This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/424947-1c6a-48e9-b289-f23c5a531823/1/ylIg5T5PgcoljM_qGHKAKA9fYho.mft File: ylIg5T5PgcoljM_qGHKAKA9fYho.mft (raw, json) Hash identifier: sWbGcl7EzQtcDzlkt8qz5j/CpTjytVLZsIcluoBIYoM= Subject key identifier: 93:75:43:90:74:12:66:32:13:F0:61:60:A6:42:44:73:04:73:0C:40 Authority key identifier: CA:52:20:E5:3E:4F:81:CA:25:8C:CF:EA:18:72:80:28:0F:5F:62:1A Certificate issuer: /CN=ca5220e53e4f81ca258ccfea187280280f5f621a Certificate serial: 019B3D59EF9B05501C8687501E55D8445C8B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ylIg5T5PgcoljM_qGHKAKA9fYho.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/424947-1c6a-48e9-b289-f23c5a531823/1/ylIg5T5PgcoljM_qGHKAKA9fYho.mft Manifest number: 1786 Signing time: Sat 20 Dec 2025 20:01:02 +0000 Manifest this update: Sat 20 Dec 2025 20:01:02 +0000 Manifest next update: Sun 21 Dec 2025 20:01:02 +0000 Files and hashes: 1: HnblzgjRhv7ohFCku2dgX5Jr7vw.roa (hash: o9K0gGCxUA0R4sGgN9lj9M6IzHoNtSXBjdq46DJlaa4=) 2: dem0uBwT7g7YZDZIQsS-aXVQdOI.roa (hash: XISttqO419C7SgkgSmOfFJd6GmXYZpUuMQWw/YZudzA=) 3: ylIg5T5PgcoljM_qGHKAKA9fYho.crl (hash: 4jHLf6b+G5ZVE5t4rpUHbZATQp4BcgFrmVVLXjedgKc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/424947-1c6a-48e9-b289-f23c5a531823/1/ylIg5T5PgcoljM_qGHKAKA9fYho.crl rsync://rpki.ripe.net/repository/DEFAULT/47/424947-1c6a-48e9-b289-f23c5a531823/1/ylIg5T5PgcoljM_qGHKAKA9fYho.mft rsync://rpki.ripe.net/repository/DEFAULT/ylIg5T5PgcoljM_qGHKAKA9fYho.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 15:46:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3d:59:ef:9b:05:50:1c:86:87:50:1e:55:d8:44:5c:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ca5220e53e4f81ca258ccfea187280280f5f621a Validity Not Before: Dec 20 20:01:02 2025 GMT Not After : Dec 21 20:01:02 2025 GMT Subject: CN=937543907412663213f06160a642447304730c40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:8e:1a:f6:fa:48:47:0f:3c:ba:60:91:2f:f1: d2:e1:dd:d7:1b:e3:5c:e6:a2:9f:22:79:20:9c:5e: 96:65:d7:4c:67:0a:a4:17:35:c0:36:49:1c:20:cd: 61:19:fd:e7:68:e2:28:3f:7e:1b:83:5d:2c:3e:73: d1:5e:54:7f:5e:4f:5d:76:10:40:50:a8:1e:18:91: fb:55:00:5b:18:38:50:15:a2:49:4a:1f:1b:8c:fa: a6:32:f6:97:b3:b2:85:aa:43:ea:76:9b:ca:4e:95: 8e:d3:28:9b:a7:8f:fa:30:01:47:9d:af:ab:da:a5: 74:a4:69:c7:be:0c:49:63:24:80:70:8c:21:b9:4a: 4d:6a:9d:75:80:46:a7:44:08:78:b9:e0:a3:26:ca: d4:5b:4f:45:c0:b0:bc:08:63:1c:f4:fc:ff:08:e8: 53:ab:e0:d9:ca:75:4b:6d:24:d2:14:88:29:1c:94: 37:de:b5:87:5b:1e:aa:3f:6a:3d:5c:0c:d9:e4:0e: 14:da:69:08:a1:e1:c6:9f:d9:bb:a6:63:45:e5:28: 3e:91:e0:29:20:22:98:78:3d:6c:0d:05:48:75:78: 7c:a3:7b:b6:1d:2c:16:b6:7c:35:84:e5:78:75:16: d0:6a:e3:06:c2:71:60:07:e9:48:be:63:65:f3:0b: 4b:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:75:43:90:74:12:66:32:13:F0:61:60:A6:42:44:73:04:73:0C:40 X509v3 Authority Key Identifier: keyid:CA:52:20:E5:3E:4F:81:CA:25:8C:CF:EA:18:72:80:28:0F:5F:62:1A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ylIg5T5PgcoljM_qGHKAKA9fYho.