This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/bdc09a-2b2a-4797-a296-9cfdf3c2b348/1/y9dX6ROqzkNObdbW1Qp-33LOiIw.mft File: y9dX6ROqzkNObdbW1Qp-33LOiIw.mft (raw, json) Hash identifier: n8p8Qo7xelyeqrWY7w11PegHzSNfT6bWgzYUblsLQiI= Subject key identifier: 81:51:F9:01:F0:C6:3F:F1:07:39:A4:9F:7C:C6:B6:78:92:E4:10:6E Authority key identifier: CB:D7:57:E9:13:AA:CE:43:4E:6D:D6:D6:D5:0A:7E:DF:72:CE:88:8C Certificate issuer: /CN=cbd757e913aace434e6dd6d6d50a7edf72ce888c Certificate serial: 019B35A0D7D889812D8D366BD3ED7DAF3491 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y9dX6ROqzkNObdbW1Qp-33LOiIw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/bdc09a-2b2a-4797-a296-9cfdf3c2b348/1/y9dX6ROqzkNObdbW1Qp-33LOiIw.mft Manifest number: 1151 Signing time: Fri 19 Dec 2025 08:01:31 +0000 Manifest this update: Fri 19 Dec 2025 08:01:31 +0000 Manifest next update: Sat 20 Dec 2025 08:01:31 +0000 Files and hashes: 1: xXYCNUnm-3UsiS0Y2j4IJt8GJmU.roa (hash: kfa/1BPOG2GKMxXo/zgSWZ2DSaf3+pCaWIgYdprI0TU=) 2: y9dX6ROqzkNObdbW1Qp-33LOiIw.crl (hash: lVmmOXpz/lRvP960AwmAL3qfUwya4MQ77wt7IIyP32E=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/bdc09a-2b2a-4797-a296-9cfdf3c2b348/1/y9dX6ROqzkNObdbW1Qp-33LOiIw.crl rsync://rpki.ripe.net/repository/DEFAULT/06/bdc09a-2b2a-4797-a296-9cfdf3c2b348/1/y9dX6ROqzkNObdbW1Qp-33LOiIw.mft rsync://rpki.ripe.net/repository/DEFAULT/y9dX6ROqzkNObdbW1Qp-33LOiIw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 07:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:35:a0:d7:d8:89:81:2d:8d:36:6b:d3:ed:7d:af:34:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cbd757e913aace434e6dd6d6d50a7edf72ce888c Validity Not Before: Dec 19 08:01:31 2025 GMT Not After : Dec 20 08:01:31 2025 GMT Subject: CN=8151f901f0c63ff10739a49f7cc6b67892e4106e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:2e:04:c6:e7:7b:2d:68:f4:3a:98:a4:2b:d2: 7a:b6:5b:f3:f5:41:37:9f:e0:29:01:ec:ea:ac:7a: 47:76:78:91:9e:70:36:94:22:68:75:f5:9c:e9:9f: e6:2a:01:93:96:a3:69:97:c0:1f:06:3e:8a:b9:45: b9:d7:df:8d:70:c2:e1:0c:58:e3:22:a1:37:c5:78: 04:2e:14:34:fb:76:dd:23:f7:43:72:37:0a:0a:23: f1:d3:0d:68:ed:51:84:24:a0:14:3e:2f:de:0c:1e: 9a:5f:b0:11:1d:99:3b:8a:42:44:d0:86:67:10:e9: 3d:9e:52:af:bc:16:a5:b5:f2:44:69:65:8f:8a:42: 48:80:84:c0:7c:1d:7d:5c:e0:89:67:d5:d6:ec:71: 5b:cd:7b:24:24:b4:c1:14:f1:3d:e4:ad:f6:5a:91: e3:a1:f4:34:0c:db:e8:ac:58:4b:3a:5b:49:1c:eb: 23:bd:cd:8e:1a:32:24:1e:e0:6b:da:5d:e4:a3:89: d7:53:66:93:6f:9b:99:23:b3:a7:c0:af:fe:f4:2d: eb:49:4c:61:07:9d:e7:fd:c6:87:85:71:0b:b5:4a: 6e:75:3a:7e:74:41:d7:7d:50:de:52:e1:e9:c9:d8: 73:bf:b8:5e:36:69:a8:31:f2:7a:d1:d7:07:ca:f5: e7:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:51:F9:01:F0:C6:3F:F1:07:39:A4:9F:7C:C6:B6:78:92:E4:10:6E X509v3 Authority Key Identifier: