This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/dae8b0-97d0-48d4-9b26-0137b1f75d02/1/JI9eJvHAj0SGyZEci2Cerotst00.mft File: JI9eJvHAj0SGyZEci2Cerotst00.mft (raw, json) Hash identifier: TIe0dAlX044ShZ1XmYrWTYJqLr6RCf+PWYkfFzudJJo= Subject key identifier: 72:78:4A:7C:0D:86:59:CF:CB:68:FC:45:E4:E3:24:56:E8:C7:32:CC Authority key identifier: 24:8F:5E:26:F1:C0:8F:44:86:C9:91:1C:8B:60:9E:AE:8B:6C:B7:4D Certificate issuer: /CN=248f5e26f1c08f4486c9911c8b609eae8b6cb74d Certificate serial: 019B10144CAECB44744292B582EBAE4EF060 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JI9eJvHAj0SGyZEci2Cerotst00.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/dae8b0-97d0-48d4-9b26-0137b1f75d02/1/JI9eJvHAj0SGyZEci2Cerotst00.mft Manifest number: 1776 Signing time: Fri 12 Dec 2025 01:02:04 +0000 Manifest this update: Fri 12 Dec 2025 01:02:04 +0000 Manifest next update: Sat 13 Dec 2025 01:02:04 +0000 Files and hashes: 1: 4-VMs7WjnHapNWAogJtHgkJT3FU.roa (hash: gSDXueJPuBUvKo0WOnGXmd8a/t7YwU/fLnYXo72JtQQ=) 2: Iqxcd_fV1QsWB5O74ZAh4NM18cs.roa (hash: 6qhxk3bJhMiZ9tGHAGhJE2mV7NKSco7uvbYg30YDR94=) 3: JI9eJvHAj0SGyZEci2Cerotst00.crl (hash: Tui9lO69jHonmK+Tlm12bcyuT6sCJAQd9uXt3URgyOQ=) 4: XFRqozBjRCDgkRfk1bxKNY0dgFg.roa (hash: u1yLOLEkwAxOilmwTuOs1qXXdE33hg/Nh8HsoI+27dM=) 5: _bqODjPn-Rd4cBmxTx3qtm9oavg.roa (hash: y2y1qSWU+HMBsyjHGzEQQZsskHsqz5iR/DyAxLMfaoM=) 6: p68H3uMjio8Wt8Lw5I34yYxIxUU.roa (hash: Cl/bx139AnmJ9IE64HvUFHSswl0yNbebsilLqxaX8Po=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/dae8b0-97d0-48d4-9b26-0137b1f75d02/1/JI9eJvHAj0SGyZEci2Cerotst00.crl rsync://rpki.ripe.net/repository/DEFAULT/0b/dae8b0-97d0-48d4-9b26-0137b1f75d02/1/JI9eJvHAj0SGyZEci2Cerotst00.mft rsync://rpki.ripe.net/repository/DEFAULT/JI9eJvHAj0SGyZEci2Cerotst00.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 23:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:10:14:4c:ae:cb:44:74:42:92:b5:82:eb:ae:4e:f0:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=248f5e26f1c08f4486c9911c8b609eae8b6cb74d Validity Not Before: Dec 12 01:02:04 2025 GMT Not After : Dec 13 01:02:04 2025 GMT Subject: CN=72784a7c0d8659cfcb68fc45e4e32456e8c732cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:7b:4e:3b:c6:c9:d0:85:d8:23:19:0f:90:48: 99:d4:90:e4:63:7a:76:78:86:25:6d:7d:1f:52:2c: 9f:02:6c:28:b1:e6:2c:ff:a6:e1:7e:07:76:36:2c: 68:70:47:43:62:3b:59:7b:ae:60:91:9e:71:2d:02: c3:f3:4a:d3:77:13:30:21:d9:e5:b5:1f:74:93:24: 1c:8d:73:a9:92:20:cc:c9:63:06:d9:c1:be:b4:94: 21:30:7f:b1:04:4c:40:6a:5a:8a:0d:2b:6c:9c:51: 78:03:66:b0:75:98:72:86:df:9e:ab:73:01:aa:e6: 1a:03:77:d7:81:4b:d7:bc:49:37:e8:94:b7:db:31: 8d:c2:74:10:5f:49:15:07:f1:5d:85:56:14:d5:bf: 9e:4b:84:3e:42:90:9f:6c:90:b4:83:d9:de:79:e2: 77:3b:7b:07:17:6d:6b:b4:ee:a3:f0:c0:3e:fc:93: d5:94:19:ff:a7:5e:4d:f3:37:94:28:ba:e1:7b:e7: f6:e4:51:8c:87:a2:42:b7:bc:eb:d6:fb:c1:cf:78: 4d:8a:0b:5c:99:c1:ee:ce:f7:fc:fb:57:ec:59:27: 7f:5a:62:8b:22:4e:9c:4d:f3:d3:f2:f5:f7:81:fe: ea:67:e6:cc:35:4c:7f:c2:0f:05:9c:a1:5d:e0:b3: 7d:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:78:4A:7C:0D:86:59:CF:CB:68:FC:45:E4:E3:24:56:E8:C7:32:CC X509v3 Authority Key Identifier: keyid:24:8F:5E:26:F1:C0:8F:44:86:C9:91:1C:8B:60:9E:AE:8B:6C:B7:4D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JI9eJvHAj0SGyZEci2Cerotst00.