This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/424947-1c6a-48e9-b289-f23c5a531823/1/ylIg5T5PgcoljM_qGHKAKA9fYho.mft File: ylIg5T5PgcoljM_qGHKAKA9fYho.mft (raw, json) Hash identifier: f5CdT80iMHviGe3JSJFJTvsCOQ7Z1zxyoZOZj1ZI1J8= Subject key identifier: CE:BB:5B:ED:03:04:35:3F:98:46:85:0D:80:E5:45:96:50:10:C6:B8 Authority key identifier: CA:52:20:E5:3E:4F:81:CA:25:8C:CF:EA:18:72:80:28:0F:5F:62:1A Certificate issuer: /CN=ca5220e53e4f81ca258ccfea187280280f5f621a Certificate serial: 019B52981F4122452D0976FA162F64C1A673 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ylIg5T5PgcoljM_qGHKAKA9fYho.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/424947-1c6a-48e9-b289-f23c5a531823/1/ylIg5T5PgcoljM_qGHKAKA9fYho.mft Manifest number: 1791 Signing time: Wed 24 Dec 2025 23:00:59 +0000 Manifest this update: Wed 24 Dec 2025 23:00:59 +0000 Manifest next update: Thu 25 Dec 2025 23:00:59 +0000 Files and hashes: 1: HnblzgjRhv7ohFCku2dgX5Jr7vw.roa (hash: o9K0gGCxUA0R4sGgN9lj9M6IzHoNtSXBjdq46DJlaa4=) 2: dem0uBwT7g7YZDZIQsS-aXVQdOI.roa (hash: XISttqO419C7SgkgSmOfFJd6GmXYZpUuMQWw/YZudzA=) 3: ylIg5T5PgcoljM_qGHKAKA9fYho.crl (hash: 5pGFeGcDsu6QgcI8RQ3rGVlyYZ0opRUoobqCU6AhmOE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/424947-1c6a-48e9-b289-f23c5a531823/1/ylIg5T5PgcoljM_qGHKAKA9fYho.crl rsync://rpki.ripe.net/repository/DEFAULT/47/424947-1c6a-48e9-b289-f23c5a531823/1/ylIg5T5PgcoljM_qGHKAKA9fYho.mft rsync://rpki.ripe.net/repository/DEFAULT/ylIg5T5PgcoljM_qGHKAKA9fYho.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 25 Dec 2025 18:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:52:98:1f:41:22:45:2d:09:76:fa:16:2f:64:c1:a6:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ca5220e53e4f81ca258ccfea187280280f5f621a Validity Not Before: Dec 24 23:00:59 2025 GMT Not After : Dec 25 23:00:59 2025 GMT Subject: CN=cebb5bed0304353f9846850d80e545965010c6b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:05:e7:aa:e4:97:9c:c1:51:47:00:96:ae:51: 6b:8e:51:bb:f6:de:e0:83:7c:9b:bd:89:6e:be:8f: 55:19:bf:58:b8:4c:32:82:7f:80:e3:63:34:67:55: b0:82:37:a3:13:d9:b1:61:77:c0:c7:58:a3:2c:b0: 26:76:62:dd:65:f7:cc:62:2d:1e:29:2d:2e:7c:46: 39:ed:66:78:6f:be:d7:b2:c7:35:c5:a2:66:b5:69: 9b:02:ba:b8:38:f8:e2:fc:59:35:d2:6a:bb:02:f8: 88:4a:41:c3:ed:f3:24:af:07:a8:03:28:d1:30:0b: 0d:d2:95:77:e4:83:a8:65:51:74:cd:2b:eb:03:c7: 4d:13:58:10:d7:0f:90:ed:e2:9c:7f:28:a9:6b:55: f9:18:7e:b9:b4:8d:fd:16:58:85:45:6c:b6:7e:d1: f0:b3:4c:9e:22:44:27:12:4b:f5:bb:10:f6:1b:17: 7e:a4:fb:f9:a8:2e:4f:e8:70:21:88:b6:f8:a1:e9: d9:a2:dc:df:f9:16:f2:5f:4a:be:fe:5a:d7:51:46: 92:0b:37:2a:8a:f0:a5:b2:08:0f:89:e3:9f:27:a9: d9:ad:cc:13:73:13:21:68:b2:55:f6:dc:79:fa:0c: a8:55:3e:ff:dc:32:7d:e9:5f:5e:33:12:f8:ee:bb: 2a:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:BB:5B:ED:03:04:35:3F:98:46:85:0D:80:E5:45:96:50:10:C6:B8 X509v3 Authority Key Identifier: keyid:CA:52:20:E5:3E:4F:81:CA:25:8C:CF:EA:18:72:80:28:0F:5F:62:1A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ylIg5T5PgcoljM_qGHKAKA9fYho.