This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.mft File: jha95kqam7o_-hQ4oZesP5SYn68.mft (raw, json) Hash identifier: rK99+CuEV8VwVpcCscVZRR5zXjNFG5gU3MyGNNrBx+s= Subject key identifier: 3F:3A:F0:42:05:21:71:C2:0F:25:DE:37:E8:74:5A:32:E9:04:E1:2F Authority key identifier: 8E:16:BD:E6:4A:9A:9B:BA:3F:FA:14:38:A1:97:AC:3F:94:98:9F:AF Certificate issuer: /CN=8e16bde64a9a9bba3ffa1438a197ac3f94989faf Certificate serial: 019AF3C0B90754F43FC08457394A32806688 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jha95kqam7o_-hQ4oZesP5SYn68.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.mft Manifest number: 0AF6 Signing time: Sat 06 Dec 2025 13:01:24 +0000 Manifest this update: Sat 06 Dec 2025 13:01:24 +0000 Manifest next update: Sun 07 Dec 2025 13:01:24 +0000 Files and hashes: 1: jha95kqam7o_-hQ4oZesP5SYn68.crl (hash: kO/4m1MxdXlOCCkcSdfxbWonHNZjnKKOcTHY4mxfPJI=) 2: lgcKgcRNJg401G2YURIZe_B5NuU.roa (hash: uy67hQlFG6+Rikv9aAochHvjUmoKf+eqiNInXnUkhzk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.crl rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.mft rsync://rpki.ripe.net/repository/DEFAULT/jha95kqam7o_-hQ4oZesP5SYn68.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:01:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:c0:b9:07:54:f4:3f:c0:84:57:39:4a:32:80:66:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8e16bde64a9a9bba3ffa1438a197ac3f94989faf Validity Not Before: Dec 6 13:01:24 2025 GMT Not After : Dec 7 13:01:24 2025 GMT Subject: CN=3f3af042052171c20f25de37e8745a32e904e12f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:a5:89:17:81:f8:ab:02:d1:a5:c8:6c:13:ef: 63:54:4d:93:a5:01:98:a1:8a:2a:84:b2:bd:7f:e9: dd:9f:46:d2:7e:d5:ec:35:1c:8b:2d:c9:e8:f4:5c: da:1f:e7:90:58:0e:e1:c7:b6:68:d6:2e:0a:80:56: 1f:17:33:70:13:cd:81:cb:57:37:06:20:03:40:9d: 14:fb:88:84:61:44:20:c7:1d:c0:47:e7:94:68:a1: 46:88:a8:4e:b9:e2:07:9e:ce:fc:b5:bf:10:5d:cb: ee:02:da:23:05:28:3e:19:32:3d:79:ca:1f:70:dd: f1:51:38:ef:9f:4b:45:c7:5f:54:a2:1f:e7:ba:58: f8:6f:53:90:94:42:5c:c8:c3:27:76:3f:7f:c0:25: 26:d6:3e:78:f4:1d:a1:a7:e4:e4:b5:cb:f8:ac:fb: 5e:a0:bc:6b:33:08:5f:45:e8:64:93:50:87:e6:d5: a2:61:41:c8:75:74:a8:40:44:52:74:8d:9b:1d:6e: 61:81:2e:0e:e3:2b:27:e5:b9:91:12:fc:0b:88:93: 8c:21:b7:df:40:96:b3:c5:93:15:2e:ea:d8:80:c9: 12:4f:69:b1:a8:0a:c9:5f:d9:8c:3c:33:1c:12:6a: 1c:7f:52:51:aa:64:76:d3:3e:ca:d1:0c:bc:f4:3e: f7:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:3A:F0:42:05:21:71:C2:0F:25:DE:37:E8:74:5A:32:E9:04:E1:2F X509v3 Authority Key Identifier: keyid:8E:16:BD:E6:4A:9A:9B:BA:3F:FA:14:38:A1:97:AC:3F:94:98:9F:AF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jha95kqam7o_-hQ4oZesP5SYn68.