This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/279b66-38f1-41a5-90e2-946da5f5efbb/1/ymFHjk1lm-zoIDxei6jo-C8EcNc.mft File: ymFHjk1lm-zoIDxei6jo-C8EcNc.mft (raw, json) Hash identifier: 6MYJbD6NiZaz0wmYZdQxl/kJnINyufe3ywcpqicLzmI= Subject key identifier: 77:66:3E:C5:20:A5:96:2C:83:84:87:5D:20:AF:A0:A0:1D:04:4F:D9 Authority key identifier: CA:61:47:8E:4D:65:9B:EC:E8:20:3C:5E:8B:A8:E8:F8:2F:04:70:D7 Certificate issuer: /CN=ca61478e4d659bece8203c5e8ba8e8f82f0470d7 Certificate serial: 019B3FB5B791B4352022EC6AD522DA43742E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ymFHjk1lm-zoIDxei6jo-C8EcNc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/279b66-38f1-41a5-90e2-946da5f5efbb/1/ymFHjk1lm-zoIDxei6jo-C8EcNc.mft Manifest number: 01AB Signing time: Sun 21 Dec 2025 07:00:31 +0000 Manifest this update: Sun 21 Dec 2025 07:00:31 +0000 Manifest next update: Mon 22 Dec 2025 07:00:31 +0000 Files and hashes: 1: gYcrvQwtqYo-zXt2MlI2__2qyrs.roa (hash: 7IenEYrIUNDwPACEjHuFIvJytPHusUhzdhduU7XIXns=) 2: ymFHjk1lm-zoIDxei6jo-C8EcNc.crl (hash: t9eIz5hObvLUusTzmM26Gk24C/yvlGez8jOx1vx64uE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/279b66-38f1-41a5-90e2-946da5f5efbb/1/ymFHjk1lm-zoIDxei6jo-C8EcNc.crl rsync://rpki.ripe.net/repository/DEFAULT/68/279b66-38f1-41a5-90e2-946da5f5efbb/1/ymFHjk1lm-zoIDxei6jo-C8EcNc.mft rsync://rpki.ripe.net/repository/DEFAULT/ymFHjk1lm-zoIDxei6jo-C8EcNc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 04:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3f:b5:b7:91:b4:35:20:22:ec:6a:d5:22:da:43:74:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ca61478e4d659bece8203c5e8ba8e8f82f0470d7 Validity Not Before: Dec 21 07:00:31 2025 GMT Not After : Dec 22 07:00:31 2025 GMT Subject: CN=77663ec520a5962c8384875d20afa0a01d044fd9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:08:a8:9f:4e:1f:b8:b8:94:f6:44:6d:4b:06: 1c:6a:ee:d3:0e:63:f5:05:77:9a:e5:58:d7:b6:5e: 16:4d:b7:0c:d4:4b:36:6d:2d:e2:fe:fc:ea:39:a7: 74:83:d6:5a:14:3c:27:e8:51:89:c6:ad:2d:ef:56: 90:ba:5e:0a:f4:d2:d7:af:84:4e:20:24:89:9e:e3: b2:ff:8c:39:15:87:c6:7a:34:96:76:a8:8a:60:ba: 5a:4e:54:44:f7:c9:b5:7f:f3:ff:27:6d:0a:91:68: 43:01:8a:c2:83:1c:b0:51:86:7d:9a:c1:92:18:6e: 42:98:f6:45:3e:a6:40:80:0d:b5:1f:8e:1b:2a:2b: 3c:e0:da:d2:52:72:18:98:69:ca:ca:c6:a0:76:e7: ad:b7:ad:5f:2e:fc:ac:d8:1d:0c:21:56:29:35:e9: 3c:4c:f5:3c:e0:e3:3c:8d:1a:c9:a3:83:c0:6d:49: 3d:bf:af:82:b7:c7:7b:6c:c3:f4:4c:59:21:c0:9b: e8:0a:5a:ce:88:14:93:c4:c9:e2:93:bd:79:a9:ce: 0a:fa:5d:26:5b:2e:4f:b8:03:cd:6c:b7:c3:ae:7d: 38:dc:1b:08:c2:e6:f6:05:94:47:da:20:e5:75:7e: c1:99:85:48:68:04:95:b0:3d:45:a0:1f:88:10:e6: df:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:66:3E:C5:20:A5:96:2C:83:84:87:5D:20:AF:A0:A0:1D:04:4F:D9 X509v3 Authority Key Identifier: keyid:CA:61:47:8E:4D:65:9B:EC:E8:20:3C:5E:8B:A8:E8:F8:2F:04:70:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ymFHjk1lm-zoIDxei6jo-C8EcNc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/279b66-38f1-41a5-90e2-946da5f5efbb/1/ymFHjk1lm-zoIDxei6jo-C8EcNc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/68/279b66-38f1-41a5-90e2-946da5f5efbb/1/ymFHjk1lm-zoIDxei6jo-C8EcNc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 77:4b:f3:d0:b1:69:8c:d1:65:10:07:90:f1:d6:8a:e8:eb:ac: eb:93:e3:db:63:33:c5:ed:fd:45:65:70:03:65:fe:16:75:70: 00:57:dd:98:2a:e2:4e:3b:fb:af:47:08:ba:db:8e:54:43:61: 51:ef:3a:0e:2d:6d:1f:b3:01:72:0c:43:62:12:5b:ab:e2:aa: ea:89:28:e6:dc:13:78:aa:6a:f2:df:df:dc:f1:c8:01:91:5d: 7f:77:df:9a:e4:63:bc:51:91:cd:a5:f4:b2:b9:70:cf:f9:ad: 3d:48:39:bd:ab:79:20:da:6b:a0:ca:e4:b7:84:7a:c7:71:1b: 3b:cc:83:50:99:b1:35:44:ba:b9:ae:43:b0:b2:6c:d2:7d:94: c7:59:70:3a:df:70:3e:d0:8e:d0:8c:ff:6e:c8:aa:53:7b:19: 64:19:7f:fb:20:19:07:97:b0:ae:ae:39:bc:f2:6a:dd:4f:be: 5d:dd:1b:76:bc:10:80:4f:fe:c3:8d:38:4c:06:70:8f:5f:56: 78:d5:aa:b2:e2:85:22:20:00:e8:33:43:4e:ef:12:52:f4:a2: b6:5a:73:a0:11:13:13:53:b5:d1:f2:d7:7e:2d:6d:46:45:c4: c7:6f:54:5b:ae:a6:63:0b:32:05:ba:a5:73:e4:12:ff:0d:11: 10:1d:57:2d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs/tbeRtDUgIuxq1SLaQ3QuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNhNjE0NzhlNGQ2NTliZWNlODIwM2M1ZThiYThlOGY4MmYw NDcwZDcwHhcNMjUxMjIxMDcwMDMxWhcNMjUxMjIyMDcwMDMxWjAzMTEwLwYDVQQD Eyg3NzY2M2VjNTIwYTU5NjJjODM4NDg3NWQyMGFmYTBhMDFkMDQ0ZmQ5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwQion04fuLiU9kRtSwYcau7TDmP1 BXea5VjXtl4WTbcM1Es2bS3i/vzqOad0g9ZaFDwn6FGJxq0t71aQul4K9NLXr4RO ICSJnuOy/4w5FYfGejSWdqiKYLpaTlRE98m1f/P/J20KkWhDAYrCgxywUYZ9msGS GG5CmPZFPqZAgA21H44bKis84NrSUnIYmGnKysagduett61fLvys2B0MIVYpNek8 TPU84OM8jRrJo4PAbUk9v6+Ct8d7bMP0TFkhwJvoClrOiBSTxMnik715qc4K+l0m Wy5PuAPNbLfDrn043BsIwub2BZRH2iDldX7BmYVIaASVsD1FoB+IEObfjQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHdmPsUgpZYsg4SHXSCvoKAdBE/ZMB8GA1UdIwQY MBaAFMphR45NZZvs6CA8Xouo6PgvBHDXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveW1GSGprMWxtLXpvSUR4ZWk2am8tQzhFY05jLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OC8yNzliNjYtMzhmMS00MWE1LTkwZTIt OTQ2ZGE1ZjVlZmJiLzEveW1GSGprMWxtLXpvSUR4ZWk2am8tQzhFY05jLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82OC8yNzliNjYtMzhmMS00MWE1LTkwZTItOTQ2ZGE1ZjVlZmJi LzEveW1GSGprMWxtLXpvSUR4ZWk2am8tQzhFY05jLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAd0vz0LFp jNFlEAeQ8daK6Ous65Pj22Mzxe39RWVwA2X+FnVwAFfdmCriTjv7r0cIutuOVENh Ue86Di1tH7MBcgxDYhJbq+Kq6oko5twTeKpq8t/f3PHIAZFdf3ffmuRjvFGRzaX0 srlwz/mtPUg5vat5INproMrkt4R6x3EbO8yDUJmxNUS6ua5DsLJs0n2Ux1lwOt9w PtCO0Iz/bsiqU3sZZBl/+yAZB5ewrq45vPJq3U++Xd0bdrwQgE/+w404TAZwj19W eNWqsuKFIiAA6DNDTu8SUvSitlpzoBETE1O10fLXfi1tRkXEx29UW66mYwsyBbql c+QS/w0REB1XLQ== -----END CERTIFICATE-----Generated at Sun Dec 21 11:58:26 2025 by rpki-client