This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/214c9a-0950-40d9-a586-e35db52567f0/1/y9f8E-GDbDlsyiF4lwSrOf2eW2Q.mft File: y9f8E-GDbDlsyiF4lwSrOf2eW2Q.mft (raw, json) Hash identifier: xL61GhZ3QtM3Q1ALnHRyDAMzl0HxyN+5pMCjicWyddw= Subject key identifier: A1:8D:1C:6B:B6:ED:36:BB:40:0D:AC:40:64:3A:D1:79:29:CC:52:EC Authority key identifier: CB:D7:FC:13:E1:83:6C:39:6C:CA:21:78:97:04:AB:39:FD:9E:5B:64 Certificate issuer: /CN=cbd7fc13e1836c396cca21789704ab39fd9e5b64 Certificate serial: 019B1202ABAEA38ACA4AF039E7171203FCCC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y9f8E-GDbDlsyiF4lwSrOf2eW2Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/214c9a-0950-40d9-a586-e35db52567f0/1/y9f8E-GDbDlsyiF4lwSrOf2eW2Q.mft Manifest number: 0325 Signing time: Fri 12 Dec 2025 10:02:03 +0000 Manifest this update: Fri 12 Dec 2025 10:02:03 +0000 Manifest next update: Sat 13 Dec 2025 10:02:03 +0000 Files and hashes: 1: E1mhBRMNKUKpYCp6l6cYmmnl_S8.roa (hash: EfpfXPe85LjuFoEfBPlRSotwGgPrWv2BqUA6Yn79Kmg=) 2: y9f8E-GDbDlsyiF4lwSrOf2eW2Q.crl (hash: 3rzYfkdYIse77TcullzalejaoSFXlpNCrtrrpFEXLjs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/214c9a-0950-40d9-a586-e35db52567f0/1/y9f8E-GDbDlsyiF4lwSrOf2eW2Q.crl rsync://rpki.ripe.net/repository/DEFAULT/24/214c9a-0950-40d9-a586-e35db52567f0/1/y9f8E-GDbDlsyiF4lwSrOf2eW2Q.mft rsync://rpki.ripe.net/repository/DEFAULT/y9f8E-GDbDlsyiF4lwSrOf2eW2Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 13 Dec 2025 10:02:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:12:02:ab:ae:a3:8a:ca:4a:f0:39:e7:17:12:03:fc:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cbd7fc13e1836c396cca21789704ab39fd9e5b64 Validity Not Before: Dec 12 10:02:03 2025 GMT Not After : Dec 13 10:02:03 2025 GMT Subject: CN=a18d1c6bb6ed36bb400dac40643ad17929cc52ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:8f:17:73:d3:16:f8:d6:15:c5:b5:f6:80:23: 6e:16:aa:5d:34:c0:fd:c5:53:a1:1a:53:7d:46:e2: a2:9d:65:09:ed:96:6b:b7:35:99:5d:97:1d:43:9e: 35:14:e3:a0:d1:a9:68:c5:f1:ff:ff:bc:21:85:d2: 20:b3:53:53:d1:40:b5:e9:0e:0b:7b:04:cc:03:98: 8a:a3:72:99:4e:b0:18:a3:a1:e7:7f:1b:9b:bf:fe: cf:36:82:b7:8c:6a:02:6a:ee:00:a3:d2:c0:a6:b8: 5f:a1:05:7a:c6:90:b6:20:8d:e9:0b:7d:ab:90:c0: aa:57:79:b2:21:d6:0b:de:cd:2c:e1:a5:83:29:57: 85:3d:ba:54:76:0a:9b:95:80:f1:bf:b1:2b:e7:10: fb:0f:72:e3:d2:11:3f:7b:89:37:be:5b:c4:98:c7: b3:f9:54:b9:14:3a:9f:fd:d2:08:92:8b:ee:53:b6: e5:da:2b:a8:9a:89:25:6e:49:57:4e:8e:1b:63:22: f9:05:a8:3f:ca:87:c3:5e:81:14:a2:f0:5a:5a:0d: d1:07:07:a0:d2:79:80:e1:7c:8f:38:13:5b:d5:7d: 7e:d5:0d:4a:79:49:3e:c8:e9:35:75:c7:4a:96:18: 6a:dc:31:b8:01:81:b2:1d:19:a2:f9:92:c9:7c:8d: dd:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:8D:1C:6B:B6:ED:36:BB:40:0D:AC:40:64:3A:D1:79:29:CC:52:EC X509v3 Authority Key Identifier: keyid:CB:D7:FC:13:E1:83:6C:39:6C:CA:21:78:97:04:AB:39:FD:9E:5B:64 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y9f8E-GDbDlsyiF4lwSrOf2eW2Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/214c9a-0950-40d9-a586-e35db52567f0/1/y9f8E-GDbDlsyiF4lwSrOf2eW2Q.