This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/95df81-fc9e-4c5f-bb43-ffb028f0a02f/1/JAy7mUeWHigo2EdLysoem5FVZWA.mft File: JAy7mUeWHigo2EdLysoem5FVZWA.mft (raw, json) Hash identifier: YpKTkcCo6BgsHfSizWjn/kkj7HZN8XfZpYMKZRjPbQ4= Subject key identifier: 6C:C5:F0:06:6B:88:17:4B:35:48:D1:9D:28:6F:F0:AF:7A:EA:87:BB Authority key identifier: 24:0C:BB:99:47:96:1E:28:28:D8:47:4B:CA:CA:1E:9B:91:55:65:60 Certificate issuer: /CN=240cbb9947961e2828d8474bcaca1e9b91556560 Certificate serial: 019AF23F686E492B5F4691D866D2D0683580 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JAy7mUeWHigo2EdLysoem5FVZWA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/95df81-fc9e-4c5f-bb43-ffb028f0a02f/1/JAy7mUeWHigo2EdLysoem5FVZWA.mft Manifest number: 149D Signing time: Sat 06 Dec 2025 06:00:32 +0000 Manifest this update: Sat 06 Dec 2025 06:00:32 +0000 Manifest next update: Sun 07 Dec 2025 06:00:32 +0000 Files and hashes: 1: JAy7mUeWHigo2EdLysoem5FVZWA.crl (hash: 8U/LJr09m8O3A5EKm879QT0lxWN/v+Lz4MQBzAgCIfc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/95df81-fc9e-4c5f-bb43-ffb028f0a02f/1/JAy7mUeWHigo2EdLysoem5FVZWA.crl rsync://rpki.ripe.net/repository/DEFAULT/86/95df81-fc9e-4c5f-bb43-ffb028f0a02f/1/JAy7mUeWHigo2EdLysoem5FVZWA.mft rsync://rpki.ripe.net/repository/DEFAULT/JAy7mUeWHigo2EdLysoem5FVZWA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:3f:68:6e:49:2b:5f:46:91:d8:66:d2:d0:68:35:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=240cbb9947961e2828d8474bcaca1e9b91556560 Validity Not Before: Dec 6 06:00:32 2025 GMT Not After : Dec 7 06:00:32 2025 GMT Subject: CN=6cc5f0066b88174b3548d19d286ff0af7aea87bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:a4:df:20:7b:48:81:c7:9e:97:c6:19:c4:0f: 64:c4:9f:ee:00:85:5b:de:d7:6d:06:b7:a1:32:90: a9:eb:a8:d4:48:32:ef:bb:aa:da:14:39:8b:6f:17: b9:56:56:35:f3:13:60:40:53:16:84:7e:cc:d6:58: 36:0f:30:80:5b:ee:1c:c7:b6:82:20:31:3b:ce:54: 63:17:d5:f6:2c:ab:8e:e0:ea:93:73:fd:9e:97:44: b1:9b:94:42:b4:ba:67:d7:f2:1c:3d:6b:71:1f:17: 66:ff:24:6f:93:cc:bf:db:49:8b:f8:8a:fe:1f:77: 8a:6e:2a:0f:f3:03:fd:7b:d0:97:0b:8c:b6:0c:05: ff:fa:07:c4:b8:1c:0b:70:e9:c2:9d:6d:4d:3f:95: 53:b0:7a:fe:76:84:ba:3e:8c:fd:98:9a:dc:6e:91: 3e:f3:e2:c2:e3:e6:26:fd:15:7a:a4:81:22:77:3b: ca:46:4a:22:50:1d:17:7f:68:7b:86:d5:2c:7b:cd: b8:da:9b:d2:10:f7:91:52:b3:99:d3:17:6c:9d:93: 93:8f:55:a8:20:05:12:5f:ee:c8:15:b9:78:a6:36: 20:88:28:80:6d:e3:4c:a4:54:f8:b2:f8:da:5c:63: ea:62:24:df:50:16:7b:6d:0f:bf:6f:65:1a:99:5c: fe:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:C5:F0:06:6B:88:17:4B:35:48:D1:9D:28:6F:F0:AF:7A:EA:87:BB X509v3 Authority Key Identifier: keyid:24:0C:BB:99:47:96:1E:28:28:D8:47:4B:CA:CA:1E:9B:91:55:65:60 