This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.mft File: jha95kqam7o_-hQ4oZesP5SYn68.mft (raw, json) Hash identifier: iaKPTZNanfhHtg9Kq1mJg6N1fUwTVSom8jToIt1oCew= Subject key identifier: D9:1F:DC:36:D3:D5:52:59:9D:AD:A2:58:BA:EE:C6:97:3D:23:87:6D Authority key identifier: 8E:16:BD:E6:4A:9A:9B:BA:3F:FA:14:38:A1:97:AC:3F:94:98:9F:AF Certificate issuer: /CN=8e16bde64a9a9bba3ffa1438a197ac3f94989faf Certificate serial: 019B5A1A967A3F42EA982BFA236D6C3DBC97 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jha95kqam7o_-hQ4oZesP5SYn68.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.mft Manifest number: 0B2B Signing time: Fri 26 Dec 2025 10:00:50 +0000 Manifest this update: Fri 26 Dec 2025 10:00:50 +0000 Manifest next update: Sat 27 Dec 2025 10:00:50 +0000 Files and hashes: 1: jha95kqam7o_-hQ4oZesP5SYn68.crl (hash: ANjgm/Fq6H0mNxRliOFVL6K2xl6FGgyPAvnrTowUJz4=) 2: lgcKgcRNJg401G2YURIZe_B5NuU.roa (hash: uy67hQlFG6+Rikv9aAochHvjUmoKf+eqiNInXnUkhzk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.crl rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.mft rsync://rpki.ripe.net/repository/DEFAULT/jha95kqam7o_-hQ4oZesP5SYn68.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 10:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5a:1a:96:7a:3f:42:ea:98:2b:fa:23:6d:6c:3d:bc:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8e16bde64a9a9bba3ffa1438a197ac3f94989faf Validity Not Before: Dec 26 10:00:50 2025 GMT Not After : Dec 27 10:00:50 2025 GMT Subject: CN=d91fdc36d3d552599dada258baeec6973d23876d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:c8:1b:dc:c2:e8:41:0c:f0:f3:66:f2:17:c5: 9b:f1:89:85:53:78:c1:19:a9:59:1d:c8:9d:af:36: 24:e5:b8:cc:bb:d5:06:fa:16:7b:1a:cc:e4:0e:b0: 24:0d:6a:7e:56:e4:f1:f0:b4:19:fe:52:d1:13:a2: 10:a4:54:9f:b0:e6:03:5c:f9:88:ea:80:d0:75:ce: eb:f7:ef:1d:65:7f:d7:1d:1e:70:2f:7d:21:57:1b: 4c:08:99:0e:9b:df:45:7c:f3:03:b6:0b:a5:2d:52: 15:74:59:06:3a:0a:fd:ff:fc:2d:cb:92:c2:e6:e1: 4b:1b:4a:99:51:31:89:6d:0a:57:ed:0a:70:d1:37: 54:99:7c:53:75:d7:32:d6:e6:e6:02:55:11:a9:6f: 72:01:9f:56:9e:c7:78:ec:31:ce:39:c1:52:bf:bb: a7:dd:66:11:45:4a:0c:aa:d9:b6:7c:9c:5a:cb:d7: 8f:84:ce:7a:07:41:52:1c:50:9f:9b:3f:c7:ef:2c: 89:0a:68:c4:45:31:e5:b6:a7:3b:34:5a:be:4f:5d: 77:b2:22:de:b3:65:84:3f:e1:e5:92:48:e4:4f:81: 71:21:ae:ed:75:3a:ed:85:df:2d:9e:ff:51:b3:0e: 85:34:fa:00:6c:43:50:7e:9b:83:5f:be:92:59:40: 1a:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:1F:DC:36:D3:D5:52:59:9D:AD:A2:58:BA:EE:C6:97:3D:23:87:6D X509v3 Authority Key Identifier: keyid:8E:16:BD:E6:4A:9A:9B:BA:3F:FA:14:38:A1:97:AC:3F:94:98:9F:AF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jha95kqam7o_-hQ4oZesP5SYn68.