This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/68d143-1237-4912-a892-cef01d877ebe/1/jVCzqaBQOQVZbHf1gCvvn8c9ZH0.mft File: jVCzqaBQOQVZbHf1gCvvn8c9ZH0.mft (raw, json) Hash identifier: Qov+mockOEEsLvq/a14Kw/ZWkxLOjJMdwsC31cv4P+A= Subject key identifier: 7B:C0:B3:03:9C:E2:49:B5:15:95:96:7C:99:10:CE:61:21:AC:C5:CA Authority key identifier: 8D:50:B3:A9:A0:50:39:05:59:6C:77:F5:80:2B:EF:9F:C7:3D:64:7D Certificate issuer: /CN=8d50b3a9a0503905596c77f5802bef9fc73d647d Certificate serial: 019B1FBD924F626E9DC6B59A8B36201FD1C2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jVCzqaBQOQVZbHf1gCvvn8c9ZH0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/68d143-1237-4912-a892-cef01d877ebe/1/jVCzqaBQOQVZbHf1gCvvn8c9ZH0.mft Manifest number: 03F3 Signing time: Mon 15 Dec 2025 02:01:16 +0000 Manifest this update: Mon 15 Dec 2025 02:01:16 +0000 Manifest next update: Tue 16 Dec 2025 02:01:16 +0000 Files and hashes: 1: a8IXKpHV3NWa7LICJ758JvcRIvY.roa (hash: X2zHQ2bSxMYP23moGooOgAvqdrG84QharuHsT6bVARw=) 2: jVCzqaBQOQVZbHf1gCvvn8c9ZH0.crl (hash: sQUwKrgvWt1sTp5pzb3Ml4fGGzgAxzrdMRHHVRC3zVM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/68d143-1237-4912-a892-cef01d877ebe/1/jVCzqaBQOQVZbHf1gCvvn8c9ZH0.crl rsync://rpki.ripe.net/repository/DEFAULT/be/68d143-1237-4912-a892-cef01d877ebe/1/jVCzqaBQOQVZbHf1gCvvn8c9ZH0.mft rsync://rpki.ripe.net/repository/DEFAULT/jVCzqaBQOQVZbHf1gCvvn8c9ZH0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 15 Dec 2025 23:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:1f:bd:92:4f:62:6e:9d:c6:b5:9a:8b:36:20:1f:d1:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8d50b3a9a0503905596c77f5802bef9fc73d647d Validity Not Before: Dec 15 02:01:16 2025 GMT Not After : Dec 16 02:01:16 2025 GMT Subject: CN=7bc0b3039ce249b51595967c9910ce6121acc5ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:92:11:bf:9b:79:f5:df:d6:85:46:f0:d6:e8: 83:f9:74:df:0f:0e:28:25:d0:75:c9:10:d9:6d:08: 0d:e8:5f:72:6f:e0:8c:dd:16:cb:f1:39:07:83:3e: 2c:7e:43:20:0f:16:63:51:4a:b2:14:6d:4d:6c:34: 42:e5:42:1d:0f:3b:8a:09:ca:0f:e2:ea:c7:10:9f: 64:71:68:ea:0a:4d:ea:e8:91:48:39:a3:b8:05:df: 04:42:df:5c:18:34:cf:86:94:f9:24:0a:12:17:65: 6e:d0:bd:d8:f2:94:c7:10:27:16:08:b7:64:e9:db: 8c:a4:99:d5:f0:00:7e:1a:df:45:a8:d2:e0:2d:84: 9f:d6:ec:5c:bf:c7:4d:d5:2b:34:df:b8:87:0f:61: a1:24:04:20:53:e8:ed:f0:c6:cd:ba:a4:76:2f:eb: af:3f:1f:c1:98:8f:3a:cc:a9:60:45:34:01:d8:e1: dc:62:34:81:6f:a5:de:b4:37:32:e0:87:6b:dd:0f: 03:09:b8:e4:d9:0d:72:75:ff:34:80:c2:4a:b6:61: 5f:3c:cf:ca:3c:9a:0f:b9:50:87:ce:1e:80:2e:0d: 14:07:92:bb:fe:02:a3:d4:e9:7d:c9:e2:46:5b:f7: fa:4d:d2:9a:69:29:50:b3:4e:fc:21:ca:0d:f0:dc: 54:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:C0:B3:03:9C:E2:49:B5:15:95:96:7C:99:10:CE:61:21:AC:C5:CA X509v3 Authority Key Identifier: keyid:8D:50:B3:A9:A0:50:39:05:59:6C:77:F5:80:2B:EF:9F:C7:3D:64:7D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jVCzqaBQOQVZbHf1gCvvn8c9ZH0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/68d143-1237-4912-a892-cef01d877ebe/1/jVCzqaBQOQVZbHf1gCvvn8c9ZH0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/be/68d143-1237-4912-a892-cef01d877ebe/1/jVCzqaBQOQVZbHf1gCvvn8c9ZH0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7e:af:8f:84:c5:9a:ea:e0:c9:9d:d3:68:9d:ea:b9:13:a2:71: 08:0b:58:37:dc:c4:0c:8f:cb:9e:1f:6f:0c:f3:39:db:17:89: be:b9:be:45:ef:94:88:e2:eb:85:0c:41:a3:d0:ec:e9:2a:3c: f7:0a:d0:16:e4:bf:b4:11:45:62:c4:2f:c4:d6:6f:5c:32:fb: 94:4e:11:48:1f:74:ae:9d:8d:3d:73:c4:39:f3:4d:78:40:40: 05:b1:34:7b:78:85:fc:09:a6:a5:e8:7c:c7:7d:47:2e:e7:10: 91:6e:91:85:b7:05:58:ae:db:ad:82:e6:55:5f:02:a6:e4:d1: c8:30:a7:c5:39:f7:b2:b3:a9:b4:52:73:72:18:09:be:ec:8d: 14:d4:89:8f:b2:32:bc:0b:c0:f7:e1:e0:b4:13:b6:4b:97:c9: 6a:23:0c:d8:e8:ca:44:e3:f3:9f:c4:b2:e6:3d:4f:66:e9:32: 40:80:67:a4:de:00:eb:f6:ad:54:53:88:f8:43:84:a1:9f:dc: 00:fa:fc:42:bd:0c:f0:ef:66:66:f5:99:19:48:09:07:7b:b1: 30:e0:01:07:23:f2:ca:15:56:9a:60:2b:ba:ad:2f:b3:f4:8e: 10:50:f6:c6:2a:ac:f5:02:e9:37:bf:a5:95:bb:f1:db:05:68: 31:d0:a7:40 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsfvZJPYm6dxrWaizYgH9HCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhkNTBiM2E5YTA1MDM5MDU1OTZjNzdmNTgwMmJlZjlmYzcz ZDY0N2QwHhcNMjUxMjE1MDIwMTE2WhcNMjUxMjE2MDIwMTE2WjAzMTEwLwYDVQQD Eyg3YmMwYjMwMzljZTI0OWI1MTU5NTk2N2M5OTEwY2U2MTIxYWNjNWNhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp5IRv5t59d/WhUbw1uiD+XTfDw4o JdB1yRDZbQgN6F9yb+CM3RbL8TkHgz4sfkMgDxZjUUqyFG1NbDRC5UIdDzuKCcoP 4urHEJ9kcWjqCk3q6JFIOaO4Bd8EQt9cGDTPhpT5JAoSF2Vu0L3Y8pTHECcWCLdk 6duMpJnV8AB+Gt9FqNLgLYSf1uxcv8dN1Ss037iHD2GhJAQgU+jt8MbNuqR2L+uv Px/BmI86zKlgRTQB2OHcYjSBb6XetDcy4Idr3Q8DCbjk2Q1ydf80gMJKtmFfPM/K PJoPuVCHzh6ALg0UB5K7/gKj1Ol9yeJGW/f6TdKaaSlQs078IcoN8NxUTQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHvAswOc4km1FZWWfJkQzmEhrMXKMB8GA1UdIwQY MBaAFI1Qs6mgUDkFWWx39YAr75/HPWR9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvalZDenFhQlFPUVZaYkhmMWdDdnZuOGM5WkgwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZS82OGQxNDMtMTIzNy00OTEyLWE4OTIt Y2VmMDFkODc3ZWJlLzEvalZDenFhQlFPUVZaYkhmMWdDdnZuOGM5WkgwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZS82OGQxNDMtMTIzNy00OTEyLWE4OTItY2VmMDFkODc3ZWJl LzEvalZDenFhQlFPUVZaYkhmMWdDdnZuOGM5WkgwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfq+PhMWa 6uDJndNoneq5E6JxCAtYN9zEDI/Lnh9vDPM52xeJvrm+Re+UiOLrhQxBo9Ds6So8 9wrQFuS/tBFFYsQvxNZvXDL7lE4RSB90rp2NPXPEOfNNeEBABbE0e3iF/Ammpeh8 x31HLucQkW6RhbcFWK7brYLmVV8CpuTRyDCnxTn3srOptFJzchgJvuyNFNSJj7Iy vAvA9+HgtBO2S5fJaiMM2OjKROPzn8Sy5j1PZukyQIBnpN4A6/atVFOI+EOEoZ/c APr8Qr0M8O9mZvWZGUgJB3uxMOABByPyyhVWmmAruq0vs/SOEFD2xiqs9QLpN7+l lbvx2wVoMdCnQA== -----END CERTIFICATE-----Generated at Mon Dec 15 06:30:40 2025 by rpki-client