This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/9a3a98-d670-4343-9206-47bbaca078ff/1/JHQF6c7jnXGUTV4xSesBth-a2x4.mft File: JHQF6c7jnXGUTV4xSesBth-a2x4.mft (raw, json) Hash identifier: mJErXpvOpIQyp4L5TR5ZwiI7hgYs3IFTrTX1kUHqk5o= Subject key identifier: B5:F1:89:5F:2E:AC:C3:37:F1:8D:C8:42:AD:79:A6:FB:50:9B:3C:6A Authority key identifier: 24:74:05:E9:CE:E3:9D:71:94:4D:5E:31:49:EB:01:B6:1F:9A:DB:1E Certificate issuer: /CN=247405e9cee39d71944d5e3149eb01b61f9adb1e Certificate serial: 019B06D90A6B2AA8817DE56EC4662783523E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JHQF6c7jnXGUTV4xSesBth-a2x4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/9a3a98-d670-4343-9206-47bbaca078ff/1/JHQF6c7jnXGUTV4xSesBth-a2x4.mft Manifest number: 1279 Signing time: Wed 10 Dec 2025 06:00:45 +0000 Manifest this update: Wed 10 Dec 2025 06:00:45 +0000 Manifest next update: Thu 11 Dec 2025 06:00:45 +0000 Files and hashes: 1: Ab1tskS4Q67Z2YctzJLxqj53W9g.roa (hash: AZCXpUJa1dgUBTX+Q3S9ZNI6U7aZKWGmwFCH40STagc=) 2: JHQF6c7jnXGUTV4xSesBth-a2x4.crl (hash: +5q5lOT5w5Dk9hHY7d46APp7vADdPLAiMtcCSotENNA=) 3: ZwMecEU89iNwlEPNMqqdNK21CRk.roa (hash: FTqQ+R8RJ6dWUyPAN/1xgiMPp5vc51aB62sTFqdJ7bA=) 4: f_0cBwbRlTos3u7H8bwrPKcXUN8.roa (hash: xaHHsjfR8A17jN6pVVS9xdai2iZp05T7G1TibqlcLQs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9d/9a3a98-d670-4343-9206-47bbaca078ff/1/JHQF6c7jnXGUTV4xSesBth-a2x4.crl rsync://rpki.ripe.net/repository/DEFAULT/9d/9a3a98-d670-4343-9206-47bbaca078ff/1/JHQF6c7jnXGUTV4xSesBth-a2x4.mft rsync://rpki.ripe.net/repository/DEFAULT/JHQF6c7jnXGUTV4xSesBth-a2x4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 11 Dec 2025 01:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:06:d9:0a:6b:2a:a8:81:7d:e5:6e:c4:66:27:83:52:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=247405e9cee39d71944d5e3149eb01b61f9adb1e Validity Not Before: Dec 10 06:00:45 2025 GMT Not After : Dec 11 06:00:45 2025 GMT Subject: CN=b5f1895f2eacc337f18dc842ad79a6fb509b3c6a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:02:b6:ff:a3:cb:8f:3f:c2:0b:1a:58:9b:df: da:c6:a3:08:56:19:9a:48:13:de:05:51:ac:5c:2e: a4:26:75:2e:66:39:ea:91:3f:2f:7c:23:96:1a:85: 71:62:55:20:ef:a9:8a:b7:2e:5e:42:5b:af:20:b0: 1b:cc:07:27:b2:6e:97:96:af:75:69:29:69:dd:cf: 52:9d:ad:f0:ec:75:02:c3:35:f9:6c:64:58:6c:7d: ba:42:33:c4:2b:72:49:63:cb:48:0a:0d:57:df:78: 7a:5f:68:5f:76:a4:e9:8c:ba:42:5e:e2:f2:bf:93: 26:25:83:6d:6f:eb:04:db:c3:91:4d:57:7d:22:1b: 94:5e:23:6d:e8:b3:38:fb:11:21:b8:86:77:79:be: bd:7a:b8:c4:31:4a:6d:d8:60:ba:00:a8:e9:22:75: 11:16:84:e4:83:31:ea:f0:8c:9c:9e:07:d1:c1:f9: 8a:bd:15:e9:31:fb:d6:8f:a1:71:fc:60:6d:75:e8: 59:97:dd:0a:a5:f9:f8:f7:9d:03:e8:0d:c5:59:b8: 98:5b:52:9a:26:06:5d:f5:0a:85:7b:01:81:11:b6: 4d:6a:01:9e:bf:66:dc:fa:50:05:48:83:c3:fd:90: f7:c7:ff:64:1a:9d:8e:e9:f8:cb:5b:87:24:3b:57: 0a:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:F1:89:5F:2E:AC:C3:37:F1:8D:C8:42:AD:79:A6:FB:50:9B:3C:6A X509v3 