This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/jbNHdLAZeShP2edU_qaPo8YXg9A.mft File: jbNHdLAZeShP2edU_qaPo8YXg9A.mft (raw, json) Hash identifier: 5lxrXC22Jj9KllS4sP/xuD2w+4igobWqU7uMDVoZZ0s= Subject key identifier: 80:3D:55:DF:A4:64:B6:5E:0E:BC:FA:D2:54:2F:71:D6:04:8C:62:DF Authority key identifier: 8D:B3:47:74:B0:19:79:28:4F:D9:E7:54:FE:A6:8F:A3:C6:17:83:D0 Certificate issuer: /CN=8db34774b01979284fd9e754fea68fa3c61783d0 Certificate serial: 019AF05104E21C4398D535417DABBCA14ACF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jbNHdLAZeShP2edU_qaPo8YXg9A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/jbNHdLAZeShP2edU_qaPo8YXg9A.mft Manifest number: 17A3 Signing time: Fri 05 Dec 2025 21:00:32 +0000 Manifest this update: Fri 05 Dec 2025 21:00:32 +0000 Manifest next update: Sat 06 Dec 2025 21:00:32 +0000 Files and hashes: 1: 4xDjMGoR5cxZD0TEt45OTNLuzZ4.roa (hash: aWtnbMWrytraTfwmFZQXH9y0uPlTO0CdQ7LWoLXK164=) 2: J8HqZbweBSBfotj9M3AMH0o24CY.roa (hash: KkFoXwUHnXFgQiJUTdylT6bFXV0tnmXRuocNWtuhH7k=) 3: aXs8DBYHqH16kFI25mAmO1bJxx4.roa (hash: d1LoCC9lmf7ZBBsN52kpeKsNgpbykeADMERL6qdd4Bg=) 4: jbNHdLAZeShP2edU_qaPo8YXg9A.crl (hash: Eis9Filgwp1ypxWYipJ1HLoagcaOhyUurqxRqj+m6Ck=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/jbNHdLAZeShP2edU_qaPo8YXg9A.crl rsync://rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/jbNHdLAZeShP2edU_qaPo8YXg9A.mft rsync://rpki.ripe.net/repository/DEFAULT/jbNHdLAZeShP2edU_qaPo8YXg9A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 21:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f0:51:04:e2:1c:43:98:d5:35:41:7d:ab:bc:a1:4a:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8db34774b01979284fd9e754fea68fa3c61783d0 Validity Not Before: Dec 5 21:00:32 2025 GMT Not After : Dec 6 21:00:32 2025 GMT Subject: CN=803d55dfa464b65e0ebcfad2542f71d6048c62df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:89:16:fa:cd:b7:6e:e8:f2:2a:b0:b1:58:62: e8:5d:e5:7d:ce:bf:9b:85:ca:65:d7:e0:9a:c1:ba: c4:3d:64:a8:1e:05:86:7b:35:48:1e:30:ed:84:92: 8b:57:80:e8:9c:ae:19:61:82:8e:31:91:70:38:e7: da:73:55:34:95:1d:42:2b:b8:52:e0:34:b8:91:4f: 99:47:fa:dd:d0:2b:4c:8e:48:fc:6f:b4:79:3b:d5: 90:1d:b9:9b:1f:31:e7:11:80:da:a3:76:29:3c:64: 9c:b7:8e:74:75:07:41:b7:67:5d:1a:f6:2f:fd:12: ed:13:eb:7d:4d:e0:dd:a3:e3:7a:33:f3:d1:33:0d: 8e:e5:f3:57:b7:fa:2c:ca:80:2a:78:c1:d7:2f:57: 5d:5b:8b:48:37:ca:88:c5:34:2a:5c:d4:40:e3:d6: b0:22:aa:ff:20:af:8c:79:bf:6c:f4:4f:a8:12:df: c1:30:ae:97:8a:e9:cb:9d:6a:a8:64:38:be:f2:2f: 74:c4:f1:a7:cc:66:09:14:83:90:be:48:e4:8e:fe: 0e:46:dc:a5:d0:f2:38:39:d5:89:6a:7a:0b:4a:3d: c9:77:12:55:6b:c5:04:4a:57:ef:24:f5:d3:73:03: 2a:70:26:2d:4b:6b:45:f8:6e:85:6f:16:1a:81:50: 0a:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:3D:55:DF:A4:64:B6:5E:0E:BC:FA:D2:54:2F:71:D6:04:8C:62:DF X509v3 Authority Key Identifier: keyid:8D:B3:47:74:B0:19:79:28:4F:D9:E7:54:FE:A6:8F:A3:C6:17:83:D0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jbNHdLAZeShP2edU_qaPo8YXg9A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/jbNHdLAZeShP2edU_qaPo8YXg9A.