This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/23f532-fe86-4198-8c3b-4d43f66ab731/1/YUnLuj5mKb6uv7aWaGeK2lF0SJg.mft File: YUnLuj5mKb6uv7aWaGeK2lF0SJg.mft (raw, json) Hash identifier: D9Gh5y1GEx5lWYv2iPJW7F4Bnm/4srS/3Ytm8xSYsG8= Subject key identifier: 82:26:83:30:4B:B1:C1:16:50:90:DA:CA:38:BA:73:10:F2:49:7C:53 Authority key identifier: 61:49:CB:BA:3E:66:29:BE:AE:BF:B6:96:68:67:8A:DA:51:74:48:98 Certificate issuer: /CN=6149cbba3e6629beaebfb69668678ada51744898 Certificate serial: 019B0E24DC12BC78AE83D7730D46312556E3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YUnLuj5mKb6uv7aWaGeK2lF0SJg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/23f532-fe86-4198-8c3b-4d43f66ab731/1/YUnLuj5mKb6uv7aWaGeK2lF0SJg.mft Manifest number: 1498 Signing time: Thu 11 Dec 2025 16:00:55 +0000 Manifest this update: Thu 11 Dec 2025 16:00:55 +0000 Manifest next update: Fri 12 Dec 2025 16:00:55 +0000 Files and hashes: 1: 0IG70QW2hCrm52M5Cqyqdv7Bcb0.roa (hash: usdtXTbOrc0vwd46ZO8C/l/xue6j9QcbuHgY1Bupvvo=) 2: YUnLuj5mKb6uv7aWaGeK2lF0SJg.crl (hash: xKbVpUjpx8Ls2tR2PNdJtX4d1+lHZ+UZb/z6XdCveAw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/23f532-fe86-4198-8c3b-4d43f66ab731/1/YUnLuj5mKb6uv7aWaGeK2lF0SJg.crl rsync://rpki.ripe.net/repository/DEFAULT/3a/23f532-fe86-4198-8c3b-4d43f66ab731/1/YUnLuj5mKb6uv7aWaGeK2lF0SJg.mft rsync://rpki.ripe.net/repository/DEFAULT/YUnLuj5mKb6uv7aWaGeK2lF0SJg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 14:45:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0e:24:dc:12:bc:78:ae:83:d7:73:0d:46:31:25:56:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6149cbba3e6629beaebfb69668678ada51744898 Validity Not Before: Dec 11 16:00:55 2025 GMT Not After : Dec 12 16:00:55 2025 GMT Subject: CN=822683304bb1c1165090daca38ba7310f2497c53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:41:a3:0f:fe:66:61:77:b6:e9:4f:4f:47:22: 7d:d5:c6:c0:cb:34:0a:f7:82:6d:96:0d:be:9b:49: 62:4b:3d:bb:e0:23:20:23:b4:f6:a5:58:0b:5b:6c: ea:bf:67:55:1f:92:81:8f:e9:ad:4d:3f:8f:2f:d9: b3:74:6d:35:66:ad:ee:6a:37:3f:ec:4e:1d:b5:e8: 7d:dd:7e:42:76:37:23:14:3a:c3:fa:1b:8d:ad:97: 34:f4:18:a3:dc:a0:7b:c1:1b:26:ba:2e:a7:cf:8f: a6:5c:b5:36:9a:5e:d2:59:4a:0e:0b:6e:22:e5:00: 4c:0d:1d:3c:e9:b3:0c:8d:fd:b8:65:42:0e:9a:11: db:d1:60:55:9a:62:26:69:20:6b:85:a7:c8:87:72: 9c:44:a3:d6:27:16:45:10:ef:62:b2:0e:50:6b:9e: 96:74:cd:e4:79:ec:ee:80:c2:f5:39:8f:2f:1e:2f: d9:e7:02:28:2b:4d:23:5c:fd:db:f1:3a:11:cd:95: a2:98:04:5c:2f:fd:62:5f:9b:0c:ac:34:b3:23:a0: 84:54:70:6e:54:5b:65:8a:ba:d1:2e:4a:d8:78:93: dd:cd:75:62:70:19:2d:33:7e:9d:27:35:d5:9e:ab: 3c:f1:1e:0a:ee:c6:74:55:ab:68:3e:4e:ea:3e:d4: 80:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:26:83:30:4B:B1:C1:16:50:90:DA:CA:38:BA:73:10:F2:49:7C:53 X509v3 Authority Key Identifier: keyid:61:49:CB:BA:3E:66:29:BE:AE:BF:B6:96:68:67:8A:DA:51:74:48:98 