This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.mft File: JY8HU8Azwa8JGGbQlCZFEmlspos.mft (raw, json) Hash identifier: 2tSFPjXGmDmr23p2RMlNTywAZp7ZEEMWem/r/Kz0nkk= Subject key identifier: E4:CE:4A:F4:21:B9:CA:AA:B1:F5:8C:5B:CD:7C:A0:1B:01:B1:D8:92 Authority key identifier: 25:8F:07:53:C0:33:C1:AF:09:18:66:D0:94:26:45:12:69:6C:A6:8B Certificate issuer: /CN=258f0753c033c1af091866d094264512696ca68b Certificate serial: 019AF2AD46BC7CAFDF2E349E072FF3CDF0EC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JY8HU8Azwa8JGGbQlCZFEmlspos.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.mft Manifest number: 0AAD Signing time: Sat 06 Dec 2025 08:00:33 +0000 Manifest this update: Sat 06 Dec 2025 08:00:33 +0000 Manifest next update: Sun 07 Dec 2025 08:00:33 +0000 Files and hashes: 1: BQh7QT9BX7cTqXjHHhGh4E0jau4.roa (hash: ji+6a8qXV045VZtKjEfl6cGy7fTl7ME8scmY2gpWI2s=) 2: JY8HU8Azwa8JGGbQlCZFEmlspos.crl (hash: PjIyB5e4ei62waxSWI/++wVEONE0GBfoK7ngKjlqFPM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.crl rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.mft rsync://rpki.ripe.net/repository/DEFAULT/JY8HU8Azwa8JGGbQlCZFEmlspos.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:ad:46:bc:7c:af:df:2e:34:9e:07:2f:f3:cd:f0:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=258f0753c033c1af091866d094264512696ca68b Validity Not Before: Dec 6 08:00:33 2025 GMT Not After : Dec 7 08:00:33 2025 GMT Subject: CN=e4ce4af421b9caaab1f58c5bcd7ca01b01b1d892 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:af:4d:f7:4a:20:26:8d:28:ea:dc:ac:0a:2d: df:34:58:7a:a3:1a:c1:3a:61:ba:ca:9a:a5:99:70: 4d:3f:da:67:60:9a:61:59:2f:0b:8e:7d:6e:59:b5: 2c:36:1c:7d:8b:84:16:77:85:e9:ea:c9:bc:6d:d8: 2f:3a:49:86:ee:9b:70:d5:9e:bf:da:b2:ed:75:72: 83:82:54:15:4e:70:ea:2f:58:91:f6:5d:45:ae:15: 36:5a:dd:f8:10:f7:cb:da:7b:5c:bf:33:c4:bc:68: 5c:92:35:81:75:bf:d1:70:d4:31:1d:d7:73:ff:dd: e0:1e:f2:95:e2:66:a4:ab:09:cf:79:7c:e0:a2:8e: f4:2e:33:30:d7:31:e9:24:71:26:7c:23:5c:77:73: 39:da:8e:48:61:5b:09:5c:77:87:aa:47:d2:59:77: 73:fc:69:e0:42:52:bd:2a:c1:18:3d:4f:69:22:10: 9b:30:74:12:f3:bc:fd:5b:9b:8e:45:1b:cb:c0:ea: d4:a0:6e:d9:fa:b5:98:1d:6a:8a:af:08:b1:af:aa: 16:cd:ce:53:72:c9:23:58:7d:05:7f:12:6c:e9:5f: 43:33:ce:4f:02:ec:42:97:64:63:2b:7a:37:ea:ab: cb:78:a0:b5:49:ca:62:e3:85:1a:36:2d:35:75:49: fd:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:CE:4A:F4:21:B9:CA:AA:B1:F5:8C:5B:CD:7C:A0:1B:01:B1:D8:92 X509v3 Authority Key Identifier: keyid:25:8F:07:53:C0:33:C1:AF:09:18:66:D0:94:26:45:12:69:6C:A6:8B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JY8HU8Azwa8JGGbQlCZFEmlspos.