This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/03c99d-93c5-4508-b54a-ed38c47fbac6/1/jmOEMlhq5gL_Datn0JsZUVJOggU.mft
File: jmOEMlhq5gL_Datn0JsZUVJOggU.mft (raw, json)
Hash identifier: q5LzXa7Z9JtisxMZXt7tAIreZDVKDMqWhb2MLyfgXxI=
Subject key identifier: 6E:D1:CB:46:21:FA:C3:CD:9F:1A:11:39:FC:2B:50:6C:9A:71:6B:4D
Authority key identifier: 8E:63:84:32:58:6A:E6:02:FF:0D:AB:67:D0:9B:19:51:52:4E:82:05
Certificate issuer: /CN=8e638432586ae602ff0dab67d09b1951524e8205
Certificate serial: 019AF276F4E077FE09529481B4586D4FEA6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jmOEMlhq5gL_Datn0JsZUVJOggU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/03c99d-93c5-4508-b54a-ed38c47fbac6/1/jmOEMlhq5gL_Datn0JsZUVJOggU.mft
Manifest number: 0184
Signing time: Sat 06 Dec 2025 07:01:13 +0000
Manifest this update: Sat 06 Dec 2025 07:01:13 +0000
Manifest next update: Sun 07 Dec 2025 07:01:13 +0000
Files and hashes: 1: jmOEMlhq5gL_Datn0JsZUVJOggU.crl (hash: p2dGJHXCEmoOp8qhpXQlLWYMAuAJzLYVGYk2Uoxht5I=)
2: lRoCCR7d7sV8zan-pzAzhXIb0yk.roa (hash: zsjWkEr7wbMEPevuos7iGWcpCUsff/MP3ODrwkUVgTo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/03c99d-93c5-4508-b54a-ed38c47fbac6/1/jmOEMlhq5gL_Datn0JsZUVJOggU.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/03c99d-93c5-4508-b54a-ed38c47fbac6/1/jmOEMlhq5gL_Datn0JsZUVJOggU.mft
rsync://rpki.ripe.net/repository/DEFAULT/jmOEMlhq5gL_Datn0JsZUVJOggU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 07 Dec 2025 07:01:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:f2:76:f4:e0:77:fe:09:52:94:81:b4:58:6d:4f:ea:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e638432586ae602ff0dab67d09b1951524e8205
Validity
Not Before: Dec 6 07:01:13 2025 GMT
Not After : Dec 7 07:01:13 2025 GMT
Subject: CN=6ed1cb4621fac3cd9f1a1139fc2b506c9a716b4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:e8:2e:79:cd:ee:92:19:32:45:a7:6a:b2:5c:
2d:33:e7:f9:35:4e:ef:53:c9:9b:79:37:08:16:95:
47:5b:7f:5f:1c:61:16:b6:6d:04:c5:be:a3:9e:15:
d0:ce:2c:1e:57:07:6e:ce:29:59:08:4c:93:71:29:
11:a6:fa:90:93:a1:de:5b:62:55:6f:8d:cd:92:d3:
1c:0b:8f:30:4e:31:0a:96:3d:f4:fb:e6:d7:8f:3c:
2d:f7:7a:fc:e5:f5:69:68:1a:4b:74:55:b6:e1:1f:
6f:32:35:81:66:71:b2:ea:8c:d2:07:3b:1a:1b:b4:
0f:a2:8c:47:5b:cc:59:a3:e0:cd:34:0f:c9:61:79:
b6:af:99:b9:b4:6d:f7:ea:b2:51:a1:ee:b4:c9:7b:
64:ce:c4:17:70:51:b7:16:13:32:33:a6:ac:e9:72:
6b:45:1b:3d:0f:33:b4:bf:bc:96:42:a0:3a:a4:ec:
55:a5:aa:11:fd:c2:0b:33:fe:45:b0:90:7e:8a:73:
df:9d:78:40:4f:ea:e4:28:9c:91:5b:ad:7c:4b:cc:
b0:c4:10:4b:d0:9b:a8:de:e0:19:53:23:00:62:c1:
58:1e:13:75:c5:e3:fa:3b:05:b2:5b:d7:ec:c8:2f:
4a:45:fa:e1:c2:68:dc:b3:61:12:d9:e0:a8:7b:8c:
21:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:D1:CB:46:21:FA:C3:CD:9F:1A:11:39:FC:2B:50:6C:9A:71:6B:4D
X509v3 Authority Key Identifier:
keyid:8E:63:84:32:58:6A:E6:02:FF:0D:AB:67:D0:9B:19:51:52:4E:82:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jmOEMlhq5gL_Datn0JsZUVJOggU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/03c99d-93c5-4508-b54a-ed38c47fbac6/1/jmOEMlhq5gL_Datn0JsZUVJOggU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/03c99d-93c5-4508-b54a-ed38c47fbac6/1/jmOEMlhq5gL_Datn0JsZUVJOggU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:29:5e:69:f6:9e:84:9e:08:9d:7b:48:a4:25:8c:bc:12:2a:
c1:6f:50:91:e2:11:7d:eb:eb:d1:d9:09:19:04:46:9d:c5:c1:
f6:e3:45:0a:06:f0:5a:3f:ea:b5:21:70:00:1f:33:7e:93:b7:
99:a6:dd:d2:a9:14:e6:2b:34:d1:af:ef:ec:e2:b5:ea:71:c9:
03:7a:3f:03:46:78:5e:e5:ab:e1:8d:05:e7:38:2c:ed:d2:df:
17:f7:48:e0:fc:0f:6f:62:c4:b7:57:ee:ee:4d:9b:36:93:e7:
d7:af:84:bb:2a:3e:45:a4:7d:21:08:d8:f8:6d:2d:dc:c4:48:
67:51:02:af:67:44:f2:fc:3c:3c:83:3b:4a:0e:b1:ac:84:cc:
f0:26:25:95:d7:c3:bf:c3:b7:74:62:24:46:19:6a:aa:94:dd:
8f:ab:88:5a:bf:05:d2:8b:9d:0b:ef:ad:58:9b:16:f8:fa:8b:
7c:3e:ad:1c:a8:21:06:2e:43:4f:21:ed:4b:9f:b0:41:c6:bc:
73:fa:18:dc:6a:86:16:5c:ed:a8:1d:10:af:0d:45:33:b1:1c:
d4:87:8a:de:15:05:3c:40:37:d0:40:7d:e1:12:c7:df:2b:34:
60:93:69:17:62:84:01:5a:a6:80:b2:36:7b:cb:97:f3:44:a2:
d0:dc:74:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Dec 6 17:35:22 2025 by rpki-client