This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.mft File: ryto8Mg63Zo6O4arJPuRCpYCYsY.mft (raw, json) Hash identifier: 7wTmotvfJqarTvPodEBy+zn1uWbXmglfjhbbY2k+b0M= Subject key identifier: 89:82:7C:BE:88:94:50:AF:A0:1C:5E:C9:00:69:CE:7B:5A:BE:E4:EB Authority key identifier: AF:2B:68:F0:C8:3A:DD:9A:3A:3B:86:AB:24:FB:91:0A:96:02:62:C6 Certificate issuer: /CN=af2b68f0c83add9a3a3b86ab24fb910a960262c6 Certificate serial: 019B3F7ED6757680E8383FF5A64D171ECDFC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ryto8Mg63Zo6O4arJPuRCpYCYsY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.mft Manifest number: 12FB Signing time: Sun 21 Dec 2025 06:00:35 +0000 Manifest this update: Sun 21 Dec 2025 06:00:35 +0000 Manifest next update: Mon 22 Dec 2025 06:00:35 +0000 Files and hashes: 1: oS-zf8LykP6dfOwgBh2b6irIbAA.roa (hash: es5RiKPg30TZ9v6YIMiSfrSdGJ7vWC4nZhRx1zHM27Q=) 2: ryto8Mg63Zo6O4arJPuRCpYCYsY.crl (hash: C56fNj+ZkDPYFg84fKYzGeP4XJ1u9nfDFZA6H+/UFP8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.crl rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.mft rsync://rpki.ripe.net/repository/DEFAULT/ryto8Mg63Zo6O4arJPuRCpYCYsY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 04:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3f:7e:d6:75:76:80:e8:38:3f:f5:a6:4d:17:1e:cd:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=af2b68f0c83add9a3a3b86ab24fb910a960262c6 Validity Not Before: Dec 21 06:00:35 2025 GMT Not After : Dec 22 06:00:35 2025 GMT Subject: CN=89827cbe889450afa01c5ec90069ce7b5abee4eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:42:41:d4:0f:a4:28:0f:65:b7:48:8d:05:44: 65:3a:47:28:50:66:c6:9c:0f:c4:a5:71:ac:49:5f: ca:2a:b4:7b:a0:d2:6a:9a:01:95:53:12:e8:a9:91: 58:ed:a8:9e:e2:01:e1:e3:28:2f:61:d1:6d:30:60: fc:80:9c:6c:be:9e:09:18:e7:3c:0e:62:bd:ea:e4: c6:00:1f:d7:40:2f:10:b8:87:ed:de:5a:93:1b:35: 27:8a:92:40:ca:3a:74:8e:e0:9a:97:19:95:d9:0c: 76:06:fe:18:e3:50:bd:3e:82:c7:59:77:74:10:48: ed:94:e5:3d:e0:7a:4b:51:de:78:28:82:89:75:3d: 0a:b2:01:92:9e:e1:5e:91:a9:d9:c9:d6:ca:e0:d4: 18:e2:51:e5:e9:56:58:04:e3:d9:46:c7:f6:a0:33: 38:75:e7:e5:ac:84:72:bf:87:ad:e9:00:dc:7c:ca: 52:af:03:96:b1:ce:ab:91:5f:e9:d5:be:93:1d:54: 9e:93:c6:18:d0:d6:b3:23:e6:3f:a0:f0:a6:8d:93: a5:18:81:16:6d:04:42:5f:cb:53:16:5f:23:80:56: 2a:80:a0:79:09:68:b7:44:21:93:0f:5d:e0:72:c2: 5f:97:da:24:cd:62:c7:6f:a2:d5:af:6a:5a:b7:6e: bb:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:82:7C:BE:88:94:50:AF:A0:1C:5E:C9:00:69:CE:7B:5A:BE:E4:EB X509v3 Authority Key Identifier: keyid:AF:2B:68:F0:C8:3A:DD:9A:3A:3B:86:AB:24:FB:91:0A:96:02:62:C6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ryto8Mg63Zo6O4arJPuRCpYCYsY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 26:9e:0d:b4:49:82:14:b4:dc:54:2f:08:c2:14:69:00:c3:48: 93:83:af:12:d6:b0:a6:dc:cf:c0:a1:63:17:2e:29:a6:08:8f: 75:41:2f:0d:79:59:a6:35:61:3d:8b:0a:e4:68:4f:ec:da:23: fd:6d:7d:42:02:46:e8:4a:fe:22:b8:d8:1c:3a:9e:fd:4b:9e: 53:a6:e7:c5:bc:4d:81:2b:7e:b6:2e:ed:22:0d:e3:99:39:08: 51:24:b9:00:e4:8b:12:63:21:63:c3:7d:a0:41:58:e1:99:c2: b4:ff:b3:91:7e:67:c9:c4:5f:8f:7a:ca:47:00:27:db:7c:f7: 83:5e:50:b3:ff:33:9c:0a:6f:ce:65:cb:c0:f2:81:19:e9:ef: f5:59:3b:a4:10:b4:2a:53:58:49:9f:5c:63:c3:12:c6:cf:ab: 49:60:01:dd:b8:7f:e6:72:f5:9b:98:f2:a9:7c:e0:08:e6:e0: 60:a4:36:8e:b2:ca:6f:eb:4f:d2:0e:94:35:3c:e2:20:cc:50: 28:da:99:0c:95:ea:a3:60:39:cf:9f:72:cf:89:6a:85:a7:9a: a8:e0:75:25:ad:3c:0d:c7:41:a7:8b:ea:d3:3b:a0:3e:4e:f0: ce:b9:d0:f1:f1:ac:dd:58:fe:8f:4a:49:03:f6:e6:5d:4b:e8: 3c:ff:b3:42 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs/ftZ1doDoOD/1pk0XHs38MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFmMmI2OGYwYzgzYWRkOWEzYTNiODZhYjI0ZmI5MTBhOTYw MjYyYzYwHhcNMjUxMjIxMDYwMDM1WhcNMjUxMjIyMDYwMDM1WjAzMTEwLwYDVQQD Eyg4OTgyN2NiZTg4OTQ1MGFmYTAxYzVlYzkwMDY5Y2U3YjVhYmVlNGViMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArUJB1A+kKA9lt0iNBURlOkcoUGbG nA/EpXGsSV/KKrR7oNJqmgGVUxLoqZFY7aie4gHh4ygvYdFtMGD8gJxsvp4JGOc8 DmK96uTGAB/XQC8QuIft3lqTGzUnipJAyjp0juCalxmV2Qx2Bv4Y41C9PoLHWXd0 EEjtlOU94HpLUd54KIKJdT0KsgGSnuFekanZydbK4NQY4lHl6VZYBOPZRsf2oDM4 deflrIRyv4et6QDcfMpSrwOWsc6rkV/p1b6THVSek8YY0NazI+Y/oPCmjZOlGIEW bQRCX8tTFl8jgFYqgKB5CWi3RCGTD13gcsJfl9okzWLHb6LVr2pat267cQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFImCfL6IlFCvoBxeyQBpzntavuTrMB8GA1UdIwQY MBaAFK8raPDIOt2aOjuGqyT7kQqWAmLGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcnl0bzhNZzYzWm82TzRhckpQdVJDcFlDWXNZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMy83OTNlMDAtMGM1My00OWM0LWE1MWIt ZWRhMzE2YTJhZmI4LzEvcnl0bzhNZzYzWm82TzRhckpQdVJDcFlDWXNZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMy83OTNlMDAtMGM1My00OWM0LWE1MWItZWRhMzE2YTJhZmI4 LzEvcnl0bzhNZzYzWm82TzRhckpQdVJDcFlDWXNZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJp4NtEmC FLTcVC8IwhRpAMNIk4OvEtawptzPwKFjFy4ppgiPdUEvDXlZpjVhPYsK5GhP7Noj /W19QgJG6Er+IrjYHDqe/UueU6bnxbxNgSt+ti7tIg3jmTkIUSS5AOSLEmMhY8N9 oEFY4ZnCtP+zkX5nycRfj3rKRwAn23z3g15Qs/8znApvzmXLwPKBGenv9Vk7pBC0 KlNYSZ9cY8MSxs+rSWAB3bh/5nL1m5jyqXzgCObgYKQ2jrLKb+tP0g6UNTziIMxQ KNqZDJXqo2A5z59yz4lqhaeaqOB1Ja08DcdBp4vq0zugPk7wzrnQ8fGs3Vj+j0pJ A/bmXUvoPP+zQg== -----END CERTIFICATE-----Generated at Sun Dec 21 12:28:46 2025 by rpki-client