This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.mft File: ydWxKeBvlSRoXnABAoQfctaRXDM.mft (raw, json) Hash identifier: TtyxyD5ljTbTfnhlZC9s7mNKf3me6+Gk3wIacpHIBuQ= Subject key identifier: 1D:85:03:22:29:E2:4E:84:9D:B2:6D:11:EF:20:58:68:96:B4:68:59 Authority key identifier: C9:D5:B1:29:E0:6F:95:24:68:5E:70:01:02:84:1F:72:D6:91:5C:33 Certificate issuer: /CN=c9d5b129e06f9524685e700102841f72d6915c33 Certificate serial: 019B3DFE6ED14AF3E04F6624A4D140B68C92 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydWxKeBvlSRoXnABAoQfctaRXDM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.mft Manifest number: 056B Signing time: Sat 20 Dec 2025 23:00:43 +0000 Manifest this update: Sat 20 Dec 2025 23:00:43 +0000 Manifest next update: Sun 21 Dec 2025 23:00:43 +0000 Files and hashes: 1: OpWpWHElMT6Em0cb46EU4-eZHBM.roa (hash: UkmgnvSBtnTTqSpYqYCCjTjePdoSg2sK2f+rfkHw/HY=) 2: ydWxKeBvlSRoXnABAoQfctaRXDM.crl (hash: 2DO9FqvntC8tjA7jd4poP1aqhLtfGHiwbGJO1ea6yI8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.crl rsync://rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.mft rsync://rpki.ripe.net/repository/DEFAULT/ydWxKeBvlSRoXnABAoQfctaRXDM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 19:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3d:fe:6e:d1:4a:f3:e0:4f:66:24:a4:d1:40:b6:8c:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c9d5b129e06f9524685e700102841f72d6915c33 Validity Not Before: Dec 20 23:00:43 2025 GMT Not After : Dec 21 23:00:43 2025 GMT Subject: CN=1d85032229e24e849db26d11ef20586896b46859 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:dd:51:6c:3e:02:16:c0:05:7c:08:84:81:27: d2:ee:79:51:c8:eb:8e:9a:2c:c9:1a:7c:fb:60:dd: 98:a7:13:30:a9:c8:cd:6b:2b:c5:1f:20:57:fe:cf: 76:73:a2:8a:34:6c:29:e2:41:40:9e:c0:7f:02:7c: c8:e0:92:90:3f:c0:22:da:8f:d4:c1:65:ed:93:cb: 1d:a2:cf:12:ff:ae:30:21:f5:a2:69:46:a1:b6:98: 82:d1:83:62:25:00:80:7e:65:fa:0b:d9:7d:49:bc: 26:82:8a:4f:59:0d:15:44:e1:22:cd:2e:7b:d0:fe: 12:9f:fb:f2:31:b9:2f:ab:bf:fc:29:1b:ca:f9:aa: 01:08:4d:fb:26:cf:97:07:0a:62:31:ed:4c:c7:f2: 46:6d:db:f9:ec:8c:94:13:cf:76:3d:3d:12:dc:e3: a4:ad:c6:dd:b2:1e:c0:eb:4e:65:c4:77:a8:17:59: cc:63:6e:96:cc:1e:1c:4a:c4:5f:42:1d:96:d4:b4: 3a:f5:be:16:b8:00:31:83:eb:6c:b3:75:98:56:cc: ae:89:5e:6b:5c:65:d4:78:7b:00:d1:ac:5c:4c:9b: 5a:2d:9c:fc:c2:7e:47:89:9d:e7:bf:1c:bb:2d:02: 94:12:39:5b:14:14:90:c2:e6:72:60:62:e5:1d:23: b4:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:85:03:22:29:E2:4E:84:9D:B2:6D:11:EF:20:58:68:96:B4:68:59 X509v3 Authority Key Identifier: keyid:C9:D5:B1:29:E0:6F:95:24:68:5E:70:01:02:84:1F:72:D6:91:5C:33 