This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/df9e2d-a033-40c0-a00f-e344fdb722a3/1/jzztMLKFLlUseDdGcAPxdepZ3nM.mft File: jzztMLKFLlUseDdGcAPxdepZ3nM.mft (raw, json) Hash identifier: m09WYQAQB+eh+iRvwGpXuitjARHKdWUYO0Cag0mqpcw= Subject key identifier: 55:35:21:F5:65:C0:45:64:6E:58:41:95:ED:65:64:C4:81:3A:49:75 Authority key identifier: 8F:3C:ED:30:B2:85:2E:55:2C:78:37:46:70:03:F1:75:EA:59:DE:73 Certificate issuer: /CN=8f3ced30b2852e552c7837467003f175ea59de73 Certificate serial: 019AF389624CB0D442AEB401208820A8A04B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jzztMLKFLlUseDdGcAPxdepZ3nM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/df9e2d-a033-40c0-a00f-e344fdb722a3/1/jzztMLKFLlUseDdGcAPxdepZ3nM.mft Manifest number: 0C6A Signing time: Sat 06 Dec 2025 12:00:58 +0000 Manifest this update: Sat 06 Dec 2025 12:00:58 +0000 Manifest next update: Sun 07 Dec 2025 12:00:58 +0000 Files and hashes: 1: jzztMLKFLlUseDdGcAPxdepZ3nM.crl (hash: 8Aya1BhoR0bwg4V6qkDORuHE1v1NOSpH25ujXbUXfKk=) 2: zFUJjDGEsZJOucFbVCUxDXzsMU8.roa (hash: 2ZiCqHTVImshB2FLBBPRqOl/4XNJLXBYYXR20S0fJAg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/df9e2d-a033-40c0-a00f-e344fdb722a3/1/jzztMLKFLlUseDdGcAPxdepZ3nM.crl rsync://rpki.ripe.net/repository/DEFAULT/48/df9e2d-a033-40c0-a00f-e344fdb722a3/1/jzztMLKFLlUseDdGcAPxdepZ3nM.mft rsync://rpki.ripe.net/repository/DEFAULT/jzztMLKFLlUseDdGcAPxdepZ3nM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 12:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:89:62:4c:b0:d4:42:ae:b4:01:20:88:20:a8:a0:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8f3ced30b2852e552c7837467003f175ea59de73 Validity Not Before: Dec 6 12:00:58 2025 GMT Not After : Dec 7 12:00:58 2025 GMT Subject: CN=553521f565c045646e584195ed6564c4813a4975 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:49:6e:84:ac:8f:a7:d6:77:c5:a4:6e:f5:e0: 04:ef:79:72:46:98:b6:b6:06:be:0f:32:d4:8d:4d: b4:10:49:69:fc:7e:a8:4f:77:1d:99:a0:d3:ef:a8: 6c:cc:9a:a1:1e:ed:c2:7f:73:b9:cb:7d:b6:3f:00: 69:22:95:9e:ac:da:91:91:b5:28:84:39:cc:08:21: d8:29:f7:aa:6b:66:0b:bd:05:8c:fb:fa:a4:95:1c: 66:2a:7d:48:f0:e9:12:31:12:32:a2:72:ae:96:ba: b0:44:d4:11:fc:f5:fc:f6:ce:d5:c2:bc:f5:00:51: 8b:38:b7:73:30:28:74:1a:ea:7b:25:c5:60:0e:78: 92:a8:b0:b6:0e:48:e2:db:94:12:ad:9c:e9:b2:78: 6b:c4:60:94:d6:fa:6a:73:ea:2d:bd:b3:69:46:c3: 4d:d5:16:ff:6e:d0:7c:e6:5b:8d:1a:59:2a:11:45: 92:95:db:29:a8:38:77:91:f9:2b:02:af:40:bc:08: f3:b0:2a:c7:bf:ca:34:a4:cb:84:ae:d0:c3:03:04: 61:ec:7d:b4:c4:93:a2:20:85:13:ab:ee:ed:ca:d0: 0c:dd:6e:bd:d3:e6:a2:12:bb:8e:74:e9:00:1d:44: cc:00:42:8b:c2:13:97:63:9e:7a:14:19:dc:17:e0: 31:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:35:21:F5:65:C0:45:64:6E:58:41:95:ED:65:64:C4:81:3A:49:75 X509v3 Authority Key Identifier: keyid:8F:3C:ED:30:B2:85:2E:55:2C:78:37:46:70:03:F1:75:EA:59:DE:73 