This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/a1f351-42fd-4d44-a9b3-d940050e56ca/1/yFRMd4FS8P2F5dy0SQTwAeWYdCQ.mft File: yFRMd4FS8P2F5dy0SQTwAeWYdCQ.mft (raw, json) Hash identifier: eKuSr03BJlsmtaUVkMfaE47QhLrHB1zdAAGjf2+n3WI= Subject key identifier: F2:ED:20:DF:91:01:43:AF:2C:D4:1F:BA:27:69:A8:80:E9:A9:C6:D4 Authority key identifier: C8:54:4C:77:81:52:F0:FD:85:E5:DC:B4:49:04:F0:01:E5:98:74:24 Certificate issuer: /CN=c8544c778152f0fd85e5dcb44904f001e5987424 Certificate serial: 019B3C0FE57856D820E28AA65C9062F408D0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yFRMd4FS8P2F5dy0SQTwAeWYdCQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/a1f351-42fd-4d44-a9b3-d940050e56ca/1/yFRMd4FS8P2F5dy0SQTwAeWYdCQ.mft Manifest number: 0833 Signing time: Sat 20 Dec 2025 14:00:33 +0000 Manifest this update: Sat 20 Dec 2025 14:00:33 +0000 Manifest next update: Sun 21 Dec 2025 14:00:33 +0000 Files and hashes: 1: S6l_0JOcWBI56o1Ky2VXoMdeNbs.roa (hash: Wj6L5jF5/gTOwMGZzw/KKTZV7RAbfIUF0qejcJRN4Ao=) 2: nUgVe_wCiJGaFj6dh7AjUlPsEn0.roa (hash: jaTBLGxMAzmUNw1xz6jc+rhc56U1GYTnqK8npgQkUZU=) 3: yFRMd4FS8P2F5dy0SQTwAeWYdCQ.crl (hash: Jzwt8mjfwOJCXcKHx/TI1XytQ0V3RTu3exUmKR1xPfQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e9/a1f351-42fd-4d44-a9b3-d940050e56ca/1/yFRMd4FS8P2F5dy0SQTwAeWYdCQ.crl rsync://rpki.ripe.net/repository/DEFAULT/e9/a1f351-42fd-4d44-a9b3-d940050e56ca/1/yFRMd4FS8P2F5dy0SQTwAeWYdCQ.mft rsync://rpki.ripe.net/repository/DEFAULT/yFRMd4FS8P2F5dy0SQTwAeWYdCQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 10:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3c:0f:e5:78:56:d8:20:e2:8a:a6:5c:90:62:f4:08:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c8544c778152f0fd85e5dcb44904f001e5987424 Validity Not Before: Dec 20 14:00:33 2025 GMT Not After : Dec 21 14:00:33 2025 GMT Subject: CN=f2ed20df910143af2cd41fba2769a880e9a9c6d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:4a:ba:2e:0e:71:fd:bc:f1:71:0d:ce:5e:7e: 2e:64:83:59:ca:8a:d5:84:47:81:fb:1f:e7:30:f8: 07:01:87:ce:49:0a:08:f0:bf:65:21:ff:a8:ee:93: ee:ab:e4:12:86:12:9f:7b:b2:df:78:7e:87:57:b5: ba:a5:83:41:24:b0:c3:fb:06:6e:6e:1b:cc:30:1e: 39:09:35:34:ae:5a:5e:cd:6a:24:06:04:3d:29:02: 38:aa:54:44:e9:0d:8f:94:bf:87:eb:e0:bf:b2:84: 0f:89:ae:05:36:4a:fb:6f:a6:d8:55:6e:94:a5:9f: 7f:a1:11:7e:de:c4:f6:a2:62:75:fc:92:8e:bd:d3: b7:d1:a4:06:4a:d3:1d:9b:4f:d1:93:3d:6c:23:71: 96:c2:a7:ee:0a:e4:cf:21:f6:ca:fa:4a:1b:0a:97: 9e:f8:30:51:3d:52:8a:30:d9:89:62:d3:a2:e7:9a: 04:f2:47:23:c7:e3:85:9f:08:2d:0f:35:8f:3e:87: 9b:2a:89:6d:95:a2:f1:78:8b:6b:2b:f5:6e:b6:08: 5f:7e:75:8a:a5:46:8f:d0:bf:7d:c8:d5:46:6d:09: 24:df:c6:02:7b:32:b7:61:13:8b:a8:6a:7b:71:0c: 41:8c:d8:06:87:bc:17:55:7e:26:af:f2:70:f2:7a: d9:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:ED:20:DF:91:01:43:AF:2C:D4:1F:BA:27:69:A8:80:E9:A9:C6:D4 X509v3 Authority Key Identifier: