This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/7a85c9-c58a-4f8e-83b1-7bafde4c4b24/1/jwrbomBJNHOMfJaSoLOrezCoK7I.mft File: jwrbomBJNHOMfJaSoLOrezCoK7I.mft (raw, json) Hash identifier: snlJUGTMnelWQrCNjlflXvbVDQLiskpkFTPrtD93JxQ= Subject key identifier: 9E:0A:AF:89:5B:0E:2C:39:13:55:91:D2:AB:5E:FB:4B:D5:8E:4D:A2 Authority key identifier: 8F:0A:DB:A2:60:49:34:73:8C:7C:96:92:A0:B3:AB:7B:30:A8:2B:B2 Certificate issuer: /CN=8f0adba2604934738c7c9692a0b3ab7b30a82bb2 Certificate serial: 019AF19B27C8546815545D41483AEECF77DD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jwrbomBJNHOMfJaSoLOrezCoK7I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/7a85c9-c58a-4f8e-83b1-7bafde4c4b24/1/jwrbomBJNHOMfJaSoLOrezCoK7I.mft Manifest number: 07D4 Signing time: Sat 06 Dec 2025 03:01:08 +0000 Manifest this update: Sat 06 Dec 2025 03:01:08 +0000 Manifest next update: Sun 07 Dec 2025 03:01:08 +0000 Files and hashes: 1: QkwgvOARZ0WArMcZyBkhE2Jb76g.roa (hash: ToI6x0zU+v+8pQ6FvMmC9PVdbpiMYXQKPnaPxXzGxiA=) 2: jwrbomBJNHOMfJaSoLOrezCoK7I.crl (hash: ux47I043XryzuhXNVW8o9ygRYdy7SVqoGEUwjjB+K3o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/7a85c9-c58a-4f8e-83b1-7bafde4c4b24/1/jwrbomBJNHOMfJaSoLOrezCoK7I.crl rsync://rpki.ripe.net/repository/DEFAULT/a8/7a85c9-c58a-4f8e-83b1-7bafde4c4b24/1/jwrbomBJNHOMfJaSoLOrezCoK7I.mft rsync://rpki.ripe.net/repository/DEFAULT/jwrbomBJNHOMfJaSoLOrezCoK7I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9b:27:c8:54:68:15:54:5d:41:48:3a:ee:cf:77:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8f0adba2604934738c7c9692a0b3ab7b30a82bb2 Validity Not Before: Dec 6 03:01:08 2025 GMT Not After : Dec 7 03:01:08 2025 GMT Subject: CN=9e0aaf895b0e2c39135591d2ab5efb4bd58e4da2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:c7:8d:9d:ac:c6:d6:f9:3d:f2:41:29:14:0d: 2e:99:1d:6a:01:b8:80:fa:c7:94:e8:2c:c9:74:9c: 6c:3a:cb:6d:0f:10:40:e0:b7:d2:f2:82:0e:c8:42: 3a:61:ab:ad:45:7c:39:68:8c:f4:f2:f0:bd:ae:a5: 3c:27:d5:cf:a8:fe:a5:12:7f:34:7a:f6:b2:d1:8d: 6b:fb:6b:bf:2b:5d:69:e2:75:eb:1d:72:ee:08:54: 9a:a2:28:3d:eb:b1:d1:e9:37:76:e5:d5:46:56:24: b1:b2:3e:07:af:2b:d6:78:51:53:34:78:58:cb:b1: b2:ec:de:e7:9b:ec:22:8b:70:a3:a8:13:0f:3f:9a: a2:a2:ce:67:aa:28:bf:50:7d:b2:43:7e:3e:2a:27: ba:f4:dc:90:2e:f6:ed:0d:6a:82:b8:0c:e7:0d:f6: 61:b7:5a:70:ef:2e:61:27:88:00:ef:48:ec:14:fe: f3:ea:be:a8:2c:5b:2b:f3:42:3d:fe:cd:da:64:01: de:f4:2f:93:10:2e:13:e8:3c:72:a5:ee:18:56:90: 4b:78:32:e6:a4:9f:32:cb:3e:fe:ff:f5:9b:5a:83: 19:90:17:b9:f2:61:4c:23:e9:0b:93:65:ab:ff:d9: fe:6a:ac:58:83:8f:d6:c8:f5:b7:1d:6b:32:b5:e3: f9:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:0A:AF:89:5B:0E:2C:39:13:55:91:D2:AB:5E:FB:4B:D5:8E:4D:A2 X509v3 Authority Key Identifier: keyid:8F:0A:DB:A2:60:49:34:73:8C:7C:96:92:A0:B3:AB:7B:30:A8:2B:B2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jwrbomBJNHOMfJaSoLOrezCoK7I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/7a85c9-c58a-4f8e-83b1-7bafde4c4b24/1/jwrbomBJNHOMfJaSoLOrezCoK7I.