This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/82a661-5587-4083-813c-3459be266731/1/jFSoRmMugzQOEU0NNVkbPUIYi3Y.mft File: jFSoRmMugzQOEU0NNVkbPUIYi3Y.mft (raw, json) Hash identifier: Scq29KtZvqtYKCWADtCkovzoqOBwKCd2mQCpOsWY5ho= Subject key identifier: 9B:55:CB:84:03:07:08:DA:5B:5B:0C:2B:3E:01:CC:FD:1A:D9:A0:B4 Authority key identifier: 8C:54:A8:46:63:2E:83:34:0E:11:4D:0D:35:59:1B:3D:42:18:8B:76 Certificate issuer: /CN=8c54a846632e83340e114d0d35591b3d42188b76 Certificate serial: 019AF3F74DB8C1E369D811BCB77181ED56C4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jFSoRmMugzQOEU0NNVkbPUIYi3Y.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/82a661-5587-4083-813c-3459be266731/1/jFSoRmMugzQOEU0NNVkbPUIYi3Y.mft Manifest number: 0F7F Signing time: Sat 06 Dec 2025 14:01:02 +0000 Manifest this update: Sat 06 Dec 2025 14:01:02 +0000 Manifest next update: Sun 07 Dec 2025 14:01:02 +0000 Files and hashes: 1: 0NQ-WA07ivHNbBCHB8RlQLxAoLU.roa (hash: yrHnQMXQ6Qe+mkwHNhl6sEUBZtgafrbZ/F8WnR+E6Bs=) 2: jFSoRmMugzQOEU0NNVkbPUIYi3Y.crl (hash: w+8QH3kto3yNYfeCfhyTSVgmvuWD3qYYdyQIGUeCRWc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/82a661-5587-4083-813c-3459be266731/1/jFSoRmMugzQOEU0NNVkbPUIYi3Y.crl rsync://rpki.ripe.net/repository/DEFAULT/bd/82a661-5587-4083-813c-3459be266731/1/jFSoRmMugzQOEU0NNVkbPUIYi3Y.mft rsync://rpki.ripe.net/repository/DEFAULT/jFSoRmMugzQOEU0NNVkbPUIYi3Y.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:f7:4d:b8:c1:e3:69:d8:11:bc:b7:71:81:ed:56:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8c54a846632e83340e114d0d35591b3d42188b76 Validity Not Before: Dec 6 14:01:02 2025 GMT Not After : Dec 7 14:01:02 2025 GMT Subject: CN=9b55cb84030708da5b5b0c2b3e01ccfd1ad9a0b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:ec:a5:88:cd:91:95:c7:a1:05:ed:29:64:f2: 8f:4a:ac:f1:a9:45:7f:8e:db:19:02:22:1d:fa:0a: d3:de:76:65:05:d6:46:f2:2c:f7:89:ae:ef:e0:ea: 1b:27:b7:8b:36:e9:1c:83:37:96:64:6e:f6:33:a5: 17:2f:80:7d:03:f6:f9:56:5f:91:7a:74:bf:a3:fb: 75:9d:28:3c:2d:a7:87:9a:f3:62:23:ec:44:d8:75: 45:01:ee:5e:54:e7:ae:33:1a:c8:eb:7d:b5:44:26: 6a:54:dc:07:e0:25:dd:84:a0:84:b2:d7:18:e0:bd: 72:3f:3c:9b:46:b9:fb:c0:ef:b4:e6:a7:2f:6e:88: 27:03:e4:77:55:b0:f1:34:0b:bb:eb:19:80:37:ee: a4:19:7f:38:0d:92:3a:d1:07:65:96:fc:74:a4:cc: 81:ad:5d:0f:15:5e:0b:a2:88:c9:5f:bf:c1:e5:c0: 48:5e:96:a1:6d:6c:62:bf:ee:52:29:e6:a7:2b:d8: d7:80:25:3f:9f:9c:3a:3c:fe:9c:a6:8d:6a:68:17: dd:a0:e8:a2:b1:f2:4a:22:5d:c5:4c:92:64:79:1e: 5b:a0:7f:a2:b8:b0:e6:d6:23:90:a4:65:66:63:3c: bb:0b:9f:bb:95:f8:63:2e:97:08:23:98:67:e3:87: bc:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:55:CB:84:03:07:08:DA:5B:5B:0C:2B:3E:01:CC:FD:1A:D9:A0:B4 X509v3 Authority Key Identifier: keyid:8C:54:A8:46:63:2E:83:34:0E:11:4D:0D:35:59:1B:3D:42:18:8B:76 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jFSoRmMugzQOEU0NNVkbPUIYi3Y.