This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.mft File: JY8HU8Azwa8JGGbQlCZFEmlspos.mft (raw, json) Hash identifier: +2RO2+pAKhM1eMP9mkyjc76PDoPn5K/M9sH+/Gjmftw= Subject key identifier: 51:F2:87:53:2E:3A:16:D9:B2:0F:9B:76:1D:0D:D9:12:CD:25:17:17 Authority key identifier: 25:8F:07:53:C0:33:C1:AF:09:18:66:D0:94:26:45:12:69:6C:A6:8B Certificate issuer: /CN=258f0753c033c1af091866d094264512696ca68b Certificate serial: 019B28C0106EA15EA0B64E55BD0AEB42D9E3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JY8HU8Azwa8JGGbQlCZFEmlspos.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.mft Manifest number: 0AC9 Signing time: Tue 16 Dec 2025 20:00:34 +0000 Manifest this update: Tue 16 Dec 2025 20:00:34 +0000 Manifest next update: Wed 17 Dec 2025 20:00:34 +0000 Files and hashes: 1: BQh7QT9BX7cTqXjHHhGh4E0jau4.roa (hash: ji+6a8qXV045VZtKjEfl6cGy7fTl7ME8scmY2gpWI2s=) 2: JY8HU8Azwa8JGGbQlCZFEmlspos.crl (hash: VkpsDgGTJCcs4ckYy86NoldavV+v57ubwBmbGIXJbIM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.crl rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.mft rsync://rpki.ripe.net/repository/DEFAULT/JY8HU8Azwa8JGGbQlCZFEmlspos.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 14:45:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:28:c0:10:6e:a1:5e:a0:b6:4e:55:bd:0a:eb:42:d9:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=258f0753c033c1af091866d094264512696ca68b Validity Not Before: Dec 16 20:00:34 2025 GMT Not After : Dec 17 20:00:34 2025 GMT Subject: CN=51f287532e3a16d9b20f9b761d0dd912cd251717 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:1d:7f:d8:2c:80:b1:35:c9:83:7f:3a:ea:48: 35:ef:8d:63:e3:60:2d:db:41:f1:26:79:fc:dc:8b: e4:bf:ab:c4:4e:f4:a1:f1:33:7e:0f:a1:67:92:49: 69:a1:e3:1f:8c:63:f9:56:3b:7f:94:fb:c9:bf:58: 7c:2e:7f:d6:ed:41:a5:d0:a4:67:94:29:d3:d3:83: 02:44:65:3e:6d:ff:c6:b0:80:fd:b5:19:3f:98:94: fa:30:bc:7b:18:f4:79:51:92:07:2a:45:70:ff:83: c6:c2:58:06:cd:11:6b:c7:38:fe:a5:c1:ef:42:6d: 2a:93:e0:f3:52:19:e7:f5:f2:a8:22:df:fa:97:f4: 19:e3:cf:f2:42:12:71:1a:7a:14:40:a7:32:7e:bc: c3:3e:95:b8:dd:c6:a9:e8:53:85:1f:74:eb:01:c5: 29:62:97:39:f5:fd:b0:a6:a8:70:91:4d:ca:48:99: e3:f0:13:05:bb:e2:32:33:98:04:ff:3f:71:68:1e: 35:56:69:9c:66:dd:ec:d4:91:3f:b7:55:10:96:ac: 83:f8:6e:cf:8f:02:d2:a0:c4:75:eb:c4:b6:12:d8: fe:2e:17:c2:93:dc:17:b7:28:d6:75:37:a4:2a:43: 91:b0:fa:2f:13:d7:17:a3:0c:33:7b:5f:69:96:b2: 31:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:F2:87:53:2E:3A:16:D9:B2:0F:9B:76:1D:0D:D9:12:CD:25:17:17 X509v3 Authority Key Identifier: keyid:25:8F:07:53:C0:33:C1:AF:09:18:66:D0:94:26:45:12:69:6C:A6:8B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JY8HU8Azwa8JGGbQlCZFEmlspos.