This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/6658c0-5653-4a9f-a8e8-140aada54b61/1/j0n0pM2Ck0RRn0UqOw4eZv6NPiU.mft File: j0n0pM2Ck0RRn0UqOw4eZv6NPiU.mft (raw, json) Hash identifier: jj+pxLOYoTNyFLNOTxpfME6jUxd+wFNlsL6QM1nkv08= Subject key identifier: CF:10:6C:00:E7:BA:05:BD:13:60:7D:86:3D:A1:90:27:82:71:6F:7A Authority key identifier: 8F:49:F4:A4:CD:82:93:44:51:9F:45:2A:3B:0E:1E:66:FE:8D:3E:25 Certificate issuer: /CN=8f49f4a4cd829344519f452a3b0e1e66fe8d3e25 Certificate serial: 019B41368D4AA6FEFAE83C7EA3E4F271DEC2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j0n0pM2Ck0RRn0UqOw4eZv6NPiU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/6658c0-5653-4a9f-a8e8-140aada54b61/1/j0n0pM2Ck0RRn0UqOw4eZv6NPiU.mft Manifest number: 1787 Signing time: Sun 21 Dec 2025 14:00:52 +0000 Manifest this update: Sun 21 Dec 2025 14:00:52 +0000 Manifest next update: Mon 22 Dec 2025 14:00:52 +0000 Files and hashes: 1: j0n0pM2Ck0RRn0UqOw4eZv6NPiU.crl (hash: 2Lelr5d0FPeP7ImnFVxHpwdCgGMwjAmP913EcLnopXE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c6/6658c0-5653-4a9f-a8e8-140aada54b61/1/j0n0pM2Ck0RRn0UqOw4eZv6NPiU.crl rsync://rpki.ripe.net/repository/DEFAULT/c6/6658c0-5653-4a9f-a8e8-140aada54b61/1/j0n0pM2Ck0RRn0UqOw4eZv6NPiU.mft rsync://rpki.ripe.net/repository/DEFAULT/j0n0pM2Ck0RRn0UqOw4eZv6NPiU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 13:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:41:36:8d:4a:a6:fe:fa:e8:3c:7e:a3:e4:f2:71:de:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8f49f4a4cd829344519f452a3b0e1e66fe8d3e25 Validity Not Before: Dec 21 14:00:52 2025 GMT Not After : Dec 22 14:00:52 2025 GMT Subject: CN=cf106c00e7ba05bd13607d863da1902782716f7a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:93:27:30:9a:e9:65:3a:64:6b:f3:a6:fb:1b: 6f:95:8d:64:bc:22:87:a6:5b:88:bb:2d:51:9e:07: fa:6c:e7:ae:3f:f2:24:f3:8a:f2:d6:29:7e:05:62: 7b:72:96:7d:86:5c:56:41:e3:65:47:2f:d7:00:a4: ce:47:8a:66:2e:88:4d:eb:55:34:c9:8f:4d:1e:a8: 86:70:87:ee:98:ae:c9:89:11:53:d0:a9:26:23:d7: 46:36:7e:d7:4a:cd:9f:1e:a6:30:b1:cf:2b:0a:f2: 55:6d:4a:3a:ad:b8:7b:80:fc:f9:d7:86:81:a1:60: 3a:7a:21:c2:10:ac:32:6b:44:83:85:72:ac:38:09: 83:f4:89:52:ab:0a:aa:3b:f1:b7:cc:77:1f:ee:f3: 1a:98:0a:0f:34:8b:39:09:b2:7d:d9:4d:c8:7c:a4: be:ba:40:87:aa:3c:56:b0:db:bb:9d:6e:2e:28:0a: c6:60:88:8c:fd:dd:49:3f:9e:cf:24:fa:f7:1a:f1: 20:ae:5e:ba:7e:0e:be:7b:04:a7:70:2d:cd:8d:72: e1:26:66:5c:02:a3:2c:af:f0:9c:02:66:9e:6c:8f: 50:64:9a:7e:1a:60:5b:59:90:d4:b8:f8:33:b4:d9: a6:c9:6a:73:fb:8c:91:af:41:d1:76:3d:84:c2:0a: fc:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:10:6C:00:E7:BA:05:BD:13:60:7D:86:3D:A1:90:27:82:71:6F:7A X509v3 Authority Key Identifier: keyid:8F:49:F4:A4:CD:82:93:44:51:9F:45:2A:3B:0E:1E:66:FE:8D:3E:25 