This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/39d734-6fb1-4dc0-a128-d75f595fa7c3/1/YMjVd0f3KXAO8vVhT2397I0Rny0.mft File: YMjVd0f3KXAO8vVhT2397I0Rny0.mft (raw, json) Hash identifier: XYz1nJs+pdTo3Ovl37gN/MDbwFbWIAImuLQHnqv1YvA= Subject key identifier: B6:3F:36:AA:95:F5:E1:52:81:01:83:47:84:1A:73:48:3F:98:F3:59 Authority key identifier: 60:C8:D5:77:47:F7:29:70:0E:F2:F5:61:4F:6D:FD:EC:8D:11:9F:2D Certificate issuer: /CN=60c8d57747f729700ef2f5614f6dfdec8d119f2d Certificate serial: 019B3C7F30167BBA74A86C27B92D52E7405A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YMjVd0f3KXAO8vVhT2397I0Rny0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/39d734-6fb1-4dc0-a128-d75f595fa7c3/1/YMjVd0f3KXAO8vVhT2397I0Rny0.mft Manifest number: 1063 Signing time: Sat 20 Dec 2025 16:02:06 +0000 Manifest this update: Sat 20 Dec 2025 16:02:06 +0000 Manifest next update: Sun 21 Dec 2025 16:02:06 +0000 Files and hashes: 1: YMjVd0f3KXAO8vVhT2397I0Rny0.crl (hash: p2oJeabtIcF0i4ZCJeks393VozP55FzJFp+3Si+5eIc=) 2: qx-NGj8MV_Cd9zpPet-1VEa08Ro.roa (hash: cxZbSa6oQLmYFFxeIAfjlhTWw1+qGjLvscb3SdGJg1o=) 3: r2K_C06ic0Dj0a3NFZhhI6ooNvs.roa (hash: bne8Sm5wB0CMu858I+GoE6ZpkxWpdhA80NITFW1Cun8=) 4: yeRaarOsqQL6T8MId8Dw-zjDpyI.roa (hash: PcKi02vr0pDiDVlpa/LbtFTT0UyPuUQNtlWvZyQzOuw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/39d734-6fb1-4dc0-a128-d75f595fa7c3/1/YMjVd0f3KXAO8vVhT2397I0Rny0.crl rsync://rpki.ripe.net/repository/DEFAULT/d6/39d734-6fb1-4dc0-a128-d75f595fa7c3/1/YMjVd0f3KXAO8vVhT2397I0Rny0.mft rsync://rpki.ripe.net/repository/DEFAULT/YMjVd0f3KXAO8vVhT2397I0Rny0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 15:46:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3c:7f:30:16:7b:ba:74:a8:6c:27:b9:2d:52:e7:40:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=60c8d57747f729700ef2f5614f6dfdec8d119f2d Validity Not Before: Dec 20 16:02:06 2025 GMT Not After : Dec 21 16:02:06 2025 GMT Subject: CN=b63f36aa95f5e15281018347841a73483f98f359 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:01:a4:3e:82:48:2d:63:e3:bb:e2:4a:1d:af: 1b:d9:7d:16:20:d6:0a:ab:f1:bb:98:0a:bc:9a:5b: 9c:4a:f2:a2:dc:e1:97:b5:9c:c4:b7:68:6f:86:78: c7:5f:28:56:34:88:00:8b:9c:d0:9f:d8:6e:48:20: 76:4d:8c:0e:51:12:a6:7c:ed:5c:91:86:88:b1:ff: d0:c1:2e:d6:cf:3e:2e:8a:8f:27:a3:8b:f3:2e:13: 7c:dd:d5:b3:3e:49:c6:cf:76:7b:03:55:c6:c1:97: fa:00:ea:a8:8f:24:12:c1:96:c7:21:bc:87:52:83: a8:5b:10:8d:d4:44:b8:77:fc:28:0d:01:3c:af:8a: 07:93:f2:a7:15:e3:e2:dc:c5:d4:03:c1:0d:fd:4d: 13:2c:24:6f:82:5f:bd:b1:12:e1:12:81:c8:b6:2a: 86:49:a1:7a:c8:c5:31:73:7f:22:50:a8:1c:94:08: 4a:a4:b3:fb:a6:69:51:f8:34:db:23:85:2b:c0:f4: e4:36:0a:87:b5:08:f4:c2:5c:e6:d2:73:87:a0:58: 6e:38:c6:91:14:50:38:bf:cf:75:ee:a1:99:68:d3: 64:75:08:02:ba:eb:10:9a:51:ad:94:4a:52:2e:f5: 7a:51:51:4f:94:9f:bb:47:76:ba:6e:c3:8e:86:4f: 2c:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:3F:36:AA:95:F5:E1:52:81:01:83:47:84:1A:73:48:3F:98:F3:59 X509v3 