This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft File: ylF4miMTWsImjCKihWAKX5sFN3A.mft (raw, json) Hash identifier: 4yD3G9WMUCJ9WT7PN/jKGo6BtCI126KTxtkLYwpaYHY= Subject key identifier: E0:CC:7E:FF:14:F6:3C:53:36:0C:FC:52:8D:52:57:3D:B8:BA:6E:DC Authority key identifier: CA:51:78:9A:23:13:5A:C2:26:8C:22:A2:85:60:0A:5F:9B:05:37:70 Certificate issuer: /CN=ca51789a23135ac2268c22a285600a5f9b053770 Certificate serial: 019B5261350278E1989D5C85D392E9F27BA4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ylF4miMTWsImjCKihWAKX5sFN3A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft Manifest number: 12FB Signing time: Wed 24 Dec 2025 22:01:00 +0000 Manifest this update: Wed 24 Dec 2025 22:01:00 +0000 Manifest next update: Thu 25 Dec 2025 22:01:00 +0000 Files and hashes: 1: HAjyOzGCAwLUy5RivV8kbOy5Vu4.roa (hash: PsK5K2sZtAdplKvTizBojj+ePHRa8hE1Sr8s/0IgHpY=) 2: ylF4miMTWsImjCKihWAKX5sFN3A.crl (hash: EWBxpPfTmoSuXzNtKhRvkt5a+QxR1g/8o/hY0fxE52M=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.crl rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft rsync://rpki.ripe.net/repository/DEFAULT/ylF4miMTWsImjCKihWAKX5sFN3A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 25 Dec 2025 18:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:52:61:35:02:78:e1:98:9d:5c:85:d3:92:e9:f2:7b:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ca51789a23135ac2268c22a285600a5f9b053770 Validity Not Before: Dec 24 22:01:00 2025 GMT Not After : Dec 25 22:01:00 2025 GMT Subject: CN=e0cc7eff14f63c53360cfc528d52573db8ba6edc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:14:b4:77:fa:ac:7b:f0:76:a1:9b:6b:94:f1: 59:dc:64:fb:59:f2:ce:b4:76:13:72:bf:65:ec:cb: e0:47:fa:3b:d7:0c:66:60:b4:e5:79:a4:32:f7:94: 55:8d:9f:64:2a:ba:ed:23:b5:31:18:22:f9:d7:ce: 95:6f:3b:13:2b:00:4c:f4:20:1a:a3:a2:97:d9:6f: 71:f9:1a:9c:98:ed:c7:a6:32:35:50:1c:da:db:4d: 98:a9:15:e7:5e:90:04:94:32:a4:82:73:95:63:6d: 7b:8d:e7:47:37:e4:33:41:b5:12:11:d3:ab:b8:f6: 08:16:e1:67:90:21:90:21:46:bb:2c:75:fc:63:cc: b6:7e:35:f1:31:5d:c9:e2:26:30:4a:1d:a4:7f:85: 19:d6:1e:79:5b:b3:e2:2b:e4:e4:3d:78:13:f7:2a: d6:98:ce:05:73:c6:95:4e:29:d9:17:d6:23:95:da: 52:35:e1:c9:3f:aa:56:28:c4:1c:21:c1:69:86:4c: 15:26:78:ee:a4:ba:f5:14:d9:2e:fa:d1:4b:bf:27: 2f:e2:a8:6a:d8:d8:7b:f0:2d:1d:16:f9:f5:2a:80: c2:6c:ca:e3:e8:85:21:6c:ab:08:22:cf:1f:c7:c4: 20:90:28:e8:39:d6:a9:94:5e:f1:da:0d:82:9e:d3: da:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:CC:7E:FF:14:F6:3C:53:36:0C:FC:52:8D:52:57:3D:B8:BA:6E:DC X509v3 Authority Key Identifier: keyid:CA:51:78:9A:23:13:5A:C2:26:8C:22:A2:85:60:0A:5F:9B:05:37:70 