This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/25e660-4056-42cc-a8b0-d0517db26dad/1/yalITKcIq3cesduQuvyKEUwsPXk.mft File: yalITKcIq3cesduQuvyKEUwsPXk.mft (raw, json) Hash identifier: DjbNWj28dJxuvE4Q9QRI7sLooFw0X0f8jg3rnG+wViI= Subject key identifier: 37:47:09:98:FE:94:23:00:9D:3E:F1:99:E7:D3:AA:66:C4:E0:16:75 Authority key identifier: C9:A9:48:4C:A7:08:AB:77:1E:B1:DB:90:BA:FC:8A:11:4C:2C:3D:79 Certificate issuer: /CN=c9a9484ca708ab771eb1db90bafc8a114c2c3d79 Certificate serial: 019B390FBDDE86D5A61B68BEA92C2CAA8E71 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yalITKcIq3cesduQuvyKEUwsPXk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/25e660-4056-42cc-a8b0-d0517db26dad/1/yalITKcIq3cesduQuvyKEUwsPXk.mft Manifest number: 1787 Signing time: Sat 20 Dec 2025 00:01:31 +0000 Manifest this update: Sat 20 Dec 2025 00:01:31 +0000 Manifest next update: Sun 21 Dec 2025 00:01:31 +0000 Files and hashes: 1: __KLjvjgMO1LuKrx6zZXZJBcRtk.roa (hash: kZSjdOtgx956Q9WcOxsnl5QBMbkPJAPdg2gED1ZbQy4=) 2: xmOvbRNpbfTNvGRi0NGmoChwF8k.roa (hash: 7oU4y3FJaTZ6zlZMUwxbLqzJR9lqEVzJSwfHVW5xI4s=) 3: yalITKcIq3cesduQuvyKEUwsPXk.crl (hash: 2afzg7apXzzLbf04Q2llAGd/OmJNXvMQLkqMSjgUK+A=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/25e660-4056-42cc-a8b0-d0517db26dad/1/yalITKcIq3cesduQuvyKEUwsPXk.crl rsync://rpki.ripe.net/repository/DEFAULT/4b/25e660-4056-42cc-a8b0-d0517db26dad/1/yalITKcIq3cesduQuvyKEUwsPXk.mft rsync://rpki.ripe.net/repository/DEFAULT/yalITKcIq3cesduQuvyKEUwsPXk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 00:01:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:39:0f:bd:de:86:d5:a6:1b:68:be:a9:2c:2c:aa:8e:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c9a9484ca708ab771eb1db90bafc8a114c2c3d79 Validity Not Before: Dec 20 00:01:31 2025 GMT Not After : Dec 21 00:01:31 2025 GMT Subject: CN=37470998fe9423009d3ef199e7d3aa66c4e01675 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:0a:a0:f9:84:10:45:c8:44:09:77:c8:82:8f: 0f:df:d9:5b:9c:32:5e:20:ba:5a:f2:be:d4:c7:ce: 2b:f2:f0:e7:1c:cb:ab:b4:f8:af:22:b2:1a:53:da: 5a:e2:9f:d3:47:2a:27:ff:39:86:ef:6a:31:22:47: 5e:2e:02:16:49:33:6d:83:60:8e:3c:b6:be:b3:96: ca:cc:8a:f2:8b:9d:99:ce:ce:ca:d0:fb:7a:c0:35: 97:eb:6c:6e:bb:62:60:82:9b:ee:2a:19:df:ba:bb: e1:e6:3b:c8:80:f5:19:5d:e9:42:3a:6a:c4:26:67: cb:75:ce:99:ee:67:cc:31:c7:2c:e6:2d:9b:43:ca: 14:f4:4a:c9:50:2c:16:de:57:83:81:ca:f7:51:c3: 4c:b9:ec:2d:f1:51:8a:55:4b:60:3a:8f:51:06:86: 0a:21:49:04:ab:83:1d:aa:ac:e4:d3:ea:4a:44:53: cd:2c:f1:f6:ce:71:05:ce:df:9e:05:e2:4c:00:e4: 73:6f:f8:c2:7c:29:80:d8:30:ad:2a:c9:c9:a1:3e: ac:26:7f:5f:b1:e4:3c:11:b6:4a:3a:22:35:02:30: 3f:55:d6:3f:3c:69:b1:87:f8:60:b5:21:50:52:53: b0:7d:ce:b4:90:04:d2:30:2b:5b:07:24:d9:6b:1f: 23:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:47:09:98:FE:94:23:00:9D:3E:F1:99:E7:D3:AA:66:C4:E0:16:75 X509v3 Authority Key Identifier: keyid:C9:A9:48:4C:A7:08:AB:77:1E:B1:DB:90:BA:FC:8A:11:4C:2C:3D:79 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yalITKcIq3cesduQuvyKEUwsPXk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/25e660-4056-42cc-a8b0-d0517db26dad/1/yalITKcIq3cesduQuvyKEUwsPXk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/25e660-4056-42cc-a8b0-d0517db26dad/1/yalITKcIq3cesduQuvyKEUwsPXk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 70:ee:bf:a2:f0:f5:38:e0:c0:be:5c:63:ff:08:6c:6c:2b:21: 05:17:90:60:f2:2b:50:8d:8e:5b:fb:26:c4:01:e1:22:31:b2: 97:c1:a8:4e:6f:f5:a9:9e:56:26:7a:00:55:eb:47:8f:8a:ad: 97:42:6b:8b:05:eb:24:59:f0:bb:c6:1e:1f:f4:8b:82:20:25: 30:43:c5:8e:b4:cb:24:e7:9a:7c:4e:c3:ef:e8:3f:44:8d:a1: d9:94:ad:f6:e2:45:a1:a0:31:2c:36:a9:55:2d:33:b0:42:70: d4:8c:7f:55:23:71:29:90:9b:b9:aa:88:a0:d4:1c:8d:37:2b: 62:64:f5:bd:3c:06:8c:3a:dc:f4:4b:d6:e8:14:60:24:98:25: f7:eb:80:54:ea:35:87:e0:f2:8d:4a:6b:d4:60:c0:31:19:fa: d9:5e:e2:5f:e1:03:26:46:70:be:6a:83:0c:76:90:47:28:26: f5:8c:ca:92:09:e9:1c:46:8a:ed:69:ed:f4:82:f2:36:c3:e6: 7d:c6:2f:08:05:81:2c:01:10:23:9b:fb:fe:77:22:7c:33:11: 17:72:9a:be:80:1e:20:98:e8:62:6f:0b:d8:be:dd:8e:e0:8e: 87:52:68:ab:60:d7:69:0c:68:33:7c:0e:3e:7b:87:74:7f:b3: fd:ec:c8:9e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs5D73ehtWmG2i+qSwsqo5xMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM5YTk0ODRjYTcwOGFiNzcxZWIxZGI5MGJhZmM4YTExNGMy YzNkNzkwHhcNMjUxMjIwMDAwMTMxWhcNMjUxMjIxMDAwMTMxWjAzMTEwLwYDVQQD EygzNzQ3MDk5OGZlOTQyMzAwOWQzZWYxOTllN2QzYWE2NmM0ZTAxNjc1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzQqg+YQQRchECXfIgo8P39lbnDJe ILpa8r7Ux84r8vDnHMurtPivIrIaU9pa4p/TRyon/zmG72oxIkdeLgIWSTNtg2CO PLa+s5bKzIryi52Zzs7K0Pt6wDWX62xuu2JggpvuKhnfurvh5jvIgPUZXelCOmrE JmfLdc6Z7mfMMccs5i2bQ8oU9ErJUCwW3leDgcr3UcNMuewt8VGKVUtgOo9RBoYK IUkEq4Mdqqzk0+pKRFPNLPH2znEFzt+eBeJMAORzb/jCfCmA2DCtKsnJoT6sJn9f seQ8EbZKOiI1AjA/VdY/PGmxh/hgtSFQUlOwfc60kATSMCtbByTZax8jtQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDdHCZj+lCMAnT7xmefTqmbE4BZ1MB8GA1UdIwQY MBaAFMmpSEynCKt3HrHbkLr8ihFMLD15MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveWFsSVRLY0lxM2Nlc2R1UXV2eUtFVXdzUFhrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yi8yNWU2NjAtNDA1Ni00MmNjLWE4YjAt ZDA1MTdkYjI2ZGFkLzEveWFsSVRLY0lxM2Nlc2R1UXV2eUtFVXdzUFhrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Yi8yNWU2NjAtNDA1Ni00MmNjLWE4YjAtZDA1MTdkYjI2ZGFk LzEveWFsSVRLY0lxM2Nlc2R1UXV2eUtFVXdzUFhrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcO6/ovD1 OODAvlxj/whsbCshBReQYPIrUI2OW/smxAHhIjGyl8GoTm/1qZ5WJnoAVetHj4qt l0JriwXrJFnwu8YeH/SLgiAlMEPFjrTLJOeafE7D7+g/RI2h2ZSt9uJFoaAxLDap VS0zsEJw1Ix/VSNxKZCbuaqIoNQcjTcrYmT1vTwGjDrc9EvW6BRgJJgl9+uAVOo1 h+DyjUpr1GDAMRn62V7iX+EDJkZwvmqDDHaQRygm9YzKkgnpHEaK7Wnt9ILyNsPm fcYvCAWBLAEQI5v7/ncifDMRF3KavoAeIJjoYm8L2L7djuCOh1Joq2DXaQxoM3wO PnuHdH+z/ezIng== -----END CERTIFICATE-----Generated at Sat Dec 20 08:46:16 2025 by rpki-client