This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/227b53-473d-46af-8201-98e879ea3726/1/jbK0TyPcypwGBL7WkPKKatkBeZk.mft File: jbK0TyPcypwGBL7WkPKKatkBeZk.mft (raw, json) Hash identifier: +TQNcinaZptnceqq5iRMW6ajS8axtz0PItLaPVNY+T4= Subject key identifier: AE:65:5E:85:62:1F:86:CB:0B:5E:01:2F:49:56:0A:CE:15:67:EA:73 Authority key identifier: 8D:B2:B4:4F:23:DC:CA:9C:06:04:BE:D6:90:F2:8A:6A:D9:01:79:99 Certificate issuer: /CN=8db2b44f23dcca9c0604bed690f28a6ad9017999 Certificate serial: 019B17CE24DB7A1B6AE932057B32BCF38BC5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jbK0TyPcypwGBL7WkPKKatkBeZk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/227b53-473d-46af-8201-98e879ea3726/1/jbK0TyPcypwGBL7WkPKKatkBeZk.mft Manifest number: 55 Signing time: Sat 13 Dec 2025 13:02:24 +0000 Manifest this update: Sat 13 Dec 2025 13:02:24 +0000 Manifest next update: Sun 14 Dec 2025 13:02:24 +0000 Files and hashes: 1: 5WohgI8tokdWePAAZwHEQvswWYU.roa (hash: eFTYXxWMtPfD9bURTpn9aVW+rjoqm6VU8HSnGT9lP2I=) 2: jbK0TyPcypwGBL7WkPKKatkBeZk.crl (hash: oEF0ianhtScdFZTo51qDnbHV7i0lhrDTSk5ICzzszgc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/227b53-473d-46af-8201-98e879ea3726/1/jbK0TyPcypwGBL7WkPKKatkBeZk.crl rsync://rpki.ripe.net/repository/DEFAULT/19/227b53-473d-46af-8201-98e879ea3726/1/jbK0TyPcypwGBL7WkPKKatkBeZk.mft rsync://rpki.ripe.net/repository/DEFAULT/jbK0TyPcypwGBL7WkPKKatkBeZk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Dec 2025 11:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:17:ce:24:db:7a:1b:6a:e9:32:05:7b:32:bc:f3:8b:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8db2b44f23dcca9c0604bed690f28a6ad9017999 Validity Not Before: Dec 13 13:02:24 2025 GMT Not After : Dec 14 13:02:24 2025 GMT Subject: CN=ae655e85621f86cb0b5e012f49560ace1567ea73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:9e:2f:27:5e:9e:ca:b1:77:e9:8a:db:1a:ba: 24:fd:53:f6:a0:cc:32:5d:d2:60:c8:1b:00:c4:68: 74:a8:f8:22:cd:4f:7b:06:86:70:44:c2:e9:54:a7: 2e:0b:26:7e:cd:0e:6f:c3:70:e7:d9:d2:59:fe:ac: 03:b2:90:70:31:65:f9:81:04:c9:7b:24:97:05:bf: 4b:da:f4:fa:5e:57:45:2c:14:48:e9:14:f6:d6:fe: da:3c:78:ea:24:0e:65:17:2b:8f:7d:1f:de:0f:34: 4b:35:9c:a1:e4:87:54:da:7c:5b:b0:b7:ad:dd:ba: 90:ff:4d:f4:50:64:fd:e1:29:a7:da:1a:35:e0:7d: e5:b8:25:5d:c4:2c:30:4e:bb:11:01:1a:dc:5b:db: ad:6c:39:cf:67:92:62:5a:2a:72:b1:ec:16:f3:06: 99:d2:a8:11:1b:6a:6c:4e:62:ab:23:54:36:3a:39: 8c:4a:69:d3:68:c2:58:de:48:0b:97:dc:a6:69:1a: 62:30:38:1f:10:7b:e3:6d:4e:d6:90:f0:e9:e1:40: 00:71:cf:27:2a:be:89:8e:e7:2f:47:1a:4b:15:cf: be:b9:5d:49:34:6a:83:8d:18:b9:30:0c:25:87:5a: 94:b3:02:2c:d3:2d:7b:e5:9a:86:34:3b:f3:11:7c: fc:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:65:5E:85:62:1F:86:CB:0B:5E:01:2F:49:56:0A:CE:15:67:EA:73 X509v3 Authority Key Identifier: keyid:8D:B2:B4:4F:23:DC:CA:9C:06:04:BE:D6:90:F2:8A:6A:D9:01:79:99 