This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/066509-7a91-45f9-9e18-a9e7b343bc66/1/pYXl4VqjQofK5DaMtY5yJ_2H7Lo.mft File: pYXl4VqjQofK5DaMtY5yJ_2H7Lo.mft (raw, json) Hash identifier: rj0NctLprpDiMdvyNS/fPBL1xZU4upw2vu9V+Fc2qx8= Subject key identifier: 8A:76:96:2C:1E:0B:7E:5F:A0:4B:06:06:DA:5E:DE:BE:7F:F2:12:81 Authority key identifier: A5:85:E5:E1:5A:A3:42:87:CA:E4:36:8C:B5:8E:72:27:FD:87:EC:BA Certificate issuer: /CN=a585e5e15aa34287cae4368cb58e7227fd87ecba Certificate serial: 019B51BE0B8172A96D69285D31BAA804151C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pYXl4VqjQofK5DaMtY5yJ_2H7Lo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/066509-7a91-45f9-9e18-a9e7b343bc66/1/pYXl4VqjQofK5DaMtY5yJ_2H7Lo.mft Manifest number: 1792 Signing time: Wed 24 Dec 2025 19:02:47 +0000 Manifest this update: Wed 24 Dec 2025 19:02:47 +0000 Manifest next update: Thu 25 Dec 2025 19:02:47 +0000 Files and hashes: 1: BfRloUJHji-lEUaufwMc19LxiqE.roa (hash: 94Vq30eYX4ShhMgHZx9s+4a5DKBY3zN9CTPT6BVaH44=) 2: pYXl4VqjQofK5DaMtY5yJ_2H7Lo.crl (hash: lro8E7ntgRzMcqHpaZBxJJLP/uFg8DL1qr6DB8XzD7I=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fc/066509-7a91-45f9-9e18-a9e7b343bc66/1/pYXl4VqjQofK5DaMtY5yJ_2H7Lo.crl rsync://rpki.ripe.net/repository/DEFAULT/fc/066509-7a91-45f9-9e18-a9e7b343bc66/1/pYXl4VqjQofK5DaMtY5yJ_2H7Lo.mft rsync://rpki.ripe.net/repository/DEFAULT/pYXl4VqjQofK5DaMtY5yJ_2H7Lo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 25 Dec 2025 19:02:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:51:be:0b:81:72:a9:6d:69:28:5d:31:ba:a8:04:15:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a585e5e15aa34287cae4368cb58e7227fd87ecba Validity Not Before: Dec 24 19:02:47 2025 GMT Not After : Dec 25 19:02:47 2025 GMT Subject: CN=8a76962c1e0b7e5fa04b0606da5edebe7ff21281 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:98:6d:e4:eb:2a:42:b1:6e:5f:c9:cf:97:50: 02:5d:15:fa:c7:f9:1e:26:7e:e7:b4:55:4e:e1:a5: 3e:56:cc:70:6a:9e:79:c6:24:ac:0d:db:d9:17:dc: a3:30:95:42:fe:cb:e6:1f:84:eb:ad:40:29:e0:d5: 0f:f0:9e:1a:c1:e1:6d:7b:71:f1:38:db:19:5b:34: 2d:df:3f:11:7b:77:08:84:65:3f:43:de:c2:dc:68: c6:ea:04:f2:e8:eb:fb:d9:95:18:83:b1:84:a9:26: 7d:f6:b5:71:6f:e9:64:02:67:7d:72:92:14:43:37: 63:9f:e6:61:2d:13:bb:0f:47:f7:f0:4e:37:2a:fd: d6:ec:48:8f:70:6c:4a:f0:3c:e0:05:9c:a2:98:fe: c6:9b:a7:cc:6e:6a:18:69:df:ba:c4:cf:a1:d1:c7: 85:dc:78:7c:90:b3:2d:dc:61:7f:50:63:fa:81:1c: ac:46:df:8a:0c:99:37:4d:c0:58:67:2a:20:b9:7a: 5a:8b:b5:d4:1f:ad:bc:cc:89:34:fc:1a:bf:0b:6c: ad:79:75:40:e0:71:ca:b3:4b:a6:e3:b5:0a:5f:51: 38:6f:eb:6e:b0:3e:d7:ea:7e:84:bb:ae:03:92:6d: af:c1:9e:b7:aa:05:1a:4f:81:69:e7:b8:14:2c:13: 71:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:76:96:2C:1E:0B:7E:5F:A0:4B:06:06:DA:5E:DE:BE:7F:F2:12:81 X509v3 Authority Key Identifier: keyid:A5:85:E5:E1:5A:A3:42:87:CA:E4:36:8C:B5:8E:72:27:FD:87:EC:BA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pYXl4VqjQofK5DaMtY5yJ_2H7Lo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/066509-7a91-45f9-9e18-a9e7b343bc66/1/pYXl4VqjQofK5DaMtY5yJ_2H7Lo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/066509-7a91-45f9-9e18-a9e7b343bc66/1/pYXl4VqjQofK5DaMtY5yJ_2H7Lo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8c:7c:76:a0:6d:2c:07:dc:0b:45:5a:31:6c:7a:ec:3a:bb:80: 7f:16:f8:84:86:3b:34:fd:7a:c9:90:b3:7c:42:18:c6:4e:93: c0:48:50:d8:3b:90:e5:06:6e:ed:f7:65:74:33:23:d3:4f:ee: 57:68:a3:b2:8c:08:96:1e:96:db:f2:5b:62:46:b8:77:cf:a3: b7:54:a4:14:31:1b:2e:f8:4f:04:cd:4c:e7:05:9c:53:f2:1d: c5:29:60:44:43:d8:54:68:5e:a0:13:f5:b2:2f:3b:e5:08:d2: ff:3c:66:c5:50:a8:7c:3d:26:10:92:fe:6a:44:8e:d6:f9:12: 9b:f7:9e:3d:c3:5e:2d:1b:1a:ae:46:82:e4:b8:d5:1d:57:ff: a3:c5:ae:40:11:bc:4d:54:a0:b2:38:3b:40:90:e2:d9:a7:87: 7c:79:a7:68:ab:e8:a5:c8:99:cc:c7:f3:96:d2:6d:e0:ba:37: 6f:6c:1e:17:37:63:77:4c:a9:1b:ba:e1:bb:7a:59:07:e7:98: 8c:f1:2b:33:88:44:d1:da:6d:3a:10:0e:d4:8d:54:1f:e8:ae: 41:47:f2:4c:54:63:39:a1:7c:71:0d:a9:fd:01:43:67:aa:72: e9:c3:43:f1:f6:45:90:b0:a2:25:e0:cd:18:03:23:be:6b:10: 1c:ce:4f:dd -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtRvguBcqltaShdMbqoBBUcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE1ODVlNWUxNWFhMzQyODdjYWU0MzY4Y2I1OGU3MjI3ZmQ4 N2VjYmEwHhcNMjUxMjI0MTkwMjQ3WhcNMjUxMjI1MTkwMjQ3WjAzMTEwLwYDVQQD Eyg4YTc2OTYyYzFlMGI3ZTVmYTA0YjA2MDZkYTVlZGViZTdmZjIxMjgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3Jht5OsqQrFuX8nPl1ACXRX6x/ke Jn7ntFVO4aU+Vsxwap55xiSsDdvZF9yjMJVC/svmH4TrrUAp4NUP8J4aweFte3Hx ONsZWzQt3z8Re3cIhGU/Q97C3GjG6gTy6Ov72ZUYg7GEqSZ99rVxb+lkAmd9cpIU Qzdjn+ZhLRO7D0f38E43Kv3W7EiPcGxK8DzgBZyimP7Gm6fMbmoYad+6xM+h0ceF 3Hh8kLMt3GF/UGP6gRysRt+KDJk3TcBYZyoguXpai7XUH628zIk0/Bq/C2yteXVA 4HHKs0um47UKX1E4b+tusD7X6n6Eu64Dkm2vwZ63qgUaT4Fp57gULBNxjQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIp2liweC35foEsGBtpe3r5/8hKBMB8GA1UdIwQY MBaAFKWF5eFao0KHyuQ2jLWOcif9h+y6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcFlYbDRWcWpRb2ZLNURhTXRZNXlKXzJIN0xvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYy8wNjY1MDktN2E5MS00NWY5LTllMTgt YTllN2IzNDNiYzY2LzEvcFlYbDRWcWpRb2ZLNURhTXRZNXlKXzJIN0xvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mYy8wNjY1MDktN2E5MS00NWY5LTllMTgtYTllN2IzNDNiYzY2 LzEvcFlYbDRWcWpRb2ZLNURhTXRZNXlKXzJIN0xvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjHx2oG0s B9wLRVoxbHrsOruAfxb4hIY7NP16yZCzfEIYxk6TwEhQ2DuQ5QZu7fdldDMj00/u V2ijsowIlh6W2/JbYka4d8+jt1SkFDEbLvhPBM1M5wWcU/IdxSlgREPYVGheoBP1 si875QjS/zxmxVCofD0mEJL+akSO1vkSm/eePcNeLRsarkaC5LjVHVf/o8WuQBG8 TVSgsjg7QJDi2aeHfHmnaKvopciZzMfzltJt4Lo3b2weFzdjd0ypG7rhu3pZB+eY jPErM4hE0dptOhAO1I1UH+iuQUfyTFRjOaF8cQ2p/QFDZ6py6cND8fZFkLCiJeDN GAMjvmsQHM5P3Q== -----END CERTIFICATE-----Generated at Thu Dec 25 05:15:54 2025 by rpki-client