This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/0c02c0-569c-45ea-b05b-66b67e21a82b/1/JCsEwxmbHrlpPUMg9702HtYXBTA.mft File: JCsEwxmbHrlpPUMg9702HtYXBTA.mft (raw, json) Hash identifier: cezfm215+/lwP6a1+6Fb0Th/mc06IqEqyiZF6kAU+Po= Subject key identifier: 4C:4C:96:D4:07:16:B6:44:C2:1A:38:7B:99:4F:3D:2F:22:CC:59:28 Authority key identifier: 24:2B:04:C3:19:9B:1E:B9:69:3D:43:20:F7:BD:36:1E:D6:17:05:30 Certificate issuer: /CN=242b04c3199b1eb9693d4320f7bd361ed6170530 Certificate serial: 019AF50B19846E605FF8464B4D391F48A202 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JCsEwxmbHrlpPUMg9702HtYXBTA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/0c02c0-569c-45ea-b05b-66b67e21a82b/1/JCsEwxmbHrlpPUMg9702HtYXBTA.mft Manifest number: 1760 Signing time: Sat 06 Dec 2025 19:02:16 +0000 Manifest this update: Sat 06 Dec 2025 19:02:16 +0000 Manifest next update: Sun 07 Dec 2025 19:02:16 +0000 Files and hashes: 1: JCsEwxmbHrlpPUMg9702HtYXBTA.crl (hash: 2g5XdEJSIji3NJwjTr+dcZTyw50yssdEdF4JiuDZN3M=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/0c02c0-569c-45ea-b05b-66b67e21a82b/1/JCsEwxmbHrlpPUMg9702HtYXBTA.crl rsync://rpki.ripe.net/repository/DEFAULT/31/0c02c0-569c-45ea-b05b-66b67e21a82b/1/JCsEwxmbHrlpPUMg9702HtYXBTA.mft rsync://rpki.ripe.net/repository/DEFAULT/JCsEwxmbHrlpPUMg9702HtYXBTA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 19:02:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:0b:19:84:6e:60:5f:f8:46:4b:4d:39:1f:48:a2:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=242b04c3199b1eb9693d4320f7bd361ed6170530 Validity Not Before: Dec 6 19:02:16 2025 GMT Not After : Dec 7 19:02:16 2025 GMT Subject: CN=4c4c96d40716b644c21a387b994f3d2f22cc5928 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:3d:06:78:57:7a:b4:6a:fe:c4:e7:d6:bb:9d: c5:91:79:49:c9:e1:c0:af:8c:04:ad:89:7d:38:21: 29:4a:29:ae:eb:df:30:e8:c2:9a:f0:53:f8:46:fc: 91:c6:7f:00:1f:ee:98:4c:86:e2:6c:57:4f:ab:c0: f6:7d:ec:5d:ff:bc:58:f3:f4:80:9a:4c:b1:43:08: 6b:23:47:69:7b:82:8f:e2:19:6f:90:75:1d:a8:3c: 0e:83:fe:d8:4d:94:82:ad:3f:d5:a8:15:94:0d:e1: b3:63:c3:4c:68:9a:3d:69:a3:61:05:0a:26:45:ec: c9:35:b0:62:91:63:02:99:ee:2e:69:6f:2c:96:d9: 5c:0a:d9:3f:57:7d:94:9a:91:fe:da:20:8f:91:9e: 4c:5a:d3:a0:19:04:af:c0:c5:c7:38:d8:44:66:22: e3:2e:e0:ae:96:80:03:e5:17:d0:0e:4b:38:0f:7e: 54:a7:4e:af:a1:70:3b:3c:97:29:a1:e7:18:d6:2a: 88:aa:f5:b0:b6:41:6f:26:7f:38:be:29:10:93:30: 6a:ae:d7:01:54:44:17:9b:59:c5:46:f0:5b:7d:2b: 73:b3:79:f1:29:60:2a:91:3f:53:44:f8:67:03:f1: 95:4b:4f:fa:4a:6e:71:df:99:94:85:2d:ca:b3:53: 41:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:4C:96:D4:07:16:B6:44:C2:1A:38:7B:99:4F:3D:2F:22:CC:59:28 X509v3 Authority Key Identifier: