This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/f7c9d1-0f5b-42f5-931d-1dc0b84a1c7e/1/YUeZxnwIVH2AuzXQLa5QXVpl3Fs.mft File: YUeZxnwIVH2AuzXQLa5QXVpl3Fs.mft (raw, json) Hash identifier: 428doGREferWl61NczH5O15Z8mIJrX2MGDe2dGZBdhk= Subject key identifier: F7:A7:2C:72:F0:78:4C:8A:3D:FC:96:7B:04:64:9E:7F:9A:3A:C0:F3 Authority key identifier: 61:47:99:C6:7C:08:54:7D:80:BB:35:D0:2D:AE:50:5D:5A:65:DC:5B Certificate issuer: /CN=614799c67c08547d80bb35d02dae505d5a65dc5b Certificate serial: 019B05C666238E889B3635C10099014306E6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YUeZxnwIVH2AuzXQLa5QXVpl3Fs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/f7c9d1-0f5b-42f5-931d-1dc0b84a1c7e/1/YUeZxnwIVH2AuzXQLa5QXVpl3Fs.mft Manifest number: 097A Signing time: Wed 10 Dec 2025 01:00:46 +0000 Manifest this update: Wed 10 Dec 2025 01:00:46 +0000 Manifest next update: Thu 11 Dec 2025 01:00:46 +0000 Files and hashes: 1: R4scpsswEHtZHUE-nwU3HaURKXg.roa (hash: og9/o35XSt8h5Pisf2/20OBVwfKzhDJ2QToFc39vgzg=) 2: YUeZxnwIVH2AuzXQLa5QXVpl3Fs.crl (hash: BY79cjIO+HynOQVYX0JbSEhiU6uyxtxUU7Ol57d+jos=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/f7c9d1-0f5b-42f5-931d-1dc0b84a1c7e/1/YUeZxnwIVH2AuzXQLa5QXVpl3Fs.crl rsync://rpki.ripe.net/repository/DEFAULT/2f/f7c9d1-0f5b-42f5-931d-1dc0b84a1c7e/1/YUeZxnwIVH2AuzXQLa5QXVpl3Fs.mft rsync://rpki.ripe.net/repository/DEFAULT/YUeZxnwIVH2AuzXQLa5QXVpl3Fs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 11 Dec 2025 01:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:05:c6:66:23:8e:88:9b:36:35:c1:00:99:01:43:06:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=614799c67c08547d80bb35d02dae505d5a65dc5b Validity Not Before: Dec 10 01:00:46 2025 GMT Not After : Dec 11 01:00:46 2025 GMT Subject: CN=f7a72c72f0784c8a3dfc967b04649e7f9a3ac0f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:23:5d:50:48:c4:e6:c6:83:c2:8d:b0:78:40: 8a:cb:1d:3a:42:d8:76:c1:c6:53:8c:f4:f1:f7:d9: e1:02:23:3c:9a:49:2d:da:66:b5:3c:01:a3:20:28: ce:f1:e5:f4:4b:0e:c7:43:4d:a7:e0:96:9b:5b:50: 63:b1:2c:08:cc:7e:f2:11:36:a8:4e:f4:27:ee:22: c7:9a:ef:8b:15:e9:3c:de:aa:d9:04:b6:af:4f:a0: 29:6a:6b:68:d4:e8:5a:3d:df:16:2a:1f:a3:d3:13: a7:8e:4e:b3:57:3e:60:d9:c2:7a:e7:e9:5c:5f:84: 81:00:00:c9:3a:42:b5:81:e8:27:9b:ae:ac:e4:15: 41:3b:ed:63:e1:fd:7f:80:37:95:f5:6a:90:cc:a7: 0a:4c:c0:d5:09:24:8c:c3:12:a5:09:d0:5f:92:00: 3e:64:cc:4b:86:bd:4d:2e:00:64:dc:90:eb:de:fa: 19:af:b6:82:05:27:8c:3b:69:17:6d:af:60:76:7c: 41:1c:72:3c:9f:b6:b8:44:04:db:60:27:41:ac:c0: c0:0f:24:0c:e2:ea:e4:99:a3:01:c9:6f:ba:5c:b3: 5f:e2:7e:93:01:bb:3d:d1:9a:13:03:24:5d:62:15: da:e8:9c:18:36:d7:6c:be:54:6b:09:55:63:c8:ad: 31:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:A7:2C:72:F0:78:4C:8A:3D:FC:96:7B:04:64:9E:7F:9A:3A:C0:F3 X509v3 Authority Key Identifier: