This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft File: ylF4miMTWsImjCKihWAKX5sFN3A.mft (raw, json) Hash identifier: ajit18AZSF5D1aKor90R8jLmmtC6T95mL0GthUkI3Ho= Subject key identifier: DD:EA:28:9C:5C:6A:49:1E:7D:29:50:C9:13:81:6E:8C:35:9C:08:50 Authority key identifier: CA:51:78:9A:23:13:5A:C2:26:8C:22:A2:85:60:0A:5F:9B:05:37:70 Certificate issuer: /CN=ca51789a23135ac2268c22a285600a5f9b053770 Certificate serial: 019B5FE5AD4C877252F46612F9E63371071B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ylF4miMTWsImjCKihWAKX5sFN3A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft Manifest number: 1302 Signing time: Sat 27 Dec 2025 13:00:46 +0000 Manifest this update: Sat 27 Dec 2025 13:00:46 +0000 Manifest next update: Sun 28 Dec 2025 13:00:46 +0000 Files and hashes: 1: HAjyOzGCAwLUy5RivV8kbOy5Vu4.roa (hash: PsK5K2sZtAdplKvTizBojj+ePHRa8hE1Sr8s/0IgHpY=) 2: ylF4miMTWsImjCKihWAKX5sFN3A.crl (hash: TOZ/57w9M3/wxuIoCE2ftlocJj0xE3YSnHYvDcGYr9U=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.crl rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft rsync://rpki.ripe.net/repository/DEFAULT/ylF4miMTWsImjCKihWAKX5sFN3A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 28 Dec 2025 08:42:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5f:e5:ad:4c:87:72:52:f4:66:12:f9:e6:33:71:07:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ca51789a23135ac2268c22a285600a5f9b053770 Validity Not Before: Dec 27 13:00:46 2025 GMT Not After : Dec 28 13:00:46 2025 GMT Subject: CN=ddea289c5c6a491e7d2950c913816e8c359c0850 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:16:d4:c6:de:11:50:da:b3:29:f2:09:b7:bf: 69:2a:86:07:04:f0:61:6c:5e:ff:33:9a:75:03:55: 1f:b5:d4:2f:65:bd:08:bd:05:0c:e9:95:f1:b1:cb: f8:47:ed:4e:01:16:14:69:e8:7e:66:97:82:9f:44: d5:0f:32:e6:f5:cf:4a:40:fd:22:ee:cd:97:09:d3: 14:3d:b3:cd:25:d3:28:3c:e1:1d:d8:ce:36:a3:63: 4a:4a:72:6c:b0:52:a4:6e:40:a7:45:16:72:89:fc: cb:95:a5:df:48:ab:46:7d:fb:6e:30:ea:33:53:9f: 79:f5:ef:2a:50:1e:db:54:08:d5:e7:0d:a6:0f:a0: aa:36:4e:85:0e:dd:dd:4c:5d:c3:3a:e9:a0:2a:20: 2c:72:7b:66:de:40:d5:c0:e4:90:92:f8:5f:09:e0: 0f:24:43:dd:e9:e8:53:37:92:db:43:d1:d4:df:eb: d4:56:a4:46:1f:61:dc:be:1a:5e:27:c8:ea:e4:3d: 68:af:51:18:93:3e:4b:4e:fe:48:33:ab:be:85:a1: aa:fc:8c:17:9b:cd:91:df:13:bd:61:bc:53:b7:63: 31:40:df:7d:c2:17:1d:9d:41:bc:4b:ac:23:68:9c: 78:5e:75:4f:b1:ed:f2:3b:f5:b2:99:34:9e:f3:44: 89:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:EA:28:9C:5C:6A:49:1E:7D:29:50:C9:13:81:6E:8C:35:9C:08:50 X509v3 Authority Key Identifier: keyid:CA:51:78:9A:23:13:5A:C2:26:8C:22:A2:85:60:0A:5F:9B:05:37:70 