This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/1a4b21-fda3-4c8a-aee0-7253da3510ee/1/jTUmuzG54wxJBF9DaMYC7pi-wBo.mft File: jTUmuzG54wxJBF9DaMYC7pi-wBo.mft (raw, json) Hash identifier: isdKIhrMqFo47oqrd0zWzzwPPNuaw4ezvUNOc3/drMo= Subject key identifier: 87:94:D2:AA:02:95:92:EB:E6:E8:8D:5C:D6:6C:79:30:BE:F9:3F:05 Authority key identifier: 8D:35:26:BB:31:B9:E3:0C:49:04:5F:43:68:C6:02:EE:98:BE:C0:1A Certificate issuer: /CN=8d3526bb31b9e30c49045f4368c602ee98bec01a Certificate serial: 019AF352BA08386873D64451D6D7A2A3371F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jTUmuzG54wxJBF9DaMYC7pi-wBo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/1a4b21-fda3-4c8a-aee0-7253da3510ee/1/jTUmuzG54wxJBF9DaMYC7pi-wBo.mft Manifest number: 04B0 Signing time: Sat 06 Dec 2025 11:01:16 +0000 Manifest this update: Sat 06 Dec 2025 11:01:16 +0000 Manifest next update: Sun 07 Dec 2025 11:01:16 +0000 Files and hashes: 1: e6xoJBVIfdJmiKe2nJgRQGtQ5ww.roa (hash: JfuVzsuhmGpnCucojoUfItSJOnwkZRw4nitsAmYaRLg=) 2: jTUmuzG54wxJBF9DaMYC7pi-wBo.crl (hash: PNho/wNlIUPcikRywz0kEEriS1ujciUzTBl+XdrhRDg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/1a4b21-fda3-4c8a-aee0-7253da3510ee/1/jTUmuzG54wxJBF9DaMYC7pi-wBo.crl rsync://rpki.ripe.net/repository/DEFAULT/6a/1a4b21-fda3-4c8a-aee0-7253da3510ee/1/jTUmuzG54wxJBF9DaMYC7pi-wBo.mft rsync://rpki.ripe.net/repository/DEFAULT/jTUmuzG54wxJBF9DaMYC7pi-wBo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 11:01:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:52:ba:08:38:68:73:d6:44:51:d6:d7:a2:a3:37:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8d3526bb31b9e30c49045f4368c602ee98bec01a Validity Not Before: Dec 6 11:01:16 2025 GMT Not After : Dec 7 11:01:16 2025 GMT Subject: CN=8794d2aa029592ebe6e88d5cd66c7930bef93f05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:c3:8c:df:e5:d8:e3:3a:30:07:7d:a0:4d:10: cf:e8:a7:e3:fd:c0:91:97:dc:ab:3a:d4:47:36:5d: 5d:44:82:14:a8:64:b2:f0:07:9c:79:89:50:3d:4e: 04:33:29:ce:cd:cf:9f:5f:73:48:f2:c4:d0:3a:54: a5:f4:40:8b:ed:b3:67:5c:95:2b:78:42:ae:62:dd: 39:e1:75:9d:5e:93:a0:70:4d:0a:4a:96:d4:55:a5: 21:2c:c5:bc:28:af:1c:24:c9:5f:05:53:0e:5f:7e: 8c:65:d6:57:68:a7:20:d6:c6:49:23:4b:8d:51:5c: bd:23:c4:c0:cf:f4:55:33:ba:1c:e0:2f:36:60:b1: 05:1d:2e:ea:20:46:c2:9b:3b:30:22:ef:02:cc:43: 74:5b:57:0b:af:8a:3b:95:4a:bd:2f:ae:cb:b9:c1: af:5f:38:41:2e:89:79:b3:57:b7:a7:f4:18:93:71: fd:af:6c:65:79:cc:a2:37:88:c3:0c:18:3b:63:27: ac:7e:23:87:12:3f:f0:5e:2a:63:41:cd:da:85:61: 48:ab:b1:ed:7e:e6:54:20:1d:c6:6e:8a:01:ff:9d: 81:fe:e5:dd:8e:3e:68:c2:ba:57:7e:6e:12:10:6c: da:b3:f3:15:8e:85:28:af:63:5e:8e:52:da:ea:f9: 63:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:94:D2:AA:02:95:92:EB:E6:E8:8D:5C:D6:6C:79:30:BE:F9:3F:05 X509v3 Authority Key Identifier: