This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/89fe5b-4fda-4d04-99b4-f49764ff48ea/1/JLyY3e79tWGqaeynNJBg2EBZ4ZI.mft File: JLyY3e79tWGqaeynNJBg2EBZ4ZI.mft (raw, json) Hash identifier: 61701rafWMqvcesPE7QsvFo/PZkYeqyIpO4Hi+YDDe0= Subject key identifier: 93:93:93:65:5F:C8:60:0F:91:13:BE:84:AC:5C:6B:1D:1D:DE:D8:E2 Authority key identifier: 24:BC:98:DD:EE:FD:B5:61:AA:69:EC:A7:34:90:60:D8:40:59:E1:92 Certificate issuer: /CN=24bc98ddeefdb561aa69eca7349060d84059e192 Certificate serial: 019AF1647DCB80960D5C7C1090754336540D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JLyY3e79tWGqaeynNJBg2EBZ4ZI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/89fe5b-4fda-4d04-99b4-f49764ff48ea/1/JLyY3e79tWGqaeynNJBg2EBZ4ZI.mft Manifest number: 05EF Signing time: Sat 06 Dec 2025 02:01:25 +0000 Manifest this update: Sat 06 Dec 2025 02:01:25 +0000 Manifest next update: Sun 07 Dec 2025 02:01:25 +0000 Files and hashes: 1: 9XlHb8rJg-OmDPMs6N_TKhkkHb8.roa (hash: cpk83kEdrOWJJYVKeP1fpe20g1cPT7sKTkIKvw0KJjI=) 2: JLyY3e79tWGqaeynNJBg2EBZ4ZI.crl (hash: hnL0TaURA37oHEIJuYn+BEo8H/KaiHCsObn/8JpJDeU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/89fe5b-4fda-4d04-99b4-f49764ff48ea/1/JLyY3e79tWGqaeynNJBg2EBZ4ZI.crl rsync://rpki.ripe.net/repository/DEFAULT/99/89fe5b-4fda-4d04-99b4-f49764ff48ea/1/JLyY3e79tWGqaeynNJBg2EBZ4ZI.mft rsync://rpki.ripe.net/repository/DEFAULT/JLyY3e79tWGqaeynNJBg2EBZ4ZI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:01:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:64:7d:cb:80:96:0d:5c:7c:10:90:75:43:36:54:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=24bc98ddeefdb561aa69eca7349060d84059e192 Validity Not Before: Dec 6 02:01:25 2025 GMT Not After : Dec 7 02:01:25 2025 GMT Subject: CN=939393655fc8600f9113be84ac5c6b1d1dded8e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:5e:7b:29:5f:87:bb:39:6e:db:7b:a7:42:6f: 0e:9b:4f:c0:d1:b6:45:cc:41:00:8d:51:25:27:e5: 02:29:26:e2:24:84:1a:2e:ef:0a:0b:ef:c5:7f:33: e9:2e:14:51:e8:92:b9:5f:c4:c6:b4:98:d6:3a:42: e6:72:72:b3:b3:af:d7:8c:41:84:b3:c1:61:91:9f: 84:e2:21:8c:68:7b:f5:25:5a:11:1f:d0:19:c1:47: ac:b5:f0:18:e4:2d:8d:70:99:d6:03:a6:0d:12:78: 2e:18:94:fd:60:b2:d8:db:ed:fc:43:de:3d:19:e6: a4:67:5d:51:6e:e0:ff:dc:ab:28:d3:72:0a:50:df: 92:50:00:72:0d:21:78:8c:b1:f0:b7:9a:14:e0:56: e8:a1:85:b0:91:68:6a:8f:86:ee:9c:b2:c8:e3:f4: 4e:72:c8:ef:36:f5:00:c5:70:ce:68:a4:d8:4b:ce: 82:94:4f:b3:4f:53:ab:cd:e4:7b:f8:4d:bd:fa:4c: 1c:28:ea:e1:5d:40:6c:a0:51:cc:b8:ed:b4:7d:66: 92:3c:ed:06:71:bc:51:09:e4:4f:fc:3b:ff:88:38: 93:2c:dc:75:18:28:a1:2b:03:c8:c5:c8:3b:c2:72: 8d:c4:5f:b2:6c:50:2d:fa:ae:d4:3c:46:5a:e8:86: c5:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:93:93:65:5F:C8:60:0F:91:13:BE:84:AC:5C:6B:1D:1D:DE:D8:E2 X509v3 Authority Key Identifier: keyid:24:BC:98:DD:EE:FD:B5:61:AA:69:EC:A7:34:90:60:D8:40:59:E1:92 