This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/28b730-f5bb-4606-8365-08e10638225e/1/Mya5UKRaLGusFQX80E2UDMCWj5Y.mft File: Mya5UKRaLGusFQX80E2UDMCWj5Y.mft (raw, json) Hash identifier: on0+Tr+Oze+913rWKB18nz4cQ818eKOvv7UB1KkS2wI= Subject key identifier: 3D:CC:7A:E4:59:F2:D5:7C:00:BC:53:16:ED:69:89:1F:7B:63:A8:A0 Authority key identifier: 33:26:B9:50:A4:5A:2C:6B:AC:15:05:FC:D0:4D:94:0C:C0:96:8F:96 Certificate issuer: /CN=3326b950a45a2c6bac1505fcd04d940cc0968f96 Certificate serial: 019B59E3D855674553EA17D09D501743E536 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Mya5UKRaLGusFQX80E2UDMCWj5Y.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/28b730-f5bb-4606-8365-08e10638225e/1/Mya5UKRaLGusFQX80E2UDMCWj5Y.mft Manifest number: 0680 Signing time: Fri 26 Dec 2025 09:01:02 +0000 Manifest this update: Fri 26 Dec 2025 09:01:02 +0000 Manifest next update: Sat 27 Dec 2025 09:01:02 +0000 Files and hashes: 1: Mya5UKRaLGusFQX80E2UDMCWj5Y.crl (hash: awFHfW2NDaSESbXa9nFT8fdmCybSNl51+8hUlKUEQLQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/28b730-f5bb-4606-8365-08e10638225e/1/Mya5UKRaLGusFQX80E2UDMCWj5Y.crl rsync://rpki.ripe.net/repository/DEFAULT/0a/28b730-f5bb-4606-8365-08e10638225e/1/Mya5UKRaLGusFQX80E2UDMCWj5Y.mft rsync://rpki.ripe.net/repository/DEFAULT/Mya5UKRaLGusFQX80E2UDMCWj5Y.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:e3:d8:55:67:45:53:ea:17:d0:9d:50:17:43:e5:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3326b950a45a2c6bac1505fcd04d940cc0968f96 Validity Not Before: Dec 26 09:01:02 2025 GMT Not After : Dec 27 09:01:02 2025 GMT Subject: CN=3dcc7ae459f2d57c00bc5316ed69891f7b63a8a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:00:fc:38:0c:de:67:ab:c1:06:08:6f:af:be: 0a:34:06:a0:a7:ac:76:e3:be:aa:50:18:48:7e:c1: 2f:92:e0:27:91:b4:c6:6c:d4:8f:b2:3c:f4:15:c4: a8:4c:1f:e6:b6:42:da:9f:46:db:9c:54:8c:20:1a: e2:7c:15:c8:b2:c9:d7:d1:61:88:ff:d0:c8:cc:6c: 31:1a:0a:16:3f:07:53:fd:78:09:9d:61:f6:72:fe: 3f:31:e7:50:f8:9c:d9:81:d5:d3:9c:bf:d5:65:69: ae:76:8d:81:2e:fd:0d:49:04:db:11:44:44:ec:65: b4:5b:57:c8:91:c5:29:ea:b8:80:c7:e5:ce:90:2b: 89:c5:9c:96:b7:01:71:c6:6a:f1:92:ba:02:60:d4: b5:f5:22:7d:69:6d:83:63:34:96:d9:1f:52:90:11: 97:eb:17:cf:d5:31:4f:ea:ef:ad:3f:90:97:70:0a: d8:b8:0a:03:c3:08:8a:70:33:84:18:c3:28:e2:ba: 97:0c:ee:ef:e1:8b:b6:89:17:bc:80:7d:d1:c7:03: 31:c0:6e:3d:d3:a9:8c:93:86:f6:73:6a:3f:e4:8e: 22:e4:18:9f:45:38:a5:6c:71:a1:57:01:fc:28:f2: 88:04:f4:6e:7e:5d:14:63:39:27:56:32:c1:4b:7f: d0:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:CC:7A:E4:59:F2:D5:7C:00:BC:53:16:ED:69:89:1F:7B:63:A8:A0 X509v3 Authority Key Identifier: keyid:33:26:B9:50:A4:5A:2C:6B:AC:15:05:FC:D0:4D:94:0C:C0:96:8F:96 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Mya5UKRaLGusFQX80E2UDMCWj5Y.