This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/7f569f-cc3c-429e-bd1d-b4b97f11c3dd/1/yu79CETrE5qyH4DUByzguO3MBrU.mft File: yu79CETrE5qyH4DUByzguO3MBrU.mft (raw, json) Hash identifier: ETBl6Jb5/WsqPj62S8ekWpLnlMa+a8wExSdzy0Pc+6s= Subject key identifier: 64:5D:63:84:F3:58:2F:DD:DE:25:0C:D2:12:43:4D:FF:57:09:77:72 Authority key identifier: CA:EE:FD:08:44:EB:13:9A:B2:1F:80:D4:07:2C:E0:B8:ED:CC:06:B5 Certificate issuer: /CN=caeefd0844eb139ab21f80d4072ce0b8edcc06b5 Certificate serial: 019B50AA082903E3EA6ECF1B55AEADFF2D52 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yu79CETrE5qyH4DUByzguO3MBrU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/7f569f-cc3c-429e-bd1d-b4b97f11c3dd/1/yu79CETrE5qyH4DUByzguO3MBrU.mft Manifest number: 03E3 Signing time: Wed 24 Dec 2025 14:01:18 +0000 Manifest this update: Wed 24 Dec 2025 14:01:18 +0000 Manifest next update: Thu 25 Dec 2025 14:01:18 +0000 Files and hashes: 1: Zja22H7huKyd4DPgiFnlD1La7Es.roa (hash: AXLErsCzJc/qr3Tna9lN0B3Ap4Vz9K2Svk3Dy2hJER8=) 2: yu79CETrE5qyH4DUByzguO3MBrU.crl (hash: wX+3LSsM25TlaBp04RlpLwlKuRo2w6cqy9y1i+Imx/Y=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/7f569f-cc3c-429e-bd1d-b4b97f11c3dd/1/yu79CETrE5qyH4DUByzguO3MBrU.crl rsync://rpki.ripe.net/repository/DEFAULT/bf/7f569f-cc3c-429e-bd1d-b4b97f11c3dd/1/yu79CETrE5qyH4DUByzguO3MBrU.mft rsync://rpki.ripe.net/repository/DEFAULT/yu79CETrE5qyH4DUByzguO3MBrU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 25 Dec 2025 14:01:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:50:aa:08:29:03:e3:ea:6e:cf:1b:55:ae:ad:ff:2d:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=caeefd0844eb139ab21f80d4072ce0b8edcc06b5 Validity Not Before: Dec 24 14:01:18 2025 GMT Not After : Dec 25 14:01:18 2025 GMT Subject: CN=645d6384f3582fddde250cd212434dff57097772 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:cd:d7:77:72:88:7d:f0:17:0d:31:59:7f:a6: f5:ce:9c:57:88:5b:f4:ed:2b:12:6e:b3:f8:df:4a: ee:ef:aa:18:07:d4:69:8d:10:08:ba:57:d4:04:1b: 64:91:e7:99:97:a4:94:63:95:a9:a8:ae:6e:47:5c: dc:da:4f:1c:b7:30:a5:e7:cd:5b:d7:bf:3f:bc:d4: e9:e1:97:ea:ef:79:a1:b3:15:62:0f:cb:b4:7c:8e: 9b:df:e6:e2:d0:18:e5:ad:7d:57:90:cc:75:9f:6c: 53:89:70:b8:05:8e:ff:0f:18:15:f1:99:54:6d:a8: cf:c8:8f:ca:4a:f9:34:f5:cd:5b:68:98:d9:45:ab: e6:4d:3c:96:46:c2:06:fb:dd:54:f4:2e:94:7f:aa: 9d:12:df:af:b7:fa:09:cd:b5:fd:2f:a6:3e:93:2c: 2c:42:c8:0d:4e:67:ea:7a:0c:73:e5:1a:75:c3:0d: aa:bb:a3:f8:f3:f5:9b:24:2e:5c:58:62:7b:fe:2b: e1:95:ae:c0:64:11:91:7f:64:5b:e4:eb:da:e1:25: 43:c0:87:8f:91:25:db:9c:f1:ea:6b:df:00:4a:ff: bd:b5:87:96:3d:50:25:58:77:eb:61:3c:9e:60:25: c6:9d:56:81:9c:25:12:a1:32:2d:37:37:a8:c2:89: 91:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:5D:63:84:F3:58:2F:DD:DE:25:0C:D2:12:43:4D:FF:57:09:77:72 X509v3 Authority Key Identifier: keyid:CA:EE:FD:08:44:EB:13:9A:B2:1F:80:D4:07:2C:E0:B8:ED:CC:06:B5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yu79CETrE5qyH4DUByzguO3MBrU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/7f569f-cc3c-429e-bd1d-b4b97f11c3dd/1/yu79CETrE5qyH4DUByzguO3MBrU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/7f569f-cc3c-429e-bd1d-b4b97f11c3dd/1/yu79CETrE5qyH4DUByzguO3MBrU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 45:52:89:70:88:50:0b:4e:33:38:09:16:a9:5a:4a:b7:03:1b: e3:7e:82:24:67:ed:bb:f5:bc:fc:79:67:3c:4f:4d:bc:e5:d0: 7b:46:e3:4b:d4:6d:93:43:32:51:11:1c:19:bb:2e:09:39:c4: fa:a5:94:16:e9:ca:b2:96:64:ce:02:19:4e:2c:e7:00:5e:7c: d9:46:70:7a:bc:25:da:90:25:32:90:bb:c3:74:ed:51:2a:51: 2f:e9:81:d9:5b:4f:4f:08:cd:77:0c:bc:a8:59:57:be:fa:51: 0c:12:03:47:97:32:0f:f8:20:50:f3:3e:23:5f:02:a4:27:91: 34:60:76:ed:d8:73:2b:98:d8:ec:61:8f:35:5d:92:23:48:b8: 4c:b6:78:88:2d:c2:7c:0e:db:19:c7:45:89:3a:16:99:31:4a: 1c:cd:19:28:9e:8d:f5:3b:d9:68:a4:44:cd:5c:2d:19:6a:88: 0d:13:46:3c:a1:82:48:62:ba:65:d8:2f:e7:20:30:72:b1:80: ec:ce:51:b3:23:9f:44:21:d2:fc:ce:16:a8:b5:e8:df:cc:f7: c3:66:c6:df:32:a8:67:31:9c:5a:e9:cd:66:e2:cb:60:99:cb: 14:7b:de:1e:6f:30:0b:1e:5f:a4:eb:6f:33:7f:bc:66:e9:d1: fb:6d:88:94 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtQqggpA+Pqbs8bVa6t/y1SMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNhZWVmZDA4NDRlYjEzOWFiMjFmODBkNDA3MmNlMGI4ZWRj YzA2YjUwHhcNMjUxMjI0MTQwMTE4WhcNMjUxMjI1MTQwMTE4WjAzMTEwLwYDVQQD Eyg2NDVkNjM4NGYzNTgyZmRkZGUyNTBjZDIxMjQzNGRmZjU3MDk3NzcyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3M3Xd3KIffAXDTFZf6b1zpxXiFv0 7SsSbrP430ru76oYB9RpjRAIulfUBBtkkeeZl6SUY5WpqK5uR1zc2k8ctzCl581b 178/vNTp4Zfq73mhsxViD8u0fI6b3+bi0BjlrX1XkMx1n2xTiXC4BY7/DxgV8ZlU bajPyI/KSvk09c1baJjZRavmTTyWRsIG+91U9C6Uf6qdEt+vt/oJzbX9L6Y+kyws QsgNTmfqegxz5Rp1ww2qu6P48/WbJC5cWGJ7/ivhla7AZBGRf2Rb5Ova4SVDwIeP kSXbnPHqa98ASv+9tYeWPVAlWHfrYTyeYCXGnVaBnCUSoTItNzeowomRzQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGRdY4TzWC/d3iUM0hJDTf9XCXdyMB8GA1UdIwQY MBaAFMru/QhE6xOash+A1Acs4LjtzAa1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveXU3OUNFVHJFNXF5SDREVUJ5emd1TzNNQnJVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi83ZjU2OWYtY2MzYy00MjllLWJkMWQt YjRiOTdmMTFjM2RkLzEveXU3OUNFVHJFNXF5SDREVUJ5emd1TzNNQnJVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZi83ZjU2OWYtY2MzYy00MjllLWJkMWQtYjRiOTdmMTFjM2Rk LzEveXU3OUNFVHJFNXF5SDREVUJ5emd1TzNNQnJVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARVKJcIhQ C04zOAkWqVpKtwMb436CJGftu/W8/HlnPE9NvOXQe0bjS9Rtk0MyUREcGbsuCTnE +qWUFunKspZkzgIZTiznAF582UZwerwl2pAlMpC7w3TtUSpRL+mB2VtPTwjNdwy8 qFlXvvpRDBIDR5cyD/ggUPM+I18CpCeRNGB27dhzK5jY7GGPNV2SI0i4TLZ4iC3C fA7bGcdFiToWmTFKHM0ZKJ6N9TvZaKREzVwtGWqIDRNGPKGCSGK6Zdgv5yAwcrGA 7M5RsyOfRCHS/M4WqLXo38z3w2bG3zKoZzGcWunNZuLLYJnLFHveHm8wCx5fpOtv M3+8ZunR+22IlA== -----END CERTIFICATE-----Generated at Wed Dec 24 21:50:52 2025 by rpki-client