keyid:CB:D7:57:E9:13:AA:CE:43:4E:6D:D6:D6:D5:0A:7E:DF:72:CE:88:8C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y9dX6ROqzkNObdbW1Qp-33LOiIw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/bdc09a-2b2a-4797-a296-9cfdf3c2b348/1/y9dX6ROqzkNObdbW1Qp-33LOiIw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/06/bdc09a-2b2a-4797-a296-9cfdf3c2b348/1/y9dX6ROqzkNObdbW1Qp-33LOiIw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5d:14:af:b8:71:7f:a8:61:2a:48:ff:a1:18:96:d2:42:c5:24: 22:34:e4:26:af:86:a7:5c:c9:5a:99:3e:1f:b7:fa:a1:86:51: 41:3b:c0:96:e7:93:80:d9:49:f9:7b:d6:b5:f0:13:77:dd:f2: 78:b3:60:0f:9c:c0:0b:7c:5c:bb:da:84:67:89:89:c1:15:71: 74:f6:46:0d:c5:47:80:66:d6:09:70:59:69:ad:b6:ba:57:12: 87:47:4c:7b:6c:bd:5b:de:15:d5:b1:ea:bb:91:e5:1a:41:e2: b3:92:d6:71:24:97:0b:68:c2:a8:63:94:ee:67:e7:3a:c4:b4: 68:50:fc:35:2d:e5:9b:8e:89:d0:9a:e0:f7:aa:7b:db:70:e0: 7a:6b:c7:b2:29:8c:cb:02:26:8f:02:d2:a1:69:a0:2a:8d:c2: bd:05:69:b7:a8:7d:75:6b:9f:33:6c:2f:fd:6a:c2:a1:7f:dd: ae:21:91:35:46:74:f3:6a:37:99:41:73:63:0b:a2:d8:36:bd: d5:e6:2f:82:8e:b8:f7:58:2c:f3:3b:ea:6a:d5:0b:7c:67:76: c1:46:10:2f:4a:87:36:2b:f1:7e:64:48:88:9d:cc:99:30:33: 8c:d0:13:79:c1:7c:fc:c9:f4:35:42:24:9d:6b:81:33:09:10: 8c:f9:c5:21 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs1oNfYiYEtjTZr0+19rzSRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNiZDc1N2U5MTNhYWNlNDM0ZTZkZDZkNmQ1MGE3ZWRmNzJj ZTg4OGMwHhcNMjUxMjE5MDgwMTMxWhcNMjUxMjIwMDgwMTMxWjAzMTEwLwYDVQQD Eyg4MTUxZjkwMWYwYzYzZmYxMDczOWE0OWY3Y2M2YjY3ODkyZTQxMDZlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAui4Exud7LWj0OpikK9J6tlvz9UE3 n+ApAezqrHpHdniRnnA2lCJodfWc6Z/mKgGTlqNpl8AfBj6KuUW519+NcMLhDFjj IqE3xXgELhQ0+3bdI/dDcjcKCiPx0w1o7VGEJKAUPi/eDB6aX7ARHZk7ikJE0IZn EOk9nlKvvBaltfJEaWWPikJIgITAfB19XOCJZ9XW7HFbzXskJLTBFPE95K32WpHj ofQ0DNvorFhLOltJHOsjvc2OGjIkHuBr2l3ko4nXU2aTb5uZI7OnwK/+9C3rSUxh B53n/caHhXELtUpudTp+dEHXfVDeUuHpydhzv7heNmmoMfJ60dcHyvXnIwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIFR+QHwxj/xBzmkn3zGtniS5BBuMB8GA1UdIwQY MBaAFMvXV+kTqs5DTm3W1tUKft9yzoiMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveTlkWDZST3F6a05PYmRiVzFRcC0zM0xPaUl3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNi9iZGMwOWEtMmIyYS00Nzk3LWEyOTYt OWNmZGYzYzJiMzQ4LzEveTlkWDZST3F6a05PYmRiVzFRcC0zM0xPaUl3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNi9iZGMwOWEtMmIyYS00Nzk3LWEyOTYtOWNmZGYzYzJiMzQ4 LzEveTlkWDZST3F6a05PYmRiVzFRcC0zM0xPaUl3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXRSvuHF/ qGEqSP+hGJbSQsUkIjTkJq+Gp1zJWpk+H7f6oYZRQTvAlueTgNlJ+XvWtfATd93y eLNgD5zAC3xcu9qEZ4mJwRVxdPZGDcVHgGbWCXBZaa22ulcSh0dMe2y9W94V1bHq u5HlGkHis5LWcSSXC2jCqGOU7mfnOsS0aFD8NS3lm46J0Jrg96p723DgemvHsimM ywImjwLSoWmgKo3CvQVpt6h9dWufM2wv/WrCoX/driGRNUZ082o3mUFzYwui2Da9 1eYvgo6491gs8zvqatULfGd2wUYQL0qHNivxfmRIiJ3MmTAzjNATecF8/Mn0NUIk nWuBMwkQjPnFIQ== -----END CERTIFICATE-----Generated at Fri Dec 19 13:14:33 2025 by rpki-client