This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/02a8d6-9158-4aeb-a750-78753a104226/1/jHFLbLK61OdjmoqicQKPWqG8asI.mft File: jHFLbLK61OdjmoqicQKPWqG8asI.mft (raw, json) Hash identifier: Tl0/188HL0OY3Z8JV5zsnPJHXw2W+sDksPAYRJWR8H0= Subject key identifier: 35:DC:EE:B5:54:FE:3D:44:7F:0A:9E:9F:FD:27:B9:13:E6:B6:A1:7C Authority key identifier: 8C:71:4B:6C:B2:BA:D4:E7:63:9A:8A:A2:71:02:8F:5A:A1:BC:6A:C2 Certificate issuer: /CN=8c714b6cb2bad4e7639a8aa271028f5aa1bc6ac2 Certificate serial: 019AF1D237918B86D0252BED176F66DEE0F3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jHFLbLK61OdjmoqicQKPWqG8asI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/02a8d6-9158-4aeb-a750-78753a104226/1/jHFLbLK61OdjmoqicQKPWqG8asI.mft Manifest number: 0713 Signing time: Sat 06 Dec 2025 04:01:17 +0000 Manifest this update: Sat 06 Dec 2025 04:01:17 +0000 Manifest next update: Sun 07 Dec 2025 04:01:17 +0000 Files and hashes: 1: 4SJUH7W4ejICjEKktk38NQNcB4Q.roa (hash: 2qwbbCMLxypAlAiGN2fpQYPHWTBbWd8fpkq/6FE+imI=) 2: jHFLbLK61OdjmoqicQKPWqG8asI.crl (hash: 7YYALPcd+AGpMC0KyIgGpirO47T0AVWOgjaVST13dxI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/02a8d6-9158-4aeb-a750-78753a104226/1/jHFLbLK61OdjmoqicQKPWqG8asI.crl rsync://rpki.ripe.net/repository/DEFAULT/8a/02a8d6-9158-4aeb-a750-78753a104226/1/jHFLbLK61OdjmoqicQKPWqG8asI.mft rsync://rpki.ripe.net/repository/DEFAULT/jHFLbLK61OdjmoqicQKPWqG8asI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 04:01:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:d2:37:91:8b:86:d0:25:2b:ed:17:6f:66:de:e0:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8c714b6cb2bad4e7639a8aa271028f5aa1bc6ac2 Validity Not Before: Dec 6 04:01:17 2025 GMT Not After : Dec 7 04:01:17 2025 GMT Subject: CN=35dceeb554fe3d447f0a9e9ffd27b913e6b6a17c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:cc:ea:09:3e:4c:10:63:1f:00:e7:e0:b1:33: 7d:ed:ec:bf:47:27:f4:47:f8:d6:0f:f8:b7:db:9e: 15:f5:55:c9:86:37:1d:c6:ee:a9:6e:a4:0a:0c:f4: b0:cf:d6:3b:49:dc:85:31:61:a3:2b:a3:ab:39:c6: 2b:a5:66:79:1a:2b:ef:4a:f5:f8:e6:0c:bd:48:50: 71:9c:98:29:39:ee:d5:91:d8:34:43:7c:5c:27:13: 09:74:9b:1f:39:b9:1b:8d:90:59:1f:79:70:4a:4a: b5:62:cb:e5:47:4b:a4:09:ed:9c:7e:27:b3:41:9f: 2a:6e:39:04:d4:07:37:08:0b:ca:a8:90:87:a9:3f: 06:a3:5b:7d:fc:4a:36:85:e9:5d:b1:fc:42:91:0e: a2:5f:c6:84:4b:14:9e:d2:d3:18:93:cb:d8:1c:11: 59:63:cb:89:5d:75:1d:9d:ff:d2:7f:bd:a8:78:0e: 60:a8:95:f5:a8:2a:c2:0d:c8:ec:66:9f:93:41:39: af:fa:67:b1:aa:ef:39:ea:39:e5:27:96:fa:b2:9c: 8e:93:e6:91:f2:52:99:d4:ed:47:c2:58:88:a3:29: f1:96:17:01:64:64:c7:e6:5f:eb:50:7e:68:34:31: 25:21:9e:1e:c5:f5:d7:1b:4f:c2:5d:25:32:16:64: 9f:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:DC:EE:B5:54:FE:3D:44:7F:0A:9E:9F:FD:27:B9:13:E6:B6:A1:7C X509v3 Authority Key Identifier: keyid:8C:71:4B:6C:B2:BA:D4:E7:63:9A:8A:A2:71:02:8F:5A:A1:BC:6A:C2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jHFLbLK61OdjmoqicQKPWqG8asI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/02a8d6-9158-4aeb-a750-78753a104226/1/jHFLbLK61OdjmoqicQKPWqG8asI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/02a8d6-9158-4aeb-a750-78753a104226/1/jHFLbLK61OdjmoqicQKPWqG8asI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 01:d5:37:2f:09:e9:a2:88:bf:86:b4:2e:6c:29:db:58:69:64: 6d:d4:61:22:f3:69:28:f2:4e:ab:69:73:b5:54:ad:d0:4c:37: aa:42:78:83:3a:74:82:fb:de:11:31:1f:59:19:02:ed:a4:4c: ed:3a:8e:1b:e1:d1:24:de:f0:40:f7:d8:9b:48:7a:ee:fd:70: c3:2b:17:ee:74:aa:11:5d:b4:22:da:0f:44:ac:3c:b4:89:34: 03:99:1b:f8:26:57:47:df:92:43:06:76:4a:13:bf:3c:5e:7f: 92:90:9a:31:18:ed:93:0a:c2:ba:71:5b:ba:fc:2b:8e:60:e3: d2:18:d0:3b:b4:1e:2a:30:93:d3:43:65:44:ed:43:b0:40:69: d2:db:78:ce:38:b0:84:c4:00:f7:f0:62:9a:a2:9d:d7:c4:6d: a6:a2:2c:a5:f7:54:7e:cc:e6:6f:1c:1d:04:92:59:0b:6b:0a: 5c:05:8a:fc:09:af:e7:b5:ab:81:ed:98:df:fc:30:4c:a8:ba: 2c:30:94:55:16:2f:95:d3:a6:a1:b2:2f:8e:3d:dd:62:41:e9: 32:db:c6:78:18:0d:70:c1:a8:36:e2:2f:11:a4:ab:7a:31:22: 6c:f7:6b:fa:16:41:e2:c5:0d:ec:8f:4c:7a:d2:88:c8:4b:e4: fc:b0:76:95 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrx0jeRi4bQJSvtF29m3uDzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhjNzE0YjZjYjJiYWQ0ZTc2MzlhOGFhMjcxMDI4ZjVhYTFi YzZhYzIwHhcNMjUxMjA2MDQwMTE3WhcNMjUxMjA3MDQwMTE3WjAzMTEwLwYDVQQD EygzNWRjZWViNTU0ZmUzZDQ0N2YwYTllOWZmZDI3YjkxM2U2YjZhMTdjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2MzqCT5MEGMfAOfgsTN97ey/Ryf0 R/jWD/i3254V9VXJhjcdxu6pbqQKDPSwz9Y7SdyFMWGjK6OrOcYrpWZ5GivvSvX4 5gy9SFBxnJgpOe7Vkdg0Q3xcJxMJdJsfObkbjZBZH3lwSkq1YsvlR0ukCe2cfiez QZ8qbjkE1Ac3CAvKqJCHqT8Go1t9/Eo2heldsfxCkQ6iX8aESxSe0tMYk8vYHBFZ Y8uJXXUdnf/Sf72oeA5gqJX1qCrCDcjsZp+TQTmv+mexqu856jnlJ5b6spyOk+aR 8lKZ1O1HwliIoynxlhcBZGTH5l/rUH5oNDElIZ4exfXXG0/CXSUyFmSffwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDXc7rVU/j1Efwqen/0nuRPmtqF8MB8GA1UdIwQY MBaAFIxxS2yyutTnY5qKonECj1qhvGrCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvakhGTGJMSzYxT2RqbW9xaWNRS1BXcUc4YXNJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS8wMmE4ZDYtOTE1OC00YWViLWE3NTAt Nzg3NTNhMTA0MjI2LzEvakhGTGJMSzYxT2RqbW9xaWNRS1BXcUc4YXNJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84YS8wMmE4ZDYtOTE1OC00YWViLWE3NTAtNzg3NTNhMTA0MjI2 LzEvakhGTGJMSzYxT2RqbW9xaWNRS1BXcUc4YXNJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAdU3Lwnp ooi/hrQubCnbWGlkbdRhIvNpKPJOq2lztVSt0Ew3qkJ4gzp0gvveETEfWRkC7aRM 7TqOG+HRJN7wQPfYm0h67v1wwysX7nSqEV20ItoPRKw8tIk0A5kb+CZXR9+SQwZ2 ShO/PF5/kpCaMRjtkwrCunFbuvwrjmDj0hjQO7QeKjCT00NlRO1DsEBp0tt4zjiw hMQA9/BimqKd18RtpqIspfdUfszmbxwdBJJZC2sKXAWK/Amv57Wrge2Y3/wwTKi6 LDCUVRYvldOmobIvjj3dYkHpMtvGeBgNcMGoNuIvEaSrejEibPdr+hZB4sUN7I9M etKIyEvk/LB2lQ== -----END CERTIFICATE-----Generated at Sat Dec 6 12:26:21 2025 by rpki-client