This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/662dbe-5937-46fa-8d96-910541155fef/1/CNJ_3JD4D4CXLBJb1B7bCugzSqA.mft File: CNJ_3JD4D4CXLBJb1B7bCugzSqA.mft (raw, json) Hash identifier: NQBw+KUvOkN/YpQTu3ema/rPyrJkRAOPvLPV8v/n3UY= Subject key identifier: FB:88:EB:F7:CE:AE:76:38:04:B6:D7:87:B1:DD:25:71:01:1F:A8:91 Authority key identifier: 08:D2:7F:DC:90:F8:0F:80:97:2C:12:5B:D4:1E:DB:0A:E8:33:4A:A0 Certificate issuer: /CN=08d27fdc90f80f80972c125bd41edb0ae8334aa0 Certificate serial: 019B5976F8EAC3C9216CE2F6F2E7C1649FB0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CNJ_3JD4D4CXLBJb1B7bCugzSqA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/662dbe-5937-46fa-8d96-910541155fef/1/CNJ_3JD4D4CXLBJb1B7bCugzSqA.mft Manifest number: 0C30 Signing time: Fri 26 Dec 2025 07:02:07 +0000 Manifest this update: Fri 26 Dec 2025 07:02:07 +0000 Manifest next update: Sat 27 Dec 2025 07:02:07 +0000 Files and hashes: 1: CNJ_3JD4D4CXLBJb1B7bCugzSqA.crl (hash: maCBXn/0FKURSTgwkY0Ddc9HdFS/buN8BNsdlQZ1aoE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/662dbe-5937-46fa-8d96-910541155fef/1/CNJ_3JD4D4CXLBJb1B7bCugzSqA.crl rsync://rpki.ripe.net/repository/DEFAULT/fd/662dbe-5937-46fa-8d96-910541155fef/1/CNJ_3JD4D4CXLBJb1B7bCugzSqA.mft rsync://rpki.ripe.net/repository/DEFAULT/CNJ_3JD4D4CXLBJb1B7bCugzSqA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:76:f8:ea:c3:c9:21:6c:e2:f6:f2:e7:c1:64:9f:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08d27fdc90f80f80972c125bd41edb0ae8334aa0 Validity Not Before: Dec 26 07:02:07 2025 GMT Not After : Dec 27 07:02:07 2025 GMT Subject: CN=fb88ebf7ceae763804b6d787b1dd2571011fa891 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:9b:29:64:83:89:d9:a8:38:19:d3:98:9a:f9: 03:a7:0f:c5:06:65:aa:3c:b0:63:b0:9b:dc:70:67: a6:2f:5b:21:4c:bd:da:b2:26:2a:0b:20:a0:35:b2: 29:60:b0:85:09:a1:88:20:0b:70:69:d6:17:14:2d: a2:66:a3:13:26:d3:29:05:19:e7:39:d2:84:59:4a: 4f:f9:c3:4c:41:85:dc:8e:7b:94:7d:e3:78:be:18: 31:36:14:93:a9:46:b9:ec:22:10:c7:ee:5c:1c:9d: 0e:d0:71:99:93:86:4a:e7:65:98:e4:03:c0:7b:dc: db:81:aa:2d:09:84:62:9a:19:ea:f1:fd:c8:cb:9c: 5c:a5:69:89:01:6c:a2:8f:dd:4b:bc:6c:d2:0a:65: a0:62:11:c0:95:ef:f2:b1:85:b6:aa:29:e5:58:78: e2:16:83:81:bb:7b:93:dc:87:cb:c7:55:82:90:b8: 6b:41:01:73:c6:4b:02:80:e6:26:0a:c8:0f:a7:17: 5f:21:f7:9d:74:4d:b8:e9:cc:be:49:47:aa:1a:e1: 66:72:6e:4e:46:e2:87:71:75:34:b6:28:b2:de:93: df:84:40:9f:07:f7:8f:54:7e:7f:6e:82:84:85:d8: b1:d2:54:53:77:e9:9b:d1:cf:17:6e:59:c8:1e:eb: 1d:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:88:EB:F7:CE:AE:76:38:04:B6:D7:87:B1:DD:25:71:01:1F:A8:91 X509v3 Authority Key Identifier: