This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/876750-a230-4f26-b442-f15554fa4b0b/1/Ytbkv_orTRvEDpKzCvDSGnSwu9A.mft File: Ytbkv_orTRvEDpKzCvDSGnSwu9A.mft (raw, json) Hash identifier: C3DgS4TCvxQMy6U03pxQtQE7noXAFmVeS+knlNFvYZQ= Subject key identifier: 17:4B:FC:A3:08:37:CD:B8:B9:9B:37:2E:EF:A3:32:34:02:48:0E:67 Authority key identifier: 62:D6:E4:BF:FA:2B:4D:1B:C4:0E:92:B3:0A:F0:D2:1A:74:B0:BB:D0 Certificate issuer: /CN=62d6e4bffa2b4d1bc40e92b30af0d21a74b0bbd0 Certificate serial: 019B1EE19540BA3A20710783617B38D2851F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ytbkv_orTRvEDpKzCvDSGnSwu9A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/876750-a230-4f26-b442-f15554fa4b0b/1/Ytbkv_orTRvEDpKzCvDSGnSwu9A.mft Manifest number: 1776 Signing time: Sun 14 Dec 2025 22:00:58 +0000 Manifest this update: Sun 14 Dec 2025 22:00:58 +0000 Manifest next update: Mon 15 Dec 2025 22:00:58 +0000 Files and hashes: 1: Ytbkv_orTRvEDpKzCvDSGnSwu9A.crl (hash: ZXZ3C4Uuc8gFd0fzIwDwantln3NTx4qCfbALzMwBIHQ=) 2: dZjzanZ5Xa3WwYz-n1bsR4-cdN4.roa (hash: x2Q62dC7uuAXO8D8ST0Y3bzPEAD8rzw3v3/5eqKnb5o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/876750-a230-4f26-b442-f15554fa4b0b/1/Ytbkv_orTRvEDpKzCvDSGnSwu9A.crl rsync://rpki.ripe.net/repository/DEFAULT/02/876750-a230-4f26-b442-f15554fa4b0b/1/Ytbkv_orTRvEDpKzCvDSGnSwu9A.mft rsync://rpki.ripe.net/repository/DEFAULT/Ytbkv_orTRvEDpKzCvDSGnSwu9A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 15 Dec 2025 20:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:1e:e1:95:40:ba:3a:20:71:07:83:61:7b:38:d2:85:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=62d6e4bffa2b4d1bc40e92b30af0d21a74b0bbd0 Validity Not Before: Dec 14 22:00:58 2025 GMT Not After : Dec 15 22:00:58 2025 GMT Subject: CN=174bfca30837cdb8b99b372eefa3323402480e67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:dd:c3:f6:36:44:f7:9a:ae:56:99:95:0a:af: da:99:48:69:b3:49:d4:c6:46:f6:5b:db:c0:52:91: 66:5c:6d:d4:b7:ec:87:6d:16:42:19:ee:1f:dc:2d: 86:9d:ed:4d:e5:22:33:41:00:f7:0c:01:4b:f9:85: be:46:62:2b:df:3e:d3:7d:8d:63:a2:ae:99:11:ed: cc:0c:f6:3f:8e:65:3a:0b:c1:2f:1e:7e:7f:22:a3: 50:84:c0:47:b0:73:81:fa:cf:76:22:a4:f6:b0:f4: bc:28:ef:12:f0:ba:69:e8:9f:80:b8:b7:65:9a:34: a5:9d:5f:01:a4:9b:14:b5:f2:c4:6f:d2:67:e6:b7: 94:13:87:4a:92:a9:66:95:ca:eb:ac:a4:71:07:ff: 0c:5c:28:af:9f:60:da:44:9f:ee:07:2e:11:c0:d4: d6:73:4f:7f:2b:33:64:5b:2f:99:fc:73:7f:13:27: 8f:47:ce:bd:db:7e:07:01:a4:b3:60:84:1e:44:75: ac:56:66:c0:fa:24:9c:ff:59:c3:e1:41:f3:04:37: 02:75:68:70:df:57:b2:b9:b7:a5:d9:d9:39:23:a0: 17:46:30:62:06:f7:11:ec:05:4c:b0:44:5d:4e:c4: b9:a9:4c:56:ae:68:a8:3a:75:2b:cf:81:26:94:28: d0:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:4B:FC:A3:08:37:CD:B8:B9:9B:37:2E:EF:A3:32:34:02:48:0E:67 X509v3 Authority Key Identifier: keyid:62:D6:E4:BF:FA:2B:4D:1B:C4:0E:92:B3:0A:F0:D2:1A:74:B0:BB:D0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ytbkv_orTRvEDpKzCvDSGnSwu9A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/876750-a230-4f26-b442-f15554fa4b0b/1/Ytbkv_orTRvEDpKzCvDSGnSwu9A.