This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/682b07-773f-46fd-82e2-b9211e1fc1ac/1/yda1mpPjJAg_vKQjfkfp9evzcas.mft File: yda1mpPjJAg_vKQjfkfp9evzcas.mft (raw, json) Hash identifier: B3HE97ExcOJoTzufQGCVzxFuZuY34NECnFLp/nzv6WQ= Subject key identifier: B3:9B:FC:A3:16:4E:21:E1:12:9D:FC:E5:39:B3:48:6A:88:EA:D4:4B Authority key identifier: C9:D6:B5:9A:93:E3:24:08:3F:BC:A4:23:7E:47:E9:F5:EB:F3:71:AB Certificate issuer: /CN=c9d6b59a93e324083fbca4237e47e9f5ebf371ab Certificate serial: 019B3DC814808D61B42A357C4BAC37E79EDF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yda1mpPjJAg_vKQjfkfp9evzcas.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/682b07-773f-46fd-82e2-b9211e1fc1ac/1/yda1mpPjJAg_vKQjfkfp9evzcas.mft Manifest number: 17AF Signing time: Sat 20 Dec 2025 22:01:20 +0000 Manifest this update: Sat 20 Dec 2025 22:01:20 +0000 Manifest next update: Sun 21 Dec 2025 22:01:20 +0000 Files and hashes: 1: N1MG3ptUi6lRkgCQgC4sjQwbS5E.roa (hash: JXk8TsLqv4eNpEsTxzdAoUG6ec7BUvgM4Lyhjc+WI9U=) 2: pMIZZEHYcO0IlQ8lJ-JaDY1xnJs.roa (hash: KI7tUZnJYI1JaBjFs0d5L727l5SVVoE+xByQFUZQZZI=) 3: uiLIHzK4-mf16_OjnZc2yUpW0us.roa (hash: RlQY7OlYxlif+RwnDDphDKPVhonzC8U4YVG2wYszXJM=) 4: wmxHtvcKqJtTUqnf5sR3cyCPMeg.roa (hash: /EPsVJFiMZ3O3IoH+IOAZdQSfyIhjr2V/FlxWvt6e5c=) 5: xF5VKoGOYu4SuTkWFtzR0bzZqmI.roa (hash: rdwu1BaRed5RxmIo/GH4jXiyNp3cFaIjeNX4kVrFm70=) 6: yda1mpPjJAg_vKQjfkfp9evzcas.crl (hash: 8T2/XkrfNIwY0BXF3Ndc0nqHdwcxGTfVoDxgSzeyDnc=) 7: zPFc5xzrxxMWf2K11uBlgIiWqTo.roa (hash: 3x/T35aDdfP5Wrtlu3UJYc2NEgecLDM5KH+dyoNyYx0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/682b07-773f-46fd-82e2-b9211e1fc1ac/1/yda1mpPjJAg_vKQjfkfp9evzcas.crl rsync://rpki.ripe.net/repository/DEFAULT/57/682b07-773f-46fd-82e2-b9211e1fc1ac/1/yda1mpPjJAg_vKQjfkfp9evzcas.mft rsync://rpki.ripe.net/repository/DEFAULT/yda1mpPjJAg_vKQjfkfp9evzcas.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 19:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3d:c8:14:80:8d:61:b4:2a:35:7c:4b:ac:37:e7:9e:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c9d6b59a93e324083fbca4237e47e9f5ebf371ab Validity Not Before: Dec 20 22:01:20 2025 GMT Not After : Dec 21 22:01:20 2025 GMT Subject: CN=b39bfca3164e21e1129dfce539b3486a88ead44b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:87:e0:07:8b:5a:a6:d7:65:83:d2:8a:ca:88: 86:42:6f:ba:14:3f:5c:b3:f6:03:16:ff:5d:67:89: 0a:c9:6c:91:99:2f:1b:8c:49:af:ae:86:e3:68:d6: f2:24:6c:9c:03:77:b7:73:01:9e:73:aa:f0:79:1a: f1:0b:2e:9d:49:5d:e9:df:3a:3d:fd:9d:bb:51:53: d1:61:c8:71:2a:64:39:d9:55:86:c8:3a:ff:e9:f5: a8:67:ed:c7:3f:f9:66:1f:35:1d:54:68:08:c1:48: f7:6a:ef:0e:2c:8a:3f:6e:35:2e:34:44:f7:d7:9c: 81:0b:a0:9f:91:b3:78:91:25:f7:81:60:33:6e:db: 28:a1:66:cc:75:ee:05:e0:26:76:f1:ad:9c:0e:e2: d9:ee:65:05:04:bf:66:a7:c5:12:b0:bb:35:68:c6: 5a:8f:fe:d4:5c:19:21:dc:e5:01:04:41:68:9d:54: 98:8f:eb:b2:5c:a2:d3:ae:81:a9:b1:21:cf:8e:3c: 5c:ab:b9:55:98:7e:ac:4e:f8:7c:8d:19:09:e3:f3: 77:82:92:f3:64:49:3a:a5:b6:d0:07:1a:6f:25:75: a4:c8:93:30:11:35:ff:be:fa:fd:09:2c:5e:05:59: b4:70:ab:3d:0c:f8:88:a1:b7:aa:2c:d1:9d:f8:e5: 98:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:9B:FC:A3:16:4E:21:E1:12:9D:FC:E5:39:B3:48:6A:88:EA:D4:4B X509v3 Authority Key Identifier: keyid:C9:D6:B5:9A:93:E3:24:08:3F:BC:A4:23:7E:47:E9:F5:EB:F3:71:AB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yda1mpPjJAg_vKQjfkfp9evzcas.