This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.mft File: jha95kqam7o_-hQ4oZesP5SYn68.mft (raw, json) Hash identifier: PBm3Ue58p7ZT/Yj7ntvUAoYpkURLyqZYJ+BTOpr0TKc= Subject key identifier: 07:44:6D:EC:3A:76:F9:C1:98:59:F7:3A:0E:E4:E2:98:31:8D:2B:33 Authority key identifier: 8E:16:BD:E6:4A:9A:9B:BA:3F:FA:14:38:A1:97:AC:3F:94:98:9F:AF Certificate issuer: /CN=8e16bde64a9a9bba3ffa1438a197ac3f94989faf Certificate serial: 019B9A0D712116DDE68BA3A04D18A655FB51 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jha95kqam7o_-hQ4oZesP5SYn68.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.mft Manifest number: 0B4D Signing time: Wed 07 Jan 2026 20:02:10 +0000 Manifest this update: Wed 07 Jan 2026 20:02:10 +0000 Manifest next update: Thu 08 Jan 2026 20:02:10 +0000 Files and hashes: 1: jha95kqam7o_-hQ4oZesP5SYn68.crl (hash: OmLz8DuyRY1vAcn4AIU16BsLIEZp1NLc94PwRodi1j0=) 2: rIbppOfNfFYdHELW2Brc9R0i8ZQ.roa (hash: 6K2aNO9ERJucL5JHeR5DeWEg9tZjVrX7Cr/llqySGJ4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.crl rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.mft rsync://rpki.ripe.net/repository/DEFAULT/jha95kqam7o_-hQ4oZesP5SYn68.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 Jan 2026 15:30:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:9a:0d:71:21:16:dd:e6:8b:a3:a0:4d:18:a6:55:fb:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8e16bde64a9a9bba3ffa1438a197ac3f94989faf Validity Not Before: Jan 7 20:02:10 2026 GMT Not After : Jan 8 20:02:10 2026 GMT Subject: CN=07446dec3a76f9c19859f73a0ee4e298318d2b33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:f1:63:aa:9b:36:45:a8:e6:53:9e:b5:f1:f1: ff:8e:4d:7e:5f:b3:e9:47:d0:8d:c6:cb:fc:e5:e1: a3:75:bf:9d:e8:81:76:e5:d0:0f:1a:0b:e6:9a:74: 72:2b:49:be:42:a2:3d:07:bd:74:53:08:b9:d0:d8: a4:11:f8:29:95:ac:89:9f:88:ac:5c:04:24:80:ae: 14:92:76:19:28:b5:8c:a2:9f:c7:8d:69:ff:17:fd: 89:2f:52:7e:29:25:c9:14:2b:6f:ec:cf:e1:1c:e4: c6:cd:dd:e6:2c:b2:07:05:ec:46:4a:2b:1d:b6:cd: 8a:30:c4:bd:1b:7c:fb:ce:9b:6e:57:48:6b:4c:77: 6a:29:80:f2:1c:11:c5:7f:fa:4a:e5:9d:96:69:e6: 9c:85:b1:a1:38:41:47:b2:45:99:38:1d:f9:a1:1a: 72:a1:42:1c:5b:48:f2:66:92:18:21:11:be:7a:bc: 49:ac:58:1b:e8:a7:22:ac:6c:85:f6:7b:58:fd:8b: 4b:ff:3b:7f:12:82:3f:a7:8c:0f:34:b4:c6:eb:af: 2d:fc:1f:a7:03:a2:1c:8d:41:f9:5e:6f:94:2a:83: b2:34:7f:30:87:b0:55:51:58:7f:4c:c8:47:5d:e2: fb:41:8a:78:0b:17:73:39:99:28:7c:50:30:ba:f5: 4a:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:44:6D:EC:3A:76:F9:C1:98:59:F7:3A:0E:E4:E2:98:31:8D:2B:33 X509v3 Authority Key Identifier: keyid:8E:16:BD:E6:4A:9A:9B:BA:3F:FA:14:38:A1:97:AC:3F:94:98:9F:AF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jha95kqam7o_-hQ4oZesP5SYn68.