This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/7253f0-d825-4dab-801f-9b509e5931f9/1/RPYQ-HLPMbfDIkzSwWacmWg1C3o.mft File: RPYQ-HLPMbfDIkzSwWacmWg1C3o.mft (raw, json) Hash identifier: A9sivK+Cv8izD4xOWtJPutSHZx6T0pA6moTIhREJP8g= Subject key identifier: 72:F4:9B:E1:76:B9:E4:91:D1:02:DE:40:8E:CB:51:50:7D:E4:D0:07 Authority key identifier: 44:F6:10:F8:72:CF:31:B7:C3:22:4C:D2:C1:66:9C:99:68:35:0B:7A Certificate issuer: /CN=44f610f872cf31b7c3224cd2c1669c9968350b7a Certificate serial: 019B59E38DDB4310972E402129C74216F1FE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RPYQ-HLPMbfDIkzSwWacmWg1C3o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/7253f0-d825-4dab-801f-9b509e5931f9/1/RPYQ-HLPMbfDIkzSwWacmWg1C3o.mft Manifest number: 1796 Signing time: Fri 26 Dec 2025 09:00:43 +0000 Manifest this update: Fri 26 Dec 2025 09:00:43 +0000 Manifest next update: Sat 27 Dec 2025 09:00:43 +0000 Files and hashes: 1: RPYQ-HLPMbfDIkzSwWacmWg1C3o.crl (hash: DIFqWUjXSpWFOkyty6Cx6ZSYQ5QO2PUqEclY5YYLCXE=) 2: ZmJk3i0UqR_uJ_XLaSjGUe2aH00.roa (hash: BCwdh7j1ZUyJ+mVEfLtfrzwX+n9rg9YN807VJjPHsUE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/7253f0-d825-4dab-801f-9b509e5931f9/1/RPYQ-HLPMbfDIkzSwWacmWg1C3o.crl rsync://rpki.ripe.net/repository/DEFAULT/29/7253f0-d825-4dab-801f-9b509e5931f9/1/RPYQ-HLPMbfDIkzSwWacmWg1C3o.mft rsync://rpki.ripe.net/repository/DEFAULT/RPYQ-HLPMbfDIkzSwWacmWg1C3o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:e3:8d:db:43:10:97:2e:40:21:29:c7:42:16:f1:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=44f610f872cf31b7c3224cd2c1669c9968350b7a Validity Not Before: Dec 26 09:00:43 2025 GMT Not After : Dec 27 09:00:43 2025 GMT Subject: CN=72f49be176b9e491d102de408ecb51507de4d007 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:29:14:3c:d3:23:d4:c2:c3:53:c1:96:46:34: 03:70:28:a7:64:33:df:12:8b:b3:77:e8:5b:92:e0: 19:3e:ef:03:24:93:0b:13:89:7d:f6:11:85:3a:7d: 40:07:30:c2:22:59:81:f8:fc:9d:79:21:0f:45:3f: b9:ac:a8:55:d3:b6:7e:21:df:d8:85:29:89:2e:f0: b5:dd:1b:fe:87:d0:d3:7c:ff:d4:5b:40:95:2f:8d: c4:e1:e6:b0:eb:78:06:77:41:7b:4d:76:e4:85:66: ab:c4:00:bc:22:ff:3e:6b:64:18:bf:5b:8c:a9:6a: 08:c4:71:1b:e9:4b:c4:29:82:42:e4:c0:28:37:3c: 62:53:a4:9c:41:5e:96:63:ed:01:f9:f4:c3:e8:46: 10:6b:cb:71:0f:90:d6:a6:f6:0b:ec:34:b2:ed:37: c8:a1:f2:30:1f:7e:d7:f0:13:13:2d:27:ec:f8:f1: 27:5f:f2:06:e4:d1:77:de:8f:2a:c2:76:31:0f:26: df:ef:6b:82:84:8a:41:42:39:a8:f0:99:21:1c:5e: 30:c4:be:77:f2:14:0c:8c:92:48:62:4e:49:37:55: 5c:ea:01:0d:ba:52:90:dc:da:f6:de:cd:fd:14:62: 72:9a:4c:f2:96:23:42:dd:45:94:96:fc:70:47:16: 91:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:F4:9B:E1:76:B9:E4:91:D1:02:DE:40:8E:CB:51:50:7D:E4:D0:07 X509v3 Authority Key Identifier: keyid:44:F6:10:F8:72:CF:31:B7:C3:22:4C:D2:C1:66:9C:99:68:35:0B:7A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RPYQ-HLPMbfDIkzSwWacmWg1C3o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/7253f0-d825-4dab-801f-9b509e5931f9/1/RPYQ-HLPMbfDIkzSwWacmWg1C3o.