This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/8544a0-ae46-4da2-ad2d-e893b13b2c9f/1/JchJyqV3LJi4E8E7TzD85PSNLa4.mft File: JchJyqV3LJi4E8E7TzD85PSNLa4.mft (raw, json) Hash identifier: SszUh3gOKfmNAHb9hJMZRmTqtVDdlzcLeP+Mxj1tKV0= Subject key identifier: D5:7E:B6:4F:B8:BE:76:36:08:AC:16:87:88:8B:A6:03:06:27:48:72 Authority key identifier: 25:C8:49:CA:A5:77:2C:98:B8:13:C1:3B:4F:30:FC:E4:F4:8D:2D:AE Certificate issuer: /CN=25c849caa5772c98b813c13b4f30fce4f48d2dae Certificate serial: 019AF1D1ADC3256D716C575AA777973C2F94 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JchJyqV3LJi4E8E7TzD85PSNLa4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/8544a0-ae46-4da2-ad2d-e893b13b2c9f/1/JchJyqV3LJi4E8E7TzD85PSNLa4.mft Manifest number: 0B36 Signing time: Sat 06 Dec 2025 04:00:41 +0000 Manifest this update: Sat 06 Dec 2025 04:00:41 +0000 Manifest next update: Sun 07 Dec 2025 04:00:41 +0000 Files and hashes: 1: JchJyqV3LJi4E8E7TzD85PSNLa4.crl (hash: VmVoLSST1bVgY9bxelalQg0Y3LNesUQVwsvaETMJXyA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/8544a0-ae46-4da2-ad2d-e893b13b2c9f/1/JchJyqV3LJi4E8E7TzD85PSNLa4.crl rsync://rpki.ripe.net/repository/DEFAULT/b9/8544a0-ae46-4da2-ad2d-e893b13b2c9f/1/JchJyqV3LJi4E8E7TzD85PSNLa4.mft rsync://rpki.ripe.net/repository/DEFAULT/JchJyqV3LJi4E8E7TzD85PSNLa4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:d1:ad:c3:25:6d:71:6c:57:5a:a7:77:97:3c:2f:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=25c849caa5772c98b813c13b4f30fce4f48d2dae Validity Not Before: Dec 6 04:00:41 2025 GMT Not After : Dec 7 04:00:41 2025 GMT Subject: CN=d57eb64fb8be763608ac1687888ba60306274872 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:f8:ff:d7:d3:62:52:7f:10:19:f0:90:eb:58: 51:61:ff:ab:42:0f:3c:02:cc:03:91:e5:ec:fb:d2: ad:4b:50:da:14:13:21:c2:ee:a2:fe:e7:fc:bc:64: 46:67:8e:a1:9c:1e:f8:6e:03:5a:cf:19:c4:45:7c: d2:1c:5f:7b:cb:da:17:55:d1:b5:72:3f:0a:65:53: 67:75:15:bf:c7:c0:d8:c4:41:f9:60:6c:b5:04:e6: 21:4d:d6:c7:30:b8:73:cc:b1:b9:95:92:f2:47:e0: 14:9f:24:24:07:ef:40:ae:c0:0e:b0:b3:9a:b5:1b: df:3e:7e:31:dd:7a:27:2b:8f:89:e3:88:1c:54:a5: 4b:0f:a6:37:af:80:6e:02:ae:1f:3f:7e:34:1a:82: 9f:d9:bf:ac:3e:c2:4a:0e:96:10:c0:19:d1:c9:55: 46:fa:e5:f9:a8:02:16:99:8b:77:5f:69:59:9f:d1: c3:88:9d:3e:64:6e:d5:b4:17:9a:be:58:1d:41:95: 68:1d:6c:4a:9e:a8:81:45:21:65:6c:fc:2c:57:bc: 47:d3:1c:7e:8b:18:4f:ef:56:e7:d7:62:5a:6e:3a: 6b:7b:40:3b:a3:2e:72:7e:7e:ab:41:51:eb:5d:98: c5:cc:ee:4b:c7:d7:5b:9e:52:d4:6f:39:0f:80:5b: d5:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:7E:B6:4F:B8:BE:76:36:08:AC:16:87:88:8B:A6:03:06:27:48:72 X509v3 Authority Key Identifier: