This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/f7a560-8873-40ee-a7c5-2aadc5c3c57d/1/sYWfPSzSg-fbkPAv4bDU9hVgWUc.mft File: sYWfPSzSg-fbkPAv4bDU9hVgWUc.mft (raw, json) Hash identifier: a0us9ZaK5haFq9RaPqQMLRqgq1SnycXAjkdW+B9iPfQ= Subject key identifier: 7C:EB:4E:51:A9:11:79:EA:48:3C:FC:34:E3:6B:FC:D8:DC:64:59:66 Authority key identifier: B1:85:9F:3D:2C:D2:83:E7:DB:90:F0:2F:E1:B0:D4:F6:15:60:59:47 Certificate issuer: /CN=b1859f3d2cd283e7db90f02fe1b0d4f615605947 Certificate serial: 019B20623D66B343A94B234E813DD017A148 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sYWfPSzSg-fbkPAv4bDU9hVgWUc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/f7a560-8873-40ee-a7c5-2aadc5c3c57d/1/sYWfPSzSg-fbkPAv4bDU9hVgWUc.mft Manifest number: 0A99 Signing time: Mon 15 Dec 2025 05:01:07 +0000 Manifest this update: Mon 15 Dec 2025 05:01:07 +0000 Manifest next update: Tue 16 Dec 2025 05:01:07 +0000 Files and hashes: 1: sYWfPSzSg-fbkPAv4bDU9hVgWUc.crl (hash: DBjfaoGribVZDL80DtssqqHcbzTgcpOOcQ3/ovEHryA=) 2: zGycLxq7YqbVlBvuNEd47CRzT-U.roa (hash: o72/nsIKF1YG4XUjUYVm0HFMSGLne+bRa8vjHOf30pI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/f7a560-8873-40ee-a7c5-2aadc5c3c57d/1/sYWfPSzSg-fbkPAv4bDU9hVgWUc.crl rsync://rpki.ripe.net/repository/DEFAULT/28/f7a560-8873-40ee-a7c5-2aadc5c3c57d/1/sYWfPSzSg-fbkPAv4bDU9hVgWUc.mft rsync://rpki.ripe.net/repository/DEFAULT/sYWfPSzSg-fbkPAv4bDU9hVgWUc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 05:01:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:20:62:3d:66:b3:43:a9:4b:23:4e:81:3d:d0:17:a1:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b1859f3d2cd283e7db90f02fe1b0d4f615605947 Validity Not Before: Dec 15 05:01:07 2025 GMT Not After : Dec 16 05:01:07 2025 GMT Subject: CN=7ceb4e51a91179ea483cfc34e36bfcd8dc645966 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:65:6e:68:cc:5a:85:bd:1d:b4:45:e4:d2:97: 6f:c9:fd:39:1c:87:fb:04:73:08:cb:30:74:f5:b2: 6d:a9:69:0d:71:0c:70:64:eb:9e:17:9b:d3:54:3a: 01:8e:14:22:71:05:c7:02:05:d7:61:63:e1:97:48: b1:62:d8:1c:89:24:27:29:b6:d0:72:8d:86:2f:92: da:a5:66:e3:a8:67:3e:f0:2d:b3:6d:23:a6:e0:af: 22:15:cc:e1:10:ff:1c:42:62:33:b3:9c:37:a6:5d: fa:bc:24:97:41:e1:eb:63:26:32:e0:90:ab:fb:50: 98:92:00:05:a6:51:10:81:25:b7:36:27:80:b1:3b: 00:d5:fc:a8:f1:1c:00:7f:82:65:11:c3:2f:44:c6: b3:41:8e:b7:81:85:7c:66:56:cb:4b:a9:9f:09:ec: b4:b0:28:8f:e8:b9:09:e3:9c:93:12:47:c6:0f:6f: 64:07:20:51:d3:91:4e:75:fd:9b:4c:b2:88:39:b6: 15:9a:fe:d2:0f:0b:71:ad:f6:87:5c:fd:b7:ff:cf: 86:95:98:d5:4c:00:b2:a6:90:24:b5:da:65:db:26: 2a:eb:27:72:46:81:0a:82:78:ee:e4:61:ca:8e:8e: 62:99:bd:77:b3:79:37:87:2e:8e:bd:4f:81:2b:3a: 21:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:EB:4E:51:A9:11:79:EA:48:3C:FC:34:E3:6B:FC:D8:DC:64:59:66 X509v3 Authority Key Identifier: keyid:B1:85:9F:3D:2C:D2:83:E7:DB:90:F0:2F:E1:B0:D4:F6:15:60:59:47 