This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/36bd40-4a48-4c04-9710-5e763d3a4d1d/1/ygBGolNBzREDtgzOC5nqN1S6XEE.mft File: ygBGolNBzREDtgzOC5nqN1S6XEE.mft (raw, json) Hash identifier: JRnSQOJf+nxUmHG3gt2ETmRoTDu1Oa9dEiws8nEi8G4= Subject key identifier: 21:DA:A3:E0:35:B8:43:C4:E0:EB:E3:A0:72:47:80:12:BD:BC:9E:38 Authority key identifier: CA:00:46:A2:53:41:CD:11:03:B6:0C:CE:0B:99:EA:37:54:BA:5C:41 Certificate issuer: /CN=ca0046a25341cd1103b60cce0b99ea3754ba5c41 Certificate serial: 019B3EA37D27BDE9BE275FAEFA9C60A686BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ygBGolNBzREDtgzOC5nqN1S6XEE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/36bd40-4a48-4c04-9710-5e763d3a4d1d/1/ygBGolNBzREDtgzOC5nqN1S6XEE.mft Manifest number: 0482 Signing time: Sun 21 Dec 2025 02:01:00 +0000 Manifest this update: Sun 21 Dec 2025 02:01:00 +0000 Manifest next update: Mon 22 Dec 2025 02:01:00 +0000 Files and hashes: 1: YKvMMcRqLG8F9RKMTccvi7ZwGaQ.roa (hash: vyK0AzONbiCe5g5hUQ+qpo+ABY7iaBzdOKFUE4y2Cqc=) 2: ygBGolNBzREDtgzOC5nqN1S6XEE.crl (hash: /HbVI8syps2t0kWJrahx39BILCqdLr2MygdWOmfCCzw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/36bd40-4a48-4c04-9710-5e763d3a4d1d/1/ygBGolNBzREDtgzOC5nqN1S6XEE.crl rsync://rpki.ripe.net/repository/DEFAULT/18/36bd40-4a48-4c04-9710-5e763d3a4d1d/1/ygBGolNBzREDtgzOC5nqN1S6XEE.mft rsync://rpki.ripe.net/repository/DEFAULT/ygBGolNBzREDtgzOC5nqN1S6XEE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3e:a3:7d:27:bd:e9:be:27:5f:ae:fa:9c:60:a6:86:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ca0046a25341cd1103b60cce0b99ea3754ba5c41 Validity Not Before: Dec 21 02:01:00 2025 GMT Not After : Dec 22 02:01:00 2025 GMT Subject: CN=21daa3e035b843c4e0ebe3a072478012bdbc9e38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:ca:92:51:25:12:b0:3b:60:9e:84:98:bf:e9: a3:4a:07:47:e9:ae:aa:4d:01:8b:6c:67:c6:23:d0: 5b:5c:f7:4b:46:aa:32:3d:c5:ef:4b:ec:54:19:08: 20:a7:78:93:45:b9:b3:99:68:f9:40:9c:1b:1c:3f: f3:bb:42:88:50:7d:f1:82:fb:cc:f4:53:a8:d6:b2: 2d:e7:5c:8b:b9:90:80:bb:24:2c:88:98:dc:0f:65: d7:b3:ff:13:c5:00:e7:5a:55:50:5d:90:fc:73:45: 31:4b:ef:62:4f:f5:85:e6:fa:4f:5e:dc:49:01:32: 40:75:a1:92:5d:bb:82:0c:3f:60:30:ff:6d:9e:6f: a7:a4:4c:ca:d6:b5:5c:b9:1a:30:7d:6c:c8:02:ac: 38:7e:15:3e:f0:ff:d2:22:7d:e3:d8:31:aa:94:30: 6b:08:30:da:9c:c0:64:f4:f4:71:83:d1:28:3a:d8: 4f:e1:29:d4:a4:28:08:9f:39:4c:23:8a:a8:0c:07: ad:76:cd:88:69:a8:fa:23:6e:aa:7b:07:d5:7f:0a: 24:e2:d4:4d:c8:ea:d6:a3:02:a8:94:f3:00:27:a0: ec:03:0a:ad:2a:6a:de:49:82:7b:07:31:06:f8:92: 1e:78:f5:66:f9:d0:26:27:28:87:ee:6a:f5:31:4d: e8:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:DA:A3:E0:35:B8:43:C4:E0:EB:E3:A0:72:47:80:12:BD:BC:9E:38 X509v3 Authority Key Identifier: keyid:CA:00:46:A2:53:41:CD:11:03:B6:0C:CE:0B:99:EA:37:54:BA:5C:41 