This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/a20d6a-91ba-442f-8927-dc0043e9bb4d/1/YG03z4fxLyqy3vMTgMOGuCbBnWU.mft File: YG03z4fxLyqy3vMTgMOGuCbBnWU.mft (raw, json) Hash identifier: C2uGaRjFZDrk5UtkCJW4+wICfsXhXPUjC5pgvYhdb9w= Subject key identifier: 97:61:D1:96:E8:33:68:4B:66:9A:62:2F:84:30:82:FC:8C:EF:EF:48 Authority key identifier: 60:6D:37:CF:87:F1:2F:2A:B2:DE:F3:13:80:C3:86:B8:26:C1:9D:65 Certificate issuer: /CN=606d37cf87f12f2ab2def31380c386b826c19d65 Certificate serial: 019B6D3328126CE273117E1F2913007B9810 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YG03z4fxLyqy3vMTgMOGuCbBnWU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/a20d6a-91ba-442f-8927-dc0043e9bb4d/1/YG03z4fxLyqy3vMTgMOGuCbBnWU.mft Manifest number: 179D Signing time: Tue 30 Dec 2025 03:00:27 +0000 Manifest this update: Tue 30 Dec 2025 03:00:27 +0000 Manifest next update: Wed 31 Dec 2025 03:00:27 +0000 Files and hashes: 1: YG03z4fxLyqy3vMTgMOGuCbBnWU.crl (hash: dLxUvB8pZ0Xu3MKJki8MnqbJQ8jivMzZgd5ORACvS8A=) 2: nLsyVuehs4jeCS4JRJE2VO5aV5I.roa (hash: ypIKdtNC4Ic9Sqbxvpei64KUmu5yr6lYiqShQ2+fMBo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/a20d6a-91ba-442f-8927-dc0043e9bb4d/1/YG03z4fxLyqy3vMTgMOGuCbBnWU.crl rsync://rpki.ripe.net/repository/DEFAULT/2a/a20d6a-91ba-442f-8927-dc0043e9bb4d/1/YG03z4fxLyqy3vMTgMOGuCbBnWU.mft rsync://rpki.ripe.net/repository/DEFAULT/YG03z4fxLyqy3vMTgMOGuCbBnWU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 31 Dec 2025 00:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:6d:33:28:12:6c:e2:73:11:7e:1f:29:13:00:7b:98:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=606d37cf87f12f2ab2def31380c386b826c19d65 Validity Not Before: Dec 30 03:00:27 2025 GMT Not After : Dec 31 03:00:27 2025 GMT Subject: CN=9761d196e833684b669a622f843082fc8cefef48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:98:08:a0:e8:6e:a8:8d:05:25:25:be:8f:37: 82:fd:34:65:2d:38:14:cd:fe:ad:39:2b:a8:6a:7a: f7:7f:a9:3d:99:97:63:07:ad:07:25:c5:17:6e:7f: 78:fa:53:2b:d4:6a:bd:19:11:ad:3a:8e:e5:e1:16: 0b:dc:b0:22:97:34:87:39:94:31:de:47:c8:88:27: a2:fc:fd:1d:60:19:a0:b6:3c:fb:2c:f5:38:f7:be: 35:d7:06:3e:4c:64:fe:63:af:ac:55:42:95:33:25: cd:1d:7d:32:4c:08:59:cd:07:d8:bc:2f:77:a7:dc: 35:8a:8c:67:f1:42:20:d5:ff:f4:f4:8d:9d:cc:5d: e8:71:82:11:74:13:ea:6b:e0:a2:20:9a:18:f7:d3: 84:a8:21:41:02:46:98:68:fb:ad:c3:4c:93:24:36: db:0a:0e:61:9c:88:f8:91:d3:bc:33:b8:4c:09:16: 33:6b:a1:b3:cf:67:8f:b6:f0:3c:01:00:8a:d7:27: 49:8b:eb:15:24:24:45:c4:b9:ed:83:52:0d:62:04: b5:4d:f1:30:01:fd:d5:a2:ec:03:75:fd:9e:4e:e6: 48:cd:f0:07:cf:c1:0b:da:83:3d:20:73:01:5a:5e: 0f:14:10:b8:37:19:a9:fc:1d:e1:f2:2f:82:f8:dd: 6e:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:61:D1:96:E8:33:68:4B:66:9A:62:2F:84:30:82:FC:8C:EF:EF:48 X509v3 Authority Key Identifier: keyid:60:6D:37:CF:87:F1:2F:2A:B2:DE:F3:13:80:C3:86:B8:26:C1:9D:65 