This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/0cf6d7-d8ef-44a8-aa07-7768d4fbdcd3/1/Y42aUATFktCTzImw2QdS4nnVGFQ.mft File: Y42aUATFktCTzImw2QdS4nnVGFQ.mft (raw, json) Hash identifier: Ft/DbfzOn9aJFbwoOvEScfS5vT7HkjIMAuB2xmGU3UE= Subject key identifier: 05:AD:F9:12:65:9D:EC:C8:06:D0:D3:DF:AB:FC:E0:00:C8:18:51:68 Authority key identifier: 63:8D:9A:50:04:C5:92:D0:93:CC:89:B0:D9:07:52:E2:79:D5:18:54 Certificate issuer: /CN=638d9a5004c592d093cc89b0d90752e279d51854 Certificate serial: 019B3CEBF482430EDF0706C210E29570FB41 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y42aUATFktCTzImw2QdS4nnVGFQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/0cf6d7-d8ef-44a8-aa07-7768d4fbdcd3/1/Y42aUATFktCTzImw2QdS4nnVGFQ.mft Manifest number: 1788 Signing time: Sat 20 Dec 2025 18:00:54 +0000 Manifest this update: Sat 20 Dec 2025 18:00:54 +0000 Manifest next update: Sun 21 Dec 2025 18:00:54 +0000 Files and hashes: 1: 5t5Dcx5tNkWQ_sy57yYX9uF0BSc.roa (hash: PzSrKv8Rw8leyPQ1z/odwxbCskApuD1oeaEEXKXPsNc=) 2: Y42aUATFktCTzImw2QdS4nnVGFQ.crl (hash: dd1CIODC/n6MyA1aveGecwi5v0cv5++jKdRPZ3ConwM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/0cf6d7-d8ef-44a8-aa07-7768d4fbdcd3/1/Y42aUATFktCTzImw2QdS4nnVGFQ.crl rsync://rpki.ripe.net/repository/DEFAULT/1a/0cf6d7-d8ef-44a8-aa07-7768d4fbdcd3/1/Y42aUATFktCTzImw2QdS4nnVGFQ.mft rsync://rpki.ripe.net/repository/DEFAULT/Y42aUATFktCTzImw2QdS4nnVGFQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 18:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3c:eb:f4:82:43:0e:df:07:06:c2:10:e2:95:70:fb:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=638d9a5004c592d093cc89b0d90752e279d51854 Validity Not Before: Dec 20 18:00:54 2025 GMT Not After : Dec 21 18:00:54 2025 GMT Subject: CN=05adf912659decc806d0d3dfabfce000c8185168 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:54:ae:08:c4:7f:87:b9:ae:80:5c:2f:35:47: 18:2b:e8:7b:bf:4d:16:eb:5b:0b:f9:0a:57:a6:75: af:f8:34:b6:e2:cf:ad:d2:f4:e6:69:be:cc:5c:0d: 5b:c5:d4:40:d3:5f:cb:e9:17:24:7f:d5:9a:8f:16: 8f:d4:e6:a6:4f:50:b2:af:04:0e:93:8f:3f:c7:a3: 87:9d:7c:96:6f:df:d9:a0:30:02:bb:a6:28:08:be: 2a:c5:ae:4f:b3:2a:d2:0c:b7:96:68:16:4a:8b:f6: 44:8b:fb:66:b0:b3:7b:7b:8d:ef:54:85:8f:2e:8a: 02:d6:78:10:ad:ff:3c:0d:3e:f6:f7:9f:37:c4:92: 7d:2b:49:24:d4:56:7e:fa:e5:e6:22:6c:8f:2a:fb: 8e:bc:95:2d:50:21:58:6e:c2:63:c5:39:cf:d1:e5: 4a:7a:ef:1b:44:2e:f8:a4:a1:ea:c1:93:a4:5f:7c: 4e:d1:5a:8e:b6:49:74:86:0a:4f:dc:23:48:98:cd: c8:8c:fa:7a:19:9a:b7:93:63:5a:4b:8a:07:5f:cd: c0:17:95:0e:cb:42:f8:bf:3f:f2:3f:74:c3:2b:ad: 1d:99:65:00:01:0c:b5:c4:19:31:fa:05:34:6c:56: 38:66:09:81:ef:49:77:34:0a:b6:32:cf:70:ac:f6: 66:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:AD:F9:12:65:9D:EC:C8:06:D0:D3:DF:AB:FC:E0:00:C8:18:51:68 X509v3 Authority Key Identifier: keyid:63:8D:9A:50:04:C5:92:D0:93:CC:89:B0:D9:07:52:E2:79:D5:18:54 