This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft File: ylF4miMTWsImjCKihWAKX5sFN3A.mft (raw, json) Hash identifier: 72M3Ct7wi646yTXTlNsHmBsx9wJ89cslCyRYTVHnBSM= Subject key identifier: 0E:D1:30:AE:56:5A:5C:2E:E8:87:45:D1:DB:FC:96:E0:DC:BD:07:0C Authority key identifier: CA:51:78:9A:23:13:5A:C2:26:8C:22:A2:85:60:0A:5F:9B:05:37:70 Certificate issuer: /CN=ca51789a23135ac2268c22a285600a5f9b053770 Certificate serial: 019B3D236AA9C29CC87CA7977EDC3AF604F0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ylF4miMTWsImjCKihWAKX5sFN3A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft Manifest number: 12F0 Signing time: Sat 20 Dec 2025 19:01:29 +0000 Manifest this update: Sat 20 Dec 2025 19:01:29 +0000 Manifest next update: Sun 21 Dec 2025 19:01:29 +0000 Files and hashes: 1: HAjyOzGCAwLUy5RivV8kbOy5Vu4.roa (hash: PsK5K2sZtAdplKvTizBojj+ePHRa8hE1Sr8s/0IgHpY=) 2: ylF4miMTWsImjCKihWAKX5sFN3A.crl (hash: 6Xo7JtJsjpJBdudyhwW1xWzoo0Hr/t/uILU4VFBCeT4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.crl rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft rsync://rpki.ripe.net/repository/DEFAULT/ylF4miMTWsImjCKihWAKX5sFN3A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 15:46:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3d:23:6a:a9:c2:9c:c8:7c:a7:97:7e:dc:3a:f6:04:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ca51789a23135ac2268c22a285600a5f9b053770 Validity Not Before: Dec 20 19:01:29 2025 GMT Not After : Dec 21 19:01:29 2025 GMT Subject: CN=0ed130ae565a5c2ee88745d1dbfc96e0dcbd070c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:3b:6d:8e:f4:a1:0f:4c:aa:a8:3b:97:00:42: 6b:75:4d:b1:30:67:ad:92:ec:98:33:c2:06:f8:78: 1a:57:59:ea:6f:db:2d:3b:8b:ae:7b:64:6f:16:0e: 93:8a:25:90:5a:01:1a:aa:4a:d1:43:fc:98:ee:a3: b1:37:55:40:01:4e:40:1e:dd:43:5a:57:a0:3c:29: 7c:81:7e:0d:96:4b:ab:5e:4a:73:f6:75:ac:cf:67: d1:ad:0e:4b:43:09:1f:07:2f:e0:94:14:b6:87:ae: d3:47:b4:7f:f2:ba:5e:3c:68:fa:38:06:87:11:87: ec:e7:9c:a0:90:ea:6f:85:24:ed:3e:bb:e3:5f:69: 9a:3d:16:ad:7d:f1:d2:22:f4:8b:c2:8a:ba:84:d0: 9d:95:bc:44:e0:95:78:b9:27:4b:7f:80:59:52:de: a3:41:c8:69:e6:cc:8f:2a:f3:ff:5e:4f:09:8a:0d: 13:72:3a:5d:20:ed:e2:f9:6f:77:8d:53:22:98:15: 23:b5:11:ec:36:00:ad:41:19:3a:21:da:3f:1b:98: 90:97:69:de:b7:1b:79:e2:9f:fc:fc:a0:56:d7:a8: 9b:b4:c5:16:a9:e4:24:4e:06:a8:26:99:99:3e:b6: 7c:6d:bd:ed:72:11:a1:d9:2d:7b:04:55:7c:ab:86: 60:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:D1:30:AE:56:5A:5C:2E:E8:87:45:D1:DB:FC:96:E0:DC:BD:07:0C X509v3 Authority Key Identifier: keyid:CA:51:78:9A:23:13:5A:C2:26:8C:22:A2:85:60:0A:5F:9B:05:37:70 