This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/76759e-3964-4c4f-876b-bc475d008869/1/ym3NrZkpBFbG18GOscBY2UEIiAE.mft File: ym3NrZkpBFbG18GOscBY2UEIiAE.mft (raw, json) Hash identifier: TpL+vdVfOVbXRzb7d+insfhB6PPY1US91QuwGhAK0oM= Subject key identifier: C9:72:66:57:90:01:06:48:BC:60:60:79:CF:AF:99:C3:31:DD:92:11 Authority key identifier: CA:6D:CD:AD:99:29:04:56:C6:D7:C1:8E:B1:C0:58:D9:41:08:88:01 Certificate issuer: /CN=ca6dcdad99290456c6d7c18eb1c058d941088801 Certificate serial: 019B5AF669804F9F2F6D62741C5B0428EC4D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ym3NrZkpBFbG18GOscBY2UEIiAE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/76759e-3964-4c4f-876b-bc475d008869/1/ym3NrZkpBFbG18GOscBY2UEIiAE.mft Manifest number: 173A Signing time: Fri 26 Dec 2025 14:00:56 +0000 Manifest this update: Fri 26 Dec 2025 14:00:56 +0000 Manifest next update: Sat 27 Dec 2025 14:00:56 +0000 Files and hashes: 1: Vm2xySa3TZzRcufAzxt4hRBLNss.roa (hash: O5+b4nw4CSapOt9ANvlpqmvnfoL7HE4era1klJG6PPo=) 2: ym3NrZkpBFbG18GOscBY2UEIiAE.crl (hash: m3pMHUsQPWVq27SNFrvibssCZ4UIAaNnIiozRjkthlo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/76759e-3964-4c4f-876b-bc475d008869/1/ym3NrZkpBFbG18GOscBY2UEIiAE.crl rsync://rpki.ripe.net/repository/DEFAULT/5f/76759e-3964-4c4f-876b-bc475d008869/1/ym3NrZkpBFbG18GOscBY2UEIiAE.mft rsync://rpki.ripe.net/repository/DEFAULT/ym3NrZkpBFbG18GOscBY2UEIiAE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 14:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5a:f6:69:80:4f:9f:2f:6d:62:74:1c:5b:04:28:ec:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ca6dcdad99290456c6d7c18eb1c058d941088801 Validity Not Before: Dec 26 14:00:56 2025 GMT Not After : Dec 27 14:00:56 2025 GMT Subject: CN=c972665790010648bc606079cfaf99c331dd9211 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:2b:e1:4f:f4:8a:bc:9c:39:5c:d4:e2:e5:0d: 01:57:1b:4b:dd:c8:77:a3:7c:d0:04:33:1a:e3:a9: fa:5b:a0:8d:51:8e:5c:24:f9:4c:26:76:b4:10:66: a0:4f:eb:0a:f9:63:59:ab:17:9f:3b:97:0c:d4:5e: 93:88:9f:41:89:95:14:bf:25:b7:ec:66:1f:2d:21: 3b:9f:81:d6:59:25:c8:e2:1c:b6:e7:9e:0a:4a:ff: 78:aa:85:c1:0a:c1:81:12:a1:24:aa:d3:20:40:db: a2:8d:ce:50:46:4b:d4:20:3c:d4:49:56:a6:c0:b1: 50:6a:9e:7b:92:09:51:c1:8b:eb:9e:da:c2:49:e0: b8:0f:98:43:62:73:7f:7d:94:bf:5c:66:b4:a2:d4: e5:9e:58:d0:85:34:01:3b:5b:2f:34:46:36:65:fb: 98:cf:4b:88:7d:4c:da:09:4b:00:4f:df:7f:ee:2d: 5d:02:5e:91:37:79:10:59:0b:48:ca:cb:74:8e:65: 00:83:b0:dd:b5:ea:8f:b0:72:df:11:6c:05:f4:e5: 01:a3:40:9d:d5:5b:69:ec:cf:a6:3e:0c:07:3b:d9: d3:ff:2b:b3:f6:81:0b:08:bf:24:dd:86:7f:37:48: cf:23:b2:72:d9:e5:8f:dc:5e:3a:9c:7c:00:53:21: b4:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:72:66:57:90:01:06:48:BC:60:60:79:CF:AF:99:C3:31:DD:92:11 X509v3 Authority Key Identifier: keyid:CA:6D:CD:AD:99:29:04:56:C6:D7:C1:8E:B1:C0:58:D9:41:08:88:01 