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/28b730-f5bb-4606-8365-08e10638225e/1/Mya5UKRaLGusFQX80E2UDMCWj5Y.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/28b730-f5bb-4606-8365-08e10638225e/1/Mya5UKRaLGusFQX80E2UDMCWj5Y.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4e:d2:c4:d4:f7:c0:3d:aa:8c:c4:3d:ba:2d:cc:30:54:cc:9b: c5:bb:11:28:56:a1:9d:cd:47:b9:e6:c2:97:08:07:2d:02:0f: c8:86:95:f6:93:50:0f:27:3d:04:b7:31:67:6e:e4:04:a9:cf: f2:84:06:1b:89:9e:2f:14:05:c5:ee:90:6f:31:8a:a4:9b:c7: 59:58:c4:8d:be:0c:0e:f8:93:84:90:93:14:b3:12:c1:4f:e9: 60:27:f7:74:08:c1:5a:10:f8:f4:45:9d:77:97:76:6e:1e:be: 8e:5c:f5:95:23:c7:df:71:0e:7e:c1:3f:87:bf:54:6e:7d:93: 42:64:6f:f8:56:7e:a0:88:cc:d7:6a:98:96:89:83:df:fd:0a: db:0b:d4:26:21:7d:07:1f:98:dd:ce:a9:f6:1d:51:28:8f:33: 80:cc:4c:f5:a6:a4:f2:89:db:3f:16:5b:00:e7:30:89:d6:f7: bc:c4:83:f8:ca:da:f8:08:89:74:ba:63:79:c1:0d:e2:89:b7: 30:a5:0e:d7:e3:c7:e0:ad:77:03:73:64:ea:74:d4:62:ce:4d: 83:1d:77:9d:68:2c:33:7f:8a:13:2c:06:ac:75:dd:ef:33:a8: 5a:d7:d0:3c:79:b1:3f:a9:61:0c:b9:50:9a:28:c1:92:87:62: 4b:4f:9d:30 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZ49hVZ0VT6hfQnVAXQ+U2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMzMjZiOTUwYTQ1YTJjNmJhYzE1MDVmY2QwNGQ5NDBjYzA5 NjhmOTYwHhcNMjUxMjI2MDkwMTAyWhcNMjUxMjI3MDkwMTAyWjAzMTEwLwYDVQQD EygzZGNjN2FlNDU5ZjJkNTdjMDBiYzUzMTZlZDY5ODkxZjdiNjNhOGEwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiAD8OAzeZ6vBBghvr74KNAagp6x2 476qUBhIfsEvkuAnkbTGbNSPsjz0FcSoTB/mtkLan0bbnFSMIBrifBXIssnX0WGI /9DIzGwxGgoWPwdT/XgJnWH2cv4/MedQ+JzZgdXTnL/VZWmudo2BLv0NSQTbEURE 7GW0W1fIkcUp6riAx+XOkCuJxZyWtwFxxmrxkroCYNS19SJ9aW2DYzSW2R9SkBGX 6xfP1TFP6u+tP5CXcArYuAoDwwiKcDOEGMMo4rqXDO7v4Yu2iRe8gH3RxwMxwG49 06mMk4b2c2o/5I4i5BifRTilbHGhVwH8KPKIBPRufl0UYzknVjLBS3/QSQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFD3MeuRZ8tV8ALxTFu1piR97Y6igMB8GA1UdIwQY MBaAFDMmuVCkWixrrBUF/NBNlAzAlo+WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTXlhNVVLUmFMR3VzRlFYODBFMlVETUNXajVZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYS8yOGI3MzAtZjViYi00NjA2LTgzNjUt MDhlMTA2MzgyMjVlLzEvTXlhNVVLUmFMR3VzRlFYODBFMlVETUNXajVZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYS8yOGI3MzAtZjViYi00NjA2LTgzNjUtMDhlMTA2MzgyMjVl LzEvTXlhNVVLUmFMR3VzRlFYODBFMlVETUNXajVZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATtLE1PfA PaqMxD26LcwwVMybxbsRKFahnc1HuebClwgHLQIPyIaV9pNQDyc9BLcxZ27kBKnP 8oQGG4meLxQFxe6QbzGKpJvHWVjEjb4MDviThJCTFLMSwU/pYCf3dAjBWhD49EWd d5d2bh6+jlz1lSPH33EOfsE/h79Ubn2TQmRv+FZ+oIjM12qYlomD3/0K2wvUJiF9 Bx+Y3c6p9h1RKI8zgMxM9aak8onbPxZbAOcwidb3vMSD+Mra+AiJdLpjecEN4om3 MKUO1+PH4K13A3Nk6nTUYs5Ngx13nWgsM3+KEywGrHXd7zOoWtfQPHmxP6lhDLlQ mijBkodiS0+dMA== -----END CERTIFICATE-----Generated at Fri Dec 26 14:08:50 2025 by rpki-client