This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/jbNHdLAZeShP2edU_qaPo8YXg9A.mft File: jbNHdLAZeShP2edU_qaPo8YXg9A.mft (raw, json) Hash identifier: K2hK+QWPgfq+LwjJVC5dUhnNrJywaEyDs+IThyh2ViM= Subject key identifier: 5D:14:43:18:13:D9:E9:C1:D2:8D:CD:CA:27:80:95:DA:78:A0:8F:4B Authority key identifier: 8D:B3:47:74:B0:19:79:28:4F:D9:E7:54:FE:A6:8F:A3:C6:17:83:D0 Certificate issuer: /CN=8db34774b01979284fd9e754fea68fa3c61783d0 Certificate serial: 019B2A77E364A35364CAC44A64467FB4A173 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jbNHdLAZeShP2edU_qaPo8YXg9A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/jbNHdLAZeShP2edU_qaPo8YXg9A.mft Manifest number: 17C9 Signing time: Wed 17 Dec 2025 04:00:58 +0000 Manifest this update: Wed 17 Dec 2025 04:00:58 +0000 Manifest next update: Thu 18 Dec 2025 04:00:58 +0000 Files and hashes: 1: J8HqZbweBSBfotj9M3AMH0o24CY.roa (hash: KkFoXwUHnXFgQiJUTdylT6bFXV0tnmXRuocNWtuhH7k=) 2: M8LXMZl36E9x_u1hgBXprwim-Xo.roa (hash: jfo88yC1004DLH8yvbxNuNrVELZRrvbkyGohjnl520k=) 3: aXs8DBYHqH16kFI25mAmO1bJxx4.roa (hash: d1LoCC9lmf7ZBBsN52kpeKsNgpbykeADMERL6qdd4Bg=) 4: jbNHdLAZeShP2edU_qaPo8YXg9A.crl (hash: lary2kG6LcAmat29OEgigdhMbn8FNQyywcUOMceh58E=) 5: opKQFgTi4yK3l6BnztB63xP7vXs.roa (hash: LXsD7aGo98YI1mNDHZW1vUliYlW4Jhd/o/GSdARAozA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/jbNHdLAZeShP2edU_qaPo8YXg9A.crl rsync://rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/jbNHdLAZeShP2edU_qaPo8YXg9A.mft rsync://rpki.ripe.net/repository/DEFAULT/jbNHdLAZeShP2edU_qaPo8YXg9A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 04:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2a:77:e3:64:a3:53:64:ca:c4:4a:64:46:7f:b4:a1:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8db34774b01979284fd9e754fea68fa3c61783d0 Validity Not Before: Dec 17 04:00:58 2025 GMT Not After : Dec 18 04:00:58 2025 GMT Subject: CN=5d14431813d9e9c1d28dcdca278095da78a08f4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:78:3e:6a:f5:1f:15:f6:dd:e3:aa:c8:0f:2c: a2:e9:5c:92:be:48:91:b7:70:25:71:ec:77:4b:c3: 21:9d:82:47:44:3e:1f:d0:a1:13:45:c0:61:20:6f: 07:ce:72:8a:3e:dd:fa:0e:d2:fc:a2:97:cb:62:f6: e4:3f:c1:45:71:ca:b7:af:91:05:45:cf:25:30:e7: dc:5c:f3:62:c7:08:46:fb:fb:d9:9b:62:be:34:4b: 6d:19:e9:84:f9:a4:13:75:30:79:5e:b6:1a:f8:84: 9e:3a:cc:16:2a:26:2f:08:72:a8:b4:98:63:75:ae: b4:5d:b4:1c:a7:11:9b:e2:70:83:5a:eb:c7:81:29: bd:5d:d5:c4:33:35:94:0d:5d:0a:23:0d:8b:85:3c: 29:bd:2d:85:54:23:04:70:4f:92:69:5d:28:86:23: 66:de:45:d0:96:ed:c3:4c:f4:8c:b1:dd:91:7a:a1: 66:01:1c:6d:e8:de:de:6c:4d:3f:9d:0f:1b:0c:be: 89:14:55:a7:19:8a:0f:09:03:a9:96:cd:cb:cd:7e: 23:79:3e:f7:cf:00:5e:d4:dd:38:1d:8c:41:f8:6f: a6:cb:dd:a1:87:c0:54:d4:ef:2e:0a:37:c4:48:b8: fe:6f:b3:1d:dd:0f:a1:65:8d:49:61:1a:9a:29:43: 3a:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:14:43:18:13:D9:E9:C1:D2:8D:CD:CA:27:80:95:DA:78:A0:8F:4B X509v3 Authority Key Identifier: keyid:8D:B3:47:74:B0:19:79:28:4F:D9:E7:54:FE:A6:8F:A3:C6:17:83:D0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jbNHdLAZeShP2edU_qaPo8YXg9A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/jbNHdLAZeShP2edU_qaPo8YXg9A.