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/02/876750-a230-4f26-b442-f15554fa4b0b/1/Ytbkv_orTRvEDpKzCvDSGnSwu9A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3f:cf:71:dc:40:f4:32:a7:e3:07:ee:23:6c:59:ff:b4:e9:e8: 58:3c:a7:c9:27:28:3e:3f:72:ee:d3:d3:71:3f:b0:ca:13:bd: c9:47:b0:08:a3:65:1c:5b:93:de:20:52:5a:dc:2f:ef:a9:22: e2:61:fe:94:3e:a7:2f:f2:c6:a7:0f:fc:66:04:ee:a4:51:5e: 84:3c:cd:76:03:64:48:39:9e:18:ae:eb:8a:9f:d2:bb:a2:84: c1:88:45:f5:23:4f:74:10:56:f0:67:43:28:1b:4c:d9:9b:71: 92:01:46:86:e3:74:ca:b7:6d:f6:f2:c2:89:92:ef:7e:db:45: c8:15:7a:c4:19:74:68:67:76:30:97:13:87:a1:42:cd:88:a9: 1f:73:c7:3e:c2:9f:da:34:8e:be:72:03:7a:c7:e5:55:55:e2: cf:85:c5:2e:8e:6e:e3:93:79:0b:fe:04:da:97:81:5b:8e:57: 4c:68:0f:e0:be:03:d3:88:c1:ea:22:1f:ca:e6:46:ee:b3:af: 04:a2:20:a4:e5:28:a0:21:2f:27:3a:ab:b8:ff:5b:a8:ad:46: d1:9f:dd:86:51:b3:c9:48:46:1d:bb:dc:c7:57:ab:09:61:4b: 62:d6:4c:a8:9e:b1:94:75:08:b4:af:10:47:02:75:53:2b:16: d1:d6:af:11 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZse4ZVAujogcQeDYXs40oUfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYyZDZlNGJmZmEyYjRkMWJjNDBlOTJiMzBhZjBkMjFhNzRi MGJiZDAwHhcNMjUxMjE0MjIwMDU4WhcNMjUxMjE1MjIwMDU4WjAzMTEwLwYDVQQD EygxNzRiZmNhMzA4MzdjZGI4Yjk5YjM3MmVlZmEzMzIzNDAyNDgwZTY3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnd3D9jZE95quVpmVCq/amUhps0nU xkb2W9vAUpFmXG3Ut+yHbRZCGe4f3C2Gne1N5SIzQQD3DAFL+YW+RmIr3z7TfY1j oq6ZEe3MDPY/jmU6C8EvHn5/IqNQhMBHsHOB+s92IqT2sPS8KO8S8Lpp6J+AuLdl mjSlnV8BpJsUtfLEb9Jn5reUE4dKkqlmlcrrrKRxB/8MXCivn2DaRJ/uBy4RwNTW c09/KzNkWy+Z/HN/EyePR869234HAaSzYIQeRHWsVmbA+iSc/1nD4UHzBDcCdWhw 31eyubel2dk5I6AXRjBiBvcR7AVMsERdTsS5qUxWrmioOnUrz4EmlCjQ0QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBdL/KMIN824uZs3Lu+jMjQCSA5nMB8GA1UdIwQY MBaAFGLW5L/6K00bxA6Sswrw0hp0sLvQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWXRia3Zfb3JUUnZFRHBLekN2RFNHblN3dTlBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi84NzY3NTAtYTIzMC00ZjI2LWI0NDIt ZjE1NTU0ZmE0YjBiLzEvWXRia3Zfb3JUUnZFRHBLekN2RFNHblN3dTlBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMi84NzY3NTAtYTIzMC00ZjI2LWI0NDItZjE1NTU0ZmE0YjBi LzEvWXRia3Zfb3JUUnZFRHBLekN2RFNHblN3dTlBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAP89x3ED0 MqfjB+4jbFn/tOnoWDynyScoPj9y7tPTcT+wyhO9yUewCKNlHFuT3iBSWtwv76ki 4mH+lD6nL/LGpw/8ZgTupFFehDzNdgNkSDmeGK7rip/Su6KEwYhF9SNPdBBW8GdD KBtM2ZtxkgFGhuN0yrdt9vLCiZLvfttFyBV6xBl0aGd2MJcTh6FCzYipH3PHPsKf 2jSOvnIDesflVVXiz4XFLo5u45N5C/4E2peBW45XTGgP4L4D04jB6iIfyuZG7rOv BKIgpOUooCEvJzqruP9bqK1G0Z/dhlGzyUhGHbvcx1erCWFLYtZMqJ6xlHUItK8Q RwJ1UysW0davEQ== -----END CERTIFICATE-----Generated at Mon Dec 15 02:16:24 2025 by rpki-client