This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/13a680-f698-4c97-9bb6-12701ab51acf/1/yp4g0QNLRO916V_ffriIFbb30vg.mft File: yp4g0QNLRO916V_ffriIFbb30vg.mft (raw, json) Hash identifier: DW/UKX5r7Qg4zxhtNuMAHqWXsRKyF1U7pbRVwrihOEI= Subject key identifier: 26:65:99:ED:B2:9E:3F:A0:BB:C9:F6:10:5F:06:F8:8A:33:99:C6:45 Authority key identifier: CA:9E:20:D1:03:4B:44:EF:75:E9:5F:DF:7E:B8:88:15:B6:F7:D2:F8 Certificate issuer: /CN=ca9e20d1034b44ef75e95fdf7eb88815b6f7d2f8 Certificate serial: 019B6FC6AC5BACFAB5DAF4035EC79B3DF93E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yp4g0QNLRO916V_ffriIFbb30vg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/13a680-f698-4c97-9bb6-12701ab51acf/1/yp4g0QNLRO916V_ffriIFbb30vg.mft Manifest number: 0FFE Signing time: Tue 30 Dec 2025 15:00:49 +0000 Manifest this update: Tue 30 Dec 2025 15:00:49 +0000 Manifest next update: Wed 31 Dec 2025 15:00:49 +0000 Files and hashes: 1: KJabg-goYfqIShBpOYNsGhfln78.roa (hash: 5RhSWnJ06JVLJawdnqYDlBh1ZbuwgFFPRLF+/W6LgAk=) 2: kwy8KgUICcwuEJop_j-CKqXu_cg.roa (hash: VpzhVsmBR8ZtX+oH6lHXeHMgxo/zL5mzYyLWURLNaRU=) 3: yp4g0QNLRO916V_ffriIFbb30vg.crl (hash: kcWG4Xcux5+4xjJB3BrbXNx4IqkpivsNsZty7GHgt30=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/13a680-f698-4c97-9bb6-12701ab51acf/1/yp4g0QNLRO916V_ffriIFbb30vg.crl rsync://rpki.ripe.net/repository/DEFAULT/47/13a680-f698-4c97-9bb6-12701ab51acf/1/yp4g0QNLRO916V_ffriIFbb30vg.mft rsync://rpki.ripe.net/repository/DEFAULT/yp4g0QNLRO916V_ffriIFbb30vg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 31 Dec 2025 15:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:6f:c6:ac:5b:ac:fa:b5:da:f4:03:5e:c7:9b:3d:f9:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ca9e20d1034b44ef75e95fdf7eb88815b6f7d2f8 Validity Not Before: Dec 30 15:00:49 2025 GMT Not After : Dec 31 15:00:49 2025 GMT Subject: CN=266599edb29e3fa0bbc9f6105f06f88a3399c645 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:e1:a2:67:8a:f3:7a:fe:8a:7b:5c:5a:3b:da: cf:d6:9d:07:de:19:bc:e4:32:c6:c3:ff:50:c3:79: ef:9b:a4:2a:13:0d:b8:39:63:c2:5e:5a:1b:40:7b: 87:ff:34:3c:4f:15:c5:0e:3f:3b:ed:26:96:cb:62: c1:9e:89:04:cd:82:de:59:f8:be:b1:91:f7:8e:09: 61:d5:0c:1e:40:ec:33:0f:bf:8a:79:69:44:9a:7b: a1:49:ae:42:7a:99:14:4c:b8:2d:3c:ba:47:69:e9: 03:67:47:46:60:d8:96:c6:1c:f3:8b:42:35:22:8b: 8f:aa:f3:c1:4a:5c:ba:1e:bf:dc:36:34:a3:09:a9: fb:bf:29:6f:28:c5:62:6d:28:04:1f:ef:42:68:dd: 38:90:15:7e:0b:18:ce:b4:81:74:02:5d:93:21:a0: 53:df:3b:4e:b4:f7:b7:99:3c:23:33:15:84:9a:0b: 90:9f:7c:74:4c:0d:a9:11:24:16:bb:04:30:2f:90: 30:76:81:1e:ca:47:98:c8:0f:08:9c:15:ee:15:a4: f6:91:a9:42:b3:06:72:e7:f5:d5:bd:b4:48:e9:77: 02:be:c0:26:c1:a5:ea:a4:12:15:37:f7:9a:0d:46: 94:31:e7:d7:65:20:d5:e7:0b:7c:b8:06:4c:34:1c: 80:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:65:99:ED:B2:9E:3F:A0:BB:C9:F6:10:5F:06:F8:8A:33:99:C6:45 X509v3 Authority Key Identifier: keyid:CA:9E:20:D1:03:4B:44:EF:75:E9:5F:DF:7E:B8:88:15:B6:F7:D2:F8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yp4g0QNLRO916V_ffriIFbb30vg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/13a680-f698-4c97-9bb6-12701ab51acf/1/yp4g0QNLRO916V_ffriIFbb30vg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/47/13a680-f698-4c97-9bb6-12701ab51acf/1/yp4g0QNLRO916V_ffriIFbb30vg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2f:39:43:a6:92:11:e0:8e:8d:01:85:16:13:f7:32:62:d8:ef: 4f:99:1d:4e:9d:94:6f:1b:c2:df:40:a6:96:43:d4:1c:9e:fb: 4f:4f:f7:4a:e1:1e:38:17:aa:59:8d:00:47:8a:b0:16:91:22: 58:c1:d5:a5:23:9c:8f:fa:e0:53:3e:7e:95:6a:56:e5:4b:b5: ab:97:5d:f8:b3:76:c6:34:84:eb:c4:86:60:b4:bb:68:ad:4c: 80:14:35:1a:03:51:25:0b:97:ad:3e:95:e5:9c:82:de:8b:15: 68:1d:c4:8e:20:bc:87:14:44:af:0f:03:3a:f0:e7:f4:a7:67: 10:72:ab:f4:b7:d8:ad:6c:ae:97:38:32:21:72:b5:e8:ba:9b: de:68:9b:6c:ee:b4:19:76:e8:ca:78:88:19:0e:aa:72:82:c1: 55:6a:d1:f8:50:3d:7b:d7:e5:0d:d7:c7:85:10:25:07:ea:0a: 2a:69:aa:93:d1:20:67:c8:89:2e:04:ac:50:df:b1:da:e5:8c: 43:91:88:54:5c:d5:90:76:94:bb:66:5f:af:96:95:62:e4:d3: 5d:f3:f4:f9:67:c5:7d:a6:bf:44:39:7c:5b:02:3e:1d:b6:99: 96:32:66:49:e4:14:3b:5d:57:59:b4:ec:08:be:ec:7e:0f:94: 7c:c6:91:90 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtvxqxbrPq12vQDXsebPfk+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNhOWUyMGQxMDM0YjQ0ZWY3NWU5NWZkZjdlYjg4ODE1YjZm N2QyZjgwHhcNMjUxMjMwMTUwMDQ5WhcNMjUxMjMxMTUwMDQ5WjAzMTEwLwYDVQQD EygyNjY1OTllZGIyOWUzZmEwYmJjOWY2MTA1ZjA2Zjg4YTMzOTljNjQ1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApOGiZ4rzev6Ke1xaO9rP1p0H3hm8 5DLGw/9Qw3nvm6QqEw24OWPCXlobQHuH/zQ8TxXFDj877SaWy2LBnokEzYLeWfi+ sZH3jglh1QweQOwzD7+KeWlEmnuhSa5CepkUTLgtPLpHaekDZ0dGYNiWxhzzi0I1 IouPqvPBSly6Hr/cNjSjCan7vylvKMVibSgEH+9CaN04kBV+CxjOtIF0Al2TIaBT 3ztOtPe3mTwjMxWEmguQn3x0TA2pESQWuwQwL5AwdoEeykeYyA8InBXuFaT2kalC swZy5/XVvbRI6XcCvsAmwaXqpBIVN/eaDUaUMefXZSDV5wt8uAZMNByACwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCZlme2ynj+gu8n2EF8G+IozmcZFMB8GA1UdIwQY MBaAFMqeINEDS0Tvdelf3364iBW299L4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveXA0ZzBRTkxSTzkxNlZfZmZyaUlGYmIzMHZnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ny8xM2E2ODAtZjY5OC00Yzk3LTliYjYt MTI3MDFhYjUxYWNmLzEveXA0ZzBRTkxSTzkxNlZfZmZyaUlGYmIzMHZnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Ny8xM2E2ODAtZjY5OC00Yzk3LTliYjYtMTI3MDFhYjUxYWNm LzEveXA0ZzBRTkxSTzkxNlZfZmZyaUlGYmIzMHZnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALzlDppIR 4I6NAYUWE/cyYtjvT5kdTp2UbxvC30CmlkPUHJ77T0/3SuEeOBeqWY0AR4qwFpEi WMHVpSOcj/rgUz5+lWpW5Uu1q5dd+LN2xjSE68SGYLS7aK1MgBQ1GgNRJQuXrT6V 5ZyC3osVaB3EjiC8hxRErw8DOvDn9KdnEHKr9LfYrWyulzgyIXK16Lqb3mibbO60 GXboyniIGQ6qcoLBVWrR+FA9e9flDdfHhRAlB+oKKmmqk9EgZ8iJLgSsUN+x2uWM Q5GIVFzVkHaUu2Zfr5aVYuTTXfP0+WfFfaa/RDl8WwI+HbaZljJmSeQUO11XWbTs CL7sfg+UfMaRkA== -----END CERTIFICATE-----Generated at Tue Dec 30 20:22:24 2025 by rpki-client