This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/25e660-4056-42cc-a8b0-d0517db26dad/1/yalITKcIq3cesduQuvyKEUwsPXk.mft File: yalITKcIq3cesduQuvyKEUwsPXk.mft (raw, json) Hash identifier: nQ8LSBjN2RQXVP/geaddXXeQG07HzTegagMDJJqu2bE= Subject key identifier: 28:FD:6B:5F:DD:74:DF:BA:8D:E5:9B:55:EC:54:9B:48:B8:CE:0A:47 Authority key identifier: C9:A9:48:4C:A7:08:AB:77:1E:B1:DB:90:BA:FC:8A:11:4C:2C:3D:79 Certificate issuer: /CN=c9a9484ca708ab771eb1db90bafc8a114c2c3d79 Certificate serial: 019AF577FB11467D9405738F4CBDDD2D044E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yalITKcIq3cesduQuvyKEUwsPXk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/25e660-4056-42cc-a8b0-d0517db26dad/1/yalITKcIq3cesduQuvyKEUwsPXk.mft Manifest number: 1764 Signing time: Sat 06 Dec 2025 21:01:12 +0000 Manifest this update: Sat 06 Dec 2025 21:01:12 +0000 Manifest next update: Sun 07 Dec 2025 21:01:12 +0000 Files and hashes: 1: __KLjvjgMO1LuKrx6zZXZJBcRtk.roa (hash: kZSjdOtgx956Q9WcOxsnl5QBMbkPJAPdg2gED1ZbQy4=) 2: xmOvbRNpbfTNvGRi0NGmoChwF8k.roa (hash: 7oU4y3FJaTZ6zlZMUwxbLqzJR9lqEVzJSwfHVW5xI4s=) 3: yalITKcIq3cesduQuvyKEUwsPXk.crl (hash: VMS9d3I4D56Fj9VCa4c8E42kPA91lYpwcSN1thbMaZU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/25e660-4056-42cc-a8b0-d0517db26dad/1/yalITKcIq3cesduQuvyKEUwsPXk.crl rsync://rpki.ripe.net/repository/DEFAULT/4b/25e660-4056-42cc-a8b0-d0517db26dad/1/yalITKcIq3cesduQuvyKEUwsPXk.mft rsync://rpki.ripe.net/repository/DEFAULT/yalITKcIq3cesduQuvyKEUwsPXk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 21:01:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:77:fb:11:46:7d:94:05:73:8f:4c:bd:dd:2d:04:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c9a9484ca708ab771eb1db90bafc8a114c2c3d79 Validity Not Before: Dec 6 21:01:12 2025 GMT Not After : Dec 7 21:01:12 2025 GMT Subject: CN=28fd6b5fdd74dfba8de59b55ec549b48b8ce0a47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:1e:81:25:bf:97:f2:b6:00:7e:d3:3b:db:64: 98:ea:61:33:ee:b2:32:a3:1f:98:e1:38:ba:a8:0c: 81:ba:3d:34:85:8a:06:d9:f3:b5:d2:c3:4a:a8:91: d7:73:77:05:12:4a:34:74:21:4a:b3:e9:73:dc:4c: 60:6d:78:41:24:32:6f:27:99:ba:0c:3e:58:33:f3: 9e:40:a3:cd:eb:e2:4c:b1:2e:e5:97:fe:fb:fa:f6: 2b:32:41:96:7e:d8:8f:04:89:96:62:76:57:b5:b6: 85:ce:4d:33:eb:cc:08:50:6c:fb:2b:97:be:18:13: 66:9f:1c:d5:1a:15:91:fc:8f:28:7f:c5:f7:e5:7f: 35:4c:6f:40:f9:9e:e2:69:fa:6d:ce:81:4e:1e:71: 85:25:fa:e3:fb:6e:46:6c:b2:a4:26:2e:3a:1a:28: 21:39:51:a5:aa:15:17:86:95:a5:47:1f:fd:76:0c: 8e:41:f8:33:16:36:66:b3:0d:9e:ba:83:2f:f3:76: e5:9a:7f:0d:18:b4:00:35:03:80:98:86:d5:d3:cd: a1:59:c9:a5:82:ac:01:bf:03:8d:b1:36:2c:98:ce: 60:ad:d2:22:41:7b:af:90:c2:2a:51:8b:50:d9:57: 4e:76:77:d9:47:4e:76:82:d9:d4:01:02:24:d1:1c: d4:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:FD:6B:5F:DD:74:DF:BA:8D:E5:9B:55:EC:54:9B:48:B8:CE:0A:47 X509v3 Authority Key Identifier: keyid:C9:A9:48:4C:A7:08:AB:77:1E:B1:DB:90:BA:FC:8A:11:4C:2C:3D:79 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yalITKcIq3cesduQuvyKEUwsPXk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/25e660-4056-42cc-a8b0-d0517db26dad/1/yalITKcIq3cesduQuvyKEUwsPXk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/25e660-4056-42cc-a8b0-d0517db26dad/1/yalITKcIq3cesduQuvyKEUwsPXk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 45:f0:2a:37:7f:57:ef:47:1b:b8:50:2c:6e:1b:6d:4f:cc:46: 39:48:d0:0f:45:52:c1:20:82:34:1e:33:f7:20:d3:f6:d0:39: 7b:f0:46:1a:99:17:f5:b9:69:52:2c:ef:d9:2c:77:4e:79:00: 3f:a0:3a:48:dc:7a:ff:10:1d:b2:c6:68:5c:a1:0d:3e:bd:e2: 74:55:43:e9:b0:57:76:34:4b:e8:12:10:59:e1:b8:51:b1:dd: 11:98:c5:bb:79:56:88:94:5a:97:da:ee:aa:c9:d2:7f:66:2b: d9:dc:dc:4b:83:63:ae:e3:be:79:04:c1:1a:07:cc:f9:32:9d: 53:55:a0:1a:a7:d9:d8:01:09:37:a4:c5:90:a0:7b:06:a1:02: 7a:97:e4:87:4a:02:bd:95:63:8a:87:94:1e:f5:fc:a7:e5:41: 38:43:ae:bb:c6:75:61:13:77:c6:62:2b:f0:dc:8f:4d:73:d3: d2:4b:42:3f:57:36:9f:ad:c6:0a:45:8d:17:39:81:23:69:46: be:fa:fe:37:a5:db:9d:28:05:8d:c3:da:42:c1:a3:aa:ea:4d: 77:4c:87:73:44:b5:1e:68:08:4c:db:55:2d:01:81:bb:09:70: 9f:f9:7f:9c:d3:1d:b5:47:32:5c:e4:66:18:71:10:b0:c8:60: c3:97:23:5c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr1d/sRRn2UBXOPTL3dLQROMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM5YTk0ODRjYTcwOGFiNzcxZWIxZGI5MGJhZmM4YTExNGMy YzNkNzkwHhcNMjUxMjA2MjEwMTEyWhcNMjUxMjA3MjEwMTEyWjAzMTEwLwYDVQQD EygyOGZkNmI1ZmRkNzRkZmJhOGRlNTliNTVlYzU0OWI0OGI4Y2UwYTQ3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyR6BJb+X8rYAftM722SY6mEz7rIy ox+Y4Ti6qAyBuj00hYoG2fO10sNKqJHXc3cFEko0dCFKs+lz3ExgbXhBJDJvJ5m6 DD5YM/OeQKPN6+JMsS7ll/77+vYrMkGWftiPBImWYnZXtbaFzk0z68wIUGz7K5e+ GBNmnxzVGhWR/I8of8X35X81TG9A+Z7iafptzoFOHnGFJfrj+25GbLKkJi46Gigh OVGlqhUXhpWlRx/9dgyOQfgzFjZmsw2euoMv83blmn8NGLQANQOAmIbV082hWcml gqwBvwONsTYsmM5grdIiQXuvkMIqUYtQ2VdOdnfZR052gtnUAQIk0RzUPwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCj9a1/ddN+6jeWbVexUm0i4zgpHMB8GA1UdIwQY MBaAFMmpSEynCKt3HrHbkLr8ihFMLD15MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveWFsSVRLY0lxM2Nlc2R1UXV2eUtFVXdzUFhrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yi8yNWU2NjAtNDA1Ni00MmNjLWE4YjAt ZDA1MTdkYjI2ZGFkLzEveWFsSVRLY0lxM2Nlc2R1UXV2eUtFVXdzUFhrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Yi8yNWU2NjAtNDA1Ni00MmNjLWE4YjAtZDA1MTdkYjI2ZGFk LzEveWFsSVRLY0lxM2Nlc2R1UXV2eUtFVXdzUFhrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARfAqN39X 70cbuFAsbhttT8xGOUjQD0VSwSCCNB4z9yDT9tA5e/BGGpkX9blpUizv2Sx3TnkA P6A6SNx6/xAdssZoXKENPr3idFVD6bBXdjRL6BIQWeG4UbHdEZjFu3lWiJRal9ru qsnSf2Yr2dzcS4NjruO+eQTBGgfM+TKdU1WgGqfZ2AEJN6TFkKB7BqECepfkh0oC vZVjioeUHvX8p+VBOEOuu8Z1YRN3xmIr8NyPTXPT0ktCP1c2n63GCkWNFzmBI2lG vvr+N6XbnSgFjcPaQsGjqupNd0yHc0S1HmgITNtVLQGBuwlwn/l/nNMdtUcyXORm GHEQsMhgw5cjXA== -----END CERTIFICATE-----Generated at Sun Dec 7 03:07:03 2025 by rpki-client