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6b:53:dc:f6:ca:29:55:b4:f0:0b:bc:ac:ca:6d:00:a0:05:14: 25:92:26:bd:a1:f8:db:e8:8a:65:2f:ea:9f:ab:60:b5:60:c2: c7:96:6f:c2:98:91:4a:9e:8e:13:8e:70:ed:12:80:c8:89:21: 18:a1:9a:4e:09:4c:72:3c:ea:cc:fe:87:84:09:e9:7a:ff:ae: be:d6:de:62:9d:ed:cf:18:4a:9a:05:f3:8c:b5:73:7e:76:9e: d2:d8:6d:20:81:69:d7:c1:9b:2d:c4:66:df:78:8f:d9:a6:84: 28:0c:96:4f:1e:28:76:ae:01:9b:d7:38:0d:2e:17:f6:ad:cb: a0:0c:87:04:aa:48:92:8d:d0:24:12:c1:ce:bf:89:19:8e:05: c1:d2:ea:cc:bd:9d:c2:5a:42:85:f2:8e:13:ed:a3:d1:17:b3: 70:49:4d:3d:74:52:fa:f4:13:33:df:2d:a8:fd:04:33:6c:e9: 6b:0e:25:54:a8:30:95:c8:c7:fd:2f:ee:14:57:69:f5:c8:b0: f9:87:b3:0d:0d:b1:b3:01:50:07:a2:de:e1:4f:5e:34:07:23: cb:ae:ba:83:30:6d:2b:9e:2b:39:53:f0:92:01:dc:2a:29:34: 0e:0d:16:d1:d9:53:ad:86:f7:4c:2e:71:9a:ac:83:c6:b9:05: 9c:8f:be:e3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsowBBuoV6gtk5VvQrrQtnjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI1OGYwNzUzYzAzM2MxYWYwOTE4NjZkMDk0MjY0NTEyNjk2 Y2E2OGIwHhcNMjUxMjE2MjAwMDM0WhcNMjUxMjE3MjAwMDM0WjAzMTEwLwYDVQQD Eyg1MWYyODc1MzJlM2ExNmQ5YjIwZjliNzYxZDBkZDkxMmNkMjUxNzE3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAox1/2CyAsTXJg3866kg1741j42At 20HxJnn83Ivkv6vETvSh8TN+D6FnkklpoeMfjGP5Vjt/lPvJv1h8Ln/W7UGl0KRn lCnT04MCRGU+bf/GsID9tRk/mJT6MLx7GPR5UZIHKkVw/4PGwlgGzRFrxzj+pcHv Qm0qk+DzUhnn9fKoIt/6l/QZ48/yQhJxGnoUQKcyfrzDPpW43cap6FOFH3TrAcUp Ypc59f2wpqhwkU3KSJnj8BMFu+IyM5gE/z9xaB41VmmcZt3s1JE/t1UQlqyD+G7P jwLSoMR168S2Etj+LhfCk9wXtyjWdTekKkORsPovE9cXowwze19plrIxyQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFHyh1MuOhbZsg+bdh0N2RLNJRcXMB8GA1UdIwQY MBaAFCWPB1PAM8GvCRhm0JQmRRJpbKaLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSlk4SFU4QXp3YThKR0diUWxDWkZFbWxzcG9zLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZC8zYmFlODctODJlYi00NTFmLTgwNDQt MmMyZjBkMjRmOTM2LzEvSlk4SFU4QXp3YThKR0diUWxDWkZFbWxzcG9zLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZC8zYmFlODctODJlYi00NTFmLTgwNDQtMmMyZjBkMjRmOTM2 LzEvSlk4SFU4QXp3YThKR0diUWxDWkZFbWxzcG9zLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAa1Pc9sop VbTwC7ysym0AoAUUJZImvaH42+iKZS/qn6tgtWDCx5ZvwpiRSp6OE45w7RKAyIkh GKGaTglMcjzqzP6HhAnpev+uvtbeYp3tzxhKmgXzjLVzfnae0thtIIFp18GbLcRm 33iP2aaEKAyWTx4odq4Bm9c4DS4X9q3LoAyHBKpIko3QJBLBzr+JGY4FwdLqzL2d wlpChfKOE+2j0RezcElNPXRS+vQTM98tqP0EM2zpaw4lVKgwlcjH/S/uFFdp9ciw +YezDQ2xswFQB6Le4U9eNAcjy666gzBtK54rOVPwkgHcKik0Dg0W0dlTrYb3TC5x mqyDxrkFnI++4w== -----END CERTIFICATE-----Generated at Wed Dec 17 00:12:32 2025 by rpki-client