This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.mft File: YhoTCpDLA344A_6gv0ZaoIL-NJg.mft (raw, json) Hash identifier: tNGRRcHOxY3mV6/8VGgQX2yIl8/S8ax1YRUEw8KIi2c= Subject key identifier: 9D:25:72:91:17:3E:7F:A0:F5:23:1C:B0:99:5D:59:A5:1A:C3:EA:BB Authority key identifier: 62:1A:13:0A:90:CB:03:7E:38:03:FE:A0:BF:46:5A:A0:82:FE:34:98 Certificate issuer: /CN=621a130a90cb037e3803fea0bf465aa082fe3498 Certificate serial: 019B397D23BDFDEB36836C208FAA59819938 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YhoTCpDLA344A_6gv0ZaoIL-NJg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.mft Manifest number: 05AE Signing time: Sat 20 Dec 2025 02:01:01 +0000 Manifest this update: Sat 20 Dec 2025 02:01:01 +0000 Manifest next update: Sun 21 Dec 2025 02:01:01 +0000 Files and hashes: 1: 8tq6vUxikXVafkdQNOumeQjFfpc.roa (hash: UpmsMokgr2OHdk8MVVsUZdaiVZYh5g21JKYfdCc4ZA8=) 2: YhoTCpDLA344A_6gv0ZaoIL-NJg.crl (hash: 5OZsyeYJebW/KF1eML6mQVRRf9thIhA3LiuR78R+HhE=) 3: j89ASOslTb0sA8qPaNCnvdarbHI.roa (hash: pTH6+0WVaBMdNBqgh83yrPXmlHTEaPDbAotvSzt0CT4=) 4: vSrVfCiFhwuThaFge_HlQGTrHjk.roa (hash: Bc63krCzWLaf7LOD/k916HgQOiH2H7M6asbeefYBGos=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.crl rsync://rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.mft rsync://rpki.ripe.net/repository/DEFAULT/YhoTCpDLA344A_6gv0ZaoIL-NJg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 01:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:39:7d:23:bd:fd:eb:36:83:6c:20:8f:aa:59:81:99:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=621a130a90cb037e3803fea0bf465aa082fe3498 Validity Not Before: Dec 20 02:01:01 2025 GMT Not After : Dec 21 02:01:01 2025 GMT Subject: CN=9d257291173e7fa0f5231cb0995d59a51ac3eabb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:39:23:d4:e4:a9:2b:f9:54:bf:f8:fb:0b:84: 99:d8:6f:9b:eb:cc:f0:5c:1a:7d:8d:79:13:79:1e: 5a:54:b0:f7:4b:fa:bc:a0:44:b4:5a:45:a7:15:34: c5:c4:aa:e6:32:24:77:59:71:95:b1:61:e0:63:b2: dc:b9:6a:8b:8c:55:ec:e7:12:75:8d:df:65:3a:2a: c4:2a:70:cb:eb:ef:bc:fb:05:56:7a:45:fb:93:35: ac:44:6d:3d:72:fc:7e:e5:b5:74:06:5d:c6:82:df: 6c:f1:66:51:19:7c:65:a6:d4:79:87:78:bf:25:05: 86:af:e0:1e:6a:2b:08:65:1c:c4:35:ee:bd:7d:9e: 24:23:cb:16:d3:3f:c3:3a:16:41:bf:04:90:84:bc: b6:f8:78:a0:ce:ad:78:3b:e4:21:5b:89:6e:7c:c5: 35:a3:25:b5:72:9e:30:cd:58:f2:e9:c8:de:7e:80: 8c:2c:17:ce:e3:99:18:ca:b1:09:2c:4c:a3:b4:8c: 53:fa:3f:ee:9d:2c:01:29:56:45:85:55:f5:fe:ea: 07:e9:16:48:4e:41:4c:7e:e7:2e:7f:3c:f0:42:e1: bc:88:92:21:2e:8c:7a:a0:90:db:4d:06:f4:af:9b: 6b:5a:12:d7:de:13:74:9e:24:a2:26:c6:ee:c9:42: df:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:25:72:91:17:3E:7F:A0:F5:23:1C:B0:99:5D:59:A5:1A:C3:EA:BB X509v3 