This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/4c2ebc-d795-4610-82ef-491fe7acc1a9/1/jB5yD9dd1gE0W5h2rqf5GrRG1H8.mft File: jB5yD9dd1gE0W5h2rqf5GrRG1H8.mft (raw, json) Hash identifier: DTwuA3LNYZzYa/7wbC+yZwfgGhNg6mpaGMmPuVhG7rs= Subject key identifier: 4C:29:80:02:6F:85:CA:F5:35:35:BE:A0:AA:83:20:16:B9:A0:BD:4E Authority key identifier: 8C:1E:72:0F:D7:5D:D6:01:34:5B:98:76:AE:A7:F9:1A:B4:46:D4:7F Certificate issuer: /CN=8c1e720fd75dd601345b9876aea7f91ab446d47f Certificate serial: 019B593EE15CE28CBC00229CC110EA0B3401 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jB5yD9dd1gE0W5h2rqf5GrRG1H8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/4c2ebc-d795-4610-82ef-491fe7acc1a9/1/jB5yD9dd1gE0W5h2rqf5GrRG1H8.mft Manifest number: 0B88 Signing time: Fri 26 Dec 2025 06:00:51 +0000 Manifest this update: Fri 26 Dec 2025 06:00:51 +0000 Manifest next update: Sat 27 Dec 2025 06:00:51 +0000 Files and hashes: 1: 1Z24fBNx8rmTRNvnUUAzUhBybME.asa (hash: 6NIi4gd7wrkT8Y6NiYPBaoHXBemK5o4Vj6X3g2v2FgM=) 2: jB5yD9dd1gE0W5h2rqf5GrRG1H8.crl (hash: 30K8Kq8zRbxXTqmBChjpgXegUtybAIMjh9p+Yz5mfE8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/4c2ebc-d795-4610-82ef-491fe7acc1a9/1/jB5yD9dd1gE0W5h2rqf5GrRG1H8.crl rsync://rpki.ripe.net/repository/DEFAULT/2c/4c2ebc-d795-4610-82ef-491fe7acc1a9/1/jB5yD9dd1gE0W5h2rqf5GrRG1H8.mft rsync://rpki.ripe.net/repository/DEFAULT/jB5yD9dd1gE0W5h2rqf5GrRG1H8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:3e:e1:5c:e2:8c:bc:00:22:9c:c1:10:ea:0b:34:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8c1e720fd75dd601345b9876aea7f91ab446d47f Validity Not Before: Dec 26 06:00:51 2025 GMT Not After : Dec 27 06:00:51 2025 GMT Subject: CN=4c2980026f85caf53535bea0aa832016b9a0bd4e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:22:5b:9b:56:8c:d2:64:44:a5:d3:ab:ff:87: 8a:b5:c5:a4:7f:81:17:2a:50:6f:9d:a0:2e:1f:6d: 9a:41:4c:ba:1f:cb:bb:88:c3:c6:37:af:c0:d7:4c: dd:8d:e8:62:14:f1:c4:5d:54:c9:ec:29:fc:dc:a6: f0:6c:65:83:b1:d9:ab:2a:75:5f:a6:2e:f7:a1:f8: 2f:6a:08:c5:45:51:50:5d:71:c4:ac:9c:df:5b:07: 42:51:74:5e:24:a7:cd:4c:ec:c3:c4:b7:af:e3:3b: 4b:0a:d0:06:5a:f9:8e:48:7b:2d:c4:54:00:f8:fd: 52:94:ea:ea:81:6d:e6:98:cb:07:99:26:f3:c5:0d: b7:05:1f:d2:cc:9c:92:f2:c2:26:c7:59:b4:c8:99: cc:9b:de:38:42:26:e5:a9:b9:b9:31:60:36:55:f4: 08:12:cf:ac:10:88:c9:99:fa:0d:c6:79:12:fb:c2: 1d:a9:06:56:c8:f6:03:a4:8e:db:67:70:01:26:4f: b8:c9:00:5b:32:c7:2d:b6:99:96:88:5d:53:6b:15: a0:e4:02:98:57:94:2e:75:e9:31:61:e0:43:6f:14: e0:78:cf:48:d7:04:f5:3e:6c:62:93:53:ba:31:cf: 68:b5:fc:f0:9d:3e:ee:9f:6f:8e:ea:c3:8e:2a:10: 96:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:29:80:02:6F:85:CA:F5:35:35:BE:A0:AA:83:20:16:B9:A0:BD:4E X509v3 Authority Key Identifier: keyid:8C:1E:72:0F:D7:5D:D6:01:34:5B:98:76:AE:A7:F9:1A:B4:46:D4:7F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jB5yD9dd1gE0W5h2rqf5GrRG1H8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/4c2ebc-d795-4610-82ef-491fe7acc1a9/1/jB5yD9dd1gE0W5h2rqf5GrRG1H8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/4c2ebc-d795-4610-82ef-491fe7acc1a9/1/jB5yD9dd1gE0W5h2rqf5GrRG1H8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 86:0a:43:4d:22:fd:d8:98:f4:00:08:ea:3c:d8:74:7f:d8:df: 34:6e:35:7f:2a:48:78:2e:8c:b8:01:f9:2d:7e:95:63:91:d1: ab:d1:9c:fc:d2:3c:be:7a:fe:e1:a2:a2:07:97:df:8b:e4:dd: 68:c7:5c:af:46:bd:a4:97:dc:af:94:11:af:2a:69:f0:b7:6d: 31:4c:e4:09:dd:c5:27:fa:c3:a0:76:5b:ef:8d:c5:b7:9a:96: 57:6c:f8:7f:e4:60:f2:d3:f5:b5:fb:ff:94:cf:a0:14:e8:80: 49:92:f0:38:c2:98:91:b1:8e:d4:83:c2:6d:44:ac:21:59:a4: 8b:db:b2:0d:26:5b:57:73:b1:a7:17:ce:07:73:45:09:6f:ae: 1e:80:76:42:ca:4e:04:92:d0:fc:f8:0a:6f:1d:33:9a:1c:5c: 83:28:7f:9f:78:62:52:01:ce:32:8f:7a:a6:f4:69:76:b9:2e: 67:31:cd:78:d7:97:59:ff:8f:ca:3f:ba:c3:d4:e6:7b:a2:08: 61:5d:5b:ff:be:66:89:1e:dd:cb:c8:c8:27:a5:62:83:31:87: 29:38:52:87:e8:f1:9b:11:14:22:5a:52:e0:d4:82:a4:cf:6c: c1:5c:01:ee:03:75:0f:10:11:fa:48:ca:8a:39:95:d3:65:a2: ca:5d:57:c9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZPuFc4oy8ACKcwRDqCzQBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhjMWU3MjBmZDc1ZGQ2MDEzNDViOTg3NmFlYTdmOTFhYjQ0 NmQ0N2YwHhcNMjUxMjI2MDYwMDUxWhcNMjUxMjI3MDYwMDUxWjAzMTEwLwYDVQQD Eyg0YzI5ODAwMjZmODVjYWY1MzUzNWJlYTBhYTgzMjAxNmI5YTBiZDRlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0iJbm1aM0mREpdOr/4eKtcWkf4EX KlBvnaAuH22aQUy6H8u7iMPGN6/A10zdjehiFPHEXVTJ7Cn83KbwbGWDsdmrKnVf pi73ofgvagjFRVFQXXHErJzfWwdCUXReJKfNTOzDxLev4ztLCtAGWvmOSHstxFQA +P1SlOrqgW3mmMsHmSbzxQ23BR/SzJyS8sImx1m0yJnMm944Qiblqbm5MWA2VfQI Es+sEIjJmfoNxnkS+8IdqQZWyPYDpI7bZ3ABJk+4yQBbMscttpmWiF1TaxWg5AKY V5QudekxYeBDbxTgeM9I1wT1Pmxik1O6Mc9otfzwnT7un2+O6sOOKhCWNwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEwpgAJvhcr1NTW+oKqDIBa5oL1OMB8GA1UdIwQY MBaAFIwecg/XXdYBNFuYdq6n+Rq0RtR/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvakI1eUQ5ZGQxZ0UwVzVoMnJxZjVHclJHMUg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYy80YzJlYmMtZDc5NS00NjEwLTgyZWYt NDkxZmU3YWNjMWE5LzEvakI1eUQ5ZGQxZ0UwVzVoMnJxZjVHclJHMUg4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYy80YzJlYmMtZDc5NS00NjEwLTgyZWYtNDkxZmU3YWNjMWE5 LzEvakI1eUQ5ZGQxZ0UwVzVoMnJxZjVHclJHMUg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhgpDTSL9 2Jj0AAjqPNh0f9jfNG41fypIeC6MuAH5LX6VY5HRq9Gc/NI8vnr+4aKiB5ffi+Td aMdcr0a9pJfcr5QRrypp8LdtMUzkCd3FJ/rDoHZb743Ft5qWV2z4f+Rg8tP1tfv/ lM+gFOiASZLwOMKYkbGO1IPCbUSsIVmki9uyDSZbV3OxpxfOB3NFCW+uHoB2QspO BJLQ/PgKbx0zmhxcgyh/n3hiUgHOMo96pvRpdrkuZzHNeNeXWf+Pyj+6w9Tme6II YV1b/75miR7dy8jIJ6VigzGHKThSh+jxmxEUIlpS4NSCpM9swVwB7gN1DxAR+kjK ijmV02Wiyl1XyQ== -----END CERTIFICATE-----Generated at Fri Dec 26 16:03:33 2025 by rpki-client