This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/7afb6d-a899-4bd3-8e2c-fa9233535ff1/1/YAJlJf1EpPx1siRPgNAiY09fdjU.mft File: YAJlJf1EpPx1siRPgNAiY09fdjU.mft (raw, json) Hash identifier: 6h27Kus8+Y2A4mQHTfP0sToJTBAXqxbcg+ZFhwTCjss= Subject key identifier: 22:D4:B3:FF:C3:9C:A8:E7:0D:BE:7F:F2:54:74:42:30:EE:70:F5:CB Authority key identifier: 60:02:65:25:FD:44:A4:FC:75:B2:24:4F:80:D0:22:63:4F:5F:76:35 Certificate issuer: /CN=60026525fd44a4fc75b2244f80d022634f5f7635 Certificate serial: 019B52CEB1EB031E406B7EB7CE10FA58B162 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YAJlJf1EpPx1siRPgNAiY09fdjU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/7afb6d-a899-4bd3-8e2c-fa9233535ff1/1/YAJlJf1EpPx1siRPgNAiY09fdjU.mft Manifest number: 018B Signing time: Thu 25 Dec 2025 00:00:36 +0000 Manifest this update: Thu 25 Dec 2025 00:00:36 +0000 Manifest next update: Fri 26 Dec 2025 00:00:36 +0000 Files and hashes: 1: YAJlJf1EpPx1siRPgNAiY09fdjU.crl (hash: YmvWx2kk5JbJCBdl1UL4Ymai09QZ6iEfXTHKVkEgcqs=) 2: g9nWnsJ4s0Q4AdnedyFGxQkezGU.roa (hash: BaThYpCk19U9MWT3c8G8+GXTTA8NVbJPkga6Sb96+1U=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/7afb6d-a899-4bd3-8e2c-fa9233535ff1/1/YAJlJf1EpPx1siRPgNAiY09fdjU.crl rsync://rpki.ripe.net/repository/DEFAULT/e2/7afb6d-a899-4bd3-8e2c-fa9233535ff1/1/YAJlJf1EpPx1siRPgNAiY09fdjU.mft rsync://rpki.ripe.net/repository/DEFAULT/YAJlJf1EpPx1siRPgNAiY09fdjU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 26 Dec 2025 00:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:52:ce:b1:eb:03:1e:40:6b:7e:b7:ce:10:fa:58:b1:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=60026525fd44a4fc75b2244f80d022634f5f7635 Validity Not Before: Dec 25 00:00:36 2025 GMT Not After : Dec 26 00:00:36 2025 GMT Subject: CN=22d4b3ffc39ca8e70dbe7ff254744230ee70f5cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:5d:b4:1c:c0:47:40:de:79:0f:06:e1:4b:04: 47:18:f1:1d:4d:51:38:41:49:46:86:d3:52:c5:bb: 27:26:51:48:ae:5a:37:98:c3:e6:21:fe:3c:ed:a0: 60:f6:aa:8d:3f:a7:33:b8:e7:4b:69:7e:a2:d7:06: 9f:e0:9d:be:3b:02:6d:99:2b:e4:6a:f3:e6:16:4c: 9f:5a:89:e9:cf:d7:a9:50:ad:76:38:5a:31:f9:81: dc:b9:82:7c:67:73:6f:95:e5:9b:46:3a:74:29:8d: 8f:ac:15:2e:34:e7:4a:24:25:bc:47:50:d4:fd:56: 19:6a:68:03:59:84:1d:df:9b:d0:ca:4c:8e:a0:13: 40:8a:14:f3:f0:99:d7:1c:24:5e:64:f2:3b:86:be: b9:cc:c7:47:b9:2d:95:e3:1a:c5:39:78:89:aa:b4: 5e:41:45:69:20:14:c1:40:96:96:52:10:fb:a0:46: e5:13:fb:10:f9:78:4e:4f:8b:7c:15:96:9c:48:56: 98:2f:07:f0:b8:c0:b0:d7:3e:9a:46:d9:24:57:7b: f5:ce:e3:ec:6e:5c:0d:50:ed:20:3a:4c:f7:5c:30: 1f:4e:53:2f:4c:b9:79:12:d3:d4:bc:77:e0:c3:ee: 62:06:31:82:a9:8d:4b:8b:ad:30:14:fb:e3:6e:5a: 8c:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:D4:B3:FF:C3:9C:A8:E7:0D:BE:7F:F2:54:74:42:30:EE:70:F5:CB X509v3 Authority Key Identifier: keyid:60:02:65:25:FD:44:A4:FC:75:B2:24:4F:80:D0:22:63:4F:5F:76:35 