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/682b07-773f-46fd-82e2-b9211e1fc1ac/1/yda1mpPjJAg_vKQjfkfp9evzcas.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/57/682b07-773f-46fd-82e2-b9211e1fc1ac/1/yda1mpPjJAg_vKQjfkfp9evzcas.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3d:d9:22:eb:dd:f5:dd:2f:79:cd:7f:50:fa:de:b0:fe:39:0f: 5e:36:87:54:bb:99:ef:37:98:79:a8:4c:89:98:74:fc:ff:4e: 4f:db:0c:00:35:6d:ba:bf:fc:5e:fd:4b:c2:2b:8d:f2:59:56: 0a:63:15:f0:d9:34:ec:b7:a4:d6:6d:ef:b7:e4:d6:21:4b:00: 16:71:40:32:30:46:f7:68:06:dd:d8:b0:34:d4:2c:01:6b:28: 7c:0f:ec:bd:a8:84:0d:f9:cf:bd:82:85:16:ae:ce:db:c5:8d: e8:d7:ab:bc:90:e5:a5:0c:cc:c3:38:17:72:c6:b4:39:cf:ae: 96:de:ea:81:2e:26:cb:e7:72:29:b6:ca:61:0c:2d:bc:d7:7c: e7:11:64:49:05:64:76:e4:af:ad:a3:44:4f:26:2a:17:82:d7: 64:41:7e:82:7a:83:43:40:9b:18:ca:1a:df:8d:d7:9e:35:1b: 3a:a5:b4:35:37:50:2a:d4:a6:8d:06:14:73:0e:91:fe:3f:5c: b0:a4:bf:d0:c3:4b:81:67:3d:f2:20:59:6f:ae:c1:88:f6:01: ed:be:b4:df:a5:41:29:b7:3f:a4:47:e3:9c:7b:57:c7:48:64: af:81:c7:7d:79:74:51:8a:59:9d:85:5c:88:36:02:2b:6b:d8: 29:7c:47:d5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs9yBSAjWG0KjV8S6w3557fMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM5ZDZiNTlhOTNlMzI0MDgzZmJjYTQyMzdlNDdlOWY1ZWJm MzcxYWIwHhcNMjUxMjIwMjIwMTIwWhcNMjUxMjIxMjIwMTIwWjAzMTEwLwYDVQQD EyhiMzliZmNhMzE2NGUyMWUxMTI5ZGZjZTUzOWIzNDg2YTg4ZWFkNDRiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvofgB4taptdlg9KKyoiGQm+6FD9c s/YDFv9dZ4kKyWyRmS8bjEmvrobjaNbyJGycA3e3cwGec6rweRrxCy6dSV3p3zo9 /Z27UVPRYchxKmQ52VWGyDr/6fWoZ+3HP/lmHzUdVGgIwUj3au8OLIo/bjUuNET3 15yBC6CfkbN4kSX3gWAzbtsooWbMde4F4CZ28a2cDuLZ7mUFBL9mp8USsLs1aMZa j/7UXBkh3OUBBEFonVSYj+uyXKLTroGpsSHPjjxcq7lVmH6sTvh8jRkJ4/N3gpLz ZEk6pbbQBxpvJXWkyJMwETX/vvr9CSxeBVm0cKs9DPiIobeqLNGd+OWYxwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLOb/KMWTiHhEp385TmzSGqI6tRLMB8GA1UdIwQY MBaAFMnWtZqT4yQIP7ykI35H6fXr83GrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveWRhMW1wUGpKQWdfdktRamZrZnA5ZXZ6Y2FzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ny82ODJiMDctNzczZi00NmZkLTgyZTIt YjkyMTFlMWZjMWFjLzEveWRhMW1wUGpKQWdfdktRamZrZnA5ZXZ6Y2FzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Ny82ODJiMDctNzczZi00NmZkLTgyZTItYjkyMTFlMWZjMWFj LzEveWRhMW1wUGpKQWdfdktRamZrZnA5ZXZ6Y2FzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPdki6931 3S95zX9Q+t6w/jkPXjaHVLuZ7zeYeahMiZh0/P9OT9sMADVtur/8Xv1LwiuN8llW CmMV8Nk07Lek1m3vt+TWIUsAFnFAMjBG92gG3diwNNQsAWsofA/svaiEDfnPvYKF Fq7O28WN6NervJDlpQzMwzgXcsa0Oc+ult7qgS4my+dyKbbKYQwtvNd85xFkSQVk duSvraNETyYqF4LXZEF+gnqDQ0CbGMoa343XnjUbOqW0NTdQKtSmjQYUcw6R/j9c sKS/0MNLgWc98iBZb67BiPYB7b6036VBKbc/pEfjnHtXx0hkr4HHfXl0UYpZnYVc iDYCK2vYKXxH1Q== -----END CERTIFICATE-----Generated at Sun Dec 21 04:23:34 2025 by rpki-client