Authority Key Identifier: keyid:62:1A:13:0A:90:CB:03:7E:38:03:FE:A0:BF:46:5A:A0:82:FE:34:98 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YhoTCpDLA344A_6gv0ZaoIL-NJg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 32:8c:27:9c:df:b4:f7:9b:f7:a5:60:87:a1:7c:04:3a:13:9b: 5e:e5:4d:dc:2c:e9:eb:81:32:5e:8c:52:2e:2f:ad:a0:b1:f7: 6e:aa:b8:be:af:67:79:81:91:54:50:62:a1:ad:b1:63:f1:66: 74:2c:c8:a7:d4:28:83:ae:21:8c:a5:9a:2b:fe:a6:3f:49:8e: 3a:c8:d1:ff:3f:ca:73:b4:9b:14:eb:6b:f8:f4:01:58:a3:69: f6:91:96:8d:87:3d:45:46:db:d9:3a:a9:0a:86:b8:06:64:47: ce:dd:1b:7c:e2:92:c9:ae:32:b5:08:b2:db:b7:04:d1:f2:87: 24:5c:a6:5a:49:14:c1:53:07:dd:e1:39:a7:fd:d6:29:76:51: ab:9e:ef:bd:73:7a:69:9f:e0:5e:ea:f1:fa:07:89:8d:78:be: f4:bf:26:e3:32:10:7a:53:b6:d3:96:9e:d4:95:b7:68:7d:10: a9:c1:55:7c:66:70:d9:8b:a6:f6:1c:d7:59:b4:f3:88:90:69: ed:95:2f:db:76:3b:bf:e7:7d:41:fd:cf:6d:84:db:a6:3d:68: a5:29:21:70:3d:29:e1:28:bb:53:87:7f:48:65:fe:3e:f5:34: 18:a6:28:90:45:47:c2:44:c5:fd:ee:84:98:04:e0:ff:60:c1: f4:9e:21:cb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs5fSO9/es2g2wgj6pZgZk4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYyMWExMzBhOTBjYjAzN2UzODAzZmVhMGJmNDY1YWEwODJm ZTM0OTgwHhcNMjUxMjIwMDIwMTAxWhcNMjUxMjIxMDIwMTAxWjAzMTEwLwYDVQQD Eyg5ZDI1NzI5MTE3M2U3ZmEwZjUyMzFjYjA5OTVkNTlhNTFhYzNlYWJiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyTkj1OSpK/lUv/j7C4SZ2G+b68zw XBp9jXkTeR5aVLD3S/q8oES0WkWnFTTFxKrmMiR3WXGVsWHgY7LcuWqLjFXs5xJ1 jd9lOirEKnDL6++8+wVWekX7kzWsRG09cvx+5bV0Bl3Ggt9s8WZRGXxlptR5h3i/ JQWGr+AeaisIZRzENe69fZ4kI8sW0z/DOhZBvwSQhLy2+Higzq14O+QhW4lufMU1 oyW1cp4wzVjy6cjefoCMLBfO45kYyrEJLEyjtIxT+j/unSwBKVZFhVX1/uoH6RZI TkFMfucufzzwQuG8iJIhLox6oJDbTQb0r5trWhLX3hN0niSiJsbuyULfcQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJ0lcpEXPn+g9SMcsJldWaUaw+q7MB8GA1UdIwQY MBaAFGIaEwqQywN+OAP+oL9GWqCC/jSYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWWhvVENwRExBMzQ0QV82Z3YwWmFvSUwtTkpnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOC8yMTQ5MmYtMTY2My00MDlkLWJmYjIt NmEwNDUxYzQ5ZDRkLzEvWWhvVENwRExBMzQ0QV82Z3YwWmFvSUwtTkpnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mOC8yMTQ5MmYtMTY2My00MDlkLWJmYjItNmEwNDUxYzQ5ZDRk LzEvWWhvVENwRExBMzQ0QV82Z3YwWmFvSUwtTkpnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMownnN+0 95v3pWCHoXwEOhObXuVN3Czp64EyXoxSLi+toLH3bqq4vq9neYGRVFBioa2xY/Fm dCzIp9Qog64hjKWaK/6mP0mOOsjR/z/Kc7SbFOtr+PQBWKNp9pGWjYc9RUbb2Tqp Coa4BmRHzt0bfOKSya4ytQiy27cE0fKHJFymWkkUwVMH3eE5p/3WKXZRq57vvXN6 aZ/gXurx+geJjXi+9L8m4zIQelO205ae1JW3aH0QqcFVfGZw2Yum9hzXWbTziJBp 7ZUv23Y7v+d9Qf3PbYTbpj1opSkhcD0p4Si7U4d/SGX+PvU0GKYokEVHwkTF/e6E mATg/2DB9J4hyw== -----END CERTIFICATE-----Generated at Sat Dec 20 10:44:24 2025 by rpki-client