This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/262a4b-c701-48dc-9ae5-346368827e68/1/Yi7MbMWQOuoNthIA9MzU-CTN1U8.mft File: Yi7MbMWQOuoNthIA9MzU-CTN1U8.mft (raw, json) Hash identifier: jeSSl2RvwZ3c0ftGca2u2GMMrEUK7q/wOEnypM1L460= Subject key identifier: 2A:83:89:FA:BF:FF:14:7E:C7:EF:5B:1B:7F:B9:A2:61:8F:1C:18:02 Authority key identifier: 62:2E:CC:6C:C5:90:3A:EA:0D:B6:12:00:F4:CC:D4:F8:24:CD:D5:4F Certificate issuer: /CN=622ecc6cc5903aea0db61200f4ccd4f824cdd54f Certificate serial: 019B33B1D390AB325F36096A1E5DCDB07BBC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yi7MbMWQOuoNthIA9MzU-CTN1U8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/262a4b-c701-48dc-9ae5-346368827e68/1/Yi7MbMWQOuoNthIA9MzU-CTN1U8.mft Manifest number: 093A Signing time: Thu 18 Dec 2025 23:00:50 +0000 Manifest this update: Thu 18 Dec 2025 23:00:50 +0000 Manifest next update: Fri 19 Dec 2025 23:00:50 +0000 Files and hashes: 1: CPodE3_RIBh9_-_Q9IrXnt0jBQQ.roa (hash: +FHXKf3f9JVzV+Qw7xj+2wXQmTxWPnbFGqd+rwkbcMY=) 2: EMXYEynUntG8ll4EW5Q-6Hk40TY.roa (hash: Xpiy8GuGmhJYwB9WLtl0u6lzkUU+gwZPYmYDPQzDZdI=) 3: OikZGL2LEHpl7dY7zmLA3J5GOEE.roa (hash: M6ctsVmPoPZhMMxHtbO6g9MMFqbmRKFOMWh5oVa/f94=) 4: Yi7MbMWQOuoNthIA9MzU-CTN1U8.crl (hash: yewuvEGZIyLZhyoT8IgfFDczNsqqQYV7Bikv14/G1dg=) 5: ZTkkr8A-pu4VErIYAfOwtOL1xB0.roa (hash: RCu5F9BHN+FsFu6QEVOPg1gjGcIiYWmxnihME0bALsk=) 6: aeDfOfbVztGADm5NBTaLM-YRqHs.roa (hash: 0X4nT8WQ19Et5qFSAny70J/znuk2NQeORpBaCqs4M3A=) 7: l4a3XbHOtKFp0184MdRIDU-jOxk.roa (hash: q5kFgaOF3Cv5yGAbLEZMIoShfmz2+xh9WCr6tx/KZ50=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/262a4b-c701-48dc-9ae5-346368827e68/1/Yi7MbMWQOuoNthIA9MzU-CTN1U8.crl rsync://rpki.ripe.net/repository/DEFAULT/27/262a4b-c701-48dc-9ae5-346368827e68/1/Yi7MbMWQOuoNthIA9MzU-CTN1U8.mft rsync://rpki.ripe.net/repository/DEFAULT/Yi7MbMWQOuoNthIA9MzU-CTN1U8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 20:16:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:33:b1:d3:90:ab:32:5f:36:09:6a:1e:5d:cd:b0:7b:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=622ecc6cc5903aea0db61200f4ccd4f824cdd54f Validity Not Before: Dec 18 23:00:50 2025 GMT Not After : Dec 19 23:00:50 2025 GMT Subject: CN=2a8389fabfff147ec7ef5b1b7fb9a2618f1c1802 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:fb:d7:16:95:08:6a:c9:e8:db:88:92:b9:d3: b8:81:08:4d:7d:08:c4:85:47:8f:2e:31:ee:01:90: ed:d2:1a:04:99:58:fc:67:29:f6:0e:fd:ff:5a:e2: ce:b3:e9:bf:6a:4f:8e:77:aa:9f:49:44:e7:ac:25: 9e:76:85:c9:bd:f8:cf:d3:f8:b0:f1:d4:44:ab:11: cb:19:7a:11:93:79:26:f6:40:ec:eb:4a:db:8d:32: a7:3e:a7:08:17:6c:3b:89:b7:78:ee:8e:7b:a4:c2: dc:5e:ed:e8:62:78:7f:ba:76:22:30:5a:49:ca:a7: b8:91:cb:b3:17:0e:79:8c:4a:e7:6b:fa:4c:b2:94: be:04:a2:28:91:51:c9:83:24:16:b6:a3:4f:f2:fa: 04:94:79:77:bc:01:53:60:82:8e:5c:5b:89:2d:a2: f4:f8:14:ca:ec:7d:16:20:f9:91:f2:d6:5a:e6:b8: fa:cc:55:eb:87:be:91:86:0d:95:a7:7f:32:f8:e0: 1c:d2:a8:eb:02:9f:d6:b6:5e:14:a1:2f:fd:ae:5b: f2:04:65:27:45:a6:97:83:3a:a7:68:4a:48:10:32: 6d:d2:f5:63:a3:0d:63:83:58:7b:4a:10:6c:d7:b3: ab:25:93:e5:86:a3:0c:b2:41:92:e5:9a:bd:72:0e: 74:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:83:89:FA:BF:FF:14:7E:C7:EF:5B:1B:7F:B9:A2:61:8F:1C:18:02 X509v3 Authority Key Identifier: keyid:62:2E:CC:6C:C5:90:3A:EA:0D:B6:12:00:F4:CC:D4:F8:24:CD:D5:4F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yi7MbMWQOuoNthIA9MzU-CTN1U8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/262a4b-c701-48dc-9ae5-346368827e68/1/Yi7MbMWQOuoNthIA9MzU-CTN1U8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/27/262a4b-c701-48dc-9ae5-346368827e68/1/Yi7MbMWQOuoNthIA9MzU-CTN1U8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 44:86:27:fe:07:4c:61:03:de:3a:e4:5c:5b:ba:33:fb:71:3d: 2c:1b:87:bb:e4:96:ab:f0:4e:2a:dc:64:9a:b3:a3:96:5e:67: 8b:c6:c7:cb:9d:f4:5f:2d:eb:00:5c:b9:96:df:82:da:81:58: a6:94:a2:bc:da:d7:6c:a3:b7:9f:8e:c7:36:1f:a4:07:d7:58: c8:3b:f9:1b:a7:5f:c8:b2:c0:50:f5:3b:b5:30:f2:34:b5:36: 7a:cf:ac:37:c6:21:38:c1:c4:bc:c5:4a:25:cc:f8:e6:e4:8a: 8b:74:2b:e3:3c:b1:f7:ba:c9:e9:e7:ff:e8:e0:b2:a8:b6:09: 73:fa:fe:d2:84:09:a4:df:46:87:ad:99:1b:4b:eb:59:83:5d: 82:a3:3a:2c:c3:35:7b:a6:8f:b7:38:2a:c6:35:43:36:98:28: 9c:b5:73:92:ab:5e:ee:0f:6e:ed:5c:4d:83:74:63:82:b4:08: c6:0d:cb:fb:29:b4:66:24:29:16:b5:2c:78:82:d0:c2:8c:5c: 41:fa:03:f7:59:01:7c:f6:c8:4d:c6:0e:ba:bf:18:5b:76:f8: fe:13:c6:3d:80:57:64:8e:41:5a:8a:cd:68:39:f0:03:aa:c7: 42:3f:48:34:8a:6b:76:7c:6d:a9:71:a7:6e:a7:dd:40:50:af: 5d:c3:0e:86 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZszsdOQqzJfNglqHl3NsHu8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYyMmVjYzZjYzU5MDNhZWEwZGI2MTIwMGY0Y2NkNGY4MjRj ZGQ1NGYwHhcNMjUxMjE4MjMwMDUwWhcNMjUxMjE5MjMwMDUwWjAzMTEwLwYDVQQD EygyYTgzODlmYWJmZmYxNDdlYzdlZjViMWI3ZmI5YTI2MThmMWMxODAyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjPvXFpUIasno24iSudO4gQhNfQjE hUePLjHuAZDt0hoEmVj8Zyn2Dv3/WuLOs+m/ak+Od6qfSUTnrCWedoXJvfjP0/iw 8dREqxHLGXoRk3km9kDs60rbjTKnPqcIF2w7ibd47o57pMLcXu3oYnh/unYiMFpJ yqe4kcuzFw55jErna/pMspS+BKIokVHJgyQWtqNP8voElHl3vAFTYIKOXFuJLaL0 +BTK7H0WIPmR8tZa5rj6zFXrh76Rhg2Vp38y+OAc0qjrAp/Wtl4UoS/9rlvyBGUn RaaXgzqnaEpIEDJt0vVjow1jg1h7ShBs17OrJZPlhqMMskGS5Zq9cg50UwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCqDifq//xR+x+9bG3+5omGPHBgCMB8GA1UdIwQY MBaAFGIuzGzFkDrqDbYSAPTM1PgkzdVPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWWk3TWJNV1FPdW9OdGhJQTlNelUtQ1ROMVU4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNy8yNjJhNGItYzcwMS00OGRjLTlhZTUt MzQ2MzY4ODI3ZTY4LzEvWWk3TWJNV1FPdW9OdGhJQTlNelUtQ1ROMVU4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNy8yNjJhNGItYzcwMS00OGRjLTlhZTUtMzQ2MzY4ODI3ZTY4 LzEvWWk3TWJNV1FPdW9OdGhJQTlNelUtQ1ROMVU4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARIYn/gdM YQPeOuRcW7oz+3E9LBuHu+SWq/BOKtxkmrOjll5ni8bHy530Xy3rAFy5lt+C2oFY ppSivNrXbKO3n47HNh+kB9dYyDv5G6dfyLLAUPU7tTDyNLU2es+sN8YhOMHEvMVK Jcz45uSKi3Qr4zyx97rJ6ef/6OCyqLYJc/r+0oQJpN9Gh62ZG0vrWYNdgqM6LMM1 e6aPtzgqxjVDNpgonLVzkqte7g9u7VxNg3RjgrQIxg3L+ym0ZiQpFrUseILQwoxc QfoD91kBfPbITcYOur8YW3b4/hPGPYBXZI5BWorNaDnwA6rHQj9INIprdnxtqXGn bqfdQFCvXcMOhg== -----END CERTIFICATE-----Generated at Fri Dec 19 01:02:13 2025 by rpki-client