This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.mft File: Y2O7ZYlfOlSksyShDHmsmO_ioco.mft (raw, json) Hash identifier: 7sNCfYsBMlyrZwYXHK3QrFnmmAtwuRpNUTmbYGh6MdQ= Subject key identifier: 0B:BC:2F:C4:17:B9:58:CE:5B:35:AB:D5:32:A8:E0:1C:57:2B:5C:E8 Authority key identifier: 63:63:BB:65:89:5F:3A:54:A4:B3:24:A1:0C:79:AC:98:EF:E2:A1:CA Certificate issuer: /CN=6363bb65895f3a54a4b324a10c79ac98efe2a1ca Certificate serial: 019B07EBC59121DD0359FB77DD3594B82C5C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.mft Manifest number: 10C9 Signing time: Wed 10 Dec 2025 11:00:50 +0000 Manifest this update: Wed 10 Dec 2025 11:00:50 +0000 Manifest next update: Thu 11 Dec 2025 11:00:50 +0000 Files and hashes: 1: 1-YME93lc1AWh4-bMqvVDZYenQg0.roa (hash: Euu0W5ctvY2bfvnvaMrD1zBWGCi2DVPvkYQ6p9zTjts=) 2: HdvJhluj0mmgaFdPVm0s0ofNMQM.roa (hash: p1LONhiWBtnwDM/uG7ENsu+2YSQKoESJAbc98yta6C4=) 3: PG5DPUzHhisMDmHNMi2OiyC4Krk.roa (hash: 5vgSE6xpOM3tTVvShPg0nfAqcYxZUDm3VYRogPEs1nM=) 4: QWifAQ3dSu8nhEAeOh_F1BphWro.roa (hash: itO7AV5EF/O+Sl0fYRa8cl6eA4q/nRa0iBG6sGElFQI=) 5: XX2wYcwap8ipUrsF5QxMCkU6q3s.roa (hash: 5rJ1cTY8WuJEVbqP9odqHpQe40kbl4hVcRgWYYyQhgQ=) 6: Y2O7ZYlfOlSksyShDHmsmO_ioco.crl (hash: RQbL9o7EkQnnwhU4Dt6OkuKaU+6PRuPbZImniy8IN/Y=) 7: Z6ubH84vQbgEnifkNYkjjYx5LIg.roa (hash: A5Iyh12sixazcVNr3007j9RNY5bFIJZSLARvNvwI0hI=) 8: cWGszmobGgkTRu82roBLKR9vgkE.roa (hash: bXFzT/7+8yagPIwyKl0fdIxc7uJ/wfFRRzbV8w0a7yI=) 9: flrC_8zXbr01pJXgtmy__huZXOA.roa (hash: vzxZLPURPSKJVHe6QAWg0rqm4QhuQOuF7VBOWspThjA=) 10: lms_h40r3-LvmvS_QZG5u3K67Uw.roa (hash: sioeVX/bhxcVhyyVff9dr3QSj+48OLBpgP5/WVrFXzw=) 11: nGntDaqcmONxUi1sd87UMvT9x4I.roa (hash: JUPdqbOgdaD6LXB1MI+aJwuym5PZcQO3ILLdGvRsfU8=) 12: nzJ1VVo_PG7VRYK1qXbMx1rFS50.roa (hash: /GaOWlamFjP2Dj79UI9A1USxEJfBxcpOsY5WVrDbQNw=) 13: p_iHNwwqh2be0OjT5JQIUHp4Uvs.roa (hash: iKYw9dWKEOaAlzn5AmL4rdC2+rWU6FDA6bFijDgxb2w=) 14: qXSDx6qMLmAkAg9CUQzF6i4iyY0.roa (hash: wdkB7sltE+pNfWEVP8+xe0pE2lM5C0vVvLdbwwyDf04=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.crl rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.mft rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 11 Dec 2025 10:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:07:eb:c5:91:21:dd:03:59:fb:77:dd:35:94:b8:2c:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6363bb65895f3a54a4b324a10c79ac98efe2a1ca Validity Not Before: Dec 10 11:00:50 2025 GMT Not After : Dec 11 11:00:50 2025 GMT Subject: CN=0bbc2fc417b958ce5b35abd532a8e01c572b5ce8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:34:aa:0e:96:93:8d:11:7f:7b:b0:ed:97:7f: e8:12:c1:14:f7:e6:08:cf:bd:56:c0:b5:e2:d7:13: 37:bf:08:40:24:e8:ad:c9:f6:21:0f:38:9c:f7:48: 74:45:64:74:14:8c:60:08:d1:4e:65:b8:be:a3:9e: d6:45:23:0d:9a:07:90:69:2b:1f:dd:e7:87:10:58: 5e:39:97:1c:66:ed:b8:d8:4e:97:70:ce:87:12:fa: 80:d9:1e:da:e3:fc:cc:8e:b4:ec:4d:67:65:cd:12: 23:90:f2:18:9e:f4:35:74:bb:d5:73:f0:a4:d2:46: c1:bb:7a:17:b1:fa:78:a4:2a:67:c0:cc:e5:db:24: 4c:60:10:7d:fc:0f:92:11:1e:59:97:53:ae:77:68: 55:1a:db:c3:3e:f0:6b:58:54:10:c4:e2:33:10:3b: 