This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.mft File: YHZWuPfoG1FJtIYPgSex1OO0h9w.mft (raw, json) Hash identifier: 3/FBsEKHob6ChbZoxBFmJH8H0rGj69MaKz9ABPFmMO0= Subject key identifier: FB:9B:4A:FE:B3:23:D2:07:E1:DA:86:12:FA:4E:F9:04:8C:B1:B2:07 Authority key identifier: 60:76:56:B8:F7:E8:1B:51:49:B4:86:0F:81:27:B1:D4:E3:B4:87:DC Certificate issuer: /CN=607656b8f7e81b5149b4860f8127b1d4e3b487dc Certificate serial: 019B5418C93F8C789EC59CA647E5B43A7222 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YHZWuPfoG1FJtIYPgSex1OO0h9w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.mft Manifest number: 0DA5 Signing time: Thu 25 Dec 2025 06:01:08 +0000 Manifest this update: Thu 25 Dec 2025 06:01:08 +0000 Manifest next update: Fri 26 Dec 2025 06:01:08 +0000 Files and hashes: 1: 7-uxb2sVoc0kcAT2m9SP5qVnZ8E.roa (hash: acdZUKxa+ye22RHZ+hlpmz4eeOUGVIjJiD1cAB8HEbo=) 2: YHZWuPfoG1FJtIYPgSex1OO0h9w.crl (hash: bGSyAE4wPaZb8Zwaz88OhNXYk3HMY/1G1WY2zxAKbB8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.crl rsync://rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.mft rsync://rpki.ripe.net/repository/DEFAULT/YHZWuPfoG1FJtIYPgSex1OO0h9w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 26 Dec 2025 03:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:54:18:c9:3f:8c:78:9e:c5:9c:a6:47:e5:b4:3a:72:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=607656b8f7e81b5149b4860f8127b1d4e3b487dc Validity Not Before: Dec 25 06:01:08 2025 GMT Not After : Dec 26 06:01:08 2025 GMT Subject: CN=fb9b4afeb323d207e1da8612fa4ef9048cb1b207 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:43:1a:21:3b:bb:e9:b5:35:48:41:0d:eb:22: 50:51:56:5a:78:ec:dc:f0:26:2b:d7:47:9c:fe:85: 1b:3b:e2:44:ef:e6:37:82:1c:8b:f2:8e:af:6b:5e: d7:99:4a:1e:80:16:0a:3d:97:7a:28:d0:de:92:44: 37:10:01:5f:db:4d:44:00:9a:88:65:8b:d8:c8:f2: a1:f9:7d:30:ba:bf:18:3b:2a:99:2e:64:c4:b1:df: 47:7c:73:45:33:e4:91:27:d2:fb:05:26:81:54:30: de:2c:ee:8b:98:f4:6f:19:fb:0b:97:dc:1d:95:48: 91:fa:07:48:80:e3:31:db:38:fd:c6:91:78:6c:38: fd:e8:52:32:9d:44:8f:a6:06:85:c0:00:85:3c:3b: 6e:5a:9d:6b:fe:ac:00:b7:31:28:0a:46:79:d1:a7: 0d:78:4c:55:9e:b1:c8:05:11:2b:21:7b:bf:6d:35: 85:89:6a:83:49:06:cd:b7:54:df:bb:4f:2e:87:b7: 08:d8:63:c0:ce:d7:e6:6a:c1:17:52:cb:7c:4f:b5: e3:39:1c:9d:45:4f:de:55:98:fd:2e:28:42:36:2c: 1a:00:43:a4:f4:87:58:08:35:fd:3c:4c:0a:d2:dd: f0:f4:55:68:82:29:b6:a1:8b:c5:eb:69:60:6d:ba: 0c:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:9B:4A:FE:B3:23:D2:07:E1:DA:86:12:FA:4E:F9:04:8C:B1:B2:07 X509v3 Authority Key Identifier: keyid:60:76:56:B8:F7:E8:1B:51:49:B4:86:0F:81:27:B1:D4:E3:B4:87:DC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YHZWuPfoG1FJtIYPgSex1OO0h9w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b4:c1:50:09:a5:09:df:04:a3:b7:1a:07:99:2d:2d:17:f2:e3: 17:d3:84:7e:ed:f6:d8:9d:e7:e0:91:75:e3:4c:c5:75:10:5b: f5:c9:de:44:45:e5:bb:b9:47:c7:cd:95:ee:91:69:85:96:09: d3:8e:ae:75:c3:a4:ca:46:d4:04:e7:fd:d4:f9:a0:31:df:b8: 36:93:ac:87:24:62:05:e0:0e:ff:d2:0e:02:5d:75:f6:40:a2: 80:1d:b6:f0:98:ea:ac:d1:4d:ed:0d:8c:ee:84:c6:73:ed:11: d8:dd:43:18:6e:98:7c:e0:d8:d4:95:d3:d9:89:fb:1f:da:fd: e1:d7:71:2c:76:bf:83:29:86:b2:26:4f:ad:9f:3b:9b:73:7b: e8:77:e9:56:4f:28:73:d1:73:94:1b:c2:3d:ee:95:72:c2:9f: c4:9d:ff:77:08:d0:32:78:74:a6:a2:7e:a3:3c:65:28:7f:9b: 78:47:10:f9:84:f7:79:66:12:9b:f4:ad:98:e4:2f:45:fd:ef: af:80:f7:a1:ac:a1:bc:05:e3:96:d9:3a:ec:0e:18:5b:a1:82: 85:a6:7b:ed:31:e0:76:c6:5e:5b:5b:e7:a5:9f:51:0a:81:7e: 89:e6:a4:a5:33:1d:1e:e8:3b:12:37:d2:97:1f:47:ae:28:b6: f6:41:93:09 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtUGMk/jHiexZymR+W0OnIiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwNzY1NmI4ZjdlODFiNTE0OWI0ODYwZjgxMjdiMWQ0ZTNi NDg3ZGMwHhcNMjUxMjI1MDYwMTA4WhcNMjUxMjI2MDYwMTA4WjAzMTEwLwYDVQQD EyhmYjliNGFmZWIzMjNkMjA3ZTFkYTg2MTJmYTRlZjkwNDhjYjFiMjA3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwkMaITu76bU1SEEN6yJQUVZaeOzc 8CYr10ec/oUbO+JE7+Y3ghyL8o6va17XmUoegBYKPZd6KNDekkQ3EAFf201EAJqI ZYvYyPKh+X0wur8YOyqZLmTEsd9HfHNFM+SRJ9L7BSaBVDDeLO6LmPRvGfsLl9wd lUiR+gdIgOMx2zj9xpF4bDj96FIynUSPpgaFwACFPDtuWp1r/qwAtzEoCkZ50acN eExVnrHIBRErIXu/bTWFiWqDSQbNt1Tfu08uh7cI2GPAztfmasEXUst8T7XjORyd RU/eVZj9LihCNiwaAEOk9IdYCDX9PEwK0t3w9FVogim2oYvF62lgbboM1wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPubSv6zI9IH4dqGEvpO+QSMsbIHMB8GA1UdIwQY MBaAFGB2Vrj36BtRSbSGD4EnsdTjtIfcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWUhaV3VQZm9HMUZKdElZUGdTZXgxT08waDl3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMi9jZWU1NWQtOTg1YS00ZTM2LThlMzkt ODJiYzhhMzE4MGM2LzEvWUhaV3VQZm9HMUZKdElZUGdTZXgxT08waDl3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMi9jZWU1NWQtOTg1YS00ZTM2LThlMzktODJiYzhhMzE4MGM2 LzEvWUhaV3VQZm9HMUZKdElZUGdTZXgxT08waDl3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAtMFQCaUJ 3wSjtxoHmS0tF/LjF9OEfu322J3n4JF140zFdRBb9cneREXlu7lHx82V7pFphZYJ 046udcOkykbUBOf91PmgMd+4NpOshyRiBeAO/9IOAl119kCigB228JjqrNFN7Q2M 7oTGc+0R2N1DGG6YfODY1JXT2Yn7H9r94ddxLHa/gymGsiZPrZ87m3N76HfpVk8o c9FzlBvCPe6VcsKfxJ3/dwjQMnh0pqJ+ozxlKH+beEcQ+YT3eWYSm/StmOQvRf3v r4D3oayhvAXjltk67A4YW6GChaZ77THgdsZeW1vnpZ9RCoF+ieakpTMdHug7EjfS lx9Hrii29kGTCQ== -----END CERTIFICATE-----Generated at Thu Dec 25 09:15:38 2025 by rpki-client