Authority Key Identifier: keyid:60:C8:D5:77:47:F7:29:70:0E:F2:F5:61:4F:6D:FD:EC:8D:11:9F:2D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YMjVd0f3KXAO8vVhT2397I0Rny0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/39d734-6fb1-4dc0-a128-d75f595fa7c3/1/YMjVd0f3KXAO8vVhT2397I0Rny0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/39d734-6fb1-4dc0-a128-d75f595fa7c3/1/YMjVd0f3KXAO8vVhT2397I0Rny0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8c:b4:00:6d:12:af:bd:9c:ac:a1:82:c7:b4:17:33:a9:82:bb: 97:a0:af:0f:da:d2:0c:2b:3f:b7:2a:b2:cd:a8:3c:0b:f5:e9: 7f:dc:fb:b1:5e:f6:10:a5:37:70:43:4b:e9:83:24:be:27:5b: b0:4a:32:40:c6:5c:2c:9a:c5:89:33:1a:67:aa:a0:b7:99:88: 08:dd:5e:d8:3c:8e:c0:4a:76:a7:79:e8:2e:cc:7d:b4:c0:41: d9:20:c2:17:6f:c6:a8:63:89:13:3d:a7:36:9c:21:e5:a3:27: 8d:7f:49:1f:18:f8:4e:01:1f:e9:96:1a:38:10:72:6e:d6:cf: e7:e9:58:a7:b6:58:e8:e5:7a:23:3c:d8:a6:1f:55:b8:8a:96: 5d:4c:85:2e:45:bc:3e:3f:18:41:f7:51:1c:31:92:b5:70:6c: ba:7f:6c:ea:70:a8:73:31:ac:75:1a:dc:6b:20:c1:4c:15:a0: 63:2a:43:84:7e:c0:b3:e8:15:ca:4e:46:c9:33:08:3f:11:c6: 7d:d0:9f:1d:53:f0:d8:e1:a2:41:80:fe:17:be:48:66:92:7d: 1b:09:42:cb:92:77:2f:13:f7:fd:20:69:54:bc:00:00:0c:02: 6f:07:28:eb:0c:42:9b:94:38:46:5c:22:23:9c:32:09:65:88: f8:75:86:7b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs8fzAWe7p0qGwnuS1S50BaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwYzhkNTc3NDdmNzI5NzAwZWYyZjU2MTRmNmRmZGVjOGQx MTlmMmQwHhcNMjUxMjIwMTYwMjA2WhcNMjUxMjIxMTYwMjA2WjAzMTEwLwYDVQQD EyhiNjNmMzZhYTk1ZjVlMTUyODEwMTgzNDc4NDFhNzM0ODNmOThmMzU5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1wGkPoJILWPju+JKHa8b2X0WINYK q/G7mAq8mlucSvKi3OGXtZzEt2hvhnjHXyhWNIgAi5zQn9huSCB2TYwOURKmfO1c kYaIsf/QwS7Wzz4uio8no4vzLhN83dWzPknGz3Z7A1XGwZf6AOqojyQSwZbHIbyH UoOoWxCN1ES4d/woDQE8r4oHk/KnFePi3MXUA8EN/U0TLCRvgl+9sRLhEoHItiqG SaF6yMUxc38iUKgclAhKpLP7pmlR+DTbI4UrwPTkNgqHtQj0wlzm0nOHoFhuOMaR FFA4v8917qGZaNNkdQgCuusQmlGtlEpSLvV6UVFPlJ+7R3a6bsOOhk8s1wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLY/NqqV9eFSgQGDR4Qac0g/mPNZMB8GA1UdIwQY MBaAFGDI1XdH9ylwDvL1YU9t/eyNEZ8tMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWU1qVmQwZjNLWEFPOHZWaFQyMzk3STBSbnkwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNi8zOWQ3MzQtNmZiMS00ZGMwLWExMjgt ZDc1ZjU5NWZhN2MzLzEvWU1qVmQwZjNLWEFPOHZWaFQyMzk3STBSbnkwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNi8zOWQ3MzQtNmZiMS00ZGMwLWExMjgtZDc1ZjU5NWZhN2Mz LzEvWU1qVmQwZjNLWEFPOHZWaFQyMzk3STBSbnkwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjLQAbRKv vZysoYLHtBczqYK7l6CvD9rSDCs/tyqyzag8C/Xpf9z7sV72EKU3cENL6YMkvidb sEoyQMZcLJrFiTMaZ6qgt5mICN1e2DyOwEp2p3noLsx9tMBB2SDCF2/GqGOJEz2n Npwh5aMnjX9JHxj4TgEf6ZYaOBBybtbP5+lYp7ZY6OV6IzzYph9VuIqWXUyFLkW8 Pj8YQfdRHDGStXBsun9s6nCoczGsdRrcayDBTBWgYypDhH7As+gVyk5GyTMIPxHG fdCfHVPw2OGiQYD+F75IZpJ9GwlCy5J3LxP3/SBpVLwAAAwCbwco6wxCm5Q4Rlwi I5wyCWWI+HWGew== -----END CERTIFICATE-----Generated at Sat Dec 20 22:57:20 2025 by rpki-client