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/39ab2e-feeb-4a0e-8740-45296c32f0a3/1/jha95kqam7o_-hQ4oZesP5SYn68.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 59:ec:c5:1f:00:49:f9:0b:85:a1:7d:8b:02:f0:ad:3d:a0:8c: 2d:76:df:46:1e:a2:ba:23:8b:81:e7:5d:dc:16:05:79:24:a5: ab:cd:66:e0:ac:0a:98:ab:71:5a:b3:45:b9:5f:c6:bb:95:57: ab:1e:9b:d6:2e:b9:03:8a:30:85:8c:71:5c:29:83:18:51:52: 78:01:83:ed:19:21:8b:a4:83:fa:39:0d:8a:fa:25:66:36:36: 71:9b:8c:db:c7:ff:de:88:68:ac:07:d5:e5:76:f8:47:4f:36: f7:aa:29:6b:ec:18:6a:d2:ba:41:25:3d:96:98:57:38:63:dd: c6:9b:3b:76:26:55:f8:ae:83:8b:6d:c0:60:7f:45:2d:93:ab: 45:a7:4d:f3:3b:cd:3b:c5:c1:18:24:46:7e:01:f1:00:d7:dc: f8:cc:bf:1b:1b:cb:f2:95:fd:d2:b8:cb:e5:0d:e1:7d:a4:9f: 3c:5a:c2:d5:31:27:55:6b:e2:85:e3:c9:37:fe:08:c0:7f:5e: 0b:bb:97:90:65:b7:72:29:65:af:f5:56:08:fa:67:c2:8f:82: 83:2d:6f:05:01:c9:a5:65:41:90:0c:19:06:13:27:e1:d6:47: 0c:d9:74:69:22:b9:49:3e:1f:f1:11:a6:78:69:c6:b9:03:d1: fc:9c:c5:64 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtaGpZ6P0LqmCv6I21sPbyXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhlMTZiZGU2NGE5YTliYmEzZmZhMTQzOGExOTdhYzNmOTQ5 ODlmYWYwHhcNMjUxMjI2MTAwMDUwWhcNMjUxMjI3MTAwMDUwWjAzMTEwLwYDVQQD EyhkOTFmZGMzNmQzZDU1MjU5OWRhZGEyNThiYWVlYzY5NzNkMjM4NzZkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiMgb3MLoQQzw82byF8Wb8YmFU3jB GalZHcidrzYk5bjMu9UG+hZ7GszkDrAkDWp+VuTx8LQZ/lLRE6IQpFSfsOYDXPmI 6oDQdc7r9+8dZX/XHR5wL30hVxtMCJkOm99FfPMDtgulLVIVdFkGOgr9//wty5LC 5uFLG0qZUTGJbQpX7Qpw0TdUmXxTddcy1ubmAlURqW9yAZ9Wnsd47DHOOcFSv7un 3WYRRUoMqtm2fJxay9ePhM56B0FSHFCfmz/H7yyJCmjERTHltqc7NFq+T113siLe s2WEP+HlkkjkT4FxIa7tdTrthd8tnv9Rsw6FNPoAbENQfpuDX76SWUAacQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNkf3DbT1VJZna2iWLruxpc9I4dtMB8GA1UdIwQY MBaAFI4WveZKmpu6P/oUOKGXrD+UmJ+vMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvamhhOTVrcWFtN29fLWhRNG9aZXNQNVNZbjY4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZS8zOWFiMmUtZmVlYi00YTBlLTg3NDAt NDUyOTZjMzJmMGEzLzEvamhhOTVrcWFtN29fLWhRNG9aZXNQNVNZbjY4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZS8zOWFiMmUtZmVlYi00YTBlLTg3NDAtNDUyOTZjMzJmMGEz LzEvamhhOTVrcWFtN29fLWhRNG9aZXNQNVNZbjY4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWezFHwBJ +QuFoX2LAvCtPaCMLXbfRh6iuiOLgedd3BYFeSSlq81m4KwKmKtxWrNFuV/Gu5VX qx6b1i65A4owhYxxXCmDGFFSeAGD7Rkhi6SD+jkNivolZjY2cZuM28f/3ohorAfV 5Xb4R08296opa+wYatK6QSU9lphXOGPdxps7diZV+K6Di23AYH9FLZOrRadN8zvN O8XBGCRGfgHxANfc+My/GxvL8pX90rjL5Q3hfaSfPFrC1TEnVWvihePJN/4IwH9e C7uXkGW3cillr/VWCPpnwo+Cgy1vBQHJpWVBkAwZBhMn4dZHDNl0aSK5ST4f8RGm eGnGuQPR/JzFZA== -----END CERTIFICATE-----Generated at Fri Dec 26 17:43:28 2025 by rpki-client