Authority Key Identifier: keyid:24:74:05:E9:CE:E3:9D:71:94:4D:5E:31:49:EB:01:B6:1F:9A:DB:1E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JHQF6c7jnXGUTV4xSesBth-a2x4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/9a3a98-d670-4343-9206-47bbaca078ff/1/JHQF6c7jnXGUTV4xSesBth-a2x4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/9a3a98-d670-4343-9206-47bbaca078ff/1/JHQF6c7jnXGUTV4xSesBth-a2x4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 19:57:10:9c:02:01:a2:ee:aa:11:81:6e:37:63:62:59:fc:33: ce:72:e5:c7:55:d7:6e:72:81:82:3d:ec:de:0e:86:ca:e8:b3: 07:41:fd:78:f2:b5:ec:a0:24:a9:2d:2e:59:e6:46:1e:6a:28: c6:3b:f9:5b:c5:3f:a0:45:49:39:11:f2:3b:f0:b3:af:83:9f: 87:e6:90:57:36:6a:66:86:f5:2f:9d:92:26:2f:26:88:41:1a: ae:21:96:4f:9d:88:60:ed:f8:50:e5:d0:2a:a5:4a:1c:c5:25: f6:10:dc:8c:a2:44:b8:9f:27:c6:71:bf:b8:9b:63:cb:85:7f: f3:68:12:6b:4b:06:38:5e:56:14:16:7f:db:07:50:b3:d3:5a: dd:8f:db:96:d9:bb:f9:e0:1d:38:8f:60:f3:c9:19:e2:48:3b: 20:c4:cc:d4:51:af:ca:ac:1f:99:1a:5a:88:86:d3:60:af:1e: a4:5f:44:5f:bd:26:92:f3:d2:27:2c:48:8a:d9:7f:6f:aa:bc: ad:93:ee:10:86:4c:5e:f0:bb:73:30:27:9e:69:37:e1:c3:3b: 39:0d:94:76:ce:64:ad:67:6d:f5:3a:2c:50:11:25:2d:3a:19: 4e:3a:87:b8:b8:d4:14:73:ec:21:28:f7:80:fe:62:c5:4d:b5: 1b:7d:91:8d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsG2QprKqiBfeVuxGYng1I+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI0NzQwNWU5Y2VlMzlkNzE5NDRkNWUzMTQ5ZWIwMWI2MWY5 YWRiMWUwHhcNMjUxMjEwMDYwMDQ1WhcNMjUxMjExMDYwMDQ1WjAzMTEwLwYDVQQD EyhiNWYxODk1ZjJlYWNjMzM3ZjE4ZGM4NDJhZDc5YTZmYjUwOWIzYzZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuQK2/6PLjz/CCxpYm9/axqMIVhma SBPeBVGsXC6kJnUuZjnqkT8vfCOWGoVxYlUg76mKty5eQluvILAbzAcnsm6Xlq91 aSlp3c9Sna3w7HUCwzX5bGRYbH26QjPEK3JJY8tICg1X33h6X2hfdqTpjLpCXuLy v5MmJYNtb+sE28ORTVd9IhuUXiNt6LM4+xEhuIZ3eb69erjEMUpt2GC6AKjpInUR FoTkgzHq8IycngfRwfmKvRXpMfvWj6Fx/GBtdehZl90Kpfn4950D6A3FWbiYW1Ka JgZd9QqFewGBEbZNagGev2bc+lAFSIPD/ZD3x/9kGp2O6fjLW4ckO1cKawIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLXxiV8urMM38Y3IQq15pvtQmzxqMB8GA1UdIwQY MBaAFCR0BenO451xlE1eMUnrAbYfmtseMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSkhRRjZjN2puWEdVVFY0eFNlc0J0aC1hMng0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85ZC85YTNhOTgtZDY3MC00MzQzLTkyMDYt NDdiYmFjYTA3OGZmLzEvSkhRRjZjN2puWEdVVFY0eFNlc0J0aC1hMng0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85ZC85YTNhOTgtZDY3MC00MzQzLTkyMDYtNDdiYmFjYTA3OGZm LzEvSkhRRjZjN2puWEdVVFY0eFNlc0J0aC1hMng0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGVcQnAIB ou6qEYFuN2NiWfwzznLlx1XXbnKBgj3s3g6GyuizB0H9ePK17KAkqS0uWeZGHmoo xjv5W8U/oEVJORHyO/Czr4Ofh+aQVzZqZob1L52SJi8miEEariGWT52IYO34UOXQ KqVKHMUl9hDcjKJEuJ8nxnG/uJtjy4V/82gSa0sGOF5WFBZ/2wdQs9Na3Y/bltm7 +eAdOI9g88kZ4kg7IMTM1FGvyqwfmRpaiIbTYK8epF9EX70mkvPSJyxIitl/b6q8 rZPuEIZMXvC7czAnnmk34cM7OQ2Uds5krWdt9TosUBElLToZTjqHuLjUFHPsISj3 gP5ixU21G32RjQ== -----END CERTIFICATE-----Generated at Wed Dec 10 10:09:39 2025 by rpki-client