keyid:C8:54:4C:77:81:52:F0:FD:85:E5:DC:B4:49:04:F0:01:E5:98:74:24 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yFRMd4FS8P2F5dy0SQTwAeWYdCQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/a1f351-42fd-4d44-a9b3-d940050e56ca/1/yFRMd4FS8P2F5dy0SQTwAeWYdCQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/a1f351-42fd-4d44-a9b3-d940050e56ca/1/yFRMd4FS8P2F5dy0SQTwAeWYdCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 00:93:61:70:4c:e0:52:69:81:c8:3e:61:e0:3e:7d:76:5f:1b: 6f:ea:c3:d9:71:f5:59:e0:89:ba:d8:ac:5b:1f:1a:b3:f8:ab: 0b:9c:df:e9:d9:e2:37:17:80:da:5c:0b:58:09:e7:7f:9d:fc: 34:64:4b:6a:b1:42:92:96:c5:2b:db:66:67:f6:fa:d5:f4:75: 00:12:ff:a2:cc:82:f6:6a:43:e9:59:ab:f4:55:24:d8:ce:c7: a8:ba:af:18:72:84:7f:ea:1e:9c:03:ff:db:1e:fc:33:55:7b: df:a5:8b:3f:46:68:68:94:57:9a:2a:2b:d9:6a:18:37:8b:2b: fc:b1:03:e9:00:8d:ed:0b:a6:a6:67:34:da:f2:bc:3b:e0:ca: fb:95:89:e2:3b:f0:74:43:2b:f0:5a:60:d0:15:bd:4d:68:3b: fc:56:a4:fa:05:4a:64:21:4e:e1:d7:c5:0c:17:73:73:aa:a7: 6f:9e:c1:b1:ab:63:0d:b0:b5:27:5e:ed:5c:68:c3:b1:0c:8e: ec:cd:61:9e:3f:2b:01:a8:7e:6b:e5:ab:93:60:05:d6:6c:77: 82:f3:9b:38:78:51:12:af:c7:c8:67:c0:ba:ff:d6:b3:14:3c: 4b:19:4e:0f:9e:ba:1b:f9:37:05:97:e2:37:e4:01:31:8f:c1: c4:39:00:b2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs8D+V4Vtgg4oqmXJBi9AjQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM4NTQ0Yzc3ODE1MmYwZmQ4NWU1ZGNiNDQ5MDRmMDAxZTU5 ODc0MjQwHhcNMjUxMjIwMTQwMDMzWhcNMjUxMjIxMTQwMDMzWjAzMTEwLwYDVQQD EyhmMmVkMjBkZjkxMDE0M2FmMmNkNDFmYmEyNzY5YTg4MGU5YTljNmQ0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqUq6Lg5x/bzxcQ3OXn4uZINZyorV hEeB+x/nMPgHAYfOSQoI8L9lIf+o7pPuq+QShhKfe7LfeH6HV7W6pYNBJLDD+wZu bhvMMB45CTU0rlpezWokBgQ9KQI4qlRE6Q2PlL+H6+C/soQPia4FNkr7b6bYVW6U pZ9/oRF+3sT2omJ1/JKOvdO30aQGStMdm0/Rkz1sI3GWwqfuCuTPIfbK+kobCpee +DBRPVKKMNmJYtOi55oE8kcjx+OFnwgtDzWPPoebKoltlaLxeItrK/VutghffnWK pUaP0L99yNVGbQkk38YCezK3YROLqGp7cQxBjNgGh7wXVX4mr/Jw8nrZUQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPLtIN+RAUOvLNQfuidpqIDpqcbUMB8GA1UdIwQY MBaAFMhUTHeBUvD9heXctEkE8AHlmHQkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveUZSTWQ0RlM4UDJGNWR5MFNRVHdBZVdZZENRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOS9hMWYzNTEtNDJmZC00ZDQ0LWE5YjMt ZDk0MDA1MGU1NmNhLzEveUZSTWQ0RlM4UDJGNWR5MFNRVHdBZVdZZENRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lOS9hMWYzNTEtNDJmZC00ZDQ0LWE5YjMtZDk0MDA1MGU1NmNh LzEveUZSTWQ0RlM4UDJGNWR5MFNRVHdBZVdZZENRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAJNhcEzg UmmByD5h4D59dl8bb+rD2XH1WeCJutisWx8as/irC5zf6dniNxeA2lwLWAnnf538 NGRLarFCkpbFK9tmZ/b61fR1ABL/osyC9mpD6Vmr9FUk2M7HqLqvGHKEf+oenAP/ 2x78M1V736WLP0ZoaJRXmior2WoYN4sr/LED6QCN7Qumpmc02vK8O+DK+5WJ4jvw dEMr8Fpg0BW9TWg7/Fak+gVKZCFO4dfFDBdzc6qnb57BsatjDbC1J17tXGjDsQyO 7M1hnj8rAah+a+Wrk2AF1mx3gvObOHhREq/HyGfAuv/WsxQ8SxlOD566G/k3BZfi N+QBMY/BxDkAsg== -----END CERTIFICATE-----Generated at Sat Dec 20 19:48:58 2025 by rpki-client