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 55:4b:4b:f8:f7:02:9e:8f:30:0e:52:ee:2c:50:67:a7:96:1e: ba:1d:cf:5d:18:f6:c6:b1:81:53:ba:1e:b7:d1:cd:65:eb:39: 68:36:88:20:44:62:43:22:2c:fd:9b:10:37:c2:8b:9c:41:12: 55:11:46:ec:fd:71:41:32:4e:26:59:0e:c4:08:05:92:eb:02: 4f:79:1d:df:d7:52:ab:2b:21:cf:13:c5:5a:92:8e:ae:66:9e: bd:5d:0c:84:bc:cf:3d:d2:1b:0e:e0:76:6b:84:9f:45:c6:c9: b1:96:58:76:41:07:12:48:23:e8:3c:3b:7d:fa:d5:85:7a:2a: 02:a7:5a:02:8b:1e:2a:3b:35:44:28:b5:9e:24:ad:bd:9f:c1: 25:6b:34:9f:39:c5:13:60:cb:cf:af:0d:d9:66:66:69:b0:28: 0f:96:6e:62:d2:4e:80:cc:f8:c9:82:b0:e8:a0:8c:a9:ae:d3: cb:28:d8:4e:39:6c:e8:ab:fa:b2:a0:34:6b:1d:20:9e:df:13: 04:47:0c:c7:19:de:8e:2b:ac:98:0b:e4:f3:a4:15:82:8a:34: 6f:4e:e9:c5:c1:80:6c:d2:3f:a0:d1:74:12:07:2f:d1:d5:d1: a3:91:fb:83:aa:c9:98:d8:c8:5e:23:d8:16:60:12:5f:2d:84: cb:6c:b9:73 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzwLkHVPQ/wIRXOUoygGaIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhlMTZiZGU2NGE5YTliYmEzZmZhMTQzOGExOTdhYzNmOTQ5 ODlmYWYwHhcNMjUxMjA2MTMwMTI0WhcNMjUxMjA3MTMwMTI0WjAzMTEwLwYDVQQD EygzZjNhZjA0MjA1MjE3MWMyMGYyNWRlMzdlODc0NWEzMmU5MDRlMTJmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr6WJF4H4qwLRpchsE+9jVE2TpQGY oYoqhLK9f+ndn0bSftXsNRyLLcno9FzaH+eQWA7hx7Zo1i4KgFYfFzNwE82By1c3 BiADQJ0U+4iEYUQgxx3AR+eUaKFGiKhOueIHns78tb8QXcvuAtojBSg+GTI9ecof cN3xUTjvn0tFx19Uoh/nulj4b1OQlEJcyMMndj9/wCUm1j549B2hp+Tktcv4rPte oLxrMwhfRehkk1CH5tWiYUHIdXSoQERSdI2bHW5hgS4O4ysn5bmREvwLiJOMIbff QJazxZMVLurYgMkST2mxqArJX9mMPDMcEmocf1JRqmR20z7K0Qy89D73GwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFD868EIFIXHCDyXeN+h0WjLpBOEvMB8GA1UdIwQY MBaAFI4WveZKmpu6P/oUOKGXrD+UmJ+vMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvamhhOTVrcWFtN29fLWhRNG9aZXNQNVNZbjY4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZS8zOWFiMmUtZmVlYi00YTBlLTg3NDAt NDUyOTZjMzJmMGEzLzEvamhhOTVrcWFtN29fLWhRNG9aZXNQNVNZbjY4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZS8zOWFiMmUtZmVlYi00YTBlLTg3NDAtNDUyOTZjMzJmMGEz LzEvamhhOTVrcWFtN29fLWhRNG9aZXNQNVNZbjY4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVUtL+PcC no8wDlLuLFBnp5Yeuh3PXRj2xrGBU7oet9HNZes5aDaIIERiQyIs/ZsQN8KLnEES VRFG7P1xQTJOJlkOxAgFkusCT3kd39dSqyshzxPFWpKOrmaevV0MhLzPPdIbDuB2 a4SfRcbJsZZYdkEHEkgj6Dw7ffrVhXoqAqdaAoseKjs1RCi1niStvZ/BJWs0nznF E2DLz68N2WZmabAoD5ZuYtJOgMz4yYKw6KCMqa7TyyjYTjls6Kv6sqA0ax0gnt8T BEcMxxnejiusmAvk86QVgoo0b07pxcGAbNI/oNF0Egcv0dXRo5H7g6rJmNjIXiPY FmASXy2Ey2y5cw== -----END CERTIFICATE-----Generated at Sat Dec 6 20:05:26 2025 by rpki-client