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sYWfPSzSg-fbkPAv4bDU9hVgWUc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/f7a560-8873-40ee-a7c5-2aadc5c3c57d/1/sYWfPSzSg-fbkPAv4bDU9hVgWUc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/28/f7a560-8873-40ee-a7c5-2aadc5c3c57d/1/sYWfPSzSg-fbkPAv4bDU9hVgWUc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 17:74:af:ab:f7:b5:d5:fa:8c:22:92:1e:86:32:be:ef:80:57: 27:4f:ac:5d:2e:04:16:ca:83:01:14:79:36:81:ca:85:b2:0d: 80:7e:34:07:19:e9:9b:f3:2f:5d:fd:f4:cc:c1:a2:2b:ad:60: 2d:67:da:01:bf:71:14:e3:33:36:19:74:34:54:58:2c:3f:fe: d8:18:07:bc:1c:3b:7c:b4:fa:32:5b:8d:ee:63:6d:f9:e8:b7: a2:ee:67:87:36:b1:82:97:aa:59:55:a5:9b:82:14:60:2f:db: 2f:4b:08:81:41:b8:10:be:52:94:83:3c:fd:72:12:c4:a5:6f: 42:f7:66:71:ee:3e:1e:cd:72:4e:46:09:d8:3d:52:6c:f7:76: 7b:a6:3a:92:0c:a2:a9:d5:ac:fa:9d:2d:18:28:8a:6b:4e:d5: e5:0f:9f:33:e3:c2:0c:ad:de:d6:fb:a1:e5:e1:8d:e4:85:78: 89:de:1f:fb:39:c3:b5:ce:b5:15:4b:da:c9:b8:15:69:2d:48: 24:bd:f1:3d:bd:69:0d:58:ab:1c:a6:0a:24:40:03:31:e2:c6: bc:5d:55:81:e0:e8:ac:94:af:b5:41:9e:c4:ec:f1:95:46:4d: f1:c6:d6:75:c9:70:7f:73:82:cb:0b:39:eb:72:43:ea:17:27: 8b:75:b9:ee -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsgYj1ms0OpSyNOgT3QF6FIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIxODU5ZjNkMmNkMjgzZTdkYjkwZjAyZmUxYjBkNGY2MTU2 MDU5NDcwHhcNMjUxMjE1MDUwMTA3WhcNMjUxMjE2MDUwMTA3WjAzMTEwLwYDVQQD Eyg3Y2ViNGU1MWE5MTE3OWVhNDgzY2ZjMzRlMzZiZmNkOGRjNjQ1OTY2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnWVuaMxahb0dtEXk0pdvyf05HIf7 BHMIyzB09bJtqWkNcQxwZOueF5vTVDoBjhQicQXHAgXXYWPhl0ixYtgciSQnKbbQ co2GL5LapWbjqGc+8C2zbSOm4K8iFczhEP8cQmIzs5w3pl36vCSXQeHrYyYy4JCr +1CYkgAFplEQgSW3NieAsTsA1fyo8RwAf4JlEcMvRMazQY63gYV8ZlbLS6mfCey0 sCiP6LkJ45yTEkfGD29kByBR05FOdf2bTLKIObYVmv7SDwtxrfaHXP23/8+GlZjV TACyppAktdpl2yYq6ydyRoEKgnju5GHKjo5imb13s3k3hy6OvU+BKzohIQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHzrTlGpEXnqSDz8NONr/NjcZFlmMB8GA1UdIwQY MBaAFLGFnz0s0oPn25DwL+Gw1PYVYFlHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc1lXZlBTelNnLWZia1BBdjRiRFU5aFZnV1VjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOC9mN2E1NjAtODg3My00MGVlLWE3YzUt MmFhZGM1YzNjNTdkLzEvc1lXZlBTelNnLWZia1BBdjRiRFU5aFZnV1VjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOC9mN2E1NjAtODg3My00MGVlLWE3YzUtMmFhZGM1YzNjNTdk LzEvc1lXZlBTelNnLWZia1BBdjRiRFU5aFZnV1VjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAF3Svq/e1 1fqMIpIehjK+74BXJ0+sXS4EFsqDARR5NoHKhbINgH40Bxnpm/MvXf30zMGiK61g LWfaAb9xFOMzNhl0NFRYLD/+2BgHvBw7fLT6MluN7mNt+ei3ou5nhzaxgpeqWVWl m4IUYC/bL0sIgUG4EL5SlIM8/XISxKVvQvdmce4+Hs1yTkYJ2D1SbPd2e6Y6kgyi qdWs+p0tGCiKa07V5Q+fM+PCDK3e1vuh5eGN5IV4id4f+znDtc61FUvaybgVaS1I JL3xPb1pDVirHKYKJEADMeLGvF1VgeDorJSvtUGexOzxlUZN8cbWdclwf3OCyws5 63JD6hcni3W57g== -----END CERTIFICATE-----Generated at Mon Dec 15 14:39:39 2025 by rpki-client