This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/227b53-473d-46af-8201-98e879ea3726/1/jbK0TyPcypwGBL7WkPKKatkBeZk.mft File: jbK0TyPcypwGBL7WkPKKatkBeZk.mft (raw, json) Hash identifier: oYKZ0raxpug0UIHo3sjJrn3GG1/wO4XA0GxkJ/jWD2w= Subject key identifier: 0A:59:4E:83:47:9E:47:9B:3F:50:55:7D:00:60:BD:EB:8F:09:8C:44 Authority key identifier: 8D:B2:B4:4F:23:DC:CA:9C:06:04:BE:D6:90:F2:8A:6A:D9:01:79:99 Certificate issuer: /CN=8db2b44f23dcca9c0604bed690f28a6ad9017999 Certificate serial: 019B34C5BD32D4A239626BC943400B70BFE7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jbK0TyPcypwGBL7WkPKKatkBeZk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/227b53-473d-46af-8201-98e879ea3726/1/jbK0TyPcypwGBL7WkPKKatkBeZk.mft Manifest number: 64 Signing time: Fri 19 Dec 2025 04:02:12 +0000 Manifest this update: Fri 19 Dec 2025 04:02:12 +0000 Manifest next update: Sat 20 Dec 2025 04:02:12 +0000 Files and hashes: 1: 5WohgI8tokdWePAAZwHEQvswWYU.roa (hash: eFTYXxWMtPfD9bURTpn9aVW+rjoqm6VU8HSnGT9lP2I=) 2: jbK0TyPcypwGBL7WkPKKatkBeZk.crl (hash: /670mF+Q0aAcuS6YWc23agqqwrcyTbqe/dLoFy/QZRY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/227b53-473d-46af-8201-98e879ea3726/1/jbK0TyPcypwGBL7WkPKKatkBeZk.crl rsync://rpki.ripe.net/repository/DEFAULT/19/227b53-473d-46af-8201-98e879ea3726/1/jbK0TyPcypwGBL7WkPKKatkBeZk.mft rsync://rpki.ripe.net/repository/DEFAULT/jbK0TyPcypwGBL7WkPKKatkBeZk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 04:02:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:34:c5:bd:32:d4:a2:39:62:6b:c9:43:40:0b:70:bf:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8db2b44f23dcca9c0604bed690f28a6ad9017999 Validity Not Before: Dec 19 04:02:12 2025 GMT Not After : Dec 20 04:02:12 2025 GMT Subject: CN=0a594e83479e479b3f50557d0060bdeb8f098c44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:d6:9c:f7:0b:41:4b:7e:bb:a5:f6:09:8b:2a: ca:df:4b:52:10:12:ad:25:b5:e2:09:63:f8:ee:90: 20:98:cd:64:44:f0:e7:7b:e6:7a:64:09:bf:1b:46: 19:6a:8a:4a:5f:c3:86:2f:8d:ae:80:7c:c2:2d:b2: 1a:32:86:ab:04:9a:58:70:94:45:5b:83:70:de:94: ca:31:b2:72:f7:67:4f:22:ad:3b:68:e4:e9:8b:71: a0:98:a2:e5:d4:2f:f7:d8:ac:eb:cb:5d:a0:88:15: 08:aa:a4:00:29:35:c2:7e:fc:10:2b:16:22:0c:b9: 4c:07:42:52:49:12:2d:2d:33:c5:60:25:13:a3:67: 00:ec:6e:a8:a3:b4:e3:3a:52:fa:cc:1e:7c:2a:fc: 2b:d2:65:a8:6d:a9:e5:36:82:d1:5f:16:1e:ca:88: a2:d8:cc:08:89:6b:2e:3a:d1:75:3d:3a:1f:23:5a: 60:f6:23:bb:7f:d4:b4:58:8c:98:83:4b:51:0c:f7: 2c:e5:0c:95:99:c4:b9:dd:2a:2a:9a:c7:70:74:1d: 5e:eb:44:ce:a8:97:d1:89:f3:61:6c:de:1e:78:cc: 74:d3:14:65:97:4a:9c:fe:68:8b:87:ca:88:bb:a3: cd:82:00:2f:2c:36:55:0b:1e:60:5e:ce:d0:0f:b7: 0f:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:59:4E:83:47:9E:47:9B:3F:50:55:7D:00:60:BD:EB:8F:09:8C:44 X509v3 Authority Key Identifier: keyid:8D:B2:B4:4F:23:DC:CA:9C:06:04:BE:D6:90:F2:8A:6A:D9:01:79:99 