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JLyY3e79tWGqaeynNJBg2EBZ4ZI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/89fe5b-4fda-4d04-99b4-f49764ff48ea/1/JLyY3e79tWGqaeynNJBg2EBZ4ZI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/99/89fe5b-4fda-4d04-99b4-f49764ff48ea/1/JLyY3e79tWGqaeynNJBg2EBZ4ZI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 44:d5:63:f9:63:2d:73:f9:29:a8:13:35:c3:4d:57:d9:a2:f8: 67:58:d4:4b:e4:98:93:a0:0c:64:2c:7c:f7:e4:d1:d4:78:71: ae:be:8a:3e:6b:d0:85:2e:6c:06:c1:fe:b6:80:cb:e3:6e:ed: 90:f8:e2:f3:14:84:6a:37:f7:90:3b:8a:7d:79:22:80:31:03: d3:59:a8:b9:8c:e4:57:28:9c:7a:27:6c:c6:1a:8e:ec:d1:20: 77:4d:ce:47:01:fe:21:0f:ed:46:c3:15:1f:52:6a:00:55:33: da:69:db:82:3f:b0:9d:47:2a:4d:e7:d5:aa:e1:ec:37:ee:e2: ca:f0:9d:63:c7:43:10:10:74:1a:8d:8b:65:10:26:06:24:99: 56:7a:42:05:81:69:2a:b1:b0:00:70:0d:61:59:0c:01:61:8d: 81:54:22:a9:97:d6:25:eb:94:67:2e:fa:f1:40:c4:1c:db:d6: 34:6c:9f:a8:58:0b:f4:60:26:c5:40:0f:6a:14:25:df:16:21: b4:98:d5:b5:70:db:0d:e8:55:c6:13:5e:1b:c0:3d:67:1a:67: ad:c1:57:7b:b6:4e:ef:de:0d:0e:e5:e3:5b:a8:6b:b7:5c:19: 1a:22:f6:86:5a:e1:cb:e1:65:0d:44:99:94:a1:78:62:9d:af: b2:0c:05:58 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxZH3LgJYNXHwQkHVDNlQNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI0YmM5OGRkZWVmZGI1NjFhYTY5ZWNhNzM0OTA2MGQ4NDA1 OWUxOTIwHhcNMjUxMjA2MDIwMTI1WhcNMjUxMjA3MDIwMTI1WjAzMTEwLwYDVQQD Eyg5MzkzOTM2NTVmYzg2MDBmOTExM2JlODRhYzVjNmIxZDFkZGVkOGUyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2157KV+Huzlu23unQm8Om0/A0bZF zEEAjVElJ+UCKSbiJIQaLu8KC+/FfzPpLhRR6JK5X8TGtJjWOkLmcnKzs6/XjEGE s8FhkZ+E4iGMaHv1JVoRH9AZwUestfAY5C2NcJnWA6YNEnguGJT9YLLY2+38Q949 GeakZ11RbuD/3Kso03IKUN+SUAByDSF4jLHwt5oU4FbooYWwkWhqj4bunLLI4/RO csjvNvUAxXDOaKTYS86ClE+zT1OrzeR7+E29+kwcKOrhXUBsoFHMuO20fWaSPO0G cbxRCeRP/Dv/iDiTLNx1GCihKwPIxcg7wnKNxF+ybFAt+q7UPEZa6IbFFQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJOTk2VfyGAPkRO+hKxcax0d3tjiMB8GA1UdIwQY MBaAFCS8mN3u/bVhqmnspzSQYNhAWeGSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSkx5WTNlNzl0V0dxYWV5bk5KQmcyRUJaNFpJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OS84OWZlNWItNGZkYS00ZDA0LTk5YjQt ZjQ5NzY0ZmY0OGVhLzEvSkx5WTNlNzl0V0dxYWV5bk5KQmcyRUJaNFpJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85OS84OWZlNWItNGZkYS00ZDA0LTk5YjQtZjQ5NzY0ZmY0OGVh LzEvSkx5WTNlNzl0V0dxYWV5bk5KQmcyRUJaNFpJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARNVj+WMt c/kpqBM1w01X2aL4Z1jUS+SYk6AMZCx89+TR1Hhxrr6KPmvQhS5sBsH+toDL427t kPji8xSEajf3kDuKfXkigDED01mouYzkVyiceidsxhqO7NEgd03ORwH+IQ/tRsMV H1JqAFUz2mnbgj+wnUcqTefVquHsN+7iyvCdY8dDEBB0Go2LZRAmBiSZVnpCBYFp KrGwAHANYVkMAWGNgVQiqZfWJeuUZy768UDEHNvWNGyfqFgL9GAmxUAPahQl3xYh tJjVtXDbDehVxhNeG8A9ZxpnrcFXe7ZO794NDuXjW6hrt1wZGiL2hlrhy+FlDUSZ lKF4Yp2vsgwFWA== -----END CERTIFICATE-----Generated at Sat Dec 6 12:10:43 2025 by rpki-client