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jzztMLKFLlUseDdGcAPxdepZ3nM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/df9e2d-a033-40c0-a00f-e344fdb722a3/1/jzztMLKFLlUseDdGcAPxdepZ3nM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/48/df9e2d-a033-40c0-a00f-e344fdb722a3/1/jzztMLKFLlUseDdGcAPxdepZ3nM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 40:f8:66:1b:dd:55:38:7a:1b:83:1e:23:d2:1e:75:a8:57:f4: 17:21:7d:cb:81:1f:aa:94:cb:27:ad:a3:61:a8:7f:a5:25:74: 04:a2:7c:58:45:c4:af:23:71:f3:48:f6:ed:df:c9:59:c7:2d: 8d:c3:39:9e:e6:9a:ea:e8:ca:ba:30:7d:40:5d:c3:02:fa:ff: 59:f0:26:64:aa:d7:38:56:86:fc:b9:b0:d6:a4:d7:a1:28:41: 1d:00:4d:ed:89:c3:b5:c5:6b:18:f0:ea:dc:47:d2:43:86:8e: b4:27:09:a8:ab:13:eb:ce:7b:c4:43:c3:86:92:c5:64:48:ef: 79:f5:50:3b:0c:14:26:12:65:8d:52:07:f7:b0:d0:25:f6:1b: a5:af:43:d6:2a:7a:22:39:bd:04:54:43:8a:86:65:59:46:28: 0d:40:01:76:8e:81:45:28:42:29:54:9c:ed:59:aa:90:36:91: ba:c2:b8:ba:44:aa:d9:a4:2f:f5:ee:b9:28:ee:3f:70:8c:5c: a5:31:bf:bc:f6:3a:1a:bf:a1:6b:94:e7:a1:f9:6a:29:82:75: e2:60:57:4c:ce:61:aa:8c:6f:89:77:18:29:b8:c8:70:22:42: 2c:6a:62:4f:3d:ff:46:4c:ae:97:a7:d3:65:00:6c:eb:55:8f: bd:7b:5e:48 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrziWJMsNRCrrQBIIggqKBLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhmM2NlZDMwYjI4NTJlNTUyYzc4Mzc0NjcwMDNmMTc1ZWE1 OWRlNzMwHhcNMjUxMjA2MTIwMDU4WhcNMjUxMjA3MTIwMDU4WjAzMTEwLwYDVQQD Eyg1NTM1MjFmNTY1YzA0NTY0NmU1ODQxOTVlZDY1NjRjNDgxM2E0OTc1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo0luhKyPp9Z3xaRu9eAE73lyRpi2 tga+DzLUjU20EElp/H6oT3cdmaDT76hszJqhHu3Cf3O5y322PwBpIpWerNqRkbUo hDnMCCHYKfeqa2YLvQWM+/qklRxmKn1I8OkSMRIyonKulrqwRNQR/PX89s7Vwrz1 AFGLOLdzMCh0Gup7JcVgDniSqLC2Dkji25QSrZzpsnhrxGCU1vpqc+otvbNpRsNN 1Rb/btB85luNGlkqEUWSldspqDh3kfkrAq9AvAjzsCrHv8o0pMuErtDDAwRh7H20 xJOiIIUTq+7tytAM3W690+aiEruOdOkAHUTMAEKLwhOXY556FBncF+AxCwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFU1IfVlwEVkblhBle1lZMSBOkl1MB8GA1UdIwQY MBaAFI887TCyhS5VLHg3RnAD8XXqWd5zMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvanp6dE1MS0ZMbFVzZURkR2NBUHhkZXBaM25NLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OC9kZjllMmQtYTAzMy00MGMwLWEwMGYt ZTM0NGZkYjcyMmEzLzEvanp6dE1MS0ZMbFVzZURkR2NBUHhkZXBaM25NLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80OC9kZjllMmQtYTAzMy00MGMwLWEwMGYtZTM0NGZkYjcyMmEz LzEvanp6dE1MS0ZMbFVzZURkR2NBUHhkZXBaM25NLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQPhmG91V OHobgx4j0h51qFf0FyF9y4EfqpTLJ62jYah/pSV0BKJ8WEXEryNx80j27d/JWcct jcM5nuaa6ujKujB9QF3DAvr/WfAmZKrXOFaG/Lmw1qTXoShBHQBN7YnDtcVrGPDq 3EfSQ4aOtCcJqKsT6857xEPDhpLFZEjvefVQOwwUJhJljVIH97DQJfYbpa9D1ip6 Ijm9BFRDioZlWUYoDUABdo6BRShCKVSc7VmqkDaRusK4ukSq2aQv9e65KO4/cIxc pTG/vPY6Gr+ha5TnoflqKYJ14mBXTM5hqoxviXcYKbjIcCJCLGpiTz3/Rkyul6fT ZQBs61WPvXteSA== -----END CERTIFICATE-----Generated at Sat Dec 6 18:36:47 2025 by rpki-client