This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/8482d2-7233-4177-992f-7d75e2b1a7b9/1/YRuftFY550kvKzYx9kD2q5r7YpA.mft File: YRuftFY550kvKzYx9kD2q5r7YpA.mft (raw, json) Hash identifier: 69IWgvRxgIWk5/y3xtmC9CIjR5oMPwHwtG2KoL+5Pro= Subject key identifier: 2F:4B:CF:F1:CD:FF:6A:5E:27:3E:02:F7:5B:16:54:55:7B:C6:51:A7 Authority key identifier: 61:1B:9F:B4:56:39:E7:49:2F:2B:36:31:F6:40:F6:AB:9A:FB:62:90 Certificate issuer: /CN=611b9fb45639e7492f2b3631f640f6ab9afb6290 Certificate serial: 019B26D2670D78075407904A381475067F90 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YRuftFY550kvKzYx9kD2q5r7YpA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/8482d2-7233-4177-992f-7d75e2b1a7b9/1/YRuftFY550kvKzYx9kD2q5r7YpA.mft Manifest number: 021F Signing time: Tue 16 Dec 2025 11:01:21 +0000 Manifest this update: Tue 16 Dec 2025 11:01:21 +0000 Manifest next update: Wed 17 Dec 2025 11:01:21 +0000 Files and hashes: 1: 78p7eZsSQ8zonV0TNMaLaLjK96I.roa (hash: +QO+TKXARPaWdOJ8baQ83Q+fqGFHJ3lndWpB+9vwuT8=) 2: Aqz_ehMSCGzxFOJ8FvGbcOAmgSU.roa (hash: s3KelrVfC9+y7bPujzwFv1EKOWZnruzzVkasMV5xnU4=) 3: Dz7fUAyA3Q6aEL4NtI6fDewBO-Q.roa (hash: xVI7un3YDJ74QBZKCGBUFc9S59Re+F08cwvGlwnT43k=) 4: LuLOUOJIGHxq7ykgB21inUS-57w.roa (hash: ab5+eNLQ6Vj2WxgXbW4Ku3+IuOco/UzZZHvYaaD6UKw=) 5: YRuftFY550kvKzYx9kD2q5r7YpA.crl (hash: OqVQDRFmv2rFuJ5e/2w1fvt8PPKAme2w5jXtqM/S3BM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/8482d2-7233-4177-992f-7d75e2b1a7b9/1/YRuftFY550kvKzYx9kD2q5r7YpA.crl rsync://rpki.ripe.net/repository/DEFAULT/4b/8482d2-7233-4177-992f-7d75e2b1a7b9/1/YRuftFY550kvKzYx9kD2q5r7YpA.mft rsync://rpki.ripe.net/repository/DEFAULT/YRuftFY550kvKzYx9kD2q5r7YpA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 11:01:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:26:d2:67:0d:78:07:54:07:90:4a:38:14:75:06:7f:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=611b9fb45639e7492f2b3631f640f6ab9afb6290 Validity Not Before: Dec 16 11:01:21 2025 GMT Not After : Dec 17 11:01:21 2025 GMT Subject: CN=2f4bcff1cdff6a5e273e02f75b1654557bc651a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:4a:02:c1:38:fb:d7:55:9a:b8:0b:d1:b6:ff: 90:f1:5a:7a:41:51:a2:cd:44:98:ac:7d:e8:37:dd: e5:79:65:ba:1c:20:7c:b2:7b:ce:31:93:40:46:53: d4:b5:8a:c1:93:dd:9c:0b:e6:ba:d7:7b:cd:a2:95: f6:73:4e:8b:26:e6:28:86:41:fc:25:5c:4d:18:bc: d1:c1:5e:91:89:19:c6:d5:1c:bd:b8:85:d9:b3:36: 2f:95:f1:88:4f:c0:d9:04:ab:d6:9f:db:ae:18:81: 48:7e:f8:ef:af:14:a9:83:45:44:9e:1f:e6:ed:bc: d3:9e:02:16:36:1b:c6:07:f0:ff:cc:dc:30:5b:3b: 46:27:f6:52:95:f5:ba:ab:68:44:1a:25:b6:d2:4d: 5a:d6:80:e5:dd:0b:7f:51:96:06:1f:b3:32:78:2f: 5e:7c:b1:ce:c0:e0:7a:6b:fd:3e:a9:96:9b:7f:c2: 5e:0b:83:38:86:ae:22:aa:69:e5:61:4b:74:70:50: 32:14:b2:07:b1:cc:2b:4e:52:da:79:46:d3:1f:07: 82:7c:f4:59:37:9c:9a:af:0a:cd:e7:88:2c:80:b2: aa:cd:80:86:b8:5d:25:0c:7c:aa:dc:25:32:2a:f7: 45:6e:c5:f6:54:a8:3f:d4:34:23:36:79:1d:bb:a6: 5b:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:4B:CF:F1:CD:FF:6A:5E:27:3E:02:F7:5B:16:54:55:7B:C6:51:A7 