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ylF4miMTWsImjCKihWAKX5sFN3A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 06:78:05:2b:66:47:bf:18:5c:c5:20:07:5a:65:fe:c0:a6:05: 9a:84:d5:aa:1c:10:5d:51:8e:f8:2d:45:e2:51:45:32:af:b9: d0:c7:ab:14:cc:fb:fd:55:90:66:e0:de:aa:7e:56:78:fe:dc: 20:b9:ed:76:0d:42:e2:92:77:cb:61:69:d3:1d:02:55:e9:af: 07:ba:cd:82:0f:cd:02:a1:e2:ff:4c:c3:7c:59:4a:5e:19:5c: d7:0c:e6:26:49:22:ca:5e:d1:52:e2:5e:3e:df:82:2e:b4:d3: 84:22:9d:56:2e:bd:2c:47:cd:08:71:a7:0b:36:a6:e8:1b:86: 31:82:39:0b:69:a2:03:0d:e1:bd:a3:44:ab:66:f8:3b:74:6f: 0a:67:2f:8c:e6:fb:04:f0:8e:a1:65:fa:a4:eb:de:6a:1b:bb: 70:38:e3:11:6a:55:22:84:88:49:de:68:08:32:af:88:97:05: 10:b3:0e:5a:1c:67:39:11:73:a5:9e:3c:36:0f:7f:ad:a3:53: 7b:f0:aa:08:73:24:ba:6c:cb:e4:dc:7d:5e:55:05:11:a4:df: 63:3c:74:32:70:97:25:72:bc:9c:3d:60:80:6c:e2:f9:79:8d: c0:3e:fb:39:fb:4c:41:c1:17:d4:9b:00:52:dd:da:53:0e:a7: 8a:73:f3:cb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs9I2qpwpzIfKeXftw69gTwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNhNTE3ODlhMjMxMzVhYzIyNjhjMjJhMjg1NjAwYTVmOWIw NTM3NzAwHhcNMjUxMjIwMTkwMTI5WhcNMjUxMjIxMTkwMTI5WjAzMTEwLwYDVQQD EygwZWQxMzBhZTU2NWE1YzJlZTg4NzQ1ZDFkYmZjOTZlMGRjYmQwNzBjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzDttjvShD0yqqDuXAEJrdU2xMGet kuyYM8IG+HgaV1nqb9stO4uue2RvFg6TiiWQWgEaqkrRQ/yY7qOxN1VAAU5AHt1D WlegPCl8gX4NlkurXkpz9nWsz2fRrQ5LQwkfBy/glBS2h67TR7R/8rpePGj6OAaH EYfs55ygkOpvhSTtPrvjX2maPRatffHSIvSLwoq6hNCdlbxE4JV4uSdLf4BZUt6j Qchp5syPKvP/Xk8Jig0TcjpdIO3i+W93jVMimBUjtRHsNgCtQRk6Ido/G5iQl2ne txt54p/8/KBW16ibtMUWqeQkTgaoJpmZPrZ8bb3tchGh2S17BFV8q4ZgsQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFA7RMK5WWlwu6IdF0dv8luDcvQcMMB8GA1UdIwQY MBaAFMpReJojE1rCJowiooVgCl+bBTdwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveWxGNG1pTVRXc0ltakNLaWhXQUtYNXNGTjNBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni9iNGJmNjAtZDU5My00MGQyLTk3ODMt MWUxOTE2OGY1ZDczLzEveWxGNG1pTVRXc0ltakNLaWhXQUtYNXNGTjNBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ni9iNGJmNjAtZDU5My00MGQyLTk3ODMtMWUxOTE2OGY1ZDcz LzEveWxGNG1pTVRXc0ltakNLaWhXQUtYNXNGTjNBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABngFK2ZH vxhcxSAHWmX+wKYFmoTVqhwQXVGO+C1F4lFFMq+50MerFMz7/VWQZuDeqn5WeP7c ILntdg1C4pJ3y2Fp0x0CVemvB7rNgg/NAqHi/0zDfFlKXhlc1wzmJkkiyl7RUuJe Pt+CLrTThCKdVi69LEfNCHGnCzam6BuGMYI5C2miAw3hvaNEq2b4O3RvCmcvjOb7 BPCOoWX6pOveahu7cDjjEWpVIoSISd5oCDKviJcFELMOWhxnORFzpZ48Ng9/raNT e/CqCHMkumzL5Nx9XlUFEaTfYzx0MnCXJXK8nD1ggGzi+XmNwD77OftMQcEX1JsA Ut3aUw6ninPzyw== -----END CERTIFICATE-----Generated at Sat Dec 20 20:53:04 2025 by rpki-client