This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/814dd0-09e1-4273-873a-7463815a3f4e/1/y8Lr2jqwhRDr6aEOYL4jFgIoqUI.mft File: y8Lr2jqwhRDr6aEOYL4jFgIoqUI.mft (raw, json) Hash identifier: T7E66+sdcDpYT73PkckuQIjIyYjWc+dqdLB0BNMG7Ms= Subject key identifier: 29:39:42:CC:EC:85:1A:43:74:B3:9C:9E:27:95:24:F5:7A:2E:38:D2 Authority key identifier: CB:C2:EB:DA:3A:B0:85:10:EB:E9:A1:0E:60:BE:23:16:02:28:A9:42 Certificate issuer: /CN=cbc2ebda3ab08510ebe9a10e60be23160228a942 Certificate serial: 019B6CC7018169E1A9B8D1CBF7235462E63A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y8Lr2jqwhRDr6aEOYL4jFgIoqUI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/814dd0-09e1-4273-873a-7463815a3f4e/1/y8Lr2jqwhRDr6aEOYL4jFgIoqUI.mft Manifest number: 179D Signing time: Tue 30 Dec 2025 01:02:19 +0000 Manifest this update: Tue 30 Dec 2025 01:02:19 +0000 Manifest next update: Wed 31 Dec 2025 01:02:19 +0000 Files and hashes: 1: y8Lr2jqwhRDr6aEOYL4jFgIoqUI.crl (hash: lIUkvuLoOPoUgx8NwL2UUeJA9EHMI2j1dLAGaBKwngU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/814dd0-09e1-4273-873a-7463815a3f4e/1/y8Lr2jqwhRDr6aEOYL4jFgIoqUI.crl rsync://rpki.ripe.net/repository/DEFAULT/17/814dd0-09e1-4273-873a-7463815a3f4e/1/y8Lr2jqwhRDr6aEOYL4jFgIoqUI.mft rsync://rpki.ripe.net/repository/DEFAULT/y8Lr2jqwhRDr6aEOYL4jFgIoqUI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 31 Dec 2025 00:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:6c:c7:01:81:69:e1:a9:b8:d1:cb:f7:23:54:62:e6:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cbc2ebda3ab08510ebe9a10e60be23160228a942 Validity Not Before: Dec 30 01:02:19 2025 GMT Not After : Dec 31 01:02:19 2025 GMT Subject: CN=293942ccec851a4374b39c9e279524f57a2e38d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:e2:f7:79:92:3c:f9:b1:e9:ca:a1:ec:70:13: f8:62:6a:3e:b6:61:09:73:e2:3e:79:5e:00:8f:38: 45:0d:86:c6:de:f6:99:a9:ef:ab:20:bf:a8:57:49: c8:8e:f9:b0:c1:8c:26:03:1a:f2:03:a6:3f:22:38: ee:75:e8:1b:9d:fe:0d:c9:17:e2:8c:59:10:3c:16: 68:bf:d3:55:6c:74:42:fd:47:9b:b4:6a:ae:6e:fd: 25:26:72:69:0a:01:c3:ee:92:1b:d0:4d:06:e7:1c: e3:75:ef:90:f2:45:d5:1b:1a:7d:fc:b3:a6:7f:fd: b2:68:50:02:d1:6d:42:2c:46:77:b4:f5:54:ae:ad: 8a:19:3e:99:25:7d:cb:f7:ea:6b:c3:9c:ce:81:a7: cf:a5:d9:7e:73:d7:88:1f:0f:ed:9f:6c:6b:87:d9: 2d:a0:60:0f:a6:dc:61:39:d7:93:df:ce:4a:89:d1: 8f:85:a9:8f:24:e5:4b:81:91:d0:ae:ad:92:0e:e0: 81:90:b4:2e:0d:cf:ef:bc:bf:af:fb:cd:cf:59:62: 0d:30:51:50:c5:28:7f:35:0e:33:0f:33:1d:cc:23: 1c:47:0a:08:75:33:65:ab:06:e4:dc:b4:f4:fc:92: 6a:73:9b:a6:5a:94:f4:f2:2c:b7:22:92:a5:eb:29: 60:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:39:42:CC:EC:85:1A:43:74:B3:9C:9E:27:95:24:F5:7A:2E:38:D2 X509v3 Authority Key Identifier: keyid:CB:C2:EB:DA:3A:B0:85:10:EB:E9:A1:0E:60:BE:23:16:02:28:A9:42 