This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/1af51b-7b17-4980-98c7-3c2fa8aaf031/1/YA09DkcUJu84PjkRODpJg78idkQ.mft File: YA09DkcUJu84PjkRODpJg78idkQ.mft (raw, json) Hash identifier: LiopQXXqVNLnhOjA1q61MvcICA+GiQGsjp70Tmhh8IQ= Subject key identifier: 8B:6A:36:98:84:2A:03:07:3E:A9:78:E7:2C:8C:78:C9:4A:8C:79:82 Authority key identifier: 60:0D:3D:0E:47:14:26:EF:38:3E:39:11:38:3A:49:83:BF:22:76:44 Certificate issuer: /CN=600d3d0e471426ef383e3911383a4983bf227644 Certificate serial: 019B341F828D63413A5430F90C16FC4C6279 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YA09DkcUJu84PjkRODpJg78idkQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/1af51b-7b17-4980-98c7-3c2fa8aaf031/1/YA09DkcUJu84PjkRODpJg78idkQ.mft Manifest number: 0455 Signing time: Fri 19 Dec 2025 01:00:38 +0000 Manifest this update: Fri 19 Dec 2025 01:00:38 +0000 Manifest next update: Sat 20 Dec 2025 01:00:38 +0000 Files and hashes: 1: YA09DkcUJu84PjkRODpJg78idkQ.crl (hash: ypBvndeHCObvwgf4vLFHDDz8seSQbwvygn6k4jZFQ4k=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/1af51b-7b17-4980-98c7-3c2fa8aaf031/1/YA09DkcUJu84PjkRODpJg78idkQ.crl rsync://rpki.ripe.net/repository/DEFAULT/d9/1af51b-7b17-4980-98c7-3c2fa8aaf031/1/YA09DkcUJu84PjkRODpJg78idkQ.mft rsync://rpki.ripe.net/repository/DEFAULT/YA09DkcUJu84PjkRODpJg78idkQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 22:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:34:1f:82:8d:63:41:3a:54:30:f9:0c:16:fc:4c:62:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=600d3d0e471426ef383e3911383a4983bf227644 Validity Not Before: Dec 19 01:00:38 2025 GMT Not After : Dec 20 01:00:38 2025 GMT Subject: CN=8b6a3698842a03073ea978e72c8c78c94a8c7982 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:c0:63:f5:1b:2a:df:18:bb:1a:be:33:1f:a7: 4b:91:96:b7:27:11:b4:78:02:fd:6a:db:a4:4f:83: 57:6f:3b:4c:8a:db:97:ab:07:8f:92:fb:02:cd:af: f0:56:3e:a3:4d:9a:a3:b9:7e:30:c1:5b:88:4a:0e: ad:bf:6d:53:c1:b2:ef:5e:ef:7f:60:a6:83:3a:0c: 79:99:0c:d2:b4:70:cf:8b:28:91:36:fa:57:d2:84: 1a:61:ec:d2:58:fd:53:8f:df:51:74:78:28:cd:e4: 24:53:9e:ca:4a:c1:0e:06:2b:12:73:84:7e:9d:4d: da:bf:ae:c2:02:62:2b:75:dc:1a:a3:41:38:f6:cb: cd:dc:86:bb:32:3b:33:10:8a:d9:5e:68:b5:16:36: 4c:0f:53:20:d9:33:e9:98:9e:29:7f:ca:0b:71:7d: 7a:01:02:62:58:d5:d0:53:48:d0:96:92:82:6b:a4: 38:e3:65:72:81:da:1e:01:76:99:79:f7:b8:9f:44: bf:6f:a3:44:bb:a0:70:b0:4b:f8:d2:77:37:76:02: 54:79:02:66:66:00:3c:28:c7:77:e7:2a:7c:21:22: 24:84:50:76:a5:ce:c8:20:ec:eb:ce:8a:36:92:b4: ea:60:46:d4:f6:d7:90:d5:89:ed:64:0b:48:91:e4: 65:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:6A:36:98:84:2A:03:07:3E:A9:78:E7:2C:8C:78:C9:4A:8C:79:82 X509v3 Authority Key Identifier: keyid:60:0D:3D:0E:47:14:26:EF:38:3E:39:11:38:3A:49:83:BF:22:76:44 