This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/1f431e-37c8-4080-9bb3-416204a02737/1/yQDj7qi7474R-IxoK9E4wmUH99w.mft File: yQDj7qi7474R-IxoK9E4wmUH99w.mft (raw, json) Hash identifier: 5l/WmQbOvYmDyIhUtWU3wHSh6mZSi3w96HCZ/Fa3c+M= Subject key identifier: EB:F8:64:17:C5:8B:C5:EE:A3:6D:A1:F8:28:AC:A7:B3:D0:98:9B:37 Authority key identifier: C9:00:E3:EE:A8:BB:E3:BE:11:F8:8C:68:2B:D1:38:C2:65:07:F7:DC Certificate issuer: /CN=c900e3eea8bbe3be11f88c682bd138c26507f7dc Certificate serial: 019B66FB418BDB4EC6236599F5D6211A353B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yQDj7qi7474R-IxoK9E4wmUH99w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/1f431e-37c8-4080-9bb3-416204a02737/1/yQDj7qi7474R-IxoK9E4wmUH99w.mft Manifest number: 0E83 Signing time: Sun 28 Dec 2025 22:01:40 +0000 Manifest this update: Sun 28 Dec 2025 22:01:40 +0000 Manifest next update: Mon 29 Dec 2025 22:01:40 +0000 Files and hashes: 1: yQDj7qi7474R-IxoK9E4wmUH99w.crl (hash: cL985LB9SinSiCq0jZbJcDsW08QYlMJboBVQxDm7PEM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5e/1f431e-37c8-4080-9bb3-416204a02737/1/yQDj7qi7474R-IxoK9E4wmUH99w.crl rsync://rpki.ripe.net/repository/DEFAULT/5e/1f431e-37c8-4080-9bb3-416204a02737/1/yQDj7qi7474R-IxoK9E4wmUH99w.mft rsync://rpki.ripe.net/repository/DEFAULT/yQDj7qi7474R-IxoK9E4wmUH99w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 29 Dec 2025 21:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:66:fb:41:8b:db:4e:c6:23:65:99:f5:d6:21:1a:35:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c900e3eea8bbe3be11f88c682bd138c26507f7dc Validity Not Before: Dec 28 22:01:40 2025 GMT Not After : Dec 29 22:01:40 2025 GMT Subject: CN=ebf86417c58bc5eea36da1f828aca7b3d0989b37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:62:38:6b:a9:41:c4:a0:d0:86:08:4a:66:b1: e0:99:b8:92:85:58:6f:10:60:10:9a:86:58:8c:d6: 1a:01:12:d9:f2:20:28:bc:7c:aa:64:f5:6f:c7:3d: d5:46:79:6a:0f:46:f4:8b:29:50:9d:3a:9a:ca:48: 0a:97:82:b5:45:b6:79:8b:c0:6b:ba:4b:7b:7b:b1: 09:c8:7b:cb:54:7e:d8:01:0a:e6:cf:0e:1a:ce:9e: 5a:b7:7a:cb:0d:dd:55:8d:2e:a8:c4:34:5d:b4:ec: 86:81:da:fb:bc:0e:82:54:56:1d:72:3b:8b:cc:f5: 44:c1:f6:80:fb:87:e0:44:3e:a1:9a:a6:37:80:00: 9a:99:f2:28:75:99:4e:50:4f:ee:2a:5f:50:94:6d: 5a:8c:2d:1e:a2:50:a1:43:15:e0:ff:4c:31:75:fd: 46:c4:3d:83:c6:fe:3a:9c:c4:c1:22:ab:38:01:79: 37:98:fc:ab:51:9a:8b:40:1b:5c:66:56:f0:14:82: 45:ae:3e:e1:53:f0:c7:ad:c9:be:17:1a:f8:5a:b5: ea:ea:df:ad:59:3f:93:67:25:69:4e:33:a0:dd:d3: 4a:1a:9d:cd:cc:73:a0:46:aa:d1:9b:8a:9a:12:58: 96:3f:60:70:9b:e9:a6:7b:43:21:df:5b:ca:82:aa: 91:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:F8:64:17:C5:8B:C5:EE:A3:6D:A1:F8:28:AC:A7:B3:D0:98:9B:37 X509v3 Authority Key Identifier: keyid:C9:00:E3:EE:A8:BB:E3:BE:11:F8:8C:68:2B:D1:38:C2:65:07:F7:DC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yQDj7qi7474R-IxoK9E4wmUH99w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/1f431e-37c8-4080-9bb3-416204a02737/1/yQDj7qi7474R-IxoK9E4wmUH99w.