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ygBGolNBzREDtgzOC5nqN1S6XEE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/36bd40-4a48-4c04-9710-5e763d3a4d1d/1/ygBGolNBzREDtgzOC5nqN1S6XEE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/18/36bd40-4a48-4c04-9710-5e763d3a4d1d/1/ygBGolNBzREDtgzOC5nqN1S6XEE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5a:2d:11:cd:8e:e4:2f:31:27:8a:8f:46:9f:0d:81:0a:59:e1: 81:99:e7:72:4a:c9:d7:d7:e1:58:26:50:06:df:9e:48:47:9a: 34:b0:e4:1a:60:a5:51:34:c2:15:59:cc:c0:6e:04:b1:db:92: 86:e8:15:44:b1:32:7e:69:60:58:0e:f0:4e:5a:de:69:43:e9: d0:c4:69:0e:d2:62:33:b2:0c:3e:4d:0a:2c:e3:a5:b3:72:7c: 2b:a2:69:92:0e:7e:b7:5b:09:df:d9:f6:dc:4c:bb:b1:68:f7: 48:3e:36:d2:fa:da:f1:09:6b:b6:0c:50:78:08:10:3c:e7:30: f2:31:9c:da:d2:6f:c3:3c:c9:da:8b:83:e7:91:7b:cf:34:26: e5:28:90:51:1c:7e:62:44:e8:a3:1c:7d:fd:13:a5:e4:49:cb: bf:e2:2e:3c:a8:52:f8:79:32:6d:02:e3:72:b5:c6:a9:a0:2d: 7c:b5:ce:65:7f:e9:51:3d:6c:61:ba:87:d2:38:a9:37:19:c5: 6c:b3:3d:95:09:f7:94:e5:58:4b:62:de:3e:67:4e:9f:e7:3a: 7c:e9:58:fb:19:43:ed:f6:f1:70:d6:9c:2c:3a:c9:c1:7e:ad: e3:e5:46:9c:4d:32:41:09:44:1d:4f:b7:f1:47:f1:f2:1d:60: f0:e1:6b:45 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs+o30nvem+J1+u+pxgpoa8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNhMDA0NmEyNTM0MWNkMTEwM2I2MGNjZTBiOTllYTM3NTRi YTVjNDEwHhcNMjUxMjIxMDIwMTAwWhcNMjUxMjIyMDIwMTAwWjAzMTEwLwYDVQQD EygyMWRhYTNlMDM1Yjg0M2M0ZTBlYmUzYTA3MjQ3ODAxMmJkYmM5ZTM4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxsqSUSUSsDtgnoSYv+mjSgdH6a6q TQGLbGfGI9BbXPdLRqoyPcXvS+xUGQggp3iTRbmzmWj5QJwbHD/zu0KIUH3xgvvM 9FOo1rIt51yLuZCAuyQsiJjcD2XXs/8TxQDnWlVQXZD8c0UxS+9iT/WF5vpPXtxJ ATJAdaGSXbuCDD9gMP9tnm+npEzK1rVcuRowfWzIAqw4fhU+8P/SIn3j2DGqlDBr CDDanMBk9PRxg9EoOthP4SnUpCgInzlMI4qoDAetds2Iaaj6I26qewfVfwok4tRN yOrWowKolPMAJ6DsAwqtKmreSYJ7BzEG+JIeePVm+dAmJyiH7mr1MU3oTQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCHao+A1uEPE4OvjoHJHgBK9vJ44MB8GA1UdIwQY MBaAFMoARqJTQc0RA7YMzguZ6jdUulxBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveWdCR29sTkJ6UkVEdGd6T0M1bnFOMVM2WEVFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOC8zNmJkNDAtNGE0OC00YzA0LTk3MTAt NWU3NjNkM2E0ZDFkLzEveWdCR29sTkJ6UkVEdGd6T0M1bnFOMVM2WEVFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xOC8zNmJkNDAtNGE0OC00YzA0LTk3MTAtNWU3NjNkM2E0ZDFk LzEveWdCR29sTkJ6UkVEdGd6T0M1bnFOMVM2WEVFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWi0RzY7k LzEnio9Gnw2BClnhgZnnckrJ19fhWCZQBt+eSEeaNLDkGmClUTTCFVnMwG4EsduS hugVRLEyfmlgWA7wTlreaUPp0MRpDtJiM7IMPk0KLOOls3J8K6Jpkg5+t1sJ39n2 3Ey7sWj3SD420vra8QlrtgxQeAgQPOcw8jGc2tJvwzzJ2ouD55F7zzQm5SiQURx+ YkTooxx9/ROl5EnLv+IuPKhS+HkybQLjcrXGqaAtfLXOZX/pUT1sYbqH0jipNxnF bLM9lQn3lOVYS2LePmdOn+c6fOlY+xlD7fbxcNacLDrJwX6t4+VGnE0yQQlEHU+3 8Ufx8h1g8OFrRQ== -----END CERTIFICATE-----Generated at Sun Dec 21 07:40:15 2025 by rpki-client