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/jbNHdLAZeShP2edU_qaPo8YXg9A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 50:95:36:73:5f:cc:95:90:b9:bf:39:77:26:4d:27:14:26:4f: 65:fe:b0:1b:f5:a8:82:d6:4c:d7:9a:8b:6e:bd:54:87:2b:e6: 24:50:41:be:19:5e:05:71:2e:e5:cf:47:c0:cc:50:b4:bd:df: 7d:9b:d3:ba:fd:6a:b5:e0:c9:b1:4f:7e:20:b4:28:96:b2:ba: d4:fe:b9:ee:2a:35:c3:a4:22:b0:91:5a:fb:21:4f:af:23:6e: f6:13:b1:be:d7:01:62:c4:a2:1f:79:ef:19:e9:b3:9e:6b:5d: 98:ea:a6:c1:a7:9d:0e:18:2b:e3:ea:05:90:36:75:7f:51:5f: 90:b8:64:56:3e:05:89:dc:20:e1:dd:70:f9:6c:33:f8:e0:15: ae:c1:16:d6:2d:a7:09:6f:fa:39:46:3f:f7:31:51:43:52:0d: d6:5e:83:8f:7e:27:3e:19:7a:40:da:f0:30:db:b6:ca:f8:6a: 17:d0:a0:63:f1:bb:c2:56:65:05:c7:18:a2:bf:15:2a:9c:0c: c2:2c:c8:34:60:a0:a6:83:f4:dd:04:a4:5b:03:96:fe:b2:d9: 88:6a:07:01:bc:3d:64:af:81:6e:1e:b9:ff:00:ee:52:ef:9b: 6a:67:68:4d:70:c5:a8:5d:00:34:f5:a7:a4:eb:87:4e:30:4a: ed:0b:ff:65 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrwUQTiHEOY1TVBfau8oUrPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhkYjM0Nzc0YjAxOTc5Mjg0ZmQ5ZTc1NGZlYTY4ZmEzYzYx NzgzZDAwHhcNMjUxMjA1MjEwMDMyWhcNMjUxMjA2MjEwMDMyWjAzMTEwLwYDVQQD Eyg4MDNkNTVkZmE0NjRiNjVlMGViY2ZhZDI1NDJmNzFkNjA0OGM2MmRmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwokW+s23bujyKrCxWGLoXeV9zr+b hcpl1+CawbrEPWSoHgWGezVIHjDthJKLV4DonK4ZYYKOMZFwOOfac1U0lR1CK7hS 4DS4kU+ZR/rd0CtMjkj8b7R5O9WQHbmbHzHnEYDao3YpPGSct450dQdBt2ddGvYv /RLtE+t9TeDdo+N6M/PRMw2O5fNXt/osyoAqeMHXL1ddW4tIN8qIxTQqXNRA49aw Iqr/IK+Meb9s9E+oEt/BMK6XiunLnWqoZDi+8i90xPGnzGYJFIOQvkjkjv4ORtyl 0PI4OdWJanoLSj3JdxJVa8UESlfvJPXTcwMqcCYtS2tF+G6FbxYagVAKNQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIA9Vd+kZLZeDrz60lQvcdYEjGLfMB8GA1UdIwQY MBaAFI2zR3SwGXkoT9nnVP6mj6PGF4PQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvamJOSGRMQVplU2hQMmVkVV9xYVBvOFlYZzlBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNy83MGE4ZjEtZDhlYi00MmI1LWJkZGIt NjI2NTUyMWY2ZGY3LzEvamJOSGRMQVplU2hQMmVkVV9xYVBvOFlYZzlBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNy83MGE4ZjEtZDhlYi00MmI1LWJkZGItNjI2NTUyMWY2ZGY3 LzEvamJOSGRMQVplU2hQMmVkVV9xYVBvOFlYZzlBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUJU2c1/M lZC5vzl3Jk0nFCZPZf6wG/WogtZM15qLbr1UhyvmJFBBvhleBXEu5c9HwMxQtL3f fZvTuv1qteDJsU9+ILQolrK61P657io1w6QisJFa+yFPryNu9hOxvtcBYsSiH3nv GemznmtdmOqmwaedDhgr4+oFkDZ1f1FfkLhkVj4Fidwg4d1w+Wwz+OAVrsEW1i2n CW/6OUY/9zFRQ1IN1l6Dj34nPhl6QNrwMNu2yvhqF9CgY/G7wlZlBccYor8VKpwM wizINGCgpoP03QSkWwOW/rLZiGoHAbw9ZK+Bbh65/wDuUu+bamdoTXDFqF0ANPWn pOuHTjBK7Qv/ZQ== -----END CERTIFICATE-----Generated at Sat Dec 6 06:57:25 2025 by rpki-client