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/dae8b0-97d0-48d4-9b26-0137b1f75d02/1/JI9eJvHAj0SGyZEci2Cerotst00.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/dae8b0-97d0-48d4-9b26-0137b1f75d02/1/JI9eJvHAj0SGyZEci2Cerotst00.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 26:e1:e5:19:58:c3:14:7d:34:b5:38:25:ca:a2:a0:81:06:ca: c2:a1:29:be:49:60:b5:00:73:12:6c:68:3f:07:cf:36:7b:18: 8e:10:be:69:11:25:40:ae:02:aa:4c:a2:e7:87:b9:fb:b2:46: cc:f7:8a:20:22:b5:e6:fa:b2:99:d0:a7:f3:4e:f3:e8:ee:0f: 92:bf:b2:77:d2:d2:56:f6:7b:a0:6f:15:40:36:9a:3c:ab:f6: 45:21:a2:74:f2:b8:52:5b:5e:4d:d7:59:c4:2f:63:fa:4d:b0: fd:7b:dc:ab:dd:92:9d:e5:45:26:3b:ed:f7:25:46:05:da:8d: fd:00:83:ae:0d:0e:51:13:73:53:2b:cc:ba:0d:be:70:77:74: 49:1b:99:1e:e2:50:db:5d:7c:2c:4a:67:47:e4:a0:bd:bf:d4: ab:48:8d:b3:17:de:36:7c:43:35:07:a3:d9:ba:cf:97:d1:71: 81:72:b2:8d:86:17:d4:bf:9d:75:3a:56:ef:0a:5c:d1:fe:d4: eb:0b:7c:19:2d:5d:e9:6f:a9:69:6c:16:10:4e:3a:c2:65:7e: 61:4a:1e:7d:0b:b4:5b:ec:13:7d:f1:95:b4:b2:4f:6c:20:51: fd:6d:b5:12:c5:9c:a4:86:20:75:08:64:07:8c:91:cb:57:77: 34:4c:42:16 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsQFEyuy0R0QpK1guuuTvBgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI0OGY1ZTI2ZjFjMDhmNDQ4NmM5OTExYzhiNjA5ZWFlOGI2 Y2I3NGQwHhcNMjUxMjEyMDEwMjA0WhcNMjUxMjEzMDEwMjA0WjAzMTEwLwYDVQQD Eyg3Mjc4NGE3YzBkODY1OWNmY2I2OGZjNDVlNGUzMjQ1NmU4YzczMmNjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzXtOO8bJ0IXYIxkPkEiZ1JDkY3p2 eIYlbX0fUiyfAmwoseYs/6bhfgd2NixocEdDYjtZe65gkZ5xLQLD80rTdxMwIdnl tR90kyQcjXOpkiDMyWMG2cG+tJQhMH+xBExAalqKDStsnFF4A2awdZhyht+eq3MB quYaA3fXgUvXvEk36JS32zGNwnQQX0kVB/FdhVYU1b+eS4Q+QpCfbJC0g9neeeJ3 O3sHF21rtO6j8MA+/JPVlBn/p15N8zeUKLrhe+f25FGMh6JCt7zr1vvBz3hNigtc mcHuzvf8+1fsWSd/WmKLIk6cTfPT8vX3gf7qZ+bMNUx/wg8FnKFd4LN91wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHJ4SnwNhlnPy2j8ReTjJFboxzLMMB8GA1UdIwQY MBaAFCSPXibxwI9EhsmRHItgnq6LbLdNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSkk5ZUp2SEFqMFNHeVpFY2kyQ2Vyb3RzdDAwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi9kYWU4YjAtOTdkMC00OGQ0LTliMjYt MDEzN2IxZjc1ZDAyLzEvSkk5ZUp2SEFqMFNHeVpFY2kyQ2Vyb3RzdDAwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYi9kYWU4YjAtOTdkMC00OGQ0LTliMjYtMDEzN2IxZjc1ZDAy LzEvSkk5ZUp2SEFqMFNHeVpFY2kyQ2Vyb3RzdDAwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJuHlGVjD FH00tTglyqKggQbKwqEpvklgtQBzEmxoPwfPNnsYjhC+aRElQK4Cqkyi54e5+7JG zPeKICK15vqymdCn807z6O4Pkr+yd9LSVvZ7oG8VQDaaPKv2RSGidPK4UlteTddZ xC9j+k2w/Xvcq92SneVFJjvt9yVGBdqN/QCDrg0OURNzUyvMug2+cHd0SRuZHuJQ 2118LEpnR+Sgvb/Uq0iNsxfeNnxDNQej2brPl9FxgXKyjYYX1L+ddTpW7wpc0f7U 6wt8GS1d6W+paWwWEE46wmV+YUoefQu0W+wTffGVtLJPbCBR/W21EsWcpIYgdQhk B4yRy1d3NExCFg== -----END CERTIFICATE-----Generated at Fri Dec 12 09:25:44 2025 by rpki-client