This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/262a4b-c701-48dc-9ae5-346368827e68/1/Yi7MbMWQOuoNthIA9MzU-CTN1U8.mft File: Yi7MbMWQOuoNthIA9MzU-CTN1U8.mft (raw, json) Hash identifier: Sc9o92rkNiPA8ZeJEt3L5qAIE68cF0qdkySB/8KbRZk= Subject key identifier: FF:54:E6:5E:A2:DF:E3:8A:3D:1E:09:FE:16:3D:29:B6:24:F5:22:0F Authority key identifier: 62:2E:CC:6C:C5:90:3A:EA:0D:B6:12:00:F4:CC:D4:F8:24:CD:D5:4F Certificate issuer: /CN=622ecc6cc5903aea0db61200f4ccd4f824cdd54f Certificate serial: 019B1C8599C64341D756A9B456ACA8A82B2A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yi7MbMWQOuoNthIA9MzU-CTN1U8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/262a4b-c701-48dc-9ae5-346368827e68/1/Yi7MbMWQOuoNthIA9MzU-CTN1U8.mft Manifest number: 092E Signing time: Sun 14 Dec 2025 11:01:16 +0000 Manifest this update: Sun 14 Dec 2025 11:01:16 +0000 Manifest next update: Mon 15 Dec 2025 11:01:16 +0000 Files and hashes: 1: CPodE3_RIBh9_-_Q9IrXnt0jBQQ.roa (hash: +FHXKf3f9JVzV+Qw7xj+2wXQmTxWPnbFGqd+rwkbcMY=) 2: EMXYEynUntG8ll4EW5Q-6Hk40TY.roa (hash: Xpiy8GuGmhJYwB9WLtl0u6lzkUU+gwZPYmYDPQzDZdI=) 3: OikZGL2LEHpl7dY7zmLA3J5GOEE.roa (hash: M6ctsVmPoPZhMMxHtbO6g9MMFqbmRKFOMWh5oVa/f94=) 4: Yi7MbMWQOuoNthIA9MzU-CTN1U8.crl (hash: nklUwpcyh02xxXWTUnzRXugqBO8tNu3kjAouPYXs3WI=) 5: ZTkkr8A-pu4VErIYAfOwtOL1xB0.roa (hash: RCu5F9BHN+FsFu6QEVOPg1gjGcIiYWmxnihME0bALsk=) 6: aeDfOfbVztGADm5NBTaLM-YRqHs.roa (hash: 0X4nT8WQ19Et5qFSAny70J/znuk2NQeORpBaCqs4M3A=) 7: l4a3XbHOtKFp0184MdRIDU-jOxk.roa (hash: q5kFgaOF3Cv5yGAbLEZMIoShfmz2+xh9WCr6tx/KZ50=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/262a4b-c701-48dc-9ae5-346368827e68/1/Yi7MbMWQOuoNthIA9MzU-CTN1U8.crl rsync://rpki.ripe.net/repository/DEFAULT/27/262a4b-c701-48dc-9ae5-346368827e68/1/Yi7MbMWQOuoNthIA9MzU-CTN1U8.mft rsync://rpki.ripe.net/repository/DEFAULT/Yi7MbMWQOuoNthIA9MzU-CTN1U8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 15 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:1c:85:99:c6:43:41:d7:56:a9:b4:56:ac:a8:a8:2b:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=622ecc6cc5903aea0db61200f4ccd4f824cdd54f Validity Not Before: Dec 14 11:01:16 2025 GMT Not After : Dec 15 11:01:16 2025 GMT Subject: CN=ff54e65ea2dfe38a3d1e09fe163d29b624f5220f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:a6:70:2a:f2:68:e0:ce:32:3c:39:c9:a0:65: ac:48:ca:1e:19:5d:c5:8f:77:c4:5f:90:dc:5d:a0: c7:4a:17:ec:79:c9:6a:60:02:dc:0f:f3:78:ff:b7: f3:27:04:13:74:78:46:81:2a:01:dc:90:b3:b7:a9: 1e:93:8e:97:9c:20:e6:4e:dc:31:3e:89:58:03:3c: 25:d1:65:ed:98:cb:3f:51:0a:96:7e:0d:2b:d5:55: 76:90:6e:09:06:3b:76:9f:6d:4c:3f:e7:d8:3f:f6: 82:c5:55:7c:4f:44:57:f5:c4:c3:a3:80:30:e1:34: f7:6f:43:77:4a:eb:5d:38:c2:35:7d:43:00:dc:06: ae:1e:fa:8d:4c:63:6d:61:64:51:a7:95:dd:83:d6: 33:44:da:eb:d6:29:d8:75:6a:46:f4:3a:a3:f5:e5: 0e:5f:2c:1d:51:64:e3:ce:e3:78:3f:e3:ac:84:60: f2:9c:f2:aa:cf:85:5f:86:1f:5e:8a:cc:b7:f8:d0: 5a:e7:34:32:e7:b1:bb:d6:1f:5c:ab:13:9c:8f:bb: 80:ca:5e:8f:87:a4:5b:22:be:e6:96:0b:47:01:2f: 12:e6:78:61:e4:6d:75:69:34:2e:fc:c9:68:9d:af: bb:ee:50:02:d3:e4:98:8b:76:cc:6e:6a:27:f9:dd: 