This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/3719f3-22e1-4344-9a39-458a2736157a/1/JY9ajila0de0ih4RlYeQBStXolM.mft File: JY9ajila0de0ih4RlYeQBStXolM.mft (raw, json) Hash identifier: V6xWOpTrHuyILav4SVPr/vbm96HJcB0Z4tFOpBnnh/k= Subject key identifier: 94:00:EB:3B:02:B7:98:13:C9:0D:31:04:D9:BD:11:2D:87:45:F8:A7 Authority key identifier: 25:8F:5A:8E:29:5A:D1:D7:B4:8A:1E:11:95:87:90:05:2B:57:A2:53 Certificate issuer: /CN=258f5a8e295ad1d7b48a1e11958790052b57a253 Certificate serial: 019B3833649B0BE408797C741499E9E952DF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JY9ajila0de0ih4RlYeQBStXolM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/3719f3-22e1-4344-9a39-458a2736157a/1/JY9ajila0de0ih4RlYeQBStXolM.mft Manifest number: 16DD Signing time: Fri 19 Dec 2025 20:00:50 +0000 Manifest this update: Fri 19 Dec 2025 20:00:50 +0000 Manifest next update: Sat 20 Dec 2025 20:00:50 +0000 Files and hashes: 1: HL0tpswU2gQezd0-x9ZWDdfR-RY.roa (hash: NAIPlF1KgdG7sggbmAwv2GRB6aTgtE/arOeqKYJF690=) 2: JY9ajila0de0ih4RlYeQBStXolM.crl (hash: jCYyixf6lM200tbL2qFvJ7B+2KOdPhpJ0UchoYuhfQk=) 3: X5-jl_Od0mEO_dSg7rALYkevjoQ.roa (hash: xqc4fnPLjvYYKZxEv5pbNLPSZEhrMf7SnWN3fQ6sCO8=) 4: ljF5u-YRkQFhR1-JzkqgY4rX8fg.roa (hash: yARJg/r5KzAJTCBC6Aa8YbBreZ5SqvZOXFrSvclMQ38=) 5: s_QDIrLshBQNlu6RPwCemGYvy74.roa (hash: 6Y18bq+vtApdDZHTDEQgo5JwDFt4pJR0lVY1yqjzjsk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/3719f3-22e1-4344-9a39-458a2736157a/1/JY9ajila0de0ih4RlYeQBStXolM.crl rsync://rpki.ripe.net/repository/DEFAULT/3b/3719f3-22e1-4344-9a39-458a2736157a/1/JY9ajila0de0ih4RlYeQBStXolM.mft rsync://rpki.ripe.net/repository/DEFAULT/JY9ajila0de0ih4RlYeQBStXolM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 16:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:38:33:64:9b:0b:e4:08:79:7c:74:14:99:e9:e9:52:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=258f5a8e295ad1d7b48a1e11958790052b57a253 Validity Not Before: Dec 19 20:00:50 2025 GMT Not After : Dec 20 20:00:50 2025 GMT Subject: CN=9400eb3b02b79813c90d3104d9bd112d8745f8a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:4c:62:09:f2:55:cc:84:ff:83:65:a4:76:15: 5c:1c:0e:6a:c2:ae:7e:71:70:e8:c2:65:ad:31:7d: a0:c2:99:4d:42:48:34:20:ee:55:7c:5b:5c:0a:2e: 51:58:bd:44:b4:26:b5:21:d6:ed:34:ce:b3:2b:de: 4b:30:31:bd:cb:25:f3:8a:60:91:fb:8d:56:e8:ae: ec:80:e6:4d:5d:11:29:b6:ab:97:a6:af:c9:88:54: fb:f3:65:8f:f2:11:5e:86:81:30:f6:61:5e:b4:78: 21:94:b1:42:93:c3:84:c3:8f:9a:50:43:cb:f1:0c: 70:ff:f9:b3:d2:b7:e3:c9:a6:35:f2:b3:83:f4:81: 6c:18:3b:a4:7a:2b:22:f9:8d:e7:12:f3:3c:95:79: cd:28:86:6f:1c:54:2e:79:fc:75:0e:90:c4:0a:c8: 1b:ea:99:c9:6f:8a:67:6f:a7:33:2d:a2:0f:82:fb: 9c:81:e5:60:72:1a:64:f9:64:15:ac:8b:ce:fa:fd: 68:2e:5f:af:0b:a8:2e:52:06:ae:1d:16:7c:38:44: e8:a0:9f:9f:66:d2:9e:a6:b6:26:18:a9:7d:3f:c3: 19:cb:74:3d:57:06:1e:fb:04:31:d8:ef:a4:9b:6d: 9e:e5:d9:0c:1f:11:9d:ff:c1:26:a8:71:ff:56:d7: bb:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:00:EB:3B:02:B7:98:13:C9:0D:31:04:D9:BD:11:2D:87:45:F8:A7 