This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/36bd40-4a48-4c04-9710-5e763d3a4d1d/1/ygBGolNBzREDtgzOC5nqN1S6XEE.mft File: ygBGolNBzREDtgzOC5nqN1S6XEE.mft (raw, json) Hash identifier: 2tUb6AdS6nxXOyYVRVvRqj2BHHwTfygFDFjI3Gmz54k= Subject key identifier: DF:21:31:86:76:C8:B1:C5:F6:61:2F:F9:EA:63:8E:BC:D3:73:76:C1 Authority key identifier: CA:00:46:A2:53:41:CD:11:03:B6:0C:CE:0B:99:EA:37:54:BA:5C:41 Certificate issuer: /CN=ca0046a25341cd1103b60cce0b99ea3754ba5c41 Certificate serial: 019B446E4C88C7EB97686FA732AD469191D2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ygBGolNBzREDtgzOC5nqN1S6XEE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/36bd40-4a48-4c04-9710-5e763d3a4d1d/1/ygBGolNBzREDtgzOC5nqN1S6XEE.mft Manifest number: 0485 Signing time: Mon 22 Dec 2025 05:00:37 +0000 Manifest this update: Mon 22 Dec 2025 05:00:37 +0000 Manifest next update: Tue 23 Dec 2025 05:00:37 +0000 Files and hashes: 1: YKvMMcRqLG8F9RKMTccvi7ZwGaQ.roa (hash: vyK0AzONbiCe5g5hUQ+qpo+ABY7iaBzdOKFUE4y2Cqc=) 2: ygBGolNBzREDtgzOC5nqN1S6XEE.crl (hash: mpeFp1nnBuLbFgfvy9DHFEOx1r6/hyvp9poptotO+QU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/36bd40-4a48-4c04-9710-5e763d3a4d1d/1/ygBGolNBzREDtgzOC5nqN1S6XEE.crl rsync://rpki.ripe.net/repository/DEFAULT/18/36bd40-4a48-4c04-9710-5e763d3a4d1d/1/ygBGolNBzREDtgzOC5nqN1S6XEE.mft rsync://rpki.ripe.net/repository/DEFAULT/ygBGolNBzREDtgzOC5nqN1S6XEE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 22:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:44:6e:4c:88:c7:eb:97:68:6f:a7:32:ad:46:91:91:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ca0046a25341cd1103b60cce0b99ea3754ba5c41 Validity Not Before: Dec 22 05:00:37 2025 GMT Not After : Dec 23 05:00:37 2025 GMT Subject: CN=df21318676c8b1c5f6612ff9ea638ebcd37376c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:12:96:1b:f0:6a:a9:4e:8b:17:2f:97:ae:d1: 64:13:8c:68:85:51:23:47:36:de:84:a9:23:cb:84: a1:53:2d:90:8a:cc:92:c8:42:1f:9d:00:3f:10:ce: fd:f8:22:2d:68:d5:24:92:d4:59:40:d6:06:95:d8: 8e:8e:a1:c7:68:80:f7:1c:c5:3c:38:db:05:29:8d: ff:1b:f8:8a:ea:f1:8b:8f:49:b7:75:2c:06:8c:b6: a7:52:6c:f2:a7:12:57:88:2d:f1:a0:78:93:2b:0d: de:2d:23:93:e7:d7:2a:df:3b:40:e3:d4:77:52:97: e7:9c:b3:41:06:04:49:1b:91:ca:7e:84:41:3c:0b: 09:af:f7:36:7d:24:2e:9c:3c:48:77:45:a2:68:e3: 5a:68:e4:c2:16:fc:b1:66:d1:4a:29:c3:74:ae:25: 2a:9d:45:f5:64:c4:62:4d:87:a3:2c:db:2d:46:99: 09:aa:a0:8b:95:82:8f:b0:ff:3e:11:30:71:8b:2a: 08:56:c9:78:34:81:48:75:34:24:06:54:db:1a:53: 10:43:00:bc:29:6b:60:68:f1:02:30:e6:79:f1:fb: 0b:0b:8d:14:30:da:da:58:bc:3c:7d:ca:39:0b:31: ea:0d:fa:29:9d:71:e5:19:c7:70:b3:15:9a:15:54: 12:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:21:31:86:76:C8:B1:C5:F6:61:2F:F9:EA:63:8E:BC:D3:73:76:C1 X509v3 Authority Key Identifier: keyid:CA:00:46:A2:53:41:CD:11:03:B6:0C:CE:0B:99:EA:37:54:BA:5C:41 