This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/76759e-3964-4c4f-876b-bc475d008869/1/ym3NrZkpBFbG18GOscBY2UEIiAE.mft File: ym3NrZkpBFbG18GOscBY2UEIiAE.mft (raw, json) Hash identifier: evHn7Vh47HDxCuQxDlLytf029NdBbWbCVE0oVfF9Kmc= Subject key identifier: 82:59:2D:2A:5D:CA:55:B8:AF:16:6A:18:16:50:15:35:A9:B0:F0:D8 Authority key identifier: CA:6D:CD:AD:99:29:04:56:C6:D7:C1:8E:B1:C0:58:D9:41:08:88:01 Certificate issuer: /CN=ca6dcdad99290456c6d7c18eb1c058d941088801 Certificate serial: 019B514E2C43DB09CE21FC8BB99584DCBEA6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ym3NrZkpBFbG18GOscBY2UEIiAE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/76759e-3964-4c4f-876b-bc475d008869/1/ym3NrZkpBFbG18GOscBY2UEIiAE.mft Manifest number: 1735 Signing time: Wed 24 Dec 2025 17:00:36 +0000 Manifest this update: Wed 24 Dec 2025 17:00:36 +0000 Manifest next update: Thu 25 Dec 2025 17:00:36 +0000 Files and hashes: 1: Vm2xySa3TZzRcufAzxt4hRBLNss.roa (hash: O5+b4nw4CSapOt9ANvlpqmvnfoL7HE4era1klJG6PPo=) 2: ym3NrZkpBFbG18GOscBY2UEIiAE.crl (hash: bqVsQe/UuVE5gEXLyL0+anEt2vPCEHVSR8oWK8btM0o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/76759e-3964-4c4f-876b-bc475d008869/1/ym3NrZkpBFbG18GOscBY2UEIiAE.crl rsync://rpki.ripe.net/repository/DEFAULT/5f/76759e-3964-4c4f-876b-bc475d008869/1/ym3NrZkpBFbG18GOscBY2UEIiAE.mft rsync://rpki.ripe.net/repository/DEFAULT/ym3NrZkpBFbG18GOscBY2UEIiAE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 25 Dec 2025 14:30:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:51:4e:2c:43:db:09:ce:21:fc:8b:b9:95:84:dc:be:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ca6dcdad99290456c6d7c18eb1c058d941088801 Validity Not Before: Dec 24 17:00:36 2025 GMT Not After : Dec 25 17:00:36 2025 GMT Subject: CN=82592d2a5dca55b8af166a1816501535a9b0f0d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:f1:70:29:57:03:d7:66:f5:09:dc:0b:94:34: 4d:e8:31:7c:29:88:80:58:8a:1d:c9:66:0a:4e:a6: 69:8b:5a:99:b9:89:a3:2a:e4:63:c9:7c:64:94:fe: 0f:6f:e6:40:f9:02:7f:b4:b7:9b:7d:a1:68:44:50: bf:3f:c6:f4:73:6d:7f:03:a0:bd:fd:ae:b8:97:72: 24:39:18:3d:d0:be:90:a8:ee:bf:c9:1d:85:16:c1: 91:aa:e6:94:17:6d:ed:c6:6b:eb:91:e2:db:05:38: ff:b8:ed:78:97:13:cd:b3:96:2e:45:d4:98:6a:d9: 0e:3f:21:56:0a:2a:2a:4c:2e:a0:0b:bf:1d:13:9e: bd:9b:48:24:99:98:ea:9b:7f:8d:74:03:dc:14:e5: 42:ca:26:5e:91:c9:95:6d:da:30:87:c6:56:4f:d7: b5:63:7a:4c:ba:c6:13:1a:30:bc:2a:88:e4:0a:cb: 7d:de:c9:f3:0a:37:89:ca:2f:a5:0e:98:92:a5:34: 2c:d9:92:44:83:1c:c5:7c:e0:0c:86:f9:51:93:ec: fd:f7:32:bc:96:f1:d1:a1:7f:65:75:26:5c:4e:ff: 53:f5:d2:f7:e1:70:e4:ed:d5:fb:35:51:1e:ba:e2: 6a:59:7e:77:35:42:66:40:fd:18:75:3d:44:e0:4a: de:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:59:2D:2A:5D:CA:55:B8:AF:16:6A:18:16:50:15:35:A9:B0:F0:D8 X509v3 Authority Key Identifier: keyid:CA:6D:CD:AD:99:29:04:56:C6:D7:C1:8E:B1:C0:58:D9:41:08:88:01 