This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/550873-d063-420d-a051-16b97b9a885e/1/yF0BtEKUbhkkMT1WTzG35C4kVec.mft File: yF0BtEKUbhkkMT1WTzG35C4kVec.mft (raw, json) Hash identifier: jP4Aop1RVC+POBQ4Nbn5PtxC6PJR7NqG9qM9PSo/UIM= Subject key identifier: 35:F2:D7:BC:EB:85:3C:2E:62:54:94:22:17:8F:F7:F2:FB:53:BD:B3 Authority key identifier: C8:5D:01:B4:42:94:6E:19:24:31:3D:56:4F:31:B7:E4:2E:24:55:E7 Certificate issuer: /CN=c85d01b442946e1924313d564f31b7e42e2455e7 Certificate serial: 019B703489F21DEF5D516F787D3BDE38762A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yF0BtEKUbhkkMT1WTzG35C4kVec.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/550873-d063-420d-a051-16b97b9a885e/1/yF0BtEKUbhkkMT1WTzG35C4kVec.mft Manifest number: 0C24 Signing time: Tue 30 Dec 2025 17:00:49 +0000 Manifest this update: Tue 30 Dec 2025 17:00:49 +0000 Manifest next update: Wed 31 Dec 2025 17:00:49 +0000 Files and hashes: 1: DpCybAm9bBRoUpHGAuIQ86Lq5pw.roa (hash: 2p6cZB/6xzzCJ7jeUbBrD5Bf0hcHEh4tn/vPl+35cnU=) 2: yF0BtEKUbhkkMT1WTzG35C4kVec.crl (hash: 8GaUJFl/08v9+ca6rj5UeOGKu0DniGUrvAOspCQIO5U=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/550873-d063-420d-a051-16b97b9a885e/1/yF0BtEKUbhkkMT1WTzG35C4kVec.crl rsync://rpki.ripe.net/repository/DEFAULT/54/550873-d063-420d-a051-16b97b9a885e/1/yF0BtEKUbhkkMT1WTzG35C4kVec.mft rsync://rpki.ripe.net/repository/DEFAULT/yF0BtEKUbhkkMT1WTzG35C4kVec.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 31 Dec 2025 17:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:70:34:89:f2:1d:ef:5d:51:6f:78:7d:3b:de:38:76:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c85d01b442946e1924313d564f31b7e42e2455e7 Validity Not Before: Dec 30 17:00:49 2025 GMT Not After : Dec 31 17:00:49 2025 GMT Subject: CN=35f2d7bceb853c2e62549422178ff7f2fb53bdb3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:76:74:0c:77:02:18:ae:42:2b:84:d4:0d:05: 81:b8:f8:54:aa:ba:60:c6:e8:8d:8c:a7:09:f5:3b: 1d:3a:17:1a:1f:28:54:6c:c4:38:5c:37:1d:62:7a: 98:a9:52:18:3e:d7:97:9d:05:d0:d0:db:4f:39:fc: dd:2a:ea:6b:73:15:67:f5:a4:b5:f0:e0:d2:91:47: e5:62:10:e8:e5:47:de:61:f2:9e:d9:30:3a:99:fb: 48:b6:4d:94:26:fa:39:46:d0:27:28:b6:7e:2f:2d: 2c:67:cf:0e:09:19:30:69:f1:ec:c6:19:38:b1:d4: 7d:71:9e:22:bf:c6:41:19:0d:8c:ce:70:e8:54:53: 42:49:ab:c9:5c:e6:f6:ae:60:85:e7:d8:13:7c:53: 7d:35:a8:8d:a0:48:43:c8:6f:32:3c:a3:c7:82:84: c3:39:73:d4:df:a7:88:41:22:e2:0e:86:7f:9d:d5: 88:de:ac:5d:05:f9:b0:bb:69:fe:b5:5e:f5:34:4e: 42:f1:86:12:d7:25:f1:20:55:5f:c0:e4:00:0a:8c: 44:8c:6a:b0:7f:c2:a1:5b:1d:a4:ef:39:33:7f:fd: dd:31:93:12:f8:cb:f5:9d:fd:03:3c:06:03:b4:93: d7:61:b6:df:74:bb:98:5a:20:f5:aa:40:c2:2a:27: a3:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:F2:D7:BC:EB:85:3C:2E:62:54:94:22:17:8F:F7:F2:FB:53:BD:B3 X509v3 Authority Key Identifier: keyid:C8:5D:01:B4:42:94:6E:19:24:31:3D:56:4F:31:B7:E4:2E:24:55:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yF0BtEKUbhkkMT1WTzG35C4kVec.