL7WkPKKatkBeZk.mft rsync://rpki.ripe.net/repository/DEFAULT/jbK0TyPcypwGBL7WkPKKatkBeZk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2c:e0:fc:61:f6:b2:e6:1f:a5:0d:23:a2:c0:0f:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8db2b44f23dcca9c0604bed690f28a6ad9017999 Validity Not Before: Dec 6 01:00:41 2025 GMT Not After : Dec 7 01:00:41 2025 GMT Subject: CN=92e023417882f53ca10e6c20ba567d87e7c4a799 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:09:56:7c:cc:d7:eb:b9:ef:53:d4:bc:9a:f1: a9:ff:e0:18:d0:fe:7a:f6:bc:96:fd:5a:a7:14:d1: 96:98:f4:cc:3c:b7:c6:78:f6:e0:1d:3b:e9:84:34: b9:ba:b3:54:c9:d4:8a:54:cc:ac:35:7c:ec:e3:96: 21:a3:7f:30:81:84:93:2a:75:03:42:5a:61:b8:10: b0:60:39:70:5a:9a:d9:cc:00:fc:de:1e:34:cc:43: d2:c1:4f:3d:33:25:f2:57:fc:68:53:c0:73:4c:66: da:7d:8d:99:32:24:01:b3:85:74:65:b4:dc:e4:a9: c3:91:16:a8:04:74:d4:f7:16:f6:5e:45:f5:65:90: 24:75:79:83:43:6b:b5:1c:28:79:5f:91:ea:d0:86: 7d:e1:b1:5b:9b:51:e3:ec:78:bf:31:78:67:14:e8: 89:94:64:32:7a:7a:d6:2a:ab:72:73:b0:6a:11:9f: a2:01:de:93:45:70:04:ef:3f:81:9c:84:19:8d:28: c6:82:e7:7b:41:15:e0:80:a4:79:70:ab:a0:43:a5: 29:00:53:18:76:66:4d:a4:bc:28:76:b3:72:1b:27: f9:48:89:4f:e2:aa:76:8c:cf:ec:89:1b:00:0f:3c: 42:fc:87:e9:fd:1c:04:95:ed:41:04:8e:df:c1:6d: 93:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:E0:23:41:78:82:F5:3C:A1:0E:6C:20:BA:56:7D:87:E7:C4:A7:99 X509v3 Authority Key Identifier: keyid:8D:B2:B4:4F:23:DC:CA:9C:06:04:BE:D6:90:F2:8A:6A:D9:01:79:99 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jbK0TyPcypwGBL7WkPKKatkBeZk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/227b53-473d-46af-8201-98e879ea3726/1/jbK0TyPcypwGBL7WkPKKatkBeZk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/19/227b53-473d-46af-8201-98e879ea3726/1/jbK0TyPcypwGBL7WkPKKatkBeZk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 65:09:49:a5:fd:7c:df:d1:c0:05:03:d4:50:ae:c3:4c:1f:88: d0:37:22:d7:fa:01:a6:95:a7:d2:7d:7a:15:b9:6d:03:c7:97: 5e:fd:84:69:7b:54:cb:05:2d:bc:c6:5d:3e:36:98:3f:8c:83: b4:3c:99:95:dd:41:3b:d9:ef:8c:fb:81:41:b7:78:62:fc:21: 03:2c:20:35:c6:40:59:a9:4a:62:86:54:e4:ff:8d:73:21:ee: 53:46:2d:54:37:ab:84:77:1a:f2:23:01:81:46:a4:b1:56:9b: a7:f6:67:a6:a6:e9:4c:56:fb:a8:09:98:87:e8:20:57:19:3d: 88:33:0b:d7:9e:52:ba:be:d5:de:ed:5f:11:98:bb:36:33:12: 57:c1:7d:5f:03:46:29:ae:dd:4c:15:50:34:10:cd:d5:c9:32: 7e:34:bd:35:20:00:49:44:01:6d:14:ea:5a:3d:5c:29:e2:76: ba:48:0a:de:74:d3:26:10:c3:88:cc:81:a5:62:9e:0a:47:a2: 2d:e2:4c:da:d8:ae:17:39:b3:a1:62:54:36:af:52:a0:23:ae: f1:be:32:78:e8:ee:11:f8:66:d0:f2:8e:21:fd:ee:09:0d:ac: ca:80:be:bd:8e:a9:7e:d6:57:41:64:b9:36:00:1f:8c:ca:e4: b3:7c:58:a1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLOD8Yfay5h+lDSOiwA/iMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhkYjJiNDRmMjNkY2NhOWMwNjA0YmVkNjkwZjI4YTZhZDkw MTc5OTkwHhcNMjUxMjA2MDEwMDQxWhcNMjUxMjA3MDEwMDQxWjAzMTEwLwYDVQQD Eyg5MmUwMjM0MTc4ODJmNTNjYTEwZTZjMjBiYTU2N2Q4N2U3YzRhNzk5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuglWfMzX67nvU9S8mvGp/+AY0P56 9ryW/VqnFNGWmPTMPLfGePbgHTvphDS5urNUydSKVMysNXzs45Yho38wgYSTKnUD QlphuBCwYDlwWprZzAD83h40zEPSwU89MyXyV/xoU8BzTGbafY2ZMiQBs4V0ZbTc 5KnDkRaoBHTU9xb2XkX1ZZAkdXmDQ2u1HCh5X5Hq0IZ94bFbm1Hj7Hi/MXhnFOiJ lGQyenrWKqtyc7BqEZ+iAd6TRXAE7z+BnIQZjSjGgud7QRXggKR5cKugQ6UpAFMY dmZNpLwodrNyGyf5SIlP4qp2jM/siRsADzxC/Ifp/RwEle1BBI7fwW2TOQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJLgI0F4gvU8oQ5sILpWfYfnxKeZMB8GA1UdIwQY MBaAFI2ytE8j3MqcBgS+1pDyimrZAXmZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvamJLMFR5UGN5cHdHQkw3V2tQS0thdGtCZVprLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOS8yMjdiNTMtNDczZC00NmFmLTgyMDEt OThlODc5ZWEzNzI2LzEvamJLMFR5UGN5cHdHQkw3V2tQS0thdGtCZVprLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xOS8yMjdiNTMtNDczZC00NmFmLTgyMDEtOThlODc5ZWEzNzI2 LzEvamJLMFR5UGN5cHdHQkw3V2tQS0thdGtCZVprLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZQlJpf18 39HABQPUUK7DTB+I0Dci1/oBppWn0n16FbltA8eXXv2EaXtUywUtvMZdPjaYP4yD tDyZld1BO9nvjPuBQbd4YvwhAywgNcZAWalKYoZU5P+NcyHuU0YtVDerhHca8iMB gUaksVabp/ZnpqbpTFb7qAmYh+ggVxk9iDML155Sur7V3u1fEZi7NjMSV8F9XwNG Ka7dTBVQNBDN1ckyfjS9NSAASUQBbRTqWj1cKeJ2ukgK3nTTJhDDiMyBpWKeCkei LeJM2tiuFzmzoWJUNq9SoCOu8b4yeOjuEfhm0PKOIf3uCQ2syoC+vY6pftZXQWS5 NgAfjMrks3xYoQ== -----END CERTIFICATE-----Generated at Sat Dec 6 08:55:12 2025 by rpki-client