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2b:a9:6e:50:a8:d2:83:89:a5:b3:59:2c:cf:d0:9f:13:b7:cf: 68:c8:c8:ff:16:03:86:f6:bc:df:88:e3:31:3f:5c:1d:8e:56: f8:79:d9:02:05:c5:c7:ad:24:d5:fa:c4:c9:b7:de:c5:48:7b: 79:54:97:cb:cf:86:28:45:63:76:7a:c4:da:42:c5:5d:1e:6d: ac:62:07:91:31:af:8a:2f:ec:c9:86:4b:fd:e3:ca:7b:ee:ae: 80:41:af:98:3f:21:95:e1:bf:8e:02:ec:c1:21:81:25:0d:9d: cd:29:ed:bb:f7:2d:5b:2b:4a:05:9b:7f:dd:2e:1e:db:84:7f: 5d:d3:79:62:57:34:08:d9:ba:df:8f:11:81:a1:5a:fe:7d:a9: c5:ba:8d:cc:80:bb:a0:b2:43:37:b8:94:d1:ff:8f:05:a6:58: 7f:a3:8b:0b:31:07:39:a1:f2:69:d5:47:ca:a7:35:2e:5c:0f: 6b:76:ad:72:e5:56:e0:25:5c:5d:e5:be:79:0c:c3:23:a5:b0: 46:6a:56:bd:44:3c:e0:03:69:cd:c5:76:86:ef:1e:85:05:5b: 65:6e:09:8e:ac:57:d7:40:fc:95:8e:04:c7:b6:17:64:2d:cc: b9:33:c0:ec:91:3f:11:c2:cc:24:99:fe:76:34:a1:fa:0d:71: b1:94:13:bd -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZuaDXEhFt3mi6OgTRimVftRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhlMTZiZGU2NGE5YTliYmEzZmZhMTQzOGExOTdhYzNmOTQ5 ODlmYWYwHhcNMjYwMTA3MjAwMjEwWhcNMjYwMTA4MjAwMjEwWjAzMTEwLwYDVQQD EygwNzQ0NmRlYzNhNzZmOWMxOTg1OWY3M2EwZWU0ZTI5ODMxOGQyYjMzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8PFjqps2RajmU5618fH/jk1+X7Pp R9CNxsv85eGjdb+d6IF25dAPGgvmmnRyK0m+QqI9B710Uwi50NikEfgplayJn4is XAQkgK4UknYZKLWMop/HjWn/F/2JL1J+KSXJFCtv7M/hHOTGzd3mLLIHBexGSisd ts2KMMS9G3z7zptuV0hrTHdqKYDyHBHFf/pK5Z2WaeachbGhOEFHskWZOB35oRpy oUIcW0jyZpIYIRG+erxJrFgb6KcirGyF9ntY/YtL/zt/EoI/p4wPNLTG668t/B+n A6IcjUH5Xm+UKoOyNH8wh7BVUVh/TMhHXeL7QYp4CxdzOZkofFAwuvVKjQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAdEbew6dvnBmFn3Og7k4pgxjSszMB8GA1UdIwQY MBaAFI4WveZKmpu6P/oUOKGXrD+UmJ+vMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvamhhOTVrcWFtN29fLWhRNG9aZXNQNVNZbjY4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZS8zOWFiMmUtZmVlYi00YTBlLTg3NDAt NDUyOTZjMzJmMGEzLzEvamhhOTVrcWFtN29fLWhRNG9aZXNQNVNZbjY4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZS8zOWFiMmUtZmVlYi00YTBlLTg3NDAtNDUyOTZjMzJmMGEz LzEvamhhOTVrcWFtN29fLWhRNG9aZXNQNVNZbjY4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAK6luUKjS g4mls1ksz9CfE7fPaMjI/xYDhva834jjMT9cHY5W+HnZAgXFx60k1frEybfexUh7 eVSXy8+GKEVjdnrE2kLFXR5trGIHkTGvii/syYZL/ePKe+6ugEGvmD8hleG/jgLs wSGBJQ2dzSntu/ctWytKBZt/3S4e24R/XdN5Ylc0CNm6348RgaFa/n2pxbqNzIC7 oLJDN7iU0f+PBaZYf6OLCzEHOaHyadVHyqc1LlwPa3atcuVW4CVcXeW+eQzDI6Ww RmpWvUQ84ANpzcV2hu8ehQVbZW4JjqxX10D8lY4Ex7YXZC3MuTPA7JE/EcLMJJn+ djSh+g1xsZQTvQ== -----END CERTIFICATE-----Generated at Wed Jan 7 22:32:19 2026 by rpki-client