This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/550873-d063-420d-a051-16b97b9a885e/1/yF0BtEKUbhkkMT1WTzG35C4kVec.mft File: yF0BtEKUbhkkMT1WTzG35C4kVec.mft (raw, json) Hash identifier: MBO1MiyM7cae4bg42H7rHZo04MUlyfYBwUTO4NiaEJU= Subject key identifier: 60:7B:A7:A9:FB:CE:B7:4E:87:C1:91:F8:25:E8:4B:64:78:A7:8F:99 Authority key identifier: C8:5D:01:B4:42:94:6E:19:24:31:3D:56:4F:31:B7:E4:2E:24:55:E7 Certificate issuer: /CN=c85d01b442946e1924313d564f31b7e42e2455e7 Certificate serial: 019B649E005D17A8F35811E4844116D95743 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yF0BtEKUbhkkMT1WTzG35C4kVec.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/550873-d063-420d-a051-16b97b9a885e/1/yF0BtEKUbhkkMT1WTzG35C4kVec.mft Manifest number: 0C1E Signing time: Sun 28 Dec 2025 11:00:34 +0000 Manifest this update: Sun 28 Dec 2025 11:00:34 +0000 Manifest next update: Mon 29 Dec 2025 11:00:34 +0000 Files and hashes: 1: DpCybAm9bBRoUpHGAuIQ86Lq5pw.roa (hash: 2p6cZB/6xzzCJ7jeUbBrD5Bf0hcHEh4tn/vPl+35cnU=) 2: yF0BtEKUbhkkMT1WTzG35C4kVec.crl (hash: aKw/iSmRsSeSPsRm0C1CVt2FS9E3VcBYIvxoFt7O0ts=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/550873-d063-420d-a051-16b97b9a885e/1/yF0BtEKUbhkkMT1WTzG35C4kVec.crl rsync://rpki.ripe.net/repository/DEFAULT/54/550873-d063-420d-a051-16b97b9a885e/1/yF0BtEKUbhkkMT1WTzG35C4kVec.mft rsync://rpki.ripe.net/repository/DEFAULT/yF0BtEKUbhkkMT1WTzG35C4kVec.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 29 Dec 2025 11:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:64:9e:00:5d:17:a8:f3:58:11:e4:84:41:16:d9:57:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c85d01b442946e1924313d564f31b7e42e2455e7 Validity Not Before: Dec 28 11:00:34 2025 GMT Not After : Dec 29 11:00:34 2025 GMT Subject: CN=607ba7a9fbceb74e87c191f825e84b6478a78f99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:f8:40:d0:3b:1f:00:2a:e9:85:e5:6a:b9:dc: bf:c5:4d:4e:96:78:09:49:80:db:02:8b:29:cd:fc: 56:61:83:9c:3a:7c:64:64:76:42:21:7e:92:37:71: 5e:4f:9a:12:3a:65:c6:fc:51:df:12:11:64:93:a4: 23:63:25:2f:ff:60:78:aa:ee:43:06:ff:0b:b0:66: 01:39:11:2e:8b:b7:8b:df:60:58:c0:58:95:bc:b7: df:e1:f1:18:39:94:de:f9:65:7b:ce:2e:05:49:35: 3d:48:ee:8f:ec:6b:05:78:06:e0:c6:7b:0c:6a:fc: 7a:03:c6:91:aa:43:e3:6b:3e:a9:40:68:a3:f6:7c: b9:b0:f3:02:f0:ed:58:61:55:6d:30:f8:62:51:80: 42:f3:f7:08:58:b2:24:95:48:ce:4a:45:87:36:e0: 88:52:c4:61:7f:28:48:fb:f3:7b:00:0a:20:63:b8: 32:31:07:39:bb:16:63:a9:46:71:28:00:26:0e:d2: 35:15:3d:46:25:c6:62:76:59:9b:af:a6:84:bd:51: c7:20:ac:d1:80:f8:ed:94:64:37:17:68:5f:8d:ae: 79:0e:ee:84:85:0f:c9:04:c2:7d:de:bb:4b:ac:88: f4:1f:3c:00:58:ff:02:b2:0f:a4:eb:12:a3:63:e1: e9:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:7B:A7:A9:FB:CE:B7:4E:87:C1:91:F8:25:E8:4B:64:78:A7:8F:99 X509v3 Authority Key Identifier: keyid:C8:5D:01:B4:42:94:6E:19:24:31:3D:56:4F:31:B7:E4:2E:24:55:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yF0BtEKUbhkkMT1WTzG35C4kVec.