This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/e51856-e52e-4b24-8c99-c240bfc9cbc1/1/YWFHDTm-S6LdXfj6R7FjlieOZwo.mft File: YWFHDTm-S6LdXfj6R7FjlieOZwo.mft (raw, json) Hash identifier: Z145RV39hMMGDDmsAZqyNdtAuD5zX+QVsBDT4E6xrKs= Subject key identifier: 54:B5:A2:B2:99:36:E0:C6:CC:18:E0:37:45:E2:BB:09:0D:74:CC:68 Authority key identifier: 61:61:47:0D:39:BE:4B:A2:DD:5D:F8:FA:47:B1:63:96:27:8E:67:0A Certificate issuer: /CN=6161470d39be4ba2dd5df8fa47b16396278e670a Certificate serial: 019B416D39C093944E259BD461B63E5E2280 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YWFHDTm-S6LdXfj6R7FjlieOZwo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/e51856-e52e-4b24-8c99-c240bfc9cbc1/1/YWFHDTm-S6LdXfj6R7FjlieOZwo.mft Manifest number: 133E Signing time: Sun 21 Dec 2025 15:00:35 +0000 Manifest this update: Sun 21 Dec 2025 15:00:35 +0000 Manifest next update: Mon 22 Dec 2025 15:00:35 +0000 Files and hashes: 1: AbbCpXYiPra6RxhQTvg6tXGKv2M.roa (hash: FNfTwP/KDnV+ro4Bwjh1vRofBv3ZvkWsRE+40NBNKuk=) 2: FGboOzE5w8Avx6zvXiGJurlcXzU.roa (hash: ME54k9XxSNDAp5P0H67LsrOuZ6Ebe7/DSYtgtZypMoY=) 3: Wbf3TpGPW6_mWaG66XxtMUTmb5k.roa (hash: Kx6Oc/JjYSTEsN+RCZ0T24iZupA82iqVacFfzuICYqY=) 4: YWFHDTm-S6LdXfj6R7FjlieOZwo.crl (hash: EvPjuQsHzlANzNeVrNjtIudGLujm1CyGMdQ+cgljaSo=) 5: hqDxB-Ir5z3Y_G6a9rOSto5ZH88.roa (hash: 2802mZRHrPPS6iUejTLOubgUc+cQnwe3PYotooKVAJk=) 6: od5OSHsrRHxJrICxzwVu43I_RWY.roa (hash: EQRBns0cqYxWGEdIIr3QIm5kW2CuUKF+BPL8pSHvs8Q=) 7: p03EoH5XFva0OIfQnxqffNm4ZvE.roa (hash: Wew8is0Ow617QiWMc1vuUJjZYXt68/dM84EY8eQITFE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/e51856-e52e-4b24-8c99-c240bfc9cbc1/1/YWFHDTm-S6LdXfj6R7FjlieOZwo.crl rsync://rpki.ripe.net/repository/DEFAULT/06/e51856-e52e-4b24-8c99-c240bfc9cbc1/1/YWFHDTm-S6LdXfj6R7FjlieOZwo.mft rsync://rpki.ripe.net/repository/DEFAULT/YWFHDTm-S6LdXfj6R7FjlieOZwo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 13:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:41:6d:39:c0:93:94:4e:25:9b:d4:61:b6:3e:5e:22:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6161470d39be4ba2dd5df8fa47b16396278e670a Validity Not Before: Dec 21 15:00:35 2025 GMT Not After : Dec 22 15:00:35 2025 GMT Subject: CN=54b5a2b29936e0c6cc18e03745e2bb090d74cc68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:b6:47:54:68:de:99:8c:9e:24:93:fa:da:37: af:70:ea:bf:d7:ef:cc:fc:5a:1f:6d:08:7a:98:07: b5:15:14:f3:f4:42:46:fe:f7:f3:eb:b6:92:a1:a1: 52:93:c3:98:4b:91:e4:26:95:d5:b3:b3:15:8f:0b: 54:30:c9:d0:e4:72:20:bb:3a:9b:34:b2:9a:52:7e: a9:f2:3a:43:98:13:17:33:07:07:25:54:cc:95:44: 2e:1e:af:2d:32:ed:e1:c6:56:58:f5:bf:20:17:65: 7e:b8:12:bd:31:ee:cf:54:0b:99:cc:e6:7b:6d:64: 7e:9d:ea:eb:8c:06:9b:35:e3:94:ab:a8:75:af:cf: 6b:b0:a5:2a:61:d6:49:90:01:a1:98:51:20:e7:3a: 0a:a2:67:78:3a:0e:ff:04:a5:b2:d4:6e:47:f8:f2: 68:f5:81:2c:25:46:54:1d:01:9e:cd:12:36:52:7a: 0d:bb:01:ff:d3:ef:12:12:8b:41:4a:94:00:08:5a: 17:f2:74:1d:51:fb:d1:1b:c1:be:e7:7a:49:01:0f: ac:b7:b6:ec:7d:83:8e:20:a6:7d:a1:e3:02:5c:a5: 37:90:4d:5f:cc:17:95:2e:f4:f9:37:8f:1c:2e:32: 4d:f0:83:cd:ab:24:59:57:f6:c2:53:64:76:77:51: 23:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:B5:A2:B2:99:36:E0:C6:CC:18:E0:37:45:E2:BB:09:0D:74:CC:68 X509v3 Authority Key Identifier: keyid:61:61:47:0D:39:BE:4B:A2:DD:5D:F8:FA:47:B1:63:96:27:8E:67:0A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YWFHDTm-S6LdXfj6R7FjlieOZwo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/e51856-e52e-4b24-8c99-c240bfc9cbc1/1/YWFHDTm-S6LdXfj6R7FjlieOZwo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/06/e51856-e52e-4b24-8c99-c240bfc9cbc1/1/YWFHDTm-S6LdXfj6R7FjlieOZwo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 38:55:c9:8d:58:97:3a:17:a7:ac:cd:8a:20:d8:5b:88:29:c8: 4f:da:e0:cd:36:b5:a4:1c:6c:3c:09:06:e1:76:78:c5:37:5b: 78:00:51:91:6b:d1:23:23:9b:09:5a:72:bb:37:db:30:95:8f: 5f:bd:06:d3:21:23:bb:0f:74:ed:2f:1e:04:94:07:26:69:c2: 8a:74:23:f6:13:5c:39:b3:d0:0f:90:be:a0:96:ff:19:95:77: 1d:67:31:a6:01:e1:62:37:31:37:ab:c0:54:e7:ff:b7:02:5d: 42:0c:86:d9:fe:72:15:d5:e0:62:85:9d:01:16:0f:16:f9:ac: 6b:11:37:30:1d:5d:55:42:7b:dd:7d:bc:8e:14:91:76:27:d7: d9:a3:e1:2a:1b:ee:51:4b:06:82:ab:c8:1a:34:6d:bf:c2:91: 24:e9:ee:13:df:49:16:95:0d:6e:b9:e4:62:80:2c:43:63:2d: 8a:ff:28:6d:75:52:a8:b1:1f:90:0a:0a:03:05:83:9b:41:f0: 32:6b:af:c2:75:8a:98:25:61:12:13:d0:96:95:8e:8b:c2:86: 85:ce:c3:51:70:d4:3d:ca:0c:2d:76:9a:89:ec:0c:ad:d6:2d: ac:ef:39:35:51:e3:8b:e2:b0:48:69:65:53:0a:46:52:f8:07: 3b:6d:6a:96 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtBbTnAk5ROJZvUYbY+XiKAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYxNjE0NzBkMzliZTRiYTJkZDVkZjhmYTQ3YjE2Mzk2Mjc4 ZTY3MGEwHhcNMjUxMjIxMTUwMDM1WhcNMjUxMjIyMTUwMDM1WjAzMTEwLwYDVQQD Eyg1NGI1YTJiMjk5MzZlMGM2Y2MxOGUwMzc0NWUyYmIwOTBkNzRjYzY4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp7ZHVGjemYyeJJP62jevcOq/1+/M /FofbQh6mAe1FRTz9EJG/vfz67aSoaFSk8OYS5HkJpXVs7MVjwtUMMnQ5HIguzqb NLKaUn6p8jpDmBMXMwcHJVTMlUQuHq8tMu3hxlZY9b8gF2V+uBK9Me7PVAuZzOZ7 bWR+nerrjAabNeOUq6h1r89rsKUqYdZJkAGhmFEg5zoKomd4Og7/BKWy1G5H+PJo 9YEsJUZUHQGezRI2UnoNuwH/0+8SEotBSpQACFoX8nQdUfvRG8G+53pJAQ+st7bs fYOOIKZ9oeMCXKU3kE1fzBeVLvT5N48cLjJN8IPNqyRZV/bCU2R2d1Ej5QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFS1orKZNuDGzBjgN0XiuwkNdMxoMB8GA1UdIwQY MBaAFGFhRw05vkui3V34+kexY5YnjmcKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWVdGSERUbS1TNkxkWGZqNlI3RmpsaWVPWndvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNi9lNTE4NTYtZTUyZS00YjI0LThjOTkt YzI0MGJmYzljYmMxLzEvWVdGSERUbS1TNkxkWGZqNlI3RmpsaWVPWndvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNi9lNTE4NTYtZTUyZS00YjI0LThjOTktYzI0MGJmYzljYmMx LzEvWVdGSERUbS1TNkxkWGZqNlI3RmpsaWVPWndvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOFXJjViX OhenrM2KINhbiCnIT9rgzTa1pBxsPAkG4XZ4xTdbeABRkWvRIyObCVpyuzfbMJWP X70G0yEjuw907S8eBJQHJmnCinQj9hNcObPQD5C+oJb/GZV3HWcxpgHhYjcxN6vA VOf/twJdQgyG2f5yFdXgYoWdARYPFvmsaxE3MB1dVUJ73X28jhSRdifX2aPhKhvu UUsGgqvIGjRtv8KRJOnuE99JFpUNbrnkYoAsQ2Mtiv8obXVSqLEfkAoKAwWDm0Hw MmuvwnWKmCVhEhPQlpWOi8KGhc7DUXDUPcoMLXaaiewMrdYtrO85NVHji+KwSGll UwpGUvgHO21qlg== -----END CERTIFICATE-----Generated at Sun Dec 21 20:55:01 2025 by rpki-client