This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/9947b6-34bc-477e-8816-2e28b96498a9/1/ymRB2dgH4NeM51IToQNADuFKfNw.mft File: ymRB2dgH4NeM51IToQNADuFKfNw.mft (raw, json) Hash identifier: BUUF4QPw+nYDqEP6cnOvoqj81mUw0BX9xOf/NE1mSNw= Subject key identifier: D6:B8:AA:5A:5C:0E:E4:9F:EB:14:6C:1B:7E:42:E4:FF:81:A8:30:B8 Authority key identifier: CA:64:41:D9:D8:07:E0:D7:8C:E7:52:13:A1:03:40:0E:E1:4A:7C:DC Certificate issuer: /CN=ca6441d9d807e0d78ce75213a103400ee14a7cdc Certificate serial: 019B39B4107865374B8DE170C267919470EC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ymRB2dgH4NeM51IToQNADuFKfNw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/9947b6-34bc-477e-8816-2e28b96498a9/1/ymRB2dgH4NeM51IToQNADuFKfNw.mft Manifest number: 02FB Signing time: Sat 20 Dec 2025 03:01:00 +0000 Manifest this update: Sat 20 Dec 2025 03:01:00 +0000 Manifest next update: Sun 21 Dec 2025 03:01:00 +0000 Files and hashes: 1: NjHgFN-bgeuMrrhH0PuX7QntI6w.roa (hash: 8CuzTrfsWZs7k9//TsAfabS5/PhcTs42plQ9YsHXHIY=) 2: QTI2jWOE2hcS0P8FvwS3gPaVuSY.roa (hash: ym/RyiFastWTZGcEp8UN9E30CRk6eCzYsSVGPj7ydGQ=) 3: aO_whLt90j7emxpJJj2cDf7ZJOg.roa (hash: p39kDWxY5GmkiU51YIoY0fQ+QLGvMq74UJt/qetIBDg=) 4: ciHagOHLSoKpc1FusaVxL3_Ptq8.roa (hash: qVZyRrrycJITJq8e+Oqg9n1s/m1DGfbQ92cmAOV1Z5A=) 5: hebYL6M-z610FLivX7dM3OowSRU.roa (hash: IcjCerJ7GmqoXjZHtfS/CxBpCm6nwEU8LVGTcI76v2s=) 6: lhj_M8rEkQSJwVv1yErO59O5n_8.roa (hash: xGs/2/KINx9gwhsGdLRhMgCHL3pZEAIZqG8TlXFn9lc=) 7: qxGJPGhPdavkt3fDlmKOC0R6Ufk.roa (hash: V4CR5QSqFwKQtj1zVlfNBmPaneN3PqkC+1ZuaxUJeBM=) 8: xIyXjBVQ6PY7db0-kU0MPNqfG_k.roa (hash: hoQlQ49AMRXyr8IYH6xHVURJ84d0LGLOqucCIHUfGFM=) 9: ymRB2dgH4NeM51IToQNADuFKfNw.crl (hash: jyw1+cuGhfv/WOpOSnoRdR7MsyHkctkOd1xVDtwVaS4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/9947b6-34bc-477e-8816-2e28b96498a9/1/ymRB2dgH4NeM51IToQNADuFKfNw.crl rsync://rpki.ripe.net/repository/DEFAULT/5d/9947b6-34bc-477e-8816-2e28b96498a9/1/ymRB2dgH4NeM51IToQNADuFKfNw.mft rsync://rpki.ripe.net/repository/DEFAULT/ymRB2dgH4NeM51IToQNADuFKfNw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 01:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:39:b4:10:78:65:37:4b:8d:e1:70:c2:67:91:94:70:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ca6441d9d807e0d78ce75213a103400ee14a7cdc Validity Not Before: Dec 20 03:01:00 2025 GMT Not After : Dec 21 03:01:00 2025 GMT Subject: CN=d6b8aa5a5c0ee49feb146c1b7e42e4ff81a830b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:8d:65:dd:c0:ec:dc:a9:d6:d1:39:88:1f:75: b2:34:64:dd:b8:28:ac:35:fa:e4:c2:59:5d:22:98: 7d:89:b6:4e:51:dd:7d:ff:92:57:d1:e6:b1:37:11: e8:db:8a:18:cf:c3:15:f0:f8:ae:71:63:85:2f:d0: e0:12:b5:4e:66:37:90:7d:85:dd:dd:77:46:5c:55: 22:fc:d7:93:5d:4e:64:7f:31:2d:9b:48:57:48:f2: 8f:66:d2:ca:67:3d:3a:bf:46:bd:8c:3c:6e:25:b2: 99:e3:20:39:df:0c:bc:d5:d9:94:59:58:5c:2e:90: e5:60:87:48:3d:2b:55:d9:38:bf:aa:af:8c:26:49: 8b:c5:2d:cc:5c:96:61:da:90:86:ca:47:bb:ad:04: d3:56:23:b3:e0:10:9e:6f:d3:b1:77:32:50:f7:a9: 71:c8:7a:f6:90:50:b9:44:88:77:4e:91:48:6f:4f: 9a:d4:50:19:38:92:55:0d:94:be:1c:ac:1d:3f:f8: b4:11:b7:ae:26:46:10:24:1b:46:08:48:34:f9:29: f5:38:78:c0:ae:59:ce:ef:92:50:cd:bd:ba:de:5a: 