This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7fa791-b3c9-48ae-8034-c2104673c20b/1/0YZHAF-osG5H7i77_e3Jegx3Vfg.mft File: 0YZHAF-osG5H7i77_e3Jegx3Vfg.mft (raw, json) Hash identifier: SU9sW7OKK72fWy/S56XFToKW2gXjiyiWFNvmG9qP8e0= Subject key identifier: 94:A1:49:ED:C4:9A:60:3F:6C:35:09:58:6E:79:34:9B:93:65:FB:09 Authority key identifier: D1:86:47:00:5F:A8:B0:6E:47:EE:2E:FB:FD:ED:C9:7A:0C:77:55:F8 Certificate issuer: /CN=d18647005fa8b06e47ee2efbfdedc97a0c7755f8 Certificate serial: 019B4627B923D564EE94F6DD6DD9E5A645AF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0YZHAF-osG5H7i77_e3Jegx3Vfg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7fa791-b3c9-48ae-8034-c2104673c20b/1/0YZHAF-osG5H7i77_e3Jegx3Vfg.mft Manifest number: 178D Signing time: Mon 22 Dec 2025 13:02:46 +0000 Manifest this update: Mon 22 Dec 2025 13:02:46 +0000 Manifest next update: Tue 23 Dec 2025 13:02:46 +0000 Files and hashes: 1: 0YZHAF-osG5H7i77_e3Jegx3Vfg.crl (hash: 4Ej4kPuBkdscG8P8Yoa8TcTydTIvdAF+Xae3wx8w4Vs=) 2: ZyIu060SPaMWxMQNL4CIeyP46Zk.roa (hash: GVU/SWZQhKij7yAFfd4z7w9wi6LHgd9IcJaXLlSPbVg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/7fa791-b3c9-48ae-8034-c2104673c20b/1/0YZHAF-osG5H7i77_e3Jegx3Vfg.crl rsync://rpki.ripe.net/repository/DEFAULT/5b/7fa791-b3c9-48ae-8034-c2104673c20b/1/0YZHAF-osG5H7i77_e3Jegx3Vfg.mft rsync://rpki.ripe.net/repository/DEFAULT/0YZHAF-osG5H7i77_e3Jegx3Vfg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 23 Dec 2025 13:02:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:46:27:b9:23:d5:64:ee:94:f6:dd:6d:d9:e5:a6:45:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d18647005fa8b06e47ee2efbfdedc97a0c7755f8 Validity Not Before: Dec 22 13:02:46 2025 GMT Not After : Dec 23 13:02:46 2025 GMT Subject: CN=94a149edc49a603f6c3509586e79349b9365fb09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:6b:91:e5:04:97:a5:2a:a6:77:8e:ee:bf:43: f5:f4:03:09:19:64:cb:f4:21:6b:bc:33:52:0f:30: 7e:ec:8d:a7:c0:cc:18:8f:59:f3:20:59:a5:eb:8d: fa:ec:60:56:6b:07:e1:54:6d:45:c6:3c:cc:dc:5e: 21:8d:f9:48:a5:75:a9:3e:7a:46:6c:e2:44:be:dd: d2:57:c9:ce:20:d1:27:42:98:38:82:74:23:85:63: 1f:c7:0e:af:f4:24:62:ca:11:dd:10:91:ce:dd:29: 8c:1b:9d:01:a1:92:2f:c9:de:70:ab:78:47:b8:e5: 8d:de:15:68:e6:fd:18:fd:a6:34:b5:1c:e6:c1:ae: ce:d2:71:b0:09:b3:cd:28:a4:28:7a:1a:b8:01:83: 34:2b:de:51:0e:cd:0a:83:c6:46:84:85:ab:0d:e3: cc:f1:4d:2c:50:d5:b9:05:58:93:af:e8:c0:d2:f4: 99:b1:08:87:ff:95:41:f8:bd:a3:5f:1a:ee:49:14: f5:8f:a3:b9:89:b1:40:ab:87:ac:26:86:fc:dd:ee: c3:d8:46:08:f9:60:31:ef:01:c6:31:35:4c:62:65: f1:ec:78:85:78:10:42:51:73:47:60:d6:de:e3:0a: a7:33:5a:ca:72:f7:40:58:1d:54:ca:d3:36:7b:fb: 8c:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:A1:49:ED:C4:9A:60:3F:6C:35:09:58:6E:79:34:9B:93:65:FB:09 X509v3 Authority Key Identifier: keyid:D1:86:47:00:5F:A8:B0:6E:47:EE:2E:FB:FD:ED:C9:7A:0C:77:55:F8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0YZHAF-osG5H7i77_e3Jegx3Vfg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7fa791-b3c9-48ae-8034-c2104673c20b/1/0YZHAF-osG5H7i77_e3Jegx3Vfg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7fa791-b3c9-48ae-8034-c2104673c20b/1/0YZHAF-osG5H7i77_e3Jegx3Vfg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 94:12:6d:98:90:da:dd:f0:20:ef:e5:4e:f8:7e:b3:2b:ee:be: f7:b3:84:5a:31:5e:14:69:4c:18:b2:37:cf:c4:e1:dd:28:e1: 79:d8:e5:9b:2d:4a:d5:46:4a:53:7d:20:9d:91:03:dd:2c:c1: a4:5a:2a:28:8b:e1:42:1b:0e:3a:cf:ea:e1:fb:cc:80:8d:c6: ff:f5:a0:de:5a:95:fd:f8:ac:0a:31:6f:fe:e1:5a:89:aa:9f: 44:69:ac:a1:8d:f7:bf:f1:d8:0b:c9:b5:9e:04:be:08:b2:85: a5:8a:1c:5e:21:9e:87:68:cf:ed:df:9c:0e:6b:91:16:40:62: 6b:e8:39:81:66:d7:93:04:92:8a:ae:04:7a:39:bf:a4:5e:c5: bc:e6:14:da:f5:01:8f:04:6e:f9:1a:05:64:b8:08:93:3c:4f: 53:b2:f5:5f:db:91:5e:f4:b3:9b:32:b3:c8:c6:53:87:1d:6e: b8:70:20:86:a9:c0:0e:29:f2:1e:0d:02:94:ab:86:af:f5:3e: 9f:ca:d6:28:2c:5c:7f:9a:f1:48:2a:21:f7:e0:2f:d4:9c:88: 6f:71:e6:cd:a0:2c:0f:67:89:a0:d7:a9:b5:e2:00:70:31:1f: a3:02:8c:c4:d3:0b:e5:c3:c2:96:0c:bc:72:d2:71:ea:7a:6a: ff:8b:fb:c0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtGJ7kj1WTulPbdbdnlpkWvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQxODY0NzAwNWZhOGIwNmU0N2VlMmVmYmZkZWRjOTdhMGM3 NzU1ZjgwHhcNMjUxMjIyMTMwMjQ2WhcNMjUxMjIzMTMwMjQ2WjAzMTEwLwYDVQQD Eyg5NGExNDllZGM0OWE2MDNmNmMzNTA5NTg2ZTc5MzQ5YjkzNjVmYjA5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2uR5QSXpSqmd47uv0P19AMJGWTL 9CFrvDNSDzB+7I2nwMwYj1nzIFml64367GBWawfhVG1FxjzM3F4hjflIpXWpPnpG bOJEvt3SV8nOINEnQpg4gnQjhWMfxw6v9CRiyhHdEJHO3SmMG50BoZIvyd5wq3hH uOWN3hVo5v0Y/aY0tRzmwa7O0nGwCbPNKKQoehq4AYM0K95RDs0Kg8ZGhIWrDePM 8U0sUNW5BViTr+jA0vSZsQiH/5VB+L2jXxruSRT1j6O5ibFAq4esJob83e7D2EYI +WAx7wHGMTVMYmXx7HiFeBBCUXNHYNbe4wqnM1rKcvdAWB1UytM2e/uM4wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJShSe3EmmA/bDUJWG55NJuTZfsJMB8GA1UdIwQY MBaAFNGGRwBfqLBuR+4u+/3tyXoMd1X4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMFlaSEFGLW9zRzVIN2k3N19lM0plZ3gzVmZnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi83ZmE3OTEtYjNjOS00OGFlLTgwMzQt YzIxMDQ2NzNjMjBiLzEvMFlaSEFGLW9zRzVIN2k3N19lM0plZ3gzVmZnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yi83ZmE3OTEtYjNjOS00OGFlLTgwMzQtYzIxMDQ2NzNjMjBi LzEvMFlaSEFGLW9zRzVIN2k3N19lM0plZ3gzVmZnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlBJtmJDa 3fAg7+VO+H6zK+6+97OEWjFeFGlMGLI3z8Th3Sjhedjlmy1K1UZKU30gnZED3SzB pFoqKIvhQhsOOs/q4fvMgI3G//Wg3lqV/fisCjFv/uFaiaqfRGmsoY33v/HYC8m1 ngS+CLKFpYocXiGeh2jP7d+cDmuRFkBia+g5gWbXkwSSiq4Eejm/pF7FvOYU2vUB jwRu+RoFZLgIkzxPU7L1X9uRXvSzmzKzyMZThx1uuHAghqnADinyHg0ClKuGr/U+ n8rWKCxcf5rxSCoh9+Av1JyIb3HmzaAsD2eJoNepteIAcDEfowKMxNML5cPClgy8 ctJx6npq/4v7wA== -----END CERTIFICATE-----Generated at Mon Dec 22 23:01:54 2025 by rpki-client