This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/03c99d-93c5-4508-b54a-ed38c47fbac6/1/jmOEMlhq5gL_Datn0JsZUVJOggU.mft File: jmOEMlhq5gL_Datn0JsZUVJOggU.mft (raw, json) Hash identifier: q5LzXa7Z9JtisxMZXt7tAIreZDVKDMqWhb2MLyfgXxI= Subject key identifier: 6E:D1:CB:46:21:FA:C3:CD:9F:1A:11:39:FC:2B:50:6C:9A:71:6B:4D Authority key identifier: 8E:63:84:32:58:6A:E6:02:FF:0D:AB:67:D0:9B:19:51:52:4E:82:05 Certificate issuer: /CN=8e638432586ae602ff0dab67d09b1951524e8205 Certificate serial: 019AF276F4E077FE09529481B4586D4FEA6A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jmOEMlhq5gL_Datn0JsZUVJOggU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/03c99d-93c5-4508-b54a-ed38c47fbac6/1/jmOEMlhq5gL_Datn0JsZUVJOggU.mft Manifest number: 0184 Signing time: Sat 06 Dec 2025 07:01:13 +0000 Manifest this update: Sat 06 Dec 2025 07:01:13 +0000 Manifest next update: Sun 07 Dec 2025 07:01:13 +0000 Files and hashes: 1: jmOEMlhq5gL_Datn0JsZUVJOggU.crl (hash: p2dGJHXCEmoOp8qhpXQlLWYMAuAJzLYVGYk2Uoxht5I=) 2: lRoCCR7d7sV8zan-pzAzhXIb0yk.roa (hash: zsjWkEr7wbMEPevuos7iGWcpCUsff/MP3ODrwkUVgTo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/03c99d-93c5-4508-b54a-ed38c47fbac6/1/jmOEMlhq5gL_Datn0JsZUVJOggU.crl rsync://rpki.ripe.net/repository/DEFAULT/50/03c99d-93c5-4508-b54a-ed38c47fbac6/1/jmOEMlhq5gL_Datn0JsZUVJOggU.mft rsync://rpki.ripe.net/repository/DEFAULT/jmOEMlhq5gL_Datn0JsZUVJOggU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 07:01:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:76:f4:e0:77:fe:09:52:94:81:b4:58:6d:4f:ea:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8e638432586ae602ff0dab67d09b1951524e8205 Validity Not Before: Dec 6 07:01:13 2025 GMT Not After : Dec 7 07:01:13 2025 GMT Subject: CN=6ed1cb4621fac3cd9f1a1139fc2b506c9a716b4d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:e8:2e:79:cd:ee:92:19:32:45:a7:6a:b2:5c: 2d:33:e7:f9:35:4e:ef:53:c9:9b:79:37:08:16:95: 47:5b:7f:5f:1c:61:16:b6:6d:04:c5:be:a3:9e:15: d0:ce:2c:1e:57:07:6e:ce:29:59:08:4c:93:71:29: 11:a6:fa:90:93:a1:de:5b:62:55:6f:8d:cd:92:d3: 1c:0b:8f:30:4e:31:0a:96:3d:f4:fb:e6:d7:8f:3c: 2d:f7:7a:fc:e5:f5:69:68:1a:4b:74:55:b6:e1:1f: 6f:32:35:81:66:71:b2:ea:8c:d2:07:3b:1a:1b:b4: 0f:a2:8c:47:5b:cc:59:a3:e0:cd:34:0f:c9:61:79: b6:af:99:b9:b4:6d:f7:ea:b2:51:a1:ee:b4:c9:7b: 64:ce:c4:17:70:51:b7:16:13:32:33:a6:ac:e9:72: 6b:45:1b:3d:0f:33:b4:bf:bc:96:42:a0:3a:a4:ec: 55:a5:aa:11:fd:c2:0b:33:fe:45:b0:90:7e:8a:73: df:9d:78:40:4f:ea:e4:28:9c:91:5b:ad:7c:4b:cc: b0:c4:10:4b:d0:9b:a8:de:e0:19:53:23:00:62:c1: 58:1e:13:75:c5:e3:fa:3b:05:b2:5b:d7:ec:c8:2f: 4a:45:fa:e1:c2:68:dc:b3:61:12:d9:e0:a8:7b:8c: 21:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:D1:CB:46:21:FA:C3:CD:9F:1A:11:39:FC:2B:50:6C:9A:71:6B:4D X509v3 Authority Key Identifier: keyid:8E:63:84:32:58:6A:E6:02:FF:0D:AB:67:D0:9B:19:51:52:4E:82:05 