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 05:40:18:8f:5d:0a:6c:a0:f7:c1:d9:e2:a4:a7:99:36:6d:81: 3e:3d:07:5c:8d:60:e5:16:2d:88:a1:5b:8d:df:2b:3e:26:24: c9:7b:90:61:74:74:d1:e3:a8:ac:d0:6e:2d:9a:f1:21:6a:be: e0:3d:de:e8:8d:03:4b:ee:27:2a:d4:7b:b4:31:49:4e:8a:a1: 76:39:12:e5:cb:24:f0:1d:f5:57:7f:4c:d5:75:63:f5:29:42: 25:05:a0:70:af:c5:6b:a2:83:cc:8c:56:59:51:91:6b:0c:84: 75:9e:af:95:6f:db:97:ac:ac:0f:f1:0d:73:e7:fb:ba:92:95: 1a:36:3c:bd:17:f9:4b:7c:73:38:9f:b1:33:68:71:ce:66:54: a4:9b:16:e5:1d:1e:34:bd:96:87:fd:e9:fc:79:e9:85:07:6c: 1e:18:c2:55:4f:a4:b8:a8:34:ec:f1:88:ce:ec:e0:58:de:b4: c3:1a:39:24:fb:57:aa:9a:f9:50:6c:1c:1a:04:8c:d3:ba:12: 57:7a:1e:be:f8:9a:05:ce:47:c9:46:ab:8c:ac:8b:bf:3b:94: cc:5d:97:5d:b0:df:ac:bd:eb:99:38:f3:ac:9e:d2:f8:1e:e0: db:d2:43:53:f9:89:ed:2a:b3:81:ac:d3:01:96:b7:21:24:eb: d2:03:5f:69 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryrUa8fK/fLjSeBy/zzfDsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI1OGYwNzUzYzAzM2MxYWYwOTE4NjZkMDk0MjY0NTEyNjk2 Y2E2OGIwHhcNMjUxMjA2MDgwMDMzWhcNMjUxMjA3MDgwMDMzWjAzMTEwLwYDVQQD EyhlNGNlNGFmNDIxYjljYWFhYjFmNThjNWJjZDdjYTAxYjAxYjFkODkyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqq9N90ogJo0o6tysCi3fNFh6oxrB OmG6ypqlmXBNP9pnYJphWS8Ljn1uWbUsNhx9i4QWd4Xp6sm8bdgvOkmG7ptw1Z6/ 2rLtdXKDglQVTnDqL1iR9l1FrhU2Wt34EPfL2ntcvzPEvGhckjWBdb/RcNQxHddz /93gHvKV4makqwnPeXzgoo70LjMw1zHpJHEmfCNcd3M52o5IYVsJXHeHqkfSWXdz /GngQlK9KsEYPU9pIhCbMHQS87z9W5uORRvLwOrUoG7Z+rWYHWqKrwixr6oWzc5T cskjWH0FfxJs6V9DM85PAuxCl2RjK3o36qvLeKC1Scpi44UaNi01dUn9RQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOTOSvQhucqqsfWMW818oBsBsdiSMB8GA1UdIwQY MBaAFCWPB1PAM8GvCRhm0JQmRRJpbKaLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSlk4SFU4QXp3YThKR0diUWxDWkZFbWxzcG9zLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZC8zYmFlODctODJlYi00NTFmLTgwNDQt MmMyZjBkMjRmOTM2LzEvSlk4SFU4QXp3YThKR0diUWxDWkZFbWxzcG9zLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZC8zYmFlODctODJlYi00NTFmLTgwNDQtMmMyZjBkMjRmOTM2 LzEvSlk4SFU4QXp3YThKR0diUWxDWkZFbWxzcG9zLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABUAYj10K bKD3wdnipKeZNm2BPj0HXI1g5RYtiKFbjd8rPiYkyXuQYXR00eOorNBuLZrxIWq+ 4D3e6I0DS+4nKtR7tDFJToqhdjkS5csk8B31V39M1XVj9SlCJQWgcK/Fa6KDzIxW WVGRawyEdZ6vlW/bl6ysD/ENc+f7upKVGjY8vRf5S3xzOJ+xM2hxzmZUpJsW5R0e NL2Wh/3p/HnphQdsHhjCVU+kuKg07PGIzuzgWN60wxo5JPtXqpr5UGwcGgSM07oS V3oevviaBc5HyUarjKyLvzuUzF2XXbDfrL3rmTjzrJ7S+B7g29JDU/mJ7SqzgazT AZa3ISTr0gNfaQ== -----END CERTIFICATE-----Generated at Sat Dec 6 09:43:47 2025 by rpki-client