18:f9:4c:5c:b6:72:1c:46:ad:49:5d:81:3a:ab:c7: 0f:84:3d:95:41:04:05:19:3b:23:f6:2e:c9:5f:9f: 9f:d0:f0:1e:73:45:74:f4:b5:bc:a7:f3:f1:86:e8: bd:aa:70:fb:5d:ef:27:1e:0b:7d:50:1b:05:90:8d: 10:9f:bd:49:77:cb:d4:d2:90:5f:9d:ea:59:92:eb: c6:96:9e:d7:73:01:89:29:3d:5d:28:d7:65:e9:4c: c8:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:BC:2F:C4:17:B9:58:CE:5B:35:AB:D5:32:A8:E0:1C:57:2B:5C:E8 X509v3 Authority Key Identifier: keyid:63:63:BB:65:89:5F:3A:54:A4:B3:24:A1:0C:79:AC:98:EF:E2:A1:CA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7a:1e:07:04:0b:08:0c:8d:b5:b9:80:20:cf:73:88:51:4e:ef: c9:fc:45:df:da:15:18:67:61:ef:9c:fd:f0:02:d0:5b:98:7f: d5:73:73:cf:24:01:63:28:44:3a:d6:e3:b3:27:49:3c:c3:61: f9:68:2c:6b:a1:c7:f8:6f:2f:a2:e9:bb:1c:dc:f6:0e:34:5f: 7c:88:be:f4:8d:3f:36:e3:16:fc:5c:e4:d1:e0:81:1d:50:d9: d2:e6:d5:04:50:ae:31:d9:25:a8:51:eb:19:bb:76:9c:04:73: a5:ad:14:33:d4:fc:5d:ca:d5:f3:03:4d:9e:99:e4:8e:7c:88: d6:cf:a6:03:f4:52:0f:5a:82:2d:f9:c7:5b:3d:e2:02:dc:81: 43:64:27:a3:b6:47:ad:f5:6c:99:2e:72:5c:88:98:8d:55:1f: 33:21:48:4c:21:42:23:f0:9a:8d:fa:bd:55:33:6f:05:66:38: c7:07:c6:1a:8a:e7:f5:7f:6b:24:db:e8:cd:af:cb:63:9f:c6: 65:56:b3:fa:36:b5:f6:1e:0f:b1:37:b1:46:1f:f1:f3:2d:f9: 5a:0d:77:cb:9e:5f:51:4f:d9:25:c4:8f:28:6c:d7:c1:fe:47: cf:b4:99:7b:a8:0a:f2:6e:77:f8:1e:bb:1b:c6:9b:42:b4:a0: ac:e2:4b:fa -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsH68WRId0DWft33TWUuCxcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYzNjNiYjY1ODk1ZjNhNTRhNGIzMjRhMTBjNzlhYzk4ZWZl MmExY2EwHhcNMjUxMjEwMTEwMDUwWhcNMjUxMjExMTEwMDUwWjAzMTEwLwYDVQQD EygwYmJjMmZjNDE3Yjk1OGNlNWIzNWFiZDUzMmE4ZTAxYzU3MmI1Y2U4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnDSqDpaTjRF/e7Dtl3/oEsEU9+YI z71WwLXi1xM3vwhAJOityfYhDzic90h0RWR0FIxgCNFOZbi+o57WRSMNmgeQaSsf 3eeHEFheOZccZu242E6XcM6HEvqA2R7a4/zMjrTsTWdlzRIjkPIYnvQ1dLvVc/Ck 0kbBu3oXsfp4pCpnwMzl2yRMYBB9/A+SER5Zl1Oud2hVGtvDPvBrWFQQxOIzEDsY +UxctnIcRq1JXYE6q8cPhD2VQQQFGTsj9i7JX5+f0PAec0V09LW8p/Pxhui9qnD7 Xe8nHgt9UBsFkI0Qn71Jd8vU0pBfnepZkuvGlp7XcwGJKT1dKNdl6UzIiQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAu8L8QXuVjOWzWr1TKo4BxXK1zoMB8GA1UdIwQY MBaAFGNju2WJXzpUpLMkoQx5rJjv4qHKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWTJPN1pZbGZPbFNrc3lTaERIbXNtT19pb2NvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy9kYjliZjEtZTAxOS00NWE0LTg2NjMt YTZjYTQ1NGRiMmQ3LzEvWTJPN1pZbGZPbFNrc3lTaERIbXNtT19pb2NvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNy9kYjliZjEtZTAxOS00NWE0LTg2NjMtYTZjYTQ1NGRiMmQ3 LzEvWTJPN1pZbGZPbFNrc3lTaERIbXNtT19pb2NvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeh4HBAsI DI21uYAgz3OIUU7vyfxF39oVGGdh75z98ALQW5h/1XNzzyQBYyhEOtbjsydJPMNh +Wgsa6HH+G8voum7HNz2DjRffIi+9I0/NuMW/Fzk0eCBHVDZ0ubVBFCuMdklqFHr Gbt2nARzpa0UM9T8XcrV8wNNnpnkjnyI1s+mA/RSD1qCLfnHWz3iAtyBQ2Qno7ZH rfVsmS5yXIiYjVUfMyFITCFCI/Cajfq9VTNvBWY4xwfGGorn9X9rJNvoza/LY5/G ZVaz+ja19h4PsTexRh/x8y35Wg13y55fUU/ZJcSPKGzXwf5Hz7SZe6gK8m53+B67 G8abQrSgrOJL+g== -----END CERTIFICATE-----Generated at Wed Dec 10 12:55:08 2025 by rpki-client