This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/7da34c-3984-4442-b646-e3138ff1e899/1/yniqfjFrIfhDz7lYEMaAzdv6bm8.mft File: yniqfjFrIfhDz7lYEMaAzdv6bm8.mft (raw, json) Hash identifier: 0s/eEQbWOCN0I5az05SCpqrucNfPAsJAP6FwMKBzHXk= Subject key identifier: F9:46:F1:B0:B1:50:EB:1C:25:67:06:C2:6E:90:30:81:9D:31:F9:2E Authority key identifier: CA:78:AA:7E:31:6B:21:F8:43:CF:B9:58:10:C6:80:CD:DB:FA:6E:6F Certificate issuer: /CN=ca78aa7e316b21f843cfb95810c680cddbfa6e6f Certificate serial: 019B3AFD3579A67FA6DE8D85FBF98F878A4D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yniqfjFrIfhDz7lYEMaAzdv6bm8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/7da34c-3984-4442-b646-e3138ff1e899/1/yniqfjFrIfhDz7lYEMaAzdv6bm8.mft Manifest number: 04D8 Signing time: Sat 20 Dec 2025 09:00:31 +0000 Manifest this update: Sat 20 Dec 2025 09:00:31 +0000 Manifest next update: Sun 21 Dec 2025 09:00:31 +0000 Files and hashes: 1: KmT0zBeAxHbx64CqcJ4Kw-HSMGw.roa (hash: g294VQOsqRVKkLhlE8NKqam6KvGQ9H8e4fukJsFTk1Y=) 2: yniqfjFrIfhDz7lYEMaAzdv6bm8.crl (hash: ZmMhfDj0BuTZ2sOfnINjYdfVYg7cj8KHEnv+08oxcyo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/7da34c-3984-4442-b646-e3138ff1e899/1/yniqfjFrIfhDz7lYEMaAzdv6bm8.crl rsync://rpki.ripe.net/repository/DEFAULT/b7/7da34c-3984-4442-b646-e3138ff1e899/1/yniqfjFrIfhDz7lYEMaAzdv6bm8.mft rsync://rpki.ripe.net/repository/DEFAULT/yniqfjFrIfhDz7lYEMaAzdv6bm8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 09:00:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3a:fd:35:79:a6:7f:a6:de:8d:85:fb:f9:8f:87:8a:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ca78aa7e316b21f843cfb95810c680cddbfa6e6f Validity Not Before: Dec 20 09:00:31 2025 GMT Not After : Dec 21 09:00:31 2025 GMT Subject: CN=f946f1b0b150eb1c256706c26e9030819d31f92e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:e5:98:75:27:81:d1:42:79:5c:69:2a:ec:70: c7:99:90:3a:2b:7a:07:79:34:1b:c3:45:0a:5b:bf: 74:95:f5:43:2f:cc:a2:47:7b:84:22:98:59:0d:be: 26:60:30:55:6c:47:23:65:b6:04:be:8e:21:14:57: 1e:a5:23:57:4c:fe:0e:f0:05:ee:a1:4f:03:a3:c9: 36:0e:5c:61:d6:a9:d4:5e:23:e5:84:a2:f2:59:08: d8:d6:d1:31:00:b7:31:0d:ed:a3:50:a8:f4:56:b1: 02:35:4d:2b:ce:19:c1:a6:45:3a:85:12:55:2c:3e: c7:5e:29:69:7e:a1:ef:38:cb:72:df:73:3f:dd:ba: 0f:8b:10:f6:1f:be:eb:cc:d0:9c:21:9a:73:99:19: cd:73:2f:94:10:a8:36:6d:4d:76:c7:21:de:23:8e: 9a:22:f6:32:d1:cd:d8:45:1a:a3:3d:af:6b:83:f1: d8:03:02:4f:8a:d0:5f:8c:7d:42:f0:bd:c4:47:b6: 2d:23:75:8e:2e:12:57:bf:e7:1a:7e:6c:43:30:cd: 33:53:54:ea:fa:fc:56:16:01:d2:f3:13:b5:92:49: 7a:c6:53:91:a7:b4:f0:e2:f0:49:61:a2:0d:ac:7c: 1a:80:db:40:d9:0b:4b:ba:33:a8:2d:c0:42:f4:c3: 68:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:46:F1:B0:B1:50:EB:1C:25:67:06:C2:6E:90:30:81:9D:31:F9:2E X509v3 Authority Key Identifier: keyid:CA:78:AA:7E:31:6B:21:F8:43:CF:B9:58:10:C6:80:CD:DB:FA:6E:6F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yniqfjFrIfhDz7lYEMaAzdv6bm8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/7da34c-3984-4442-b646-e3138ff1e899/1/yniqfjFrIfhDz7lYEMaAzdv6bm8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/7da34c-3984-4442-b646-e3138ff1e899/1/yniqfjFrIfhDz7lYEMaAzdv6bm8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 07:55:9d:57:06:17:70:18:cd:a0:2b:97:16:3a:43:a1:bc:38: 7e:4f:2c:3d:2c:a0:b9:39:42:f8:d0:a4:08:c9:33:ca:cd:cd: d2:bb:d6:db:b0:02:f8:b2:c8:17:c2:73:52:29:bb:57:c9:56: ab:10:27:be:1a:6d:f8:61:0e:77:c6:a7:29:0a:3f:f0:e1:ff: 84:bc:c2:ec:5e:66:e2:72:2e:3d:f4:7e:68:d1:58:b2:59:2f: c3:77:2f:b2:22:c0:85:2f:23:f9:e3:6d:d7:27:17:9f:14:fc: ab:4f:8f:1a:56:a4:86:2a:7d:c4:77:ae:ab:20:57:c0:47:60: 98:dc:d0:73:15:d4:bb:da:ed:a4:3c:25:d9:b1:03:6b:51:33: 03:18:a8:89:72:ae:06:a9:1b:2a:3a:80:2a:96:2d:30:ac:dd: e5:48:36:dd:2f:a9:87:7b:75:49:56:a3:a3:70:09:40:a2:2c: a6:51:7e:31:dd:df:bd:50:1d:fc:aa:63:49:e7:cc:a5:3e:ab: f0:5e:91:de:d4:3c:ba:0a:c0:f4:eb:a8:ec:82:2c:95:90:8b: 77:29:f8:a6:b8:1d:9c:b9:93:ab:b5:e8:85:f6:d2:43:27:01: 67:cf:e8:de:09:37:cc:8b:da:ce:36:5f:82:05:19:cb:a3:f4: c4:91:7d:21 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs6/TV5pn+m3o2F+/mPh4pNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNhNzhhYTdlMzE2YjIxZjg0M2NmYjk1ODEwYzY4MGNkZGJm YTZlNmYwHhcNMjUxMjIwMDkwMDMxWhcNMjUxMjIxMDkwMDMxWjAzMTEwLwYDVQQD EyhmOTQ2ZjFiMGIxNTBlYjFjMjU2NzA2YzI2ZTkwMzA4MTlkMzFmOTJlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1eWYdSeB0UJ5XGkq7HDHmZA6K3oH eTQbw0UKW790lfVDL8yiR3uEIphZDb4mYDBVbEcjZbYEvo4hFFcepSNXTP4O8AXu oU8Do8k2Dlxh1qnUXiPlhKLyWQjY1tExALcxDe2jUKj0VrECNU0rzhnBpkU6hRJV LD7HXilpfqHvOMty33M/3boPixD2H77rzNCcIZpzmRnNcy+UEKg2bU12xyHeI46a IvYy0c3YRRqjPa9rg/HYAwJPitBfjH1C8L3ER7YtI3WOLhJXv+cafmxDMM0zU1Tq +vxWFgHS8xO1kkl6xlORp7Tw4vBJYaINrHwagNtA2QtLujOoLcBC9MNodQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPlG8bCxUOscJWcGwm6QMIGdMfkuMB8GA1UdIwQY MBaAFMp4qn4xayH4Q8+5WBDGgM3b+m5vMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveW5pcWZqRnJJZmhEejdsWUVNYUF6ZHY2Ym04LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNy83ZGEzNGMtMzk4NC00NDQyLWI2NDYt ZTMxMzhmZjFlODk5LzEveW5pcWZqRnJJZmhEejdsWUVNYUF6ZHY2Ym04Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNy83ZGEzNGMtMzk4NC00NDQyLWI2NDYtZTMxMzhmZjFlODk5 LzEveW5pcWZqRnJJZmhEejdsWUVNYUF6ZHY2Ym04LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAB1WdVwYX cBjNoCuXFjpDobw4fk8sPSyguTlC+NCkCMkzys3N0rvW27AC+LLIF8JzUim7V8lW qxAnvhpt+GEOd8anKQo/8OH/hLzC7F5m4nIuPfR+aNFYslkvw3cvsiLAhS8j+eNt 1ycXnxT8q0+PGlakhip9xHeuqyBXwEdgmNzQcxXUu9rtpDwl2bEDa1EzAxioiXKu BqkbKjqAKpYtMKzd5Ug23S+ph3t1SVajo3AJQKIsplF+Md3fvVAd/KpjSefMpT6r 8F6R3tQ8ugrA9Ouo7IIslZCLdyn4prgdnLmTq7XohfbSQycBZ8/o3gk3zIvazjZf ggUZy6P0xJF9IQ== -----END CERTIFICATE-----Generated at Sat Dec 20 15:58:13 2025 by rpki-client