This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/74a1b5-3c2e-48e2-90fd-b49d89e30ddd/1/y9_OOlNV-GH9xIwyASx4ydr5paQ.mft File: y9_OOlNV-GH9xIwyASx4ydr5paQ.mft (raw, json) Hash identifier: iMBoQYDFhYzmimPtTvuw5LZSLBd4x59aCR1ArlLX9xQ= Subject key identifier: 89:5E:BC:AC:A8:FC:5C:9A:8C:7D:AE:AB:EA:A9:57:82:03:89:F4:D2 Authority key identifier: CB:DF:CE:3A:53:55:F8:61:FD:C4:8C:32:01:2C:78:C9:DA:F9:A5:A4 Certificate issuer: /CN=cbdfce3a5355f861fdc48c32012c78c9daf9a5a4 Certificate serial: 019B3A58830F7EA83881E84E0605F5506CCD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y9_OOlNV-GH9xIwyASx4ydr5paQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/74a1b5-3c2e-48e2-90fd-b49d89e30ddd/1/y9_OOlNV-GH9xIwyASx4ydr5paQ.mft Manifest number: 177C Signing time: Sat 20 Dec 2025 06:00:37 +0000 Manifest this update: Sat 20 Dec 2025 06:00:37 +0000 Manifest next update: Sun 21 Dec 2025 06:00:37 +0000 Files and hashes: 1: MOA6z7x0Ys9Uv2Htoky-rZPjT2o.roa (hash: S9joa7cTMXDYAoAEOgCnk8b95etCyEJSsLPR/6iWAt8=) 2: aCI8Jo962pd2BoQhf-dPqcGKVgE.roa (hash: M5raHpaPR3ugbk/T1ToK6O7tBcNA5IW/XHB83K5aUEA=) 3: u_6Z2m-kttn1KGvW0DMCRJb-wGc.roa (hash: 8dKKNumWXSexpArn6diHEL6UixSl6qSaZ9jIxuDxNf0=) 4: y9_OOlNV-GH9xIwyASx4ydr5paQ.crl (hash: bmxf3sjqUFHcDvEru2qzFur/JjMnrlnJfLlJKY+G/m0=) 5: zDW63VDxhl9P505zOu3VSRjg2i8.roa (hash: EzqIt3I5mIkchtA/ykq/H3HkJ82nAlwDFFB+//7vPWc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/74a1b5-3c2e-48e2-90fd-b49d89e30ddd/1/y9_OOlNV-GH9xIwyASx4ydr5paQ.crl rsync://rpki.ripe.net/repository/DEFAULT/ef/74a1b5-3c2e-48e2-90fd-b49d89e30ddd/1/y9_OOlNV-GH9xIwyASx4ydr5paQ.mft rsync://rpki.ripe.net/repository/DEFAULT/y9_OOlNV-GH9xIwyASx4ydr5paQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 06:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3a:58:83:0f:7e:a8:38:81:e8:4e:06:05:f5:50:6c:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cbdfce3a5355f861fdc48c32012c78c9daf9a5a4 Validity Not Before: Dec 20 06:00:37 2025 GMT Not After : Dec 21 06:00:37 2025 GMT Subject: CN=895ebcaca8fc5c9a8c7daeabeaa957820389f4d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:97:90:a7:49:8b:35:f2:e5:ba:0d:5c:e6:cc: 48:b8:e9:83:7b:cd:03:04:60:37:4b:88:54:c7:b4: 2e:f3:31:4d:84:0f:48:91:c5:67:04:0c:c5:c2:5b: 8d:b7:3d:9a:c8:c4:b6:72:d7:73:07:26:a6:51:1d: 84:85:6c:99:33:34:63:f7:13:be:11:e3:4e:00:f5: fd:52:38:ab:bb:63:36:89:9e:46:06:c8:7f:21:ae: 98:a7:9a:78:98:ff:f8:cf:b6:49:77:ba:51:96:85: b3:7e:34:b5:a4:4e:cd:1f:88:3c:a9:2f:63:ac:f3: 23:0d:6e:b3:3b:bb:e5:b0:9b:91:0b:1d:6f:52:72: 20:c2:fa:9a:48:8c:8f:fc:21:92:37:6b:b9:9b:42: 63:43:d0:84:a8:4e:10:e2:59:97:6c:99:97:f0:df: d4:9c:d7:f2:6e:36:f5:78:02:db:9e:f4:08:51:d4: dd:bd:53:87:c6:53:4c:f1:2a:15:8e:cc:61:1b:e9: 75:f5:15:8c:82:f3:0b:8b:74:55:52:79:f2:c0:35: 8e:e5:95:cb:89:36:9f:71:d0:81:bd:80:e5:09:be: 2e:c2:5f:49:64:9e:dd:89:59:4a:a0:7f:74:e7:8d: 14:48:13:6c:c0:d0:0a:18:a6:80:9c:26:5a:4f:e5: 6c:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:5E:BC:AC:A8:FC:5C:9A:8C:7D:AE:AB:EA:A9:57:82:03:89:F4:D2 