This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/4485b8-3976-4282-8b6a-47c0f54032b8/1/yd8LG2yhi_s1FedhDgfZhASvL2c.mft File: yd8LG2yhi_s1FedhDgfZhASvL2c.mft (raw, json) Hash identifier: cn3qnNcp06A9/ZhaHSfgV6zoooyrXVQAcS++W0G+V8A= Subject key identifier: 1E:0B:EA:03:9C:03:41:92:A6:F1:77:CD:A1:6D:F8:1C:88:B8:0D:B0 Authority key identifier: C9:DF:0B:1B:6C:A1:8B:FB:35:15:E7:61:0E:07:D9:84:04:AF:2F:67 Certificate issuer: /CN=c9df0b1b6ca18bfb3515e7610e07d98404af2f67 Certificate serial: 019B5AF6B8EDB8F3126C5FB43EF3198CB7A7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yd8LG2yhi_s1FedhDgfZhASvL2c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/4485b8-3976-4282-8b6a-47c0f54032b8/1/yd8LG2yhi_s1FedhDgfZhASvL2c.mft Manifest number: 14 Signing time: Fri 26 Dec 2025 14:01:17 +0000 Manifest this update: Fri 26 Dec 2025 14:01:17 +0000 Manifest next update: Sat 27 Dec 2025 14:01:17 +0000 Files and hashes: 1: yd8LG2yhi_s1FedhDgfZhASvL2c.crl (hash: hh3PSPS+fpQM6xS5IZTmEJvmt9+eBHbII7AS1wpzBNA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/4485b8-3976-4282-8b6a-47c0f54032b8/1/yd8LG2yhi_s1FedhDgfZhASvL2c.crl rsync://rpki.ripe.net/repository/DEFAULT/53/4485b8-3976-4282-8b6a-47c0f54032b8/1/yd8LG2yhi_s1FedhDgfZhASvL2c.mft rsync://rpki.ripe.net/repository/DEFAULT/yd8LG2yhi_s1FedhDgfZhASvL2c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5a:f6:b8:ed:b8:f3:12:6c:5f:b4:3e:f3:19:8c:b7:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c9df0b1b6ca18bfb3515e7610e07d98404af2f67 Validity Not Before: Dec 26 14:01:17 2025 GMT Not After : Dec 27 14:01:17 2025 GMT Subject: CN=1e0bea039c034192a6f177cda16df81c88b80db0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:ff:ec:24:81:64:8f:b2:b9:22:39:ac:8f:34: bf:ef:50:9c:02:3c:ad:13:f1:42:7b:34:45:25:f8: 15:ac:96:f5:c8:25:83:ab:9e:85:b4:f4:04:f7:c6: 08:7e:56:0b:60:19:c1:d0:db:c7:a3:04:8c:de:f3: 5c:37:84:b3:51:5a:bf:6e:54:08:a0:4f:0f:b8:14: 88:fc:f5:8e:45:be:bb:ba:09:5d:a7:88:02:b0:57: 42:31:3d:29:91:75:4b:c7:0b:21:96:19:77:36:c4: c2:32:14:ad:0e:eb:75:df:80:8f:91:47:66:34:84: 5a:f8:c3:f1:64:e9:8f:14:98:12:88:af:14:cd:8c: c0:6d:dc:61:44:c1:67:12:85:8b:05:c2:4b:9e:97: 36:5c:9f:8b:68:6b:30:55:41:96:73:8e:d2:f5:49: 3c:4f:4d:9e:8f:f6:a1:d7:32:92:9b:e2:4a:f5:a2: ba:b8:34:de:c2:2e:18:18:40:3a:44:1d:bb:f1:67: ce:b9:74:99:ef:2b:7b:e8:a9:e6:af:50:95:fc:d6: a5:c0:af:f9:a0:2d:e2:9e:dd:f5:23:79:c7:fd:3d: 77:2f:8c:1d:77:df:19:b1:a3:6b:26:0b:9f:fa:37: 5c:72:c2:62:a3:a4:cd:01:16:aa:8c:1f:22:23:0c: 89:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:0B:EA:03:9C:03:41:92:A6:F1:77:CD:A1:6D:F8:1C:88:B8:0D:B0 X509v3 Authority Key Identifier: keyid:C9:DF:0B:1B:6C:A1:8B:FB:35:15:E7:61:0E:07:D9:84:04:AF:2F:67 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yd8LG2yhi_s1FedhDgfZhASvL2c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/4485b8-3976-4282-8b6a-47c0f54032b8/1/yd8LG2yhi_s1FedhDgfZhASvL2c.