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JAy7mUeWHigo2EdLysoem5FVZWA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/95df81-fc9e-4c5f-bb43-ffb028f0a02f/1/JAy7mUeWHigo2EdLysoem5FVZWA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/86/95df81-fc9e-4c5f-bb43-ffb028f0a02f/1/JAy7mUeWHigo2EdLysoem5FVZWA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2b:7d:de:d6:72:6f:77:1c:a9:8c:40:20:d3:9b:5f:92:26:2a: 6a:3a:3e:7a:a2:d2:c8:94:ab:07:04:2a:c9:45:23:6f:46:2c: 54:bd:f6:1c:91:c8:46:e5:75:bc:d6:75:7d:94:71:3c:a1:b9: 9c:3f:c1:8c:cb:a5:84:2b:f9:37:23:2f:24:6c:c8:df:07:b4: 26:61:56:3b:94:60:ea:f9:f0:7b:bc:81:da:c5:72:71:07:3e: c9:ad:5e:86:07:61:a9:69:3e:47:90:83:e3:51:ca:c9:17:86: b0:d3:b0:9c:98:a9:07:f4:71:b3:6b:c9:92:26:a4:4b:bc:39: 9b:59:61:cf:ff:6c:c3:54:74:d6:30:ce:6a:73:38:92:9e:60: 17:67:92:ee:08:04:9a:28:bb:75:c1:59:8b:06:d2:57:59:ea: ff:e7:0d:31:f0:fb:08:a9:89:70:ed:3a:46:c9:75:02:02:11: 8d:f3:5e:6c:30:48:24:b0:b2:76:73:9a:24:fb:85:01:fd:74: 00:ac:ff:1a:77:68:ff:c5:33:f1:1c:4a:8b:43:c9:08:83:e7: 21:93:09:19:ac:32:1c:d9:49:e7:49:18:4c:5a:a3:6e:1e:dd: 88:0d:35:b4:09:37:5d:9e:a6:37:2b:36:a6:59:8d:9f:b1:26: bf:39:e6:5c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryP2huSStfRpHYZtLQaDWAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI0MGNiYjk5NDc5NjFlMjgyOGQ4NDc0YmNhY2ExZTliOTE1 NTY1NjAwHhcNMjUxMjA2MDYwMDMyWhcNMjUxMjA3MDYwMDMyWjAzMTEwLwYDVQQD Eyg2Y2M1ZjAwNjZiODgxNzRiMzU0OGQxOWQyODZmZjBhZjdhZWE4N2JiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApqTfIHtIgceel8YZxA9kxJ/uAIVb 3tdtBrehMpCp66jUSDLvu6raFDmLbxe5VlY18xNgQFMWhH7M1lg2DzCAW+4cx7aC IDE7zlRjF9X2LKuO4OqTc/2el0Sxm5RCtLpn1/IcPWtxHxdm/yRvk8y/20mL+Ir+ H3eKbioP8wP9e9CXC4y2DAX/+gfEuBwLcOnCnW1NP5VTsHr+doS6Poz9mJrcbpE+ 8+LC4+Ym/RV6pIEidzvKRkoiUB0Xf2h7htUse8242pvSEPeRUrOZ0xdsnZOTj1Wo IAUSX+7IFbl4pjYgiCiAbeNMpFT4svjaXGPqYiTfUBZ7bQ+/b2UamVz+NQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGzF8AZriBdLNUjRnShv8K966oe7MB8GA1UdIwQY MBaAFCQMu5lHlh4oKNhHS8rKHpuRVWVgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSkF5N21VZVdIaWdvMkVkTHlzb2VtNUZWWldBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni85NWRmODEtZmM5ZS00YzVmLWJiNDMt ZmZiMDI4ZjBhMDJmLzEvSkF5N21VZVdIaWdvMkVkTHlzb2VtNUZWWldBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Ni85NWRmODEtZmM5ZS00YzVmLWJiNDMtZmZiMDI4ZjBhMDJm LzEvSkF5N21VZVdIaWdvMkVkTHlzb2VtNUZWWldBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAK33e1nJv dxypjEAg05tfkiYqajo+eqLSyJSrBwQqyUUjb0YsVL32HJHIRuV1vNZ1fZRxPKG5 nD/BjMulhCv5NyMvJGzI3we0JmFWO5Rg6vnwe7yB2sVycQc+ya1ehgdhqWk+R5CD 41HKyReGsNOwnJipB/Rxs2vJkiakS7w5m1lhz/9sw1R01jDOanM4kp5gF2eS7ggE mii7dcFZiwbSV1nq/+cNMfD7CKmJcO06Rsl1AgIRjfNebDBIJLCydnOaJPuFAf10 AKz/Gndo/8Uz8RxKi0PJCIPnIZMJGawyHNlJ50kYTFqjbh7diA01tAk3XZ6mNys2 plmNn7EmvznmXA== -----END CERTIFICATE-----Generated at Sat Dec 6 08:22:06 2025 by rpki-client