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ym3NrZkpBFbG18GOscBY2UEIiAE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/76759e-3964-4c4f-876b-bc475d008869/1/ym3NrZkpBFbG18GOscBY2UEIiAE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/76759e-3964-4c4f-876b-bc475d008869/1/ym3NrZkpBFbG18GOscBY2UEIiAE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2d:6b:b4:b6:ae:fa:3b:ea:46:0e:a8:0f:c5:6f:e0:c1:4e:80: 80:07:d0:71:c3:5c:c9:9d:76:b0:b3:56:85:19:71:69:39:88: 2d:79:3f:58:3b:c9:c8:31:f7:a2:59:6f:53:2f:36:b9:8f:d5: 57:3f:87:1a:b2:4c:34:5f:e8:d2:0c:41:3a:2c:52:ef:31:aa: 96:73:39:72:96:e0:5d:a1:f4:85:69:77:9a:ac:85:7f:8c:42: 20:27:74:7d:e7:8e:6f:11:c6:3f:2d:24:95:2b:3a:44:e7:c8: c9:07:d3:b4:cb:ce:ab:55:9e:b0:0f:26:46:3e:5b:82:b7:4c: 6e:2a:49:a5:dc:f5:d3:ba:60:29:f0:f9:e1:61:9c:97:42:1f: bb:70:c3:a7:d7:c1:59:03:28:df:28:cc:c1:99:c0:9c:37:55: 72:56:a9:43:b9:7e:2c:bd:e5:5e:48:18:92:13:8b:58:51:be: 72:c1:cd:6a:fd:e6:c1:4b:7d:16:27:80:29:33:07:12:0e:c8: 7b:06:5b:c0:ec:0b:7c:fa:dd:ca:86:ce:4d:90:7f:1e:a1:b8: 3b:26:08:e5:90:74:1c:83:af:67:16:60:30:9e:fe:4c:23:d3: 57:76:26:f4:93:af:7c:87:ff:ab:10:1c:82:c9:c2:e8:72:d8: d2:ef:ed:4b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZta9mmAT58vbWJ0HFsEKOxNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNhNmRjZGFkOTkyOTA0NTZjNmQ3YzE4ZWIxYzA1OGQ5NDEw ODg4MDEwHhcNMjUxMjI2MTQwMDU2WhcNMjUxMjI3MTQwMDU2WjAzMTEwLwYDVQQD EyhjOTcyNjY1NzkwMDEwNjQ4YmM2MDYwNzljZmFmOTljMzMxZGQ5MjExMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoyvhT/SKvJw5XNTi5Q0BVxtL3ch3 o3zQBDMa46n6W6CNUY5cJPlMJna0EGagT+sK+WNZqxefO5cM1F6TiJ9BiZUUvyW3 7GYfLSE7n4HWWSXI4hy2554KSv94qoXBCsGBEqEkqtMgQNuijc5QRkvUIDzUSVam wLFQap57kglRwYvrntrCSeC4D5hDYnN/fZS/XGa0otTlnljQhTQBO1svNEY2ZfuY z0uIfUzaCUsAT99/7i1dAl6RN3kQWQtIyst0jmUAg7DdteqPsHLfEWwF9OUBo0Cd 1Vtp7M+mPgwHO9nT/yuz9oELCL8k3YZ/N0jPI7Jy2eWP3F46nHwAUyG05wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMlyZleQAQZIvGBgec+vmcMx3ZIRMB8GA1UdIwQY MBaAFMptza2ZKQRWxtfBjrHAWNlBCIgBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveW0zTnJaa3BCRmJHMThHT3NjQlkyVUVJaUFFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi83Njc1OWUtMzk2NC00YzRmLTg3NmIt YmM0NzVkMDA4ODY5LzEveW0zTnJaa3BCRmJHMThHT3NjQlkyVUVJaUFFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Zi83Njc1OWUtMzk2NC00YzRmLTg3NmItYmM0NzVkMDA4ODY5 LzEveW0zTnJaa3BCRmJHMThHT3NjQlkyVUVJaUFFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALWu0tq76 O+pGDqgPxW/gwU6AgAfQccNcyZ12sLNWhRlxaTmILXk/WDvJyDH3ollvUy82uY/V Vz+HGrJMNF/o0gxBOixS7zGqlnM5cpbgXaH0hWl3mqyFf4xCICd0feeObxHGPy0k lSs6ROfIyQfTtMvOq1WesA8mRj5bgrdMbipJpdz107pgKfD54WGcl0Ifu3DDp9fB WQMo3yjMwZnAnDdVclapQ7l+LL3lXkgYkhOLWFG+csHNav3mwUt9FieAKTMHEg7I ewZbwOwLfPrdyobOTZB/HqG4OyYI5ZB0HIOvZxZgMJ7+TCPTV3Ym9JOvfIf/qxAc gsnC6HLY0u/tSw== -----END CERTIFICATE-----Generated at Fri Dec 26 23:12:03 2025 by rpki-client