This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/549363-1229-4114-a996-259420d32472/1/jR3ulkqib4m9ECJ21GVjP7guqig.mft File: jR3ulkqib4m9ECJ21GVjP7guqig.mft (raw, json) Hash identifier: CqyBBZEfK/We4fLwFMhCqo9RG8N6UsrPXwAjyMNUQkQ= Subject key identifier: 92:85:CA:EE:43:BE:22:B4:17:1D:27:A0:D7:27:C3:F0:17:E1:AC:BB Authority key identifier: 8D:1D:EE:96:4A:A2:6F:89:BD:10:22:76:D4:65:63:3F:B8:2E:AA:28 Certificate issuer: /CN=8d1dee964aa26f89bd102276d465633fb82eaa28 Certificate serial: 019AF1D18242B1D436DF2ADF126C87AAE865 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jR3ulkqib4m9ECJ21GVjP7guqig.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/549363-1229-4114-a996-259420d32472/1/jR3ulkqib4m9ECJ21GVjP7guqig.mft Manifest number: 0BC1 Signing time: Sat 06 Dec 2025 04:00:30 +0000 Manifest this update: Sat 06 Dec 2025 04:00:30 +0000 Manifest next update: Sun 07 Dec 2025 04:00:30 +0000 Files and hashes: 1: jR3ulkqib4m9ECJ21GVjP7guqig.crl (hash: lQKbG1J8Of+3s93a/b+av2XC64rbjuxhnZ/gUBbuKUk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/549363-1229-4114-a996-259420d32472/1/jR3ulkqib4m9ECJ21GVjP7guqig.crl rsync://rpki.ripe.net/repository/DEFAULT/a3/549363-1229-4114-a996-259420d32472/1/jR3ulkqib4m9ECJ21GVjP7guqig.mft rsync://rpki.ripe.net/repository/DEFAULT/jR3ulkqib4m9ECJ21GVjP7guqig.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 04:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:d1:82:42:b1:d4:36:df:2a:df:12:6c:87:aa:e8:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8d1dee964aa26f89bd102276d465633fb82eaa28 Validity Not Before: Dec 6 04:00:30 2025 GMT Not After : Dec 7 04:00:30 2025 GMT Subject: CN=9285caee43be22b4171d27a0d727c3f017e1acbb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:6a:07:8b:d4:a7:a3:1f:05:b5:4f:fb:79:6c: 49:31:f3:51:7d:3a:7d:61:37:6f:85:70:ac:8a:2b: b8:30:03:fb:f1:35:4b:b7:c3:55:03:82:ca:41:a2: c4:51:f4:01:f5:49:1c:08:9b:94:41:2b:9d:61:15: 20:dc:1d:df:17:76:1e:27:96:e8:a4:06:a9:bf:bd: 19:06:f1:22:05:9b:df:9e:8a:09:7e:34:45:e7:bb: 14:47:db:fd:01:3c:0f:4d:20:1e:00:63:66:fc:bb: ad:81:d5:cd:3e:96:14:ba:51:d0:92:7d:c9:64:d6: 8a:1b:2e:c3:28:3b:7a:69:44:06:4f:9a:af:72:da: 61:33:10:41:2f:ad:93:3f:26:d6:d0:cf:5c:2c:29: 64:53:d8:58:fa:05:43:1d:aa:cf:f1:40:dc:c0:21: a4:44:88:62:88:30:eb:49:b6:5c:8e:4f:df:c8:aa: e0:80:4a:88:e7:5e:11:1d:dd:18:44:fc:0c:9f:8f: 48:d3:22:0f:1f:a5:c2:b0:c8:a5:4f:7f:f3:47:c4: d9:5d:ac:31:4d:9c:11:ce:fd:be:1b:7b:4f:c7:b6: 9d:66:a8:06:c9:f5:5a:09:64:53:4a:4c:10:d1:50: 54:c0:d6:e7:dd:48:e3:2c:93:a9:17:50:33:d7:ca: 85:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:85:CA:EE:43:BE:22:B4:17:1D:27:A0:D7:27:C3:F0:17:E1:AC:BB X509v3 Authority Key Identifier: keyid:8D:1D:EE:96:4A:A2:6F:89:BD:10:22:76:D4:65:63:3F:B8:2E:AA:28 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jR3ulkqib4m9ECJ21GVjP7guqig.