This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/4bb2aa-44cd-43b6-a76f-68c59c19b935/1/YgsENUY3RvXyN9k2h77C6s8iRVE.mft File: YgsENUY3RvXyN9k2h77C6s8iRVE.mft (raw, json) Hash identifier: I/m/cTgL4gbVj7TLXptr8OE0t31+hE0aypnnepNO6WU= Subject key identifier: E2:BB:EC:F2:D6:76:78:44:EA:6F:7C:2C:EF:F6:26:00:68:B8:84:DC Authority key identifier: 62:0B:04:35:46:37:46:F5:F2:37:D9:36:87:BE:C2:EA:CF:22:45:51 Certificate issuer: /CN=620b0435463746f5f237d93687bec2eacf224551 Certificate serial: 019B4EBB63C4337A31EFB6E1F2AFED2EB927 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YgsENUY3RvXyN9k2h77C6s8iRVE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/4bb2aa-44cd-43b6-a76f-68c59c19b935/1/YgsENUY3RvXyN9k2h77C6s8iRVE.mft Manifest number: 0973 Signing time: Wed 24 Dec 2025 05:01:02 +0000 Manifest this update: Wed 24 Dec 2025 05:01:02 +0000 Manifest next update: Thu 25 Dec 2025 05:01:02 +0000 Files and hashes: 1: 1-dSr_bwrsUwvfc9qQEvsXILMv3w.roa (hash: SF5ovM+mleomLfSZp/NHDAE5s82AVbxDbWTJFXrQrE0=) 2: YgsENUY3RvXyN9k2h77C6s8iRVE.crl (hash: NeyPkZrg335kZij8g2uL+rAjchtmPHcEfLu/3WnLwT4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/4bb2aa-44cd-43b6-a76f-68c59c19b935/1/YgsENUY3RvXyN9k2h77C6s8iRVE.crl rsync://rpki.ripe.net/repository/DEFAULT/26/4bb2aa-44cd-43b6-a76f-68c59c19b935/1/YgsENUY3RvXyN9k2h77C6s8iRVE.mft rsync://rpki.ripe.net/repository/DEFAULT/YgsENUY3RvXyN9k2h77C6s8iRVE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 25 Dec 2025 05:01:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:4e:bb:63:c4:33:7a:31:ef:b6:e1:f2:af:ed:2e:b9:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=620b0435463746f5f237d93687bec2eacf224551 Validity Not Before: Dec 24 05:01:02 2025 GMT Not After : Dec 25 05:01:02 2025 GMT Subject: CN=e2bbecf2d6767844ea6f7c2ceff6260068b884dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:0c:8d:98:a9:f9:06:15:3c:89:95:47:04:7e: 6e:67:74:c8:b3:99:83:0a:bf:d4:fb:dd:bc:33:de: 87:45:d2:96:1f:fe:fe:e0:68:43:d2:8f:aa:d8:20: 41:57:22:03:fa:e1:5e:3e:30:2b:22:08:a7:88:03: 28:64:2a:12:0d:92:91:2f:1f:d0:27:9b:e7:90:b0: 09:0c:52:b8:03:59:5b:be:cb:a8:db:0d:26:ed:fd: f0:46:fb:68:43:67:d5:75:38:d8:55:8f:85:aa:ae: d7:3d:6b:13:d2:24:96:94:0a:34:b5:94:db:19:2e: 30:95:b4:b6:13:ac:fd:ab:b6:93:c7:0f:cb:11:35: 0d:19:8a:39:2b:31:01:63:4a:3c:79:6c:be:b7:da: f1:65:46:11:2b:d8:57:5e:81:c0:ca:d2:9b:2e:cc: 6f:af:59:f9:c5:18:3a:24:a8:63:c2:db:07:34:00: 9e:80:18:b4:00:56:c7:61:37:bc:c1:fc:20:8d:07: ca:85:d7:28:cb:2d:69:d4:5f:66:50:cc:33:5e:c8: d0:c1:ea:22:fa:c5:ee:c8:8e:11:77:ab:5b:2e:d1: 7a:bc:8e:c7:6b:c0:85:b4:7a:11:47:06:d9:c0:43: 32:49:57:6a:bb:07:e4:c3:7a:11:cf:00:a6:3a:da: 18:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:BB:EC:F2:D6:76:78:44:EA:6F:7C:2C:EF:F6:26:00:68:B8:84:DC X509v3 Authority Key Identifier: keyid:62:0B:04:35:46:37:46:F5:F2:37:D9:36:87:BE:C2:EA:CF:22:45:51 