X509v3 Authority Key Identifier: keyid:25:8F:5A:8E:29:5A:D1:D7:B4:8A:1E:11:95:87:90:05:2B:57:A2:53 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JY9ajila0de0ih4RlYeQBStXolM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/3719f3-22e1-4344-9a39-458a2736157a/1/JY9ajila0de0ih4RlYeQBStXolM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/3719f3-22e1-4344-9a39-458a2736157a/1/JY9ajila0de0ih4RlYeQBStXolM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 45:3b:3f:b2:74:1b:63:d6:a7:74:ec:07:4f:6f:73:55:6a:69: cc:48:70:7d:45:03:48:96:3f:fe:9c:f7:0a:a2:7a:05:2a:3f: 5f:d7:10:6d:97:b1:43:9c:b1:61:6c:61:a0:bc:ff:c5:53:13: 65:c3:f5:86:6a:cf:90:ef:b7:fa:da:77:0e:28:15:a8:ef:c1: f1:3c:c9:31:96:be:18:1f:3c:43:8a:eb:07:5c:3c:82:fc:1f: b3:7e:de:e7:b4:d0:c8:80:20:90:90:67:6a:b2:c7:0f:ce:35: 7c:4e:06:a4:03:1e:a8:5f:9a:dc:ef:c7:1b:e4:f9:2f:a2:6d: 5d:50:f7:cd:13:29:a6:e3:59:54:6a:40:6c:df:38:62:9d:94: d2:5f:f1:de:31:2d:0d:46:cc:d2:b3:3a:5b:c5:b6:d9:e0:bd: 4b:a9:1e:7a:4c:27:87:df:5a:1f:94:fd:b9:85:7f:1c:7a:ff: cd:1e:a7:fe:d3:d7:87:87:69:ac:b7:ff:0a:ea:0b:e4:e6:00: b3:d0:b4:3f:02:26:88:33:47:72:f4:c9:3e:a4:52:81:2b:9a: 4c:41:ca:af:1a:b3:39:5b:73:8b:c9:b1:18:f9:bf:d1:ef:8b: 79:87:34:2e:78:49:69:89:d3:f4:07:07:55:f9:6f:1d:69:93: 9e:de:6a:ae -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs4M2SbC+QIeXx0FJnp6VLfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI1OGY1YThlMjk1YWQxZDdiNDhhMWUxMTk1ODc5MDA1MmI1 N2EyNTMwHhcNMjUxMjE5MjAwMDUwWhcNMjUxMjIwMjAwMDUwWjAzMTEwLwYDVQQD Eyg5NDAwZWIzYjAyYjc5ODEzYzkwZDMxMDRkOWJkMTEyZDg3NDVmOGE3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp0xiCfJVzIT/g2WkdhVcHA5qwq5+ cXDowmWtMX2gwplNQkg0IO5VfFtcCi5RWL1EtCa1IdbtNM6zK95LMDG9yyXzimCR +41W6K7sgOZNXREptquXpq/JiFT782WP8hFehoEw9mFetHghlLFCk8OEw4+aUEPL 8Qxw//mz0rfjyaY18rOD9IFsGDukeisi+Y3nEvM8lXnNKIZvHFQuefx1DpDECsgb 6pnJb4pnb6czLaIPgvucgeVgchpk+WQVrIvO+v1oLl+vC6guUgauHRZ8OETooJ+f ZtKeprYmGKl9P8MZy3Q9VwYe+wQx2O+km22e5dkMHxGd/8EmqHH/Vte7bwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJQA6zsCt5gTyQ0xBNm9ES2HRfinMB8GA1UdIwQY MBaAFCWPWo4pWtHXtIoeEZWHkAUrV6JTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSlk5YWppbGEwZGUwaWg0UmxZZVFCU3RYb2xNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYi8zNzE5ZjMtMjJlMS00MzQ0LTlhMzkt NDU4YTI3MzYxNTdhLzEvSlk5YWppbGEwZGUwaWg0UmxZZVFCU3RYb2xNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYi8zNzE5ZjMtMjJlMS00MzQ0LTlhMzktNDU4YTI3MzYxNTdh LzEvSlk5YWppbGEwZGUwaWg0UmxZZVFCU3RYb2xNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARTs/snQb Y9andOwHT29zVWppzEhwfUUDSJY//pz3CqJ6BSo/X9cQbZexQ5yxYWxhoLz/xVMT ZcP1hmrPkO+3+tp3DigVqO/B8TzJMZa+GB88Q4rrB1w8gvwfs37e57TQyIAgkJBn arLHD841fE4GpAMeqF+a3O/HG+T5L6JtXVD3zRMppuNZVGpAbN84Yp2U0l/x3jEt DUbM0rM6W8W22eC9S6keekwnh99aH5T9uYV/HHr/zR6n/tPXh4dprLf/CuoL5OYA s9C0PwImiDNHcvTJPqRSgSuaTEHKrxqzOVtzi8mxGPm/0e+LeYc0LnhJaYnT9AcH VflvHWmTnt5qrg== -----END CERTIFICATE-----Generated at Sat Dec 20 01:37:28 2025 by rpki-client