keyid:61:47:99:C6:7C:08:54:7D:80:BB:35:D0:2D:AE:50:5D:5A:65:DC:5B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YUeZxnwIVH2AuzXQLa5QXVpl3Fs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/f7c9d1-0f5b-42f5-931d-1dc0b84a1c7e/1/YUeZxnwIVH2AuzXQLa5QXVpl3Fs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/f7c9d1-0f5b-42f5-931d-1dc0b84a1c7e/1/YUeZxnwIVH2AuzXQLa5QXVpl3Fs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 83:28:2e:f4:70:bf:d0:d9:6c:2d:34:49:51:a6:e4:69:db:5b: b5:6d:05:7a:c7:f0:7b:c8:da:2f:ea:4a:ab:55:62:4b:ce:36: 9f:65:59:40:21:6f:98:7f:7d:3f:ec:ae:ed:06:5b:37:65:7a: e4:53:fb:31:11:3e:7d:3e:7f:f1:d7:83:68:6e:15:0f:0d:53: 47:dc:3d:d3:93:70:25:84:46:d1:00:ae:ee:02:ba:25:30:86: 4c:4b:c1:39:39:e6:ff:39:c4:20:24:e8:e3:76:95:67:87:e8: 5d:71:a1:f9:6a:22:14:71:1b:13:3a:a6:3d:07:3b:58:e5:48: dd:ce:70:a8:87:57:fe:48:50:dc:c6:59:70:c5:f3:d4:7e:09: ee:60:e0:84:96:cf:0b:8d:52:f8:4f:1e:04:d9:a3:bf:1f:39: cf:23:95:e1:d9:ea:d4:2e:20:50:14:34:ac:d6:d4:55:26:16: 73:d3:f9:1a:89:7d:f6:c4:6b:47:5e:05:c7:d9:be:47:b5:6d: 41:f7:d7:7f:ed:a1:af:dd:ca:2a:7d:4a:d3:98:d7:f5:62:8f: de:81:85:65:9e:19:1d:06:7e:a6:6b:42:d0:33:cc:40:e9:25: 93:61:5b:7f:9f:e0:bc:73:95:15:6a:d6:aa:f8:99:d9:b9:ee: fd:5d:6d:43 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsFxmYjjoibNjXBAJkBQwbmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYxNDc5OWM2N2MwODU0N2Q4MGJiMzVkMDJkYWU1MDVkNWE2 NWRjNWIwHhcNMjUxMjEwMDEwMDQ2WhcNMjUxMjExMDEwMDQ2WjAzMTEwLwYDVQQD EyhmN2E3MmM3MmYwNzg0YzhhM2RmYzk2N2IwNDY0OWU3ZjlhM2FjMGYzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApSNdUEjE5saDwo2weECKyx06Qth2 wcZTjPTx99nhAiM8mkkt2ma1PAGjICjO8eX0Sw7HQ02n4JabW1BjsSwIzH7yETao TvQn7iLHmu+LFek83qrZBLavT6Apamto1OhaPd8WKh+j0xOnjk6zVz5g2cJ65+lc X4SBAADJOkK1gegnm66s5BVBO+1j4f1/gDeV9WqQzKcKTMDVCSSMwxKlCdBfkgA+ ZMxLhr1NLgBk3JDr3voZr7aCBSeMO2kXba9gdnxBHHI8n7a4RATbYCdBrMDADyQM 4urkmaMByW+6XLNf4n6TAbs90ZoTAyRdYhXa6JwYNtdsvlRrCVVjyK0xmQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPenLHLweEyKPfyWewRknn+aOsDzMB8GA1UdIwQY MBaAFGFHmcZ8CFR9gLs10C2uUF1aZdxbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWVVlWnhud0lWSDJBdXpYUUxhNVFYVnBsM0ZzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi9mN2M5ZDEtMGY1Yi00MmY1LTkzMWQt MWRjMGI4NGExYzdlLzEvWVVlWnhud0lWSDJBdXpYUUxhNVFYVnBsM0ZzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZi9mN2M5ZDEtMGY1Yi00MmY1LTkzMWQtMWRjMGI4NGExYzdl LzEvWVVlWnhud0lWSDJBdXpYUUxhNVFYVnBsM0ZzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgygu9HC/ 0NlsLTRJUabkadtbtW0Fesfwe8jaL+pKq1ViS842n2VZQCFvmH99P+yu7QZbN2V6 5FP7MRE+fT5/8deDaG4VDw1TR9w905NwJYRG0QCu7gK6JTCGTEvBOTnm/znEICTo 43aVZ4foXXGh+WoiFHEbEzqmPQc7WOVI3c5wqIdX/khQ3MZZcMXz1H4J7mDghJbP C41S+E8eBNmjvx85zyOV4dnq1C4gUBQ0rNbUVSYWc9P5Gol99sRrR14Fx9m+R7Vt QffXf+2hr93KKn1K05jX9WKP3oGFZZ4ZHQZ+pmtC0DPMQOklk2Fbf5/gvHOVFWrW qviZ2bnu/V1tQw== -----END CERTIFICATE-----Generated at Wed Dec 10 10:10:00 2025 by rpki-client