This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/72f6cf-9bd4-467a-a92a-5a64a5fc8a64/1/YaXSF3WehhaW_HftmqY7lO2zvn0.mft File: YaXSF3WehhaW_HftmqY7lO2zvn0.mft (raw, json) Hash identifier: WMhtoi6YTR/jABjGEvuLKHtc5nXL6+x3kohBelyMGUU= Subject key identifier: 2B:D4:80:14:22:5C:D5:8C:99:C2:83:5F:73:CE:66:3B:C7:59:1E:21 Authority key identifier: 61:A5:D2:17:75:9E:86:16:96:FC:77:ED:9A:A6:3B:94:ED:B3:BE:7D Certificate issuer: /CN=61a5d217759e861696fc77ed9aa63b94edb3be7d Certificate serial: 019B3A90F5D9E08B7B135076A7D6E35B3D1B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YaXSF3WehhaW_HftmqY7lO2zvn0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/72f6cf-9bd4-467a-a92a-5a64a5fc8a64/1/YaXSF3WehhaW_HftmqY7lO2zvn0.mft Manifest number: 1717 Signing time: Sat 20 Dec 2025 07:02:17 +0000 Manifest this update: Sat 20 Dec 2025 07:02:17 +0000 Manifest next update: Sun 21 Dec 2025 07:02:17 +0000 Files and hashes: 1: 5fuh3MDvvFTdM9YPWplIlmW8ZkA.roa (hash: Wdi/0+eUolZTOBljIE3hewam0WUu332lXIc8cs32Fgk=) 2: 925S4SchOi83vL3V68Y_AUuJSD8.roa (hash: 6EULq2ShinRvQFwY+uALe+ivLl2vWfr/F3fyELn3cug=) 3: PGmGsgYp4SpOgDQPzfkm2Kp84ms.roa (hash: QvQzg0nCw1e7QpH5gXcvQpoprtCI6UOH6zwCxDuFkv0=) 4: YaXSF3WehhaW_HftmqY7lO2zvn0.crl (hash: CSi1HQcqS7sDfRBvgXhmTROr9Tf1l7M5dvUDkAFqh2k=) 5: z3s2kSvc4H2ywLCnLljgXCeMKHc.roa (hash: pgMrP+tE9sQxVvQRywnzdq3UOn28MH01XXGUWXVHask=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/72f6cf-9bd4-467a-a92a-5a64a5fc8a64/1/YaXSF3WehhaW_HftmqY7lO2zvn0.crl rsync://rpki.ripe.net/repository/DEFAULT/59/72f6cf-9bd4-467a-a92a-5a64a5fc8a64/1/YaXSF3WehhaW_HftmqY7lO2zvn0.mft rsync://rpki.ripe.net/repository/DEFAULT/YaXSF3WehhaW_HftmqY7lO2zvn0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 07:02:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3a:90:f5:d9:e0:8b:7b:13:50:76:a7:d6:e3:5b:3d:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=61a5d217759e861696fc77ed9aa63b94edb3be7d Validity Not Before: Dec 20 07:02:17 2025 GMT Not After : Dec 21 07:02:17 2025 GMT Subject: CN=2bd48014225cd58c99c2835f73ce663bc7591e21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:f4:95:37:67:29:3b:65:4e:cc:08:1c:8d:6e: dd:7a:27:29:4d:04:12:71:70:6e:19:cc:29:74:0e: 5e:9e:2c:c0:47:fe:ec:45:fc:7d:58:e5:62:df:44: e6:99:f1:84:e7:6d:68:a2:65:27:0c:7e:18:bf:c8: 1a:7e:f8:d7:4a:2e:57:b6:b6:55:73:1c:71:e0:5a: 8a:ad:b3:03:92:9d:37:6e:2b:83:be:b9:c3:3f:40: ea:c0:8c:64:82:96:46:d9:f3:ef:84:1c:28:2b:fe: 8d:d5:b9:55:3d:b3:bd:05:ce:eb:ad:30:43:a8:29: 6a:20:73:de:93:5e:c0:d8:d9:a9:ac:49:60:42:c5: e5:9a:b5:3a:1b:b2:1b:27:a2:57:a3:a5:e1:e1:01: 3e:27:4a:a2:8b:3f:a0:6b:fc:88:a5:ef:13:fd:e7: 01:e1:1e:a7:26:39:42:89:47:73:f7:29:66:1e:ba: 73:cd:69:37:9f:ba:9d:9b:7c:e1:f1:8d:5c:bc:34: f8:89:b4:4c:0d:d1:18:0b:37:f3:65:42:6c:28:97: 62:8b:9c:03:77:96:e0:05:27:c4:34:1c:3d:9c:19: 0f:47:91:c2:58:c0:ab:25:0b:27:78:38:36:1d:80: f1:79:be:2f:09:32:58:f9:cb:bb:2e:39:8c:32:41: c9:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:D4:80:14:22:5C:D5:8C:99:C2:83:5F:73:CE:66:3B:C7:59:1E:21 