This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/4222b2-c79c-4d5e-99d7-cdb281a2b3a8/1/YDM81vG1nAtoLh2jiSN-2j6dqRg.mft File: YDM81vG1nAtoLh2jiSN-2j6dqRg.mft (raw, json) Hash identifier: 91XnkoKDT8I/Snxmcy3y0QBFoBYwjZRjgYJ9AzwBJwE= Subject key identifier: AB:EB:EC:C6:AD:B4:21:00:D1:66:7E:22:2D:42:FD:33:D6:75:04:D4 Authority key identifier: 60:33:3C:D6:F1:B5:9C:0B:68:2E:1D:A3:89:23:7E:DA:3E:9D:A9:18 Certificate issuer: /CN=60333cd6f1b59c0b682e1da389237eda3e9da918 Certificate serial: 019B2740F5879E6015D5EC9A7A51B73F8554 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YDM81vG1nAtoLh2jiSN-2j6dqRg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/4222b2-c79c-4d5e-99d7-cdb281a2b3a8/1/YDM81vG1nAtoLh2jiSN-2j6dqRg.mft Manifest number: 0E5F Signing time: Tue 16 Dec 2025 13:02:07 +0000 Manifest this update: Tue 16 Dec 2025 13:02:07 +0000 Manifest next update: Wed 17 Dec 2025 13:02:07 +0000 Files and hashes: 1: YDM81vG1nAtoLh2jiSN-2j6dqRg.crl (hash: 9RvUJ53g1GPqEaTJzoexuf5ksCrtfZh+8auqR8SGzco=) 2: YvGTICIQPtclpMrYwq9cvhdFKOI.roa (hash: VRRExLjeFp73/0IARjKER20GFoe2YDaIzWUGvE6p51I=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/4222b2-c79c-4d5e-99d7-cdb281a2b3a8/1/YDM81vG1nAtoLh2jiSN-2j6dqRg.crl rsync://rpki.ripe.net/repository/DEFAULT/2d/4222b2-c79c-4d5e-99d7-cdb281a2b3a8/1/YDM81vG1nAtoLh2jiSN-2j6dqRg.mft rsync://rpki.ripe.net/repository/DEFAULT/YDM81vG1nAtoLh2jiSN-2j6dqRg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 13:02:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:27:40:f5:87:9e:60:15:d5:ec:9a:7a:51:b7:3f:85:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=60333cd6f1b59c0b682e1da389237eda3e9da918 Validity Not Before: Dec 16 13:02:07 2025 GMT Not After : Dec 17 13:02:07 2025 GMT Subject: CN=abebecc6adb42100d1667e222d42fd33d67504d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:79:07:00:22:84:3a:08:c8:dc:39:24:cd:a7: 57:41:4a:97:79:89:42:e3:c0:f7:0e:74:bf:bc:71: 5b:6c:64:c1:dd:dd:b9:b3:fd:c5:91:fe:ea:85:5c: 7d:4b:20:54:af:e0:24:69:7d:bd:dc:0b:e6:6c:09: 14:b1:6d:32:15:7e:c2:48:b2:1b:52:b7:fb:6e:20: 9e:38:8f:53:31:d2:26:0a:c4:81:7f:ec:28:9f:09: 9c:90:65:21:cc:f6:4f:06:5a:49:44:a3:02:43:f4: 18:0a:70:df:69:b5:51:92:8d:8c:58:91:de:db:88: 05:bf:7d:35:6f:09:02:00:56:a1:b0:b3:d2:2f:86: 85:ef:e3:26:cc:19:56:d4:e4:c2:a8:e2:7c:cf:a6: 78:43:59:1d:80:e2:d7:c0:6d:38:a6:f5:09:d7:a0: e4:03:3a:75:4a:df:79:7c:e2:e8:b8:29:55:2a:cd: cb:86:88:51:e2:af:ad:39:c8:e0:34:aa:28:c6:ec: 31:3c:ae:e3:ae:d8:13:8e:ff:4c:80:53:fd:65:57: 00:46:a5:ff:3b:25:db:06:20:b9:68:8b:78:db:c5: 7e:30:10:c5:be:79:ed:cb:9d:2d:06:13:e3:07:53: a0:8d:87:37:fa:1a:84:49:ab:f6:91:37:0a:1c:89: 64:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:EB:EC:C6:AD:B4:21:00:D1:66:7E:22:2D:42:FD:33:D6:75:04:D4 X509v3 Authority Key Identifier: keyid:60:33:3C:D6:F1:B5:9C:0B:68:2E:1D:A3:89:23:7E:DA:3E:9D:A9:18 