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/24/214c9a-0950-40d9-a586-e35db52567f0/1/y9f8E-GDbDlsyiF4lwSrOf2eW2Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption e8:79:17:4c:02:cf:48:71:d6:a0:9c:05:62:90:de:ea:ff:09: c2:79:5c:a7:b0:c3:cd:c1:2a:6d:51:39:68:d0:90:41:7b:01: cc:b6:fa:c0:bb:fa:a1:52:69:27:68:75:7e:39:ad:3b:10:24: b4:f8:74:45:e7:c1:93:2d:26:4c:80:b0:a9:ea:e5:5d:ed:e0: 0f:bb:ee:75:05:b0:9f:1e:93:d7:51:29:f2:24:26:10:d5:8a: 56:c1:a5:af:de:3c:ca:22:9e:47:63:01:41:0a:24:4e:b6:72: 16:77:13:8b:d9:c3:49:38:cb:13:50:dc:53:eb:66:c1:62:97: 50:db:fa:ee:22:9a:72:42:a7:1e:cb:3c:10:02:e9:03:bb:b3: 35:1b:6b:d0:11:58:ad:e2:53:61:4d:a9:67:74:28:f0:e9:96: 3c:2e:66:bd:d5:75:32:d7:79:02:ac:d2:7c:77:1d:f5:60:d3: 64:9d:1b:1f:97:db:00:6c:88:0b:ac:fe:c9:5e:7d:ab:c0:c0: ff:34:bf:93:b6:5d:c2:c7:48:3c:70:99:e9:1e:dc:21:69:7a: 1c:db:46:be:c8:3a:d7:4b:e3:95:ec:78:60:f5:70:c3:dd:68: db:e5:07:9c:fe:b8:3c:b4:5a:ea:b1:f2:1d:46:90:70:4c:08: d6:ac:91:ac -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsSAquuo4rKSvA55xcSA/zMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNiZDdmYzEzZTE4MzZjMzk2Y2NhMjE3ODk3MDRhYjM5ZmQ5 ZTViNjQwHhcNMjUxMjEyMTAwMjAzWhcNMjUxMjEzMTAwMjAzWjAzMTEwLwYDVQQD EyhhMThkMWM2YmI2ZWQzNmJiNDAwZGFjNDA2NDNhZDE3OTI5Y2M1MmVjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAno8Xc9MW+NYVxbX2gCNuFqpdNMD9 xVOhGlN9RuKinWUJ7ZZrtzWZXZcdQ541FOOg0aloxfH//7whhdIgs1NT0UC16Q4L ewTMA5iKo3KZTrAYo6Hnfxubv/7PNoK3jGoCau4Ao9LAprhfoQV6xpC2II3pC32r kMCqV3myIdYL3s0s4aWDKVeFPbpUdgqblYDxv7Er5xD7D3Lj0hE/e4k3vlvEmMez +VS5FDqf/dIIkovuU7bl2iuomoklbklXTo4bYyL5Bag/yofDXoEUovBaWg3RBweg 0nmA4XyPOBNb1X1+1Q1KeUk+yOk1dcdKlhhq3DG4AYGyHRmi+ZLJfI3dKQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKGNHGu27Ta7QA2sQGQ60XkpzFLsMB8GA1UdIwQY MBaAFMvX/BPhg2w5bMoheJcEqzn9nltkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveTlmOEUtR0RiRGxzeWlGNGx3U3JPZjJlVzJRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC8yMTRjOWEtMDk1MC00MGQ5LWE1ODYt ZTM1ZGI1MjU2N2YwLzEveTlmOEUtR0RiRGxzeWlGNGx3U3JPZjJlVzJRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNC8yMTRjOWEtMDk1MC00MGQ5LWE1ODYtZTM1ZGI1MjU2N2Yw LzEveTlmOEUtR0RiRGxzeWlGNGx3U3JPZjJlVzJRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA6HkXTALP SHHWoJwFYpDe6v8Jwnlcp7DDzcEqbVE5aNCQQXsBzLb6wLv6oVJpJ2h1fjmtOxAk tPh0RefBky0mTICwqerlXe3gD7vudQWwnx6T11Ep8iQmENWKVsGlr948yiKeR2MB QQokTrZyFncTi9nDSTjLE1DcU+tmwWKXUNv67iKackKnHss8EALpA7uzNRtr0BFY reJTYU2pZ3Qo8OmWPC5mvdV1Mtd5AqzSfHcd9WDTZJ0bH5fbAGyIC6z+yV59q8DA /zS/k7ZdwsdIPHCZ6R7cIWl6HNtGvsg610vjlex4YPVww91o2+UHnP64PLRa6rHy HUaQcEwI1qyRrA== -----END CERTIFICATE-----Generated at Fri Dec 12 19:30:18 2025 by rpki-client