This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/b30916-2125-4a4f-9a36-2641975443ff/1/y07YjFv7wrlW_Lsw0U6DK9u5YQ0.mft File: y07YjFv7wrlW_Lsw0U6DK9u5YQ0.mft (raw, json) Hash identifier: Tkmldy44rjnF9yVZJgFEeZmqCqMAvNZ47HhQne89iQY= Subject key identifier: 80:B6:0F:D8:7A:24:59:7B:16:84:79:14:EF:25:DC:99:6F:54:BC:C7 Authority key identifier: CB:4E:D8:8C:5B:FB:C2:B9:56:FC:BB:30:D1:4E:83:2B:DB:B9:61:0D Certificate issuer: /CN=cb4ed88c5bfbc2b956fcbb30d14e832bdbb9610d Certificate serial: 019B736C33A1E9CE69C0D5827994E31F0DC6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y07YjFv7wrlW_Lsw0U6DK9u5YQ0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/b30916-2125-4a4f-9a36-2641975443ff/1/y07YjFv7wrlW_Lsw0U6DK9u5YQ0.mft Manifest number: 05CC Signing time: Wed 31 Dec 2025 08:00:29 +0000 Manifest this update: Wed 31 Dec 2025 08:00:29 +0000 Manifest next update: Thu 01 Jan 2026 08:00:29 +0000 Files and hashes: 1: fOUkBLPvgdmMw3qOCphjRq4t0eY.roa (hash: r4VQRSy7Gza9d4nweiTC6bFhiBWBCqInaEx5ZdTsmu8=) 2: y07YjFv7wrlW_Lsw0U6DK9u5YQ0.crl (hash: 6JcfcA2CORqyh+gQ+oZqPJNPXbdmvVUkFwWAbml5J+g=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/b30916-2125-4a4f-9a36-2641975443ff/1/y07YjFv7wrlW_Lsw0U6DK9u5YQ0.crl rsync://rpki.ripe.net/repository/DEFAULT/14/b30916-2125-4a4f-9a36-2641975443ff/1/y07YjFv7wrlW_Lsw0U6DK9u5YQ0.mft rsync://rpki.ripe.net/repository/DEFAULT/y07YjFv7wrlW_Lsw0U6DK9u5YQ0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 01 Jan 2026 08:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:73:6c:33:a1:e9:ce:69:c0:d5:82:79:94:e3:1f:0d:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cb4ed88c5bfbc2b956fcbb30d14e832bdbb9610d Validity Not Before: Dec 31 08:00:29 2025 GMT Not After : Jan 1 08:00:29 2026 GMT Subject: CN=80b60fd87a24597b16847914ef25dc996f54bcc7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:a8:1c:32:da:79:1c:60:58:c1:72:a3:c2:1b: db:cd:ac:c4:5b:5e:de:2c:c9:5c:60:5d:f2:09:bb: 7f:93:45:91:76:d5:73:75:23:01:89:a8:1b:2a:9d: 57:0b:2d:92:9f:3d:69:57:46:f6:23:9e:0b:69:7e: 97:00:57:c1:db:08:6e:8e:fe:65:44:05:07:4c:41: ac:87:f8:ff:c1:6c:00:09:a2:d1:1e:b0:b7:79:4b: 5f:e9:c8:21:dd:88:06:6d:09:37:21:2e:1f:d9:5a: 59:4f:96:41:ef:1a:02:85:4e:e1:f2:76:34:47:32: 05:0e:51:77:62:42:ee:3a:b3:2b:e0:bc:ac:c1:7e: 7d:fb:d1:5b:19:28:40:85:cc:a4:34:19:64:d8:06: 31:2a:ec:d7:1e:c1:6e:90:3e:b4:3a:49:de:e8:91: b7:36:83:15:df:2a:f6:91:61:7c:67:31:40:32:66: 75:c8:19:3b:ed:0a:77:60:7d:4a:d0:81:5e:b7:eb: 5f:fa:6a:2c:dc:b9:3f:06:f4:a0:ca:79:f1:35:c4: 68:60:f9:ce:68:aa:73:3b:af:56:95:f9:ae:99:07: 32:24:72:48:6d:11:ce:19:12:f8:fc:7e:72:03:84: 57:79:a6:b0:2f:a0:08:62:37:14:09:87:48:ec:4a: 88:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:B6:0F:D8:7A:24:59:7B:16:84:79:14:EF:25:DC:99:6F:54:BC:C7 X509v3 Authority Key Identifier: keyid:CB:4E:D8:8C:5B:FB:C2:B9:56:FC:BB:30:D1:4E:83:2B:DB:B9:61:0D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y07YjFv7wrlW_Lsw0U6DK9u5YQ0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/b30916-2125-4a4f-9a36-2641975443ff/1/y07YjFv7wrlW_Lsw0U6DK9u5YQ0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/14/b30916-2125-4a4f-9a36-2641975443ff/1/y07YjFv7wrlW_Lsw0U6DK9u5YQ0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 83:e5:20:2b:92:d8:65:66:c1:9a:72:9f:16:43:e9:7b:07:d3: 43:5b:94:57:0e:71:0a:74:d8:bf:a4:02:34:27:02:13:8c:cb: f1:33:0d:41:8e:45:07:53:64:a2:e6:5d:21:2c:9a:f2:e4:c6: 5b:f1:1f:31:af:97:9c:b6:6e:14:04:ac:6c:a4:9c:2c:c1:8f: ca:63:5b:9f:77:0f:38:44:75:ed:47:0e:f9:f0:76:f5:bd:10: 63:ad:ba:92:76:0f:a3:4b:9b:a7:36:7c:e3:bd:32:2b:11:8e: 83:c8:cb:fb:1e:9f:d7:af:7f:73:08:a1:88:79:60:8d:c8:a0: 12:c8:2f:f7:1e:99:50:54:76:00:9d:03:0f:e6:40:d3:f5:18: c7:ec:3e:60:17:62:39:6d:dc:24:45:2c:97:9d:50:26:a2:ad: 75:6d:6c:98:05:0c:e6:ec:6e:7f:e1:a1:ea:ea:89:04:68:b1: 97:1d:54:0e:dc:46:51:c9:28:65:88:6c:b0:ec:e2:24:71:c5: ce:42:5d:1d:d7:0c:80:c4:63:51:c8:f0:62:c2:3d:e9:a7:cd: 5b:06:20:1b:ce:36:9f:b3:56:09:63:87:fa:42:bf:33:ac:eb: ff:5c:49:4d:59:88:6d:19:82:0f:7f:dc:26:cf:6b:1d:4a:b1: ae:ad:34:4f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtzbDOh6c5pwNWCeZTjHw3GMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNiNGVkODhjNWJmYmMyYjk1NmZjYmIzMGQxNGU4MzJiZGJi OTYxMGQwHhcNMjUxMjMxMDgwMDI5WhcNMjYwMTAxMDgwMDI5WjAzMTEwLwYDVQQD Eyg4MGI2MGZkODdhMjQ1OTdiMTY4NDc5MTRlZjI1ZGM5OTZmNTRiY2M3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAragcMtp5HGBYwXKjwhvbzazEW17e LMlcYF3yCbt/k0WRdtVzdSMBiagbKp1XCy2Snz1pV0b2I54LaX6XAFfB2whujv5l RAUHTEGsh/j/wWwACaLRHrC3eUtf6cgh3YgGbQk3IS4f2VpZT5ZB7xoChU7h8nY0 RzIFDlF3YkLuOrMr4LyswX59+9FbGShAhcykNBlk2AYxKuzXHsFukD60Okne6JG3 NoMV3yr2kWF8ZzFAMmZ1yBk77Qp3YH1K0IFet+tf+mos3Lk/BvSgynnxNcRoYPnO aKpzO69WlfmumQcyJHJIbRHOGRL4/H5yA4RXeaawL6AIYjcUCYdI7EqImQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIC2D9h6JFl7FoR5FO8l3JlvVLzHMB8GA1UdIwQY MBaAFMtO2Ixb+8K5Vvy7MNFOgyvbuWENMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveTA3WWpGdjd3cmxXX0xzdzBVNkRLOXU1WVEwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC9iMzA5MTYtMjEyNS00YTRmLTlhMzYt MjY0MTk3NTQ0M2ZmLzEveTA3WWpGdjd3cmxXX0xzdzBVNkRLOXU1WVEwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNC9iMzA5MTYtMjEyNS00YTRmLTlhMzYtMjY0MTk3NTQ0M2Zm LzEveTA3WWpGdjd3cmxXX0xzdzBVNkRLOXU1WVEwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAg+UgK5LY ZWbBmnKfFkPpewfTQ1uUVw5xCnTYv6QCNCcCE4zL8TMNQY5FB1NkouZdISya8uTG W/EfMa+XnLZuFASsbKScLMGPymNbn3cPOER17UcO+fB29b0QY626knYPo0ubpzZ8 470yKxGOg8jL+x6f169/cwihiHlgjcigEsgv9x6ZUFR2AJ0DD+ZA0/UYx+w+YBdi OW3cJEUsl51QJqKtdW1smAUM5uxuf+Gh6uqJBGixlx1UDtxGUckoZYhssOziJHHF zkJdHdcMgMRjUcjwYsI96afNWwYgG842n7NWCWOH+kK/M6zr/1xJTVmIbRmCD3/c Js9rHUqxrq00Tw== -----END CERTIFICATE-----Generated at Wed Dec 31 11:57:01 2025 by rpki-client