This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/f6969c-3a6e-4bec-9742-ece87c6a0318/1/ypAPHhHi0l0LIxatbgEmhIOayB4.mft File: ypAPHhHi0l0LIxatbgEmhIOayB4.mft (raw, json) Hash identifier: IVzuPA9adWUt7gsuCLe1wqUr2quTqaYw8n50FC1DR+4= Subject key identifier: FF:04:4A:42:4D:BA:A0:93:DC:60:19:54:18:98:2C:8D:AE:A1:4C:97 Authority key identifier: CA:90:0F:1E:11:E2:D2:5D:0B:23:16:AD:6E:01:26:84:83:9A:C8:1E Certificate issuer: /CN=ca900f1e11e2d25d0b2316ad6e012684839ac81e Certificate serial: 019B3F11E5825D82E8A2325B4C09917FC117 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ypAPHhHi0l0LIxatbgEmhIOayB4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/f6969c-3a6e-4bec-9742-ece87c6a0318/1/ypAPHhHi0l0LIxatbgEmhIOayB4.mft Manifest number: 178A Signing time: Sun 21 Dec 2025 04:01:35 +0000 Manifest this update: Sun 21 Dec 2025 04:01:35 +0000 Manifest next update: Mon 22 Dec 2025 04:01:35 +0000 Files and hashes: 1: UvHXXFoVL7W8kRf_CmjRtC48uH4.roa (hash: E8q/i3b6Anio6852XqG98vgAFVWa9Xn560kQh/u0aSY=) 2: ypAPHhHi0l0LIxatbgEmhIOayB4.crl (hash: Y+1zboVs6MrF/5vGrXnOJPWt0YC1ShGkpHCEJ+yBSiw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/f6969c-3a6e-4bec-9742-ece87c6a0318/1/ypAPHhHi0l0LIxatbgEmhIOayB4.crl rsync://rpki.ripe.net/repository/DEFAULT/ce/f6969c-3a6e-4bec-9742-ece87c6a0318/1/ypAPHhHi0l0LIxatbgEmhIOayB4.mft rsync://rpki.ripe.net/repository/DEFAULT/ypAPHhHi0l0LIxatbgEmhIOayB4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3f:11:e5:82:5d:82:e8:a2:32:5b:4c:09:91:7f:c1:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ca900f1e11e2d25d0b2316ad6e012684839ac81e Validity Not Before: Dec 21 04:01:35 2025 GMT Not After : Dec 22 04:01:35 2025 GMT Subject: CN=ff044a424dbaa093dc60195418982c8daea14c97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:b8:75:10:51:8f:f3:25:ed:f7:b4:43:f1:f1: 2c:75:3a:d7:63:73:ee:81:1e:3a:c0:3e:48:06:32: 52:d4:b2:2e:03:e8:56:f7:29:3c:eb:69:5c:35:d9: d6:76:24:1c:9d:14:3d:d6:d3:db:e2:d7:2c:4b:1a: 70:37:35:76:e1:e0:76:99:c1:95:ec:95:c9:57:f5: ca:91:22:1b:5e:95:24:bc:35:8f:5b:ff:26:02:2c: 6a:6e:88:2c:69:fa:69:49:d4:76:fe:d9:aa:86:c7: fd:5e:69:53:b9:07:d4:24:da:5f:e6:bf:f1:92:ee: 6c:9d:1a:d7:8a:82:64:18:e4:5e:6e:df:7c:40:7c: 10:d3:f7:53:bc:1d:a7:55:da:16:f0:f2:3a:84:cd: ab:93:47:20:05:c1:0f:7b:2b:3f:f3:41:e4:d9:77: ce:d0:98:7a:6d:7d:56:79:ad:4e:6c:22:58:87:31: ab:17:0f:68:38:de:c7:00:c6:28:93:21:e4:2f:20: a4:b1:0e:0b:5a:8e:22:39:e1:86:3b:61:eb:42:1a: d4:f5:9f:4c:28:8c:c1:af:cf:83:6f:2c:98:58:1e: 9b:87:0c:98:9f:79:03:2e:ae:3c:cf:c0:2f:1f:72: 0a:32:cf:f5:4c:a1:3c:25:9c:1c:5a:59:15:62:9e: 07:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:04:4A:42:4D:BA:A0:93:DC:60:19:54:18:98:2C:8D:AE:A1:4C:97 X509v3 Authority Key Identifier: keyid:CA:90:0F:1E:11:E2:D2:5D:0B:23:16:AD:6E:01:26:84:83:9A:C8:1E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ypAPHhHi0l0LIxatbgEmhIOayB4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/f6969c-3a6e-4bec-9742-ece87c6a0318/1/ypAPHhHi0l0LIxatbgEmhIOayB4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/f6969c-3a6e-4bec-9742-ece87c6a0318/1/ypAPHhHi0l0LIxatbgEmhIOayB4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 48:a5:bd:e5:db:ba:d3:e6:a7:1b:bf:ea:3d:c1:08:74:1e:09: 89:29:8f:27:9f:80:19:eb:3d:91:90:4b:7d:21:17:2c:47:bd: a4:15:0f:bf:cb:f3:01:48:44:36:2a:da:30:8d:09:5a:09:9a: 7b:d8:0f:1b:06:dd:6f:d3:a8:9c:d1:bb:40:7e:56:8b:65:d7: 0b:fe:74:b3:b1:c1:58:5c:d8:78:ea:73:f4:0d:28:f2:a2:5b: de:dc:26:32:82:de:c1:dc:11:bb:0a:f3:26:65:42:f0:bd:40: 66:bc:34:1d:a2:62:85:1b:d5:a5:d1:3f:87:78:24:d9:e8:13: 68:c1:eb:e3:7a:c8:96:9c:42:4e:ce:c7:bd:f4:e6:ac:9b:e2: 1f:87:ab:0a:c0:b9:5e:c4:39:12:3e:98:c8:77:41:b2:47:13: 84:57:fa:c5:ad:cb:59:c6:bd:aa:75:4c:51:85:6c:f5:1f:22: 0d:7d:94:0a:9a:c7:4f:c7:80:51:49:a6:b7:86:02:f1:3a:59: cc:54:46:2a:c0:1d:93:7d:47:5b:34:51:55:63:37:f0:d8:6b: 60:50:38:e0:01:69:41:60:59:3b:10:e3:ce:f0:d7:d3:7d:d8: 6c:5e:81:2b:c2:0b:47:bf:60:94:3b:52:d1:52:3c:80:14:3d: 57:3a:5a:e3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs/EeWCXYLoojJbTAmRf8EXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNhOTAwZjFlMTFlMmQyNWQwYjIzMTZhZDZlMDEyNjg0ODM5 YWM4MWUwHhcNMjUxMjIxMDQwMTM1WhcNMjUxMjIyMDQwMTM1WjAzMTEwLwYDVQQD EyhmZjA0NGE0MjRkYmFhMDkzZGM2MDE5NTQxODk4MmM4ZGFlYTE0Yzk3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqbh1EFGP8yXt97RD8fEsdTrXY3Pu gR46wD5IBjJS1LIuA+hW9yk862lcNdnWdiQcnRQ91tPb4tcsSxpwNzV24eB2mcGV 7JXJV/XKkSIbXpUkvDWPW/8mAixqbogsafppSdR2/tmqhsf9XmlTuQfUJNpf5r/x ku5snRrXioJkGORebt98QHwQ0/dTvB2nVdoW8PI6hM2rk0cgBcEPeys/80Hk2XfO 0Jh6bX1Wea1ObCJYhzGrFw9oON7HAMYokyHkLyCksQ4LWo4iOeGGO2HrQhrU9Z9M KIzBr8+DbyyYWB6bhwyYn3kDLq48z8AvH3IKMs/1TKE8JZwcWlkVYp4H1wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFP8ESkJNuqCT3GAZVBiYLI2uoUyXMB8GA1UdIwQY MBaAFMqQDx4R4tJdCyMWrW4BJoSDmsgeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveXBBUEhoSGkwbDBMSXhhdGJnRW1oSU9heUI0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZS9mNjk2OWMtM2E2ZS00YmVjLTk3NDIt ZWNlODdjNmEwMzE4LzEveXBBUEhoSGkwbDBMSXhhdGJnRW1oSU9heUI0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jZS9mNjk2OWMtM2E2ZS00YmVjLTk3NDItZWNlODdjNmEwMzE4 LzEveXBBUEhoSGkwbDBMSXhhdGJnRW1oSU9heUI0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASKW95du6 0+anG7/qPcEIdB4JiSmPJ5+AGes9kZBLfSEXLEe9pBUPv8vzAUhENiraMI0JWgma e9gPGwbdb9OonNG7QH5Wi2XXC/50s7HBWFzYeOpz9A0o8qJb3twmMoLewdwRuwrz JmVC8L1AZrw0HaJihRvVpdE/h3gk2egTaMHr43rIlpxCTs7HvfTmrJviH4erCsC5 XsQ5Ej6YyHdBskcThFf6xa3LWca9qnVMUYVs9R8iDX2UCprHT8eAUUmmt4YC8TpZ zFRGKsAdk31HWzRRVWM38NhrYFA44AFpQWBZOxDjzvDX033YbF6BK8ILR79glDtS 0VI8gBQ9Vzpa4w== -----END CERTIFICATE-----Generated at Sun Dec 21 05:51:04 2025 by rpki-client