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y42aUATFktCTzImw2QdS4nnVGFQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/0cf6d7-d8ef-44a8-aa07-7768d4fbdcd3/1/Y42aUATFktCTzImw2QdS4nnVGFQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/0cf6d7-d8ef-44a8-aa07-7768d4fbdcd3/1/Y42aUATFktCTzImw2QdS4nnVGFQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9d:df:0f:9b:7e:ad:16:5c:ce:66:1e:b8:74:75:1f:46:4d:df: 23:f8:5b:c1:a4:b0:cc:db:b3:bb:c1:30:04:0a:14:71:c2:37: f1:ae:ad:cf:3b:95:69:79:a3:47:a9:2a:01:73:92:e5:65:11: fd:cd:26:a2:8e:f3:a4:c2:50:d8:d2:77:ed:21:dc:45:3a:1b: 02:39:67:7f:95:99:79:4c:9f:9a:83:c5:68:34:cb:22:98:61: e7:0d:78:57:13:a2:7b:25:ee:94:75:49:2f:0a:48:18:f6:0d: 05:c7:c3:8f:9e:f5:ff:00:d0:02:30:1d:dc:1a:34:6a:b6:c1: b6:95:7c:57:29:84:17:b4:73:7a:de:c1:ad:2f:b3:d5:45:17: db:b4:ed:2a:cb:99:3c:a1:ee:c9:8b:49:45:9f:4a:7a:ae:53: cd:ef:3b:6f:09:e5:e1:7c:80:01:78:86:f0:8f:1a:cd:b1:47: e0:3e:fb:8c:a4:44:cf:4a:76:40:ea:a6:0c:4c:25:cb:e2:fa: d8:39:35:17:0d:14:45:27:dd:15:52:96:fb:7f:fa:50:78:9a: 2e:c4:02:82:e3:bc:b1:e3:d2:02:7a:da:96:94:ee:d2:4c:8f: 2f:ec:7c:ee:2f:f2:e6:44:79:87:dc:ae:3e:4e:3a:7b:ba:30: f2:1c:5c:8a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs86/SCQw7fBwbCEOKVcPtBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYzOGQ5YTUwMDRjNTkyZDA5M2NjODliMGQ5MDc1MmUyNzlk NTE4NTQwHhcNMjUxMjIwMTgwMDU0WhcNMjUxMjIxMTgwMDU0WjAzMTEwLwYDVQQD EygwNWFkZjkxMjY1OWRlY2M4MDZkMGQzZGZhYmZjZTAwMGM4MTg1MTY4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjVSuCMR/h7mugFwvNUcYK+h7v00W 61sL+QpXpnWv+DS24s+t0vTmab7MXA1bxdRA01/L6Rckf9WajxaP1OamT1CyrwQO k48/x6OHnXyWb9/ZoDACu6YoCL4qxa5PsyrSDLeWaBZKi/ZEi/tmsLN7e43vVIWP LooC1ngQrf88DT729583xJJ9K0kk1FZ++uXmImyPKvuOvJUtUCFYbsJjxTnP0eVK eu8bRC74pKHqwZOkX3xO0VqOtkl0hgpP3CNImM3IjPp6GZq3k2NaS4oHX83AF5UO y0L4vz/yP3TDK60dmWUAAQy1xBkx+gU0bFY4ZgmB70l3NAq2Ms9wrPZmmQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAWt+RJlnezIBtDT36v84ADIGFFoMB8GA1UdIwQY MBaAFGONmlAExZLQk8yJsNkHUuJ51RhUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWTQyYVVBVEZrdENUekltdzJRZFM0bm5WR0ZRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYS8wY2Y2ZDctZDhlZi00NGE4LWFhMDct Nzc2OGQ0ZmJkY2QzLzEvWTQyYVVBVEZrdENUekltdzJRZFM0bm5WR0ZRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYS8wY2Y2ZDctZDhlZi00NGE4LWFhMDctNzc2OGQ0ZmJkY2Qz LzEvWTQyYVVBVEZrdENUekltdzJRZFM0bm5WR0ZRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnd8Pm36t FlzOZh64dHUfRk3fI/hbwaSwzNuzu8EwBAoUccI38a6tzzuVaXmjR6kqAXOS5WUR /c0moo7zpMJQ2NJ37SHcRTobAjlnf5WZeUyfmoPFaDTLIphh5w14VxOieyXulHVJ LwpIGPYNBcfDj571/wDQAjAd3Bo0arbBtpV8VymEF7Rzet7BrS+z1UUX27TtKsuZ PKHuyYtJRZ9Keq5Tze87bwnl4XyAAXiG8I8azbFH4D77jKREz0p2QOqmDEwly+L6 2Dk1Fw0URSfdFVKW+3/6UHiaLsQCguO8sePSAnralpTu0kyPL+x87i/y5kR5h9yu Pk46e7ow8hxcig== -----END CERTIFICATE-----Generated at Sun Dec 21 02:02:35 2025 by rpki-client