This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/4bb2aa-44cd-43b6-a76f-68c59c19b935/1/YgsENUY3RvXyN9k2h77C6s8iRVE.mft File: YgsENUY3RvXyN9k2h77C6s8iRVE.mft (raw, json) Hash identifier: geCZZST6GbX+8fTsZ2hr2r3gTip57Exr1wdD15Tr8jk= Subject key identifier: 0E:24:5E:DF:3B:CB:43:D9:8A:54:F4:D5:82:74:A0:55:21:F3:AF:BB Authority key identifier: 62:0B:04:35:46:37:46:F5:F2:37:D9:36:87:BE:C2:EA:CF:22:45:51 Certificate issuer: /CN=620b0435463746f5f237d93687bec2eacf224551 Certificate serial: 019B52985496D7E0DBFE7DEFCD19C4B98845 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YgsENUY3RvXyN9k2h77C6s8iRVE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/4bb2aa-44cd-43b6-a76f-68c59c19b935/1/YgsENUY3RvXyN9k2h77C6s8iRVE.mft Manifest number: 0975 Signing time: Wed 24 Dec 2025 23:01:13 +0000 Manifest this update: Wed 24 Dec 2025 23:01:13 +0000 Manifest next update: Thu 25 Dec 2025 23:01:13 +0000 Files and hashes: 1: 1-dSr_bwrsUwvfc9qQEvsXILMv3w.roa (hash: SF5ovM+mleomLfSZp/NHDAE5s82AVbxDbWTJFXrQrE0=) 2: YgsENUY3RvXyN9k2h77C6s8iRVE.crl (hash: 9BcqvY80PotDrP4dGHPBk9PBgEMCyq9a93zUeGdGLQA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/4bb2aa-44cd-43b6-a76f-68c59c19b935/1/YgsENUY3RvXyN9k2h77C6s8iRVE.crl rsync://rpki.ripe.net/repository/DEFAULT/26/4bb2aa-44cd-43b6-a76f-68c59c19b935/1/YgsENUY3RvXyN9k2h77C6s8iRVE.mft rsync://rpki.ripe.net/repository/DEFAULT/YgsENUY3RvXyN9k2h77C6s8iRVE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 25 Dec 2025 18:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:52:98:54:96:d7:e0:db:fe:7d:ef:cd:19:c4:b9:88:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=620b0435463746f5f237d93687bec2eacf224551 Validity Not Before: Dec 24 23:01:13 2025 GMT Not After : Dec 25 23:01:13 2025 GMT Subject: CN=0e245edf3bcb43d98a54f4d58274a05521f3afbb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:89:59:a6:35:61:d4:97:fc:e1:01:f3:14:ec: d8:f1:17:be:76:23:11:9e:e0:53:b6:f7:32:a2:1a: c0:5d:ec:c6:f9:22:d6:97:3c:27:ea:4f:98:1f:fb: dc:6b:11:f5:d4:da:15:69:6f:7e:d9:81:70:36:99: fb:88:72:60:9c:ce:4a:02:8a:43:4e:d0:a6:7b:3c: 48:85:c0:92:38:f5:dc:ec:f4:14:17:e5:58:91:68: df:84:4c:1c:bc:13:d0:75:51:1e:c6:9d:88:88:b3: a6:d6:a1:b6:34:5e:c1:1f:0d:27:59:5a:b8:fc:8b: cb:40:76:9c:33:03:d5:73:5b:be:0c:7d:18:e5:e2: ac:4e:ca:0e:58:11:4a:48:3f:8f:b2:f9:3b:fe:aa: 22:dd:86:78:00:76:4d:d3:c1:38:68:39:a9:59:97: 8b:32:57:40:43:b8:6d:f6:bd:89:16:4b:88:23:14: 68:2b:12:3a:e7:82:8e:57:d9:06:60:84:99:e6:cd: 2e:e1:43:ff:ba:07:18:94:75:41:c0:a4:07:da:ef: d3:b0:a8:47:e6:dc:d5:d8:79:0c:53:6e:57:42:cb: 0b:da:b1:0b:6b:c5:b2:e1:93:1e:f8:99:7b:9a:66: 7b:41:88:7e:44:85:96:05:05:dd:b7:08:49:8d:2d: 45:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:24:5E:DF:3B:CB:43:D9:8A:54:F4:D5:82:74:A0:55:21:F3:AF:BB X509v3 Authority Key Identifier: keyid:62:0B:04:35:46:37:46:F5:F2:37:D9:36:87:BE:C2:EA:CF:22:45:51 