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/424947-1c6a-48e9-b289-f23c5a531823/1/ylIg5T5PgcoljM_qGHKAKA9fYho.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/47/424947-1c6a-48e9-b289-f23c5a531823/1/ylIg5T5PgcoljM_qGHKAKA9fYho.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 40:ee:a8:f7:1e:fa:42:4f:d6:f2:04:a6:e3:ee:21:3e:06:1a: e9:ab:f0:17:02:4c:66:a0:97:47:44:9e:8e:84:a7:b9:73:e5: 22:b8:10:3d:85:8c:56:46:75:78:94:3d:ec:aa:6b:dd:62:d9: 6e:38:cc:fe:1a:ce:90:09:fc:68:ac:c2:cf:a0:0f:7f:e1:87: f7:e8:61:9e:d1:72:f9:81:10:55:29:d6:23:ad:f7:f7:2e:69: 1c:87:bd:de:e1:46:63:6f:2f:0c:03:f2:88:0a:75:f0:59:1a: 30:a8:63:c2:7d:5d:f1:c1:39:ff:e1:54:e1:ae:17:f2:40:69: a0:52:17:4c:cd:15:d2:b3:47:bd:92:86:a7:66:47:52:a2:a7: 59:44:fc:12:4f:8e:63:fa:85:1c:fe:17:08:a9:f6:de:db:60: 6f:f4:a1:79:be:89:95:6e:91:75:fe:15:79:81:a3:1a:31:56: 67:15:c2:10:b1:38:07:c0:89:dd:f8:a5:fd:3f:cf:53:6e:32: c3:da:ec:c5:51:4a:b8:e4:c8:43:eb:33:8f:1d:fc:9e:0f:1f: 2b:ec:57:c1:d2:8c:77:45:73:5e:82:47:99:ad:d2:03:6a:3e: 1f:4b:a5:b7:40:07:6d:72:ed:90:5f:3f:96:a1:cb:47:24:6d: 11:57:f3:64 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs9We+bBVAchodQHlXYRFyLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNhNTIyMGU1M2U0ZjgxY2EyNThjY2ZlYTE4NzI4MDI4MGY1 ZjYyMWEwHhcNMjUxMjIwMjAwMTAyWhcNMjUxMjIxMjAwMTAyWjAzMTEwLwYDVQQD Eyg5Mzc1NDM5MDc0MTI2NjMyMTNmMDYxNjBhNjQyNDQ3MzA0NzMwYzQwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1o4a9vpIRw88umCRL/HS4d3XG+Nc 5qKfInkgnF6WZddMZwqkFzXANkkcIM1hGf3naOIoP34bg10sPnPRXlR/Xk9ddhBA UKgeGJH7VQBbGDhQFaJJSh8bjPqmMvaXs7KFqkPqdpvKTpWO0yibp4/6MAFHna+r 2qV0pGnHvgxJYySAcIwhuUpNap11gEanRAh4ueCjJsrUW09FwLC8CGMc9Pz/COhT q+DZynVLbSTSFIgpHJQ33rWHWx6qP2o9XAzZ5A4U2mkIoeHGn9m7pmNF5Sg+keAp ICKYeD1sDQVIdXh8o3u2HSwWtnw1hOV4dRbQauMGwnFgB+lIvmNl8wtLUwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJN1Q5B0EmYyE/BhYKZCRHMEcwxAMB8GA1UdIwQY MBaAFMpSIOU+T4HKJYzP6hhygCgPX2IaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveWxJZzVUNVBnY29sak1fcUdIS0FLQTlmWWhvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ny80MjQ5NDctMWM2YS00OGU5LWIyODkt ZjIzYzVhNTMxODIzLzEveWxJZzVUNVBnY29sak1fcUdIS0FLQTlmWWhvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Ny80MjQ5NDctMWM2YS00OGU5LWIyODktZjIzYzVhNTMxODIz LzEveWxJZzVUNVBnY29sak1fcUdIS0FLQTlmWWhvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQO6o9x76 Qk/W8gSm4+4hPgYa6avwFwJMZqCXR0SejoSnuXPlIrgQPYWMVkZ1eJQ97Kpr3WLZ bjjM/hrOkAn8aKzCz6APf+GH9+hhntFy+YEQVSnWI6339y5pHIe93uFGY28vDAPy iAp18FkaMKhjwn1d8cE5/+FU4a4X8kBpoFIXTM0V0rNHvZKGp2ZHUqKnWUT8Ek+O Y/qFHP4XCKn23ttgb/Sheb6JlW6Rdf4VeYGjGjFWZxXCELE4B8CJ3fil/T/PU24y w9rsxVFKuOTIQ+szjx38ng8fK+xXwdKMd0VzXoJHma3SA2o+H0ult0AHbXLtkF8/ lqHLRyRtEVfzZA== -----END CERTIFICATE-----Generated at Sun Dec 21 01:11:15 2025 by rpki-client