This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft File: ylF4miMTWsImjCKihWAKX5sFN3A.mft (raw, json) Hash identifier: olgFsICN3YlLHiPhdAwUu/OjFTfCXOzhVnowhhc0Gf0= Subject key identifier: F3:E2:C3:E8:33:B1:40:34:67:03:7F:90:3C:3A:F9:18:54:05:98:A2 Authority key identifier: CA:51:78:9A:23:13:5A:C2:26:8C:22:A2:85:60:0A:5F:9B:05:37:70 Certificate issuer: /CN=ca51789a23135ac2268c22a285600a5f9b053770 Certificate serial: 019B3F1153E20D80915C7E8D9BD757DAE782 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ylF4miMTWsImjCKihWAKX5sFN3A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft Manifest number: 12F1 Signing time: Sun 21 Dec 2025 04:00:58 +0000 Manifest this update: Sun 21 Dec 2025 04:00:58 +0000 Manifest next update: Mon 22 Dec 2025 04:00:58 +0000 Files and hashes: 1: HAjyOzGCAwLUy5RivV8kbOy5Vu4.roa (hash: PsK5K2sZtAdplKvTizBojj+ePHRa8hE1Sr8s/0IgHpY=) 2: ylF4miMTWsImjCKihWAKX5sFN3A.crl (hash: fvRkvnn1MY4cHFaE7YUBcFcdy1+HYszt7Cets6a8ODY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.crl rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft rsync://rpki.ripe.net/repository/DEFAULT/ylF4miMTWsImjCKihWAKX5sFN3A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3f:11:53:e2:0d:80:91:5c:7e:8d:9b:d7:57:da:e7:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ca51789a23135ac2268c22a285600a5f9b053770 Validity Not Before: Dec 21 04:00:58 2025 GMT Not After : Dec 22 04:00:58 2025 GMT Subject: CN=f3e2c3e833b1403467037f903c3af918540598a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:0f:f7:93:67:1d:2f:a6:98:ba:01:c9:39:54: 31:70:54:d1:08:ca:c4:b7:24:71:66:64:a5:7c:38: 25:63:64:bf:02:7c:3c:3b:0c:5a:ab:e7:67:61:d3: e9:10:c0:bc:eb:3f:95:04:1c:f7:47:1b:0d:1d:59: 28:ba:73:05:0c:f7:2d:c3:c0:c1:d6:8a:23:61:3a: a6:22:f3:d1:f9:e3:6e:4e:f3:9d:5f:e7:16:4d:bd: aa:e9:e8:05:b4:e6:bc:a5:e7:e6:60:56:c7:b8:62: 99:20:5c:98:af:e8:f2:bc:5f:c4:0e:0f:87:99:9c: 81:11:6d:be:63:f9:5e:aa:3a:e1:03:90:0f:3d:db: 35:b7:45:34:4a:00:6c:3e:78:d0:ea:1c:e2:4c:5e: b8:b6:87:a9:18:43:cd:1f:4f:d0:7d:de:97:7b:91: cf:09:9a:98:ae:6e:be:e1:94:b2:69:10:4a:91:ac: d4:c6:28:26:91:21:82:15:64:fe:35:79:b8:7e:40: 7f:69:6d:16:3c:98:b3:e4:9e:24:9c:84:c3:a5:25: d9:0e:10:0c:dc:cc:82:8b:d7:0a:56:36:ee:be:77: 05:c0:94:c7:ae:79:97:30:c0:f5:ad:52:b4:58:f3: ed:02:49:b3:17:94:4d:30:f4:2c:23:e3:5e:7b:8a: d2:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:E2:C3:E8:33:B1:40:34:67:03:7F:90:3C:3A:F9:18:54:05:98:A2 X509v3 Authority Key Identifier: keyid:CA:51:78:9A:23:13:5A:C2:26:8C:22:A2:85:60:0A:5F:9B:05:37:70 