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ylF4miMTWsImjCKihWAKX5sFN3A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ab:14:c8:55:16:e9:f9:17:8e:51:9c:a2:d6:49:ea:f5:68:30: a2:42:9d:6a:c4:e9:34:3b:21:13:5f:e6:74:ea:25:6a:e4:04: 22:5e:c0:aa:28:f6:57:1b:57:f6:ac:7d:41:ad:cf:89:a6:d0: c6:52:15:8e:4a:dc:d3:8a:df:c6:85:53:49:23:78:14:70:71: 3a:05:f1:a7:a6:6d:e3:a2:46:9d:36:fd:8d:bb:33:11:10:a8: 1f:0a:db:c7:6c:19:81:bb:a0:fc:91:a7:17:c6:92:59:0a:36: 74:45:ff:a2:5e:bf:9c:f6:55:18:8f:4d:cb:d5:ec:b1:1e:56: b1:32:83:60:7b:9c:24:79:43:0d:d7:4a:b2:42:9a:af:f3:7a: f9:61:c9:9e:32:84:d2:e3:d6:58:ea:09:30:e1:48:ba:fb:4b: f9:89:c5:59:23:ff:70:f3:10:95:fb:61:87:ad:7d:18:d2:37: 81:57:28:08:b1:c8:b2:73:d1:ec:e7:41:9a:46:04:73:00:f0: c0:3a:4a:e8:a0:bb:26:f3:c5:ad:3c:78:20:e2:c7:c7:b2:ea: a0:f0:79:ad:17:19:09:2c:9e:0f:6b:7a:88:4f:4f:4d:a5:4e: 09:87:d4:59:3c:2d:55:07:ed:56:1a:46:2b:14:b7:59:76:a2: fc:d6:ef:ed -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtSYTUCeOGYnVyF05Lp8nukMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNhNTE3ODlhMjMxMzVhYzIyNjhjMjJhMjg1NjAwYTVmOWIw NTM3NzAwHhcNMjUxMjI0MjIwMTAwWhcNMjUxMjI1MjIwMTAwWjAzMTEwLwYDVQQD EyhlMGNjN2VmZjE0ZjYzYzUzMzYwY2ZjNTI4ZDUyNTczZGI4YmE2ZWRjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApBS0d/qse/B2oZtrlPFZ3GT7WfLO tHYTcr9l7MvgR/o71wxmYLTleaQy95RVjZ9kKrrtI7UxGCL5186VbzsTKwBM9CAa o6KX2W9x+RqcmO3HpjI1UBza202YqRXnXpAElDKkgnOVY217jedHN+QzQbUSEdOr uPYIFuFnkCGQIUa7LHX8Y8y2fjXxMV3J4iYwSh2kf4UZ1h55W7PiK+TkPXgT9yrW mM4Fc8aVTinZF9YjldpSNeHJP6pWKMQcIcFphkwVJnjupLr1FNku+tFLvycv4qhq 2Nh78C0dFvn1KoDCbMrj6IUhbKsIIs8fx8QgkCjoOdaplF7x2g2CntPaXQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFODMfv8U9jxTNgz8Uo1SVz24um7cMB8GA1UdIwQY MBaAFMpReJojE1rCJowiooVgCl+bBTdwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveWxGNG1pTVRXc0ltakNLaWhXQUtYNXNGTjNBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni9iNGJmNjAtZDU5My00MGQyLTk3ODMt MWUxOTE2OGY1ZDczLzEveWxGNG1pTVRXc0ltakNLaWhXQUtYNXNGTjNBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ni9iNGJmNjAtZDU5My00MGQyLTk3ODMtMWUxOTE2OGY1ZDcz LzEveWxGNG1pTVRXc0ltakNLaWhXQUtYNXNGTjNBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqxTIVRbp +ReOUZyi1knq9WgwokKdasTpNDshE1/mdOolauQEIl7Aqij2VxtX9qx9Qa3PiabQ xlIVjkrc04rfxoVTSSN4FHBxOgXxp6Zt46JGnTb9jbszERCoHwrbx2wZgbug/JGn F8aSWQo2dEX/ol6/nPZVGI9Ny9XssR5WsTKDYHucJHlDDddKskKar/N6+WHJnjKE 0uPWWOoJMOFIuvtL+YnFWSP/cPMQlfthh619GNI3gVcoCLHIsnPR7OdBmkYEcwDw wDpK6KC7JvPFrTx4IOLHx7LqoPB5rRcZCSyeD2t6iE9PTaVOCYfUWTwtVQftVhpG KxS3WXai/Nbv7Q== -----END CERTIFICATE-----Generated at Thu Dec 25 02:40:24 2025 by rpki-client