This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.mft File: ydWxKeBvlSRoXnABAoQfctaRXDM.mft (raw, json) Hash identifier: y9xxiuB2hhpA9UO+V2Y/0+/oKxArXc2S3Bmq+OOC6To= Subject key identifier: 35:18:14:4C:DB:6E:B5:D5:61:A2:ED:E2:F2:F3:74:33:C9:80:A0:32 Authority key identifier: C9:D5:B1:29:E0:6F:95:24:68:5E:70:01:02:84:1F:72:D6:91:5C:33 Certificate issuer: /CN=c9d5b129e06f9524685e700102841f72d6915c33 Certificate serial: 019B45B8220633012FD3CB0712B9844EFCDA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydWxKeBvlSRoXnABAoQfctaRXDM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.mft Manifest number: 056F Signing time: Mon 22 Dec 2025 11:00:53 +0000 Manifest this update: Mon 22 Dec 2025 11:00:53 +0000 Manifest next update: Tue 23 Dec 2025 11:00:53 +0000 Files and hashes: 1: OpWpWHElMT6Em0cb46EU4-eZHBM.roa (hash: UkmgnvSBtnTTqSpYqYCCjTjePdoSg2sK2f+rfkHw/HY=) 2: ydWxKeBvlSRoXnABAoQfctaRXDM.crl (hash: +R/aIGoDYl2GFaOIact6R1RJ5ZRBlo+yNjXE5TBxPJI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.crl rsync://rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.mft rsync://rpki.ripe.net/repository/DEFAULT/ydWxKeBvlSRoXnABAoQfctaRXDM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 23 Dec 2025 11:00:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:45:b8:22:06:33:01:2f:d3:cb:07:12:b9:84:4e:fc:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c9d5b129e06f9524685e700102841f72d6915c33 Validity Not Before: Dec 22 11:00:53 2025 GMT Not After : Dec 23 11:00:53 2025 GMT Subject: CN=3518144cdb6eb5d561a2ede2f2f37433c980a032 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:eb:23:6f:eb:af:54:a7:fd:8c:60:23:e5:2a: 1e:31:f5:0b:08:8c:ad:91:0e:6f:f4:02:55:aa:00: ba:bc:eb:2f:7c:17:c9:02:96:1e:25:d0:b6:37:9b: c5:79:f3:e3:7b:de:74:dc:10:1e:51:d8:53:f0:21: 57:9c:62:b6:93:28:fe:b7:c2:ea:64:50:d7:2c:33: 98:10:4a:e5:4c:a3:2d:ac:d0:58:f3:96:d1:0a:af: 53:39:3c:a9:7d:03:f2:16:0f:24:1c:3e:5a:a8:ee: 3c:3f:17:3d:e7:fa:a2:20:2a:07:d2:bb:dd:5f:f0: 8e:07:1b:b7:93:41:ec:4a:27:ec:f3:a7:64:78:5d: 6c:e5:e3:cc:c0:58:bb:23:e3:f5:72:40:a4:69:a9: a7:08:23:d4:ec:1f:65:de:4b:b6:21:9c:48:ae:ab: 95:9e:9a:4d:8c:7f:71:17:58:19:34:15:bf:a2:f5: 44:93:07:b7:bb:4f:ef:fa:15:c2:3d:6a:75:6c:a9: 0d:a6:7c:2f:a8:76:cc:a6:1f:e8:58:c2:fb:84:45: 28:e3:34:8b:d0:dd:9d:d4:57:ec:49:6e:8f:9c:5d: 84:df:0c:c9:55:c8:9e:fd:4e:05:9c:85:9f:38:17: 04:50:2b:2a:1f:8a:85:a1:f5:33:42:77:65:b5:3b: e1:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:18:14:4C:DB:6E:B5:D5:61:A2:ED:E2:F2:F3:74:33:C9:80:A0:32 X509v3 Authority Key Identifier: keyid:C9:D5:B1:29:E0:6F:95:24:68:5E:70:01:02:84:1F:72:D6:91:5C:33 