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ylF4miMTWsImjCKihWAKX5sFN3A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c1:1a:f6:aa:c6:d1:f1:53:87:ad:29:bb:41:2d:47:c5:f2:e3: 67:0b:8a:21:c1:7e:8e:ee:35:2e:eb:12:5c:f8:2a:f4:50:a6: 2b:62:52:7f:cc:31:af:0f:88:96:cf:dd:4c:6e:29:55:71:87: 2c:80:3e:db:66:72:99:27:d3:19:16:db:e2:fa:9e:e8:19:f9: 68:19:ca:7c:4f:dd:e1:24:3a:35:18:7f:a0:bb:51:6d:aa:bc: 78:fc:49:b2:f8:dc:af:1d:06:60:04:3c:cc:ce:1f:d4:8a:ed: 6b:7e:ec:23:96:de:39:68:3c:ae:f3:03:ef:9e:d4:82:89:b6: c6:a3:0b:ab:9c:fb:6e:9e:b4:d2:31:4b:64:71:e0:84:a5:48: c9:c6:dd:94:c8:91:12:5c:94:5c:a8:28:90:c9:70:41:2f:06: a5:c7:a5:5f:81:44:af:e0:cf:72:23:fa:9b:36:0e:cb:e0:57: 7c:ce:e1:72:7b:6a:da:e0:eb:af:78:85:4f:2f:98:74:c7:c2: 01:8b:56:18:ab:53:c7:66:3a:bb:f3:70:15:fd:a5:53:2c:a3: b2:7a:e9:29:cc:b4:76:28:97:da:2e:95:ac:bf:6a:8a:2d:ee: 0e:2e:56:68:e0:7f:14:6e:ed:e0:b5:55:b9:5e:bd:6d:23:3b: 25:f8:57:ab -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs/EVPiDYCRXH6Nm9dX2ueCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNhNTE3ODlhMjMxMzVhYzIyNjhjMjJhMjg1NjAwYTVmOWIw NTM3NzAwHhcNMjUxMjIxMDQwMDU4WhcNMjUxMjIyMDQwMDU4WjAzMTEwLwYDVQQD EyhmM2UyYzNlODMzYjE0MDM0NjcwMzdmOTAzYzNhZjkxODU0MDU5OGEyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlA/3k2cdL6aYugHJOVQxcFTRCMrE tyRxZmSlfDglY2S/Anw8Owxaq+dnYdPpEMC86z+VBBz3RxsNHVkounMFDPctw8DB 1oojYTqmIvPR+eNuTvOdX+cWTb2q6egFtOa8pefmYFbHuGKZIFyYr+jyvF/EDg+H mZyBEW2+Y/leqjrhA5APPds1t0U0SgBsPnjQ6hziTF64toepGEPNH0/Qfd6Xe5HP CZqYrm6+4ZSyaRBKkazUxigmkSGCFWT+NXm4fkB/aW0WPJiz5J4knITDpSXZDhAM 3MyCi9cKVjbuvncFwJTHrnmXMMD1rVK0WPPtAkmzF5RNMPQsI+Nee4rSBwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPPiw+gzsUA0ZwN/kDw6+RhUBZiiMB8GA1UdIwQY MBaAFMpReJojE1rCJowiooVgCl+bBTdwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveWxGNG1pTVRXc0ltakNLaWhXQUtYNXNGTjNBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni9iNGJmNjAtZDU5My00MGQyLTk3ODMt MWUxOTE2OGY1ZDczLzEveWxGNG1pTVRXc0ltakNLaWhXQUtYNXNGTjNBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ni9iNGJmNjAtZDU5My00MGQyLTk3ODMtMWUxOTE2OGY1ZDcz LzEveWxGNG1pTVRXc0ltakNLaWhXQUtYNXNGTjNBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAwRr2qsbR 8VOHrSm7QS1HxfLjZwuKIcF+ju41LusSXPgq9FCmK2JSf8wxrw+Ils/dTG4pVXGH LIA+22ZymSfTGRbb4vqe6Bn5aBnKfE/d4SQ6NRh/oLtRbaq8ePxJsvjcrx0GYAQ8 zM4f1Irta37sI5beOWg8rvMD757Ugom2xqMLq5z7bp600jFLZHHghKVIycbdlMiR ElyUXKgokMlwQS8GpcelX4FEr+DPciP6mzYOy+BXfM7hcntq2uDrr3iFTy+YdMfC AYtWGKtTx2Y6u/NwFf2lUyyjsnrpKcy0diiX2i6VrL9qii3uDi5WaOB/FG7t4LVV uV69bSM7JfhXqw== -----END CERTIFICATE-----Generated at Sun Dec 21 06:53:59 2025 by rpki-client