This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/df9e2d-a033-40c0-a00f-e344fdb722a3/1/jzztMLKFLlUseDdGcAPxdepZ3nM.mft File: jzztMLKFLlUseDdGcAPxdepZ3nM.mft (raw, json) Hash identifier: 59m/JGTMdQRDP00SXrV1ashwzqgxafMEXdJTeQ1Ur6A= Subject key identifier: FE:90:76:30:7F:98:05:32:43:7E:77:B9:27:F2:B4:D6:95:A1:CC:22 Authority key identifier: 8F:3C:ED:30:B2:85:2E:55:2C:78:37:46:70:03:F1:75:EA:59:DE:73 Certificate issuer: /CN=8f3ced30b2852e552c7837467003f175ea59de73 Certificate serial: 019B21E34A99235F384045D0DA7A283D97B9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jzztMLKFLlUseDdGcAPxdepZ3nM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/df9e2d-a033-40c0-a00f-e344fdb722a3/1/jzztMLKFLlUseDdGcAPxdepZ3nM.mft Manifest number: 0C82 Signing time: Mon 15 Dec 2025 12:01:42 +0000 Manifest this update: Mon 15 Dec 2025 12:01:42 +0000 Manifest next update: Tue 16 Dec 2025 12:01:42 +0000 Files and hashes: 1: jzztMLKFLlUseDdGcAPxdepZ3nM.crl (hash: mJmWTFjKfApOgQbm78zNp+0p+wqhkarxgKTsbg5S6pQ=) 2: zFUJjDGEsZJOucFbVCUxDXzsMU8.roa (hash: 2ZiCqHTVImshB2FLBBPRqOl/4XNJLXBYYXR20S0fJAg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/df9e2d-a033-40c0-a00f-e344fdb722a3/1/jzztMLKFLlUseDdGcAPxdepZ3nM.crl rsync://rpki.ripe.net/repository/DEFAULT/48/df9e2d-a033-40c0-a00f-e344fdb722a3/1/jzztMLKFLlUseDdGcAPxdepZ3nM.mft rsync://rpki.ripe.net/repository/DEFAULT/jzztMLKFLlUseDdGcAPxdepZ3nM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 12:01:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:21:e3:4a:99:23:5f:38:40:45:d0:da:7a:28:3d:97:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8f3ced30b2852e552c7837467003f175ea59de73 Validity Not Before: Dec 15 12:01:42 2025 GMT Not After : Dec 16 12:01:42 2025 GMT Subject: CN=fe9076307f980532437e77b927f2b4d695a1cc22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:67:10:fc:ab:12:9e:00:ab:2a:a5:85:8e:0e: 6a:40:16:41:0b:45:7b:19:a6:0c:fa:72:69:01:25: 2b:a5:97:d1:c9:4b:13:59:a9:b9:fa:3c:0b:f3:9d: 78:9c:77:0a:a9:c6:40:fb:e1:6b:2c:12:4a:dc:72: ed:59:d4:2a:cc:ba:6f:20:1f:17:c7:a4:f7:37:f7: 42:76:56:1d:6d:f2:de:de:bc:8d:55:91:c1:22:99: 24:8d:da:a0:10:d1:18:77:44:2e:2b:ca:22:4d:27: 52:61:6c:3e:c1:3b:b8:c1:f0:22:56:6c:ab:c7:0f: ab:84:63:d2:98:1d:86:15:90:26:6c:ef:db:fb:26: 14:4f:b7:0f:37:bf:6b:5b:e7:8f:52:2a:86:98:3a: 61:7b:03:ef:57:74:88:27:fd:bd:d8:2d:48:06:3f: 8b:aa:bb:fa:1e:1b:b9:0a:f7:29:b1:58:b6:6d:62: 49:e4:30:0f:c3:fd:bf:79:54:4c:d5:5f:c1:ce:ee: a9:38:a0:7e:02:4a:6b:33:d3:dc:42:2d:1a:76:3c: 6e:b3:7e:7e:61:98:50:e1:a3:a6:6b:1b:dd:a4:b2: 49:c2:87:7b:4b:5e:18:e1:fd:98:78:28:fb:cb:19: 90:88:f8:cb:4a:33:b4:56:33:b4:99:fb:66:14:7c: 96:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:90:76:30:7F:98:05:32:43:7E:77:B9:27:F2:B4:D6:95:A1:CC:22 X509v3 Authority Key Identifier: keyid:8F:3C:ED:30:B2:85:2E:55:2C:78:37:46:70:03:F1:75:EA:59:DE:73 