This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/74a1b5-3c2e-48e2-90fd-b49d89e30ddd/1/y9_OOlNV-GH9xIwyASx4ydr5paQ.mft File: y9_OOlNV-GH9xIwyASx4ydr5paQ.mft (raw, json) Hash identifier: 9XD6NRAwopQ/wefk5VL6jA6hFVjnImlqi76psltP8Ek= Subject key identifier: 69:55:AB:69:67:F7:05:17:A9:9B:26:F8:47:73:DE:99:A7:01:9B:12 Authority key identifier: CB:DF:CE:3A:53:55:F8:61:FD:C4:8C:32:01:2C:78:C9:DA:F9:A5:A4 Certificate issuer: /CN=cbdfce3a5355f861fdc48c32012c78c9daf9a5a4 Certificate serial: 019B5CAE35AEE3E9A1F00952EFEA6195AB15 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y9_OOlNV-GH9xIwyASx4ydr5paQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/74a1b5-3c2e-48e2-90fd-b49d89e30ddd/1/y9_OOlNV-GH9xIwyASx4ydr5paQ.mft Manifest number: 178F Signing time: Fri 26 Dec 2025 22:01:19 +0000 Manifest this update: Fri 26 Dec 2025 22:01:19 +0000 Manifest next update: Sat 27 Dec 2025 22:01:19 +0000 Files and hashes: 1: CLZSuq7-Kr6wga7WAvLwlZmD9gM.roa (hash: wwP1m9KKjW+hUGWMlbVxAtL3pzS1fP8uTHgrkC3OADs=) 2: MOA6z7x0Ys9Uv2Htoky-rZPjT2o.roa (hash: S9joa7cTMXDYAoAEOgCnk8b95etCyEJSsLPR/6iWAt8=) 3: aCI8Jo962pd2BoQhf-dPqcGKVgE.roa (hash: M5raHpaPR3ugbk/T1ToK6O7tBcNA5IW/XHB83K5aUEA=) 4: u_6Z2m-kttn1KGvW0DMCRJb-wGc.roa (hash: 8dKKNumWXSexpArn6diHEL6UixSl6qSaZ9jIxuDxNf0=) 5: y9_OOlNV-GH9xIwyASx4ydr5paQ.crl (hash: uW798uTbTdb2k67TJtkwJlO0th90ZjPkXZarVyWu+v4=) 6: zDW63VDxhl9P505zOu3VSRjg2i8.roa (hash: EzqIt3I5mIkchtA/ykq/H3HkJ82nAlwDFFB+//7vPWc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/74a1b5-3c2e-48e2-90fd-b49d89e30ddd/1/y9_OOlNV-GH9xIwyASx4ydr5paQ.crl rsync://rpki.ripe.net/repository/DEFAULT/ef/74a1b5-3c2e-48e2-90fd-b49d89e30ddd/1/y9_OOlNV-GH9xIwyASx4ydr5paQ.mft rsync://rpki.ripe.net/repository/DEFAULT/y9_OOlNV-GH9xIwyASx4ydr5paQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 15:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5c:ae:35:ae:e3:e9:a1:f0:09:52:ef:ea:61:95:ab:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cbdfce3a5355f861fdc48c32012c78c9daf9a5a4 Validity Not Before: Dec 26 22:01:19 2025 GMT Not After : Dec 27 22:01:19 2025 GMT Subject: CN=6955ab6967f70517a99b26f84773de99a7019b12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:05:bb:fc:6b:ec:00:c1:4e:7c:be:9b:bf:66: ab:a4:8f:88:99:ce:41:14:fd:aa:b7:82:3b:76:f9: 02:69:03:98:8a:19:72:e0:7e:78:61:03:d4:85:51: 6a:a5:ab:c2:f0:cd:e8:4f:57:c7:9e:87:6c:f7:30: d0:bf:fd:30:0b:62:0e:1b:dc:6d:59:a4:24:08:c0: 14:a2:2b:5e:0b:4a:39:fc:e6:1c:72:1b:ae:04:39: 55:80:ec:60:54:53:5b:c3:e4:c9:28:9e:65:9a:c3: cc:bc:2d:7a:c3:eb:c0:77:9c:6f:82:6d:ed:91:ea: e0:5e:b2:6a:6d:61:fc:40:8f:ee:fd:48:d2:e5:a3: 1b:2a:6e:5c:4e:a2:45:0b:5b:dd:1c:11:ba:f1:33: f1:b8:db:1c:a0:68:04:25:fa:85:da:b4:0e:00:13: 57:1e:58:7e:a1:32:b0:38:42:ab:1b:3b:51:a3:b8: 8e:dd:77:13:d7:78:ae:3c:d7:0e:7a:02:a6:07:07: 45:51:d9:a5:a8:ee:63:16:e6:bc:72:e7:b1:33:dd: 63:61:ed:5d:a0:71:73:cc:28:50:e5:48:65:9c:08: d0:03:31:2b:04:0b:84:ff:02:09:e7:fe:a4:db:eb: aa:ac:ec:40:b4:96:b0:43:d7:5a:1d:78:66:f5:8a: 17:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:55:AB:69:67:F7:05:17:A9:9B:26:F8:47:73:DE:99:A7:01:9B:12 X509v3 Authority Key Identifier: keyid:CB:DF:CE:3A:53:55:F8:61:FD:C4:8C:32:01:2C:78:C9:DA:F9:A5:A4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y9_OOlNV-GH9xIwyASx4ydr5paQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/74a1b5-3c2e-48e2-90fd-b49d89e30ddd/1/y9_OOlNV-GH9xIwyASx4ydr5paQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/74a1b5-3c2e-48e2-90fd-b49d89e30ddd/1/y9_OOlNV-GH9xIwyASx4ydr5paQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4d:70:83:45:55:c8:84:48:50:0b:7d:5b:75:8b:a4:34:a0:ba: bb:79:81:01:ba:44:fa:0e:94:9a:6b:45:65:1e:89:c5:60:e8: 80:85:d4:c4:5a:3f:67:61:51:fe:37:71:77:41:75:f4:f3:89: e3:89:8c:3c:0d:14:a6:94:6d:dc:52:9e:d1:49:cf:b3:d4:1e: dd:19:f8:05:45:c8:b9:80:9b:6c:02:72:14:5e:a9:b6:2e:18: 19:2b:9e:fa:10:3d:6a:bd:00:5a:40:42:b7:79:57:4d:77:3c: a3:2c:21:16:59:a3:31:f6:1f:36:d9:a8:6e:b0:b9:b8:46:6e: eb:9f:aa:25:3c:7d:37:e1:20:7a:89:e8:5c:e2:d9:72:b9:dc: 4d:49:40:19:74:7a:56:3e:30:7b:1b:a3:a5:73:b9:cb:c7:e1: bb:a5:d4:0b:2c:a3:5d:62:f5:a0:91:20:1b:63:85:cd:aa:48: 13:de:8f:60:3c:c8:31:c6:68:4a:44:d1:2b:e9:02:ee:42:d2: 19:c4:ca:e3:01:69:d2:8c:77:e8:ed:79:0f:f5:76:cc:eb:10: 0a:eb:fc:a2:b8:75:77:b2:cf:5b:b9:02:74:44:93:e1:1b:f7: 1f:7d:cd:30:10:53:aa:4a:4f:36:3d:78:d0:94:a9:0b:49:a1: e2:37:6a:ce -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtcrjWu4+mh8AlS7+phlasVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNiZGZjZTNhNTM1NWY4NjFmZGM0OGMzMjAxMmM3OGM5ZGFm OWE1YTQwHhcNMjUxMjI2MjIwMTE5WhcNMjUxMjI3MjIwMTE5WjAzMTEwLwYDVQQD Eyg2OTU1YWI2OTY3ZjcwNTE3YTk5YjI2Zjg0NzczZGU5OWE3MDE5YjEyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoQW7/GvsAMFOfL6bv2arpI+Imc5B FP2qt4I7dvkCaQOYihly4H54YQPUhVFqpavC8M3oT1fHnods9zDQv/0wC2IOG9xt WaQkCMAUoiteC0o5/OYcchuuBDlVgOxgVFNbw+TJKJ5lmsPMvC16w+vAd5xvgm3t kergXrJqbWH8QI/u/UjS5aMbKm5cTqJFC1vdHBG68TPxuNscoGgEJfqF2rQOABNX Hlh+oTKwOEKrGztRo7iO3XcT13iuPNcOegKmBwdFUdmlqO5jFua8cuexM91jYe1d oHFzzChQ5UhlnAjQAzErBAuE/wIJ5/6k2+uqrOxAtJawQ9daHXhm9YoXAwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGlVq2ln9wUXqZsm+Edz3pmnAZsSMB8GA1UdIwQY MBaAFMvfzjpTVfhh/cSMMgEseMna+aWkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveTlfT09sTlYtR0g5eEl3eUFTeDR5ZHI1cGFRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZi83NGExYjUtM2MyZS00OGUyLTkwZmQt YjQ5ZDg5ZTMwZGRkLzEveTlfT09sTlYtR0g5eEl3eUFTeDR5ZHI1cGFRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZi83NGExYjUtM2MyZS00OGUyLTkwZmQtYjQ5ZDg5ZTMwZGRk LzEveTlfT09sTlYtR0g5eEl3eUFTeDR5ZHI1cGFRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATXCDRVXI hEhQC31bdYukNKC6u3mBAbpE+g6UmmtFZR6JxWDogIXUxFo/Z2FR/jdxd0F19POJ 44mMPA0UppRt3FKe0UnPs9Qe3Rn4BUXIuYCbbAJyFF6pti4YGSue+hA9ar0AWkBC t3lXTXc8oywhFlmjMfYfNtmobrC5uEZu65+qJTx9N+EgeonoXOLZcrncTUlAGXR6 Vj4wexujpXO5y8fhu6XUCyyjXWL1oJEgG2OFzapIE96PYDzIMcZoSkTRK+kC7kLS GcTK4wFp0ox36O15D/V2zOsQCuv8orh1d7LPW7kCdEST4Rv3H33NMBBTqkpPNj14 0JSpC0mh4jdqzg== -----END CERTIFICATE-----Generated at Fri Dec 26 23:10:13 2025 by rpki-client