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/82a661-5587-4083-813c-3459be266731/1/jFSoRmMugzQOEU0NNVkbPUIYi3Y.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/82a661-5587-4083-813c-3459be266731/1/jFSoRmMugzQOEU0NNVkbPUIYi3Y.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4b:54:3d:92:54:73:07:bc:00:0b:c6:cf:e1:0c:1e:14:02:fc: bc:32:bd:10:f4:29:65:25:07:97:04:3d:5f:16:5c:a9:30:6b: 2a:52:ad:55:9a:b0:e7:e5:e7:ed:65:4c:3e:84:ab:af:51:12: ee:ca:40:80:6a:4d:7b:04:aa:ac:8c:4d:f5:e9:2d:5f:b9:9c: 63:52:15:28:85:7c:a7:40:86:56:56:cf:ca:84:53:14:19:7f: 8d:ea:6c:2f:7f:e2:62:51:0d:a9:28:f5:c2:ec:49:ae:e1:70: 4a:c9:cc:06:28:67:80:c7:65:7a:79:8b:14:fc:23:ac:d7:1e: 66:28:b5:13:f5:59:9e:cf:98:55:8f:34:bb:68:60:fb:0f:bb: 0f:ff:9f:8a:8d:19:eb:03:00:4e:64:50:72:ac:73:0c:7b:63: 4b:af:72:17:1f:4d:e4:2e:cd:b9:d6:6b:f3:84:b5:66:80:29: ea:08:36:16:74:9d:1e:a8:dc:73:f1:30:b2:bf:7a:f2:56:40: e9:a1:d2:c7:ef:77:ca:30:e0:bf:79:09:39:db:b3:24:e2:cf: 6e:af:a0:ec:b9:ff:9d:4c:6e:4b:b6:b5:e1:c0:d5:17:72:b2: 8b:b1:c6:9c:e7:3b:81:5b:ba:5c:63:7b:e4:9b:20:05:54:b5: 13:73:38:ea -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrz9024weNp2BG8t3GB7VbEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhjNTRhODQ2NjMyZTgzMzQwZTExNGQwZDM1NTkxYjNkNDIx ODhiNzYwHhcNMjUxMjA2MTQwMTAyWhcNMjUxMjA3MTQwMTAyWjAzMTEwLwYDVQQD Eyg5YjU1Y2I4NDAzMDcwOGRhNWI1YjBjMmIzZTAxY2NmZDFhZDlhMGI0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyeyliM2RlcehBe0pZPKPSqzxqUV/ jtsZAiId+grT3nZlBdZG8iz3ia7v4OobJ7eLNukcgzeWZG72M6UXL4B9A/b5Vl+R enS/o/t1nSg8LaeHmvNiI+xE2HVFAe5eVOeuMxrI6321RCZqVNwH4CXdhKCEstcY 4L1yPzybRrn7wO+05qcvbognA+R3VbDxNAu76xmAN+6kGX84DZI60Qdllvx0pMyB rV0PFV4LoojJX7/B5cBIXpahbWxiv+5SKeanK9jXgCU/n5w6PP6cpo1qaBfdoOii sfJKIl3FTJJkeR5boH+iuLDm1iOQpGVmYzy7C5+7lfhjLpcII5hn44e8ZQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJtVy4QDBwjaW1sMKz4BzP0a2aC0MB8GA1UdIwQY MBaAFIxUqEZjLoM0DhFNDTVZGz1CGIt2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvakZTb1JtTXVnelFPRVUwTk5Wa2JQVUlZaTNZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC84MmE2NjEtNTU4Ny00MDgzLTgxM2Mt MzQ1OWJlMjY2NzMxLzEvakZTb1JtTXVnelFPRVUwTk5Wa2JQVUlZaTNZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZC84MmE2NjEtNTU4Ny00MDgzLTgxM2MtMzQ1OWJlMjY2NzMx LzEvakZTb1JtTXVnelFPRVUwTk5Wa2JQVUlZaTNZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAS1Q9klRz B7wAC8bP4QweFAL8vDK9EPQpZSUHlwQ9XxZcqTBrKlKtVZqw5+Xn7WVMPoSrr1ES 7spAgGpNewSqrIxN9ektX7mcY1IVKIV8p0CGVlbPyoRTFBl/jepsL3/iYlENqSj1 wuxJruFwSsnMBihngMdlenmLFPwjrNceZii1E/VZns+YVY80u2hg+w+7D/+fio0Z 6wMATmRQcqxzDHtjS69yFx9N5C7NudZr84S1ZoAp6gg2FnSdHqjcc/Ewsr968lZA 6aHSx+93yjDgv3kJOduzJOLPbq+g7Ln/nUxuS7a14cDVF3Kyi7HGnOc7gVu6XGN7 5JsgBVS1E3M46g== -----END CERTIFICATE-----Generated at Sat Dec 6 19:36:55 2025 by rpki-client