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/jbNHdLAZeShP2edU_qaPo8YXg9A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 28:14:6e:eb:3c:94:40:53:8c:20:e0:76:5c:36:75:a8:1f:b6: e0:f3:d6:06:d6:63:d3:68:c5:b7:9d:7c:65:99:d7:de:c5:d2: 65:4a:63:fd:d0:75:50:1a:12:1e:6c:4d:3a:3a:ab:46:34:30: 04:87:cb:6a:8c:22:a0:22:9b:29:a8:c8:bb:d5:c2:79:b4:d4: 6c:3f:ad:db:8d:37:f5:6a:3b:47:b3:5f:64:1c:c9:79:96:72: b2:78:d5:f0:7e:6b:2c:f6:64:49:85:7d:bf:24:fe:06:da:3c: eb:16:b6:5b:c7:50:6a:c9:38:96:33:f1:3e:cd:4a:85:9e:f2: 94:cb:bf:e8:5e:7c:f9:b5:bc:a6:22:ab:09:eb:a4:70:4b:ef: 7d:00:3e:8d:44:e0:50:c7:18:4d:4b:29:65:11:73:68:c0:fa: 52:26:53:f5:aa:4b:9b:5b:d1:78:29:f9:cd:20:c5:da:e2:9d: b0:2b:f6:ff:74:16:5e:ad:e9:1d:1f:c2:46:26:08:4c:c2:f8: 32:68:5c:ec:07:a1:48:0a:aa:b3:b4:57:38:fc:b0:20:0c:a5: 3f:0d:20:f6:05:e5:38:e6:e7:d7:70:28:69:15:be:ee:9a:bb: 42:66:67:43:bd:26:5a:b5:39:7f:20:39:6e:48:12:1c:07:a1: 76:07:bc:00 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsqd+Nko1NkysRKZEZ/tKFzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhkYjM0Nzc0YjAxOTc5Mjg0ZmQ5ZTc1NGZlYTY4ZmEzYzYx NzgzZDAwHhcNMjUxMjE3MDQwMDU4WhcNMjUxMjE4MDQwMDU4WjAzMTEwLwYDVQQD Eyg1ZDE0NDMxODEzZDllOWMxZDI4ZGNkY2EyNzgwOTVkYTc4YTA4ZjRiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2Hg+avUfFfbd46rIDyyi6VySvkiR t3Alcex3S8MhnYJHRD4f0KETRcBhIG8HznKKPt36DtL8opfLYvbkP8FFccq3r5EF Rc8lMOfcXPNixwhG+/vZm2K+NEttGemE+aQTdTB5XrYa+ISeOswWKiYvCHKotJhj da60XbQcpxGb4nCDWuvHgSm9XdXEMzWUDV0KIw2LhTwpvS2FVCMEcE+SaV0ohiNm 3kXQlu3DTPSMsd2ReqFmARxt6N7ebE0/nQ8bDL6JFFWnGYoPCQOpls3LzX4jeT73 zwBe1N04HYxB+G+my92hh8BU1O8uCjfESLj+b7Md3Q+hZY1JYRqaKUM65wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFF0UQxgT2enB0o3NyieAldp4oI9LMB8GA1UdIwQY MBaAFI2zR3SwGXkoT9nnVP6mj6PGF4PQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvamJOSGRMQVplU2hQMmVkVV9xYVBvOFlYZzlBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNy83MGE4ZjEtZDhlYi00MmI1LWJkZGIt NjI2NTUyMWY2ZGY3LzEvamJOSGRMQVplU2hQMmVkVV9xYVBvOFlYZzlBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNy83MGE4ZjEtZDhlYi00MmI1LWJkZGItNjI2NTUyMWY2ZGY3 LzEvamJOSGRMQVplU2hQMmVkVV9xYVBvOFlYZzlBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKBRu6zyU QFOMIOB2XDZ1qB+24PPWBtZj02jFt518ZZnX3sXSZUpj/dB1UBoSHmxNOjqrRjQw BIfLaowioCKbKajIu9XCebTUbD+t24039Wo7R7NfZBzJeZZysnjV8H5rLPZkSYV9 vyT+Bto86xa2W8dQask4ljPxPs1KhZ7ylMu/6F58+bW8piKrCeukcEvvfQA+jUTg UMcYTUspZRFzaMD6UiZT9apLm1vReCn5zSDF2uKdsCv2/3QWXq3pHR/CRiYITML4 Mmhc7AehSAqqs7RXOPywIAylPw0g9gXlOObn13AoaRW+7pq7QmZnQ70mWrU5fyA5 bkgSHAehdge8AA== -----END CERTIFICATE-----Generated at Wed Dec 17 13:27:06 2025 by rpki-client