This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/b9686e-6580-450d-9c22-9c581591ec91/1/y1VqsSmQ8Ycanh7nQ5aaqKJ5n8o.mft File: y1VqsSmQ8Ycanh7nQ5aaqKJ5n8o.mft (raw, json) Hash identifier: 99yypkCL5P4uNINPzsiMOJdOI684mkapHYRg4HBsgGc= Subject key identifier: E3:81:91:65:ED:B3:0A:15:5C:D2:7F:62:44:19:63:8E:80:D0:2C:6D Authority key identifier: CB:55:6A:B1:29:90:F1:87:1A:9E:1E:E7:43:96:9A:A8:A2:79:9F:CA Certificate issuer: /CN=cb556ab12990f1871a9e1ee743969aa8a2799fca Certificate serial: 019B32D734BCD67BE745DE5D943DB283AA2E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y1VqsSmQ8Ycanh7nQ5aaqKJ5n8o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/b9686e-6580-450d-9c22-9c581591ec91/1/y1VqsSmQ8Ycanh7nQ5aaqKJ5n8o.mft Manifest number: 16E5 Signing time: Thu 18 Dec 2025 19:02:02 +0000 Manifest this update: Thu 18 Dec 2025 19:02:02 +0000 Manifest next update: Fri 19 Dec 2025 19:02:02 +0000 Files and hashes: 1: y1VqsSmQ8Ycanh7nQ5aaqKJ5n8o.crl (hash: SBQoJphI5kcC8eYVOyQYzfxMh5YkWTzfrI/TSmTKcdY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/b9686e-6580-450d-9c22-9c581591ec91/1/y1VqsSmQ8Ycanh7nQ5aaqKJ5n8o.crl rsync://rpki.ripe.net/repository/DEFAULT/c3/b9686e-6580-450d-9c22-9c581591ec91/1/y1VqsSmQ8Ycanh7nQ5aaqKJ5n8o.mft rsync://rpki.ripe.net/repository/DEFAULT/y1VqsSmQ8Ycanh7nQ5aaqKJ5n8o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 19:02:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:32:d7:34:bc:d6:7b:e7:45:de:5d:94:3d:b2:83:aa:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cb556ab12990f1871a9e1ee743969aa8a2799fca Validity Not Before: Dec 18 19:02:02 2025 GMT Not After : Dec 19 19:02:02 2025 GMT Subject: CN=e3819165edb30a155cd27f624419638e80d02c6d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:c1:d4:d5:c8:5c:b8:04:9f:67:72:c5:99:10: 71:11:36:2f:07:ea:e1:55:3c:de:bb:69:69:d7:a6: 14:22:b9:5e:af:fb:05:a4:4e:6a:af:20:1e:5b:ca: e4:8f:92:32:3e:e3:4c:a1:bf:f7:25:c8:3b:ee:5c: ad:90:bf:c1:6d:f7:1c:1b:f2:77:d8:8a:aa:a5:f2: 69:5d:0a:f3:89:6a:ec:be:7b:f3:84:c7:cc:84:66: 4f:d4:13:44:d4:51:84:ae:9f:78:86:92:0b:1e:f8: 7b:f0:c8:77:e5:41:cc:cb:62:ad:70:f7:be:e7:01: 17:45:13:71:b6:aa:c1:33:64:a2:ca:e3:f1:ed:a9: 75:10:fd:b3:c4:ef:a5:9c:6b:24:2e:0e:45:15:37: 4d:83:33:62:25:19:84:64:49:99:af:66:f6:f5:79: 7f:36:99:b8:d9:7a:dd:90:77:a3:69:47:5c:3f:d5: 96:ce:e3:ba:ac:a4:48:de:14:d8:ce:b4:1c:d6:2a: 5b:3f:31:91:fe:44:29:48:a3:08:9c:9c:60:ee:98: a4:e6:b6:43:aa:89:ce:7e:6b:ff:a5:71:6b:25:5e: bc:46:55:fa:6b:14:3d:e5:3d:ce:ef:b1:51:86:c7: 51:60:aa:3e:4d:8d:1d:43:93:1f:8e:07:7b:fc:5e: 78:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:81:91:65:ED:B3:0A:15:5C:D2:7F:62:44:19:63:8E:80:D0:2C:6D X509v3 Authority Key Identifier: keyid:CB:55:6A:B1:29:90:F1:87:1A:9E:1E:E7:43:96:9A:A8:A2:79:9F:CA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y1VqsSmQ8Ycanh7nQ5aaqKJ5n8o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/b9686e-6580-450d-9c22-9c581591ec91/1/y1VqsSmQ8Ycanh7nQ5aaqKJ5n8o.