This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/cecd3a-e92a-4509-b590-9f307574051e/1/yDOgOJWSdW5BXN40irvCQxKwLfY.mft File: yDOgOJWSdW5BXN40irvCQxKwLfY.mft (raw, json) Hash identifier: HkN+Hrkgov7IN3LW/gDadFps8PJKT4C8Er4TCKhBE+Q= Subject key identifier: BF:EE:28:47:41:62:D8:83:53:9A:8E:A8:DE:B6:B0:4F:ED:1C:F4:21 Authority key identifier: C8:33:A0:38:95:92:75:6E:41:5C:DE:34:8A:BB:C2:43:12:B0:2D:F6 Certificate issuer: /CN=c833a0389592756e415cde348abbc24312b02df6 Certificate serial: 019B3DC77E60E6053706E4040C6C5E9283F5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yDOgOJWSdW5BXN40irvCQxKwLfY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/cecd3a-e92a-4509-b590-9f307574051e/1/yDOgOJWSdW5BXN40irvCQxKwLfY.mft Manifest number: 178A Signing time: Sat 20 Dec 2025 22:00:42 +0000 Manifest this update: Sat 20 Dec 2025 22:00:42 +0000 Manifest next update: Sun 21 Dec 2025 22:00:42 +0000 Files and hashes: 1: erRTM1_91VtMTpdLg1tFc8DEnKQ.roa (hash: igv5stthjArSt6knKlRkVvpjhTI9/bVwYZs5FEOn1NI=) 2: yDOgOJWSdW5BXN40irvCQxKwLfY.crl (hash: dGzYhActX6mNXFtiW3KQHQ1NTD9OF0YOVZixNfWqabQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/cecd3a-e92a-4509-b590-9f307574051e/1/yDOgOJWSdW5BXN40irvCQxKwLfY.crl rsync://rpki.ripe.net/repository/DEFAULT/15/cecd3a-e92a-4509-b590-9f307574051e/1/yDOgOJWSdW5BXN40irvCQxKwLfY.mft rsync://rpki.ripe.net/repository/DEFAULT/yDOgOJWSdW5BXN40irvCQxKwLfY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 15:46:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3d:c7:7e:60:e6:05:37:06:e4:04:0c:6c:5e:92:83:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c833a0389592756e415cde348abbc24312b02df6 Validity Not Before: Dec 20 22:00:42 2025 GMT Not After : Dec 21 22:00:42 2025 GMT Subject: CN=bfee28474162d883539a8ea8deb6b04fed1cf421 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:c2:31:77:54:bb:35:c7:29:29:7d:35:2a:f4: 49:06:cc:fe:66:34:20:40:e1:d7:82:89:af:b6:3a: 20:a1:81:55:1c:87:33:0c:64:b1:4b:1b:da:ed:50: 1e:a7:37:7e:b3:10:cf:c2:dc:0e:f4:72:32:21:9d: af:f6:06:d2:0d:8b:6e:32:b8:a9:61:40:6a:60:47: d8:f7:ad:35:59:14:33:9f:7b:77:46:5a:4e:9d:60: 87:13:97:6d:c5:b0:59:74:db:0e:d6:b6:1d:fc:01: c3:da:ee:ef:05:41:b9:3e:f7:06:00:d4:f6:57:ba: c7:1a:bb:cb:6b:88:a8:4d:f0:fe:bf:31:8e:fe:f4: 97:0c:76:42:e3:49:2b:8a:64:00:ae:c4:a5:af:bb: 8e:51:d9:83:ce:ea:a3:b4:36:5b:64:ba:a2:a0:c8: 18:51:f5:6c:84:a7:f6:6f:1d:d3:69:7b:dc:c2:33: 15:18:37:f1:ea:51:2a:f2:7f:1a:ba:a2:d9:c3:9a: 6a:77:b8:5d:2f:88:ed:d4:20:34:6c:af:2d:d5:55: 87:89:51:ed:a8:3f:6c:5f:34:4b:51:b9:a7:29:46: f5:ad:2f:1f:eb:f5:26:3e:c8:0f:8e:0b:1d:99:95: 67:fa:fc:87:a3:c9:18:da:ea:83:74:48:77:df:a5: df:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:EE:28:47:41:62:D8:83:53:9A:8E:A8:DE:B6:B0:4F:ED:1C:F4:21 X509v3 Authority Key Identifier: keyid:C8:33:A0:38:95:92:75:6E:41:5C:DE:34:8A:BB:C2:43:12:B0:2D:F6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yDOgOJWSdW5BXN40irvCQxKwLfY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/cecd3a-e92a-4509-b590-9f307574051e/1/yDOgOJWSdW5BXN40irvCQxKwLfY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/15/cecd3a-e92a-4509-b590-9f307574051e/1/yDOgOJWSdW5BXN40irvCQxKwLfY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 11:b4:fa:ca:02:ef:aa:2c:c4:88:e6:c1:2e:cd:47:fe:c2:ec: 27:8d:7d:83:13:6d:ea:47:96:fe:be:a2:83:dd:c7:5a:18:27: 6c:64:dc:2f:2b:7f:b4:3a:90:26:99:49:51:6d:8e:a3:b0:ef: 78:88:a7:20:c9:8e:f9:6a:87:e6:70:04:8d:a5:a1:42:60:b9: b3:45:6a:ee:ad:3a:a7:42:28:33:a2:fa:82:bf:05:7e:47:9f: b4:c0:34:e7:85:f4:8f:9e:b2:8a:d4:f4:a6:8a:e5:fd:51:0e: e9:93:b7:2b:37:60:a1:d7:02:91:82:86:ee:47:69:08:0d:f5: 95:2d:94:93:16:09:ec:75:8c:5d:37:de:37:99:d8:31:75:6c: ac:4b:b7:03:f9:e3:c1:7f:e9:24:a3:22:35:49:9d:9e:3b:42: 5c:86:51:0e:90:13:01:4b:d1:2e:ba:98:f6:62:39:2c:62:89: 24:f4:a5:ce:4a:73:9c:63:52:20:4a:8c:55:b0:9a:a3:03:2c: fa:31:bd:eb:58:b9:d3:a7:c4:6b:e2:20:50:20:6b:c4:7c:cf: b8:e7:92:dc:06:73:70:5e:28:55:c1:0a:93:c3:1b:8b:f2:67: 04:1f:8c:34:fb:bc:a7:6f:09:d0:cd:85:91:6d:05:cd:db:59: 7c:8b:c6:47 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs9x35g5gU3BuQEDGxekoP1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM4MzNhMDM4OTU5Mjc1NmU0MTVjZGUzNDhhYmJjMjQzMTJi MDJkZjYwHhcNMjUxMjIwMjIwMDQyWhcNMjUxMjIxMjIwMDQyWjAzMTEwLwYDVQQD EyhiZmVlMjg0NzQxNjJkODgzNTM5YThlYThkZWI2YjA0ZmVkMWNmNDIxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqcIxd1S7NccpKX01KvRJBsz+ZjQg QOHXgomvtjogoYFVHIczDGSxSxva7VAepzd+sxDPwtwO9HIyIZ2v9gbSDYtuMrip YUBqYEfY9601WRQzn3t3RlpOnWCHE5dtxbBZdNsO1rYd/AHD2u7vBUG5PvcGANT2 V7rHGrvLa4ioTfD+vzGO/vSXDHZC40krimQArsSlr7uOUdmDzuqjtDZbZLqioMgY UfVshKf2bx3TaXvcwjMVGDfx6lEq8n8auqLZw5pqd7hdL4jt1CA0bK8t1VWHiVHt qD9sXzRLUbmnKUb1rS8f6/UmPsgPjgsdmZVn+vyHo8kY2uqDdEh336XfxwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFL/uKEdBYtiDU5qOqN62sE/tHPQhMB8GA1UdIwQY MBaAFMgzoDiVknVuQVzeNIq7wkMSsC32MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveURPZ09KV1NkVzVCWE40MGlydkNReEt3TGZZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS9jZWNkM2EtZTkyYS00NTA5LWI1OTAt OWYzMDc1NzQwNTFlLzEveURPZ09KV1NkVzVCWE40MGlydkNReEt3TGZZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNS9jZWNkM2EtZTkyYS00NTA5LWI1OTAtOWYzMDc1NzQwNTFl LzEveURPZ09KV1NkVzVCWE40MGlydkNReEt3TGZZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEbT6ygLv qizEiObBLs1H/sLsJ419gxNt6keW/r6ig93HWhgnbGTcLyt/tDqQJplJUW2Oo7Dv eIinIMmO+WqH5nAEjaWhQmC5s0Vq7q06p0IoM6L6gr8FfkeftMA054X0j56yitT0 porl/VEO6ZO3KzdgodcCkYKG7kdpCA31lS2UkxYJ7HWMXTfeN5nYMXVsrEu3A/nj wX/pJKMiNUmdnjtCXIZRDpATAUvRLrqY9mI5LGKJJPSlzkpznGNSIEqMVbCaowMs +jG961i506fEa+IgUCBrxHzPuOeS3AZzcF4oVcEKk8Mbi/JnBB+MNPu8p28J0M2F kW0FzdtZfIvGRw== -----END CERTIFICATE-----Generated at Sat Dec 20 23:09:53 2025 by rpki-client