This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/876750-a230-4f26-b442-f15554fa4b0b/1/Ytbkv_orTRvEDpKzCvDSGnSwu9A.mft File: Ytbkv_orTRvEDpKzCvDSGnSwu9A.mft (raw, json) Hash identifier: q3A+hx7qwVPej7pavdouxwcf/sQtLgjtVfGxxDpTDA0= Subject key identifier: CD:10:2D:FD:0B:CB:64:50:C1:6F:81:DA:E5:DC:A0:EB:DC:CD:7D:A3 Authority key identifier: 62:D6:E4:BF:FA:2B:4D:1B:C4:0E:92:B3:0A:F0:D2:1A:74:B0:BB:D0 Certificate issuer: /CN=62d6e4bffa2b4d1bc40e92b30af0d21a74b0bbd0 Certificate serial: 019B4392E942E6317E2064D7A7B59A1D0206 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ytbkv_orTRvEDpKzCvDSGnSwu9A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/876750-a230-4f26-b442-f15554fa4b0b/1/Ytbkv_orTRvEDpKzCvDSGnSwu9A.mft Manifest number: 1789 Signing time: Mon 22 Dec 2025 01:00:59 +0000 Manifest this update: Mon 22 Dec 2025 01:00:59 +0000 Manifest next update: Tue 23 Dec 2025 01:00:59 +0000 Files and hashes: 1: Ytbkv_orTRvEDpKzCvDSGnSwu9A.crl (hash: MjZfLOpfjxFlnooa9qm6/avhwxB1HeH2UK2gsTXlJhw=) 2: dZjzanZ5Xa3WwYz-n1bsR4-cdN4.roa (hash: x2Q62dC7uuAXO8D8ST0Y3bzPEAD8rzw3v3/5eqKnb5o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/876750-a230-4f26-b442-f15554fa4b0b/1/Ytbkv_orTRvEDpKzCvDSGnSwu9A.crl rsync://rpki.ripe.net/repository/DEFAULT/02/876750-a230-4f26-b442-f15554fa4b0b/1/Ytbkv_orTRvEDpKzCvDSGnSwu9A.mft rsync://rpki.ripe.net/repository/DEFAULT/Ytbkv_orTRvEDpKzCvDSGnSwu9A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 22:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:43:92:e9:42:e6:31:7e:20:64:d7:a7:b5:9a:1d:02:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=62d6e4bffa2b4d1bc40e92b30af0d21a74b0bbd0 Validity Not Before: Dec 22 01:00:59 2025 GMT Not After : Dec 23 01:00:59 2025 GMT Subject: CN=cd102dfd0bcb6450c16f81dae5dca0ebdccd7da3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:ff:c8:0d:ad:82:8a:1f:a0:e4:4f:fd:46:df: d3:3f:d4:7b:77:41:3e:22:a3:85:02:fa:a7:be:02: 6f:98:b6:e2:e7:6e:f3:7d:e1:bc:f6:8f:f0:2c:de: 90:83:4e:57:20:73:a0:1a:93:f0:c3:11:e6:d2:ce: a0:33:9f:2e:0a:8b:44:57:bc:89:0c:aa:a4:91:58: 91:10:6d:6e:72:0d:85:c8:b7:74:48:58:cd:1d:4c: f3:d8:0f:c6:55:8b:89:c9:bd:45:ce:fa:9a:82:26: 16:cc:76:66:06:cc:ea:ab:f8:88:83:65:5d:e1:1c: e9:18:f2:12:88:fb:6c:16:58:cd:db:e7:b2:38:c3: 97:7c:a9:b2:35:4d:a3:50:41:95:fd:2f:94:97:44: 8a:64:a7:cb:36:71:e7:19:1e:84:38:58:7a:a2:b2: ce:c4:2f:61:d2:94:b7:ef:62:d1:26:54:82:62:24: 35:61:ad:8b:84:24:84:14:b3:c8:ac:81:47:3f:b1: a2:d5:2c:a8:ce:19:7d:78:94:67:fc:0d:0d:9a:fc: c2:9d:b3:d0:ed:8a:c3:96:b0:b6:40:bd:2b:e0:4b: e6:6d:d0:c1:da:ff:a6:6c:37:4b:5c:2b:e8:ba:81: 05:0f:b3:5b:68:90:8c:4f:46:09:89:df:f1:59:4f: c9:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:10:2D:FD:0B:CB:64:50:C1:6F:81:DA:E5:DC:A0:EB:DC:CD:7D:A3 X509v3 Authority Key Identifier: keyid:62:D6:E4:BF:FA:2B:4D:1B:C4:0E:92:B3:0A:F0:D2:1A:74:B0:BB:D0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ytbkv_orTRvEDpKzCvDSGnSwu9A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/876750-a230-4f26-b442-f15554fa4b0b/1/Ytbkv_orTRvEDpKzCvDSGnSwu9A.