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jbK0TyPcypwGBL7WkPKKatkBeZk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/227b53-473d-46af-8201-98e879ea3726/1/jbK0TyPcypwGBL7WkPKKatkBeZk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/19/227b53-473d-46af-8201-98e879ea3726/1/jbK0TyPcypwGBL7WkPKKatkBeZk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 34:26:06:f2:4c:90:9a:32:ff:a8:24:76:73:ef:78:42:c2:59: ff:50:8d:c1:ab:f9:a0:6f:94:77:81:f3:b9:5e:aa:07:03:ad: 9c:4a:f5:a2:d1:0d:42:e3:2c:d6:57:fa:11:5f:0f:1a:ea:b6: 01:20:b3:d0:92:bd:e3:2e:cd:a6:be:6d:a0:a5:f5:33:e6:34: 90:45:b0:87:c6:c9:50:f9:9e:54:5b:9e:2b:62:61:55:f7:ec: 04:02:54:18:74:38:45:66:2c:4d:35:e2:69:0c:24:19:99:b1: cf:70:ba:5c:b9:29:35:8d:be:42:dd:b0:05:c4:d7:4a:96:6d: 75:14:ba:59:23:26:ad:a3:3f:68:ca:be:8c:5e:7f:5d:f8:64: 09:80:b2:f2:37:9d:7a:1b:e4:8f:66:b0:01:89:5a:73:44:a5: 6a:59:b4:a8:42:d4:47:8a:7d:35:5d:cb:81:1e:83:cc:01:a4: f8:50:fd:6f:65:d8:de:27:0d:a1:05:9a:13:8c:ea:c4:2e:9a: 87:34:3c:48:75:1c:49:e3:29:d7:73:74:26:c5:dd:96:5c:54: 9c:27:78:0c:89:35:ab:39:89:49:e6:a0:63:ce:48:d0:9d:4f: 89:01:ea:26:6f:d5:5c:37:8e:f9:3e:78:08:23:cd:24:db:89: 69:86:16:0f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsXziTbehtq6TIFezK884vFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhkYjJiNDRmMjNkY2NhOWMwNjA0YmVkNjkwZjI4YTZhZDkw MTc5OTkwHhcNMjUxMjEzMTMwMjI0WhcNMjUxMjE0MTMwMjI0WjAzMTEwLwYDVQQD EyhhZTY1NWU4NTYyMWY4NmNiMGI1ZTAxMmY0OTU2MGFjZTE1NjdlYTczMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt54vJ16eyrF36YrbGrok/VP2oMwy XdJgyBsAxGh0qPgizU97BoZwRMLpVKcuCyZ+zQ5vw3Dn2dJZ/qwDspBwMWX5gQTJ eySXBb9L2vT6XldFLBRI6RT21v7aPHjqJA5lFyuPfR/eDzRLNZyh5IdU2nxbsLet 3bqQ/030UGT94Smn2ho14H3luCVdxCwwTrsRARrcW9utbDnPZ5JiWipysewW8waZ 0qgRG2psTmKrI1Q2OjmMSmnTaMJY3kgLl9ymaRpiMDgfEHvjbU7WkPDp4UAAcc8n Kr6JjucvRxpLFc++uV1JNGqDjRi5MAwlh1qUswIs0y175ZqGNDvzEXz8nQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFK5lXoViH4bLC14BL0lWCs4VZ+pzMB8GA1UdIwQY MBaAFI2ytE8j3MqcBgS+1pDyimrZAXmZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvamJLMFR5UGN5cHdHQkw3V2tQS0thdGtCZVprLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOS8yMjdiNTMtNDczZC00NmFmLTgyMDEt OThlODc5ZWEzNzI2LzEvamJLMFR5UGN5cHdHQkw3V2tQS0thdGtCZVprLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xOS8yMjdiNTMtNDczZC00NmFmLTgyMDEtOThlODc5ZWEzNzI2 LzEvamJLMFR5UGN5cHdHQkw3V2tQS0thdGtCZVprLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANCYG8kyQ mjL/qCR2c+94QsJZ/1CNwav5oG+Ud4HzuV6qBwOtnEr1otENQuMs1lf6EV8PGuq2 ASCz0JK94y7Npr5toKX1M+Y0kEWwh8bJUPmeVFueK2JhVffsBAJUGHQ4RWYsTTXi aQwkGZmxz3C6XLkpNY2+Qt2wBcTXSpZtdRS6WSMmraM/aMq+jF5/XfhkCYCy8jed ehvkj2awAYlac0Slalm0qELUR4p9NV3LgR6DzAGk+FD9b2XY3icNoQWaE4zqxC6a hzQ8SHUcSeMp13N0JsXdllxUnCd4DIk1qzmJSeagY85I0J1PiQHqJm/VXDeO+T54 CCPNJNuJaYYWDw== -----END CERTIFICATE-----Generated at Sat Dec 13 15:00:41 2025 by rpki-client