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YG03z4fxLyqy3vMTgMOGuCbBnWU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/a20d6a-91ba-442f-8927-dc0043e9bb4d/1/YG03z4fxLyqy3vMTgMOGuCbBnWU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/a20d6a-91ba-442f-8927-dc0043e9bb4d/1/YG03z4fxLyqy3vMTgMOGuCbBnWU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c4:fe:aa:46:45:3e:8f:20:6d:d7:51:ed:b0:08:40:d5:0b:bb: 01:62:86:aa:42:2a:54:af:ae:3e:e1:5b:82:b2:3d:89:b8:c0: 32:fe:51:8e:69:ee:30:d2:76:52:00:14:ed:76:0e:0c:19:2c: 91:8d:8f:ea:af:cf:c3:f7:4b:6f:11:13:81:c4:57:34:f4:a1: cd:e7:34:8a:68:b0:c4:ce:a8:49:01:2a:06:87:c3:4e:55:98: 9e:e3:34:c3:c6:23:50:89:bf:7c:94:1a:b4:97:27:f0:97:29: d0:18:9f:fb:1f:74:06:d2:0c:c3:87:fe:99:98:43:bc:aa:cd: 99:c2:76:a3:c4:73:01:ce:56:7c:14:67:cd:6e:29:1f:62:7b: 44:fd:5f:ce:10:8d:c2:a5:47:97:11:4a:14:bf:c6:5e:99:2e: 38:ec:c4:9f:73:90:5e:86:26:c5:6b:11:9a:9a:fc:90:57:5d: 42:29:2c:68:d9:5e:73:e3:eb:a0:6c:ae:e1:68:af:a4:9a:e1: 1c:4e:83:48:cf:3e:82:3c:f3:2e:b9:58:f0:8a:9f:13:0f:fd: 19:5e:59:09:aa:99:84:f9:f5:56:bc:38:f4:dd:fd:44:03:9d: 9c:37:0f:c5:39:26:4b:73:ca:09:be:9d:dd:98:ed:6c:24:3f: 7a:e5:43:30 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZttMygSbOJzEX4fKRMAe5gQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwNmQzN2NmODdmMTJmMmFiMmRlZjMxMzgwYzM4NmI4MjZj MTlkNjUwHhcNMjUxMjMwMDMwMDI3WhcNMjUxMjMxMDMwMDI3WjAzMTEwLwYDVQQD Eyg5NzYxZDE5NmU4MzM2ODRiNjY5YTYyMmY4NDMwODJmYzhjZWZlZjQ4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm5gIoOhuqI0FJSW+jzeC/TRlLTgU zf6tOSuoanr3f6k9mZdjB60HJcUXbn94+lMr1Gq9GRGtOo7l4RYL3LAilzSHOZQx 3kfIiCei/P0dYBmgtjz7LPU497411wY+TGT+Y6+sVUKVMyXNHX0yTAhZzQfYvC93 p9w1ioxn8UIg1f/09I2dzF3ocYIRdBPqa+CiIJoY99OEqCFBAkaYaPutw0yTJDbb Cg5hnIj4kdO8M7hMCRYza6Gzz2ePtvA8AQCK1ydJi+sVJCRFxLntg1INYgS1TfEw Af3VouwDdf2eTuZIzfAHz8EL2oM9IHMBWl4PFBC4Nxmp/B3h8i+C+N1u1QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJdh0ZboM2hLZppiL4QwgvyM7+9IMB8GA1UdIwQY MBaAFGBtN8+H8S8qst7zE4DDhrgmwZ1lMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWUcwM3o0ZnhMeXF5M3ZNVGdNT0d1Q2JCbldVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS9hMjBkNmEtOTFiYS00NDJmLTg5Mjct ZGMwMDQzZTliYjRkLzEvWUcwM3o0ZnhMeXF5M3ZNVGdNT0d1Q2JCbldVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYS9hMjBkNmEtOTFiYS00NDJmLTg5MjctZGMwMDQzZTliYjRk LzEvWUcwM3o0ZnhMeXF5M3ZNVGdNT0d1Q2JCbldVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAxP6qRkU+ jyBt11HtsAhA1Qu7AWKGqkIqVK+uPuFbgrI9ibjAMv5RjmnuMNJ2UgAU7XYODBks kY2P6q/Pw/dLbxETgcRXNPShzec0imiwxM6oSQEqBofDTlWYnuM0w8YjUIm/fJQa tJcn8Jcp0Bif+x90BtIMw4f+mZhDvKrNmcJ2o8RzAc5WfBRnzW4pH2J7RP1fzhCN wqVHlxFKFL/GXpkuOOzEn3OQXoYmxWsRmpr8kFddQiksaNlec+ProGyu4WivpJrh HE6DSM8+gjzzLrlY8IqfEw/9GV5ZCaqZhPn1Vrw49N39RAOdnDcPxTkmS3PKCb6d 3ZjtbCQ/euVDMA== -----END CERTIFICATE-----Generated at Tue Dec 30 06:22:05 2025 by rpki-client