This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/e3c390-e475-4024-ac7f-08740df87106/1/Yefv0ZrydUeUJswZJcW8Ls7ums4.mft File: Yefv0ZrydUeUJswZJcW8Ls7ums4.mft (raw, json) Hash identifier: raqpvF8ThMdl7HpeNI950s+cDNiwZtd4rNvFJupIf94= Subject key identifier: 94:55:F0:98:CB:23:B5:5D:B1:14:FF:5D:0A:4B:5D:A2:7A:AC:30:9A Authority key identifier: 61:E7:EF:D1:9A:F2:75:47:94:26:CC:19:25:C5:BC:2E:CE:EE:9A:CE Certificate issuer: /CN=61e7efd19af275479426cc1925c5bc2eceee9ace Certificate serial: 019B5CADEA34971DE5F4DA545C554FBA48F8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yefv0ZrydUeUJswZJcW8Ls7ums4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/e3c390-e475-4024-ac7f-08740df87106/1/Yefv0ZrydUeUJswZJcW8Ls7ums4.mft Manifest number: 16AA Signing time: Fri 26 Dec 2025 22:00:59 +0000 Manifest this update: Fri 26 Dec 2025 22:00:59 +0000 Manifest next update: Sat 27 Dec 2025 22:00:59 +0000 Files and hashes: 1: Yefv0ZrydUeUJswZJcW8Ls7ums4.crl (hash: HwgvYwejUKXVDRsL8murTTlhJDD92AJqL+Kq/0s8nxg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/e3c390-e475-4024-ac7f-08740df87106/1/Yefv0ZrydUeUJswZJcW8Ls7ums4.crl rsync://rpki.ripe.net/repository/DEFAULT/2b/e3c390-e475-4024-ac7f-08740df87106/1/Yefv0ZrydUeUJswZJcW8Ls7ums4.mft rsync://rpki.ripe.net/repository/DEFAULT/Yefv0ZrydUeUJswZJcW8Ls7ums4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 20:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5c:ad:ea:34:97:1d:e5:f4:da:54:5c:55:4f:ba:48:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=61e7efd19af275479426cc1925c5bc2eceee9ace Validity Not Before: Dec 26 22:00:59 2025 GMT Not After : Dec 27 22:00:59 2025 GMT Subject: CN=9455f098cb23b55db114ff5d0a4b5da27aac309a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:8c:3e:c8:e7:e8:11:b8:7a:5c:5c:c5:b1:08: 94:63:a2:5b:5c:ea:0d:65:9c:7e:cb:6b:da:50:88: df:a2:28:c8:09:4d:4f:d0:47:2e:28:ab:1d:08:10: d7:dd:14:9a:c9:d8:27:2c:aa:ef:da:2d:72:9f:45: 6e:13:7d:35:3e:14:01:3c:a1:54:56:db:77:d3:aa: 8f:ce:db:db:e1:50:09:84:e4:e8:ab:af:6d:f5:a4: 16:69:08:b5:a6:97:a8:0a:24:0b:15:ed:86:16:97: fe:3c:96:16:ca:5f:46:e2:8d:c0:fe:5a:6e:eb:df: 97:9c:2a:a1:51:1d:bc:bb:34:7f:fc:9e:36:3c:0d: 56:93:fc:50:f3:40:c1:8b:e0:32:d4:cc:0f:6c:5e: d8:5d:a9:97:2e:dc:8d:94:84:c4:92:38:a3:de:fd: 56:0b:41:e1:96:8b:2a:fc:62:44:59:49:c4:9b:e2: be:02:b2:33:87:18:fa:ff:f0:24:ec:da:81:8b:44: df:ca:9b:99:bd:7b:6b:22:11:bd:5e:6f:64:93:b4: 98:9f:25:d2:26:b9:65:09:90:15:79:08:66:f8:ed: c0:cf:10:94:73:35:fd:4a:1e:d4:ca:2b:4f:48:c6: 18:4e:c8:ef:13:16:fe:5b:b4:b2:bb:aa:65:cf:34: 05:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:55:F0:98:CB:23:B5:5D:B1:14:FF:5D:0A:4B:5D:A2:7A:AC:30:9A X509v3 Authority Key Identifier: keyid:61:E7:EF:D1:9A:F2:75:47:94:26:CC:19:25:C5:BC:2E:CE:EE:9A:CE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yefv0ZrydUeUJswZJcW8Ls7ums4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/e3c390-e475-4024-ac7f-08740df87106/1/Yefv0ZrydUeUJswZJcW8Ls7ums4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/e3c390-e475-4024-ac7f-08740df87106/1/Yefv0ZrydUeUJswZJcW8Ls7ums4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 40:ad:8f:b4:af:68:17:bf:ec:7f:9a:99:d1:56:0b:4d:0e:40: 07:72:b5:04:41:56:75:1e:51:c4:12:a4:4a:1d:20:b5:b4:05: 08:d5:19:5b:39:ea:72:c4:0c:15:2e:a5:ce:d5:6f:e5:79:c6: 0b:a1:bd:a5:4a:67:c2:50:cf:d5:55:61:80:27:f7:bf:65:d9: 5c:cc:a3:88:66:07:3f:24:1c:9a:a6:c9:58:79:eb:ca:4b:f6: 1d:26:19:7a:ce:6a:95:f1:35:c5:48:ef:3f:df:45:7a:20:fe: a0:20:b3:a2:40:89:69:e0:df:5d:ff:1c:b8:a0:fd:4e:8b:af: 4f:b2:81:a4:ab:e8:22:65:1a:0f:94:8d:8a:42:bc:be:1e:a2: d0:68:f4:86:85:05:a5:a4:9e:dd:19:92:26:d8:64:e6:10:2c: 35:b1:9d:f6:fa:03:ba:c1:8d:96:ce:35:db:99:e6:8d:57:bc: a9:6f:43:22:6b:92:7f:a0:ee:82:d0:36:2c:d7:eb:31:da:4e: 24:2a:2f:15:83:5a:26:09:3b:a2:7f:85:12:6a:1f:7e:7a:68: 42:06:88:96:50:93:64:2e:ce:48:c9:08:e7:3a:f9:40:9b:94: ab:06:6f:24:79:57:61:3f:77:b5:61:74:a3:aa:7a:9c:4e:c7: f7:50:e1:35 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtcreo0lx3l9NpUXFVPukj4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYxZTdlZmQxOWFmMjc1NDc5NDI2Y2MxOTI1YzViYzJlY2Vl ZTlhY2UwHhcNMjUxMjI2MjIwMDU5WhcNMjUxMjI3MjIwMDU5WjAzMTEwLwYDVQQD Eyg5NDU1ZjA5OGNiMjNiNTVkYjExNGZmNWQwYTRiNWRhMjdhYWMzMDlhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr4w+yOfoEbh6XFzFsQiUY6JbXOoN ZZx+y2vaUIjfoijICU1P0EcuKKsdCBDX3RSaydgnLKrv2i1yn0VuE301PhQBPKFU Vtt306qPztvb4VAJhOToq69t9aQWaQi1ppeoCiQLFe2GFpf+PJYWyl9G4o3A/lpu 69+XnCqhUR28uzR//J42PA1Wk/xQ80DBi+Ay1MwPbF7YXamXLtyNlITEkjij3v1W C0Hhlosq/GJEWUnEm+K+ArIzhxj6//Ak7NqBi0TfypuZvXtrIhG9Xm9kk7SYnyXS JrllCZAVeQhm+O3AzxCUczX9Sh7UyitPSMYYTsjvExb+W7Syu6plzzQFEwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJRV8JjLI7VdsRT/XQpLXaJ6rDCaMB8GA1UdIwQY MBaAFGHn79Ga8nVHlCbMGSXFvC7O7prOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWWVmdjBacnlkVWVVSnN3WkpjVzhMczd1bXM0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi9lM2MzOTAtZTQ3NS00MDI0LWFjN2Yt MDg3NDBkZjg3MTA2LzEvWWVmdjBacnlkVWVVSnN3WkpjVzhMczd1bXM0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYi9lM2MzOTAtZTQ3NS00MDI0LWFjN2YtMDg3NDBkZjg3MTA2 LzEvWWVmdjBacnlkVWVVSnN3WkpjVzhMczd1bXM0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQK2PtK9o F7/sf5qZ0VYLTQ5AB3K1BEFWdR5RxBKkSh0gtbQFCNUZWznqcsQMFS6lztVv5XnG C6G9pUpnwlDP1VVhgCf3v2XZXMyjiGYHPyQcmqbJWHnrykv2HSYZes5qlfE1xUjv P99FeiD+oCCzokCJaeDfXf8cuKD9TouvT7KBpKvoImUaD5SNikK8vh6i0Gj0hoUF paSe3RmSJthk5hAsNbGd9voDusGNls4125nmjVe8qW9DImuSf6DugtA2LNfrMdpO JCovFYNaJgk7on+FEmoffnpoQgaIllCTZC7OSMkI5zr5QJuUqwZvJHlXYT93tWF0 o6p6nE7H91DhNQ== -----END CERTIFICATE-----Generated at Sat Dec 27 05:39:31 2025 by rpki-client