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydWxKeBvlSRoXnABAoQfctaRXDM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 63:b2:17:53:1d:03:bc:27:a2:7f:0d:b0:8e:2d:72:73:e2:de: 77:5a:1d:e4:2b:cb:ae:50:1f:44:bd:95:7d:a6:47:b5:2b:79: 25:2b:03:77:61:25:2b:23:3c:b7:60:70:29:f6:a7:54:98:60: c9:43:c0:42:7d:38:9a:dd:12:ef:10:3e:96:eb:7c:5d:11:4b: 6d:ec:37:06:e1:10:ca:20:0c:af:80:40:02:10:05:47:91:42: ea:6c:07:55:53:9d:85:87:1d:45:06:7b:d5:28:c7:99:1c:29: a4:8a:e8:5a:69:de:1b:0c:d2:e7:5f:da:c5:9e:92:33:2a:ec: 92:b3:90:fb:a9:68:60:21:d4:a5:6b:df:e7:a2:45:c2:cb:99: 68:ac:e8:5a:51:1f:dd:b8:dd:01:7d:78:10:3a:d1:7c:1c:3b: c9:e1:23:3e:4a:91:f9:b3:38:0c:21:34:23:bd:fa:d3:1f:0c: 88:94:44:aa:67:d0:c1:84:85:a4:f1:93:57:c3:48:23:ce:1a: 15:78:d2:8f:a2:79:c2:86:22:97:1c:8f:9c:10:f5:d0:0e:4e: c8:1c:24:97:d6:29:b0:b9:a2:a4:39:c2:5a:e3:f2:ba:e8:a7: ea:8e:61:41:93:3f:13:3e:0f:3a:e0:35:73:68:db:0b:46:6c: f0:21:20:14 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtFuCIGMwEv08sHErmETvzaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM5ZDViMTI5ZTA2Zjk1MjQ2ODVlNzAwMTAyODQxZjcyZDY5 MTVjMzMwHhcNMjUxMjIyMTEwMDUzWhcNMjUxMjIzMTEwMDUzWjAzMTEwLwYDVQQD EygzNTE4MTQ0Y2RiNmViNWQ1NjFhMmVkZTJmMmYzNzQzM2M5ODBhMDMyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo+sjb+uvVKf9jGAj5SoeMfULCIyt kQ5v9AJVqgC6vOsvfBfJApYeJdC2N5vFefPje9503BAeUdhT8CFXnGK2kyj+t8Lq ZFDXLDOYEErlTKMtrNBY85bRCq9TOTypfQPyFg8kHD5aqO48Pxc95/qiICoH0rvd X/COBxu3k0HsSifs86dkeF1s5ePMwFi7I+P1ckCkaamnCCPU7B9l3ku2IZxIrquV nppNjH9xF1gZNBW/ovVEkwe3u0/v+hXCPWp1bKkNpnwvqHbMph/oWML7hEUo4zSL 0N2d1FfsSW6PnF2E3wzJVcie/U4FnIWfOBcEUCsqH4qFofUzQndltTvhPwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDUYFEzbbrXVYaLt4vLzdDPJgKAyMB8GA1UdIwQY MBaAFMnVsSngb5UkaF5wAQKEH3LWkVwzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveWRXeEtlQnZsU1JvWG5BQkFvUWZjdGFSWERNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS8xOWY5ZDctNDQzOC00ZDYxLWJlNzct YzJlYWRkNWVmM2YxLzEveWRXeEtlQnZsU1JvWG5BQkFvUWZjdGFSWERNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNS8xOWY5ZDctNDQzOC00ZDYxLWJlNzctYzJlYWRkNWVmM2Yx LzEveWRXeEtlQnZsU1JvWG5BQkFvUWZjdGFSWERNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAY7IXUx0D vCeifw2wji1yc+Led1od5CvLrlAfRL2VfaZHtSt5JSsDd2ElKyM8t2BwKfanVJhg yUPAQn04mt0S7xA+lut8XRFLbew3BuEQyiAMr4BAAhAFR5FC6mwHVVOdhYcdRQZ7 1SjHmRwppIroWmneGwzS51/axZ6SMyrskrOQ+6loYCHUpWvf56JFwsuZaKzoWlEf 3bjdAX14EDrRfBw7yeEjPkqR+bM4DCE0I7360x8MiJREqmfQwYSFpPGTV8NII84a FXjSj6J5woYilxyPnBD10A5OyBwkl9YpsLmipDnCWuPyuuin6o5hQZM/Ez4POuA1 c2jbC0Zs8CEgFA== -----END CERTIFICATE-----Generated at Mon Dec 22 18:02:49 2025 by rpki-client