This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.mft File: Y2O7ZYlfOlSksyShDHmsmO_ioco.mft (raw, json) Hash identifier: 1S5d/MFyB6VkVpC8JDVh2USpSXHeqVFmeTs2QprLtJE= Subject key identifier: A1:77:67:4F:AD:13:D4:A6:41:4F:EC:16:47:C8:21:1C:F8:05:84:C9 Authority key identifier: 63:63:BB:65:89:5F:3A:54:A4:B3:24:A1:0C:79:AC:98:EF:E2:A1:CA Certificate issuer: /CN=6363bb65895f3a54a4b324a10c79ac98efe2a1ca Certificate serial: 019B3AC6C1F08F1E9CF926C51F071794BF75 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.mft Manifest number: 10E5 Signing time: Sat 20 Dec 2025 08:01:02 +0000 Manifest this update: Sat 20 Dec 2025 08:01:02 +0000 Manifest next update: Sun 21 Dec 2025 08:01:02 +0000 Files and hashes: 1: 1-6pTVhKpU3Sk-lD2DMuErutsZFk.roa (hash: nWZLb1utTjLYpnQeYw9Zd6QKVfsReFbLprb3lkSWIS0=) 2: 1-YME93lc1AWh4-bMqvVDZYenQg0.roa (hash: Euu0W5ctvY2bfvnvaMrD1zBWGCi2DVPvkYQ6p9zTjts=) 3: HdvJhluj0mmgaFdPVm0s0ofNMQM.roa (hash: p1LONhiWBtnwDM/uG7ENsu+2YSQKoESJAbc98yta6C4=) 4: PG5DPUzHhisMDmHNMi2OiyC4Krk.roa (hash: 5vgSE6xpOM3tTVvShPg0nfAqcYxZUDm3VYRogPEs1nM=) 5: QWifAQ3dSu8nhEAeOh_F1BphWro.roa (hash: itO7AV5EF/O+Sl0fYRa8cl6eA4q/nRa0iBG6sGElFQI=) 6: Y2O7ZYlfOlSksyShDHmsmO_ioco.crl (hash: HEkyCqXB5LOeC8LRjeg8gWYN1xP1wjCCIwawz0KR9Uw=) 7: Z6ubH84vQbgEnifkNYkjjYx5LIg.roa (hash: A5Iyh12sixazcVNr3007j9RNY5bFIJZSLARvNvwI0hI=) 8: cWGszmobGgkTRu82roBLKR9vgkE.roa (hash: bXFzT/7+8yagPIwyKl0fdIxc7uJ/wfFRRzbV8w0a7yI=) 9: flrC_8zXbr01pJXgtmy__huZXOA.roa (hash: vzxZLPURPSKJVHe6QAWg0rqm4QhuQOuF7VBOWspThjA=) 10: nGntDaqcmONxUi1sd87UMvT9x4I.roa (hash: JUPdqbOgdaD6LXB1MI+aJwuym5PZcQO3ILLdGvRsfU8=) 11: nzJ1VVo_PG7VRYK1qXbMx1rFS50.roa (hash: /GaOWlamFjP2Dj79UI9A1USxEJfBxcpOsY5WVrDbQNw=) 12: p_iHNwwqh2be0OjT5JQIUHp4Uvs.roa (hash: iKYw9dWKEOaAlzn5AmL4rdC2+rWU6FDA6bFijDgxb2w=) 13: qXSDx6qMLmAkAg9CUQzF6i4iyY0.roa (hash: wdkB7sltE+pNfWEVP8+xe0pE2lM5C0vVvLdbwwyDf04=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.crl rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.mft rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 08:01:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3a:c6:c1:f0:8f:1e:9c:f9:26:c5:1f:07:17:94:bf:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6363bb65895f3a54a4b324a10c79ac98efe2a1ca Validity Not Before: Dec 20 08:01:02 2025 GMT Not After : Dec 21 08:01:02 2025 GMT Subject: CN=a177674fad13d4a6414fec1647c8211cf80584c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:46:fe:24:d6:1a:40:a3:1f:7e:9e:82:ce:97: 12:5b:a9:ba:e4:75:d0:4f:7b:34:dd:64:40:7b:e1: 97:64:38:8f:d7:d0:b1:22:33:0e:c6:01:50:91:8a: e2:5d:c7:5b:ec:d9:17:6a:04:92:5c:98:58:d7:15: 3a:99:2d:22:bd:cd:74:e4:3c:eb:f6:10:69:29:4f: fd:63:fe:f9:fe:ad:1e:6d:08:00:09:9b:fb:3c:01: b6:48:53:60:65:c2:98:0e:5d:8a:dd:b8:95:8a:ed: 14:0f:3f:db:dd:f3:4e:3f:60:64:cf:84:37:d1:ff: 81:97:bc:b0:18:be:d9:a1:4b:32:d7:49:fa:ee:92: 2e:a1:33:d9:e6:33:ef:dc:72:3a:c7:b1:24:13:41: 53:b0:e9:bc:82:12:5f:0e:65:97:d8:76:b1:6e:76: 29:b4:77:3e:1d:fb:0e:32:b3:21:ad:fd:43:dc:2d: 