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jzztMLKFLlUseDdGcAPxdepZ3nM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/df9e2d-a033-40c0-a00f-e344fdb722a3/1/jzztMLKFLlUseDdGcAPxdepZ3nM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/48/df9e2d-a033-40c0-a00f-e344fdb722a3/1/jzztMLKFLlUseDdGcAPxdepZ3nM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 80:0f:51:b4:ae:ab:e9:15:f5:71:3c:20:47:85:d6:99:58:35: 47:cd:30:75:51:f9:7d:ec:f1:bc:96:3d:b8:4e:2c:04:30:ce: 6a:53:d4:9e:63:c7:a5:be:59:84:99:5d:0c:23:27:d4:68:a2: 05:e7:69:ee:e8:89:59:51:4b:95:20:b4:0c:c0:fb:8e:df:30: d6:19:18:4a:54:44:22:65:55:5f:cf:bf:0e:66:24:86:ae:50: f9:a5:7c:68:c5:49:91:7a:09:99:2f:d5:75:31:94:5c:41:73: 4c:05:c2:d7:ac:9b:19:fe:80:80:fc:79:1c:fc:09:95:f6:7b: 41:76:88:57:15:e2:c5:57:34:4f:c1:ef:03:a5:8d:d4:bd:bb: 40:6d:f1:b5:84:47:2b:a4:fa:01:05:1a:33:8a:4f:0b:b6:fc: 73:d0:3f:08:ad:64:12:14:76:2e:38:ff:df:9a:bb:bc:ae:9d: 60:92:a7:37:67:cd:f0:28:a9:cd:ed:f3:be:e3:a3:27:5f:04: 41:dd:83:6c:76:58:0c:7c:01:09:69:51:ee:f9:bc:97:36:ab: d6:c9:de:60:20:25:56:23:19:0e:d9:b7:59:f2:81:c4:c4:dc: 39:d3:52:e7:13:2a:fc:a7:17:a7:87:49:12:85:07:09:f4:9a: 4a:3d:6c:b2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsh40qZI184QEXQ2nooPZe5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhmM2NlZDMwYjI4NTJlNTUyYzc4Mzc0NjcwMDNmMTc1ZWE1 OWRlNzMwHhcNMjUxMjE1MTIwMTQyWhcNMjUxMjE2MTIwMTQyWjAzMTEwLwYDVQQD EyhmZTkwNzYzMDdmOTgwNTMyNDM3ZTc3YjkyN2YyYjRkNjk1YTFjYzIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqGcQ/KsSngCrKqWFjg5qQBZBC0V7 GaYM+nJpASUrpZfRyUsTWam5+jwL8514nHcKqcZA++FrLBJK3HLtWdQqzLpvIB8X x6T3N/dCdlYdbfLe3ryNVZHBIpkkjdqgENEYd0QuK8oiTSdSYWw+wTu4wfAiVmyr xw+rhGPSmB2GFZAmbO/b+yYUT7cPN79rW+ePUiqGmDphewPvV3SIJ/292C1IBj+L qrv6Hhu5CvcpsVi2bWJJ5DAPw/2/eVRM1V/Bzu6pOKB+AkprM9PcQi0adjxus35+ YZhQ4aOmaxvdpLJJwod7S14Y4f2YeCj7yxmQiPjLSjO0VjO0mftmFHyWIwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFP6QdjB/mAUyQ353uSfytNaVocwiMB8GA1UdIwQY MBaAFI887TCyhS5VLHg3RnAD8XXqWd5zMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvanp6dE1MS0ZMbFVzZURkR2NBUHhkZXBaM25NLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OC9kZjllMmQtYTAzMy00MGMwLWEwMGYt ZTM0NGZkYjcyMmEzLzEvanp6dE1MS0ZMbFVzZURkR2NBUHhkZXBaM25NLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80OC9kZjllMmQtYTAzMy00MGMwLWEwMGYtZTM0NGZkYjcyMmEz LzEvanp6dE1MS0ZMbFVzZURkR2NBUHhkZXBaM25NLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgA9RtK6r 6RX1cTwgR4XWmVg1R80wdVH5fezxvJY9uE4sBDDOalPUnmPHpb5ZhJldDCMn1Gii Bedp7uiJWVFLlSC0DMD7jt8w1hkYSlREImVVX8+/DmYkhq5Q+aV8aMVJkXoJmS/V dTGUXEFzTAXC16ybGf6AgPx5HPwJlfZ7QXaIVxXixVc0T8HvA6WN1L27QG3xtYRH K6T6AQUaM4pPC7b8c9A/CK1kEhR2Ljj/35q7vK6dYJKnN2fN8Cipze3zvuOjJ18E Qd2DbHZYDHwBCWlR7vm8lzar1sneYCAlViMZDtm3WfKBxMTcOdNS5xMq/KcXp4dJ EoUHCfSaSj1ssg== -----END CERTIFICATE-----Generated at Mon Dec 15 17:07:17 2025 by rpki-client