This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/03c99d-93c5-4508-b54a-ed38c47fbac6/1/jmOEMlhq5gL_Datn0JsZUVJOggU.mft File: jmOEMlhq5gL_Datn0JsZUVJOggU.mft (raw, json) Hash identifier: WetUZ0Psbt1M10VhN7ZJfLgJB6ue3Z8D4jjaaQdXEwk= Subject key identifier: E2:9B:BA:3A:12:11:91:16:78:26:0F:B8:06:A1:1E:04:54:2B:73:BE Authority key identifier: 8E:63:84:32:58:6A:E6:02:FF:0D:AB:67:D0:9B:19:51:52:4E:82:05 Certificate issuer: /CN=8e638432586ae602ff0dab67d09b1951524e8205 Certificate serial: 019AF464DC84679FAF7D76AA139C23ADF40B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jmOEMlhq5gL_Datn0JsZUVJOggU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/03c99d-93c5-4508-b54a-ed38c47fbac6/1/jmOEMlhq5gL_Datn0JsZUVJOggU.mft Manifest number: 0185 Signing time: Sat 06 Dec 2025 16:00:41 +0000 Manifest this update: Sat 06 Dec 2025 16:00:41 +0000 Manifest next update: Sun 07 Dec 2025 16:00:41 +0000 Files and hashes: 1: jmOEMlhq5gL_Datn0JsZUVJOggU.crl (hash: T1ukRMSKfhL1nhwxTy3ZYObquF4shd9A+BuREQuBSc4=) 2: lRoCCR7d7sV8zan-pzAzhXIb0yk.roa (hash: zsjWkEr7wbMEPevuos7iGWcpCUsff/MP3ODrwkUVgTo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/03c99d-93c5-4508-b54a-ed38c47fbac6/1/jmOEMlhq5gL_Datn0JsZUVJOggU.crl rsync://rpki.ripe.net/repository/DEFAULT/50/03c99d-93c5-4508-b54a-ed38c47fbac6/1/jmOEMlhq5gL_Datn0JsZUVJOggU.mft rsync://rpki.ripe.net/repository/DEFAULT/jmOEMlhq5gL_Datn0JsZUVJOggU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f4:64:dc:84:67:9f:af:7d:76:aa:13:9c:23:ad:f4:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8e638432586ae602ff0dab67d09b1951524e8205 Validity Not Before: Dec 6 16:00:41 2025 GMT Not After : Dec 7 16:00:41 2025 GMT Subject: CN=e29bba3a1211911678260fb806a11e04542b73be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:55:20:85:50:ec:0a:f3:da:58:22:23:9b:8f: 7d:4f:93:f5:ee:e8:55:3a:9f:e7:90:f6:03:1b:ea: be:66:39:0a:2e:1c:82:9b:18:0b:1c:5b:d4:31:d7: 80:c5:8c:4d:6f:e5:f4:20:81:23:e7:13:f5:b6:80: 6d:e9:8b:d9:e3:75:5f:fc:6c:6d:8e:12:fa:d1:23: f0:ca:0f:66:d8:2e:fe:04:10:ef:98:2f:1d:68:c3: 14:fe:0b:b8:4a:08:c1:9b:7c:0b:51:41:e2:6d:d7: a2:95:05:3c:7d:17:ea:a8:ff:82:a8:44:85:c3:f6: 2d:33:66:8c:04:99:97:71:e8:fb:51:17:56:a4:1e: ce:1e:66:b3:1b:36:62:25:ce:43:32:b8:7f:e5:ae: 25:38:4d:63:e1:51:58:e1:4b:57:70:fa:e4:16:0d: 4d:8a:29:77:72:15:9f:1e:3f:fc:95:46:69:6f:78: 7b:ac:69:8e:7e:5a:cc:8d:26:c2:bc:bd:55:3a:0b: 58:c5:93:df:2c:14:c7:aa:1c:81:c1:28:a7:21:b4: 77:48:de:ac:4b:d3:06:9c:77:35:5f:9e:90:6a:e3: 24:5c:63:4d:de:2b:6a:d8:01:af:d0:c5:ac:b4:ec: a1:61:8a:13:db:01:ef:86:55:21:23:09:5f:2f:7f: ae:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:9B:BA:3A:12:11:91:16:78:26:0F:B8:06:A1:1E:04:54:2B:73:BE X509v3 Authority Key Identifier: keyid:8E:63:84:32:58:6A:E6:02:FF:0D:AB:67:D0:9B:19:51:52:4E:82:05 