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/1f431e-37c8-4080-9bb3-416204a02737/1/yQDj7qi7474R-IxoK9E4wmUH99w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 27:90:4b:b6:4e:f6:c2:1c:0a:72:18:04:65:ff:24:18:fa:b5: 4d:b5:ff:6b:51:c8:a6:cd:03:9d:dc:fb:94:fd:d0:2e:2e:04: 79:34:3b:da:b7:b5:88:f5:26:10:b2:49:70:af:0a:8f:ee:46: 5c:29:61:ac:7a:63:6a:71:c0:ab:70:84:57:6b:1f:80:90:50: 9c:2a:25:b3:25:b4:48:e3:47:94:f6:68:fb:12:90:1c:8a:6a: c9:00:f7:4e:5a:6c:e6:de:63:aa:f1:80:9e:a6:d2:1e:3c:ad: 41:7b:48:da:1f:0c:94:23:39:35:da:e0:28:bc:21:ca:39:8f: 4b:66:ed:8c:cb:ef:9a:05:f0:6f:7e:39:cc:5b:d4:0f:fa:20: 89:59:e0:4f:be:18:83:43:e1:2f:7a:de:f2:e0:98:48:f6:34: 5b:04:3e:6e:bb:0e:2a:9a:4b:f6:66:17:43:5f:56:21:a0:05: 98:42:48:3b:3c:1b:d2:d1:47:92:f5:2d:b0:84:2c:37:7d:3c: 2f:d7:ca:07:61:8f:1f:99:66:c9:29:2a:06:09:c1:6b:74:64: 54:87:0a:bb:e1:44:c8:0a:2d:e5:ee:f8:86:8a:ec:c8:70:44: 61:6b:78:0a:47:28:72:b0:92:ec:7c:b7:3b:13:4b:81:61:37: d0:19:a5:08 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtm+0GL207GI2WZ9dYhGjU7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM5MDBlM2VlYThiYmUzYmUxMWY4OGM2ODJiZDEzOGMyNjUw N2Y3ZGMwHhcNMjUxMjI4MjIwMTQwWhcNMjUxMjI5MjIwMTQwWjAzMTEwLwYDVQQD EyhlYmY4NjQxN2M1OGJjNWVlYTM2ZGExZjgyOGFjYTdiM2QwOTg5YjM3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA72I4a6lBxKDQhghKZrHgmbiShVhv EGAQmoZYjNYaARLZ8iAovHyqZPVvxz3VRnlqD0b0iylQnTqaykgKl4K1RbZ5i8Br ukt7e7EJyHvLVH7YAQrmzw4azp5at3rLDd1VjS6oxDRdtOyGgdr7vA6CVFYdcjuL zPVEwfaA+4fgRD6hmqY3gACamfIodZlOUE/uKl9QlG1ajC0eolChQxXg/0wxdf1G xD2Dxv46nMTBIqs4AXk3mPyrUZqLQBtcZlbwFIJFrj7hU/DHrcm+Fxr4WrXq6t+t WT+TZyVpTjOg3dNKGp3NzHOgRqrRm4qaEliWP2Bwm+mme0Mh31vKgqqRIQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOv4ZBfFi8Xuo22h+Cisp7PQmJs3MB8GA1UdIwQY MBaAFMkA4+6ou+O+EfiMaCvROMJlB/fcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveVFEajdxaTc0NzRSLUl4b0s5RTR3bVVIOTl3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZS8xZjQzMWUtMzdjOC00MDgwLTliYjMt NDE2MjA0YTAyNzM3LzEveVFEajdxaTc0NzRSLUl4b0s5RTR3bVVIOTl3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81ZS8xZjQzMWUtMzdjOC00MDgwLTliYjMtNDE2MjA0YTAyNzM3 LzEveVFEajdxaTc0NzRSLUl4b0s5RTR3bVVIOTl3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJ5BLtk72 whwKchgEZf8kGPq1TbX/a1HIps0Dndz7lP3QLi4EeTQ72re1iPUmELJJcK8Kj+5G XClhrHpjanHAq3CEV2sfgJBQnColsyW0SONHlPZo+xKQHIpqyQD3Tlps5t5jqvGA nqbSHjytQXtI2h8MlCM5NdrgKLwhyjmPS2btjMvvmgXwb345zFvUD/ogiVngT74Y g0PhL3re8uCYSPY0WwQ+brsOKppL9mYXQ19WIaAFmEJIOzwb0tFHkvUtsIQsN308 L9fKB2GPH5lmySkqBgnBa3RkVIcKu+FEyAot5e74horsyHBEYWt4CkcocrCS7Hy3 OxNLgWE30BmlCA== -----END CERTIFICATE-----Generated at Mon Dec 29 06:51:08 2025 by rpki-client