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YgsENUY3RvXyN9k2h77C6s8iRVE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/4bb2aa-44cd-43b6-a76f-68c59c19b935/1/YgsENUY3RvXyN9k2h77C6s8iRVE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/26/4bb2aa-44cd-43b6-a76f-68c59c19b935/1/YgsENUY3RvXyN9k2h77C6s8iRVE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1e:a6:1f:c8:96:a7:79:d1:1d:2b:40:e7:68:28:29:21:af:94: 51:97:1f:c6:44:c5:40:09:e5:59:c6:7f:7a:71:c3:b9:2a:51: a5:48:17:0f:df:6d:d9:9d:cb:42:80:1e:93:e3:7d:5a:4f:66: d6:02:04:98:e8:6a:4f:c8:a5:21:03:47:4a:a7:19:93:ee:7b: f5:d8:38:3b:fa:32:35:9f:38:21:ef:c2:34:1b:e1:26:60:eb: 21:e4:6c:24:cf:3c:b6:8b:a6:ff:86:15:72:70:87:b3:02:91: 99:22:c9:75:83:43:e7:d9:37:2f:83:26:33:c3:b7:ff:01:4f: 3a:20:22:9f:8e:2c:82:cc:6d:04:7d:82:3b:22:cc:e1:e6:a5: d3:d7:91:c6:aa:66:a2:91:1d:40:79:a9:84:35:e9:7c:29:3f: 9f:f4:86:05:37:c9:e1:69:4f:e0:93:8c:24:6e:46:bc:8f:58: 81:c7:8f:de:c2:b3:76:e9:42:b0:2a:42:16:24:33:f9:3a:f2: ac:79:a0:12:86:d7:f1:1f:16:8a:78:b5:33:19:ee:e1:e1:00: d9:00:4a:9e:09:51:12:a2:df:65:bb:8f:00:78:73:40:43:b5: fb:b6:a6:72:22:b7:ec:1e:dd:56:77:7d:6d:29:a7:db:f1:9e: 0d:ab:f6:c9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtSmFSW1+Db/n3vzRnEuYhFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYyMGIwNDM1NDYzNzQ2ZjVmMjM3ZDkzNjg3YmVjMmVhY2Yy MjQ1NTEwHhcNMjUxMjI0MjMwMTEzWhcNMjUxMjI1MjMwMTEzWjAzMTEwLwYDVQQD EygwZTI0NWVkZjNiY2I0M2Q5OGE1NGY0ZDU4Mjc0YTA1NTIxZjNhZmJiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+olZpjVh1Jf84QHzFOzY8Re+diMR nuBTtvcyohrAXezG+SLWlzwn6k+YH/vcaxH11NoVaW9+2YFwNpn7iHJgnM5KAopD TtCmezxIhcCSOPXc7PQUF+VYkWjfhEwcvBPQdVEexp2IiLOm1qG2NF7BHw0nWVq4 /IvLQHacMwPVc1u+DH0Y5eKsTsoOWBFKSD+Psvk7/qoi3YZ4AHZN08E4aDmpWZeL MldAQ7ht9r2JFkuIIxRoKxI654KOV9kGYISZ5s0u4UP/ugcYlHVBwKQH2u/TsKhH 5tzV2HkMU25XQssL2rELa8Wy4ZMe+Jl7mmZ7QYh+RIWWBQXdtwhJjS1FMwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFA4kXt87y0PZilT01YJ0oFUh86+7MB8GA1UdIwQY MBaAFGILBDVGN0b18jfZNoe+wurPIkVRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWWdzRU5VWTNSdlh5TjlrMmg3N0M2czhpUlZFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNi80YmIyYWEtNDRjZC00M2I2LWE3NmYt NjhjNTljMTliOTM1LzEvWWdzRU5VWTNSdlh5TjlrMmg3N0M2czhpUlZFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNi80YmIyYWEtNDRjZC00M2I2LWE3NmYtNjhjNTljMTliOTM1 LzEvWWdzRU5VWTNSdlh5TjlrMmg3N0M2czhpUlZFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHqYfyJan edEdK0DnaCgpIa+UUZcfxkTFQAnlWcZ/enHDuSpRpUgXD99t2Z3LQoAek+N9Wk9m 1gIEmOhqT8ilIQNHSqcZk+579dg4O/oyNZ84Ie/CNBvhJmDrIeRsJM88toum/4YV cnCHswKRmSLJdYND59k3L4MmM8O3/wFPOiAin44sgsxtBH2COyLM4eal09eRxqpm opEdQHmphDXpfCk/n/SGBTfJ4WlP4JOMJG5GvI9YgceP3sKzdulCsCpCFiQz+Try rHmgEobX8R8Wini1Mxnu4eEA2QBKnglREqLfZbuPAHhzQEO1+7amciK37B7dVnd9 bSmn2/GeDav2yQ== -----END CERTIFICATE-----Generated at Thu Dec 25 03:22:59 2025 by rpki-client