This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/1cecb8-97d9-473f-b004-cc912746e47e/1/ylmb3Bz8eujML7oV_NgMoRc3hGc.mft File: ylmb3Bz8eujML7oV_NgMoRc3hGc.mft (raw, json) Hash identifier: dFNmUG7MnM3Ka0S+OezZ2pGfHhpKWLfi4XQfbxGkEos= Subject key identifier: 72:19:74:28:02:30:CF:F7:26:6A:DE:3C:9D:05:DC:3E:90:2D:66:86 Authority key identifier: CA:59:9B:DC:1C:FC:7A:E8:CC:2F:BA:15:FC:D8:0C:A1:17:37:84:67 Certificate issuer: /CN=ca599bdc1cfc7ae8cc2fba15fcd80ca117378467 Certificate serial: 019B3DFE4F51246EE96963546E0CCC50BF1B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ylmb3Bz8eujML7oV_NgMoRc3hGc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/1cecb8-97d9-473f-b004-cc912746e47e/1/ylmb3Bz8eujML7oV_NgMoRc3hGc.mft Manifest number: 03A0 Signing time: Sat 20 Dec 2025 23:00:35 +0000 Manifest this update: Sat 20 Dec 2025 23:00:35 +0000 Manifest next update: Sun 21 Dec 2025 23:00:35 +0000 Files and hashes: 1: ylmb3Bz8eujML7oV_NgMoRc3hGc.crl (hash: azMZhb/TlwDPQR5l7M6QJ42Q4hm+6cLq0nXgejRUoQk=) 2: zIZvUw6LEttnk9GqCkFL8S-ncbM.roa (hash: g5dRThI/Wu6nM24igsF8Y2hQEgVjjdxUN3aRLJWGc3E=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/1cecb8-97d9-473f-b004-cc912746e47e/1/ylmb3Bz8eujML7oV_NgMoRc3hGc.crl rsync://rpki.ripe.net/repository/DEFAULT/f2/1cecb8-97d9-473f-b004-cc912746e47e/1/ylmb3Bz8eujML7oV_NgMoRc3hGc.mft rsync://rpki.ripe.net/repository/DEFAULT/ylmb3Bz8eujML7oV_NgMoRc3hGc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 15:46:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3d:fe:4f:51:24:6e:e9:69:63:54:6e:0c:cc:50:bf:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ca599bdc1cfc7ae8cc2fba15fcd80ca117378467 Validity Not Before: Dec 20 23:00:35 2025 GMT Not After : Dec 21 23:00:35 2025 GMT Subject: CN=721974280230cff7266ade3c9d05dc3e902d6686 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:4d:ec:a8:ef:d6:a5:ab:f9:1a:a9:e8:b8:cd: 7f:53:ac:0f:ba:81:ba:9c:27:82:82:9e:b7:29:ad: 10:98:79:93:c3:e0:68:19:70:6a:91:87:45:83:4c: cf:f2:09:95:f9:ab:a0:44:0d:1c:b4:5b:4f:28:25: 99:03:b1:fb:70:29:09:d0:95:a5:9f:ed:6c:99:98: 9c:41:ac:c3:0f:a5:be:0a:75:15:30:80:ad:9c:14: be:5f:96:03:1f:31:bb:44:50:b1:06:6e:63:2e:29: 8f:ec:d7:81:f1:52:bd:ee:9b:9a:4d:f6:98:71:0c: 29:78:c5:93:1b:26:f1:23:b4:1a:0d:38:c0:e6:44: cf:ed:6b:b3:2f:56:9f:74:ed:16:82:7b:a8:e3:1e: 2a:97:d9:90:cb:8e:7a:24:26:d7:ef:a9:e9:4b:c7: 15:62:f7:d2:7d:50:0b:73:e4:cb:50:3c:07:b0:cd: 55:5d:6f:f6:f9:35:13:50:38:c1:dd:00:d9:51:b3: ee:a2:a7:08:db:92:7a:98:05:f2:7b:34:6c:72:f6: 09:85:1f:d3:71:5c:86:4f:65:50:bc:4e:63:09:d2: 4c:8b:f1:eb:0c:e2:2c:4c:d0:bb:13:69:22:7f:c8: c1:10:1d:b8:4f:ae:ec:8b:3e:a4:d0:5d:3c:d4:83: 86:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:19:74:28:02:30:CF:F7:26:6A:DE:3C:9D:05:DC:3E:90:2D:66:86 X509v3 Authority Key Identifier: keyid:CA:59:9B:DC:1C:FC:7A:E8:CC:2F:BA:15:FC:D8:0C:A1:17:37:84:67 