This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/ec9159-dab4-4280-b44c-4cbce5babaa7/1/yAYJ8hhRvff3TtGPDwnfku23U1U.mft File: yAYJ8hhRvff3TtGPDwnfku23U1U.mft (raw, json) Hash identifier: 7EJiud0mO4cIYPXGSC3gGmLbko0zqP2Gsqok0wGaDio= Subject key identifier: 1E:1D:67:99:0B:1A:0D:A3:6D:FF:06:F9:42:9B:4F:34:20:C6:CB:C2 Authority key identifier: C8:06:09:F2:18:51:BD:F7:F7:4E:D1:8F:0F:09:DF:92:ED:B7:53:55 Certificate issuer: /CN=c80609f21851bdf7f74ed18f0f09df92edb75355 Certificate serial: 019B3EDA98E025C55ED40A425C6E9595DE55 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yAYJ8hhRvff3TtGPDwnfku23U1U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/ec9159-dab4-4280-b44c-4cbce5babaa7/1/yAYJ8hhRvff3TtGPDwnfku23U1U.mft Manifest number: 0F4E Signing time: Sun 21 Dec 2025 03:01:11 +0000 Manifest this update: Sun 21 Dec 2025 03:01:11 +0000 Manifest next update: Mon 22 Dec 2025 03:01:11 +0000 Files and hashes: 1: Wg-bSrUatmukyH3xDDiSbozsSDE.roa (hash: +C5Ooc81ApTJACiPZcILtsd+XtVBtietyO7rZMjbj2I=) 2: yAYJ8hhRvff3TtGPDwnfku23U1U.crl (hash: QzDtZ/4owtAnUgS7n5+9hUV/8CwE2JGKisB3XktMqU8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/ec9159-dab4-4280-b44c-4cbce5babaa7/1/yAYJ8hhRvff3TtGPDwnfku23U1U.crl rsync://rpki.ripe.net/repository/DEFAULT/25/ec9159-dab4-4280-b44c-4cbce5babaa7/1/yAYJ8hhRvff3TtGPDwnfku23U1U.mft rsync://rpki.ripe.net/repository/DEFAULT/yAYJ8hhRvff3TtGPDwnfku23U1U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3e:da:98:e0:25:c5:5e:d4:0a:42:5c:6e:95:95:de:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c80609f21851bdf7f74ed18f0f09df92edb75355 Validity Not Before: Dec 21 03:01:11 2025 GMT Not After : Dec 22 03:01:11 2025 GMT Subject: CN=1e1d67990b1a0da36dff06f9429b4f3420c6cbc2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:3c:bc:67:9a:44:2d:f7:4d:38:5f:4d:25:e7: 56:d5:a2:c7:cc:b5:e1:bb:74:3b:fc:98:d8:eb:62: ff:39:ad:22:13:0d:fd:15:2f:74:64:0b:15:fd:14: 72:b4:cd:76:b3:0d:5a:ee:aa:70:86:bf:3d:1f:e6: bf:ed:a0:8f:f3:5d:6b:8d:2e:e5:2c:6c:9e:a7:43: b0:be:b0:40:a6:15:4e:34:67:35:7f:df:97:48:10: 9c:18:e2:93:a9:09:7d:97:a2:6f:08:35:76:05:b9: 9e:59:eb:e1:8b:cc:e4:cc:ea:31:a5:b7:b6:35:98: f6:ca:b1:91:f9:35:f5:36:b9:02:3c:4b:8e:90:ee: 4d:1f:03:1e:ec:67:96:0f:c1:50:17:10:15:ea:e9: ca:e4:03:87:9f:07:8f:6c:d3:7b:2f:7a:32:76:bc: cb:65:6c:e6:9a:5c:bf:e4:eb:45:92:50:71:15:d8: 47:91:29:7b:aa:9c:ff:cb:09:6c:3f:a4:ee:5b:b5: 92:55:ea:a6:f6:e8:41:1d:a5:c1:0d:64:31:67:ee: a5:8f:ee:24:5f:61:73:a9:de:9f:73:59:59:7d:25: fd:89:1d:fd:ce:17:6b:9e:fd:92:55:51:4d:c5:50: 04:78:40:82:44:3f:de:22:77:f9:51:18:bd:7e:4d: 20:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:1D:67:99:0B:1A:0D:A3:6D:FF:06:F9:42:9B:4F:34:20:C6:CB:C2 X509v3 Authority Key Identifier: keyid:C8:06:09:F2:18:51:BD:F7:F7:4E:D1:8F:0F:09:DF:92:ED:B7:53:55 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yAYJ8hhRvff3TtGPDwnfku23U1U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/ec9159-dab4-4280-b44c-4cbce5babaa7/1/yAYJ8hhRvff3TtGPDwnfku23U1U.