61:c6:4f:5d:b3:bf:35:db:09:c3:37:de:85:d6:a0: d3:ac:1c:3c:75:ba:e9:18:9d:46:6e:8f:0f:f9:a6: 9f:30:f7:84:9d:65:0c:74:5c:3e:10:08:21:fc:b7: 0b:aa:de:c2:cb:ab:16:d3:43:c7:0b:5a:0c:c1:23: aa:bb:17:43:28:5e:5f:2a:66:b1:70:23:f5:af:4c: 50:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:77:67:4F:AD:13:D4:A6:41:4F:EC:16:47:C8:21:1C:F8:05:84:C9 X509v3 Authority Key Identifier: keyid:63:63:BB:65:89:5F:3A:54:A4:B3:24:A1:0C:79:AC:98:EF:E2:A1:CA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a4:96:ce:be:e1:ba:17:3a:59:75:74:ee:05:a8:86:14:01:e1: fd:6a:c5:87:a0:bf:0d:4c:98:88:a8:c2:86:db:46:82:24:8e: 02:61:48:99:9f:c1:8f:fd:c3:ca:c0:90:c0:82:32:b6:58:94: 0a:91:5c:69:14:2a:5e:63:39:54:37:c6:02:df:24:b5:b1:b0: c4:b7:55:00:a9:af:ac:f2:8c:55:ed:51:e2:85:d4:4b:12:7a: 08:2a:60:60:f4:52:54:4d:55:b6:7a:a7:2c:4f:3a:f5:e2:38: 10:49:55:c2:ff:93:52:72:f7:fd:52:95:30:04:7b:44:77:a3: 6b:cb:63:4f:18:c0:d9:d7:c1:91:b2:71:91:04:89:b7:3a:a3: 69:21:42:bc:96:88:66:81:1b:8f:e2:68:ad:17:72:35:f9:4b: 19:43:96:a5:6e:f7:83:b3:f9:a7:f9:92:10:57:28:86:ec:68: 8b:d1:9c:86:5a:57:66:bc:61:74:26:ad:61:10:ac:c5:b1:f8: 47:a9:7e:06:63:a3:82:b4:b8:46:3f:f5:10:ec:e4:e0:82:e8: 3c:2f:bf:77:54:56:14:3c:2e:25:78:a5:ab:b4:71:c1:07:ee: c8:35:2e:23:57:3e:16:88:cf:46:64:85:27:bc:b9:ff:6c:74: b0:d4:3c:1f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs6xsHwjx6c+SbFHwcXlL91MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYzNjNiYjY1ODk1ZjNhNTRhNGIzMjRhMTBjNzlhYzk4ZWZl MmExY2EwHhcNMjUxMjIwMDgwMTAyWhcNMjUxMjIxMDgwMTAyWjAzMTEwLwYDVQQD EyhhMTc3Njc0ZmFkMTNkNGE2NDE0ZmVjMTY0N2M4MjExY2Y4MDU4NGM5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw0b+JNYaQKMffp6CzpcSW6m65HXQ T3s03WRAe+GXZDiP19CxIjMOxgFQkYriXcdb7NkXagSSXJhY1xU6mS0ivc105Dzr 9hBpKU/9Y/75/q0ebQgACZv7PAG2SFNgZcKYDl2K3biViu0UDz/b3fNOP2Bkz4Q3 0f+Bl7ywGL7ZoUsy10n67pIuoTPZ5jPv3HI6x7EkE0FTsOm8ghJfDmWX2HaxbnYp tHc+HfsOMrMhrf1D3C1hxk9ds7812wnDN96F1qDTrBw8dbrpGJ1Gbo8P+aafMPeE nWUMdFw+EAgh/LcLqt7Cy6sW00PHC1oMwSOquxdDKF5fKmaxcCP1r0xQSQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKF3Z0+tE9SmQU/sFkfIIRz4BYTJMB8GA1UdIwQY MBaAFGNju2WJXzpUpLMkoQx5rJjv4qHKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWTJPN1pZbGZPbFNrc3lTaERIbXNtT19pb2NvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy9kYjliZjEtZTAxOS00NWE0LTg2NjMt YTZjYTQ1NGRiMmQ3LzEvWTJPN1pZbGZPbFNrc3lTaERIbXNtT19pb2NvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNy9kYjliZjEtZTAxOS00NWE0LTg2NjMtYTZjYTQ1NGRiMmQ3 LzEvWTJPN1pZbGZPbFNrc3lTaERIbXNtT19pb2NvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApJbOvuG6 FzpZdXTuBaiGFAHh/WrFh6C/DUyYiKjChttGgiSOAmFImZ/Bj/3DysCQwIIytliU CpFcaRQqXmM5VDfGAt8ktbGwxLdVAKmvrPKMVe1R4oXUSxJ6CCpgYPRSVE1Vtnqn LE869eI4EElVwv+TUnL3/VKVMAR7RHeja8tjTxjA2dfBkbJxkQSJtzqjaSFCvJaI ZoEbj+JorRdyNflLGUOWpW73g7P5p/mSEFcohuxoi9GchlpXZrxhdCatYRCsxbH4 R6l+BmOjgrS4Rj/1EOzk4ILoPC+/d1RWFDwuJXilq7RxwQfuyDUuI1c+FojPRmSF J7y5/2x0sNQ8Hw== -----END CERTIFICATE-----Generated at Sat Dec 20 16:35:10 2025 by rpki-client