This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/b57081-e16f-47ce-bd98-dce128022ac4/1/JwBs1Oq8VbNskwifFND6bg-gzG0.mft File: JwBs1Oq8VbNskwifFND6bg-gzG0.mft (raw, json) Hash identifier: jOCl9jme860wix34HT/rwpxpzQkn9xSx5h8QXps2JHI= Subject key identifier: B9:AB:35:42:34:39:26:47:52:13:A7:22:29:CC:05:C8:26:C4:9E:80 Authority key identifier: 27:00:6C:D4:EA:BC:55:B3:6C:93:08:9F:14:D0:FA:6E:0F:A0:CC:6D Certificate issuer: /CN=27006cd4eabc55b36c93089f14d0fa6e0fa0cc6d Certificate serial: 019AF208A8E46AEF78625A050323E2D893EC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JwBs1Oq8VbNskwifFND6bg-gzG0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/b57081-e16f-47ce-bd98-dce128022ac4/1/JwBs1Oq8VbNskwifFND6bg-gzG0.mft Manifest number: 1262 Signing time: Sat 06 Dec 2025 05:00:45 +0000 Manifest this update: Sat 06 Dec 2025 05:00:45 +0000 Manifest next update: Sun 07 Dec 2025 05:00:45 +0000 Files and hashes: 1: JwBs1Oq8VbNskwifFND6bg-gzG0.crl (hash: ZS8I2J1RCaYfhl56rqAK+v6AmsBZNzDb8eIBUoXWfec=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/b57081-e16f-47ce-bd98-dce128022ac4/1/JwBs1Oq8VbNskwifFND6bg-gzG0.crl rsync://rpki.ripe.net/repository/DEFAULT/9a/b57081-e16f-47ce-bd98-dce128022ac4/1/JwBs1Oq8VbNskwifFND6bg-gzG0.mft rsync://rpki.ripe.net/repository/DEFAULT/JwBs1Oq8VbNskwifFND6bg-gzG0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:08:a8:e4:6a:ef:78:62:5a:05:03:23:e2:d8:93:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=27006cd4eabc55b36c93089f14d0fa6e0fa0cc6d Validity Not Before: Dec 6 05:00:45 2025 GMT Not After : Dec 7 05:00:45 2025 GMT Subject: CN=b9ab3542343926475213a72229cc05c826c49e80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:be:a9:11:96:7c:63:45:82:2e:bc:2c:03:02: f8:f3:5b:30:70:c1:d2:de:ce:a5:bf:d0:a5:56:51: 00:26:02:31:66:83:1d:35:89:59:df:be:57:1c:b7: a6:4d:dc:ae:40:a6:37:e8:74:ca:52:ca:56:f3:34: 7a:c7:4f:4e:3d:29:27:c4:6c:92:ff:8b:35:ab:5e: 54:32:9d:40:e0:de:31:37:22:c1:35:8f:f9:e1:99: 74:18:66:c4:0e:93:ce:ed:17:ce:0f:42:03:79:09: b2:20:54:d2:63:c6:78:e1:dc:84:4d:a2:0c:8e:e5: ae:ff:9e:69:6e:cd:28:56:99:e5:4a:84:50:ba:67: 9d:da:86:f9:a5:dd:ad:e0:e5:2b:b4:31:3d:ce:aa: bb:43:89:ed:d5:ef:27:66:a3:95:61:39:1f:57:42: ea:b0:97:19:21:dc:94:b6:f7:5e:28:1c:5c:1c:80: b9:ec:a4:b7:e9:62:48:13:cc:8b:77:c4:21:82:40: a4:c2:1e:37:f1:82:ec:33:41:cd:09:8e:06:46:e4: 63:27:8f:6e:be:00:c6:86:02:8b:6f:8a:cb:69:9c: e9:56:83:a0:9a:e8:67:3f:a6:85:c6:d3:cc:74:c2: a0:f5:91:b7:15:b9:e8:38:e1:63:c8:d7:cf:33:f8: a3:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:AB:35:42:34:39:26:47:52:13:A7:22:29:CC:05:C8:26:C4:9E:80 X509v3 Authority Key Identifier: keyid:27:00:6C:D4:EA:BC:55:B3:6C:93:08:9F:14:D0:FA:6E:0F:A0:CC:6D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JwBs1Oq8VbNskwifFND6bg-gzG0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/b57081-e16f-47ce-bd98-dce128022ac4/1/JwBs1Oq8VbNskwifFND6bg-gzG0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/b57081-e16f-47ce-bd98-dce128022ac4/1/JwBs1Oq8VbNskwifFND6bg-gzG0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a5:90:61:85:01:a0:d1:d6:99:ee:7b:01:6b:bb:5c:7b:4d:c2: c9:06:ef:6c:8d:6c:e6:c7:30:b2:be:cf:b9:9b:8b:d3:3e:7f: 0a:1d:64:63:9c:8d:ee:01:19:6a:bd:c5:97:a3:56:ba:88:05: d0:95:ea:87:39:ec:53:4b:e8:0a:e0:04:3f:86:45:d9:0f:34: 04:bb:ac:fe:cb:b2:f3:02:22:3c:27:9a:1d:12:84:3d:3a:0f: 60:b4:95:70:c8:94:6c:ea:7b:21:55:65:31:24:f2:82:28:9f: b1:05:54:b2:6e:34:a1:6f:87:9d:0f:e2:2e:9f:78:e6:d2:fc: 24:b0:40:5b:b8:aa:3a:59:56:7c:da:67:94:91:50:ee:21:cc: bf:3a:a8:92:53:c7:93:02:60:84:5d:f3:4f:b3:09:cd:5e:c2: 93:5c:d4:44:48:a2:f1:0e:e3:0a:9b:cb:74:ea:85:c8:3c:7d: 7f:86:24:40:21:ae:b6:f3:db:64:16:fa:51:f9:d2:13:f8:16: 67:f0:ab:34:90:32:0f:e5:e3:05:7a:0d:67:c2:11:2e:5c:a0: c1:f2:00:02:87:fc:bb:39:e3:a5:24:cd:da:8e:50:d3:23:84: 87:10:c8:26:20:79:9a:9a:10:d5:dc:4a:6d:67:eb:22:f8:01: 6f:77:7d:38 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCKjkau94YloFAyPi2JPsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI3MDA2Y2Q0ZWFiYzU1YjM2YzkzMDg5ZjE0ZDBmYTZlMGZh MGNjNmQwHhcNMjUxMjA2MDUwMDQ1WhcNMjUxMjA3MDUwMDQ1WjAzMTEwLwYDVQQD EyhiOWFiMzU0MjM0MzkyNjQ3NTIxM2E3MjIyOWNjMDVjODI2YzQ5ZTgwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApr6pEZZ8Y0WCLrwsAwL481swcMHS 3s6lv9ClVlEAJgIxZoMdNYlZ375XHLemTdyuQKY36HTKUspW8zR6x09OPSknxGyS /4s1q15UMp1A4N4xNyLBNY/54Zl0GGbEDpPO7RfOD0IDeQmyIFTSY8Z44dyETaIM juWu/55pbs0oVpnlSoRQumed2ob5pd2t4OUrtDE9zqq7Q4nt1e8nZqOVYTkfV0Lq sJcZIdyUtvdeKBxcHIC57KS36WJIE8yLd8QhgkCkwh438YLsM0HNCY4GRuRjJ49u vgDGhgKLb4rLaZzpVoOgmuhnP6aFxtPMdMKg9ZG3FbnoOOFjyNfPM/ijywIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLmrNUI0OSZHUhOnIinMBcgmxJ6AMB8GA1UdIwQY MBaAFCcAbNTqvFWzbJMInxTQ+m4PoMxtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSndCczFPcThWYk5za3dpZkZORDZiZy1nekcwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85YS9iNTcwODEtZTE2Zi00N2NlLWJkOTgt ZGNlMTI4MDIyYWM0LzEvSndCczFPcThWYk5za3dpZkZORDZiZy1nekcwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85YS9iNTcwODEtZTE2Zi00N2NlLWJkOTgtZGNlMTI4MDIyYWM0 LzEvSndCczFPcThWYk5za3dpZkZORDZiZy1nekcwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApZBhhQGg 0daZ7nsBa7tce03CyQbvbI1s5scwsr7PuZuL0z5/Ch1kY5yN7gEZar3Fl6NWuogF 0JXqhznsU0voCuAEP4ZF2Q80BLus/suy8wIiPCeaHRKEPToPYLSVcMiUbOp7IVVl MSTygiifsQVUsm40oW+HnQ/iLp945tL8JLBAW7iqOllWfNpnlJFQ7iHMvzqoklPH kwJghF3zT7MJzV7Ck1zUREii8Q7jCpvLdOqFyDx9f4YkQCGutvPbZBb6UfnSE/gW Z/CrNJAyD+XjBXoNZ8IRLlygwfIAAof8uznjpSTN2o5Q0yOEhxDIJiB5mpoQ1dxK bWfrIvgBb3d9OA== -----END CERTIFICATE-----Generated at Sat Dec 6 08:33:52 2025 by rpki-client