This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/9360ec-9cd1-4c00-8668-94c2f8269e9c/1/jYQmVhd7QmerVeS6FlpewA9QhLw.mft File: jYQmVhd7QmerVeS6FlpewA9QhLw.mft (raw, json) Hash identifier: vIcDksvlcaKe5Ytd/g92YBzVtqKfpdyUlxSP+XconBM= Subject key identifier: 1C:20:57:0B:59:D7:FC:3F:A3:11:17:C2:6E:8F:7B:EE:9C:6D:C4:43 Authority key identifier: 8D:84:26:56:17:7B:42:67:AB:55:E4:BA:16:5A:5E:C0:0F:50:84:BC Certificate issuer: /CN=8d842656177b4267ab55e4ba165a5ec00f5084bc Certificate serial: 019B46265DA9FC607D41E460C358630C0200 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jYQmVhd7QmerVeS6FlpewA9QhLw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/9360ec-9cd1-4c00-8668-94c2f8269e9c/1/jYQmVhd7QmerVeS6FlpewA9QhLw.mft Manifest number: 1791 Signing time: Mon 22 Dec 2025 13:01:17 +0000 Manifest this update: Mon 22 Dec 2025 13:01:17 +0000 Manifest next update: Tue 23 Dec 2025 13:01:17 +0000 Files and hashes: 1: RJ12iqBIGMdg63G0MMvg2LDMix8.roa (hash: sESw+q0gARk5gtp41IohBHW+APoentCrsvNrV3WWi+U=) 2: aUmaQEWRoE1QO_xmwTCfYrd0iAI.roa (hash: KmZy81mfy9sZbmzpjyQc2GLJJhLJJJePfwOXkxp6EMc=) 3: h17YXZJyvSVJKfuRPJwacmnQTko.roa (hash: gCm2d2N9654aioOcioiAbPWA94RRy8WmG63hHdr1o54=) 4: jYQmVhd7QmerVeS6FlpewA9QhLw.crl (hash: NOWY4oL8xJMZRpJecZOEjqtLKXIn+P2IBHWIut5HsVE=) 5: vum5ModJUNyeXtPPKIV3l7J0g94.roa (hash: zPI/RZhzXTNYTyqGgKwTajtQQ1UJGC+Yon4LK77IQPg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/9360ec-9cd1-4c00-8668-94c2f8269e9c/1/jYQmVhd7QmerVeS6FlpewA9QhLw.crl rsync://rpki.ripe.net/repository/DEFAULT/3e/9360ec-9cd1-4c00-8668-94c2f8269e9c/1/jYQmVhd7QmerVeS6FlpewA9QhLw.mft rsync://rpki.ripe.net/repository/DEFAULT/jYQmVhd7QmerVeS6FlpewA9QhLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 23 Dec 2025 13:01:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:46:26:5d:a9:fc:60:7d:41:e4:60:c3:58:63:0c:02:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8d842656177b4267ab55e4ba165a5ec00f5084bc Validity Not Before: Dec 22 13:01:17 2025 GMT Not After : Dec 23 13:01:17 2025 GMT Subject: CN=1c20570b59d7fc3fa31117c26e8f7bee9c6dc443 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:4c:4e:c4:a5:ac:00:e6:4c:17:c6:fb:ee:b5: 09:c4:32:7b:8f:72:7f:e6:ce:e9:a0:57:69:47:6a: 5a:77:31:5f:2b:df:0c:c7:c8:87:35:4f:b1:e0:80: 87:c9:9a:97:d8:aa:8f:c7:06:c6:87:a3:d3:99:de: 9f:50:be:64:48:83:cf:c4:ca:05:66:13:be:82:f7: 2c:d4:2c:fc:92:c7:a5:9e:3c:47:cf:63:7b:ed:e3: 1a:96:fa:04:40:b5:52:c1:e6:b1:09:b6:c0:cd:b0: ca:20:b1:d3:0d:17:bb:b1:da:cb:91:34:02:13:f8: 50:4a:30:59:24:61:63:9d:9b:c4:20:02:eb:af:9a: c1:06:10:40:ea:c8:b6:ef:d2:08:46:20:5f:76:a8: cd:66:9e:10:3a:af:c4:59:01:c9:5c:27:2b:fe:72: e8:93:47:da:a2:30:6a:c1:a1:68:bd:84:ba:e3:f1: c9:86:59:66:5b:89:61:d9:08:0d:fa:3b:18:79:09: 5f:79:12:f9:67:68:4e:97:42:fa:06:46:75:b3:bb: 38:d1:91:70:ba:df:79:c6:84:79:b2:8c:58:0d:dd: 47:72:7e:af:be:e3:65:02:cb:e1:ad:eb:93:00:ad: 11:33:f1:b6:81:55:47:00:3c:52:16:d1:67:3c:6c: 30:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:20:57:0B:59:D7:FC:3F:A3:11:17:C2:6E:8F:7B:EE:9C:6D:C4:43 