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jbK0TyPcypwGBL7WkPKKatkBeZk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/227b53-473d-46af-8201-98e879ea3726/1/jbK0TyPcypwGBL7WkPKKatkBeZk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/19/227b53-473d-46af-8201-98e879ea3726/1/jbK0TyPcypwGBL7WkPKKatkBeZk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 45:9c:c8:c1:42:cc:ae:1f:ca:ae:a6:2b:67:fa:e3:42:20:fe: ae:bf:5d:45:0a:c5:a6:f6:5c:e9:c7:ab:8e:c5:46:3c:86:38: 16:88:2c:23:df:12:eb:b8:be:9a:3c:1e:c6:34:c5:58:a7:d0: e6:fe:d2:29:e7:d7:bb:44:dd:e5:65:43:3f:0f:72:3a:04:1a: 0c:7d:f6:98:6b:71:71:f9:61:c5:23:3c:5f:9e:2f:bd:7c:09: 90:af:43:d7:d6:0c:59:1f:59:53:d9:53:31:dd:45:1e:5f:00: 28:83:d1:42:3c:76:8c:c9:43:3b:41:13:2e:66:51:ef:8b:e2: 10:66:19:48:02:b4:fc:4b:1b:38:97:f6:3b:a1:bd:c7:09:8f: 57:1b:8b:3c:7c:ca:d5:79:b3:b5:f2:86:42:e1:cd:1c:f3:d9: 8a:56:67:eb:05:89:2a:b4:14:c5:4c:6c:1a:6e:8e:42:b5:22: 83:cb:9d:a6:90:57:38:17:46:0e:a8:a4:62:bf:70:88:9f:75: 3c:8d:67:4f:6e:37:c7:ef:82:ff:62:bd:8a:9c:f1:73:0c:a7: 94:e6:09:c3:97:89:9e:51:ec:5a:fc:fb:18:63:41:f6:15:3d: d3:a6:36:b9:b1:f1:56:d0:c9:e9:78:8d:c9:45:7f:2d:7d:3f: 28:53:d7:f7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs0xb0y1KI5YmvJQ0ALcL/nMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhkYjJiNDRmMjNkY2NhOWMwNjA0YmVkNjkwZjI4YTZhZDkw MTc5OTkwHhcNMjUxMjE5MDQwMjEyWhcNMjUxMjIwMDQwMjEyWjAzMTEwLwYDVQQD EygwYTU5NGU4MzQ3OWU0NzliM2Y1MDU1N2QwMDYwYmRlYjhmMDk4YzQ0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAttac9wtBS367pfYJiyrK30tSEBKt JbXiCWP47pAgmM1kRPDne+Z6ZAm/G0YZaopKX8OGL42ugHzCLbIaMoarBJpYcJRF W4Nw3pTKMbJy92dPIq07aOTpi3GgmKLl1C/32Kzry12giBUIqqQAKTXCfvwQKxYi DLlMB0JSSRItLTPFYCUTo2cA7G6oo7TjOlL6zB58Kvwr0mWobanlNoLRXxYeyoii 2MwIiWsuOtF1PTofI1pg9iO7f9S0WIyYg0tRDPcs5QyVmcS53SoqmsdwdB1e60TO qJfRifNhbN4eeMx00xRll0qc/miLh8qIu6PNggAvLDZVCx5gXs7QD7cPzQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFApZToNHnkebP1BVfQBgveuPCYxEMB8GA1UdIwQY MBaAFI2ytE8j3MqcBgS+1pDyimrZAXmZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvamJLMFR5UGN5cHdHQkw3V2tQS0thdGtCZVprLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOS8yMjdiNTMtNDczZC00NmFmLTgyMDEt OThlODc5ZWEzNzI2LzEvamJLMFR5UGN5cHdHQkw3V2tQS0thdGtCZVprLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xOS8yMjdiNTMtNDczZC00NmFmLTgyMDEtOThlODc5ZWEzNzI2 LzEvamJLMFR5UGN5cHdHQkw3V2tQS0thdGtCZVprLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARZzIwULM rh/KrqYrZ/rjQiD+rr9dRQrFpvZc6cerjsVGPIY4FogsI98S67i+mjwexjTFWKfQ 5v7SKefXu0Td5WVDPw9yOgQaDH32mGtxcflhxSM8X54vvXwJkK9D19YMWR9ZU9lT Md1FHl8AKIPRQjx2jMlDO0ETLmZR74viEGYZSAK0/EsbOJf2O6G9xwmPVxuLPHzK 1XmztfKGQuHNHPPZilZn6wWJKrQUxUxsGm6OQrUig8udppBXOBdGDqikYr9wiJ91 PI1nT243x++C/2K9ipzxcwynlOYJw5eJnlHsWvz7GGNB9hU906Y2ubHxVtDJ6XiN yUV/LX0/KFPX9w== -----END CERTIFICATE-----Generated at Fri Dec 19 11:31:15 2025 by rpki-client