This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/b439ef-2cc5-4a74-b1ea-55c65c415b36/1/JQou0RQnyhZIM4Ur1JydtT1j5js.mft File: JQou0RQnyhZIM4Ur1JydtT1j5js.mft (raw, json) Hash identifier: nu8iA/Ttua20krkVMtuS5dE5o7R2UAIdjUIFUoOhyEo= Subject key identifier: 92:45:AC:D9:3E:EC:67:AF:96:22:C7:6A:ED:51:88:E5:22:3B:7D:7A Authority key identifier: 25:0A:2E:D1:14:27:CA:16:48:33:85:2B:D4:9C:9D:B5:3D:63:E6:3B Certificate issuer: /CN=250a2ed11427ca164833852bd49c9db53d63e63b Certificate serial: 019AF23FB4516745D10E2D28B151573759D8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JQou0RQnyhZIM4Ur1JydtT1j5js.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/b439ef-2cc5-4a74-b1ea-55c65c415b36/1/JQou0RQnyhZIM4Ur1JydtT1j5js.mft Manifest number: 02FE Signing time: Sat 06 Dec 2025 06:00:52 +0000 Manifest this update: Sat 06 Dec 2025 06:00:52 +0000 Manifest next update: Sun 07 Dec 2025 06:00:52 +0000 Files and hashes: 1: JQou0RQnyhZIM4Ur1JydtT1j5js.crl (hash: B2cObSkure0O5nvvH032Z3jzAk3Ico1ut9OGdrvM8Js=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/b439ef-2cc5-4a74-b1ea-55c65c415b36/1/JQou0RQnyhZIM4Ur1JydtT1j5js.crl rsync://rpki.ripe.net/repository/DEFAULT/ea/b439ef-2cc5-4a74-b1ea-55c65c415b36/1/JQou0RQnyhZIM4Ur1JydtT1j5js.mft rsync://rpki.ripe.net/repository/DEFAULT/JQou0RQnyhZIM4Ur1JydtT1j5js.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:3f:b4:51:67:45:d1:0e:2d:28:b1:51:57:37:59:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=250a2ed11427ca164833852bd49c9db53d63e63b Validity Not Before: Dec 6 06:00:52 2025 GMT Not After : Dec 7 06:00:52 2025 GMT Subject: CN=9245acd93eec67af9622c76aed5188e5223b7d7a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:9f:8c:ad:0d:92:0e:62:d2:1a:bb:d0:44:e1: 52:e8:dd:04:2f:be:85:5b:9c:e1:cc:94:0b:28:82: dd:cc:71:bf:df:d7:2b:e3:36:e3:9b:80:dc:41:99: bd:52:3e:9c:ca:1b:22:90:62:3a:c9:0d:a0:6c:45: d6:9b:a1:ee:90:fe:b8:c7:42:dc:ca:48:d9:9a:14: 75:ab:36:01:48:61:13:2c:c2:70:3c:1b:53:7a:47: 82:9b:87:14:8e:c2:38:d9:52:df:59:6e:63:45:08: 4e:33:b1:66:61:f1:3d:30:e1:69:56:0e:0b:c6:7f: 73:1a:88:e6:cd:23:63:4b:4b:3a:55:71:3e:74:a8: bd:ca:52:0a:f9:89:44:ea:b4:8e:bd:60:63:0c:69: 54:87:04:e9:5a:d2:f7:05:53:93:8b:55:94:c0:e3: 73:b9:e4:2e:84:d1:40:e8:aa:a9:0e:0b:de:be:49: b1:6e:40:ff:f1:3a:ad:54:cb:da:f7:64:28:dd:aa: 3a:5c:26:73:e2:9a:b9:c1:24:ca:cf:94:f1:17:54: a7:94:7d:76:17:95:80:f1:07:fd:cb:de:f0:dc:9f: 0e:a1:8e:06:ac:a8:f2:7e:88:12:b9:cb:71:dd:55: 99:5e:a2:27:b8:9e:cc:af:0c:92:aa:4e:1f:7a:40: fd:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:45:AC:D9:3E:EC:67:AF:96:22:C7:6A:ED:51:88:E5:22:3B:7D:7A X509v3 Authority Key Identifier: keyid:25:0A:2E:D1:14:27:CA:16:48:33:85:2B:D4:9C:9D:B5:3D:63:E6:3B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JQou0RQnyhZIM4Ur1JydtT1j5js.