This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/cee572-3420-45e4-87b6-c2799753c853/1/jghAgExmgMQfIehybzgLleaelEc.mft File: jghAgExmgMQfIehybzgLleaelEc.mft (raw, json) Hash identifier: HJ3pgNrcxea+kbV4DRadSsp2LFWs+TZfU4M7OrjIhq0= Subject key identifier: 8A:D9:71:50:59:5D:51:C5:B7:47:39:16:8B:1A:34:AA:9A:AA:19:F0 Authority key identifier: 8E:08:40:80:4C:66:80:C4:1F:21:E8:72:6F:38:0B:95:E6:9E:94:47 Certificate issuer: /CN=8e0840804c6680c41f21e8726f380b95e69e9447 Certificate serial: 019B1D987E694991FADDE9CC743B725F9055 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jghAgExmgMQfIehybzgLleaelEc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/cee572-3420-45e4-87b6-c2799753c853/1/jghAgExmgMQfIehybzgLleaelEc.mft Manifest number: 0CC8 Signing time: Sun 14 Dec 2025 16:01:31 +0000 Manifest this update: Sun 14 Dec 2025 16:01:31 +0000 Manifest next update: Mon 15 Dec 2025 16:01:31 +0000 Files and hashes: 1: B_tPzlcakKiFDBacnORzzWv1yTE.roa (hash: agYbT4sj3xKKoiRvTRiMrXGnEy5N2ggal8elxJ61JUw=) 2: HtP1TmS7Jnp-rdYE-25kUdcbSF8.roa (hash: E94twRw9JlGZMbmmCttmzyXZguvpf/OPgy8FVeGF2rg=) 3: jghAgExmgMQfIehybzgLleaelEc.crl (hash: 14BL+tjzHRDfUgYoPM0TS+PzxpKx9aiqGFSrW3BENDc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cf/cee572-3420-45e4-87b6-c2799753c853/1/jghAgExmgMQfIehybzgLleaelEc.crl rsync://rpki.ripe.net/repository/DEFAULT/cf/cee572-3420-45e4-87b6-c2799753c853/1/jghAgExmgMQfIehybzgLleaelEc.mft rsync://rpki.ripe.net/repository/DEFAULT/jghAgExmgMQfIehybzgLleaelEc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 15 Dec 2025 14:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:1d:98:7e:69:49:91:fa:dd:e9:cc:74:3b:72:5f:90:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8e0840804c6680c41f21e8726f380b95e69e9447 Validity Not Before: Dec 14 16:01:31 2025 GMT Not After : Dec 15 16:01:31 2025 GMT Subject: CN=8ad97150595d51c5b74739168b1a34aa9aaa19f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:8b:35:25:f8:af:c4:51:86:8c:bd:2e:9e:a8: 31:33:51:ca:9a:7d:12:fe:ad:fb:1c:4f:f5:e8:7b: 0f:d6:2e:1e:55:0d:4a:f7:e0:85:52:33:58:2c:69: f9:83:17:a3:09:d5:f2:e9:29:a0:d3:c2:c1:92:c1: f0:5c:3a:f7:d5:5c:52:6f:fc:99:4b:6c:b9:b1:75: f5:73:6c:4a:88:5f:09:77:20:38:9d:53:a4:24:41: 01:2a:3c:bd:ab:e6:11:36:9d:f2:5c:a0:ee:05:b0: 63:9b:df:93:52:51:2f:47:dc:ae:47:71:a6:b5:03: 92:69:c6:7f:ff:cd:37:17:93:e5:bc:f9:6e:c5:a2: 67:c5:16:1c:49:cf:f9:56:74:99:0e:18:64:26:22: 2b:2b:b0:e0:69:28:ba:99:28:05:f5:ea:28:1e:80: 51:2c:02:5f:46:12:6e:71:2d:b0:9c:24:9f:a8:df: ad:37:a9:ef:64:44:9e:1e:b3:f7:c9:a2:13:cb:31: 49:e1:83:ba:31:f8:7e:e8:94:90:b2:f8:52:40:98: 62:43:ea:d7:ff:90:84:0f:6e:c8:6f:22:cf:93:c7: 81:06:3b:62:9c:2d:1b:98:f8:66:c1:18:87:44:9c: f3:28:b4:b2:9f:57:8a:d9:22:df:4b:1d:45:5d:7e: 60:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:D9:71:50:59:5D:51:C5:B7:47:39:16:8B:1A:34:AA:9A:AA:19:F0 X509v3 Authority Key Identifier: keyid:8E:08:40:80:4C:66:80:C4:1F:21:E8:72:6F:38:0B:95:E6:9E:94:47 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jghAgExmgMQfIehybzgLleaelEc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/cee572-3420-45e4-87b6-c2799753c853/1/jghAgExmgMQfIehybzgLleaelEc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/cee572-3420-45e4-87b6-c2799753c853/1/jghAgExmgMQfIehybzgLleaelEc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 64:29:2c:81:ad:0d:c9:88:b4:1c:cb:19:bd:ba:5e:f6:db:4d: db:d8:d2:db:31:04:7a:ee:38:f0:e5:7e:40:32:1c:1c:17:55: e8:2d:29:6a:c1:30:de:cf:e7:49:38:07:46:41:32:db:d9:e7: d7:ab:b4:8a:c1:c2:18:a7:db:ad:d6:19:05:e6:20:f5:53:c5: 88:5d:94:34:26:25:0b:1e:d5:9b:1c:50:dc:88:92:c5:3f:2b: 57:02:eb:48:2c:f7:29:60:47:f4:34:22:9b:8d:26:db:70:d1: 79:96:f2:ba:0f:f2:20:3b:cc:78:f7:49:fc:e2:3f:89:2c:4f: 94:c8:bd:6d:c2:79:74:57:6f:a6:0e:9f:47:13:90:59:ec:11: 84:d9:19:a2:ea:d7:55:7f:fc:08:60:97:c1:44:60:da:b2:f6: c2:e0:21:49:02:da:6b:8a:a5:18:d8:c9:96:a2:b1:31:6d:16: cd:2b:80:10:de:56:79:56:01:9a:fc:1c:4e:65:9c:f9:f4:0b: af:1b:fe:13:03:1a:e2:ad:69:38:a5:16:11:ac:42:cc:66:9f: ba:48:4b:32:eb:5f:21:d9:88:2e:95:72:17:b0:3f:7c:8f:4e: e4:5a:57:ca:24:3a:9a:dd:1e:d2:65:1d:38:55:42:d0:d1:b6: fc:b3:e1:78 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsdmH5pSZH63enMdDtyX5BVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhlMDg0MDgwNGM2NjgwYzQxZjIxZTg3MjZmMzgwYjk1ZTY5 ZTk0NDcwHhcNMjUxMjE0MTYwMTMxWhcNMjUxMjE1MTYwMTMxWjAzMTEwLwYDVQQD Eyg4YWQ5NzE1MDU5NWQ1MWM1Yjc0NzM5MTY4YjFhMzRhYTlhYWExOWYwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp4s1JfivxFGGjL0unqgxM1HKmn0S /q37HE/16HsP1i4eVQ1K9+CFUjNYLGn5gxejCdXy6Smg08LBksHwXDr31VxSb/yZ S2y5sXX1c2xKiF8JdyA4nVOkJEEBKjy9q+YRNp3yXKDuBbBjm9+TUlEvR9yuR3Gm tQOSacZ//803F5PlvPluxaJnxRYcSc/5VnSZDhhkJiIrK7DgaSi6mSgF9eooHoBR LAJfRhJucS2wnCSfqN+tN6nvZESeHrP3yaITyzFJ4YO6Mfh+6JSQsvhSQJhiQ+rX /5CED27IbyLPk8eBBjtinC0bmPhmwRiHRJzzKLSyn1eK2SLfSx1FXX5gjQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIrZcVBZXVHFt0c5FosaNKqaqhnwMB8GA1UdIwQY MBaAFI4IQIBMZoDEHyHocm84C5XmnpRHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvamdoQWdFeG1nTVFmSWVoeWJ6Z0xsZWFlbEVjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZi9jZWU1NzItMzQyMC00NWU0LTg3YjYt YzI3OTk3NTNjODUzLzEvamdoQWdFeG1nTVFmSWVoeWJ6Z0xsZWFlbEVjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jZi9jZWU1NzItMzQyMC00NWU0LTg3YjYtYzI3OTk3NTNjODUz LzEvamdoQWdFeG1nTVFmSWVoeWJ6Z0xsZWFlbEVjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZCksga0N yYi0HMsZvbpe9ttN29jS2zEEeu448OV+QDIcHBdV6C0pasEw3s/nSTgHRkEy29nn 16u0isHCGKfbrdYZBeYg9VPFiF2UNCYlCx7VmxxQ3IiSxT8rVwLrSCz3KWBH9DQi m40m23DReZbyug/yIDvMePdJ/OI/iSxPlMi9bcJ5dFdvpg6fRxOQWewRhNkZourX VX/8CGCXwURg2rL2wuAhSQLaa4qlGNjJlqKxMW0WzSuAEN5WeVYBmvwcTmWc+fQL rxv+EwMa4q1pOKUWEaxCzGafukhLMutfIdmILpVyF7A/fI9O5FpXyiQ6mt0e0mUd OFVC0NG2/LPheA== -----END CERTIFICATE-----Generated at Sun Dec 14 22:54:54 2025 by rpki-client