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YAJlJf1EpPx1siRPgNAiY09fdjU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/7afb6d-a899-4bd3-8e2c-fa9233535ff1/1/YAJlJf1EpPx1siRPgNAiY09fdjU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/7afb6d-a899-4bd3-8e2c-fa9233535ff1/1/YAJlJf1EpPx1siRPgNAiY09fdjU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 25:55:39:bc:81:27:a1:4b:0c:6b:2f:a3:56:66:56:d7:29:35: 35:a5:ff:61:f2:39:fc:41:ae:74:4d:00:04:96:d5:71:73:76: 79:be:ef:57:4c:46:7b:5b:0a:e8:c9:0d:c9:59:6d:e1:a4:0f: d3:ea:ef:2f:c5:e3:86:50:4e:22:e2:d6:1c:81:3e:e3:d8:bd: 7f:9d:53:d2:96:62:77:73:90:68:fd:a6:d8:1e:41:cc:51:bd: f7:ba:40:87:2c:96:33:58:35:aa:1e:9c:1d:7e:14:0c:74:46: ae:42:0b:33:9e:61:8c:e0:26:d6:a7:37:02:22:05:c1:31:41: 87:9b:9c:60:ee:ee:67:e4:5a:c1:3f:33:f5:eb:ce:17:c2:b5: eb:3b:cb:2c:94:45:fa:af:56:cd:f4:35:a7:e2:29:23:52:db: 0d:64:73:05:d8:a7:c5:cf:55:da:fa:af:94:f9:37:f1:d2:2a: a5:d4:3c:a4:28:f1:53:dd:54:20:92:f2:ec:93:a2:18:bd:23: cd:7d:99:eb:a2:55:0a:e5:5f:5f:8b:73:ae:1c:2d:7a:f5:01: fc:3f:eb:7b:b5:fd:6d:de:dc:4f:76:ab:eb:a5:51:54:7a:8b: f2:27:7c:f4:d3:6b:b3:7c:5c:ba:e0:ae:17:b4:7e:56:d2:29: 5b:01:aa:18 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtSzrHrAx5Aa363zhD6WLFiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwMDI2NTI1ZmQ0NGE0ZmM3NWIyMjQ0ZjgwZDAyMjYzNGY1 Zjc2MzUwHhcNMjUxMjI1MDAwMDM2WhcNMjUxMjI2MDAwMDM2WjAzMTEwLwYDVQQD EygyMmQ0YjNmZmMzOWNhOGU3MGRiZTdmZjI1NDc0NDIzMGVlNzBmNWNiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzF20HMBHQN55DwbhSwRHGPEdTVE4 QUlGhtNSxbsnJlFIrlo3mMPmIf487aBg9qqNP6czuOdLaX6i1waf4J2+OwJtmSvk avPmFkyfWonpz9epUK12OFox+YHcuYJ8Z3NvleWbRjp0KY2PrBUuNOdKJCW8R1DU /VYZamgDWYQd35vQykyOoBNAihTz8JnXHCReZPI7hr65zMdHuS2V4xrFOXiJqrRe QUVpIBTBQJaWUhD7oEblE/sQ+XhOT4t8FZacSFaYLwfwuMCw1z6aRtkkV3v1zuPs blwNUO0gOkz3XDAfTlMvTLl5EtPUvHfgw+5iBjGCqY1Li60wFPvjblqMUwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCLUs//DnKjnDb5/8lR0QjDucPXLMB8GA1UdIwQY MBaAFGACZSX9RKT8dbIkT4DQImNPX3Y1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWUFKbEpmMUVwUHgxc2lSUGdOQWlZMDlmZGpVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMi83YWZiNmQtYTg5OS00YmQzLThlMmMt ZmE5MjMzNTM1ZmYxLzEvWUFKbEpmMUVwUHgxc2lSUGdOQWlZMDlmZGpVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMi83YWZiNmQtYTg5OS00YmQzLThlMmMtZmE5MjMzNTM1ZmYx LzEvWUFKbEpmMUVwUHgxc2lSUGdOQWlZMDlmZGpVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJVU5vIEn oUsMay+jVmZW1yk1NaX/YfI5/EGudE0ABJbVcXN2eb7vV0xGe1sK6MkNyVlt4aQP 0+rvL8XjhlBOIuLWHIE+49i9f51T0pZid3OQaP2m2B5BzFG997pAhyyWM1g1qh6c HX4UDHRGrkILM55hjOAm1qc3AiIFwTFBh5ucYO7uZ+RawT8z9evOF8K16zvLLJRF +q9WzfQ1p+IpI1LbDWRzBdinxc9V2vqvlPk38dIqpdQ8pCjxU91UIJLy7JOiGL0j zX2Z66JVCuVfX4tzrhwtevUB/D/re7X9bd7cT3ar66VRVHqL8id89NNrs3xcuuCu F7R+VtIpWwGqGA== -----END CERTIFICATE-----Generated at Thu Dec 25 07:37:40 2025 by rpki-client