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/b439ef-2cc5-4a74-b1ea-55c65c415b36/1/JQou0RQnyhZIM4Ur1JydtT1j5js.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/b439ef-2cc5-4a74-b1ea-55c65c415b36/1/JQou0RQnyhZIM4Ur1JydtT1j5js.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 69:e6:62:73:78:4e:24:10:f3:cd:0f:8d:8a:24:c3:c9:14:1d: 11:c6:45:17:87:68:32:b8:ed:2c:f0:31:d4:65:ea:74:eb:ca: 2e:a1:2c:31:99:51:e4:ee:28:5c:d0:df:bb:7e:6e:12:76:52: 3d:80:47:37:b6:62:39:00:f9:59:d7:5e:e7:1c:fd:47:d8:f7: 6a:7b:61:9a:5e:e2:12:d2:fb:73:ab:65:9d:46:87:fe:93:e4: 82:be:66:86:97:a5:31:52:3c:77:5e:33:80:9a:dd:67:47:3e: 75:76:61:71:0a:34:9f:1f:4e:fc:71:0b:2c:19:6a:a2:f1:e0: 27:58:57:6b:43:57:00:aa:e5:73:ad:c2:2c:ef:13:17:13:61: d9:44:43:a1:e2:b5:3d:28:2f:a8:6f:e2:07:d6:cf:b2:26:91: 1d:48:9d:f2:14:9f:68:e7:3d:f6:83:2e:ec:1f:8f:fd:54:9c: fe:45:58:50:69:ba:06:79:3b:8f:59:06:da:7c:2c:e0:2d:d3: 66:2d:bb:8c:54:97:65:0c:f8:a7:b6:56:bb:3d:e0:9a:6d:91: 03:d0:09:43:08:8e:14:46:09:a7:a9:3b:ac:43:26:de:ad:59: 5a:c1:ae:22:27:60:f4:c1:92:75:68:23:40:29:3d:13:e9:b4: f3:5f:ec:e4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryP7RRZ0XRDi0osVFXN1nYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI1MGEyZWQxMTQyN2NhMTY0ODMzODUyYmQ0OWM5ZGI1M2Q2 M2U2M2IwHhcNMjUxMjA2MDYwMDUyWhcNMjUxMjA3MDYwMDUyWjAzMTEwLwYDVQQD Eyg5MjQ1YWNkOTNlZWM2N2FmOTYyMmM3NmFlZDUxODhlNTIyM2I3ZDdhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsJ+MrQ2SDmLSGrvQROFS6N0EL76F W5zhzJQLKILdzHG/39cr4zbjm4DcQZm9Uj6cyhsikGI6yQ2gbEXWm6HukP64x0Lc ykjZmhR1qzYBSGETLMJwPBtTekeCm4cUjsI42VLfWW5jRQhOM7FmYfE9MOFpVg4L xn9zGojmzSNjS0s6VXE+dKi9ylIK+YlE6rSOvWBjDGlUhwTpWtL3BVOTi1WUwONz ueQuhNFA6KqpDgvevkmxbkD/8TqtVMva92Qo3ao6XCZz4pq5wSTKz5TxF1SnlH12 F5WA8Qf9y97w3J8OoY4GrKjyfogSuctx3VWZXqInuJ7MrwySqk4fekD9VwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJJFrNk+7GevliLHau1RiOUiO316MB8GA1UdIwQY MBaAFCUKLtEUJ8oWSDOFK9ScnbU9Y+Y7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSlFvdTBSUW55aFpJTTRVcjFKeWR0VDFqNWpzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYS9iNDM5ZWYtMmNjNS00YTc0LWIxZWEt NTVjNjVjNDE1YjM2LzEvSlFvdTBSUW55aFpJTTRVcjFKeWR0VDFqNWpzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lYS9iNDM5ZWYtMmNjNS00YTc0LWIxZWEtNTVjNjVjNDE1YjM2 LzEvSlFvdTBSUW55aFpJTTRVcjFKeWR0VDFqNWpzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaeZic3hO JBDzzQ+NiiTDyRQdEcZFF4doMrjtLPAx1GXqdOvKLqEsMZlR5O4oXNDfu35uEnZS PYBHN7ZiOQD5Wdde5xz9R9j3anthml7iEtL7c6tlnUaH/pPkgr5mhpelMVI8d14z gJrdZ0c+dXZhcQo0nx9O/HELLBlqovHgJ1hXa0NXAKrlc63CLO8TFxNh2URDoeK1 PSgvqG/iB9bPsiaRHUid8hSfaOc99oMu7B+P/VSc/kVYUGm6Bnk7j1kG2nws4C3T Zi27jFSXZQz4p7ZWuz3gmm2RA9AJQwiOFEYJp6k7rEMm3q1ZWsGuIidg9MGSdWgj QCk9E+m081/s5A== -----END CERTIFICATE-----Generated at Sat Dec 6 07:49:07 2025 by rpki-client