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YUnLuj5mKb6uv7aWaGeK2lF0SJg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/23f532-fe86-4198-8c3b-4d43f66ab731/1/YUnLuj5mKb6uv7aWaGeK2lF0SJg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/23f532-fe86-4198-8c3b-4d43f66ab731/1/YUnLuj5mKb6uv7aWaGeK2lF0SJg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 47:02:6d:07:f8:35:e2:24:a2:8e:cf:22:96:e6:78:f0:1a:e4: b7:08:85:06:20:4d:6d:4b:f9:bc:40:06:22:92:65:d5:01:46: 08:b8:e2:62:e4:9e:57:c3:1a:e0:5f:4e:c1:c1:54:42:32:ba: 39:f8:8d:6a:ad:3f:0c:5e:f2:d6:3a:f5:66:a8:1c:d3:13:3c: 8e:83:0f:bc:3a:8d:f5:d0:23:41:58:57:42:d1:d5:0c:f8:ad: 76:37:97:2a:09:3a:b7:46:13:1d:b1:c1:9b:50:84:5a:8c:85: c1:f9:26:97:05:ea:68:f4:de:35:a2:66:d2:6b:43:56:43:02: bc:9d:68:6c:4f:2d:86:2f:4c:b5:a7:94:7d:88:26:43:f6:d0: ab:3b:d6:4d:2f:75:79:d3:a0:79:ce:85:01:73:8f:e1:90:84: c6:01:25:0c:63:72:62:7c:d5:f5:33:16:0a:c3:97:c0:d5:9a: 9d:5e:ef:e5:6d:af:96:d0:ce:9d:4d:a2:ff:f6:9d:4e:6c:c2: 8b:c0:2a:86:a3:25:d9:66:82:00:0b:54:78:3a:77:09:6a:db: bb:06:6d:52:80:32:e2:ff:c4:47:8a:f5:4e:70:0b:f9:82:50: 75:37:3c:9e:2d:8e:c4:01:99:d0:de:d1:86:da:f0:29:2f:c7: 07:8f:b0:ee -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsOJNwSvHiug9dzDUYxJVbjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYxNDljYmJhM2U2NjI5YmVhZWJmYjY5NjY4Njc4YWRhNTE3 NDQ4OTgwHhcNMjUxMjExMTYwMDU1WhcNMjUxMjEyMTYwMDU1WjAzMTEwLwYDVQQD Eyg4MjI2ODMzMDRiYjFjMTE2NTA5MGRhY2EzOGJhNzMxMGYyNDk3YzUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtEGjD/5mYXe26U9PRyJ91cbAyzQK 94Jtlg2+m0liSz274CMgI7T2pVgLW2zqv2dVH5KBj+mtTT+PL9mzdG01Zq3uajc/ 7E4dteh93X5CdjcjFDrD+huNrZc09Bij3KB7wRsmui6nz4+mXLU2ml7SWUoOC24i 5QBMDR086bMMjf24ZUIOmhHb0WBVmmImaSBrhafIh3KcRKPWJxZFEO9isg5Qa56W dM3keezugML1OY8vHi/Z5wIoK00jXP3b8ToRzZWimARcL/1iX5sMrDSzI6CEVHBu VFtlirrRLkrYeJPdzXVicBktM36dJzXVnqs88R4K7sZ0VatoPk7qPtSA9QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIImgzBLscEWUJDayji6cxDySXxTMB8GA1UdIwQY MBaAFGFJy7o+Zim+rr+2lmhnitpRdEiYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWVVuTHVqNW1LYjZ1djdhV2FHZUsybEYwU0pnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS8yM2Y1MzItZmU4Ni00MTk4LThjM2It NGQ0M2Y2NmFiNzMxLzEvWVVuTHVqNW1LYjZ1djdhV2FHZUsybEYwU0pnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYS8yM2Y1MzItZmU4Ni00MTk4LThjM2ItNGQ0M2Y2NmFiNzMx LzEvWVVuTHVqNW1LYjZ1djdhV2FHZUsybEYwU0pnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARwJtB/g1 4iSijs8iluZ48BrktwiFBiBNbUv5vEAGIpJl1QFGCLjiYuSeV8Ma4F9OwcFUQjK6 OfiNaq0/DF7y1jr1Zqgc0xM8joMPvDqN9dAjQVhXQtHVDPitdjeXKgk6t0YTHbHB m1CEWoyFwfkmlwXqaPTeNaJm0mtDVkMCvJ1obE8thi9MtaeUfYgmQ/bQqzvWTS91 edOgec6FAXOP4ZCExgElDGNyYnzV9TMWCsOXwNWanV7v5W2vltDOnU2i//adTmzC i8AqhqMl2WaCAAtUeDp3CWrbuwZtUoAy4v/ER4r1TnAL+YJQdTc8ni2OxAGZ0N7R htrwKS/HB4+w7g== -----END CERTIFICATE-----Generated at Fri Dec 12 00:09:12 2025 by rpki-client