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/25/ec9159-dab4-4280-b44c-4cbce5babaa7/1/yAYJ8hhRvff3TtGPDwnfku23U1U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1f:37:ce:35:91:1c:52:19:67:7b:92:23:cb:8d:88:86:04:09: 06:7e:1d:32:18:ee:97:67:ec:69:87:3c:54:35:c0:a8:7d:21: 21:80:42:34:7b:62:bf:e8:7e:84:ea:ad:42:01:83:d3:25:5f: 83:0e:88:42:55:72:0b:4e:e0:e0:75:5a:6c:ff:69:10:fa:fb: 76:b3:af:25:3f:10:e4:9c:df:e0:da:ec:b9:43:80:9e:10:4f: 59:be:70:e5:d6:b5:6f:09:61:2a:57:12:af:82:a1:36:52:da: 77:be:c5:1b:12:ab:70:22:58:3c:36:81:9f:47:d7:b7:26:75: 8f:be:fb:0d:c6:48:28:fe:ee:df:b3:a1:ad:79:c3:80:2b:67: ef:ee:cc:92:d1:f0:86:98:f4:f7:af:f6:27:9b:a2:82:a1:e2: ad:60:4c:6c:96:db:26:72:23:22:df:5a:79:02:5d:05:84:22: 0c:4e:bc:69:e4:74:f7:37:7b:20:9f:2f:2d:c4:74:82:9d:47: ee:96:9c:2a:8a:79:e9:40:05:46:d0:8c:57:cc:ea:9f:18:ef: d8:88:9d:79:19:a5:77:aa:ae:92:c3:dd:75:c8:fc:37:f1:58: b5:ec:99:b5:19:f3:b1:19:61:12:54:5c:31:e7:d3:b8:64:2c: 51:8e:c8:ea -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs+2pjgJcVe1ApCXG6Vld5VMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM4MDYwOWYyMTg1MWJkZjdmNzRlZDE4ZjBmMDlkZjkyZWRi NzUzNTUwHhcNMjUxMjIxMDMwMTExWhcNMjUxMjIyMDMwMTExWjAzMTEwLwYDVQQD EygxZTFkNjc5OTBiMWEwZGEzNmRmZjA2Zjk0MjliNGYzNDIwYzZjYmMyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvjy8Z5pELfdNOF9NJedW1aLHzLXh u3Q7/JjY62L/Oa0iEw39FS90ZAsV/RRytM12sw1a7qpwhr89H+a/7aCP811rjS7l LGyep0OwvrBAphVONGc1f9+XSBCcGOKTqQl9l6JvCDV2BbmeWevhi8zkzOoxpbe2 NZj2yrGR+TX1NrkCPEuOkO5NHwMe7GeWD8FQFxAV6unK5AOHnwePbNN7L3oydrzL ZWzmmly/5OtFklBxFdhHkSl7qpz/ywlsP6TuW7WSVeqm9uhBHaXBDWQxZ+6lj+4k X2Fzqd6fc1lZfSX9iR39zhdrnv2SVVFNxVAEeECCRD/eInf5URi9fk0ghQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFB4dZ5kLGg2jbf8G+UKbTzQgxsvCMB8GA1UdIwQY MBaAFMgGCfIYUb33907Rjw8J35Ltt1NVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveUFZSjhoaFJ2ZmYzVHRHUER3bmZrdTIzVTFVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS9lYzkxNTktZGFiNC00MjgwLWI0NGMt NGNiY2U1YmFiYWE3LzEveUFZSjhoaFJ2ZmYzVHRHUER3bmZrdTIzVTFVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNS9lYzkxNTktZGFiNC00MjgwLWI0NGMtNGNiY2U1YmFiYWE3 LzEveUFZSjhoaFJ2ZmYzVHRHUER3bmZrdTIzVTFVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHzfONZEc Uhlne5Ijy42IhgQJBn4dMhjul2fsaYc8VDXAqH0hIYBCNHtiv+h+hOqtQgGD0yVf gw6IQlVyC07g4HVabP9pEPr7drOvJT8Q5Jzf4NrsuUOAnhBPWb5w5da1bwlhKlcS r4KhNlLad77FGxKrcCJYPDaBn0fXtyZ1j777DcZIKP7u37OhrXnDgCtn7+7MktHw hpj096/2J5uigqHirWBMbJbbJnIjIt9aeQJdBYQiDE68aeR09zd7IJ8vLcR0gp1H 7pacKop56UAFRtCMV8zqnxjv2IideRmld6quksPddcj8N/FYteyZtRnzsRlhElRc MefTuGQsUY7I6g== -----END CERTIFICATE-----Generated at Sun Dec 21 06:18:07 2025 by rpki-client