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jmOEMlhq5gL_Datn0JsZUVJOggU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/03c99d-93c5-4508-b54a-ed38c47fbac6/1/jmOEMlhq5gL_Datn0JsZUVJOggU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/50/03c99d-93c5-4508-b54a-ed38c47fbac6/1/jmOEMlhq5gL_Datn0JsZUVJOggU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 15:29:5e:69:f6:9e:84:9e:08:9d:7b:48:a4:25:8c:bc:12:2a: c1:6f:50:91:e2:11:7d:eb:eb:d1:d9:09:19:04:46:9d:c5:c1: f6:e3:45:0a:06:f0:5a:3f:ea:b5:21:70:00:1f:33:7e:93:b7: 99:a6:dd:d2:a9:14:e6:2b:34:d1:af:ef:ec:e2:b5:ea:71:c9: 03:7a:3f:03:46:78:5e:e5:ab:e1:8d:05:e7:38:2c:ed:d2:df: 17:f7:48:e0:fc:0f:6f:62:c4:b7:57:ee:ee:4d:9b:36:93:e7: d7:af:84:bb:2a:3e:45:a4:7d:21:08:d8:f8:6d:2d:dc:c4:48: 67:51:02:af:67:44:f2:fc:3c:3c:83:3b:4a:0e:b1:ac:84:cc: f0:26:25:95:d7:c3:bf:c3:b7:74:62:24:46:19:6a:aa:94:dd: 8f:ab:88:5a:bf:05:d2:8b:9d:0b:ef:ad:58:9b:16:f8:fa:8b: 7c:3e:ad:1c:a8:21:06:2e:43:4f:21:ed:4b:9f:b0:41:c6:bc: 73:fa:18:dc:6a:86:16:5c:ed:a8:1d:10:af:0d:45:33:b1:1c: d4:87:8a:de:15:05:3c:40:37:d0:40:7d:e1:12:c7:df:2b:34: 60:93:69:17:62:84:01:5a:a6:80:b2:36:7b:cb:97:f3:44:a2: d0:dc:74:87 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrydvTgd/4JUpSBtFhtT+pqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhlNjM4NDMyNTg2YWU2MDJmZjBkYWI2N2QwOWIxOTUxNTI0 ZTgyMDUwHhcNMjUxMjA2MDcwMTEzWhcNMjUxMjA3MDcwMTEzWjAzMTEwLwYDVQQD Eyg2ZWQxY2I0NjIxZmFjM2NkOWYxYTExMzlmYzJiNTA2YzlhNzE2YjRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr+guec3ukhkyRadqslwtM+f5NU7v U8mbeTcIFpVHW39fHGEWtm0Exb6jnhXQziweVwduzilZCEyTcSkRpvqQk6HeW2JV b43NktMcC48wTjEKlj30++bXjzwt93r85fVpaBpLdFW24R9vMjWBZnGy6ozSBzsa G7QPooxHW8xZo+DNNA/JYXm2r5m5tG336rJRoe60yXtkzsQXcFG3FhMyM6as6XJr RRs9DzO0v7yWQqA6pOxVpaoR/cILM/5FsJB+inPfnXhAT+rkKJyRW618S8ywxBBL 0Juo3uAZUyMAYsFYHhN1xeP6OwWyW9fsyC9KRfrhwmjcs2ES2eCoe4whhwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFG7Ry0Yh+sPNnxoROfwrUGyacWtNMB8GA1UdIwQY MBaAFI5jhDJYauYC/w2rZ9CbGVFSToIFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvam1PRU1saHE1Z0xfRGF0bjBKc1pVVkpPZ2dVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MC8wM2M5OWQtOTNjNS00NTA4LWI1NGEt ZWQzOGM0N2ZiYWM2LzEvam1PRU1saHE1Z0xfRGF0bjBKc1pVVkpPZ2dVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81MC8wM2M5OWQtOTNjNS00NTA4LWI1NGEtZWQzOGM0N2ZiYWM2 LzEvam1PRU1saHE1Z0xfRGF0bjBKc1pVVkpPZ2dVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFSleafae hJ4InXtIpCWMvBIqwW9QkeIRfevr0dkJGQRGncXB9uNFCgbwWj/qtSFwAB8zfpO3 mabd0qkU5is00a/v7OK16nHJA3o/A0Z4XuWr4Y0F5zgs7dLfF/dI4PwPb2LEt1fu 7k2bNpPn16+Euyo+RaR9IQjY+G0t3MRIZ1ECr2dE8vw8PIM7Sg6xrITM8CYlldfD v8O3dGIkRhlqqpTdj6uIWr8F0oudC++tWJsW+PqLfD6tHKghBi5DTyHtS5+wQca8 c/oY3GqGFlztqB0Qrw1FM7Ec1IeK3hUFPEA30EB94RLH3ys0YJNpF2KEAVqmgLI2 e8uX80Si0Nx0hw== -----END CERTIFICATE-----Generated at Sat Dec 6 17:35:22 2025 by rpki-client