This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/0d14d0-be8b-4170-9fd8-07cd4a061c80/1/JkQpgYmVnJWm1KdLdU9JlqWltlw.mft File: JkQpgYmVnJWm1KdLdU9JlqWltlw.mft (raw, json) Hash identifier: XDIi4pd9i/SWt8BS5yKECWif39eunqEsZNCdVyUHb+0= Subject key identifier: 4D:B0:BA:F4:E2:11:DC:C6:C9:88:05:A3:D5:12:69:30:CA:28:D4:34 Authority key identifier: 26:44:29:81:89:95:9C:95:A6:D4:A7:4B:75:4F:49:96:A5:A5:B6:5C Certificate issuer: /CN=2644298189959c95a6d4a74b754f4996a5a5b65c Certificate serial: 019AF12E458E2B44FA074F9B8A8842F64692 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JkQpgYmVnJWm1KdLdU9JlqWltlw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/0d14d0-be8b-4170-9fd8-07cd4a061c80/1/JkQpgYmVnJWm1KdLdU9JlqWltlw.mft Manifest number: 175D Signing time: Sat 06 Dec 2025 01:02:12 +0000 Manifest this update: Sat 06 Dec 2025 01:02:12 +0000 Manifest next update: Sun 07 Dec 2025 01:02:12 +0000 Files and hashes: 1: JkQpgYmVnJWm1KdLdU9JlqWltlw.crl (hash: KLHwn9yZ+QBjN/+v5JY8kFe4oGP5VzpmAIX0LuusggI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/0d14d0-be8b-4170-9fd8-07cd4a061c80/1/JkQpgYmVnJWm1KdLdU9JlqWltlw.crl rsync://rpki.ripe.net/repository/DEFAULT/3f/0d14d0-be8b-4170-9fd8-07cd4a061c80/1/JkQpgYmVnJWm1KdLdU9JlqWltlw.mft rsync://rpki.ripe.net/repository/DEFAULT/JkQpgYmVnJWm1KdLdU9JlqWltlw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:02:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2e:45:8e:2b:44:fa:07:4f:9b:8a:88:42:f6:46:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2644298189959c95a6d4a74b754f4996a5a5b65c Validity Not Before: Dec 6 01:02:12 2025 GMT Not After : Dec 7 01:02:12 2025 GMT Subject: CN=4db0baf4e211dcc6c98805a3d5126930ca28d434 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:64:57:0e:51:04:eb:bb:24:11:e7:bb:cd:1d: 51:8d:13:37:f8:df:e6:8e:38:7f:c2:09:24:c3:6f: 89:f4:07:5b:60:6c:28:d0:21:2e:9a:2a:18:b9:5b: 0c:5c:91:fc:5d:8e:1e:c1:34:de:d0:b4:dc:e9:1d: c0:b9:51:28:28:90:5d:9d:4c:4f:fd:8b:a7:60:46: 8f:8a:a1:c2:27:48:03:6f:2f:4b:d7:25:85:69:be: 74:70:cb:f1:04:c8:38:17:75:57:69:50:19:0c:bb: f1:52:c4:03:18:42:87:c1:d0:74:1b:d7:36:d2:df: 13:7c:f2:5e:83:14:b1:7f:27:d0:c9:c0:29:20:be: 25:cf:7b:7b:87:c1:65:16:b8:66:8c:79:dc:33:6b: 4e:6d:68:ef:13:e9:54:a2:d1:82:3d:69:53:2b:e5: 32:f4:2c:48:7a:10:dd:f1:77:b5:c5:5c:0b:74:94: aa:51:f5:51:31:e1:fe:44:81:94:4b:15:41:29:6e: 78:2e:37:78:aa:3e:dd:2c:07:d7:2f:0b:3d:1d:ee: 9d:d2:56:2a:66:1d:0c:b5:c4:3b:c1:53:55:06:c8: f9:43:91:0f:63:6f:2e:3b:50:fe:be:60:8d:90:22: de:bb:94:bd:93:4c:d7:63:fb:1a:de:4d:6f:a4:78: 5e:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:B0:BA:F4:E2:11:DC:C6:C9:88:05:A3:D5:12:69:30:CA:28:D4:34 X509v3 Authority Key Identifier: keyid:26:44:29:81:89:95:9C:95:A6:D4:A7:4B:75:4F:49:96:A5:A5:B6:5C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JkQpgYmVnJWm1KdLdU9JlqWltlw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/0d14d0-be8b-4170-9fd8-07cd4a061c80/1/JkQpgYmVnJWm1KdLdU9JlqWltlw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/0d14d0-be8b-4170-9fd8-07cd4a061c80/1/JkQpgYmVnJWm1KdLdU9JlqWltlw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4d:fe:e6:c0:87:9c:3d:79:81:8d:fb:6e:db:fd:6a:b3:b0:44: 0f:59:85:15:47:98:e4:44:c7:f0:af:e2:3d:8c:76:6a:99:6b: 2f:8c:3b:44:21:95:c4:ae:36:fd:2b:89:a5:f7:88:22:e0:16: f2:88:7c:ce:f0:bd:aa:1b:86:7b:ee:d9:dd:66:d1:62:8c:62: f6:f3:9e:12:e9:8f:01:5b:8d:36:f6:b4:a6:50:98:a1:ad:ea: 24:8b:e7:04:d2:4f:ad:ec:a2:ca:dd:9a:00:cc:3c:ba:19:f0: b6:88:02:1d:c0:d9:d5:0a:7a:30:46:ea:6b:6b:f0:30:43:f8: 79:a5:ce:50:ed:f0:50:20:0e:15:6b:93:b3:3f:c2:83:82:ef: 9a:18:99:b9:cf:d6:b6:af:17:33:b4:c4:87:d4:90:9b:67:ac: b8:28:38:84:43:78:17:c5:2d:fd:a3:f0:db:e8:87:9a:45:1f: 0d:80:e9:4c:2e:6d:51:79:24:34:dc:fb:3f:2a:49:58:e2:da: 7a:1e:9d:bb:18:98:9f:e4:aa:4c:3a:71:9f:b4:02:58:b2:20: 6c:bb:32:c7:54:41:15:db:cf:61:62:bb:1f:a0:ab:b6:1f:94: 0c:1b:3b:6f:be:00:12:90:ac:b0:9e:a7:d8:6c:b2:f0:e0:b3: 93:1f:23:b8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLkWOK0T6B0+biohC9kaSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI2NDQyOTgxODk5NTljOTVhNmQ0YTc0Yjc1NGY0OTk2YTVh NWI2NWMwHhcNMjUxMjA2MDEwMjEyWhcNMjUxMjA3MDEwMjEyWjAzMTEwLwYDVQQD Eyg0ZGIwYmFmNGUyMTFkY2M2Yzk4ODA1YTNkNTEyNjkzMGNhMjhkNDM0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzGRXDlEE67skEee7zR1RjRM3+N/m jjh/wgkkw2+J9AdbYGwo0CEumioYuVsMXJH8XY4ewTTe0LTc6R3AuVEoKJBdnUxP /YunYEaPiqHCJ0gDby9L1yWFab50cMvxBMg4F3VXaVAZDLvxUsQDGEKHwdB0G9c2 0t8TfPJegxSxfyfQycApIL4lz3t7h8FlFrhmjHncM2tObWjvE+lUotGCPWlTK+Uy 9CxIehDd8Xe1xVwLdJSqUfVRMeH+RIGUSxVBKW54Ljd4qj7dLAfXLws9He6d0lYq Zh0MtcQ7wVNVBsj5Q5EPY28uO1D+vmCNkCLeu5S9k0zXY/sa3k1vpHheaQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFE2wuvTiEdzGyYgFo9USaTDKKNQ0MB8GA1UdIwQY MBaAFCZEKYGJlZyVptSnS3VPSZalpbZcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSmtRcGdZbVZuSldtMUtkTGRVOUpscVdsdGx3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZi8wZDE0ZDAtYmU4Yi00MTcwLTlmZDgt MDdjZDRhMDYxYzgwLzEvSmtRcGdZbVZuSldtMUtkTGRVOUpscVdsdGx3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZi8wZDE0ZDAtYmU4Yi00MTcwLTlmZDgtMDdjZDRhMDYxYzgw LzEvSmtRcGdZbVZuSldtMUtkTGRVOUpscVdsdGx3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATf7mwIec PXmBjftu2/1qs7BED1mFFUeY5ETH8K/iPYx2aplrL4w7RCGVxK42/SuJpfeIIuAW 8oh8zvC9qhuGe+7Z3WbRYoxi9vOeEumPAVuNNva0plCYoa3qJIvnBNJPreyiyt2a AMw8uhnwtogCHcDZ1Qp6MEbqa2vwMEP4eaXOUO3wUCAOFWuTsz/Cg4LvmhiZuc/W tq8XM7TEh9SQm2esuCg4hEN4F8Ut/aPw2+iHmkUfDYDpTC5tUXkkNNz7PypJWOLa eh6duxiYn+SqTDpxn7QCWLIgbLsyx1RBFdvPYWK7H6Crth+UDBs7b74AEpCssJ6n 2Gyy8OCzkx8juA== -----END CERTIFICATE-----Generated at Sat Dec 6 11:11:27 2025 by rpki-client