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ylF4miMTWsImjCKihWAKX5sFN3A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption bc:a8:82:06:c2:6d:ca:54:af:f8:af:f1:12:2b:f2:9e:5d:99: ec:31:12:54:f9:33:62:46:f7:e7:f4:69:a6:fa:ba:49:fb:6a: e3:97:ce:15:9a:bf:de:cf:2b:24:21:8f:f5:34:d3:07:5b:cf: 20:71:39:fb:fe:c4:65:3f:02:9a:c8:85:be:f0:0b:92:2d:1d: 48:93:a9:ac:b8:a7:99:78:eb:30:7d:6a:53:06:19:34:c2:bc: ad:fb:99:cc:c6:6f:35:c1:33:1c:2a:87:7e:16:b8:02:fe:b7: a4:34:bb:30:a9:52:9a:c1:f9:46:6b:25:de:6a:65:b1:d4:71: 73:93:06:9d:2a:a8:69:28:7f:da:36:a5:db:28:e6:6f:55:48: 22:3c:6c:8a:32:92:8d:83:64:10:99:d6:e4:b6:5f:14:27:65: 19:97:f6:cf:57:7b:9e:3e:96:70:f6:68:bd:3c:bd:b7:ab:36: 2e:d5:ce:48:85:38:2b:36:2c:0d:b8:49:00:7a:10:41:a2:16: c3:34:d2:a1:b3:5d:4a:44:4f:8f:74:7c:42:8d:f6:08:d4:25: 63:42:17:5a:a6:85:16:1e:84:6e:2d:aa:91:63:8d:37:43:59: b6:cd:a6:fd:14:90:9b:97:0c:2e:3a:30:59:44:97:eb:85:82: 6a:1d:13:95 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtf5a1Mh3JS9GYS+eYzcQcbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNhNTE3ODlhMjMxMzVhYzIyNjhjMjJhMjg1NjAwYTVmOWIw NTM3NzAwHhcNMjUxMjI3MTMwMDQ2WhcNMjUxMjI4MTMwMDQ2WjAzMTEwLwYDVQQD EyhkZGVhMjg5YzVjNmE0OTFlN2QyOTUwYzkxMzgxNmU4YzM1OWMwODUwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxxbUxt4RUNqzKfIJt79pKoYHBPBh bF7/M5p1A1UftdQvZb0IvQUM6ZXxscv4R+1OARYUaeh+ZpeCn0TVDzLm9c9KQP0i 7s2XCdMUPbPNJdMoPOEd2M42o2NKSnJssFKkbkCnRRZyifzLlaXfSKtGfftuMOoz U5959e8qUB7bVAjV5w2mD6CqNk6FDt3dTF3DOumgKiAscntm3kDVwOSQkvhfCeAP JEPd6ehTN5LbQ9HU3+vUVqRGH2HcvhpeJ8jq5D1or1EYkz5LTv5IM6u+haGq/IwX m82R3xO9YbxTt2MxQN99whcdnUG8S6wjaJx4XnVPse3yO/WymTSe80SJRwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFN3qKJxcakkefSlQyROBbow1nAhQMB8GA1UdIwQY MBaAFMpReJojE1rCJowiooVgCl+bBTdwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveWxGNG1pTVRXc0ltakNLaWhXQUtYNXNGTjNBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni9iNGJmNjAtZDU5My00MGQyLTk3ODMt MWUxOTE2OGY1ZDczLzEveWxGNG1pTVRXc0ltakNLaWhXQUtYNXNGTjNBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ni9iNGJmNjAtZDU5My00MGQyLTk3ODMtMWUxOTE2OGY1ZDcz LzEveWxGNG1pTVRXc0ltakNLaWhXQUtYNXNGTjNBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAvKiCBsJt ylSv+K/xEivynl2Z7DESVPkzYkb35/Rppvq6Sftq45fOFZq/3s8rJCGP9TTTB1vP IHE5+/7EZT8CmsiFvvALki0dSJOprLinmXjrMH1qUwYZNMK8rfuZzMZvNcEzHCqH fha4Av63pDS7MKlSmsH5Rmsl3mplsdRxc5MGnSqoaSh/2jal2yjmb1VIIjxsijKS jYNkEJnW5LZfFCdlGZf2z1d7nj6WcPZovTy9t6s2LtXOSIU4KzYsDbhJAHoQQaIW wzTSobNdSkRPj3R8Qo32CNQlY0IXWqaFFh6Ebi2qkWONN0NZts2m/RSQm5cMLjow WUSX64WCah0TlQ== -----END CERTIFICATE-----Generated at Sat Dec 27 15:55:54 2025 by rpki-client