This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.mft File: YbcgLJIwwolFDtWmKxc2mgZZvGs.mft (raw, json) Hash identifier: vkXC+CBH5HFM3VHHyj8yV95hMmXasjJfgdB+JhzcbMY= Subject key identifier: D9:4D:2E:47:B7:15:91:D2:87:21:4B:0C:D3:05:D3:21:C3:D3:EE:57 Authority key identifier: 61:B7:20:2C:92:30:C2:89:45:0E:D5:A6:2B:17:36:9A:06:59:BC:6B Certificate issuer: /CN=61b7202c9230c289450ed5a62b17369a0659bc6b Certificate serial: 019B3F4884D8D80C8BE566138F9415D75091 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbcgLJIwwolFDtWmKxc2mgZZvGs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.mft Manifest number: 0A2E Signing time: Sun 21 Dec 2025 05:01:15 +0000 Manifest this update: Sun 21 Dec 2025 05:01:15 +0000 Manifest next update: Mon 22 Dec 2025 05:01:15 +0000 Files and hashes: 1: WEJghusKIKSFibkCzqHCeJYzUzA.roa (hash: OzzJ4qVi0bEqkT53q5LfwPnutGydp+ntCXtobu4buTA=) 2: YbcgLJIwwolFDtWmKxc2mgZZvGs.crl (hash: VdIomCqBHHvI2fMyUVfGSga1cqzEdQuv61LCNGPqTV8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.crl rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.mft rsync://rpki.ripe.net/repository/DEFAULT/YbcgLJIwwolFDtWmKxc2mgZZvGs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3f:48:84:d8:d8:0c:8b:e5:66:13:8f:94:15:d7:50:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=61b7202c9230c289450ed5a62b17369a0659bc6b Validity Not Before: Dec 21 05:01:15 2025 GMT Not After : Dec 22 05:01:15 2025 GMT Subject: CN=d94d2e47b71591d287214b0cd305d321c3d3ee57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:04:7d:74:41:69:f4:20:b0:6c:1b:26:07:02: b6:65:8c:e3:68:54:bb:03:0b:81:41:0b:c5:45:48: 21:29:bc:c4:ac:11:f2:77:a0:c0:09:43:58:5a:7d: f9:65:ce:6f:86:7e:f3:4d:a0:2b:71:b7:1a:e4:ec: b0:dc:f1:6d:d6:1a:f1:c3:66:11:b6:bc:94:72:cd: 0e:ef:eb:84:13:d9:af:82:a5:28:ff:da:f2:b5:43: b7:e2:a4:b2:8c:d1:27:60:30:2c:93:d0:28:ce:25: a1:2e:5c:6f:f2:fc:07:44:79:e1:a6:fb:5f:d0:b4: e6:19:b8:6c:a3:a2:c3:7c:8a:96:23:96:e6:48:35: fb:74:65:21:b2:62:59:d7:0e:ff:dc:b4:1b:b8:29: a2:3f:de:65:4d:27:da:50:0c:91:d8:4d:3b:d8:b5: db:de:26:6f:58:c0:f6:d6:95:ef:59:e0:67:8a:29: 2d:b0:a6:88:5a:aa:d4:f8:af:99:bc:cd:63:be:00: d7:c8:39:0a:5a:1e:53:ae:18:78:48:3e:0c:60:2d: 39:e7:5b:96:78:8c:b8:44:46:02:40:07:70:a3:ed: 24:d5:f6:10:57:5e:a6:34:9c:28:20:fe:9f:a1:75: 8e:f9:18:1d:c7:3a:2a:00:09:68:a1:b2:6c:d8:bb: 0d:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:4D:2E:47:B7:15:91:D2:87:21:4B:0C:D3:05:D3:21:C3:D3:EE:57 X509v3 Authority Key Identifier: keyid:61:B7:20:2C:92:30:C2:89:45:0E:D5:A6:2B:17:36:9A:06:59:BC:6B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbcgLJIwwolFDtWmKxc2mgZZvGs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7f:4e:3a:76:75:b6:54:75:3d:ac:9b:3c:0b:6f:56:55:28:b7: 1a:c5:20:e3:91:3f:f7:07:40:32:44:64:42:ab:76:34:08:fe: 1e:a6:4c:49:c3:02:16:3d:55:0a:b8:5f:2c:ab:f8:68:53:ec: 43:55:ca:ae:d0:de:dc:21:1a:e2:41:6e:45:dd:08:6e:31:4e: ac:4f:82:c4:93:11:3a:8b:60:7a:9c:07:52:68:01:7b:59:b1: 41:03:4f:cb:f9:f0:03:82:cc:14:0c:06:7b:70:2d:2e:f6:ec: c0:96:22:71:04:64:76:b3:32:9e:47:cc:3b:01:d7:d8:c5:c6: 58:f5:54:6c:50:c3:54:7c:68:bc:61:60:6b:81:54:c8:38:47: 1a:9b:ea:97:fa:5a:cc:ce:2e:37:4a:1f:4c:5d:0a:3c:6f:25: 10:aa:18:7a:68:97:03:4f:d9:4f:56:45:9a:54:f1:78:ba:e1: 01:61:b1:6b:d6:64:89:e7:6e:bb:7a:8e:25:82:d3:ef:9f:11: 10:47:d4:04:69:62:f7:57:2e:fe:e9:19:f0:e6:b5:68:67:19: b9:e8:ac:8a:d4:07:7e:f6:e4:9c:59:2d:c1:a4:0e:4f:7b:05: f0:67:54:48:37:d9:35:6f:43:23:cc:db:85:7d:d7:ef:40:1d: 7e:93:1e:9b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs/SITY2AyL5WYTj5QV11CRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYxYjcyMDJjOTIzMGMyODk0NTBlZDVhNjJiMTczNjlhMDY1 OWJjNmIwHhcNMjUxMjIxMDUwMTE1WhcNMjUxMjIyMDUwMTE1WjAzMTEwLwYDVQQD EyhkOTRkMmU0N2I3MTU5MWQyODcyMTRiMGNkMzA1ZDMyMWMzZDNlZTU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmQR9dEFp9CCwbBsmBwK2ZYzjaFS7 AwuBQQvFRUghKbzErBHyd6DACUNYWn35Zc5vhn7zTaArcbca5Oyw3PFt1hrxw2YR tryUcs0O7+uEE9mvgqUo/9rytUO34qSyjNEnYDAsk9AoziWhLlxv8vwHRHnhpvtf 0LTmGbhso6LDfIqWI5bmSDX7dGUhsmJZ1w7/3LQbuCmiP95lTSfaUAyR2E072LXb 3iZvWMD21pXvWeBniiktsKaIWqrU+K+ZvM1jvgDXyDkKWh5Trhh4SD4MYC0551uW eIy4REYCQAdwo+0k1fYQV16mNJwoIP6foXWO+RgdxzoqAAloobJs2LsNEQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNlNLke3FZHShyFLDNMF0yHD0+5XMB8GA1UdIwQY MBaAFGG3ICySMMKJRQ7VpisXNpoGWbxrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWWJjZ0xKSXd3b2xGRHRXbUt4YzJtZ1padkdzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC82MWQ0MmQtM2I0OC00NjhlLTlhZDkt MjE1ZmMzOTBiZmU0LzEvWWJjZ0xKSXd3b2xGRHRXbUt4YzJtZ1padkdzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMC82MWQ0MmQtM2I0OC00NjhlLTlhZDktMjE1ZmMzOTBiZmU0 LzEvWWJjZ0xKSXd3b2xGRHRXbUt4YzJtZ1padkdzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAf046dnW2 VHU9rJs8C29WVSi3GsUg45E/9wdAMkRkQqt2NAj+HqZMScMCFj1VCrhfLKv4aFPs Q1XKrtDe3CEa4kFuRd0IbjFOrE+CxJMROotgepwHUmgBe1mxQQNPy/nwA4LMFAwG e3AtLvbswJYicQRkdrMynkfMOwHX2MXGWPVUbFDDVHxovGFga4FUyDhHGpvql/pa zM4uN0ofTF0KPG8lEKoYemiXA0/ZT1ZFmlTxeLrhAWGxa9Zkieduu3qOJYLT758R EEfUBGli91cu/ukZ8Oa1aGcZueisitQHfvbknFktwaQOT3sF8GdUSDfZNW9DI8zb hX3X70AdfpMemw== -----END CERTIFICATE-----Generated at Sun Dec 21 06:28:16 2025 by rpki-client