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/549363-1229-4114-a996-259420d32472/1/jR3ulkqib4m9ECJ21GVjP7guqig.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/549363-1229-4114-a996-259420d32472/1/jR3ulkqib4m9ECJ21GVjP7guqig.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3c:42:4d:b4:65:70:1b:fb:4a:a2:c9:57:e3:9d:1c:92:d2:77: 9e:c8:ec:19:99:7b:a0:d7:40:3a:26:0e:db:61:f4:b5:ce:db: 35:c7:d2:df:86:a5:c4:67:ea:87:b0:d6:d0:4d:62:ff:ef:12: 59:68:df:e4:0d:b8:80:04:10:2b:87:e4:32:16:70:73:41:a8: ab:f4:f4:a2:64:95:d3:ec:8f:8a:38:29:c9:21:47:7d:c1:6c: b9:17:63:f3:73:a0:dd:2e:59:51:80:2d:86:1c:3d:f8:fc:7b: 14:9d:ff:a9:9b:bc:3e:55:f4:13:f2:52:d9:23:ad:3e:5c:4f: 7a:aa:59:2c:10:c8:d5:08:c8:56:28:c0:1a:67:a4:5d:35:6c: 66:8c:52:d4:db:e5:1d:7a:bc:e4:45:d2:4e:8a:02:e0:a7:ed: 15:3d:45:7b:97:e0:b6:f0:2c:8b:5b:a6:fa:7a:75:e6:e9:7e: eb:0f:d5:43:87:ca:6f:d1:ed:90:57:38:8a:1b:0c:fe:fd:3e: 5e:07:d6:93:eb:47:39:62:16:23:46:8e:50:c9:d7:d9:a2:b2: c9:04:98:1e:f4:92:3a:a5:5f:9d:d7:7c:b4:fa:18:6e:45:2f: 02:51:b8:1e:f2:be:ff:6b:04:b6:ea:65:76:f4:f9:1c:32:66: 9d:78:4e:1f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrx0YJCsdQ23yrfEmyHquhlMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhkMWRlZTk2NGFhMjZmODliZDEwMjI3NmQ0NjU2MzNmYjgy ZWFhMjgwHhcNMjUxMjA2MDQwMDMwWhcNMjUxMjA3MDQwMDMwWjAzMTEwLwYDVQQD Eyg5Mjg1Y2FlZTQzYmUyMmI0MTcxZDI3YTBkNzI3YzNmMDE3ZTFhY2JiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtmoHi9Snox8FtU/7eWxJMfNRfTp9 YTdvhXCsiiu4MAP78TVLt8NVA4LKQaLEUfQB9UkcCJuUQSudYRUg3B3fF3YeJ5bo pAapv70ZBvEiBZvfnooJfjRF57sUR9v9ATwPTSAeAGNm/LutgdXNPpYUulHQkn3J ZNaKGy7DKDt6aUQGT5qvctphMxBBL62TPybW0M9cLClkU9hY+gVDHarP8UDcwCGk RIhiiDDrSbZcjk/fyKrggEqI514RHd0YRPwMn49I0yIPH6XCsMilT3/zR8TZXawx TZwRzv2+G3tPx7adZqgGyfVaCWRTSkwQ0VBUwNbn3UjjLJOpF1Az18qF8QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJKFyu5DviK0Fx0noNcnw/AX4ay7MB8GA1UdIwQY MBaAFI0d7pZKom+JvRAidtRlYz+4LqooMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvalIzdWxrcWliNG05RUNKMjFHVmpQN2d1cWlnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy81NDkzNjMtMTIyOS00MTE0LWE5OTYt MjU5NDIwZDMyNDcyLzEvalIzdWxrcWliNG05RUNKMjFHVmpQN2d1cWlnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMy81NDkzNjMtMTIyOS00MTE0LWE5OTYtMjU5NDIwZDMyNDcy LzEvalIzdWxrcWliNG05RUNKMjFHVmpQN2d1cWlnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPEJNtGVw G/tKoslX450cktJ3nsjsGZl7oNdAOiYO22H0tc7bNcfS34alxGfqh7DW0E1i/+8S WWjf5A24gAQQK4fkMhZwc0Goq/T0omSV0+yPijgpySFHfcFsuRdj83Og3S5ZUYAt hhw9+Px7FJ3/qZu8PlX0E/JS2SOtPlxPeqpZLBDI1QjIVijAGmekXTVsZoxS1Nvl HXq85EXSTooC4KftFT1Fe5fgtvAsi1um+np15ul+6w/VQ4fKb9HtkFc4ihsM/v0+ XgfWk+tHOWIWI0aOUMnX2aKyyQSYHvSSOqVfndd8tPoYbkUvAlG4HvK+/2sEtupl dvT5HDJmnXhOHw== -----END CERTIFICATE-----Generated at Sat Dec 6 10:38:30 2025 by rpki-client