This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/2fbc67-d6f8-4ea4-bde3-53b31044ed5b/1/J0PbfuNKwtTtV49JXgCWy5iv9xw.mft File: J0PbfuNKwtTtV49JXgCWy5iv9xw.mft (raw, json) Hash identifier: yAAKCU1T8efXIDclpkcwNJm3zV0B7rjI6Vhm5BWpf38= Subject key identifier: 8C:0E:F5:0F:77:D5:D0:74:C6:7F:BE:B5:13:27:92:03:C9:18:9C:FB Authority key identifier: 27:43:DB:7E:E3:4A:C2:D4:ED:57:8F:49:5E:00:96:CB:98:AF:F7:1C Certificate issuer: /CN=2743db7ee34ac2d4ed578f495e0096cb98aff71c Certificate serial: 019B1FF3EDBD5B358B23D64338B6CB380C08 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J0PbfuNKwtTtV49JXgCWy5iv9xw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/2fbc67-d6f8-4ea4-bde3-53b31044ed5b/1/J0PbfuNKwtTtV49JXgCWy5iv9xw.mft Manifest number: 02C4 Signing time: Mon 15 Dec 2025 03:00:38 +0000 Manifest this update: Mon 15 Dec 2025 03:00:38 +0000 Manifest next update: Tue 16 Dec 2025 03:00:38 +0000 Files and hashes: 1: J0PbfuNKwtTtV49JXgCWy5iv9xw.crl (hash: 2sOPJmGlaEWC8ZnOvBRF6nH8bueqY/HO02DzNRTUCfE=) 2: dDAgjd5fwQ3cte1EAxZ7pLJLl0U.roa (hash: 2txr4+GD0XgpxhSLLq5aM5yNR187eckG+kO4tKZmm3U=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/75/2fbc67-d6f8-4ea4-bde3-53b31044ed5b/1/J0PbfuNKwtTtV49JXgCWy5iv9xw.crl rsync://rpki.ripe.net/repository/DEFAULT/75/2fbc67-d6f8-4ea4-bde3-53b31044ed5b/1/J0PbfuNKwtTtV49JXgCWy5iv9xw.mft rsync://rpki.ripe.net/repository/DEFAULT/J0PbfuNKwtTtV49JXgCWy5iv9xw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 03:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:1f:f3:ed:bd:5b:35:8b:23:d6:43:38:b6:cb:38:0c:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2743db7ee34ac2d4ed578f495e0096cb98aff71c Validity Not Before: Dec 15 03:00:38 2025 GMT Not After : Dec 16 03:00:38 2025 GMT Subject: CN=8c0ef50f77d5d074c67fbeb513279203c9189cfb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:9f:79:69:96:53:f4:97:c6:d2:16:a7:0f:ef: eb:3d:8a:6d:7a:23:15:d4:b0:79:87:59:d7:cf:0b: 62:59:06:34:0e:ca:76:98:68:4e:d3:b1:44:00:31: 2a:5d:30:06:d0:81:06:c9:14:14:bb:11:e4:2f:37: 6d:43:35:bd:11:db:85:9f:1a:16:3f:c0:6a:ea:b1: e1:c2:30:17:6d:f6:d2:d2:80:2d:1b:3c:88:83:85: e4:bf:ee:6b:7b:53:31:f8:07:ab:7b:9b:d9:69:ac: 69:5e:c9:86:51:ef:22:ad:13:a2:a1:6c:80:5c:ea: 01:e8:2c:fc:a8:6f:b2:81:ef:66:0d:ec:29:65:bc: 88:ac:56:e0:08:41:0c:3d:f8:4f:f1:9e:f7:65:ff: ad:8a:eb:5e:7e:ef:73:4c:bb:92:9a:30:c9:d7:d0: 12:d8:cc:e8:cd:c7:63:f7:98:73:1a:ba:62:01:1e: c5:47:d7:d5:b0:3d:38:2a:c3:24:1b:8f:a5:2d:39: 2e:62:39:7a:7c:11:a0:3d:4f:d3:90:4f:ae:1a:41: 36:93:ec:69:0a:ab:99:bd:72:1b:d4:cf:11:01:a2: 96:a0:bf:99:30:9d:88:bd:88:50:e2:68:78:c0:57: 24:3e:62:41:22:2b:96:73:70:5a:cb:7d:0a:06:53: e3:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:0E:F5:0F:77:D5:D0:74:C6:7F:BE:B5:13:27:92:03:C9:18:9C:FB X509v3 Authority Key Identifier: keyid:27:43:DB:7E:E3:4A:C2:D4:ED:57:8F:49:5E:00:96:CB:98:AF:F7:1C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J0PbfuNKwtTtV49JXgCWy5iv9xw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/2fbc67-d6f8-4ea4-bde3-53b31044ed5b/1/J0PbfuNKwtTtV49JXgCWy5iv9xw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/75/2fbc67-d6f8-4ea4-bde3-53b31044ed5b/1/J0PbfuNKwtTtV49JXgCWy5iv9xw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c0:4b:2e:af:e5:8f:e9:fe:c9:ee:e6:d7:cd:b3:ec:d9:dd:57: fc:8b:28:75:fd:38:c9:5b:83:e7:4b:96:a7:ec:60:67:22:ea: 77:64:c2:9e:cb:e8:9f:7c:e4:8b:9a:98:13:35:ec:02:4f:91: 2a:00:fa:9a:1a:fb:84:da:69:9b:d5:4a:eb:7c:4b:a2:04:28: 44:25:4b:a4:9c:6f:56:b3:00:f7:40:51:b2:db:c5:98:7b:54: f9:c1:45:cd:37:30:22:f5:94:e8:32:4e:2f:d5:38:62:fb:e3: a7:01:30:4b:d1:a9:e0:34:88:c1:29:e7:e6:7c:b8:a7:8d:89: 21:43:e4:0f:e6:32:d7:03:15:48:b3:a5:e7:32:79:b2:4c:c9: 96:30:7c:5f:ec:77:0a:2c:00:a5:95:3b:3b:64:6a:f8:c1:23: 96:c2:ee:5d:98:9d:ca:cb:44:1f:bd:d3:18:93:1e:94:95:37: 20:79:04:8e:c9:bb:ea:6e:bf:bd:88:80:4d:4a:2f:38:04:50: 01:d4:e2:68:d4:90:38:cc:ed:ec:24:d0:43:3b:97:7b:93:d5: 04:69:0e:92:1d:e8:81:7f:2e:d8:f9:ad:81:f9:16:40:c0:f1: de:30:e5:6c:d1:f8:25:c4:91:8f:64:ad:e1:0d:ef:b5:e0:a3: 19:dd:2a:c5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsf8+29WzWLI9ZDOLbLOAwIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI3NDNkYjdlZTM0YWMyZDRlZDU3OGY0OTVlMDA5NmNiOThh ZmY3MWMwHhcNMjUxMjE1MDMwMDM4WhcNMjUxMjE2MDMwMDM4WjAzMTEwLwYDVQQD Eyg4YzBlZjUwZjc3ZDVkMDc0YzY3ZmJlYjUxMzI3OTIwM2M5MTg5Y2ZiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlZ95aZZT9JfG0hanD+/rPYpteiMV 1LB5h1nXzwtiWQY0Dsp2mGhO07FEADEqXTAG0IEGyRQUuxHkLzdtQzW9EduFnxoW P8Bq6rHhwjAXbfbS0oAtGzyIg4Xkv+5re1Mx+Aere5vZaaxpXsmGUe8irROioWyA XOoB6Cz8qG+yge9mDewpZbyIrFbgCEEMPfhP8Z73Zf+tiutefu9zTLuSmjDJ19AS 2Mzozcdj95hzGrpiAR7FR9fVsD04KsMkG4+lLTkuYjl6fBGgPU/TkE+uGkE2k+xp CquZvXIb1M8RAaKWoL+ZMJ2IvYhQ4mh4wFckPmJBIiuWc3Bay30KBlPjpQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIwO9Q931dB0xn++tRMnkgPJGJz7MB8GA1UdIwQY MBaAFCdD237jSsLU7VePSV4AlsuYr/ccMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSjBQYmZ1Tkt3dFR0VjQ5SlhnQ1d5NWl2OXh3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NS8yZmJjNjctZDZmOC00ZWE0LWJkZTMt NTNiMzEwNDRlZDViLzEvSjBQYmZ1Tkt3dFR0VjQ5SlhnQ1d5NWl2OXh3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83NS8yZmJjNjctZDZmOC00ZWE0LWJkZTMtNTNiMzEwNDRlZDVi LzEvSjBQYmZ1Tkt3dFR0VjQ5SlhnQ1d5NWl2OXh3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAwEsur+WP 6f7J7ubXzbPs2d1X/Isodf04yVuD50uWp+xgZyLqd2TCnsvon3zki5qYEzXsAk+R KgD6mhr7hNppm9VK63xLogQoRCVLpJxvVrMA90BRstvFmHtU+cFFzTcwIvWU6DJO L9U4YvvjpwEwS9Gp4DSIwSnn5ny4p42JIUPkD+Yy1wMVSLOl5zJ5skzJljB8X+x3 CiwApZU7O2Rq+MEjlsLuXZidystEH73TGJMelJU3IHkEjsm76m6/vYiATUovOARQ AdTiaNSQOMzt7CTQQzuXe5PVBGkOkh3ogX8u2PmtgfkWQMDx3jDlbNH4JcSRj2St 4Q3vteCjGd0qxQ== -----END CERTIFICATE-----Generated at Mon Dec 15 12:01:40 2025 by rpki-client