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j0n0pM2Ck0RRn0UqOw4eZv6NPiU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/6658c0-5653-4a9f-a8e8-140aada54b61/1/j0n0pM2Ck0RRn0UqOw4eZv6NPiU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/6658c0-5653-4a9f-a8e8-140aada54b61/1/j0n0pM2Ck0RRn0UqOw4eZv6NPiU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6d:da:ac:ac:86:bf:7d:c4:3c:a3:79:c0:d1:91:0f:41:cb:5b: 01:70:47:d9:49:2d:a7:6c:56:52:09:29:11:02:d4:c8:c8:13: 59:76:81:95:0c:c0:ed:b6:0f:db:97:1a:f1:24:ee:c2:44:07: d9:64:15:83:02:63:11:d5:b0:e7:27:1c:6a:a3:0f:31:e5:b1: 46:92:36:7e:71:20:4d:a2:b9:7c:28:46:7a:7b:93:9b:46:87: 0a:e9:1d:e0:1a:26:07:e7:1d:70:b8:cc:b6:46:df:d4:b1:cf: 5d:44:85:84:69:0d:e0:0c:e4:90:e6:f9:f0:bb:6c:0a:3f:59: f0:ff:bc:88:88:eb:de:ad:34:89:e0:b3:4e:91:92:1c:4b:13: 0d:a4:ce:c2:c1:76:07:a2:ad:31:1c:a1:20:f8:5e:af:40:55: ac:69:d9:94:6a:cc:43:77:41:82:38:1d:55:be:9a:c0:d6:d6: 3d:f5:1a:e8:5d:c6:27:f7:c3:9d:e0:69:8e:f5:6c:33:0d:cf: dc:71:50:f2:ab:f6:7b:60:69:86:95:d6:66:06:e1:b1:31:31: 7b:e4:d4:bd:7c:d2:0d:ff:56:72:9d:9a:9a:36:11:dd:d6:06: c5:d6:ed:79:d3:c2:f6:76:e6:6c:12:b5:98:ad:30:76:61:04: e5:c3:ba:5c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtBNo1Kpv766Dx+o+Tycd7CMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhmNDlmNGE0Y2Q4MjkzNDQ1MTlmNDUyYTNiMGUxZTY2ZmU4 ZDNlMjUwHhcNMjUxMjIxMTQwMDUyWhcNMjUxMjIyMTQwMDUyWjAzMTEwLwYDVQQD EyhjZjEwNmMwMGU3YmEwNWJkMTM2MDdkODYzZGExOTAyNzgyNzE2ZjdhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3pMnMJrpZTpka/Om+xtvlY1kvCKH pluIuy1Rngf6bOeuP/Ik84ry1il+BWJ7cpZ9hlxWQeNlRy/XAKTOR4pmLohN61U0 yY9NHqiGcIfumK7JiRFT0KkmI9dGNn7XSs2fHqYwsc8rCvJVbUo6rbh7gPz514aB oWA6eiHCEKwya0SDhXKsOAmD9IlSqwqqO/G3zHcf7vMamAoPNIs5CbJ92U3IfKS+ ukCHqjxWsNu7nW4uKArGYIiM/d1JP57PJPr3GvEgrl66fg6+ewSncC3NjXLhJmZc AqMsr/CcAmaebI9QZJp+GmBbWZDUuPgztNmmyWpz+4yRr0HRdj2Ewgr8CwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFM8QbADnugW9E2B9hj2hkCeCcW96MB8GA1UdIwQY MBaAFI9J9KTNgpNEUZ9FKjsOHmb+jT4lMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvajBuMHBNMkNrMFJSbjBVcU93NGVadjZOUGlVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNi82NjU4YzAtNTY1My00YTlmLWE4ZTgt MTQwYWFkYTU0YjYxLzEvajBuMHBNMkNrMFJSbjBVcU93NGVadjZOUGlVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNi82NjU4YzAtNTY1My00YTlmLWE4ZTgtMTQwYWFkYTU0YjYx LzEvajBuMHBNMkNrMFJSbjBVcU93NGVadjZOUGlVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbdqsrIa/ fcQ8o3nA0ZEPQctbAXBH2Uktp2xWUgkpEQLUyMgTWXaBlQzA7bYP25ca8STuwkQH 2WQVgwJjEdWw5yccaqMPMeWxRpI2fnEgTaK5fChGenuTm0aHCukd4BomB+cdcLjM tkbf1LHPXUSFhGkN4AzkkOb58LtsCj9Z8P+8iIjr3q00ieCzTpGSHEsTDaTOwsF2 B6KtMRyhIPher0BVrGnZlGrMQ3dBgjgdVb6awNbWPfUa6F3GJ/fDneBpjvVsMw3P 3HFQ8qv2e2BphpXWZgbhsTExe+TUvXzSDf9Wcp2amjYR3dYGxdbtedPC9nbmbBK1 mK0wdmEE5cO6XA== -----END CERTIFICATE-----Generated at Sun Dec 21 23:13:45 2025 by rpki-client