This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/0e90c8-2b83-4715-9933-a73f0b7418ab/1/JbGiI7fnP9I0YsIE5g6dSBXPdj8.mft File: JbGiI7fnP9I0YsIE5g6dSBXPdj8.mft (raw, json) Hash identifier: 5Rg8hV/MaHhsDbcY4dHUtS0Pj4lCT7cuqrJtFJBe61c= Subject key identifier: C3:E2:6A:78:59:BA:B0:03:F8:9B:31:29:BB:DB:59:52:1E:38:7F:B1 Authority key identifier: 25:B1:A2:23:B7:E7:3F:D2:34:62:C2:04:E6:0E:9D:48:15:CF:76:3F Certificate issuer: /CN=25b1a223b7e73fd23462c204e60e9d4815cf763f Certificate serial: 019B454A3D76FE7E1247A2ADA00801582663 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JbGiI7fnP9I0YsIE5g6dSBXPdj8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/0e90c8-2b83-4715-9933-a73f0b7418ab/1/JbGiI7fnP9I0YsIE5g6dSBXPdj8.mft Manifest number: 0374 Signing time: Mon 22 Dec 2025 09:00:51 +0000 Manifest this update: Mon 22 Dec 2025 09:00:51 +0000 Manifest next update: Tue 23 Dec 2025 09:00:51 +0000 Files and hashes: 1: 1-nkTyOMqH94a8OlfukcDf7YbkNc.roa (hash: Z6uvUYmhirGQlJwClrs+HtNhQJGa2PNo7VCbu68pXz8=) 2: JbGiI7fnP9I0YsIE5g6dSBXPdj8.crl (hash: 0UzIZAPcCZEZseFY2xHuyA9yYNmOFk27Spxy4oHdHS4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/0e90c8-2b83-4715-9933-a73f0b7418ab/1/JbGiI7fnP9I0YsIE5g6dSBXPdj8.crl rsync://rpki.ripe.net/repository/DEFAULT/bb/0e90c8-2b83-4715-9933-a73f0b7418ab/1/JbGiI7fnP9I0YsIE5g6dSBXPdj8.mft rsync://rpki.ripe.net/repository/DEFAULT/JbGiI7fnP9I0YsIE5g6dSBXPdj8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 23 Dec 2025 09:00:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:45:4a:3d:76:fe:7e:12:47:a2:ad:a0:08:01:58:26:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=25b1a223b7e73fd23462c204e60e9d4815cf763f Validity Not Before: Dec 22 09:00:51 2025 GMT Not After : Dec 23 09:00:51 2025 GMT Subject: CN=c3e26a7859bab003f89b3129bbdb59521e387fb1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:ee:fd:a1:5f:12:06:07:6d:21:74:e5:b0:97: 50:2b:62:be:34:04:89:3b:b0:fb:f2:26:1d:04:57: cd:44:17:4d:5a:b0:d2:82:f0:02:0e:9b:ce:be:29: d0:7a:cd:af:e8:c6:cd:ad:e7:62:05:65:6d:91:81: dd:77:34:12:78:3a:37:e8:4f:0d:cd:33:ab:9c:22: bc:14:ad:0f:fe:3e:f0:7c:9e:65:b8:85:76:4d:32: 2c:09:df:63:d1:60:d4:ff:e1:61:2b:d4:73:f3:ec: a4:2d:27:e2:b5:31:85:93:cc:cd:b5:c1:7a:77:67: cd:f3:53:ee:22:92:55:0c:a9:eb:e1:0d:2c:c6:cc: 60:78:49:e3:84:67:f7:98:ed:d9:62:6f:d0:7e:00: f5:c1:a0:fa:98:53:cb:9a:63:73:48:bc:9c:c3:a6: 53:53:00:2e:b2:0d:ee:25:be:c0:9e:1e:ac:0e:c9: ce:f8:96:48:00:11:af:34:ae:ca:fe:4d:a7:a2:2c: 0b:91:f6:f9:a9:10:b4:26:97:45:9d:62:4a:81:f8: 3e:9d:e1:1b:df:51:77:59:b9:cd:9c:4a:36:1c:98: 04:77:6f:68:f9:f7:e1:2c:90:97:eb:8e:71:8d:61: 27:19:7a:37:8d:31:74:45:1a:9d:5a:49:e6:9c:71: 70:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:E2:6A:78:59:BA:B0:03:F8:9B:31:29:BB:DB:59:52:1E:38:7F:B1 X509v3 Authority Key Identifier: keyid:25:B1:A2:23:B7:E7:3F:D2:34:62:C2:04:E6:0E:9D:48:15:CF:76:3F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JbGiI7fnP9I0YsIE5g6dSBXPdj8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/0e90c8-2b83-4715-9933-a73f0b7418ab/1/JbGiI7fnP9I0YsIE5g6dSBXPdj8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/0e90c8-2b83-4715-9933-a73f0b7418ab/1/JbGiI7fnP9I0YsIE5g6dSBXPdj8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 16:ba:12:18:d3:45:0f:c4:f4:b9:0f:80:3b:05:fa:9e:01:59: da:f8:00:09:e5:74:9b:87:52:60:80:0d:8f:93:b8:c2:43:13: 62:b8:ef:bf:bc:25:00:21:ec:d8:b1:a9:51:fa:d2:9e:68:3f: 16:60:12:24:ee:19:55:a2:d2:61:dc:3a:c4:a3:9e:fa:3b:27: 7e:6d:8c:55:f5:3a:a0:bd:51:9d:31:21:0c:b6:18:5e:11:57: 3e:22:3d:70:97:4e:d3:9c:01:00:df:b5:4a:b7:33:0f:dd:30: f0:01:2e:b7:b4:0b:e8:93:c7:76:65:f3:ef:cf:12:66:6e:b7: 51:6b:45:27:72:90:d9:64:0d:b1:09:62:ff:b7:b4:24:21:fc: 83:11:23:4a:ae:ec:41:3f:22:22:9b:18:8e:58:4e:6f:ac:88: b5:18:c9:e4:d4:45:c0:d2:27:06:7e:c6:52:07:00:76:5d:7e: 64:f9:22:e5:1b:0c:8c:f1:e6:69:39:cc:89:f7:4c:7d:94:46: 8b:57:0e:26:d5:a4:35:ed:b2:f6:35:0a:30:94:e5:78:ac:3c: 85:55:fa:05:21:0c:58:04:e6:4a:7e:68:b6:dc:5a:5a:53:10: 47:91:d6:20:0b:e8:8b:f3:3c:9d:01:c8:d2:61:16:cb:f2:5b: e6:25:ae:80 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtFSj12/n4SR6KtoAgBWCZjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI1YjFhMjIzYjdlNzNmZDIzNDYyYzIwNGU2MGU5ZDQ4MTVj Zjc2M2YwHhcNMjUxMjIyMDkwMDUxWhcNMjUxMjIzMDkwMDUxWjAzMTEwLwYDVQQD EyhjM2UyNmE3ODU5YmFiMDAzZjg5YjMxMjliYmRiNTk1MjFlMzg3ZmIxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxO79oV8SBgdtIXTlsJdQK2K+NASJ O7D78iYdBFfNRBdNWrDSgvACDpvOvinQes2v6MbNrediBWVtkYHddzQSeDo36E8N zTOrnCK8FK0P/j7wfJ5luIV2TTIsCd9j0WDU/+FhK9Rz8+ykLSfitTGFk8zNtcF6 d2fN81PuIpJVDKnr4Q0sxsxgeEnjhGf3mO3ZYm/QfgD1waD6mFPLmmNzSLycw6ZT UwAusg3uJb7Anh6sDsnO+JZIABGvNK7K/k2noiwLkfb5qRC0JpdFnWJKgfg+neEb 31F3WbnNnEo2HJgEd29o+ffhLJCX645xjWEnGXo3jTF0RRqdWknmnHFwBwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMPianhZurAD+JsxKbvbWVIeOH+xMB8GA1UdIwQY MBaAFCWxoiO35z/SNGLCBOYOnUgVz3Y/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSmJHaUk3Zm5QOUkwWXNJRTVnNmRTQlhQZGo4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYi8wZTkwYzgtMmI4My00NzE1LTk5MzMt YTczZjBiNzQxOGFiLzEvSmJHaUk3Zm5QOUkwWXNJRTVnNmRTQlhQZGo4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYi8wZTkwYzgtMmI4My00NzE1LTk5MzMtYTczZjBiNzQxOGFi LzEvSmJHaUk3Zm5QOUkwWXNJRTVnNmRTQlhQZGo4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFroSGNNF D8T0uQ+AOwX6ngFZ2vgACeV0m4dSYIANj5O4wkMTYrjvv7wlACHs2LGpUfrSnmg/ FmASJO4ZVaLSYdw6xKOe+jsnfm2MVfU6oL1RnTEhDLYYXhFXPiI9cJdO05wBAN+1 SrczD90w8AEut7QL6JPHdmXz788SZm63UWtFJ3KQ2WQNsQli/7e0JCH8gxEjSq7s QT8iIpsYjlhOb6yItRjJ5NRFwNInBn7GUgcAdl1+ZPki5RsMjPHmaTnMifdMfZRG i1cOJtWkNe2y9jUKMJTleKw8hVX6BSEMWATmSn5ottxaWlMQR5HWIAvoi/M8nQHI 0mEWy/Jb5iWugA== -----END CERTIFICATE-----Generated at Mon Dec 22 14:11:55 2025 by rpki-client