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/7a85c9-c58a-4f8e-83b1-7bafde4c4b24/1/jwrbomBJNHOMfJaSoLOrezCoK7I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 36:b8:5b:ad:43:62:56:76:6e:ca:01:9a:85:e0:ff:64:6d:7c: 8c:ac:6c:ba:af:ff:2e:71:fa:f0:50:c8:88:36:6a:17:7b:0d: e8:ea:30:aa:6c:3b:bb:50:a4:2d:5a:01:a7:0a:b5:22:d1:73: b8:91:ac:c7:c2:32:d9:d8:68:bd:cd:08:5b:ce:73:1b:b8:bd: 38:94:7d:19:a9:1b:06:e5:4e:b6:c2:01:03:15:69:79:9a:5c: a1:50:41:04:84:d1:2e:f0:c3:f0:00:ff:f6:c9:0c:4f:66:c5: c1:83:78:21:ea:b5:d0:52:10:83:79:30:9b:d1:a2:50:ce:90: 26:c3:11:cf:c3:d4:cf:46:09:34:0b:98:a4:e3:16:e2:1b:0a: 1f:e0:cf:33:98:e3:20:9d:fc:96:53:91:80:73:3f:8f:e9:ad: f7:09:4d:80:ac:0a:97:6e:4b:44:cd:ee:97:a1:fc:6f:4d:57: f6:20:f6:eb:0d:d4:8c:13:c4:6d:26:f7:01:64:50:cd:ee:4f: 8b:62:d5:d0:a4:b7:4f:b7:87:e2:a8:f6:d3:a8:8e:54:4e:2a: 54:9f:fe:38:1e:f0:29:af:e2:fc:4d:e8:42:62:25:6d:05:b5: 62:63:bd:ab:a6:58:cf:bc:bd:06:30:2d:ab:ea:f4:48:54:c5: 40:98:fd:5a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxmyfIVGgVVF1BSDruz3fdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhmMGFkYmEyNjA0OTM0NzM4YzdjOTY5MmEwYjNhYjdiMzBh ODJiYjIwHhcNMjUxMjA2MDMwMTA4WhcNMjUxMjA3MDMwMTA4WjAzMTEwLwYDVQQD Eyg5ZTBhYWY4OTViMGUyYzM5MTM1NTkxZDJhYjVlZmI0YmQ1OGU0ZGEyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxceNnazG1vk98kEpFA0umR1qAbiA +seU6CzJdJxsOsttDxBA4LfS8oIOyEI6YautRXw5aIz08vC9rqU8J9XPqP6lEn80 evay0Y1r+2u/K11p4nXrHXLuCFSaoig967HR6Td25dVGViSxsj4HryvWeFFTNHhY y7Gy7N7nm+wii3CjqBMPP5qios5nqii/UH2yQ34+Kie69NyQLvbtDWqCuAznDfZh t1pw7y5hJ4gA70jsFP7z6r6oLFsr80I9/s3aZAHe9C+TEC4T6Dxype4YVpBLeDLm pJ8yyz7+//WbWoMZkBe58mFMI+kLk2Wr/9n+aqxYg4/WyPW3HWsyteP55wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJ4Kr4lbDiw5E1WR0qte+0vVjk2iMB8GA1UdIwQY MBaAFI8K26JgSTRzjHyWkqCzq3swqCuyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvandyYm9tQkpOSE9NZkphU29MT3JlekNvSzdJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOC83YTg1YzktYzU4YS00ZjhlLTgzYjEt N2JhZmRlNGM0YjI0LzEvandyYm9tQkpOSE9NZkphU29MT3JlekNvSzdJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hOC83YTg1YzktYzU4YS00ZjhlLTgzYjEtN2JhZmRlNGM0YjI0 LzEvandyYm9tQkpOSE9NZkphU29MT3JlekNvSzdJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANrhbrUNi VnZuygGaheD/ZG18jKxsuq//LnH68FDIiDZqF3sN6Oowqmw7u1CkLVoBpwq1ItFz uJGsx8Iy2dhovc0IW85zG7i9OJR9GakbBuVOtsIBAxVpeZpcoVBBBITRLvDD8AD/ 9skMT2bFwYN4Ieq10FIQg3kwm9GiUM6QJsMRz8PUz0YJNAuYpOMW4hsKH+DPM5jj IJ38llORgHM/j+mt9wlNgKwKl25LRM3ul6H8b01X9iD26w3UjBPEbSb3AWRQze5P i2LV0KS3T7eH4qj206iOVE4qVJ/+OB7wKa/i/E3oQmIlbQW1YmO9q6ZYz7y9BjAt q+r0SFTFQJj9Wg== -----END CERTIFICATE-----Generated at Sat Dec 6 07:10:58 2025 by rpki-client