This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/8544a0-ae46-4da2-ad2d-e893b13b2c9f/1/JchJyqV3LJi4E8E7TzD85PSNLa4.mft File: JchJyqV3LJi4E8E7TzD85PSNLa4.mft (raw, json) Hash identifier: XiF6u5t9O2Dyt6zVfjXcsO+2hx/JP3cJFqWa2ia6EKY= Subject key identifier: EE:EF:CA:E8:07:50:1E:46:B9:86:D0:05:2B:DC:09:FF:1A:F0:72:BE Authority key identifier: 25:C8:49:CA:A5:77:2C:98:B8:13:C1:3B:4F:30:FC:E4:F4:8D:2D:AE Certificate issuer: /CN=25c849caa5772c98b813c13b4f30fce4f48d2dae Certificate serial: 019B544F77A0A9BD20F0AA01DAC30DFC6C67 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JchJyqV3LJi4E8E7TzD85PSNLa4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/8544a0-ae46-4da2-ad2d-e893b13b2c9f/1/JchJyqV3LJi4E8E7TzD85PSNLa4.mft Manifest number: 0B69 Signing time: Thu 25 Dec 2025 07:00:52 +0000 Manifest this update: Thu 25 Dec 2025 07:00:52 +0000 Manifest next update: Fri 26 Dec 2025 07:00:52 +0000 Files and hashes: 1: JchJyqV3LJi4E8E7TzD85PSNLa4.crl (hash: NsB+DWrkp77ZkkC/MmyKiIr0J8Rw7nD71sNk5iVaM1k=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/8544a0-ae46-4da2-ad2d-e893b13b2c9f/1/JchJyqV3LJi4E8E7TzD85PSNLa4.crl rsync://rpki.ripe.net/repository/DEFAULT/b9/8544a0-ae46-4da2-ad2d-e893b13b2c9f/1/JchJyqV3LJi4E8E7TzD85PSNLa4.mft rsync://rpki.ripe.net/repository/DEFAULT/JchJyqV3LJi4E8E7TzD85PSNLa4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 26 Dec 2025 03:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:54:4f:77:a0:a9:bd:20:f0:aa:01:da:c3:0d:fc:6c:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=25c849caa5772c98b813c13b4f30fce4f48d2dae Validity Not Before: Dec 25 07:00:52 2025 GMT Not After : Dec 26 07:00:52 2025 GMT Subject: CN=eeefcae807501e46b986d0052bdc09ff1af072be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:c9:c1:10:46:40:88:78:76:2d:0a:b1:82:32: c1:af:04:d6:44:2d:76:aa:b3:58:6c:9c:cf:6e:35: b2:4d:62:2a:65:ea:f2:d1:26:70:48:29:09:56:bc: d3:ae:bb:7c:3c:0a:0c:01:11:ff:be:99:91:1d:bf: d4:ad:37:f3:15:65:d7:20:7e:5c:6a:9d:f1:dc:74: 63:9c:15:b2:dd:38:71:f9:eb:69:ae:df:8a:cc:1e: dd:6d:9c:9b:21:fc:27:f9:d2:cb:a5:ac:ce:5f:6f: d7:d4:32:fb:33:a2:b3:b7:fd:86:d2:14:be:69:c9: 7b:89:19:e3:b1:9d:15:1d:c7:ef:3b:5a:17:a8:1a: 62:85:11:cd:e3:96:26:2c:24:bf:e9:b5:5e:b9:d4: 22:3d:f2:96:75:9c:f7:35:e0:8a:d0:8c:ac:c2:c0: f6:6a:21:26:48:30:25:c2:3f:f0:0e:6a:b4:40:c8: d6:c6:3a:6d:3a:cd:19:53:08:22:86:4a:5e:e3:d2: 26:4a:cc:3f:2e:2d:b8:53:61:de:db:f7:ed:d0:85: d8:ae:82:2d:c0:80:62:af:01:1b:be:26:c0:9b:f3: 2b:19:29:1a:e6:39:84:1b:99:77:7e:53:49:89:1b: 61:59:75:de:79:e7:e0:20:1a:8e:ca:4e:9f:99:10: 89:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:EF:CA:E8:07:50:1E:46:B9:86:D0:05:2B:DC:09:FF:1A:F0:72:BE X509v3 Authority Key Identifier: keyid:25:C8:49:CA:A5:77:2C:98:B8:13:C1:3B:4F:30:FC:E4:F4:8D:2D:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JchJyqV3LJi4E8E7TzD85PSNLa4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/8544a0-ae46-4da2-ad2d-e893b13b2c9f/1/JchJyqV3LJi4E8E7TzD85PSNLa4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/8544a0-ae46-4da2-ad2d-e893b13b2c9f/1/JchJyqV3LJi4E8E7TzD85PSNLa4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 77:f6:55:d9:29:01:48:7c:89:a5:11:8c:f9:b5:89:97:23:af: 5f:e4:69:61:f2:c4:81:9c:1b:37:db:27:57:51:a8:c4:19:a4: b5:bf:dc:00:e8:70:95:2b:a2:c9:e8:ab:04:a2:41:9d:a4:ae: 14:88:a3:cf:f9:97:b6:17:5a:d3:47:83:98:4e:5f:e3:5a:37: 85:4e:ed:45:45:1a:0b:c7:b1:b4:fc:61:2d:5d:21:5e:b3:fd: 94:da:b1:f8:fc:23:ae:d9:57:d9:e8:6e:0f:67:55:95:d5:89: 0a:d2:24:58:cb:3c:13:4a:db:fa:2e:f9:21:15:c7:d7:5c:d7: 34:66:14:fa:0b:80:b7:9f:8e:d6:58:a5:b1:74:17:56:1d:cc: df:8d:71:5d:9f:c7:42:95:8f:d6:81:6d:77:ba:ef:57:b2:68: 47:dc:26:e3:fa:c8:ed:0d:49:82:52:29:33:c0:1d:bf:fc:83: 09:ed:24:4c:f2:84:56:60:c1:58:e3:39:04:d1:9a:ea:f7:e9: 36:a4:9e:74:6a:a9:20:7e:52:b3:f5:94:77:19:df:fc:5a:6e: bb:2e:d7:3f:3b:f5:cb:56:f7:bc:53:86:ab:32:26:cd:77:a9: 23:8a:0f:83:04:46:09:89:98:ab:53:64:33:25:03:22:ec:ad: 95:bc:08:08 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtUT3egqb0g8KoB2sMN/GxnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI1Yzg0OWNhYTU3NzJjOThiODEzYzEzYjRmMzBmY2U0ZjQ4 ZDJkYWUwHhcNMjUxMjI1MDcwMDUyWhcNMjUxMjI2MDcwMDUyWjAzMTEwLwYDVQQD EyhlZWVmY2FlODA3NTAxZTQ2Yjk4NmQwMDUyYmRjMDlmZjFhZjA3MmJlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA48nBEEZAiHh2LQqxgjLBrwTWRC12 qrNYbJzPbjWyTWIqZery0SZwSCkJVrzTrrt8PAoMARH/vpmRHb/UrTfzFWXXIH5c ap3x3HRjnBWy3Thx+etprt+KzB7dbZybIfwn+dLLpazOX2/X1DL7M6Kzt/2G0hS+ acl7iRnjsZ0VHcfvO1oXqBpihRHN45YmLCS/6bVeudQiPfKWdZz3NeCK0IyswsD2 aiEmSDAlwj/wDmq0QMjWxjptOs0ZUwgihkpe49ImSsw/Li24U2He2/ft0IXYroIt wIBirwEbvibAm/MrGSka5jmEG5l3flNJiRthWXXeeefgIBqOyk6fmRCJSQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFO7vyugHUB5GuYbQBSvcCf8a8HK+MB8GA1UdIwQY MBaAFCXIScqldyyYuBPBO08w/OT0jS2uMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSmNoSnlxVjNMSmk0RThFN1R6RDg1UFNOTGE0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOS84NTQ0YTAtYWU0Ni00ZGEyLWFkMmQt ZTg5M2IxM2IyYzlmLzEvSmNoSnlxVjNMSmk0RThFN1R6RDg1UFNOTGE0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iOS84NTQ0YTAtYWU0Ni00ZGEyLWFkMmQtZTg5M2IxM2IyYzlm LzEvSmNoSnlxVjNMSmk0RThFN1R6RDg1UFNOTGE0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAd/ZV2SkB SHyJpRGM+bWJlyOvX+RpYfLEgZwbN9snV1GoxBmktb/cAOhwlSuiyeirBKJBnaSu FIijz/mXthda00eDmE5f41o3hU7tRUUaC8extPxhLV0hXrP9lNqx+PwjrtlX2ehu D2dVldWJCtIkWMs8E0rb+i75IRXH11zXNGYU+guAt5+O1lilsXQXVh3M341xXZ/H QpWP1oFtd7rvV7JoR9wm4/rI7Q1JglIpM8Adv/yDCe0kTPKEVmDBWOM5BNGa6vfp NqSedGqpIH5Ss/WUdxnf/Fpuuy7XPzv1y1b3vFOGqzImzXepI4oPgwRGCYmYq1Nk MyUDIuytlbwICA== -----END CERTIFICATE-----Generated at Thu Dec 25 11:14:51 2025 by rpki-client