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/550873-d063-420d-a051-16b97b9a885e/1/yF0BtEKUbhkkMT1WTzG35C4kVec.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/54/550873-d063-420d-a051-16b97b9a885e/1/yF0BtEKUbhkkMT1WTzG35C4kVec.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 76:61:37:a6:f6:86:ef:9a:e3:fc:f7:d3:cf:f8:30:4e:4e:b2: ab:6e:45:b7:44:51:fd:6a:d0:af:97:38:c8:ae:0a:f4:30:b1: 6e:6d:07:af:55:e9:bb:6f:78:f1:90:b3:6d:47:aa:c6:97:71: 72:fb:a6:b6:1b:2e:af:26:f2:75:0b:26:6c:86:c8:dd:8f:d9: e0:e4:86:e9:2b:e3:37:09:e2:43:ae:91:45:9f:19:84:74:a1: 96:0c:da:b7:69:56:fc:35:92:35:8c:d5:29:bc:f8:4b:6f:0e: e1:aa:ea:d7:d9:fc:7c:73:b8:3c:2c:7d:1a:ba:1e:6f:1f:14: 44:bb:3e:c3:45:35:bc:61:58:09:3d:97:47:c9:00:b6:7a:4b: a7:80:69:19:b5:1e:0f:cf:dd:06:14:27:4f:0a:af:91:43:e8: ba:2c:de:46:36:82:72:7b:b8:2b:88:e2:03:14:b8:dd:de:b1: f8:ca:0f:45:25:a1:84:a0:73:c1:9a:a2:1d:f1:27:66:37:89: 37:48:d0:40:7b:1e:b0:20:97:e5:aa:d1:0c:17:6e:ab:46:f8: 86:13:e2:e7:09:4a:d2:f2:46:29:bd:f3:bb:85:0d:d6:74:45: 5a:ce:9c:66:e5:05:ab:fc:13:2a:b4:45:d3:d1:7e:d7:b6:bf: fc:84:cb:a3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtwNInyHe9dUW94fTveOHYqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM4NWQwMWI0NDI5NDZlMTkyNDMxM2Q1NjRmMzFiN2U0MmUy NDU1ZTcwHhcNMjUxMjMwMTcwMDQ5WhcNMjUxMjMxMTcwMDQ5WjAzMTEwLwYDVQQD EygzNWYyZDdiY2ViODUzYzJlNjI1NDk0MjIxNzhmZjdmMmZiNTNiZGIzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz3Z0DHcCGK5CK4TUDQWBuPhUqrpg xuiNjKcJ9TsdOhcaHyhUbMQ4XDcdYnqYqVIYPteXnQXQ0NtPOfzdKuprcxVn9aS1 8ODSkUflYhDo5UfeYfKe2TA6mftItk2UJvo5RtAnKLZ+Ly0sZ88OCRkwafHsxhk4 sdR9cZ4iv8ZBGQ2MznDoVFNCSavJXOb2rmCF59gTfFN9NaiNoEhDyG8yPKPHgoTD OXPU36eIQSLiDoZ/ndWI3qxdBfmwu2n+tV71NE5C8YYS1yXxIFVfwOQACoxEjGqw f8KhWx2k7zkzf/3dMZMS+Mv1nf0DPAYDtJPXYbbfdLuYWiD1qkDCKiejHwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDXy17zrhTwuYlSUIheP9/L7U72zMB8GA1UdIwQY MBaAFMhdAbRClG4ZJDE9Vk8xt+QuJFXnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveUYwQnRFS1ViaGtrTVQxV1R6RzM1QzRrVmVjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC81NTA4NzMtZDA2My00MjBkLWEwNTEt MTZiOTdiOWE4ODVlLzEveUYwQnRFS1ViaGtrTVQxV1R6RzM1QzRrVmVjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81NC81NTA4NzMtZDA2My00MjBkLWEwNTEtMTZiOTdiOWE4ODVl LzEveUYwQnRFS1ViaGtrTVQxV1R6RzM1QzRrVmVjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdmE3pvaG 75rj/PfTz/gwTk6yq25Ft0RR/WrQr5c4yK4K9DCxbm0Hr1Xpu2948ZCzbUeqxpdx cvumthsurybydQsmbIbI3Y/Z4OSG6SvjNwniQ66RRZ8ZhHShlgzat2lW/DWSNYzV Kbz4S28O4arq19n8fHO4PCx9Groebx8URLs+w0U1vGFYCT2XR8kAtnpLp4BpGbUe D8/dBhQnTwqvkUPouizeRjaCcnu4K4jiAxS43d6x+MoPRSWhhKBzwZqiHfEnZjeJ N0jQQHsesCCX5arRDBduq0b4hhPi5wlK0vJGKb3zu4UN1nRFWs6cZuUFq/wTKrRF 09F+17a//ITLow== -----END CERTIFICATE-----Generated at Wed Dec 31 02:03:37 2025 by rpki-client