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ym3NrZkpBFbG18GOscBY2UEIiAE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/76759e-3964-4c4f-876b-bc475d008869/1/ym3NrZkpBFbG18GOscBY2UEIiAE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/76759e-3964-4c4f-876b-bc475d008869/1/ym3NrZkpBFbG18GOscBY2UEIiAE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 70:90:57:64:33:14:75:ce:a1:2f:11:cd:2f:a5:c4:16:b1:88: 05:28:3c:6e:2a:d0:c0:7a:77:c4:19:27:36:6a:a6:24:57:12: b7:f9:00:28:25:55:38:20:e8:0e:28:bf:2c:d7:47:98:79:7e: 04:85:c9:06:87:8f:e8:8a:cb:c4:0b:d8:a2:fa:34:84:fb:75: 72:6b:0a:9b:70:22:7e:f7:85:25:9f:ae:b0:9d:1c:57:e7:23: cf:f4:9d:5a:cf:e9:00:8e:4a:f9:61:f8:a3:33:a7:dc:2e:04: 7f:37:ec:36:38:5a:4a:fd:b2:2c:b4:7e:bd:21:f9:25:9e:78: e3:75:d4:d2:a6:84:9a:30:e4:b2:94:5a:20:d3:2b:78:60:be: 68:1f:99:5b:87:1a:13:75:cd:dd:3e:73:97:f7:ab:dd:7d:3a: d0:a1:13:93:4e:b4:0f:3c:01:96:ce:60:fb:3d:3f:20:55:b8: 48:42:13:3e:c0:1c:73:16:81:2b:65:56:60:df:3e:fb:a6:bb: 2a:7a:dd:bb:b1:d0:94:5b:f4:70:50:49:fb:9e:1c:a3:c0:3d: 56:bd:d1:eb:a8:0b:69:e5:c2:75:9e:1a:5c:c9:d9:e6:2c:90: b8:e2:d6:41:e3:2c:ec:be:40:63:c7:57:b1:48:66:66:e7:b8: 00:03:1f:b7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtRTixD2wnOIfyLuZWE3L6mMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNhNmRjZGFkOTkyOTA0NTZjNmQ3YzE4ZWIxYzA1OGQ5NDEw ODg4MDEwHhcNMjUxMjI0MTcwMDM2WhcNMjUxMjI1MTcwMDM2WjAzMTEwLwYDVQQD Eyg4MjU5MmQyYTVkY2E1NWI4YWYxNjZhMTgxNjUwMTUzNWE5YjBmMGQ4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsfFwKVcD12b1CdwLlDRN6DF8KYiA WIodyWYKTqZpi1qZuYmjKuRjyXxklP4Pb+ZA+QJ/tLebfaFoRFC/P8b0c21/A6C9 /a64l3IkORg90L6QqO6/yR2FFsGRquaUF23txmvrkeLbBTj/uO14lxPNs5YuRdSY atkOPyFWCioqTC6gC78dE569m0gkmZjqm3+NdAPcFOVCyiZekcmVbdowh8ZWT9e1 Y3pMusYTGjC8KojkCst93snzCjeJyi+lDpiSpTQs2ZJEgxzFfOAMhvlRk+z99zK8 lvHRoX9ldSZcTv9T9dL34XDk7dX7NVEeuuJqWX53NUJmQP0YdT1E4EreJwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIJZLSpdylW4rxZqGBZQFTWpsPDYMB8GA1UdIwQY MBaAFMptza2ZKQRWxtfBjrHAWNlBCIgBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveW0zTnJaa3BCRmJHMThHT3NjQlkyVUVJaUFFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi83Njc1OWUtMzk2NC00YzRmLTg3NmIt YmM0NzVkMDA4ODY5LzEveW0zTnJaa3BCRmJHMThHT3NjQlkyVUVJaUFFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Zi83Njc1OWUtMzk2NC00YzRmLTg3NmItYmM0NzVkMDA4ODY5 LzEveW0zTnJaa3BCRmJHMThHT3NjQlkyVUVJaUFFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcJBXZDMU dc6hLxHNL6XEFrGIBSg8birQwHp3xBknNmqmJFcSt/kAKCVVOCDoDii/LNdHmHl+ BIXJBoeP6IrLxAvYovo0hPt1cmsKm3AifveFJZ+usJ0cV+cjz/SdWs/pAI5K+WH4 ozOn3C4EfzfsNjhaSv2yLLR+vSH5JZ5443XU0qaEmjDkspRaINMreGC+aB+ZW4ca E3XN3T5zl/er3X060KETk060DzwBls5g+z0/IFW4SEITPsAccxaBK2VWYN8++6a7 Knrdu7HQlFv0cFBJ+54co8A9Vr3R66gLaeXCdZ4aXMnZ5iyQuOLWQeMs7L5AY8dX sUhmZue4AAMftw== -----END CERTIFICATE-----Generated at Wed Dec 24 23:30:02 2025 by rpki-client