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/02/876750-a230-4f26-b442-f15554fa4b0b/1/Ytbkv_orTRvEDpKzCvDSGnSwu9A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 81:c4:fb:62:6d:10:44:ba:46:60:85:ab:91:5a:bd:dd:ef:30: 30:68:83:43:60:69:ce:37:a7:99:85:74:7d:15:95:c9:8e:4c: 2b:7e:b0:c3:e0:53:95:85:2f:dc:f9:9a:47:42:a1:52:1f:cf: 94:8e:f9:8f:2c:df:5b:07:37:ca:2a:4c:93:34:80:c0:ef:d0: 18:b5:9d:d7:7e:33:c5:40:62:7a:b1:8c:b6:83:b7:a7:2c:61: 7e:27:65:b7:62:a7:a7:75:63:fd:c3:4f:af:17:a6:b2:9c:e8: 92:37:3d:19:87:78:4a:da:47:d8:62:b6:85:1e:3b:9c:95:6d: d7:a8:a8:dd:0b:cd:ff:1a:c5:67:2f:3e:4d:48:0c:56:64:5e: 96:cf:7b:ff:89:e5:49:4a:10:f2:da:bf:99:a4:bf:7d:1b:00: c0:19:41:35:89:ff:ce:f9:88:04:c1:3c:31:aa:7a:50:56:d7: dd:f6:51:4c:aa:76:f5:8f:08:f1:68:f1:57:74:5c:20:0f:18: 3d:ce:96:31:8c:07:a9:cb:bc:e6:c4:74:81:c8:fc:af:06:a0: a5:84:cc:5d:4c:34:f5:85:b4:a0:b9:de:bd:78:8e:8d:27:a5: 1f:f2:89:b3:4a:08:54:af:93:62:57:80:47:73:1e:9a:84:d1: 8f:bc:5c:aa -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtDkulC5jF+IGTXp7WaHQIGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYyZDZlNGJmZmEyYjRkMWJjNDBlOTJiMzBhZjBkMjFhNzRi MGJiZDAwHhcNMjUxMjIyMDEwMDU5WhcNMjUxMjIzMDEwMDU5WjAzMTEwLwYDVQQD EyhjZDEwMmRmZDBiY2I2NDUwYzE2ZjgxZGFlNWRjYTBlYmRjY2Q3ZGEzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2f/IDa2Cih+g5E/9Rt/TP9R7d0E+ IqOFAvqnvgJvmLbi527zfeG89o/wLN6Qg05XIHOgGpPwwxHm0s6gM58uCotEV7yJ DKqkkViREG1ucg2FyLd0SFjNHUzz2A/GVYuJyb1FzvqagiYWzHZmBszqq/iIg2Vd 4RzpGPISiPtsFljN2+eyOMOXfKmyNU2jUEGV/S+Ul0SKZKfLNnHnGR6EOFh6orLO xC9h0pS372LRJlSCYiQ1Ya2LhCSEFLPIrIFHP7Gi1Syozhl9eJRn/A0NmvzCnbPQ 7YrDlrC2QL0r4EvmbdDB2v+mbDdLXCvouoEFD7NbaJCMT0YJid/xWU/JAwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFM0QLf0Ly2RQwW+B2uXcoOvczX2jMB8GA1UdIwQY MBaAFGLW5L/6K00bxA6Sswrw0hp0sLvQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWXRia3Zfb3JUUnZFRHBLekN2RFNHblN3dTlBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi84NzY3NTAtYTIzMC00ZjI2LWI0NDIt ZjE1NTU0ZmE0YjBiLzEvWXRia3Zfb3JUUnZFRHBLekN2RFNHblN3dTlBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMi84NzY3NTAtYTIzMC00ZjI2LWI0NDItZjE1NTU0ZmE0YjBi LzEvWXRia3Zfb3JUUnZFRHBLekN2RFNHblN3dTlBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgcT7Ym0Q RLpGYIWrkVq93e8wMGiDQ2BpzjenmYV0fRWVyY5MK36ww+BTlYUv3PmaR0KhUh/P lI75jyzfWwc3yipMkzSAwO/QGLWd134zxUBierGMtoO3pyxhfidlt2Knp3Vj/cNP rxemspzokjc9GYd4StpH2GK2hR47nJVt16io3QvN/xrFZy8+TUgMVmRels97/4nl SUoQ8tq/maS/fRsAwBlBNYn/zvmIBME8Map6UFbX3fZRTKp29Y8I8WjxV3RcIA8Y Pc6WMYwHqcu85sR0gcj8rwagpYTMXUw09YW0oLnevXiOjSelH/KJs0oIVK+TYleA R3MemoTRj7xcqg== -----END CERTIFICATE-----Generated at Mon Dec 22 02:52:09 2025 by rpki-client