This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/be1fed-2e86-44a9-8a67-44b78e788deb/1/j_QxWS3s8oXDMtMGJTHA589hAsA.mft File: j_QxWS3s8oXDMtMGJTHA589hAsA.mft (raw, json) Hash identifier: pXqAwbkbqCT/1l4ypfki85AChku4rso5GdcGrcSmrUk= Subject key identifier: D4:7F:C7:EC:95:95:AD:AC:CE:0B:EB:00:07:FF:03:24:35:67:29:99 Authority key identifier: 8F:F4:31:59:2D:EC:F2:85:C3:32:D3:06:25:31:C0:E7:CF:61:02:C0 Certificate issuer: /CN=8ff431592decf285c332d3062531c0e7cf6102c0 Certificate serial: 019AF0519226358A482DEE133659E327A499 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j_QxWS3s8oXDMtMGJTHA589hAsA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/be1fed-2e86-44a9-8a67-44b78e788deb/1/j_QxWS3s8oXDMtMGJTHA589hAsA.mft Manifest number: 175F Signing time: Fri 05 Dec 2025 21:01:08 +0000 Manifest this update: Fri 05 Dec 2025 21:01:08 +0000 Manifest next update: Sat 06 Dec 2025 21:01:08 +0000 Files and hashes: 1: j_QxWS3s8oXDMtMGJTHA589hAsA.crl (hash: H3cfaDv9MKVaPSZEeH9n5FM1QXYJq081CzYtnaBuYrE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/be1fed-2e86-44a9-8a67-44b78e788deb/1/j_QxWS3s8oXDMtMGJTHA589hAsA.crl rsync://rpki.ripe.net/repository/DEFAULT/fe/be1fed-2e86-44a9-8a67-44b78e788deb/1/j_QxWS3s8oXDMtMGJTHA589hAsA.mft rsync://rpki.ripe.net/repository/DEFAULT/j_QxWS3s8oXDMtMGJTHA589hAsA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 21:01:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f0:51:92:26:35:8a:48:2d:ee:13:36:59:e3:27:a4:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8ff431592decf285c332d3062531c0e7cf6102c0 Validity Not Before: Dec 5 21:01:08 2025 GMT Not After : Dec 6 21:01:08 2025 GMT Subject: CN=d47fc7ec9595adacce0beb0007ff032435672999 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:9d:6e:42:b8:ec:16:1a:74:08:69:6f:4a:6a: 5f:09:cf:d8:ea:f7:15:16:30:d5:f3:1b:1b:51:e3: 92:d5:a6:e5:5a:6c:c2:21:99:56:2d:0e:d7:11:b4: 0b:d5:ad:ca:27:6a:a2:69:cd:a6:38:f4:c3:f8:f4: 0d:15:9b:ae:90:28:a8:f1:f7:59:86:00:f4:a8:5d: 48:13:71:6f:b7:10:f4:0d:90:37:a7:43:c0:41:39: f2:f5:1e:d9:e1:6d:86:67:3f:ac:6a:b6:19:5f:71: c1:48:7e:6f:8e:72:3f:25:03:d5:4e:85:f1:9e:25: 5c:16:68:a0:e7:91:19:ab:1f:3a:69:de:9a:6e:35: ac:db:33:98:ec:30:2d:90:6a:f1:0f:bc:e7:52:3c: d8:49:3e:9d:04:74:0d:e6:4f:83:a3:e8:7a:98:92: 40:a0:68:51:07:7b:bb:02:65:bb:a3:03:41:e5:e8: 57:65:3e:df:ae:33:43:ff:f2:58:f8:8b:f8:f0:da: 5d:89:6d:65:ec:65:8c:d0:e0:9b:5b:1b:c9:10:08: 66:c6:bc:14:ac:5a:6c:12:6f:8d:e4:2b:03:c2:49: 06:93:8d:96:c0:ed:f8:2a:a3:a2:8d:11:ca:1f:cf: 63:c8:93:59:2b:25:16:46:59:1c:00:b8:a3:5f:d2: b2:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:7F:C7:EC:95:95:AD:AC:CE:0B:EB:00:07:FF:03:24:35:67:29:99 X509v3 Authority Key Identifier: keyid:8F:F4:31:59:2D:EC:F2:85:C3:32:D3:06:25:31:C0:E7:CF:61:02:C0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j_QxWS3s8oXDMtMGJTHA589hAsA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/be1fed-2e86-44a9-8a67-44b78e788deb/1/j_QxWS3s8oXDMtMGJTHA589hAsA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/be1fed-2e86-44a9-8a67-44b78e788deb/1/j_QxWS3s8oXDMtMGJTHA589hAsA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 51:42:fd:0b:27:77:44:68:8e:72:a4:5e:28:2b:08:b9:e8:66: 6e:36:2b:c6:3f:51:5b:e7:6d:91:20:46:fd:38:fd:e3:1f:eb: 1d:8a:33:48:2e:65:1f:27:74:05:81:0b:3a:2f:9e:65:27:a5: 4d:48:ab:79:56:f5:a6:fa:6e:56:2a:86:03:f0:98:a2:21:ac: ad:af:61:4c:a4:aa:dc:28:19:ab:ea:3c:cd:5e:e6:b0:ee:5d: 47:db:85:8a:f7:f9:c0:29:cc:c1:b3:0f:6b:67:ca:24:46:45: ea:e2:1f:42:da:7d:73:6b:c0:da:6e:67:a4:e6:75:12:ca:7c: 7d:bc:a7:39:5b:f3:4b:c8:d0:aa:24:7e:df:6c:9a:58:07:da: 37:57:16:66:61:65:72:28:c0:71:a3:39:ba:e4:d4:05:59:37: b8:00:5a:e2:5d:57:87:d6:75:3e:6f:6d:3b:09:d3:e3:8a:a8: 8b:76:d9:73:a3:10:d6:08:c4:97:71:05:ed:58:f0:e3:31:67: 14:23:e3:35:bb:ff:87:08:b2:53:bf:7a:a3:7a:0d:42:46:f7: 38:77:3c:f8:04:0e:1f:e1:e7:9a:3b:f2:b9:db:84:7f:35:5a: 87:c0:1d:66:be:d4:0b:7f:5c:29:1b:91:c0:00:bf:f7:fd:f3: d8:24:39:09 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrwUZImNYpILe4TNlnjJ6SZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhmZjQzMTU5MmRlY2YyODVjMzMyZDMwNjI1MzFjMGU3Y2Y2 MTAyYzAwHhcNMjUxMjA1MjEwMTA4WhcNMjUxMjA2MjEwMTA4WjAzMTEwLwYDVQQD EyhkNDdmYzdlYzk1OTVhZGFjY2UwYmViMDAwN2ZmMDMyNDM1NjcyOTk5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx51uQrjsFhp0CGlvSmpfCc/Y6vcV FjDV8xsbUeOS1ablWmzCIZlWLQ7XEbQL1a3KJ2qiac2mOPTD+PQNFZuukCio8fdZ hgD0qF1IE3FvtxD0DZA3p0PAQTny9R7Z4W2GZz+sarYZX3HBSH5vjnI/JQPVToXx niVcFmig55EZqx86ad6abjWs2zOY7DAtkGrxD7znUjzYST6dBHQN5k+Do+h6mJJA oGhRB3u7AmW7owNB5ehXZT7frjND//JY+Iv48NpdiW1l7GWM0OCbWxvJEAhmxrwU rFpsEm+N5CsDwkkGk42WwO34KqOijRHKH89jyJNZKyUWRlkcALijX9KyQQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNR/x+yVla2szgvrAAf/AyQ1ZymZMB8GA1UdIwQY MBaAFI/0MVkt7PKFwzLTBiUxwOfPYQLAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQval9ReFdTM3M4b1hETXRNR0pUSEE1ODloQXNBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS9iZTFmZWQtMmU4Ni00NGE5LThhNjct NDRiNzhlNzg4ZGViLzEval9ReFdTM3M4b1hETXRNR0pUSEE1ODloQXNBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZS9iZTFmZWQtMmU4Ni00NGE5LThhNjctNDRiNzhlNzg4ZGVi LzEval9ReFdTM3M4b1hETXRNR0pUSEE1ODloQXNBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUUL9Cyd3 RGiOcqReKCsIuehmbjYrxj9RW+dtkSBG/Tj94x/rHYozSC5lHyd0BYELOi+eZSel TUireVb1pvpuViqGA/CYoiGsra9hTKSq3CgZq+o8zV7msO5dR9uFivf5wCnMwbMP a2fKJEZF6uIfQtp9c2vA2m5npOZ1Esp8fbynOVvzS8jQqiR+32yaWAfaN1cWZmFl cijAcaM5uuTUBVk3uABa4l1Xh9Z1Pm9tOwnT44qoi3bZc6MQ1gjEl3EF7Vjw4zFn FCPjNbv/hwiyU796o3oNQkb3OHc8+AQOH+HnmjvyuduEfzVah8AdZr7UC39cKRuR wAC/9/3z2CQ5CQ== -----END CERTIFICATE-----Generated at Sat Dec 6 07:10:37 2025 by rpki-client