This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/b041b8-6b24-44f3-a748-72c0d509334d/1/yAH8mVpSGvH1Atnq8S1mIaZMr00.mft File: yAH8mVpSGvH1Atnq8S1mIaZMr00.mft (raw, json) Hash identifier: 6MMHCG1YdUYN3ykSgl5arUqiZMflyUu9cpPbsuWG2GI= Subject key identifier: FA:B3:9A:65:82:A8:D0:35:6C:63:F8:74:FE:EC:05:7C:D7:A1:1D:2A Authority key identifier: C8:01:FC:99:5A:52:1A:F1:F5:02:D9:EA:F1:2D:66:21:A6:4C:AF:4D Certificate issuer: /CN=c801fc995a521af1f502d9eaf12d6621a64caf4d Certificate serial: 019B51BDD615A9803FB93E72278432413675 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yAH8mVpSGvH1Atnq8S1mIaZMr00.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/b041b8-6b24-44f3-a748-72c0d509334d/1/yAH8mVpSGvH1Atnq8S1mIaZMr00.mft Manifest number: 178F Signing time: Wed 24 Dec 2025 19:02:33 +0000 Manifest this update: Wed 24 Dec 2025 19:02:33 +0000 Manifest next update: Thu 25 Dec 2025 19:02:33 +0000 Files and hashes: 1: yAH8mVpSGvH1Atnq8S1mIaZMr00.crl (hash: 43hM2pPmP981K5siAaYr//DJ291bFh19o/7c3b1xgPE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/b041b8-6b24-44f3-a748-72c0d509334d/1/yAH8mVpSGvH1Atnq8S1mIaZMr00.crl rsync://rpki.ripe.net/repository/DEFAULT/5b/b041b8-6b24-44f3-a748-72c0d509334d/1/yAH8mVpSGvH1Atnq8S1mIaZMr00.mft rsync://rpki.ripe.net/repository/DEFAULT/yAH8mVpSGvH1Atnq8S1mIaZMr00.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 25 Dec 2025 18:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:51:bd:d6:15:a9:80:3f:b9:3e:72:27:84:32:41:36:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c801fc995a521af1f502d9eaf12d6621a64caf4d Validity Not Before: Dec 24 19:02:33 2025 GMT Not After : Dec 25 19:02:33 2025 GMT Subject: CN=fab39a6582a8d0356c63f874feec057cd7a11d2a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:05:f7:8d:a5:b2:69:eb:88:fd:d7:6d:c9:8b: 2f:82:51:f5:fb:b9:f4:74:f5:3b:51:24:77:1b:aa: 8b:72:75:dd:21:43:14:16:3a:4b:af:5a:11:49:26: cb:83:ae:ec:1a:7d:bb:e4:23:6e:a6:7a:0f:54:17: db:49:f0:0c:90:6c:40:b0:a2:3e:92:4f:c7:70:76: 7b:cd:d3:19:b9:4d:9f:dd:5e:0a:fa:9f:53:13:2b: 10:05:44:16:f0:67:9c:29:74:98:91:95:6e:e5:9f: 09:6f:80:f4:13:39:e1:6b:3a:43:17:e1:b9:42:74: 43:37:06:c9:b3:ab:1a:52:07:20:4d:e9:79:f5:fe: 43:fa:36:81:bc:d9:16:2c:0d:a1:17:94:80:09:16: a8:ee:c4:21:5b:ad:cf:81:a3:4d:fc:c9:e2:93:db: 81:51:6e:3d:ef:3b:12:c2:ea:3d:da:ba:a8:c6:d3: 7f:7c:44:b1:b4:d3:fa:a6:6f:8a:00:ff:71:3c:d3: 65:7a:de:38:6c:19:90:bd:eb:ef:a6:fc:d9:ba:bb: fa:c8:3c:35:a7:ec:9b:46:1c:89:8f:4c:0b:d0:78: 56:d2:41:9d:ad:1a:2a:59:af:f4:74:e9:dd:1f:b4: df:58:19:ca:94:de:2f:a1:bd:99:d0:3f:ed:c7:2a: f1:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:B3:9A:65:82:A8:D0:35:6C:63:F8:74:FE:EC:05:7C:D7:A1:1D:2A X509v3 Authority Key Identifier: keyid:C8:01:FC:99:5A:52:1A:F1:F5:02:D9:EA:F1:2D:66:21:A6:4C:AF:4D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yAH8mVpSGvH1Atnq8S1mIaZMr00.