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ygBGolNBzREDtgzOC5nqN1S6XEE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/36bd40-4a48-4c04-9710-5e763d3a4d1d/1/ygBGolNBzREDtgzOC5nqN1S6XEE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/18/36bd40-4a48-4c04-9710-5e763d3a4d1d/1/ygBGolNBzREDtgzOC5nqN1S6XEE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0a:46:b7:49:53:a8:93:29:e9:7d:e8:08:6e:43:15:ba:a2:a2: cf:3d:eb:81:bd:dc:3b:51:7e:58:31:44:41:cc:d1:6d:f4:c7: af:b4:f2:80:ee:c0:df:9a:ac:71:0d:65:f4:16:7e:63:44:49: de:66:50:4d:7f:b1:af:62:1d:da:67:23:c4:ad:d1:3c:b1:75: 08:3b:e2:37:cf:0a:3d:11:ce:00:4e:f3:0a:18:85:14:44:58: 08:69:60:0c:41:e2:ff:bc:b7:7b:ab:f7:4f:b8:9b:79:ed:3f: 8b:66:91:e6:2a:b1:4f:58:88:2f:a2:af:d6:aa:9a:05:4a:16: 5c:13:00:12:46:9a:a9:4d:f3:ed:2d:dd:c2:2f:b3:0a:a6:1c: b3:dc:9f:e4:e4:f1:6e:07:70:41:4f:c8:4f:8d:7b:be:1d:9c: 7e:bf:b6:28:a7:08:a7:ae:b2:dd:51:53:b6:f5:e7:d4:5e:f6: 11:b0:56:a7:49:7b:a8:24:9d:a2:0f:8d:4f:15:d6:69:d6:8f: 98:e1:76:d7:7b:ae:da:ed:8b:27:1f:6e:c7:0f:21:13:3f:a7: ae:e9:ed:af:4f:35:ec:13:43:c4:02:18:95:ac:56:59:47:52: 33:31:62:43:a8:f6:21:ad:bf:07:c1:60:74:eb:4c:9c:3e:f0: 79:d3:67:b0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtEbkyIx+uXaG+nMq1GkZHSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNhMDA0NmEyNTM0MWNkMTEwM2I2MGNjZTBiOTllYTM3NTRi YTVjNDEwHhcNMjUxMjIyMDUwMDM3WhcNMjUxMjIzMDUwMDM3WjAzMTEwLwYDVQQD EyhkZjIxMzE4Njc2YzhiMWM1ZjY2MTJmZjllYTYzOGViY2QzNzM3NmMxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvRKWG/BqqU6LFy+XrtFkE4xohVEj RzbehKkjy4ShUy2QisySyEIfnQA/EM79+CItaNUkktRZQNYGldiOjqHHaID3HMU8 ONsFKY3/G/iK6vGLj0m3dSwGjLanUmzypxJXiC3xoHiTKw3eLSOT59cq3ztA49R3 UpfnnLNBBgRJG5HKfoRBPAsJr/c2fSQunDxId0WiaONaaOTCFvyxZtFKKcN0riUq nUX1ZMRiTYejLNstRpkJqqCLlYKPsP8+ETBxiyoIVsl4NIFIdTQkBlTbGlMQQwC8 KWtgaPECMOZ58fsLC40UMNraWLw8fco5CzHqDfopnXHlGcdwsxWaFVQSZQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFN8hMYZ2yLHF9mEv+epjjrzTc3bBMB8GA1UdIwQY MBaAFMoARqJTQc0RA7YMzguZ6jdUulxBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveWdCR29sTkJ6UkVEdGd6T0M1bnFOMVM2WEVFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOC8zNmJkNDAtNGE0OC00YzA0LTk3MTAt NWU3NjNkM2E0ZDFkLzEveWdCR29sTkJ6UkVEdGd6T0M1bnFOMVM2WEVFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xOC8zNmJkNDAtNGE0OC00YzA0LTk3MTAtNWU3NjNkM2E0ZDFk LzEveWdCR29sTkJ6UkVEdGd6T0M1bnFOMVM2WEVFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACka3SVOo kynpfegIbkMVuqKizz3rgb3cO1F+WDFEQczRbfTHr7TygO7A35qscQ1l9BZ+Y0RJ 3mZQTX+xr2Id2mcjxK3RPLF1CDviN88KPRHOAE7zChiFFERYCGlgDEHi/7y3e6v3 T7ibee0/i2aR5iqxT1iIL6Kv1qqaBUoWXBMAEkaaqU3z7S3dwi+zCqYcs9yf5OTx bgdwQU/IT417vh2cfr+2KKcIp66y3VFTtvXn1F72EbBWp0l7qCSdog+NTxXWadaP mOF213uu2u2LJx9uxw8hEz+nruntr0817BNDxAIYlaxWWUdSMzFiQ6j2Ia2/B8Fg dOtMnD7wedNnsA== -----END CERTIFICATE-----Generated at Mon Dec 22 06:27:27 2025 by rpki-client