This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/1f36d5-3080-4a0e-9d63-79344da3a2e6/1/ryNYW_zdBhypRuLZ6ouX5FucMdY.mft File: ryNYW_zdBhypRuLZ6ouX5FucMdY.mft (raw, json) Hash identifier: jAOw9ZfrZ7W9XmlsPERsayubKFzgX9Ls2aBO8mfzDhE= Subject key identifier: 0E:48:86:CE:28:8B:3B:BF:A7:95:3C:77:0A:F8:76:A0:5B:71:05:1B Authority key identifier: AF:23:58:5B:FC:DD:06:1C:A9:46:E2:D9:EA:8B:97:E4:5B:9C:31:D6 Certificate issuer: /CN=af23585bfcdd061ca946e2d9ea8b97e45b9c31d6 Certificate serial: 019B3D22EFEAA8276A5111960071A3B65240 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ryNYW_zdBhypRuLZ6ouX5FucMdY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/1f36d5-3080-4a0e-9d63-79344da3a2e6/1/ryNYW_zdBhypRuLZ6ouX5FucMdY.mft Manifest number: 16EE Signing time: Sat 20 Dec 2025 19:00:58 +0000 Manifest this update: Sat 20 Dec 2025 19:00:58 +0000 Manifest next update: Sun 21 Dec 2025 19:00:58 +0000 Files and hashes: 1: SeufauaKg6Zpqe8UY9h9PfD262s.roa (hash: f9EK4NXbDLFnpfyftEzrpn9paJMCGETNbGO1nrHQTYE=) 2: ryNYW_zdBhypRuLZ6ouX5FucMdY.crl (hash: MlImjif0N6xfqxGHWpiHzd4PiUlGeuzm6DxF1HPbyI0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/1f36d5-3080-4a0e-9d63-79344da3a2e6/1/ryNYW_zdBhypRuLZ6ouX5FucMdY.crl rsync://rpki.ripe.net/repository/DEFAULT/a3/1f36d5-3080-4a0e-9d63-79344da3a2e6/1/ryNYW_zdBhypRuLZ6ouX5FucMdY.mft rsync://rpki.ripe.net/repository/DEFAULT/ryNYW_zdBhypRuLZ6ouX5FucMdY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 15:46:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3d:22:ef:ea:a8:27:6a:51:11:96:00:71:a3:b6:52:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=af23585bfcdd061ca946e2d9ea8b97e45b9c31d6 Validity Not Before: Dec 20 19:00:58 2025 GMT Not After : Dec 21 19:00:58 2025 GMT Subject: CN=0e4886ce288b3bbfa7953c770af876a05b71051b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:e8:00:ce:1e:cb:63:36:b6:fc:8a:35:dd:cb: de:a2:0b:3c:c2:71:1e:9e:83:de:56:81:5f:4e:92: f9:77:11:b1:57:06:af:65:52:95:06:18:84:23:95: 0d:f4:24:1a:cb:00:b0:5a:ae:4b:27:00:ec:81:f4: c5:55:b8:f5:4e:94:93:aa:8f:87:db:db:dd:06:d9: 56:72:32:d9:62:86:11:66:1e:6c:fe:4b:2e:01:0d: 82:cb:a8:dd:24:74:d2:01:e8:72:6f:ea:a3:55:a0: a7:bc:9e:5d:9d:78:d5:80:42:48:f5:46:bb:6d:d6: d4:cb:5c:00:e3:7b:a3:fb:24:84:7a:6b:e1:cb:57: a1:69:f7:90:b5:1a:f7:9e:3b:87:54:0a:a7:aa:83: 79:29:7a:1c:22:eb:56:1f:5b:14:95:e7:f3:cf:74: 55:8c:0d:9d:df:59:f1:77:0c:4d:e8:9a:27:5c:9e: 6e:29:ba:55:f9:85:e3:60:ce:6a:9e:e0:b4:45:8b: b2:e8:87:71:ea:b3:0a:fe:96:3b:eb:9d:fa:b5:31: 50:c7:96:44:a7:ab:c7:66:c6:22:4b:67:6a:36:97: 14:ec:2f:9d:78:b8:c7:3c:96:2c:f3:9e:5c:84:3d: 6b:1c:6e:4c:0d:d2:66:23:c7:46:a4:de:46:b0:bd: 7b:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:48:86:CE:28:8B:3B:BF:A7:95:3C:77:0A:F8:76:A0:5B:71:05:1B X509v3 Authority Key Identifier: keyid:AF:23:58:5B:FC:DD:06:1C:A9:46:E2:D9:EA:8B:97:E4:5B:9C:31:D6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ryNYW_zdBhypRuLZ6ouX5FucMdY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/1f36d5-3080-4a0e-9d63-79344da3a2e6/1/ryNYW_zdBhypRuLZ6ouX5FucMdY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/1f36d5-3080-4a0e-9d63-79344da3a2e6/1/ryNYW_zdBhypRuLZ6ouX5FucMdY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 24:9a:eb:23:39:f6:13:1d:6d:34:84:1f:ee:49:bc:c2:66:6f: 9d:8e:9c:46:bd:42:43:b9:16:0e:e3:22:1a:0d:39:17:f5:58: 52:69:62:38:35:49:dc:d9:da:d4:2d:85:07:98:12:aa:59:6f: 9d:b5:63:a8:c2:bd:4a:d1:e1:0c:77:0c:fe:0a:3c:13:c9:e8: 61:08:fc:11:fd:72:0b:a3:9b:80:09:9c:93:a9:6c:d3:d6:f1: 76:08:a6:db:59:0b:20:a4:b0:f7:67:39:5c:bd:3d:e1:f4:7f: 8a:e1:3d:47:11:15:f6:1f:28:09:26:b9:41:8f:f7:78:2a:44: 23:23:b7:17:28:0a:86:e3:8b:f9:2d:b3:79:7e:4d:d8:e6:7a: 42:5c:78:a5:79:db:1a:2d:e0:5a:0e:be:9c:ac:9f:34:f9:e8: 32:75:01:73:0f:f4:c4:8d:b4:26:98:83:5a:b5:04:f6:c8:dc: 8a:13:84:29:86:5b:97:b2:35:e0:58:c3:d9:7a:75:86:3e:c1: 00:27:8e:d4:a2:97:51:31:c7:e1:81:72:cd:9a:bd:da:8c:c9: 55:8d:e0:fd:22:16:57:be:b5:fe:bf:e4:8d:42:cf:90:c6:4f: 07:9d:d4:c4:26:db:03:a7:d6:6d:8a:62:c0:a9:b9:76:7b:ee: 7e:f1:1b:7f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs9Iu/qqCdqURGWAHGjtlJAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFmMjM1ODViZmNkZDA2MWNhOTQ2ZTJkOWVhOGI5N2U0NWI5 YzMxZDYwHhcNMjUxMjIwMTkwMDU4WhcNMjUxMjIxMTkwMDU4WjAzMTEwLwYDVQQD EygwZTQ4ODZjZTI4OGIzYmJmYTc5NTNjNzcwYWY4NzZhMDViNzEwNTFiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr+gAzh7LYza2/Io13cveogs8wnEe noPeVoFfTpL5dxGxVwavZVKVBhiEI5UN9CQaywCwWq5LJwDsgfTFVbj1TpSTqo+H 29vdBtlWcjLZYoYRZh5s/ksuAQ2Cy6jdJHTSAehyb+qjVaCnvJ5dnXjVgEJI9Ua7 bdbUy1wA43uj+ySEemvhy1ehafeQtRr3njuHVAqnqoN5KXocIutWH1sUlefzz3RV jA2d31nxdwxN6JonXJ5uKbpV+YXjYM5qnuC0RYuy6Idx6rMK/pY76536tTFQx5ZE p6vHZsYiS2dqNpcU7C+deLjHPJYs855chD1rHG5MDdJmI8dGpN5GsL17VwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFA5Ihs4oizu/p5U8dwr4dqBbcQUbMB8GA1UdIwQY MBaAFK8jWFv83QYcqUbi2eqLl+RbnDHWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcnlOWVdfemRCaHlwUnVMWjZvdVg1RnVjTWRZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy8xZjM2ZDUtMzA4MC00YTBlLTlkNjMt NzkzNDRkYTNhMmU2LzEvcnlOWVdfemRCaHlwUnVMWjZvdVg1RnVjTWRZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMy8xZjM2ZDUtMzA4MC00YTBlLTlkNjMtNzkzNDRkYTNhMmU2 LzEvcnlOWVdfemRCaHlwUnVMWjZvdVg1RnVjTWRZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJJrrIzn2 Ex1tNIQf7km8wmZvnY6cRr1CQ7kWDuMiGg05F/VYUmliODVJ3Nna1C2FB5gSqllv nbVjqMK9StHhDHcM/go8E8noYQj8Ef1yC6ObgAmck6ls09bxdgim21kLIKSw92c5 XL094fR/iuE9RxEV9h8oCSa5QY/3eCpEIyO3FygKhuOL+S2zeX5N2OZ6Qlx4pXnb Gi3gWg6+nKyfNPnoMnUBcw/0xI20JpiDWrUE9sjcihOEKYZbl7I14FjD2Xp1hj7B ACeO1KKXUTHH4YFyzZq92ozJVY3g/SIWV761/r/kjULPkMZPB53UxCbbA6fWbYpi wKm5dnvufvEbfw== -----END CERTIFICATE-----Generated at Sat Dec 20 22:43:35 2025 by rpki-client