6c:8d:42:d4:0d:61:e6:f2:55:3c:0a:44:44:84:10: d1:d9:f9:c9:ee:24:fb:bf:78:21:d4:74:de:e7:25: ce:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:B8:AA:5A:5C:0E:E4:9F:EB:14:6C:1B:7E:42:E4:FF:81:A8:30:B8 X509v3 Authority Key Identifier: keyid:CA:64:41:D9:D8:07:E0:D7:8C:E7:52:13:A1:03:40:0E:E1:4A:7C:DC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ymRB2dgH4NeM51IToQNADuFKfNw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/9947b6-34bc-477e-8816-2e28b96498a9/1/ymRB2dgH4NeM51IToQNADuFKfNw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/9947b6-34bc-477e-8816-2e28b96498a9/1/ymRB2dgH4NeM51IToQNADuFKfNw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 38:ac:12:60:ca:3d:03:fa:92:65:bc:22:73:99:62:d1:fe:5d: 34:f9:93:b9:97:50:17:38:3b:b9:f1:2d:b4:9a:6b:8c:70:6c: 02:08:25:e8:ae:53:97:e0:8b:90:57:98:59:a6:5f:c8:b5:fe: 5a:6f:e9:8c:1d:03:34:69:2e:69:ee:a0:b3:58:c1:ea:18:d8: 00:4a:c7:16:2f:90:c9:ba:2d:5d:9f:d7:4a:7e:86:6c:45:40: d9:7d:6e:7c:45:ea:ed:b6:59:d1:5e:f3:44:4d:24:6f:09:ec: d2:ec:a0:62:fb:82:b7:b3:ed:5f:9b:37:65:10:b6:cf:4a:1e: 1b:cf:09:1d:fc:11:bd:5c:a0:ac:c7:0f:12:67:10:4f:e2:a1: a4:3b:8b:a4:eb:8d:d3:75:c0:c4:21:b1:f4:ef:89:50:1d:b2: 69:83:cb:bb:82:25:b2:f1:57:ae:75:1c:e4:fb:43:7f:98:e6: e0:ad:68:3f:ff:0c:51:23:fb:44:ec:bc:58:a4:ed:33:0c:48: cb:61:47:35:48:4d:3c:27:16:c2:75:e4:2b:d6:8d:41:04:fc: 83:b5:90:d3:11:4b:62:4b:6a:3b:67:dd:d6:c2:57:c5:0e:e1: c0:3c:17:99:e6:6a:75:fe:27:8d:a0:91:72:ab:52:70:5c:92: f2:f9:a4:28 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs5tBB4ZTdLjeFwwmeRlHDsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNhNjQ0MWQ5ZDgwN2UwZDc4Y2U3NTIxM2ExMDM0MDBlZTE0 YTdjZGMwHhcNMjUxMjIwMDMwMTAwWhcNMjUxMjIxMDMwMTAwWjAzMTEwLwYDVQQD EyhkNmI4YWE1YTVjMGVlNDlmZWIxNDZjMWI3ZTQyZTRmZjgxYTgzMGI4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0Y1l3cDs3KnW0TmIH3WyNGTduCis NfrkwlldIph9ibZOUd19/5JX0eaxNxHo24oYz8MV8PiucWOFL9DgErVOZjeQfYXd 3XdGXFUi/NeTXU5kfzEtm0hXSPKPZtLKZz06v0a9jDxuJbKZ4yA53wy81dmUWVhc LpDlYIdIPStV2Ti/qq+MJkmLxS3MXJZh2pCGyke7rQTTViOz4BCeb9OxdzJQ96lx yHr2kFC5RIh3TpFIb0+a1FAZOJJVDZS+HKwdP/i0EbeuJkYQJBtGCEg0+Sn1OHjA rlnO75JQzb263lpsjULUDWHm8lU8CkREhBDR2fnJ7iT7v3gh1HTe5yXOfQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNa4qlpcDuSf6xRsG35C5P+BqDC4MB8GA1UdIwQY MBaAFMpkQdnYB+DXjOdSE6EDQA7hSnzcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveW1SQjJkZ0g0TmVNNTFJVG9RTkFEdUZLZk53LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC85OTQ3YjYtMzRiYy00NzdlLTg4MTYt MmUyOGI5NjQ5OGE5LzEveW1SQjJkZ0g0TmVNNTFJVG9RTkFEdUZLZk53Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81ZC85OTQ3YjYtMzRiYy00NzdlLTg4MTYtMmUyOGI5NjQ5OGE5 LzEveW1SQjJkZ0g0TmVNNTFJVG9RTkFEdUZLZk53LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOKwSYMo9 A/qSZbwic5li0f5dNPmTuZdQFzg7ufEttJprjHBsAggl6K5Tl+CLkFeYWaZfyLX+ Wm/pjB0DNGkuae6gs1jB6hjYAErHFi+QybotXZ/XSn6GbEVA2X1ufEXq7bZZ0V7z RE0kbwns0uygYvuCt7PtX5s3ZRC2z0oeG88JHfwRvVygrMcPEmcQT+KhpDuLpOuN 03XAxCGx9O+JUB2yaYPLu4IlsvFXrnUc5PtDf5jm4K1oP/8MUSP7ROy8WKTtMwxI y2FHNUhNPCcWwnXkK9aNQQT8g7WQ0xFLYktqO2fd1sJXxQ7hwDwXmeZqdf4njaCR cqtScFyS8vmkKA== -----END CERTIFICATE-----Generated at Sat Dec 20 09:43:51 2025 by rpki-client