keyid:25:C8:49:CA:A5:77:2C:98:B8:13:C1:3B:4F:30:FC:E4:F4:8D:2D:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JchJyqV3LJi4E8E7TzD85PSNLa4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/8544a0-ae46-4da2-ad2d-e893b13b2c9f/1/JchJyqV3LJi4E8E7TzD85PSNLa4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/8544a0-ae46-4da2-ad2d-e893b13b2c9f/1/JchJyqV3LJi4E8E7TzD85PSNLa4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0e:2e:f6:21:89:3f:72:a9:dc:27:ea:ef:46:f5:28:ef:c4:93: 92:ce:ad:8d:d9:51:d0:08:e0:78:1e:13:05:92:72:76:c7:2d: 44:f1:bd:d7:91:9a:6b:e5:79:63:9b:21:2f:61:5f:fe:b4:7e: 08:21:7f:26:10:0a:36:8d:db:fe:2c:c5:63:20:12:d0:e5:53: ad:26:34:d9:60:e9:5f:76:7e:2c:52:c3:28:14:65:ba:2f:d7: 20:9a:dd:7d:dd:f8:09:b6:4f:4c:17:a2:40:9f:fa:40:bd:04: 35:54:1d:69:e0:ef:2c:1e:21:61:c8:9c:9c:a6:82:c0:78:06: 9c:f3:39:eb:07:25:18:b7:b9:50:b5:b3:06:c9:9f:f1:8f:05: c1:75:90:5d:6f:8c:b2:ce:65:53:e2:80:84:94:bb:d1:4c:d0: 65:5e:e6:8b:be:28:3f:37:a7:1a:3d:92:4f:56:36:e9:4a:ba: e4:78:6a:03:d5:4f:b4:cd:1e:77:e3:ca:bc:ac:6f:fa:fd:8e: 41:db:14:aa:3d:c8:f4:2d:b9:55:00:aa:9f:61:e2:a4:36:24: b8:ac:09:6b:a3:be:a1:e2:d7:a1:29:fb:4f:99:3e:3a:6b:a5: 6a:56:5c:67:47:7e:70:97:4b:39:66:68:90:38:7e:71:f0:f7: 24:cc:b8:64 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrx0a3DJW1xbFdap3eXPC+UMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI1Yzg0OWNhYTU3NzJjOThiODEzYzEzYjRmMzBmY2U0ZjQ4 ZDJkYWUwHhcNMjUxMjA2MDQwMDQxWhcNMjUxMjA3MDQwMDQxWjAzMTEwLwYDVQQD EyhkNTdlYjY0ZmI4YmU3NjM2MDhhYzE2ODc4ODhiYTYwMzA2Mjc0ODcyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqfj/19NiUn8QGfCQ61hRYf+rQg88 AswDkeXs+9KtS1DaFBMhwu6i/uf8vGRGZ46hnB74bgNazxnERXzSHF97y9oXVdG1 cj8KZVNndRW/x8DYxEH5YGy1BOYhTdbHMLhzzLG5lZLyR+AUnyQkB+9ArsAOsLOa tRvfPn4x3XonK4+J44gcVKVLD6Y3r4BuAq4fP340GoKf2b+sPsJKDpYQwBnRyVVG +uX5qAIWmYt3X2lZn9HDiJ0+ZG7VtBeavlgdQZVoHWxKnqiBRSFlbPwsV7xH0xx+ ixhP71bn12Jabjpre0A7oy5yfn6rQVHrXZjFzO5Lx9dbnlLUbzkPgFvVuwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNV+tk+4vnY2CKwWh4iLpgMGJ0hyMB8GA1UdIwQY MBaAFCXIScqldyyYuBPBO08w/OT0jS2uMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSmNoSnlxVjNMSmk0RThFN1R6RDg1UFNOTGE0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOS84NTQ0YTAtYWU0Ni00ZGEyLWFkMmQt ZTg5M2IxM2IyYzlmLzEvSmNoSnlxVjNMSmk0RThFN1R6RDg1UFNOTGE0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iOS84NTQ0YTAtYWU0Ni00ZGEyLWFkMmQtZTg5M2IxM2IyYzlm LzEvSmNoSnlxVjNMSmk0RThFN1R6RDg1UFNOTGE0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADi72IYk/ cqncJ+rvRvUo78STks6tjdlR0AjgeB4TBZJydsctRPG915Gaa+V5Y5shL2Ff/rR+ CCF/JhAKNo3b/izFYyAS0OVTrSY02WDpX3Z+LFLDKBRlui/XIJrdfd34CbZPTBei QJ/6QL0ENVQdaeDvLB4hYcicnKaCwHgGnPM56wclGLe5ULWzBsmf8Y8FwXWQXW+M ss5lU+KAhJS70UzQZV7mi74oPzenGj2ST1Y26Uq65HhqA9VPtM0ed+PKvKxv+v2O QdsUqj3I9C25VQCqn2HipDYkuKwJa6O+oeLXoSn7T5k+OmulalZcZ0d+cJdLOWZo kDh+cfD3JMy4ZA== -----END CERTIFICATE-----Generated at Sat Dec 6 07:04:59 2025 by rpki-client