This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/f2ec53-223b-4b3b-9d20-ceec5a739c72/1/0YpW1qFOZ2P8dzOopflDHbdWjLU.mft File: 0YpW1qFOZ2P8dzOopflDHbdWjLU.mft (raw, json) Hash identifier: M6GcXTdfv+bet7Rjcy3lJ5H4e7UMAHC0Fq7yd3D/gqs= Subject key identifier: 28:C5:CD:E3:14:39:58:49:26:51:83:C2:18:75:9D:D7:80:3E:24:A0 Authority key identifier: D1:8A:56:D6:A1:4E:67:63:FC:77:33:A8:A5:F9:43:1D:B7:56:8C:B5 Certificate issuer: /CN=d18a56d6a14e6763fc7733a8a5f9431db7568cb5 Certificate serial: 019B63C25EA3659DFBB525EE47451EACF0CB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0YpW1qFOZ2P8dzOopflDHbdWjLU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/f2ec53-223b-4b3b-9d20-ceec5a739c72/1/0YpW1qFOZ2P8dzOopflDHbdWjLU.mft Manifest number: 1731 Signing time: Sun 28 Dec 2025 07:00:41 +0000 Manifest this update: Sun 28 Dec 2025 07:00:41 +0000 Manifest next update: Mon 29 Dec 2025 07:00:41 +0000 Files and hashes: 1: 0YpW1qFOZ2P8dzOopflDHbdWjLU.crl (hash: SHP7WBqoFvKet+6oRIs4N6ZmyQF1E7lzdUHXzDfLz/o=) 2: AjvxEqBMDb1RszeU2KHX57XFBR4.roa (hash: 2SKQ42yk6CMNYGHFFloN2VEeMp0spaMezeJijIs3El8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/f2ec53-223b-4b3b-9d20-ceec5a739c72/1/0YpW1qFOZ2P8dzOopflDHbdWjLU.crl rsync://rpki.ripe.net/repository/DEFAULT/24/f2ec53-223b-4b3b-9d20-ceec5a739c72/1/0YpW1qFOZ2P8dzOopflDHbdWjLU.mft rsync://rpki.ripe.net/repository/DEFAULT/0YpW1qFOZ2P8dzOopflDHbdWjLU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 29 Dec 2025 03:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:63:c2:5e:a3:65:9d:fb:b5:25:ee:47:45:1e:ac:f0:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d18a56d6a14e6763fc7733a8a5f9431db7568cb5 Validity Not Before: Dec 28 07:00:41 2025 GMT Not After : Dec 29 07:00:41 2025 GMT Subject: CN=28c5cde314395849265183c218759dd7803e24a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:21:97:25:ff:6d:ee:c1:8c:61:96:50:c6:fc: 97:ca:a7:f4:34:c4:6a:f4:dd:b0:b3:07:3f:dd:a7: a6:db:7c:29:a5:b3:03:e1:26:7b:71:cf:e3:66:4c: 6c:5a:70:52:26:b9:ce:f9:7f:93:70:44:7e:fa:aa: 0d:23:26:00:e4:44:ca:5c:98:7e:41:c1:25:19:13: ed:85:2d:ce:f1:1d:71:7b:56:cd:ce:07:ac:36:fc: cd:4d:b1:d0:be:4e:30:38:37:81:7b:fd:87:2f:41: 11:40:64:5c:e6:c2:94:fa:54:01:26:ce:e1:97:94: 01:fc:fe:9b:17:ff:ff:87:96:03:bf:93:7d:39:60: e5:f6:76:84:34:11:ac:bf:1b:96:62:c6:19:cb:07: 43:de:80:df:5f:88:d6:6e:fe:8b:45:29:29:b8:04: 32:a3:4c:71:96:8b:57:6f:e6:cf:46:8e:46:f1:57: 4d:a7:4e:5a:91:a6:9b:66:cb:7c:4a:2f:eb:01:b5: 37:c4:a4:52:1f:66:51:d8:67:46:08:6b:c0:df:47: 34:d5:cf:bb:af:a3:dc:da:6a:6d:72:49:34:15:31: 75:33:5d:bc:5f:1b:e5:a7:d1:b5:f5:2d:09:2d:a6: 1f:d8:c0:9f:08:e3:d2:97:14:dc:22:ef:6c:8c:61: 21:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:C5:CD:E3:14:39:58:49:26:51:83:C2:18:75:9D:D7:80:3E:24:A0 X509v3 Authority Key Identifier: keyid:D1:8A:56:D6:A1:4E:67:63:FC:77:33:A8:A5:F9:43:1D:B7:56:8C:B5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0YpW1qFOZ2P8dzOopflDHbdWjLU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/f2ec53-223b-4b3b-9d20-ceec5a739c72/1/0YpW1qFOZ2P8dzOopflDHbdWjLU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/24/f2ec53-223b-4b3b-9d20-ceec5a739c72/1/0YpW1qFOZ2P8dzOopflDHbdWjLU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 05:42:f4:54:9e:d8:ca:ad:10:20:36:25:c0:47:84:de:0a:74: d1:da:9d:03:0d:2c:3b:1c:fe:69:14:09:5d:b4:62:a4:1c:90: 0d:5b:23:83:67:74:eb:14:0b:69:5f:e0:eb:48:82:67:58:fe: ad:99:42:5c:93:db:97:5a:f6:e8:fd:09:c7:dd:7a:f4:fb:43: 79:bb:e1:01:b2:2b:4a:6b:72:b0:30:28:9c:3f:78:bf:f9:0d: 2a:40:fd:56:d5:38:07:87:db:c9:0e:39:77:b8:d2:e5:de:f3: 4e:31:0a:39:d0:6a:cc:5f:2c:ed:3c:d9:6c:cc:13:da:b3:b0: a2:d4:31:f1:69:7e:ff:09:9d:3e:27:8d:e8:11:f5:fc:20:3b: 4a:33:d9:e6:e6:97:32:68:c3:66:93:70:92:3e:45:77:bb:5b: 58:f4:05:1d:a9:7f:a3:4f:d5:86:34:28:c2:aa:b7:a9:0a:8b: 3f:1b:6b:cf:40:3c:b5:2c:4d:3c:9a:fd:3f:37:c7:4a:0c:22: 0a:cf:6b:13:d7:06:39:be:05:2b:ec:d9:8c:d1:e1:9d:90:09: 9a:24:ca:d5:67:92:18:84:f7:f5:70:74:7d:f1:eb:7c:de:45: bc:73:e0:fb:33:7d:07:1e:8f:7f:07:10:35:e4:83:2d:c2:e0: 35:4c:d9:d9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtjwl6jZZ37tSXuR0UerPDLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQxOGE1NmQ2YTE0ZTY3NjNmYzc3MzNhOGE1Zjk0MzFkYjc1 NjhjYjUwHhcNMjUxMjI4MDcwMDQxWhcNMjUxMjI5MDcwMDQxWjAzMTEwLwYDVQQD EygyOGM1Y2RlMzE0Mzk1ODQ5MjY1MTgzYzIxODc1OWRkNzgwM2UyNGEwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwiGXJf9t7sGMYZZQxvyXyqf0NMRq 9N2wswc/3aem23wppbMD4SZ7cc/jZkxsWnBSJrnO+X+TcER++qoNIyYA5ETKXJh+ QcElGRPthS3O8R1xe1bNzgesNvzNTbHQvk4wODeBe/2HL0ERQGRc5sKU+lQBJs7h l5QB/P6bF///h5YDv5N9OWDl9naENBGsvxuWYsYZywdD3oDfX4jWbv6LRSkpuAQy o0xxlotXb+bPRo5G8VdNp05akaabZst8Si/rAbU3xKRSH2ZR2GdGCGvA30c01c+7 r6Pc2mptckk0FTF1M128Xxvlp9G19S0JLaYf2MCfCOPSlxTcIu9sjGEhtQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCjFzeMUOVhJJlGDwhh1ndeAPiSgMB8GA1UdIwQY MBaAFNGKVtahTmdj/HczqKX5Qx23Voy1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMFlwVzFxRk9aMlA4ZHpPb3BmbERIYmRXakxVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC9mMmVjNTMtMjIzYi00YjNiLTlkMjAt Y2VlYzVhNzM5YzcyLzEvMFlwVzFxRk9aMlA4ZHpPb3BmbERIYmRXakxVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNC9mMmVjNTMtMjIzYi00YjNiLTlkMjAtY2VlYzVhNzM5Yzcy LzEvMFlwVzFxRk9aMlA4ZHpPb3BmbERIYmRXakxVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABUL0VJ7Y yq0QIDYlwEeE3gp00dqdAw0sOxz+aRQJXbRipByQDVsjg2d06xQLaV/g60iCZ1j+ rZlCXJPbl1r26P0Jx9169PtDebvhAbIrSmtysDAonD94v/kNKkD9VtU4B4fbyQ45 d7jS5d7zTjEKOdBqzF8s7TzZbMwT2rOwotQx8Wl+/wmdPieN6BH1/CA7SjPZ5uaX MmjDZpNwkj5Fd7tbWPQFHal/o0/VhjQowqq3qQqLPxtrz0A8tSxNPJr9PzfHSgwi Cs9rE9cGOb4FK+zZjNHhnZAJmiTK1WeSGIT39XB0ffHrfN5FvHPg+zN9Bx6PfwcQ NeSDLcLgNUzZ2Q== -----END CERTIFICATE-----Generated at Sun Dec 28 11:23:27 2025 by rpki-client