keyid:24:2B:04:C3:19:9B:1E:B9:69:3D:43:20:F7:BD:36:1E:D6:17:05:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JCsEwxmbHrlpPUMg9702HtYXBTA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/0c02c0-569c-45ea-b05b-66b67e21a82b/1/JCsEwxmbHrlpPUMg9702HtYXBTA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/31/0c02c0-569c-45ea-b05b-66b67e21a82b/1/JCsEwxmbHrlpPUMg9702HtYXBTA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 92:37:ef:ec:56:ca:0a:90:80:31:7f:2e:89:19:97:06:da:da: 8d:ce:6d:42:73:84:98:0a:3e:48:4a:0f:20:6a:96:45:51:be: f4:f8:56:9a:95:41:1b:12:b1:52:7b:df:8a:4a:96:40:23:20: d1:24:89:31:1c:cf:67:29:ce:d7:a2:d8:2d:8c:8a:2d:21:1d: 4c:30:0f:20:58:9f:da:f0:57:e2:fd:6e:5b:c8:05:fc:91:38: 5a:bf:d5:c0:92:8b:3d:d3:eb:21:ef:f2:61:8f:7d:c2:49:16: 8b:f1:f3:56:52:d8:b7:b5:03:f5:e0:3e:a2:4b:85:aa:44:f3: 4c:30:ea:5b:0d:ad:4f:41:12:12:fa:02:fe:70:23:9c:0c:e1: 46:c9:af:ce:5c:ad:c4:48:1a:64:e8:8e:74:49:0f:0f:5a:f1: 07:bd:d9:2a:28:a1:69:6b:1a:1e:83:25:8d:b6:0e:54:78:f7: 13:60:15:71:cb:f3:3b:45:94:d5:89:17:e1:6a:9b:97:1f:53: ed:96:1e:2b:5a:e7:99:7e:3d:b1:a9:0f:17:ee:ae:7e:60:67: 6a:1f:49:5a:0c:5c:19:42:f5:c8:cb:fe:e6:89:01:5b:24:89: b2:a3:bf:b7:8a:46:68:66:e7:db:0a:24:eb:b2:a9:9c:8c:33: 81:62:e1:70 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr1CxmEbmBf+EZLTTkfSKICMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI0MmIwNGMzMTk5YjFlYjk2OTNkNDMyMGY3YmQzNjFlZDYx NzA1MzAwHhcNMjUxMjA2MTkwMjE2WhcNMjUxMjA3MTkwMjE2WjAzMTEwLwYDVQQD Eyg0YzRjOTZkNDA3MTZiNjQ0YzIxYTM4N2I5OTRmM2QyZjIyY2M1OTI4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArj0GeFd6tGr+xOfWu53FkXlJyeHA r4wErYl9OCEpSimu698w6MKa8FP4RvyRxn8AH+6YTIbibFdPq8D2fexd/7xY8/SA mkyxQwhrI0dpe4KP4hlvkHUdqDwOg/7YTZSCrT/VqBWUDeGzY8NMaJo9aaNhBQom RezJNbBikWMCme4uaW8sltlcCtk/V32UmpH+2iCPkZ5MWtOgGQSvwMXHONhEZiLj LuCuloAD5RfQDks4D35Up06voXA7PJcpoecY1iqIqvWwtkFvJn84vikQkzBqrtcB VEQXm1nFRvBbfStzs3nxKWAqkT9TRPhnA/GVS0/6Sm5x35mUhS3Ks1NByQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFExMltQHFrZEwho4e5lPPS8izFkoMB8GA1UdIwQY MBaAFCQrBMMZmx65aT1DIPe9Nh7WFwUwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSkNzRXd4bWJIcmxwUFVNZzk3MDJIdFlYQlRBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS8wYzAyYzAtNTY5Yy00NWVhLWIwNWIt NjZiNjdlMjFhODJiLzEvSkNzRXd4bWJIcmxwUFVNZzk3MDJIdFlYQlRBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMS8wYzAyYzAtNTY5Yy00NWVhLWIwNWItNjZiNjdlMjFhODJi LzEvSkNzRXd4bWJIcmxwUFVNZzk3MDJIdFlYQlRBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkjfv7FbK CpCAMX8uiRmXBtrajc5tQnOEmAo+SEoPIGqWRVG+9PhWmpVBGxKxUnvfikqWQCMg 0SSJMRzPZynO16LYLYyKLSEdTDAPIFif2vBX4v1uW8gF/JE4Wr/VwJKLPdPrIe/y YY99wkkWi/HzVlLYt7UD9eA+okuFqkTzTDDqWw2tT0ESEvoC/nAjnAzhRsmvzlyt xEgaZOiOdEkPD1rxB73ZKiihaWsaHoMljbYOVHj3E2AVccvzO0WU1YkX4Wqblx9T 7ZYeK1rnmX49sakPF+6ufmBnah9JWgxcGUL1yMv+5okBWySJsqO/t4pGaGbn2wok 67KpnIwzgWLhcA== -----END CERTIFICATE-----Generated at Sun Dec 7 00:33:33 2025 by rpki-client