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/424947-1c6a-48e9-b289-f23c5a531823/1/ylIg5T5PgcoljM_qGHKAKA9fYho.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/47/424947-1c6a-48e9-b289-f23c5a531823/1/ylIg5T5PgcoljM_qGHKAKA9fYho.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 55:4a:0f:91:27:d1:62:d6:51:1c:81:71:b2:90:0c:f9:43:52: 5e:98:01:66:b3:74:3a:e3:4b:9a:4d:a0:31:b4:be:61:22:f1: bd:9c:f8:96:ef:9b:fe:e4:ad:d8:57:74:19:f0:fe:15:3e:a1: b4:64:bd:58:f4:aa:8b:47:38:e7:fc:57:ef:29:7b:e8:a5:41: 91:53:2d:98:bf:92:39:68:ce:16:e9:18:17:32:1c:a5:91:6f: 5d:52:74:7f:eb:f4:01:52:6f:cc:b2:cb:ff:43:80:7e:d3:be: f5:fe:d4:02:7e:8d:1e:e5:6d:99:c6:86:ca:36:be:d8:90:2c: 97:07:87:25:65:0e:8f:64:cb:26:e4:3b:ca:d7:b7:12:16:89: 65:8a:74:5c:40:59:9a:d9:2f:aa:76:df:44:de:6e:43:64:0d: e7:32:2f:c3:3c:35:c6:72:36:52:58:de:97:a1:f7:9a:40:36: bd:ab:e9:58:db:ef:ed:f3:fc:9e:75:96:72:e7:84:ef:9f:84: 8b:d9:ba:77:32:c1:25:2f:87:29:bf:f7:5d:f0:08:96:37:cf: a7:d5:94:c5:b9:f6:2c:91:1a:48:77:bc:7d:92:9a:42:03:92: 94:23:4f:5a:e9:ab:66:d6:cd:9c:55:a8:8e:34:e1:51:0e:0b: ce:02:e8:73 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtSmB9BIkUtCXb6Fi9kwaZzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNhNTIyMGU1M2U0ZjgxY2EyNThjY2ZlYTE4NzI4MDI4MGY1 ZjYyMWEwHhcNMjUxMjI0MjMwMDU5WhcNMjUxMjI1MjMwMDU5WjAzMTEwLwYDVQQD EyhjZWJiNWJlZDAzMDQzNTNmOTg0Njg1MGQ4MGU1NDU5NjUwMTBjNmI4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuQXnquSXnMFRRwCWrlFrjlG79t7g g3ybvYluvo9VGb9YuEwygn+A42M0Z1WwgjejE9mxYXfAx1ijLLAmdmLdZffMYi0e KS0ufEY57WZ4b77Xssc1xaJmtWmbArq4OPji/Fk10mq7AviISkHD7fMkrweoAyjR MAsN0pV35IOoZVF0zSvrA8dNE1gQ1w+Q7eKcfyipa1X5GH65tI39FliFRWy2ftHw s0yeIkQnEkv1uxD2Gxd+pPv5qC5P6HAhiLb4oenZotzf+RbyX0q+/lrXUUaSCzcq ivClsggPieOfJ6nZrcwTcxMhaLJV9tx5+gyoVT7/3DJ96V9eMxL47rsq8wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFM67W+0DBDU/mEaFDYDlRZZQEMa4MB8GA1UdIwQY MBaAFMpSIOU+T4HKJYzP6hhygCgPX2IaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveWxJZzVUNVBnY29sak1fcUdIS0FLQTlmWWhvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ny80MjQ5NDctMWM2YS00OGU5LWIyODkt ZjIzYzVhNTMxODIzLzEveWxJZzVUNVBnY29sak1fcUdIS0FLQTlmWWhvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Ny80MjQ5NDctMWM2YS00OGU5LWIyODktZjIzYzVhNTMxODIz LzEveWxJZzVUNVBnY29sak1fcUdIS0FLQTlmWWhvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVUoPkSfR YtZRHIFxspAM+UNSXpgBZrN0OuNLmk2gMbS+YSLxvZz4lu+b/uSt2Fd0GfD+FT6h tGS9WPSqi0c45/xX7yl76KVBkVMtmL+SOWjOFukYFzIcpZFvXVJ0f+v0AVJvzLLL /0OAftO+9f7UAn6NHuVtmcaGyja+2JAslweHJWUOj2TLJuQ7yte3EhaJZYp0XEBZ mtkvqnbfRN5uQ2QN5zIvwzw1xnI2Uljel6H3mkA2vavpWNvv7fP8nnWWcueE75+E i9m6dzLBJS+HKb/3XfAIljfPp9WUxbn2LJEaSHe8fZKaQgOSlCNPWumrZtbNnFWo jjThUQ4LzgLocw== -----END CERTIFICATE-----Generated at Thu Dec 25 02:51:31 2025 by rpki-client