X509v3 Authority Key Identifier: keyid:61:1B:9F:B4:56:39:E7:49:2F:2B:36:31:F6:40:F6:AB:9A:FB:62:90 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YRuftFY550kvKzYx9kD2q5r7YpA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/8482d2-7233-4177-992f-7d75e2b1a7b9/1/YRuftFY550kvKzYx9kD2q5r7YpA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/8482d2-7233-4177-992f-7d75e2b1a7b9/1/YRuftFY550kvKzYx9kD2q5r7YpA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9d:38:e7:6b:70:0b:1e:53:0b:a2:42:53:8d:e2:c2:d7:b1:04: d5:e0:45:61:d5:8e:16:ed:e1:b0:2e:ae:4d:f6:df:7a:08:f5: 8c:8b:a9:a0:fb:d7:67:bb:cf:76:f5:f8:8e:f7:2d:07:7a:64: 78:ea:6f:91:6d:73:0f:4a:38:62:e1:c4:6f:ed:69:ff:69:a4: 78:4d:ec:9b:73:55:3b:a9:fe:c0:5a:85:41:1c:ae:52:3a:0c: c2:95:94:9c:6b:48:86:d7:e2:a1:67:e7:5c:0d:5f:a7:14:8d: ef:65:a2:a8:f9:e2:6e:d8:60:a8:72:6b:0f:b3:e4:75:49:0a: 7c:a7:d7:97:9a:89:dd:c0:c3:f9:04:5d:fa:03:b9:d9:e7:99: 96:fa:45:59:ed:6e:85:a8:2f:72:19:85:04:08:8b:ef:67:35: 89:2d:7d:03:71:3d:03:a2:bf:f0:78:29:2b:5e:8f:06:ec:c8: 96:0e:01:b5:c6:4f:a7:07:9d:d6:82:5d:99:24:6d:64:da:3d: dc:63:3f:68:1e:6a:dd:58:61:74:87:8c:ad:b0:86:72:98:cd: fd:f4:aa:ac:48:6f:8a:a8:14:1c:fd:51:ec:b3:84:6d:b9:9b: 52:bf:4d:d1:33:75:96:1a:04:70:be:f8:e1:93:7b:fc:16:46: 5f:6b:63:40 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsm0mcNeAdUB5BKOBR1Bn+QMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYxMWI5ZmI0NTYzOWU3NDkyZjJiMzYzMWY2NDBmNmFiOWFm YjYyOTAwHhcNMjUxMjE2MTEwMTIxWhcNMjUxMjE3MTEwMTIxWjAzMTEwLwYDVQQD EygyZjRiY2ZmMWNkZmY2YTVlMjczZTAyZjc1YjE2NTQ1NTdiYzY1MWE3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApkoCwTj711WauAvRtv+Q8Vp6QVGi zUSYrH3oN93leWW6HCB8snvOMZNARlPUtYrBk92cC+a613vNopX2c06LJuYohkH8 JVxNGLzRwV6RiRnG1Ry9uIXZszYvlfGIT8DZBKvWn9uuGIFIfvjvrxSpg0VEnh/m 7bzTngIWNhvGB/D/zNwwWztGJ/ZSlfW6q2hEGiW20k1a1oDl3Qt/UZYGH7MyeC9e fLHOwOB6a/0+qZabf8JeC4M4hq4iqmnlYUt0cFAyFLIHscwrTlLaeUbTHweCfPRZ N5yarwrN54gsgLKqzYCGuF0lDHyq3CUyKvdFbsX2VKg/1DQjNnkdu6ZbzwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFC9Lz/HN/2peJz4C91sWVFV7xlGnMB8GA1UdIwQY MBaAFGEbn7RWOedJLys2MfZA9qua+2KQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWVJ1ZnRGWTU1MGt2S3pZeDlrRDJxNXI3WXBBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yi84NDgyZDItNzIzMy00MTc3LTk5MmYt N2Q3NWUyYjFhN2I5LzEvWVJ1ZnRGWTU1MGt2S3pZeDlrRDJxNXI3WXBBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Yi84NDgyZDItNzIzMy00MTc3LTk5MmYtN2Q3NWUyYjFhN2I5 LzEvWVJ1ZnRGWTU1MGt2S3pZeDlrRDJxNXI3WXBBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnTjna3AL HlMLokJTjeLC17EE1eBFYdWOFu3hsC6uTfbfegj1jIupoPvXZ7vPdvX4jvctB3pk eOpvkW1zD0o4YuHEb+1p/2mkeE3sm3NVO6n+wFqFQRyuUjoMwpWUnGtIhtfioWfn XA1fpxSN72WiqPnibthgqHJrD7PkdUkKfKfXl5qJ3cDD+QRd+gO52eeZlvpFWe1u hagvchmFBAiL72c1iS19A3E9A6K/8HgpK16PBuzIlg4BtcZPpwed1oJdmSRtZNo9 3GM/aB5q3VhhdIeMrbCGcpjN/fSqrEhviqgUHP1R7LOEbbmbUr9N0TN1lhoEcL74 4ZN7/BZGX2tjQA== -----END CERTIFICATE-----Generated at Tue Dec 16 20:22:13 2025 by rpki-client