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydWxKeBvlSRoXnABAoQfctaRXDM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1c:16:4c:7a:ea:a5:c3:46:6e:82:f6:b7:5d:8f:58:93:47:f0: 8a:f5:9a:41:53:7e:56:e0:4b:fa:f1:b5:08:c8:42:a2:25:21: 33:53:6f:92:23:b6:e7:84:c1:cc:17:4f:dd:37:e6:bc:06:f1: 14:95:65:18:50:6e:64:76:ff:fc:a7:65:b4:bb:c4:9e:2e:b4: 9b:0c:04:1f:29:13:2e:70:bf:6d:b7:35:5c:cf:d2:fe:36:3a: 09:5c:d8:69:46:de:7b:99:52:8e:5a:90:73:2d:b2:60:64:14: 11:a5:06:e8:23:81:75:f1:06:8e:ce:17:31:86:89:59:e7:f3: d6:fc:58:32:cc:bd:c1:46:a0:4f:51:5f:68:93:a6:17:91:83: 7a:e0:e5:10:89:5c:40:3d:bc:b0:6e:91:91:2e:e3:16:59:c5: ef:b4:e2:3b:13:c9:c2:06:f8:bd:e1:96:e1:1b:78:85:bf:d6: 72:24:8f:54:5d:f4:c8:22:ae:c2:b8:35:74:1b:df:37:72:06: c1:b3:d0:ff:8e:f1:28:1e:e0:05:99:89:e2:87:e4:63:d8:62: f6:91:ea:ee:fb:26:96:0f:ce:26:b4:39:ca:69:e7:5b:41:21: 36:43:e0:6a:8d:25:80:5c:3d:5f:4d:8e:f1:c7:d6:77:c4:8c: 36:ec:8a:26 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs9/m7RSvPgT2YkpNFAtoySMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM5ZDViMTI5ZTA2Zjk1MjQ2ODVlNzAwMTAyODQxZjcyZDY5 MTVjMzMwHhcNMjUxMjIwMjMwMDQzWhcNMjUxMjIxMjMwMDQzWjAzMTEwLwYDVQQD EygxZDg1MDMyMjI5ZTI0ZTg0OWRiMjZkMTFlZjIwNTg2ODk2YjQ2ODU5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmt1RbD4CFsAFfAiEgSfS7nlRyOuO mizJGnz7YN2YpxMwqcjNayvFHyBX/s92c6KKNGwp4kFAnsB/AnzI4JKQP8Ai2o/U wWXtk8sdos8S/64wIfWiaUahtpiC0YNiJQCAfmX6C9l9SbwmgopPWQ0VROEizS57 0P4Sn/vyMbkvq7/8KRvK+aoBCE37Js+XBwpiMe1Mx/JGbdv57IyUE892PT0S3OOk rcbdsh7A605lxHeoF1nMY26WzB4cSsRfQh2W1LQ69b4WuAAxg+tss3WYVsyuiV5r XGXUeHsA0axcTJtaLZz8wn5HiZ3nvxy7LQKUEjlbFBSQwuZyYGLlHSO0aQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFB2FAyIp4k6EnbJtEe8gWGiWtGhZMB8GA1UdIwQY MBaAFMnVsSngb5UkaF5wAQKEH3LWkVwzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveWRXeEtlQnZsU1JvWG5BQkFvUWZjdGFSWERNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS8xOWY5ZDctNDQzOC00ZDYxLWJlNzct YzJlYWRkNWVmM2YxLzEveWRXeEtlQnZsU1JvWG5BQkFvUWZjdGFSWERNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNS8xOWY5ZDctNDQzOC00ZDYxLWJlNzctYzJlYWRkNWVmM2Yx LzEveWRXeEtlQnZsU1JvWG5BQkFvUWZjdGFSWERNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHBZMeuql w0Zugva3XY9Yk0fwivWaQVN+VuBL+vG1CMhCoiUhM1NvkiO254TBzBdP3TfmvAbx FJVlGFBuZHb//KdltLvEni60mwwEHykTLnC/bbc1XM/S/jY6CVzYaUbee5lSjlqQ cy2yYGQUEaUG6COBdfEGjs4XMYaJWefz1vxYMsy9wUagT1FfaJOmF5GDeuDlEIlc QD28sG6RkS7jFlnF77TiOxPJwgb4veGW4Rt4hb/WciSPVF30yCKuwrg1dBvfN3IG wbPQ/47xKB7gBZmJ4ofkY9hi9pHq7vsmlg/OJrQ5ymnnW0EhNkPgao0lgFw9X02O 8cfWd8SMNuyKJg== -----END CERTIFICATE-----Generated at Sun Dec 21 01:53:25 2025 by rpki-client