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/b041b8-6b24-44f3-a748-72c0d509334d/1/yAH8mVpSGvH1Atnq8S1mIaZMr00.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/b041b8-6b24-44f3-a748-72c0d509334d/1/yAH8mVpSGvH1Atnq8S1mIaZMr00.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 85:14:22:ba:24:9e:79:d5:6b:e3:82:da:16:6b:e6:7a:1b:16: 0a:ea:db:c1:1e:ca:7d:66:32:1d:60:71:b6:ac:bd:2a:89:05: 9e:29:3a:5f:a0:b1:44:3e:83:6e:d0:23:2b:6c:60:86:53:01: cc:bf:8c:34:1b:38:eb:18:17:af:dc:71:4a:20:54:b9:3b:25: 22:5d:fd:af:f8:71:74:c9:b3:32:10:7b:89:43:eb:34:e1:49: 45:da:3e:8b:63:64:10:98:86:b1:8e:61:03:0b:91:22:43:32: e0:88:8f:b5:f4:74:66:9f:35:64:d2:4b:e8:2e:8b:a9:71:3a: a0:ae:56:9b:27:b2:08:7e:72:9a:bb:75:e7:e3:74:22:1f:80: f0:2c:50:f7:bc:42:b7:4e:d7:67:b0:60:0e:ab:3f:cd:fc:35: eb:4c:2e:00:37:4a:68:40:45:ff:99:bb:0d:3e:33:26:9a:53: 3e:37:ec:41:78:20:d2:e4:47:b0:fb:0e:84:cd:b0:41:1c:37: 35:3e:23:0a:b4:e1:f1:1e:7c:34:56:4f:87:29:a4:60:10:f0: eb:3f:00:ca:09:53:b8:79:9d:a2:05:29:04:d9:31:2a:ba:99: 58:ba:7e:c1:bf:bb:47:55:4f:55:97:56:da:23:b6:bf:49:c1: a5:e7:c2:d0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtRvdYVqYA/uT5yJ4QyQTZ1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM4MDFmYzk5NWE1MjFhZjFmNTAyZDllYWYxMmQ2NjIxYTY0 Y2FmNGQwHhcNMjUxMjI0MTkwMjMzWhcNMjUxMjI1MTkwMjMzWjAzMTEwLwYDVQQD EyhmYWIzOWE2NTgyYThkMDM1NmM2M2Y4NzRmZWVjMDU3Y2Q3YTExZDJhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoQX3jaWyaeuI/ddtyYsvglH1+7n0 dPU7USR3G6qLcnXdIUMUFjpLr1oRSSbLg67sGn275CNupnoPVBfbSfAMkGxAsKI+ kk/HcHZ7zdMZuU2f3V4K+p9TEysQBUQW8GecKXSYkZVu5Z8Jb4D0EznhazpDF+G5 QnRDNwbJs6saUgcgTel59f5D+jaBvNkWLA2hF5SACRao7sQhW63PgaNN/Mnik9uB UW497zsSwuo92rqoxtN/fESxtNP6pm+KAP9xPNNlet44bBmQvevvpvzZurv6yDw1 p+ybRhyJj0wL0HhW0kGdrRoqWa/0dOndH7TfWBnKlN4vob2Z0D/txyrxzQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPqzmmWCqNA1bGP4dP7sBXzXoR0qMB8GA1UdIwQY MBaAFMgB/JlaUhrx9QLZ6vEtZiGmTK9NMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveUFIOG1WcFNHdkgxQXRucThTMW1JYVpNcjAwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi9iMDQxYjgtNmIyNC00NGYzLWE3NDgt NzJjMGQ1MDkzMzRkLzEveUFIOG1WcFNHdkgxQXRucThTMW1JYVpNcjAwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yi9iMDQxYjgtNmIyNC00NGYzLWE3NDgtNzJjMGQ1MDkzMzRk LzEveUFIOG1WcFNHdkgxQXRucThTMW1JYVpNcjAwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhRQiuiSe edVr44LaFmvmehsWCurbwR7KfWYyHWBxtqy9KokFnik6X6CxRD6DbtAjK2xghlMB zL+MNBs46xgXr9xxSiBUuTslIl39r/hxdMmzMhB7iUPrNOFJRdo+i2NkEJiGsY5h AwuRIkMy4IiPtfR0Zp81ZNJL6C6LqXE6oK5WmyeyCH5ymrt15+N0Ih+A8CxQ97xC t07XZ7BgDqs/zfw160wuADdKaEBF/5m7DT4zJppTPjfsQXgg0uRHsPsOhM2wQRw3 NT4jCrTh8R58NFZPhymkYBDw6z8AyglTuHmdogUpBNkxKrqZWLp+wb+7R1VPVZdW 2iO2v0nBpefC0A== -----END CERTIFICATE-----Generated at Thu Dec 25 03:02:38 2025 by rpki-client