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y8Lr2jqwhRDr6aEOYL4jFgIoqUI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/814dd0-09e1-4273-873a-7463815a3f4e/1/y8Lr2jqwhRDr6aEOYL4jFgIoqUI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/17/814dd0-09e1-4273-873a-7463815a3f4e/1/y8Lr2jqwhRDr6aEOYL4jFgIoqUI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c2:42:65:29:9e:83:24:c1:a6:13:73:69:44:98:74:40:f9:b6: 8c:c9:37:20:f8:5f:79:3d:87:a9:12:19:88:a4:db:2b:51:3a: 91:71:c4:9d:eb:e0:88:07:93:ac:64:c4:50:f9:58:2f:19:e9: b6:65:2f:30:85:ff:d4:e7:e4:eb:1c:21:3d:4b:17:af:fc:56: b0:db:b9:0a:fb:94:3a:fe:87:4a:7e:bd:3c:8c:13:39:ae:47: cb:2b:29:35:3c:f4:e2:7f:e8:37:75:7b:d0:f2:d5:97:bf:ad: a0:8d:f7:2b:02:75:cf:42:bc:48:f9:d5:8c:58:30:3d:f6:80: 1d:4f:44:f6:b3:7f:a9:a9:13:01:6b:63:28:14:36:bf:55:d5: c9:b0:c2:bf:08:c1:88:80:c2:5e:6e:7a:af:92:10:e1:e2:eb: 66:a3:82:bf:a3:4b:78:ee:36:43:e1:7f:b0:31:98:78:e8:99: 9a:dd:a1:8b:3d:26:bf:42:ee:84:b6:56:77:46:2d:a6:9d:b2: 9b:61:c0:95:b6:37:ee:4d:db:19:7d:66:1e:02:29:5e:73:3e: 81:ab:03:bf:1e:af:cb:f5:eb:71:06:f7:9e:3a:64:bc:59:f4: b4:04:cf:d3:b6:64:26:14:e1:ef:d2:7f:f9:fc:f3:09:40:70: 84:3c:ec:8f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtsxwGBaeGpuNHL9yNUYuY6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNiYzJlYmRhM2FiMDg1MTBlYmU5YTEwZTYwYmUyMzE2MDIy OGE5NDIwHhcNMjUxMjMwMDEwMjE5WhcNMjUxMjMxMDEwMjE5WjAzMTEwLwYDVQQD EygyOTM5NDJjY2VjODUxYTQzNzRiMzljOWUyNzk1MjRmNTdhMmUzOGQyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4uL3eZI8+bHpyqHscBP4Ymo+tmEJ c+I+eV4AjzhFDYbG3vaZqe+rIL+oV0nIjvmwwYwmAxryA6Y/Ijjudegbnf4NyRfi jFkQPBZov9NVbHRC/UebtGqubv0lJnJpCgHD7pIb0E0G5xzjde+Q8kXVGxp9/LOm f/2yaFAC0W1CLEZ3tPVUrq2KGT6ZJX3L9+prw5zOgafPpdl+c9eIHw/tn2xrh9kt oGAPptxhOdeT385KidGPhamPJOVLgZHQrq2SDuCBkLQuDc/vvL+v+83PWWINMFFQ xSh/NQ4zDzMdzCMcRwoIdTNlqwbk3LT0/JJqc5umWpT08iy3IpKl6ylguwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCk5QszshRpDdLOcnieVJPV6LjjSMB8GA1UdIwQY MBaAFMvC69o6sIUQ6+mhDmC+IxYCKKlCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveThMcjJqcXdoUkRyNmFFT1lMNGpGZ0lvcVVJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy84MTRkZDAtMDllMS00MjczLTg3M2Et NzQ2MzgxNWEzZjRlLzEveThMcjJqcXdoUkRyNmFFT1lMNGpGZ0lvcVVJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNy84MTRkZDAtMDllMS00MjczLTg3M2EtNzQ2MzgxNWEzZjRl LzEveThMcjJqcXdoUkRyNmFFT1lMNGpGZ0lvcVVJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAwkJlKZ6D JMGmE3NpRJh0QPm2jMk3IPhfeT2HqRIZiKTbK1E6kXHEnevgiAeTrGTEUPlYLxnp tmUvMIX/1Ofk6xwhPUsXr/xWsNu5CvuUOv6HSn69PIwTOa5HyyspNTz04n/oN3V7 0PLVl7+toI33KwJ1z0K8SPnVjFgwPfaAHU9E9rN/qakTAWtjKBQ2v1XVybDCvwjB iIDCXm56r5IQ4eLrZqOCv6NLeO42Q+F/sDGYeOiZmt2hiz0mv0LuhLZWd0Ytpp2y m2HAlbY37k3bGX1mHgIpXnM+gasDvx6vy/XrcQb3njpkvFn0tATP07ZkJhTh79J/ +fzzCUBwhDzsjw== -----END CERTIFICATE-----Generated at Tue Dec 30 08:52:52 2025 by rpki-client