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ylmb3Bz8eujML7oV_NgMoRc3hGc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/1cecb8-97d9-473f-b004-cc912746e47e/1/ylmb3Bz8eujML7oV_NgMoRc3hGc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/1cecb8-97d9-473f-b004-cc912746e47e/1/ylmb3Bz8eujML7oV_NgMoRc3hGc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b3:c1:6b:83:bc:07:1c:7b:74:e2:67:41:90:3a:c2:97:08:e0: f5:8c:79:9c:22:9a:08:1d:e7:ee:21:26:8f:b6:cb:2b:0e:18: 41:04:e0:72:dc:9d:19:a9:18:cc:bc:6f:d3:bb:ab:c0:1e:16: bb:53:d0:b5:5f:99:a9:da:c3:82:b7:95:a8:c8:64:2c:8e:57: 96:95:58:12:81:69:2c:d0:8e:54:b4:80:fa:73:0a:63:d6:08: a9:43:b1:12:4a:ee:3b:98:71:30:24:7e:b7:94:9b:3f:f4:02: 41:20:99:18:fe:2f:6c:ed:62:df:70:c0:cb:0a:42:71:be:15: 4c:20:d2:e1:42:e5:7a:85:dc:e6:5c:29:6f:01:9e:17:6c:17: 6d:c2:03:e6:c0:b9:a5:fa:21:9b:78:b5:57:f8:5a:37:63:4d: 3a:7b:c0:67:10:c5:07:49:f2:11:4e:9f:6f:49:e4:93:45:72: da:22:8d:59:b4:37:88:60:c0:7a:82:a1:0a:5b:b8:8d:83:cf: 36:3c:3b:22:9a:b2:30:6e:bd:db:d6:e5:68:08:49:39:95:61: 71:1d:40:26:be:30:3b:8d:40:b4:68:e9:58:73:6b:32:2e:1e: 24:cb:15:c6:cd:2c:a1:1b:ac:f0:75:c5:ba:21:b4:e9:a5:50: 5b:30:91:30 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs9/k9RJG7paWNUbgzMUL8bMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNhNTk5YmRjMWNmYzdhZThjYzJmYmExNWZjZDgwY2ExMTcz Nzg0NjcwHhcNMjUxMjIwMjMwMDM1WhcNMjUxMjIxMjMwMDM1WjAzMTEwLwYDVQQD Eyg3MjE5NzQyODAyMzBjZmY3MjY2YWRlM2M5ZDA1ZGMzZTkwMmQ2Njg2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp03sqO/Wpav5GqnouM1/U6wPuoG6 nCeCgp63Ka0QmHmTw+BoGXBqkYdFg0zP8gmV+augRA0ctFtPKCWZA7H7cCkJ0JWl n+1smZicQazDD6W+CnUVMICtnBS+X5YDHzG7RFCxBm5jLimP7NeB8VK97puaTfaY cQwpeMWTGybxI7QaDTjA5kTP7WuzL1afdO0Wgnuo4x4ql9mQy456JCbX76npS8cV YvfSfVALc+TLUDwHsM1VXW/2+TUTUDjB3QDZUbPuoqcI25J6mAXyezRscvYJhR/T cVyGT2VQvE5jCdJMi/HrDOIsTNC7E2kif8jBEB24T67siz6k0F081IOGXwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHIZdCgCMM/3JmrePJ0F3D6QLWaGMB8GA1UdIwQY MBaAFMpZm9wc/HrozC+6FfzYDKEXN4RnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveWxtYjNCejhldWpNTDdvVl9OZ01vUmMzaEdjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMi8xY2VjYjgtOTdkOS00NzNmLWIwMDQt Y2M5MTI3NDZlNDdlLzEveWxtYjNCejhldWpNTDdvVl9OZ01vUmMzaEdjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMi8xY2VjYjgtOTdkOS00NzNmLWIwMDQtY2M5MTI3NDZlNDdl LzEveWxtYjNCejhldWpNTDdvVl9OZ01vUmMzaEdjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAs8Frg7wH HHt04mdBkDrClwjg9Yx5nCKaCB3n7iEmj7bLKw4YQQTgctydGakYzLxv07urwB4W u1PQtV+ZqdrDgreVqMhkLI5XlpVYEoFpLNCOVLSA+nMKY9YIqUOxEkruO5hxMCR+ t5SbP/QCQSCZGP4vbO1i33DAywpCcb4VTCDS4ULleoXc5lwpbwGeF2wXbcID5sC5 pfohm3i1V/haN2NNOnvAZxDFB0nyEU6fb0nkk0Vy2iKNWbQ3iGDAeoKhClu4jYPP Njw7IpqyMG6929blaAhJOZVhcR1AJr4wO41AtGjpWHNrMi4eJMsVxs0soRus8HXF uiG06aVQWzCRMA== -----END CERTIFICATE-----Generated at Sun Dec 21 00:55:17 2025 by rpki-client