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YDM81vG1nAtoLh2jiSN-2j6dqRg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/4222b2-c79c-4d5e-99d7-cdb281a2b3a8/1/YDM81vG1nAtoLh2jiSN-2j6dqRg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/4222b2-c79c-4d5e-99d7-cdb281a2b3a8/1/YDM81vG1nAtoLh2jiSN-2j6dqRg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ab:c4:ed:90:5e:3c:74:e1:19:1a:a6:53:0c:c8:86:35:d5:a4: 46:c3:4c:fc:f7:87:4b:18:22:f3:2d:17:a2:07:4b:7f:bc:ce: 19:36:a0:0b:7c:6e:b2:c7:d5:23:61:59:50:64:2c:74:ca:40: d7:e9:7b:f7:2e:1f:73:e4:81:aa:e9:1a:58:01:f8:47:93:7f: 68:f5:a7:73:10:58:4d:c6:47:c4:d3:ba:d4:22:6e:1a:0c:0a: e6:8a:bd:a5:ac:d4:56:5f:39:1d:1a:ab:64:96:e9:3c:51:3a: 7e:5a:08:ce:f5:29:3a:e6:22:5a:25:14:23:55:02:7c:1d:e5: 6a:45:9c:2b:86:ca:94:d0:df:d0:43:a7:89:24:ce:4d:19:bb: e8:b6:ec:3f:71:44:0e:fb:34:73:e0:7b:26:f3:ac:94:3c:01: 4b:27:56:65:39:a2:ab:70:9a:62:d9:2a:93:e0:8f:25:ea:69: 4e:cb:14:57:d5:c1:34:a7:ab:7b:aa:41:39:f2:ac:c5:fe:6e: 9d:ec:3f:0e:f8:38:16:ae:eb:bd:c4:df:d8:70:84:00:f2:40: 64:64:d4:91:dd:a9:49:59:e2:f2:f5:47:3f:19:8e:e7:6f:6c: 39:b0:ce:ea:3d:3f:8b:d0:bf:ea:12:ab:5c:4b:66:1c:fb:6e: 8f:f5:0d:00 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsnQPWHnmAV1eyaelG3P4VUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwMzMzY2Q2ZjFiNTljMGI2ODJlMWRhMzg5MjM3ZWRhM2U5 ZGE5MTgwHhcNMjUxMjE2MTMwMjA3WhcNMjUxMjE3MTMwMjA3WjAzMTEwLwYDVQQD EyhhYmViZWNjNmFkYjQyMTAwZDE2NjdlMjIyZDQyZmQzM2Q2NzUwNGQ0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxnkHACKEOgjI3DkkzadXQUqXeYlC 48D3DnS/vHFbbGTB3d25s/3Fkf7qhVx9SyBUr+AkaX293AvmbAkUsW0yFX7CSLIb Urf7biCeOI9TMdImCsSBf+wonwmckGUhzPZPBlpJRKMCQ/QYCnDfabVRko2MWJHe 24gFv301bwkCAFahsLPSL4aF7+MmzBlW1OTCqOJ8z6Z4Q1kdgOLXwG04pvUJ16Dk Azp1St95fOLouClVKs3LhohR4q+tOcjgNKooxuwxPK7jrtgTjv9MgFP9ZVcARqX/ OyXbBiC5aIt428V+MBDFvnnty50tBhPjB1OgjYc3+hqESav2kTcKHIlkZQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKvr7MattCEA0WZ+Ii1C/TPWdQTUMB8GA1UdIwQY MBaAFGAzPNbxtZwLaC4do4kjfto+nakYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWURNODF2RzFuQXRvTGgyamlTTi0yajZkcVJnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZC80MjIyYjItYzc5Yy00ZDVlLTk5ZDct Y2RiMjgxYTJiM2E4LzEvWURNODF2RzFuQXRvTGgyamlTTi0yajZkcVJnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZC80MjIyYjItYzc5Yy00ZDVlLTk5ZDctY2RiMjgxYTJiM2E4 LzEvWURNODF2RzFuQXRvTGgyamlTTi0yajZkcVJnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAq8TtkF48 dOEZGqZTDMiGNdWkRsNM/PeHSxgi8y0XogdLf7zOGTagC3xussfVI2FZUGQsdMpA 1+l79y4fc+SBqukaWAH4R5N/aPWncxBYTcZHxNO61CJuGgwK5oq9pazUVl85HRqr ZJbpPFE6floIzvUpOuYiWiUUI1UCfB3lakWcK4bKlNDf0EOniSTOTRm76LbsP3FE Dvs0c+B7JvOslDwBSydWZTmiq3CaYtkqk+CPJeppTssUV9XBNKere6pBOfKsxf5u new/Dvg4Fq7rvcTf2HCEAPJAZGTUkd2pSVni8vVHPxmO529sObDO6j0/i9C/6hKr XEtmHPtuj/UNAA== -----END CERTIFICATE-----Generated at Tue Dec 16 23:17:51 2025 by rpki-client