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/29/7253f0-d825-4dab-801f-9b509e5931f9/1/RPYQ-HLPMbfDIkzSwWacmWg1C3o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1b:0f:2a:2d:f2:62:e9:73:23:89:39:cc:03:aa:38:47:ef:88: 4e:3e:30:d0:55:41:aa:07:f5:21:3d:18:5d:4c:20:49:0e:ee: 4d:64:16:3e:c7:92:fe:57:66:68:cb:0a:7b:89:28:59:47:5f: 90:32:b3:e7:51:ee:fa:77:1c:f0:a0:e9:08:6a:e4:61:63:76: aa:39:46:ca:bd:63:76:e7:18:82:8e:38:87:e9:10:3c:cc:a6: 72:8b:69:13:5a:e3:d2:09:61:04:9a:1c:ce:69:9d:e7:2d:54: 3d:fa:12:ae:3a:05:ce:15:26:c9:b0:fd:e6:7b:92:0f:10:43: fe:68:eb:db:af:a6:bb:31:31:4e:42:83:9c:8f:55:65:0b:2b: 3a:96:a6:ae:dc:54:73:0c:1e:15:d7:3d:4f:5d:1b:95:40:54: 94:a8:2e:fa:6e:d0:11:94:21:01:00:1b:b3:6b:55:bd:c7:40: 21:27:b9:66:83:6d:73:1f:8f:35:3e:a9:3b:39:76:2b:17:dd: 91:73:23:ac:6f:b4:16:a2:41:3d:c1:59:12:d7:30:0b:f5:09: 9c:63:53:17:7b:2b:eb:99:95:39:a5:72:a1:6e:41:c4:0f:22: b4:ce:4b:b7:ef:c1:01:de:eb:9c:0c:89:60:1f:09:26:da:30: 50:1f:43:5b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZ443bQxCXLkAhKcdCFvH+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ0ZjYxMGY4NzJjZjMxYjdjMzIyNGNkMmMxNjY5Yzk5Njgz NTBiN2EwHhcNMjUxMjI2MDkwMDQzWhcNMjUxMjI3MDkwMDQzWjAzMTEwLwYDVQQD Eyg3MmY0OWJlMTc2YjllNDkxZDEwMmRlNDA4ZWNiNTE1MDdkZTRkMDA3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsikUPNMj1MLDU8GWRjQDcCinZDPf Eouzd+hbkuAZPu8DJJMLE4l99hGFOn1ABzDCIlmB+PydeSEPRT+5rKhV07Z+Id/Y hSmJLvC13Rv+h9DTfP/UW0CVL43E4eaw63gGd0F7TXbkhWarxAC8Iv8+a2QYv1uM qWoIxHEb6UvEKYJC5MAoNzxiU6ScQV6WY+0B+fTD6EYQa8txD5DWpvYL7DSy7TfI ofIwH37X8BMTLSfs+PEnX/IG5NF33o8qwnYxDybf72uChIpBQjmo8JkhHF4wxL53 8hQMjJJIYk5JN1Vc6gENulKQ3Nr23s39FGJymkzyliNC3UWUlvxwRxaRLwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHL0m+F2ueSR0QLeQI7LUVB95NAHMB8GA1UdIwQY MBaAFET2EPhyzzG3wyJM0sFmnJloNQt6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUlBZUS1ITFBNYmZESWt6U3dXYWNtV2cxQzNvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS83MjUzZjAtZDgyNS00ZGFiLTgwMWYt OWI1MDllNTkzMWY5LzEvUlBZUS1ITFBNYmZESWt6U3dXYWNtV2cxQzNvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOS83MjUzZjAtZDgyNS00ZGFiLTgwMWYtOWI1MDllNTkzMWY5 LzEvUlBZUS1ITFBNYmZESWt6U3dXYWNtV2cxQzNvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGw8qLfJi 6XMjiTnMA6o4R++ITj4w0FVBqgf1IT0YXUwgSQ7uTWQWPseS/ldmaMsKe4koWUdf kDKz51Hu+ncc8KDpCGrkYWN2qjlGyr1jducYgo44h+kQPMymcotpE1rj0glhBJoc zmmd5y1UPfoSrjoFzhUmybD95nuSDxBD/mjr26+muzExTkKDnI9VZQsrOpamrtxU cwweFdc9T10blUBUlKgu+m7QEZQhAQAbs2tVvcdAISe5ZoNtcx+PNT6pOzl2Kxfd kXMjrG+0FqJBPcFZEtcwC/UJnGNTF3sr65mVOaVyoW5BxA8itM5Lt+/BAd7rnAyJ YB8JJtowUB9DWw== -----END CERTIFICATE-----Generated at Fri Dec 26 15:47:26 2025 by rpki-client