X509v3 Authority Key Identifier: keyid:CB:DF:CE:3A:53:55:F8:61:FD:C4:8C:32:01:2C:78:C9:DA:F9:A5:A4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y9_OOlNV-GH9xIwyASx4ydr5paQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/74a1b5-3c2e-48e2-90fd-b49d89e30ddd/1/y9_OOlNV-GH9xIwyASx4ydr5paQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/74a1b5-3c2e-48e2-90fd-b49d89e30ddd/1/y9_OOlNV-GH9xIwyASx4ydr5paQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 46:45:9e:e9:43:b0:25:6e:0f:cb:fd:44:6e:92:ac:de:9a:ec: 55:a1:a5:9a:9e:a0:b2:e0:d1:91:77:fd:48:09:3c:57:b0:51: 31:2e:1a:42:f7:be:8a:c9:e8:88:8b:86:5f:ba:92:55:1e:1a: 17:b9:ab:07:e5:78:b7:5d:ed:93:b3:ab:25:8e:52:76:0b:19: 73:3d:7c:2e:17:08:99:e4:bc:1a:1b:1c:ca:8f:ce:96:75:af: 48:1a:f8:e8:6a:6e:1b:c5:fc:07:bb:c1:76:e0:79:69:7a:54: 4a:d7:5b:c7:40:6e:93:50:bf:d7:10:14:97:aa:1b:e7:20:a3: 34:46:c4:d5:f1:a1:3a:bf:79:79:d9:d2:66:0f:22:c1:54:ac: 65:02:ab:1b:9f:5f:39:28:3e:96:d4:4c:d8:b3:9f:e9:34:31: 9e:d7:2e:48:bf:da:df:cf:fd:12:1c:be:ff:2b:56:e7:10:26: cf:30:62:db:a2:b7:1c:f5:4c:81:19:0a:5c:5e:f7:7e:72:2c: 06:9f:2a:01:65:56:d8:1b:71:4c:39:29:b4:40:6e:d6:73:30: 60:8d:a2:94:6c:1a:a5:d2:79:58:0d:87:e2:32:6f:f1:3c:3c: 67:70:a4:3c:e8:8b:af:c4:ce:fa:ce:90:62:e7:ae:1e:c4:5e: 84:9f:c2:d8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs6WIMPfqg4gehOBgX1UGzNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNiZGZjZTNhNTM1NWY4NjFmZGM0OGMzMjAxMmM3OGM5ZGFm OWE1YTQwHhcNMjUxMjIwMDYwMDM3WhcNMjUxMjIxMDYwMDM3WjAzMTEwLwYDVQQD Eyg4OTVlYmNhY2E4ZmM1YzlhOGM3ZGFlYWJlYWE5NTc4MjAzODlmNGQyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm5eQp0mLNfLlug1c5sxIuOmDe80D BGA3S4hUx7Qu8zFNhA9IkcVnBAzFwluNtz2ayMS2ctdzByamUR2EhWyZMzRj9xO+ EeNOAPX9Ujiru2M2iZ5GBsh/Ia6Yp5p4mP/4z7ZJd7pRloWzfjS1pE7NH4g8qS9j rPMjDW6zO7vlsJuRCx1vUnIgwvqaSIyP/CGSN2u5m0JjQ9CEqE4Q4lmXbJmX8N/U nNfybjb1eALbnvQIUdTdvVOHxlNM8SoVjsxhG+l19RWMgvMLi3RVUnnywDWO5ZXL iTafcdCBvYDlCb4uwl9JZJ7diVlKoH90540USBNswNAKGKaAnCZaT+Vs0QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIlevKyo/FyajH2uq+qpV4IDifTSMB8GA1UdIwQY MBaAFMvfzjpTVfhh/cSMMgEseMna+aWkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveTlfT09sTlYtR0g5eEl3eUFTeDR5ZHI1cGFRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZi83NGExYjUtM2MyZS00OGUyLTkwZmQt YjQ5ZDg5ZTMwZGRkLzEveTlfT09sTlYtR0g5eEl3eUFTeDR5ZHI1cGFRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZi83NGExYjUtM2MyZS00OGUyLTkwZmQtYjQ5ZDg5ZTMwZGRk LzEveTlfT09sTlYtR0g5eEl3eUFTeDR5ZHI1cGFRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARkWe6UOw JW4Py/1EbpKs3prsVaGlmp6gsuDRkXf9SAk8V7BRMS4aQve+isnoiIuGX7qSVR4a F7mrB+V4t13tk7OrJY5SdgsZcz18LhcImeS8Ghscyo/OlnWvSBr46GpuG8X8B7vB duB5aXpUStdbx0Buk1C/1xAUl6ob5yCjNEbE1fGhOr95ednSZg8iwVSsZQKrG59f OSg+ltRM2LOf6TQxntcuSL/a38/9Ehy+/ytW5xAmzzBi26K3HPVMgRkKXF73fnIs Bp8qAWVW2BtxTDkptEBu1nMwYI2ilGwapdJ5WA2H4jJv8Tw8Z3CkPOiLr8TO+s6Q YueuHsRehJ/C2A== -----END CERTIFICATE-----Generated at Sat Dec 20 13:15:24 2025 by rpki-client