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YA09DkcUJu84PjkRODpJg78idkQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/1af51b-7b17-4980-98c7-3c2fa8aaf031/1/YA09DkcUJu84PjkRODpJg78idkQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/1af51b-7b17-4980-98c7-3c2fa8aaf031/1/YA09DkcUJu84PjkRODpJg78idkQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 61:df:5c:fc:a4:80:f5:e6:d1:2d:eb:63:af:47:c7:aa:30:2e: b8:ff:2a:7b:64:97:0c:fb:62:eb:59:bf:27:79:7b:77:ed:54: 25:d4:8d:a6:3e:16:4d:de:cc:40:3d:57:67:20:a0:61:6a:ce: 7e:d9:a9:ed:b2:96:d9:37:10:e4:f5:ba:60:a9:a8:c8:70:87: 15:0e:59:8f:e7:df:5a:0e:2d:d7:a9:c2:d0:03:75:fe:78:ae: f5:20:7d:95:73:ce:59:f9:d3:c1:da:e0:87:7b:44:c0:96:8b: 3e:9d:89:cf:86:35:08:b1:30:72:2f:e2:32:5d:52:54:ba:22: d0:cf:b5:cd:e5:1d:c5:23:42:12:6b:52:6b:f5:be:da:b7:9d: a2:c4:b6:41:2d:48:78:fc:e1:d7:be:17:e0:e1:3a:a4:7d:fb: 32:1d:50:d0:0b:f2:7d:01:71:5b:62:cc:ee:55:1c:9a:90:e9: 16:c6:03:1c:c7:a2:7a:b7:0b:b3:08:42:8f:8a:78:ba:ad:a6: 01:70:f4:0b:12:e5:be:2b:c4:75:e0:f7:46:c8:76:5e:cd:cb: 8e:42:1e:16:d5:3b:d3:de:bc:59:d6:e2:b9:60:8c:60:2f:3a: 99:1d:b3:44:9c:48:72:fe:56:7c:d8:2c:0b:d3:51:0e:62:49: 2e:54:02:8c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs0H4KNY0E6VDD5DBb8TGJ5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwMGQzZDBlNDcxNDI2ZWYzODNlMzkxMTM4M2E0OTgzYmYy Mjc2NDQwHhcNMjUxMjE5MDEwMDM4WhcNMjUxMjIwMDEwMDM4WjAzMTEwLwYDVQQD Eyg4YjZhMzY5ODg0MmEwMzA3M2VhOTc4ZTcyYzhjNzhjOTRhOGM3OTgyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAosBj9Rsq3xi7Gr4zH6dLkZa3JxG0 eAL9atukT4NXbztMituXqwePkvsCza/wVj6jTZqjuX4wwVuISg6tv21TwbLvXu9/ YKaDOgx5mQzStHDPiyiRNvpX0oQaYezSWP1Tj99RdHgozeQkU57KSsEOBisSc4R+ nU3av67CAmIrddwao0E49svN3Ia7MjszEIrZXmi1FjZMD1Mg2TPpmJ4pf8oLcX16 AQJiWNXQU0jQlpKCa6Q442VygdoeAXaZefe4n0S/b6NEu6BwsEv40nc3dgJUeQJm ZgA8KMd35yp8ISIkhFB2pc7IIOzrzoo2krTqYEbU9teQ1YntZAtIkeRlyQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFItqNpiEKgMHPql45yyMeMlKjHmCMB8GA1UdIwQY MBaAFGANPQ5HFCbvOD45ETg6SYO/InZEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWUEwOURrY1VKdTg0UGprUk9EcEpnNzhpZGtRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS8xYWY1MWItN2IxNy00OTgwLTk4Yzct M2MyZmE4YWFmMDMxLzEvWUEwOURrY1VKdTg0UGprUk9EcEpnNzhpZGtRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOS8xYWY1MWItN2IxNy00OTgwLTk4YzctM2MyZmE4YWFmMDMx LzEvWUEwOURrY1VKdTg0UGprUk9EcEpnNzhpZGtRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYd9c/KSA 9ebRLetjr0fHqjAuuP8qe2SXDPti61m/J3l7d+1UJdSNpj4WTd7MQD1XZyCgYWrO ftmp7bKW2TcQ5PW6YKmoyHCHFQ5Zj+ffWg4t16nC0AN1/niu9SB9lXPOWfnTwdrg h3tEwJaLPp2Jz4Y1CLEwci/iMl1SVLoi0M+1zeUdxSNCEmtSa/W+2redosS2QS1I ePzh174X4OE6pH37Mh1Q0AvyfQFxW2LM7lUcmpDpFsYDHMeiercLswhCj4p4uq2m AXD0CxLlvivEdeD3Rsh2Xs3LjkIeFtU70968WdbiuWCMYC86mR2zRJxIcv5WfNgs C9NRDmJJLlQCjA== -----END CERTIFICATE-----Generated at Fri Dec 19 03:09:47 2025 by rpki-client