X509v3 Authority Key Identifier: keyid:8D:84:26:56:17:7B:42:67:AB:55:E4:BA:16:5A:5E:C0:0F:50:84:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jYQmVhd7QmerVeS6FlpewA9QhLw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/9360ec-9cd1-4c00-8668-94c2f8269e9c/1/jYQmVhd7QmerVeS6FlpewA9QhLw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/9360ec-9cd1-4c00-8668-94c2f8269e9c/1/jYQmVhd7QmerVeS6FlpewA9QhLw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 85:e1:87:96:f4:30:d7:4d:b2:e0:a5:e1:05:94:d6:a1:ef:53: 17:2f:36:5a:0a:42:64:23:16:d3:65:db:a4:ec:37:8b:7e:98: 52:6e:ad:e7:56:4d:f9:89:50:73:74:56:ab:e1:c6:d7:d6:aa: 2e:5d:98:bf:94:6b:70:0b:d6:0c:88:a8:2c:f8:b6:f6:29:75: e5:ad:1c:31:12:62:22:59:f7:86:2d:02:22:91:51:6e:c2:78: 6c:3c:12:91:28:d3:5c:51:7e:14:c6:a9:23:03:21:f1:c0:32: 2f:ad:bf:bc:58:72:76:80:bc:ba:82:53:b6:5e:1c:5f:24:c2: b5:0b:a9:44:77:5b:70:f0:0f:71:d5:46:a7:2c:de:5d:af:35: 24:64:96:a9:19:5f:13:75:d7:8b:99:3a:71:48:ac:2e:fd:a2: a8:61:df:ac:7d:09:a4:47:a1:93:02:25:4d:8d:2f:e4:2b:35: 02:58:34:5e:74:d6:e2:00:f6:c0:ce:91:30:13:86:66:3b:64: 38:dc:30:20:65:12:a1:64:20:f7:1e:c9:c4:3d:5f:ef:21:ab: 75:9a:2e:0b:e4:6d:c4:55:82:ac:d4:db:4a:8d:78:86:9e:be: 5c:2d:ca:91:1a:9d:6d:aa:19:c8:64:28:0e:45:6f:0c:4b:71: 36:0f:ee:c5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtGJl2p/GB9QeRgw1hjDAIAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhkODQyNjU2MTc3YjQyNjdhYjU1ZTRiYTE2NWE1ZWMwMGY1 MDg0YmMwHhcNMjUxMjIyMTMwMTE3WhcNMjUxMjIzMTMwMTE3WjAzMTEwLwYDVQQD EygxYzIwNTcwYjU5ZDdmYzNmYTMxMTE3YzI2ZThmN2JlZTljNmRjNDQzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAokxOxKWsAOZMF8b77rUJxDJ7j3J/ 5s7poFdpR2padzFfK98Mx8iHNU+x4ICHyZqX2KqPxwbGh6PTmd6fUL5kSIPPxMoF ZhO+gvcs1Cz8kselnjxHz2N77eMalvoEQLVSweaxCbbAzbDKILHTDRe7sdrLkTQC E/hQSjBZJGFjnZvEIALrr5rBBhBA6si279IIRiBfdqjNZp4QOq/EWQHJXCcr/nLo k0faojBqwaFovYS64/HJhllmW4lh2QgN+jsYeQlfeRL5Z2hOl0L6BkZ1s7s40ZFw ut95xoR5soxYDd1Hcn6vvuNlAsvhreuTAK0RM/G2gVVHADxSFtFnPGww9QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBwgVwtZ1/w/oxEXwm6Pe+6cbcRDMB8GA1UdIwQY MBaAFI2EJlYXe0Jnq1XkuhZaXsAPUIS8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvallRbVZoZDdRbWVyVmVTNkZscGV3QTlRaEx3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZS85MzYwZWMtOWNkMS00YzAwLTg2Njgt OTRjMmY4MjY5ZTljLzEvallRbVZoZDdRbWVyVmVTNkZscGV3QTlRaEx3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZS85MzYwZWMtOWNkMS00YzAwLTg2NjgtOTRjMmY4MjY5ZTlj LzEvallRbVZoZDdRbWVyVmVTNkZscGV3QTlRaEx3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAheGHlvQw 102y4KXhBZTWoe9TFy82WgpCZCMW02XbpOw3i36YUm6t51ZN+YlQc3RWq+HG19aq Ll2Yv5RrcAvWDIioLPi29il15a0cMRJiIln3hi0CIpFRbsJ4bDwSkSjTXFF+FMap IwMh8cAyL62/vFhydoC8uoJTtl4cXyTCtQupRHdbcPAPcdVGpyzeXa81JGSWqRlf E3XXi5k6cUisLv2iqGHfrH0JpEehkwIlTY0v5Cs1Alg0XnTW4gD2wM6RMBOGZjtk ONwwIGUSoWQg9x7JxD1f7yGrdZouC+RtxFWCrNTbSo14hp6+XC3KkRqdbaoZyGQo DkVvDEtxNg/uxQ== -----END CERTIFICATE-----Generated at Mon Dec 22 17:31:46 2025 by rpki-client