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/53/4485b8-3976-4282-8b6a-47c0f54032b8/1/yd8LG2yhi_s1FedhDgfZhASvL2c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 06:37:f3:d3:1c:3a:8a:2f:76:a5:41:05:b4:e9:3b:4f:8e:e0: 16:f5:69:98:ca:dd:7a:d7:fa:fa:7a:08:e3:ec:bd:6d:40:d4: 8c:11:4f:e3:4d:6e:bb:01:4f:e4:5c:55:35:aa:68:68:73:52: 38:89:2f:6d:ff:b7:ce:27:5e:b3:ec:eb:22:e4:d8:57:cc:68: 1e:32:89:b1:0d:b1:bc:25:a3:be:1d:59:c3:d9:a3:6b:8f:2e: 3b:20:61:4a:e6:45:42:c9:04:4f:af:48:af:3a:2a:18:64:78: 59:33:13:5b:f9:b8:cc:d1:6d:74:ef:e3:d4:0c:f9:2d:a9:90: 2c:7f:5c:86:64:46:06:9d:74:a5:0c:42:95:d9:e6:87:35:97: 94:a3:09:df:a8:84:85:c6:3c:b9:18:d6:1e:b6:17:11:c6:f1: 44:41:a6:e4:44:7d:2d:c4:b9:d6:b0:fe:1d:64:1b:59:ec:e2: 79:3c:b9:18:62:03:f6:11:07:dc:8d:5b:a3:9f:a2:8c:c5:ed: e1:10:3d:52:91:28:d2:3a:fa:cb:74:7c:57:b2:60:3a:8c:42: 9f:b3:ef:03:8a:7b:96:ef:e1:a6:d4:a0:50:74:67:9b:3e:a4: 34:b3:84:0f:ae:9c:a9:94:20:dc:37:01:57:41:23:cc:e9:0f: 37:43:bf:4d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZta9rjtuPMSbF+0PvMZjLenMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM5ZGYwYjFiNmNhMThiZmIzNTE1ZTc2MTBlMDdkOTg0MDRh ZjJmNjcwHhcNMjUxMjI2MTQwMTE3WhcNMjUxMjI3MTQwMTE3WjAzMTEwLwYDVQQD EygxZTBiZWEwMzljMDM0MTkyYTZmMTc3Y2RhMTZkZjgxYzg4YjgwZGIwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4v/sJIFkj7K5IjmsjzS/71CcAjyt E/FCezRFJfgVrJb1yCWDq56FtPQE98YIflYLYBnB0NvHowSM3vNcN4SzUVq/blQI oE8PuBSI/PWORb67ugldp4gCsFdCMT0pkXVLxwshlhl3NsTCMhStDut134CPkUdm NIRa+MPxZOmPFJgSiK8UzYzAbdxhRMFnEoWLBcJLnpc2XJ+LaGswVUGWc47S9Uk8 T02ej/ah1zKSm+JK9aK6uDTewi4YGEA6RB278WfOuXSZ7yt76Knmr1CV/NalwK/5 oC3int31I3nH/T13L4wdd98ZsaNrJguf+jdccsJio6TNARaqjB8iIwyJIwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFB4L6gOcA0GSpvF3zaFt+ByIuA2wMB8GA1UdIwQY MBaAFMnfCxtsoYv7NRXnYQ4H2YQEry9nMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveWQ4TEcyeWhpX3MxRmVkaERnZlpoQVN2TDJjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81My80NDg1YjgtMzk3Ni00MjgyLThiNmEt NDdjMGY1NDAzMmI4LzEveWQ4TEcyeWhpX3MxRmVkaERnZlpoQVN2TDJjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81My80NDg1YjgtMzk3Ni00MjgyLThiNmEtNDdjMGY1NDAzMmI4 LzEveWQ4TEcyeWhpX3MxRmVkaERnZlpoQVN2TDJjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABjfz0xw6 ii92pUEFtOk7T47gFvVpmMrdetf6+noI4+y9bUDUjBFP401uuwFP5FxVNapoaHNS OIkvbf+3zides+zrIuTYV8xoHjKJsQ2xvCWjvh1Zw9mja48uOyBhSuZFQskET69I rzoqGGR4WTMTW/m4zNFtdO/j1Az5LamQLH9chmRGBp10pQxCldnmhzWXlKMJ36iE hcY8uRjWHrYXEcbxREGm5ER9LcS51rD+HWQbWezieTy5GGID9hEH3I1bo5+ijMXt 4RA9UpEo0jr6y3R8V7JgOoxCn7PvA4p7lu/hptSgUHRnmz6kNLOED66cqZQg3DcB V0EjzOkPN0O/TQ== -----END CERTIFICATE-----Generated at Fri Dec 26 15:43:38 2025 by rpki-client