keyid:08:D2:7F:DC:90:F8:0F:80:97:2C:12:5B:D4:1E:DB:0A:E8:33:4A:A0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CNJ_3JD4D4CXLBJb1B7bCugzSqA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/662dbe-5937-46fa-8d96-910541155fef/1/CNJ_3JD4D4CXLBJb1B7bCugzSqA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/662dbe-5937-46fa-8d96-910541155fef/1/CNJ_3JD4D4CXLBJb1B7bCugzSqA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 27:53:45:95:6d:91:8f:c4:92:af:b2:3c:c0:69:df:bc:31:fb: 55:90:a8:9d:42:3e:a3:07:ed:d6:80:f9:78:c5:89:f0:54:3c: 9a:f8:20:43:c4:51:0c:9e:fc:fc:ba:e7:37:0d:7d:c5:3b:50: 4a:5f:b9:a6:3c:9f:62:51:65:8f:87:83:79:a3:8a:bb:73:f2: 16:d9:00:7f:bb:d8:dd:eb:0e:b4:ff:a4:37:15:49:9a:2c:6d: 9a:87:67:1c:4d:c4:53:50:3b:9f:75:29:af:d5:ed:54:b2:4a: 89:15:e9:26:af:8c:39:aa:7b:58:95:7b:af:5e:c2:63:17:90: 33:9c:13:6d:5b:12:5d:9b:b4:fc:9e:94:77:6b:ff:4a:5a:d9: 92:b1:7c:34:f6:07:dc:4b:cc:9b:42:3a:a6:ea:a1:2f:32:22: 66:70:b1:a1:4d:0c:58:80:96:e0:7b:95:62:52:e7:a4:bb:c6: fb:68:ef:a9:52:77:8c:e0:25:61:06:e9:54:01:a5:da:4b:55: 0c:80:a5:49:86:e2:e7:aa:7a:2e:45:11:95:97:cc:71:b5:7f: 1b:af:24:18:a6:a1:3c:3d:2c:85:1d:c5:29:a6:29:29:83:de: 7b:aa:b5:2b:5e:bf:cb:84:23:ff:65:c0:56:c6:01:f5:a6:49: 4d:aa:fe:ea -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZdvjqw8khbOL28ufBZJ+wMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA4ZDI3ZmRjOTBmODBmODA5NzJjMTI1YmQ0MWVkYjBhZTgz MzRhYTAwHhcNMjUxMjI2MDcwMjA3WhcNMjUxMjI3MDcwMjA3WjAzMTEwLwYDVQQD EyhmYjg4ZWJmN2NlYWU3NjM4MDRiNmQ3ODdiMWRkMjU3MTAxMWZhODkxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxZspZIOJ2ag4GdOYmvkDpw/FBmWq PLBjsJvccGemL1shTL3asiYqCyCgNbIpYLCFCaGIIAtwadYXFC2iZqMTJtMpBRnn OdKEWUpP+cNMQYXcjnuUfeN4vhgxNhSTqUa57CIQx+5cHJ0O0HGZk4ZK52WY5APA e9zbgaotCYRimhnq8f3Iy5xcpWmJAWyij91LvGzSCmWgYhHAle/ysYW2qinlWHji FoOBu3uT3IfLx1WCkLhrQQFzxksCgOYmCsgPpxdfIfeddE246cy+SUeqGuFmcm5O RuKHcXU0tiiy3pPfhECfB/ePVH5/boKEhdix0lRTd+mb0c8XblnIHusdGwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPuI6/fOrnY4BLbXh7HdJXEBH6iRMB8GA1UdIwQY MBaAFAjSf9yQ+A+AlywSW9Qe2wroM0qgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ05KXzNKRDRENENYTEJKYjFCN2JDdWd6U3FBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC82NjJkYmUtNTkzNy00NmZhLThkOTYt OTEwNTQxMTU1ZmVmLzEvQ05KXzNKRDRENENYTEJKYjFCN2JDdWd6U3FBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZC82NjJkYmUtNTkzNy00NmZhLThkOTYtOTEwNTQxMTU1ZmVm LzEvQ05KXzNKRDRENENYTEJKYjFCN2JDdWd6U3FBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJ1NFlW2R j8SSr7I8wGnfvDH7VZConUI+owft1oD5eMWJ8FQ8mvggQ8RRDJ78/LrnNw19xTtQ Sl+5pjyfYlFlj4eDeaOKu3PyFtkAf7vY3esOtP+kNxVJmixtmodnHE3EU1A7n3Up r9XtVLJKiRXpJq+MOap7WJV7r17CYxeQM5wTbVsSXZu0/J6Ud2v/SlrZkrF8NPYH 3EvMm0I6puqhLzIiZnCxoU0MWICW4HuVYlLnpLvG+2jvqVJ3jOAlYQbpVAGl2ktV DIClSYbi56p6LkURlZfMcbV/G68kGKahPD0shR3FKaYpKYPee6q1K16/y4Qj/2XA VsYB9aZJTar+6g== -----END CERTIFICATE-----Generated at Fri Dec 26 14:16:47 2025 by rpki-client