keyid:8D:35:26:BB:31:B9:E3:0C:49:04:5F:43:68:C6:02:EE:98:BE:C0:1A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jTUmuzG54wxJBF9DaMYC7pi-wBo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/1a4b21-fda3-4c8a-aee0-7253da3510ee/1/jTUmuzG54wxJBF9DaMYC7pi-wBo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/1a4b21-fda3-4c8a-aee0-7253da3510ee/1/jTUmuzG54wxJBF9DaMYC7pi-wBo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b6:48:88:e0:fc:51:52:91:f6:70:50:c9:74:7e:30:27:b4:db: 66:62:4e:b0:63:ef:df:02:ee:bc:a3:a5:ce:77:38:22:fa:60: d1:28:d8:a8:c1:70:f6:ba:73:c2:4b:7f:0a:71:a3:5f:09:6b: 7f:69:09:ab:97:cb:b3:21:6c:80:76:48:d8:41:da:f5:ea:0d: 55:c4:9a:17:b9:47:1a:8b:e8:47:6d:36:45:5d:1f:85:da:13: 0a:df:53:3d:a8:6d:bc:91:1c:12:56:78:36:71:fc:14:04:c9: 7d:07:15:4f:90:02:7c:70:e8:76:0b:ba:3a:f4:0d:01:98:e6: 50:46:47:c7:84:39:23:a6:a6:81:55:a4:e7:06:de:01:7d:52: 56:4b:8b:94:33:0d:90:ac:26:dc:03:88:1f:42:57:5c:2e:57: e4:33:8c:2e:87:76:cf:e1:75:24:14:aa:2a:bd:e5:a0:bc:f4: 1f:38:04:e6:03:af:85:7a:d0:ef:e0:02:07:af:c5:e9:cb:d0: 00:90:a8:6a:b1:66:9e:2a:08:97:75:e3:fd:2a:24:ba:af:99: c8:ee:2d:2b:ea:df:21:ed:10:ae:0e:70:71:3c:4b:09:c2:50: 72:d9:5d:cc:5b:49:4b:29:c6:cf:c7:d6:4f:29:91:3b:33:61: 5f:91:e3:d7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzUroIOGhz1kRR1teiozcfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhkMzUyNmJiMzFiOWUzMGM0OTA0NWY0MzY4YzYwMmVlOThi ZWMwMWEwHhcNMjUxMjA2MTEwMTE2WhcNMjUxMjA3MTEwMTE2WjAzMTEwLwYDVQQD Eyg4Nzk0ZDJhYTAyOTU5MmViZTZlODhkNWNkNjZjNzkzMGJlZjkzZjA1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6sOM3+XY4zowB32gTRDP6Kfj/cCR l9yrOtRHNl1dRIIUqGSy8AeceYlQPU4EMynOzc+fX3NI8sTQOlSl9ECL7bNnXJUr eEKuYt054XWdXpOgcE0KSpbUVaUhLMW8KK8cJMlfBVMOX36MZdZXaKcg1sZJI0uN UVy9I8TAz/RVM7oc4C82YLEFHS7qIEbCmzswIu8CzEN0W1cLr4o7lUq9L67LucGv XzhBLol5s1e3p/QYk3H9r2xlecyiN4jDDBg7YyesfiOHEj/wXipjQc3ahWFIq7Ht fuZUIB3GbooB/52B/uXdjj5owrpXfm4SEGzas/MVjoUor2NejlLa6vljPwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIeU0qoClZLr5uiNXNZseTC++T8FMB8GA1UdIwQY MBaAFI01JrsxueMMSQRfQ2jGAu6YvsAaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvalRVbXV6RzU0d3hKQkY5RGFNWUM3cGktd0JvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82YS8xYTRiMjEtZmRhMy00YzhhLWFlZTAt NzI1M2RhMzUxMGVlLzEvalRVbXV6RzU0d3hKQkY5RGFNWUM3cGktd0JvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82YS8xYTRiMjEtZmRhMy00YzhhLWFlZTAtNzI1M2RhMzUxMGVl LzEvalRVbXV6RzU0d3hKQkY5RGFNWUM3cGktd0JvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAtkiI4PxR UpH2cFDJdH4wJ7TbZmJOsGPv3wLuvKOlznc4Ivpg0SjYqMFw9rpzwkt/CnGjXwlr f2kJq5fLsyFsgHZI2EHa9eoNVcSaF7lHGovoR202RV0fhdoTCt9TPahtvJEcElZ4 NnH8FATJfQcVT5ACfHDodgu6OvQNAZjmUEZHx4Q5I6amgVWk5wbeAX1SVkuLlDMN kKwm3AOIH0JXXC5X5DOMLod2z+F1JBSqKr3loLz0HzgE5gOvhXrQ7+ACB6/F6cvQ AJCoarFmnioIl3Xj/Sokuq+ZyO4tK+rfIe0Qrg5wcTxLCcJQctldzFtJSynGz8fW TymROzNhX5Hj1w== -----END CERTIFICATE-----Generated at Sat Dec 6 20:02:19 2025 by rpki-client