This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/3719f3-22e1-4344-9a39-458a2736157a/1/JY9ajila0de0ih4RlYeQBStXolM.mft File: JY9ajila0de0ih4RlYeQBStXolM.mft (raw, json) Hash identifier: FlzC21xZqe7DJ1hZ5pqycqKFYFO3p8zquooggY8U0dk= Subject key identifier: AF:90:34:97:56:B8:66:28:53:17:CD:B5:2E:71:F1:27:05:58:A4:AA Authority key identifier: 25:8F:5A:8E:29:5A:D1:D7:B4:8A:1E:11:95:87:90:05:2B:57:A2:53 Certificate issuer: /CN=258f5a8e295ad1d7b48a1e11958790052b57a253 Certificate serial: 019AF0BF26444E5CA4432A3A8075B5B20313 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JY9ajila0de0ih4RlYeQBStXolM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/3719f3-22e1-4344-9a39-458a2736157a/1/JY9ajila0de0ih4RlYeQBStXolM.mft Manifest number: 16B8 Signing time: Fri 05 Dec 2025 23:00:50 +0000 Manifest this update: Fri 05 Dec 2025 23:00:50 +0000 Manifest next update: Sat 06 Dec 2025 23:00:50 +0000 Files and hashes: 1: HL0tpswU2gQezd0-x9ZWDdfR-RY.roa (hash: NAIPlF1KgdG7sggbmAwv2GRB6aTgtE/arOeqKYJF690=) 2: JY9ajila0de0ih4RlYeQBStXolM.crl (hash: KW5ZJBdoFa7Y8wLIt61JhizN4v34t1tXP+JW+e1Kwtg=) 3: X5-jl_Od0mEO_dSg7rALYkevjoQ.roa (hash: xqc4fnPLjvYYKZxEv5pbNLPSZEhrMf7SnWN3fQ6sCO8=) 4: ljF5u-YRkQFhR1-JzkqgY4rX8fg.roa (hash: yARJg/r5KzAJTCBC6Aa8YbBreZ5SqvZOXFrSvclMQ38=) 5: s_QDIrLshBQNlu6RPwCemGYvy74.roa (hash: 6Y18bq+vtApdDZHTDEQgo5JwDFt4pJR0lVY1yqjzjsk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/3719f3-22e1-4344-9a39-458a2736157a/1/JY9ajila0de0ih4RlYeQBStXolM.crl rsync://rpki.ripe.net/repository/DEFAULT/3b/3719f3-22e1-4344-9a39-458a2736157a/1/JY9ajila0de0ih4RlYeQBStXolM.mft rsync://rpki.ripe.net/repository/DEFAULT/JY9ajila0de0ih4RlYeQBStXolM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 23:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f0:bf:26:44:4e:5c:a4:43:2a:3a:80:75:b5:b2:03:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=258f5a8e295ad1d7b48a1e11958790052b57a253 Validity Not Before: Dec 5 23:00:50 2025 GMT Not After : Dec 6 23:00:50 2025 GMT Subject: CN=af90349756b866285317cdb52e71f1270558a4aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:bb:8a:b7:08:79:18:c0:58:9b:21:3d:59:c2: 26:6c:ee:28:70:f8:b7:35:bb:5e:4a:3d:c8:a5:2f: 4b:50:f4:01:96:1b:c8:f0:e7:b7:e1:12:67:93:2f: bc:95:ee:fd:14:43:cb:a8:d5:57:4a:6d:0f:b5:ae: e3:0e:9f:0b:4c:08:4f:91:ba:f7:90:14:47:8b:65: e8:dc:13:2f:23:ec:22:00:89:63:46:96:74:f2:d7: 7d:70:4c:0e:66:c6:9c:ac:e0:ac:88:12:1a:62:01: 57:e9:80:fa:bd:8e:ac:94:9f:a8:47:e6:30:9f:f8: 7b:6a:87:3b:73:22:0f:cb:07:3c:e0:24:6a:5a:33: 40:26:11:dd:25:97:13:44:21:39:53:16:da:bd:86: 79:f7:9b:82:3b:26:ef:73:8a:a5:53:1d:6a:4b:12: 37:0f:e1:66:f7:4f:cd:fc:7a:ca:15:db:93:a2:02: 84:a9:ad:83:fe:d5:55:35:6d:e7:6c:4d:bc:04:e9: 7b:7d:80:90:40:58:52:31:8e:c2:ab:17:3c:41:ea: 9e:f5:16:b1:99:38:df:c9:ae:43:08:fe:80:00:74: 66:07:6c:49:53:cc:3b:46:e8:44:13:6b:71:f9:70: 3d:8b:57:ec:43:1e:e8:34:6f:5d:a0:a0:5c:f9:bb: 32:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:90:34:97:56:B8:66:28:53:17:CD:B5:2E:71:F1:27:05:58:A4:AA