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YgsENUY3RvXyN9k2h77C6s8iRVE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/4bb2aa-44cd-43b6-a76f-68c59c19b935/1/YgsENUY3RvXyN9k2h77C6s8iRVE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/26/4bb2aa-44cd-43b6-a76f-68c59c19b935/1/YgsENUY3RvXyN9k2h77C6s8iRVE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4e:2d:3d:b6:b3:16:a7:75:9b:dd:90:cc:62:57:24:98:a8:15: a3:13:ef:e4:48:ab:f0:55:ac:68:b3:fc:a5:06:b0:f2:2e:fc: 69:11:9b:97:e7:57:bf:bd:b6:03:2d:d1:e3:7c:ff:00:08:4a: f8:84:31:90:51:7f:15:20:0a:70:3e:ad:bb:60:6d:b1:26:c3: 7b:51:2f:69:e4:87:75:08:a1:6a:8b:1d:38:ea:50:a6:ca:16: f9:f9:4e:c9:07:2c:da:99:29:39:15:65:02:e3:14:2d:60:17: f8:4a:95:8c:a7:96:1f:9b:6e:66:4f:c0:31:1f:a9:c9:63:b6: 4a:1b:0e:a0:9a:a7:be:e4:af:b9:73:23:b9:15:35:5a:6e:d5: 2d:30:47:de:e0:e9:fa:10:d1:0d:d3:85:12:9e:d0:28:f3:3d: cc:6f:00:a8:db:58:a4:31:0a:8f:0a:ec:ef:4f:9f:db:ea:74: 57:86:e8:a6:df:90:08:a0:36:7a:cd:90:50:d9:8d:2c:c5:15: b8:8d:ba:47:0e:60:fa:f1:e0:83:d8:e3:68:a3:a1:8c:e1:cd: 54:49:52:c5:a8:56:fd:5d:05:b3:39:2c:d0:9a:38:43:a6:b0: cf:1f:92:99:7e:9f:45:53:3c:6c:30:90:89:1a:38:b7:4a:7a: 88:20:83:ea -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtOu2PEM3ox77bh8q/tLrknMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYyMGIwNDM1NDYzNzQ2ZjVmMjM3ZDkzNjg3YmVjMmVhY2Yy MjQ1NTEwHhcNMjUxMjI0MDUwMTAyWhcNMjUxMjI1MDUwMTAyWjAzMTEwLwYDVQQD EyhlMmJiZWNmMmQ2NzY3ODQ0ZWE2ZjdjMmNlZmY2MjYwMDY4Yjg4NGRjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAygyNmKn5BhU8iZVHBH5uZ3TIs5mD Cr/U+928M96HRdKWH/7+4GhD0o+q2CBBVyID+uFePjArIginiAMoZCoSDZKRLx/Q J5vnkLAJDFK4A1lbvsuo2w0m7f3wRvtoQ2fVdTjYVY+Fqq7XPWsT0iSWlAo0tZTb GS4wlbS2E6z9q7aTxw/LETUNGYo5KzEBY0o8eWy+t9rxZUYRK9hXXoHAytKbLsxv r1n5xRg6JKhjwtsHNACegBi0AFbHYTe8wfwgjQfKhdcoyy1p1F9mUMwzXsjQweoi +sXuyI4Rd6tbLtF6vI7Ha8CFtHoRRwbZwEMySVdquwfkw3oRzwCmOtoYqQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOK77PLWdnhE6m98LO/2JgBouITcMB8GA1UdIwQY MBaAFGILBDVGN0b18jfZNoe+wurPIkVRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWWdzRU5VWTNSdlh5TjlrMmg3N0M2czhpUlZFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNi80YmIyYWEtNDRjZC00M2I2LWE3NmYt NjhjNTljMTliOTM1LzEvWWdzRU5VWTNSdlh5TjlrMmg3N0M2czhpUlZFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNi80YmIyYWEtNDRjZC00M2I2LWE3NmYtNjhjNTljMTliOTM1 LzEvWWdzRU5VWTNSdlh5TjlrMmg3N0M2czhpUlZFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATi09trMW p3Wb3ZDMYlckmKgVoxPv5Eir8FWsaLP8pQaw8i78aRGbl+dXv722Ay3R43z/AAhK +IQxkFF/FSAKcD6tu2BtsSbDe1EvaeSHdQihaosdOOpQpsoW+flOyQcs2pkpORVl AuMULWAX+EqVjKeWH5tuZk/AMR+pyWO2ShsOoJqnvuSvuXMjuRU1Wm7VLTBH3uDp +hDRDdOFEp7QKPM9zG8AqNtYpDEKjwrs70+f2+p0V4bopt+QCKA2es2QUNmNLMUV uI26Rw5g+vHgg9jjaKOhjOHNVElSxahW/V0Fszks0Jo4Q6awzx+SmX6fRVM8bDCQ iRo4t0p6iCCD6g== -----END CERTIFICATE-----Generated at Wed Dec 24 13:55:58 2025 by rpki-client