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/b9686e-6580-450d-9c22-9c581591ec91/1/y1VqsSmQ8Ycanh7nQ5aaqKJ5n8o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 20:34:3d:80:db:51:c1:cd:ab:60:19:e1:63:b6:e6:36:e5:2d: fa:7b:67:17:c1:a8:a4:eb:36:0a:07:de:84:a6:63:05:8c:08: 57:88:22:2e:11:8e:26:fe:c8:5a:49:b1:6e:d2:73:67:1d:59: 28:cc:ed:be:29:ff:93:bb:59:c2:ea:da:cb:8c:77:2b:00:7f: 92:45:8a:81:63:c9:26:f8:2a:99:de:fd:e4:8d:7f:0a:ce:52: 9c:58:a0:98:67:86:cf:99:0f:6a:aa:bb:7f:7e:49:81:54:75: 03:cf:63:5f:3f:2a:0b:a2:cf:78:4a:4b:56:c0:9f:18:ab:03: 4c:92:07:a7:77:a5:2f:10:f9:6b:e7:9e:52:dd:25:f9:6e:8c: 71:4b:e3:1a:15:da:cf:68:1b:70:a7:10:aa:c4:41:c8:88:33: 35:c4:62:71:99:80:d7:db:1a:6f:b2:63:1d:fe:e7:8b:d9:96: 89:26:af:2b:cf:58:00:26:60:69:69:90:4e:86:f1:ab:93:ab: 11:bd:30:8e:fe:d5:63:86:d7:3f:f3:dd:9f:7b:d7:bd:d7:01: d7:6f:11:ed:9d:8a:2c:3f:7f:e2:2f:7c:76:f9:34:37:b8:27: 98:2d:5e:6d:ac:07:38:8f:62:12:ef:85:db:57:c5:5c:df:34: ff:32:2a:61 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsy1zS81nvnRd5dlD2yg6ouMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNiNTU2YWIxMjk5MGYxODcxYTllMWVlNzQzOTY5YWE4YTI3 OTlmY2EwHhcNMjUxMjE4MTkwMjAyWhcNMjUxMjE5MTkwMjAyWjAzMTEwLwYDVQQD EyhlMzgxOTE2NWVkYjMwYTE1NWNkMjdmNjI0NDE5NjM4ZTgwZDAyYzZkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7cHU1chcuASfZ3LFmRBxETYvB+rh VTzeu2lp16YUIrler/sFpE5qryAeW8rkj5IyPuNMob/3Jcg77lytkL/BbfccG/J3 2IqqpfJpXQrziWrsvnvzhMfMhGZP1BNE1FGErp94hpILHvh78Mh35UHMy2KtcPe+ 5wEXRRNxtqrBM2SiyuPx7al1EP2zxO+lnGskLg5FFTdNgzNiJRmEZEmZr2b29Xl/ Npm42XrdkHejaUdcP9WWzuO6rKRI3hTYzrQc1ipbPzGR/kQpSKMInJxg7pik5rZD qonOfmv/pXFrJV68RlX6axQ95T3O77FRhsdRYKo+TY0dQ5Mfjgd7/F54SwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOOBkWXtswoVXNJ/YkQZY46A0CxtMB8GA1UdIwQY MBaAFMtVarEpkPGHGp4e50OWmqiieZ/KMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveTFWcXNTbVE4WWNhbmg3blE1YWFxS0o1bjhvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy9iOTY4NmUtNjU4MC00NTBkLTljMjIt OWM1ODE1OTFlYzkxLzEveTFWcXNTbVE4WWNhbmg3blE1YWFxS0o1bjhvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMy9iOTY4NmUtNjU4MC00NTBkLTljMjItOWM1ODE1OTFlYzkx LzEveTFWcXNTbVE4WWNhbmg3blE1YWFxS0o1bjhvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIDQ9gNtR wc2rYBnhY7bmNuUt+ntnF8GopOs2CgfehKZjBYwIV4giLhGOJv7IWkmxbtJzZx1Z KMztvin/k7tZwuray4x3KwB/kkWKgWPJJvgqmd795I1/Cs5SnFigmGeGz5kPaqq7 f35JgVR1A89jXz8qC6LPeEpLVsCfGKsDTJIHp3elLxD5a+eeUt0l+W6McUvjGhXa z2gbcKcQqsRByIgzNcRicZmA19sab7JjHf7ni9mWiSavK89YACZgaWmQTobxq5Or Eb0wjv7VY4bXP/Pdn3vXvdcB128R7Z2KLD9/4i98dvk0N7gnmC1ebawHOI9iEu+F 21fFXN80/zIqYQ== -----END CERTIFICATE-----Generated at Fri Dec 19 01:24:30 2025 by rpki-client