5d:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:54:E6:5E:A2:DF:E3:8A:3D:1E:09:FE:16:3D:29:B6:24:F5:22:0F X509v3 Authority Key Identifier: keyid:62:2E:CC:6C:C5:90:3A:EA:0D:B6:12:00:F4:CC:D4:F8:24:CD:D5:4F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yi7MbMWQOuoNthIA9MzU-CTN1U8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/262a4b-c701-48dc-9ae5-346368827e68/1/Yi7MbMWQOuoNthIA9MzU-CTN1U8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/27/262a4b-c701-48dc-9ae5-346368827e68/1/Yi7MbMWQOuoNthIA9MzU-CTN1U8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 48:05:36:1d:3b:63:fb:06:dd:7e:e9:d5:32:a0:3f:5d:51:2e: 56:1f:57:dd:ce:e3:5a:e8:95:48:bb:a6:69:03:fa:4c:c4:a7: 08:47:ed:4c:bb:8e:4f:8e:6c:12:de:a0:7a:c6:97:95:af:62: 38:80:e7:41:62:f8:e3:3e:de:5b:d4:53:f6:17:53:40:70:7d: bf:cb:98:1b:a6:04:ce:c8:70:8d:1d:0f:22:bd:ef:b3:b5:2e: 71:12:c5:fc:d7:31:20:e8:7d:8e:da:48:6b:73:a7:9f:88:c4: c1:ed:d2:ab:52:bc:3f:5e:e0:3c:8f:c2:b1:ca:41:e4:44:b4: ec:be:f5:9c:4c:db:95:cd:1a:cc:d9:23:92:2a:72:b1:b6:79: f6:d4:ba:52:02:62:43:60:b0:14:c7:08:04:27:d0:7c:c1:c0: be:5f:15:76:58:70:54:2c:c1:96:bc:63:f7:01:ed:91:db:46: 6e:02:fb:b2:62:0e:55:44:e5:8f:27:64:a3:c6:a1:18:c3:95: 02:57:5d:10:46:96:56:e8:b4:ff:9c:2a:38:d6:b4:48:33:e2: 4b:5b:1c:3c:2b:13:e1:58:9e:5a:cd:a8:6b:5e:99:55:66:f2: e5:52:52:99:d2:9c:6f:a7:7e:16:3c:d6:14:d4:aa:3c:7f:cc: 3b:96:10:06 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZschZnGQ0HXVqm0VqyoqCsqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYyMmVjYzZjYzU5MDNhZWEwZGI2MTIwMGY0Y2NkNGY4MjRj ZGQ1NGYwHhcNMjUxMjE0MTEwMTE2WhcNMjUxMjE1MTEwMTE2WjAzMTEwLwYDVQQD EyhmZjU0ZTY1ZWEyZGZlMzhhM2QxZTA5ZmUxNjNkMjliNjI0ZjUyMjBmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt6ZwKvJo4M4yPDnJoGWsSMoeGV3F j3fEX5DcXaDHShfseclqYALcD/N4/7fzJwQTdHhGgSoB3JCzt6kek46XnCDmTtwx PolYAzwl0WXtmMs/UQqWfg0r1VV2kG4JBjt2n21MP+fYP/aCxVV8T0RX9cTDo4Aw 4TT3b0N3SutdOMI1fUMA3AauHvqNTGNtYWRRp5Xdg9YzRNrr1inYdWpG9Dqj9eUO XywdUWTjzuN4P+OshGDynPKqz4Vfhh9eisy3+NBa5zQy57G71h9cqxOcj7uAyl6P h6RbIr7mlgtHAS8S5nhh5G11aTQu/Mlona+77lAC0+SYi3bMbmon+d1dsQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFP9U5l6i3+OKPR4J/hY9KbYk9SIPMB8GA1UdIwQY MBaAFGIuzGzFkDrqDbYSAPTM1PgkzdVPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWWk3TWJNV1FPdW9OdGhJQTlNelUtQ1ROMVU4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNy8yNjJhNGItYzcwMS00OGRjLTlhZTUt MzQ2MzY4ODI3ZTY4LzEvWWk3TWJNV1FPdW9OdGhJQTlNelUtQ1ROMVU4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNy8yNjJhNGItYzcwMS00OGRjLTlhZTUtMzQ2MzY4ODI3ZTY4 LzEvWWk3TWJNV1FPdW9OdGhJQTlNelUtQ1ROMVU4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASAU2HTtj +wbdfunVMqA/XVEuVh9X3c7jWuiVSLumaQP6TMSnCEftTLuOT45sEt6gesaXla9i OIDnQWL44z7eW9RT9hdTQHB9v8uYG6YEzshwjR0PIr3vs7UucRLF/NcxIOh9jtpI a3Onn4jEwe3Sq1K8P17gPI/CscpB5ES07L71nEzblc0azNkjkipysbZ59tS6UgJi Q2CwFMcIBCfQfMHAvl8VdlhwVCzBlrxj9wHtkdtGbgL7smIOVUTljydko8ahGMOV AlddEEaWVui0/5wqONa0SDPiS1scPCsT4VieWs2oa16ZVWby5VJSmdKcb6d+FjzW FNSqPH/MO5YQBg== -----END CERTIFICATE-----Generated at Sun Dec 14 14:41:09 2025 by rpki-client