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jmOEMlhq5gL_Datn0JsZUVJOggU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/03c99d-93c5-4508-b54a-ed38c47fbac6/1/jmOEMlhq5gL_Datn0JsZUVJOggU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/50/03c99d-93c5-4508-b54a-ed38c47fbac6/1/jmOEMlhq5gL_Datn0JsZUVJOggU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 92:f4:8e:7d:79:f8:d6:70:e3:ea:ee:2d:38:09:37:a9:4a:3c: 72:bc:6d:00:d6:32:d4:b6:37:a8:03:51:1a:e2:39:cd:53:eb: 5b:a8:03:8e:08:46:1b:38:9a:ba:03:98:54:b7:fe:d4:f7:e4: 65:97:df:ec:9c:77:9f:44:2e:e5:2d:0f:05:bf:7b:29:91:39: 30:d2:41:ab:fe:58:1b:6f:62:cf:96:f9:f5:7a:bb:99:9e:0f: a9:08:b4:ad:cf:00:bc:33:81:37:e3:05:d9:b2:7c:1e:6c:12: 41:ee:d0:7c:f9:4a:89:0b:e8:9c:dd:34:b4:8a:0f:f4:3b:7c: f6:6a:8e:1f:e0:65:73:9c:c9:6c:c7:8f:cb:37:30:e1:11:4d: 9c:4c:11:39:aa:fe:b2:b1:ff:76:0d:3a:00:cd:29:5c:c1:07: 77:cb:36:a2:cb:93:94:cd:d8:e3:5d:12:06:86:0c:7e:91:bc: 10:79:4f:59:aa:43:67:28:17:36:aa:8e:bd:9c:62:99:56:52: fd:40:59:36:b7:dc:59:af:44:a2:4a:c1:1a:71:55:6c:4a:ec: f2:aa:23:52:97:91:d2:29:c4:3f:3a:ed:a0:44:a0:f3:07:92: b7:52:39:91:24:a3:0d:25:8e:79:17:8f:dc:76:c8:bd:60:6c: 23:67:75:d0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr0ZNyEZ5+vfXaqE5wjrfQLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhlNjM4NDMyNTg2YWU2MDJmZjBkYWI2N2QwOWIxOTUxNTI0 ZTgyMDUwHhcNMjUxMjA2MTYwMDQxWhcNMjUxMjA3MTYwMDQxWjAzMTEwLwYDVQQD EyhlMjliYmEzYTEyMTE5MTE2NzgyNjBmYjgwNmExMWUwNDU0MmI3M2JlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw1UghVDsCvPaWCIjm499T5P17uhV Op/nkPYDG+q+ZjkKLhyCmxgLHFvUMdeAxYxNb+X0IIEj5xP1toBt6YvZ43Vf/Gxt jhL60SPwyg9m2C7+BBDvmC8daMMU/gu4SgjBm3wLUUHibdeilQU8fRfqqP+CqESF w/YtM2aMBJmXcej7URdWpB7OHmazGzZiJc5DMrh/5a4lOE1j4VFY4UtXcPrkFg1N iil3chWfHj/8lUZpb3h7rGmOflrMjSbCvL1VOgtYxZPfLBTHqhyBwSinIbR3SN6s S9MGnHc1X56QauMkXGNN3itq2AGv0MWstOyhYYoT2wHvhlUhIwlfL3+uawIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOKbujoSEZEWeCYPuAahHgRUK3O+MB8GA1UdIwQY MBaAFI5jhDJYauYC/w2rZ9CbGVFSToIFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvam1PRU1saHE1Z0xfRGF0bjBKc1pVVkpPZ2dVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MC8wM2M5OWQtOTNjNS00NTA4LWI1NGEt ZWQzOGM0N2ZiYWM2LzEvam1PRU1saHE1Z0xfRGF0bjBKc1pVVkpPZ2dVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81MC8wM2M5OWQtOTNjNS00NTA4LWI1NGEtZWQzOGM0N2ZiYWM2 LzEvam1PRU1saHE1Z0xfRGF0bjBKc1pVVkpPZ2dVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkvSOfXn4 1nDj6u4tOAk3qUo8crxtANYy1LY3qANRGuI5zVPrW6gDjghGGziaugOYVLf+1Pfk ZZff7Jx3n0Qu5S0PBb97KZE5MNJBq/5YG29iz5b59Xq7mZ4PqQi0rc8AvDOBN+MF 2bJ8HmwSQe7QfPlKiQvonN00tIoP9Dt89mqOH+Blc5zJbMePyzcw4RFNnEwROar+ srH/dg06AM0pXMEHd8s2osuTlM3Y410SBoYMfpG8EHlPWapDZygXNqqOvZximVZS /UBZNrfcWa9EokrBGnFVbErs8qojUpeR0inEPzrtoESg8weSt1I5kSSjDSWOeReP 3HbIvWBsI2d10A== -----END CERTIFICATE-----Generated at Sat Dec 6 20:37:19 2025 by rpki-client