This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/e14e2a-a0ea-43d9-b05f-f363c5138702/1/jZwH5-jehYsuaBPQD5s5kt9Tgn8.mft File: jZwH5-jehYsuaBPQD5s5kt9Tgn8.mft (raw, json) Hash identifier: lrFOSy5cWzP5zcc4Y3SH/Khak+sv1b8zPzyr4OXbiVs= Subject key identifier: B3:F8:D6:9D:60:DB:1C:DE:A4:0C:2A:08:AD:E2:88:88:A2:23:84:B3 Authority key identifier: 8D:9C:07:E7:E8:DE:85:8B:2E:68:13:D0:0F:9B:39:92:DF:53:82:7F Certificate issuer: /CN=8d9c07e7e8de858b2e6813d00f9b3992df53827f Certificate serial: 019AF1D1FFFFE9DCA1324726AE9DBDDE1B2C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jZwH5-jehYsuaBPQD5s5kt9Tgn8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/e14e2a-a0ea-43d9-b05f-f363c5138702/1/jZwH5-jehYsuaBPQD5s5kt9Tgn8.mft Manifest number: 0598 Signing time: Sat 06 Dec 2025 04:01:02 +0000 Manifest this update: Sat 06 Dec 2025 04:01:02 +0000 Manifest next update: Sun 07 Dec 2025 04:01:02 +0000 Files and hashes: 1: jZwH5-jehYsuaBPQD5s5kt9Tgn8.crl (hash: 5xp0pSrrW84mzX3qGQepu0+LMM4MJ8g1tORORPgC4Ys=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/e14e2a-a0ea-43d9-b05f-f363c5138702/1/jZwH5-jehYsuaBPQD5s5kt9Tgn8.crl rsync://rpki.ripe.net/repository/DEFAULT/7b/e14e2a-a0ea-43d9-b05f-f363c5138702/1/jZwH5-jehYsuaBPQD5s5kt9Tgn8.mft rsync://rpki.ripe.net/repository/DEFAULT/jZwH5-jehYsuaBPQD5s5kt9Tgn8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:d1:ff:ff:e9:dc:a1:32:47:26:ae:9d:bd:de:1b:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8d9c07e7e8de858b2e6813d00f9b3992df53827f Validity Not Before: Dec 6 04:01:02 2025 GMT Not After : Dec 7 04:01:02 2025 GMT Subject: CN=b3f8d69d60db1cdea40c2a08ade28888a22384b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:00:20:2c:52:7a:94:39:85:48:2f:a7:9b:dd: b7:a2:a4:f3:64:66:04:7c:06:e5:19:83:2b:1d:af: 5e:8a:3c:a5:fa:30:01:58:46:cc:84:ae:a3:d0:08: 41:40:42:26:b4:dc:a7:c3:4f:29:d9:90:51:a1:70: d9:9c:5c:d0:d1:4d:8e:f0:11:7e:26:fb:72:13:84: 20:db:7f:5f:82:7e:e4:b5:f3:92:32:80:7b:e2:f0: 22:04:ac:43:62:d1:da:b6:50:c2:f6:c1:c9:65:1c: 6d:57:52:b1:dc:ce:cd:73:2a:99:95:79:ca:76:89: ff:04:28:29:0b:4e:0e:65:82:3a:48:e3:c4:d9:7d: 45:f3:d2:af:95:1e:1a:9a:17:58:c3:66:b8:26:70: e0:02:74:df:e2:ff:d0:a3:f7:b3:8b:ac:86:d7:46: 0f:11:66:1a:ec:50:8e:f2:47:e5:84:06:85:ff:44: ec:66:36:eb:48:21:18:f2:3a:d3:94:5d:e9:db:38: 2f:1d:e9:69:60:41:93:47:b6:9f:42:dc:e8:fd:6c: 31:a2:a0:ba:e4:7d:70:0f:2a:26:51:4c:6d:69:ab: 04:79:de:f9:ba:ca:db:64:c5:36:d5:ed:4c:25:0f: 81:19:66:15:73:c6:b2:44:9c:3c:f6:2c:2c:64:1b: 4d:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:F8:D6:9D:60:DB:1C:DE:A4:0C:2A:08:AD:E2:88:88:A2:23:84:B3 X509v3 Authority Key Identifier: keyid:8D:9C:07:E7:E8:DE:85:8B:2E:68:13:D0:0F:9B:39:92:DF:53:82:7F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jZwH5-jehYsuaBPQD5s5kt9Tgn8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/e14e2a-a0ea-43d9-b05f-f363c5138702/1/jZwH5-jehYsuaBPQD5s5kt9Tgn8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/e14e2a-a0ea-43d9-b05f-f363c5138702/1/jZwH5-jehYsuaBPQD5s5kt9Tgn8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 03:29:65:6b:b9:05:12:f7:df:e4:43:53:c5:d5:0b:6e:31:87: 44:7f:7a:8f:56:ce:cc:6f:db:8c:88:6f:5e:3e:35:e6:80:e5: 88:b0:21:b5:ab:06:61:6e:5b:1f:35:6b:94:bc:ec:a3:3f:37: 11:dc:03:bc:6d:c3:ee:67:df:e2:9b:64:cb:58:0d:86:e4:25: ce:5f:b9:75:3e:f8:5f:d4:d6:90:f1:0c:e2:43:09:5e:1e:d9: f9:b0:6c:84:ff:69:b0:6b:f3:d7:4a:a9:69:da:8b:dc:d6:24: d3:81:5c:9e:a5:ab:1e:e6:99:a3:c4:9c:cb:e7:3e:54:8e:4c: c5:d0:b9:78:db:99:6c:0f:69:fd:47:0e:8a:34:9a:6f:53:24: 99:0a:a8:fb:0f:43:12:25:70:e1:53:f6:15:de:6b:cd:e8:c5: 65:3a:40:9b:5c:45:aa:e0:e8:7e:10:20:7b:0f:06:de:62:6f: 6a:dc:6e:16:57:31:67:74:21:9f:54:61:d8:dd:95:ae:e9:2f: 89:75:39:7a:5d:ee:5b:78:81:2c:b5:06:69:79:5f:ee:0e:bc: 30:7d:08:6f:0b:49:be:27:43:64:36:ff:48:7d:18:02:57:6b: 52:6c:e1:c0:ba:df:47:33:cf:b9:48:18:95:e8:04:e0:92:38: 37:08:50:d0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrx0f//6dyhMkcmrp293hssMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhkOWMwN2U3ZThkZTg1OGIyZTY4MTNkMDBmOWIzOTkyZGY1 MzgyN2YwHhcNMjUxMjA2MDQwMTAyWhcNMjUxMjA3MDQwMTAyWjAzMTEwLwYDVQQD EyhiM2Y4ZDY5ZDYwZGIxY2RlYTQwYzJhMDhhZGUyODg4OGEyMjM4NGIzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2gAgLFJ6lDmFSC+nm923oqTzZGYE fAblGYMrHa9eijyl+jABWEbMhK6j0AhBQEImtNynw08p2ZBRoXDZnFzQ0U2O8BF+ JvtyE4Qg239fgn7ktfOSMoB74vAiBKxDYtHatlDC9sHJZRxtV1Kx3M7NcyqZlXnK don/BCgpC04OZYI6SOPE2X1F89KvlR4amhdYw2a4JnDgAnTf4v/Qo/ezi6yG10YP EWYa7FCO8kflhAaF/0TsZjbrSCEY8jrTlF3p2zgvHelpYEGTR7afQtzo/WwxoqC6 5H1wDyomUUxtaasEed75usrbZMU21e1MJQ+BGWYVc8ayRJw89iwsZBtNHwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLP41p1g2xzepAwqCK3iiIiiI4SzMB8GA1UdIwQY MBaAFI2cB+fo3oWLLmgT0A+bOZLfU4J/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvalp3SDUtamVoWXN1YUJQUUQ1czVrdDlUZ244LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yi9lMTRlMmEtYTBlYS00M2Q5LWIwNWYt ZjM2M2M1MTM4NzAyLzEvalp3SDUtamVoWXN1YUJQUUQ1czVrdDlUZ244Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Yi9lMTRlMmEtYTBlYS00M2Q5LWIwNWYtZjM2M2M1MTM4NzAy LzEvalp3SDUtamVoWXN1YUJQUUQ1czVrdDlUZ244LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAylla7kF Evff5ENTxdULbjGHRH96j1bOzG/bjIhvXj415oDliLAhtasGYW5bHzVrlLzsoz83 EdwDvG3D7mff4ptky1gNhuQlzl+5dT74X9TWkPEM4kMJXh7Z+bBshP9psGvz10qp adqL3NYk04FcnqWrHuaZo8Scy+c+VI5MxdC5eNuZbA9p/UcOijSab1MkmQqo+w9D EiVw4VP2Fd5rzejFZTpAm1xFquDofhAgew8G3mJvatxuFlcxZ3Qhn1Rh2N2Vrukv iXU5el3uW3iBLLUGaXlf7g68MH0IbwtJvidDZDb/SH0YAldrUmzhwLrfRzPPuUgY legE4JI4NwhQ0A== -----END CERTIFICATE-----Generated at Sat Dec 6 07:58:50 2025 by rpki-client