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/550873-d063-420d-a051-16b97b9a885e/1/yF0BtEKUbhkkMT1WTzG35C4kVec.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/54/550873-d063-420d-a051-16b97b9a885e/1/yF0BtEKUbhkkMT1WTzG35C4kVec.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 43:c2:fa:37:49:1f:32:9c:d8:7a:b8:16:65:3c:da:62:35:2b: 41:66:78:52:92:4c:7c:7f:df:1b:86:6c:b7:8a:4a:43:fa:84: 10:a6:a5:bc:c1:24:a4:7b:91:a3:8f:aa:85:4f:75:8f:0f:64: a0:e5:9c:cc:75:90:70:d7:d7:38:c5:3a:20:69:91:ad:3e:30: 94:c3:1a:6b:6a:4e:88:05:e1:2c:79:cc:05:10:d6:6d:7a:36: 67:99:f6:8a:26:23:99:99:d8:a1:90:b7:09:ba:c3:8a:df:39: bf:61:58:c2:7b:22:0f:7f:65:c9:94:0c:41:33:57:c1:ef:e4: f5:0b:2d:c4:cb:4d:0e:07:b9:ee:5c:5a:a8:6c:2a:4f:76:d8: 81:5e:df:48:44:d6:11:af:99:ea:ba:36:6d:2f:8b:d7:e5:b2: 01:aa:9b:d0:fe:ae:05:9e:49:11:c0:34:3b:a0:78:db:d1:43: 45:12:74:ba:ca:a0:d3:72:4b:99:6a:e6:0e:8e:5a:21:2b:a8: f7:d9:29:63:f2:c1:27:2f:71:80:47:cd:81:78:46:ec:cc:45: bb:46:f3:90:55:f0:ba:7e:3d:f5:f6:c5:8e:57:21:36:84:fb: 7c:42:8d:c6:51:5f:0e:27:6e:04:e8:d1:11:2f:45:67:05:42: 23:4a:16:ed -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtkngBdF6jzWBHkhEEW2VdDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM4NWQwMWI0NDI5NDZlMTkyNDMxM2Q1NjRmMzFiN2U0MmUy NDU1ZTcwHhcNMjUxMjI4MTEwMDM0WhcNMjUxMjI5MTEwMDM0WjAzMTEwLwYDVQQD Eyg2MDdiYTdhOWZiY2ViNzRlODdjMTkxZjgyNWU4NGI2NDc4YTc4Zjk5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwfhA0DsfACrpheVqudy/xU1OlngJ SYDbAospzfxWYYOcOnxkZHZCIX6SN3FeT5oSOmXG/FHfEhFkk6QjYyUv/2B4qu5D Bv8LsGYBOREui7eL32BYwFiVvLff4fEYOZTe+WV7zi4FSTU9SO6P7GsFeAbgxnsM avx6A8aRqkPjaz6pQGij9ny5sPMC8O1YYVVtMPhiUYBC8/cIWLIklUjOSkWHNuCI UsRhfyhI+/N7AAogY7gyMQc5uxZjqUZxKAAmDtI1FT1GJcZidlmbr6aEvVHHIKzR gPjtlGQ3F2hfja55Du6EhQ/JBMJ93rtLrIj0HzwAWP8Csg+k6xKjY+HpyQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGB7p6n7zrdOh8GR+CXoS2R4p4+ZMB8GA1UdIwQY MBaAFMhdAbRClG4ZJDE9Vk8xt+QuJFXnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveUYwQnRFS1ViaGtrTVQxV1R6RzM1QzRrVmVjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC81NTA4NzMtZDA2My00MjBkLWEwNTEt MTZiOTdiOWE4ODVlLzEveUYwQnRFS1ViaGtrTVQxV1R6RzM1QzRrVmVjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81NC81NTA4NzMtZDA2My00MjBkLWEwNTEtMTZiOTdiOWE4ODVl LzEveUYwQnRFS1ViaGtrTVQxV1R6RzM1QzRrVmVjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQ8L6N0kf MpzYergWZTzaYjUrQWZ4UpJMfH/fG4Zst4pKQ/qEEKalvMEkpHuRo4+qhU91jw9k oOWczHWQcNfXOMU6IGmRrT4wlMMaa2pOiAXhLHnMBRDWbXo2Z5n2iiYjmZnYoZC3 CbrDit85v2FYwnsiD39lyZQMQTNXwe/k9QstxMtNDge57lxaqGwqT3bYgV7fSETW Ea+Z6ro2bS+L1+WyAaqb0P6uBZ5JEcA0O6B429FDRRJ0usqg03JLmWrmDo5aISuo 99kpY/LBJy9xgEfNgXhG7MxFu0bzkFXwun499fbFjlchNoT7fEKNxlFfDiduBOjR ES9FZwVCI0oW7Q== -----END CERTIFICATE-----Generated at Sun Dec 28 20:30:24 2025 by rpki-client