X509v3 Authority Key Identifier: keyid:25:8F:5A:8E:29:5A:D1:D7:B4:8A:1E:11:95:87:90:05:2B:57:A2:53 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JY9ajila0de0ih4RlYeQBStXolM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/3719f3-22e1-4344-9a39-458a2736157a/1/JY9ajila0de0ih4RlYeQBStXolM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/3719f3-22e1-4344-9a39-458a2736157a/1/JY9ajila0de0ih4RlYeQBStXolM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 45:84:b5:d5:90:ad:18:9d:55:fe:e6:47:fb:31:ef:fa:28:79: f3:c6:f8:e1:25:da:0d:7d:6e:f6:ad:ce:92:4a:aa:46:b6:6b: 8d:60:16:94:51:d2:a3:63:42:cb:19:92:cb:48:c8:4c:ca:8c: a3:2a:3a:c5:c5:2a:0d:2b:82:d6:23:40:10:48:5f:a6:09:bd: 99:b7:97:7a:f3:a4:66:c2:74:ae:9a:23:d4:9a:08:a8:93:73: 25:df:1b:19:86:cc:af:38:ef:a0:8b:80:57:af:db:68:0d:21: ee:9b:83:25:3f:b2:08:4e:1a:75:39:12:d3:41:f8:83:b3:dc: b0:97:85:73:90:0f:72:92:4f:47:92:17:09:83:4c:c3:bb:8d: 29:7f:9f:c0:65:da:95:0f:f7:b6:51:65:b9:ff:49:61:08:fb: 61:2c:ca:0c:30:2e:48:54:6d:ef:fd:21:05:81:c0:7f:ed:dc: f7:6c:e1:44:a1:bc:e9:ce:6a:58:13:37:19:41:7a:22:26:03: bb:da:f9:c9:75:0f:c8:a1:bd:fa:e5:01:a0:db:f1:70:4f:3a: e2:ed:1d:30:6b:8c:77:d4:78:c2:89:86:76:d5:3b:ea:03:a2: b7:a1:b9:29:38:ab:f9:b6:9e:6e:67:2b:fb:40:ce:23:40:fe: c2:b9:2e:71 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrwvyZETlykQyo6gHW1sgMTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI1OGY1YThlMjk1YWQxZDdiNDhhMWUxMTk1ODc5MDA1MmI1 N2EyNTMwHhcNMjUxMjA1MjMwMDUwWhcNMjUxMjA2MjMwMDUwWjAzMTEwLwYDVQQD EyhhZjkwMzQ5NzU2Yjg2NjI4NTMxN2NkYjUyZTcxZjEyNzA1NThhNGFhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwbuKtwh5GMBYmyE9WcImbO4ocPi3 NbteSj3IpS9LUPQBlhvI8Oe34RJnky+8le79FEPLqNVXSm0Pta7jDp8LTAhPkbr3 kBRHi2Xo3BMvI+wiAIljRpZ08td9cEwOZsacrOCsiBIaYgFX6YD6vY6slJ+oR+Yw n/h7aoc7cyIPywc84CRqWjNAJhHdJZcTRCE5UxbavYZ595uCOybvc4qlUx1qSxI3 D+Fm90/N/HrKFduTogKEqa2D/tVVNW3nbE28BOl7fYCQQFhSMY7Cqxc8Qeqe9Rax mTjfya5DCP6AAHRmB2xJU8w7RuhEE2tx+XA9i1fsQx7oNG9doKBc+bsyYQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFK+QNJdWuGYoUxfNtS5x8ScFWKSqMB8GA1UdIwQY MBaAFCWPWo4pWtHXtIoeEZWHkAUrV6JTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSlk5YWppbGEwZGUwaWg0UmxZZVFCU3RYb2xNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYi8zNzE5ZjMtMjJlMS00MzQ0LTlhMzkt NDU4YTI3MzYxNTdhLzEvSlk5YWppbGEwZGUwaWg0UmxZZVFCU3RYb2xNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYi8zNzE5ZjMtMjJlMS00MzQ0LTlhMzktNDU4YTI3MzYxNTdh LzEvSlk5YWppbGEwZGUwaWg0UmxZZVFCU3RYb2xNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARYS11ZCt GJ1V/uZH+zHv+ih588b44SXaDX1u9q3OkkqqRrZrjWAWlFHSo2NCyxmSy0jITMqM oyo6xcUqDSuC1iNAEEhfpgm9mbeXevOkZsJ0rpoj1JoIqJNzJd8bGYbMrzjvoIuA V6/baA0h7puDJT+yCE4adTkS00H4g7PcsJeFc5APcpJPR5IXCYNMw7uNKX+fwGXa lQ/3tlFluf9JYQj7YSzKDDAuSFRt7/0hBYHAf+3c92zhRKG86c5qWBM3GUF6IiYD u9r5yXUPyKG9+uUBoNvxcE864u0dMGuMd9R4womGdtU76gOit6G5KTir+baebmcr +0DOI0D+wrkucQ== -----END CERTIFICATE-----Generated at Sat Dec 6 07:26:13 2025 by rpki-client