X509v3 Authority Key Identifier: keyid:61:A5:D2:17:75:9E:86:16:96:FC:77:ED:9A:A6:3B:94:ED:B3:BE:7D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YaXSF3WehhaW_HftmqY7lO2zvn0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/72f6cf-9bd4-467a-a92a-5a64a5fc8a64/1/YaXSF3WehhaW_HftmqY7lO2zvn0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/59/72f6cf-9bd4-467a-a92a-5a64a5fc8a64/1/YaXSF3WehhaW_HftmqY7lO2zvn0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 59:2e:96:5d:3d:79:e8:fb:72:81:8d:a9:8b:b4:45:e7:39:b7: eb:f3:85:f8:d4:e7:70:92:e5:d0:a2:ed:86:8b:9a:00:e9:bb: d0:60:0c:e0:d0:8b:63:5a:45:07:54:2f:37:48:c7:3c:74:8b: 5f:72:12:08:0d:61:d7:9a:3b:20:37:16:f5:73:67:7b:2a:01: 2a:d6:16:fa:1d:8b:e5:4e:f6:9d:c6:66:5d:28:c5:94:5f:1a: 17:85:57:63:1d:74:fd:43:b3:b0:13:51:3d:46:25:8e:91:d8: f1:53:3c:d7:0d:24:dd:96:cb:5b:b3:82:50:d2:8b:a9:bc:44: b5:f6:2e:91:63:22:ab:b3:8a:90:d8:57:ba:3a:4f:69:5e:9e: e5:a6:db:75:e7:13:fe:ac:00:46:eb:80:6b:93:68:fa:d3:b4: 56:59:dc:7a:18:3a:1c:42:31:db:16:2f:45:c7:6e:15:58:78: 29:20:7f:b6:45:95:72:d1:c0:b7:29:bb:b0:5b:fc:af:0a:07: 7d:bb:b4:4c:f0:fd:96:89:75:fe:e1:ef:8c:8a:28:08:41:26: 7d:80:45:ae:01:8b:aa:c9:f6:59:dc:d2:46:a7:3f:72:ee:19: 97:2b:a9:95:a9:df:7d:4b:ae:0d:27:6f:9e:52:08:50:23:24: cc:19:3b:cb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs6kPXZ4It7E1B2p9bjWz0bMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYxYTVkMjE3NzU5ZTg2MTY5NmZjNzdlZDlhYTYzYjk0ZWRi M2JlN2QwHhcNMjUxMjIwMDcwMjE3WhcNMjUxMjIxMDcwMjE3WjAzMTEwLwYDVQQD EygyYmQ0ODAxNDIyNWNkNThjOTljMjgzNWY3M2NlNjYzYmM3NTkxZTIxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr/SVN2cpO2VOzAgcjW7deicpTQQS cXBuGcwpdA5enizAR/7sRfx9WOVi30TmmfGE521oomUnDH4Yv8gafvjXSi5XtrZV cxxx4FqKrbMDkp03biuDvrnDP0DqwIxkgpZG2fPvhBwoK/6N1blVPbO9Bc7rrTBD qClqIHPek17A2NmprElgQsXlmrU6G7IbJ6JXo6Xh4QE+J0qiiz+ga/yIpe8T/ecB 4R6nJjlCiUdz9ylmHrpzzWk3n7qdm3zh8Y1cvDT4ibRMDdEYCzfzZUJsKJdii5wD d5bgBSfENBw9nBkPR5HCWMCrJQsneDg2HYDxeb4vCTJY+cu7LjmMMkHJPQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCvUgBQiXNWMmcKDX3POZjvHWR4hMB8GA1UdIwQY MBaAFGGl0hd1noYWlvx37ZqmO5Tts759MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWWFYU0YzV2VoaGFXX0hmdG1xWTdsTzJ6dm4wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OS83MmY2Y2YtOWJkNC00NjdhLWE5MmEt NWE2NGE1ZmM4YTY0LzEvWWFYU0YzV2VoaGFXX0hmdG1xWTdsTzJ6dm4wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OS83MmY2Y2YtOWJkNC00NjdhLWE5MmEtNWE2NGE1ZmM4YTY0 LzEvWWFYU0YzV2VoaGFXX0hmdG1xWTdsTzJ6dm4wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWS6WXT15 6PtygY2pi7RF5zm36/OF+NTncJLl0KLthouaAOm70GAM4NCLY1pFB1QvN0jHPHSL X3ISCA1h15o7IDcW9XNneyoBKtYW+h2L5U72ncZmXSjFlF8aF4VXYx10/UOzsBNR PUYljpHY8VM81w0k3ZbLW7OCUNKLqbxEtfYukWMiq7OKkNhXujpPaV6e5abbdecT /qwARuuAa5No+tO0Vlncehg6HEIx2xYvRcduFVh4KSB/tkWVctHAtym7sFv8rwoH fbu0TPD9lol1/uHvjIooCEEmfYBFrgGLqsn2WdzSRqc/cu4ZlyuplanffUuuDSdv nlIIUCMkzBk7yw== -----END CERTIFICATE-----Generated at Sat Dec 20 16:03:12 2025 by rpki-client