This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/297d54-bd82-42e0-9c42-6fdbca600e00/1/yN8zfOpWoIP0a3mQcucNo0XMI2Q.mft File: yN8zfOpWoIP0a3mQcucNo0XMI2Q.mft (raw, json) Hash identifier: KQJxXFMoR/j1k4m8zC+y73j46PxiBmzioFDd7fChaUA= Subject key identifier: BC:9B:C0:21:F4:FB:C3:6D:BA:79:87:59:F8:00:C8:20:8C:3F:16:30 Authority key identifier: C8:DF:33:7C:EA:56:A0:83:F4:6B:79:90:72:E7:0D:A3:45:CC:23:64 Certificate issuer: /CN=c8df337cea56a083f46b799072e70da345cc2364 Certificate serial: 019B5A1AE8E29FCEEC0AC1669BA854C261B0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yN8zfOpWoIP0a3mQcucNo0XMI2Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/297d54-bd82-42e0-9c42-6fdbca600e00/1/yN8zfOpWoIP0a3mQcucNo0XMI2Q.mft Manifest number: 1797 Signing time: Fri 26 Dec 2025 10:01:11 +0000 Manifest this update: Fri 26 Dec 2025 10:01:11 +0000 Manifest next update: Sat 27 Dec 2025 10:01:11 +0000 Files and hashes: 1: yEMlFNYIo_7PBG15hC66LWSw4E0.roa (hash: 0NF8QaEpF30c3qMJTec6Bga4N+I8Ns4AqntJ51k9D0k=) 2: yN8zfOpWoIP0a3mQcucNo0XMI2Q.crl (hash: yFVep3TQWlWhTlD7LMMLcPnWT/aOFjGfnR2s/yp+WNU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/297d54-bd82-42e0-9c42-6fdbca600e00/1/yN8zfOpWoIP0a3mQcucNo0XMI2Q.crl rsync://rpki.ripe.net/repository/DEFAULT/55/297d54-bd82-42e0-9c42-6fdbca600e00/1/yN8zfOpWoIP0a3mQcucNo0XMI2Q.mft rsync://rpki.ripe.net/repository/DEFAULT/yN8zfOpWoIP0a3mQcucNo0XMI2Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5a:1a:e8:e2:9f:ce:ec:0a:c1:66:9b:a8:54:c2:61:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c8df337cea56a083f46b799072e70da345cc2364 Validity Not Before: Dec 26 10:01:11 2025 GMT Not After : Dec 27 10:01:11 2025 GMT Subject: CN=bc9bc021f4fbc36dba798759f800c8208c3f1630 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:17:80:c1:6b:05:3f:46:45:64:be:94:3b:3c: a3:61:52:db:08:8d:1e:ed:4a:91:92:ef:33:87:a4: 3b:40:ec:86:58:4b:f0:2e:8d:0f:4a:44:0b:5c:57: 65:cb:6f:9b:45:b2:e1:77:f5:57:2e:14:d1:21:ff: c6:92:a7:c0:19:74:a6:9c:07:8a:00:bc:db:0e:52: 98:dc:a5:9c:1e:66:35:14:09:2a:a4:2f:7e:35:8c: a6:f2:5f:56:d7:b8:cc:ea:7f:d5:ba:27:82:36:6f: dd:32:8f:bb:ee:9a:53:71:3f:ff:40:41:36:39:f6: 66:94:6e:6f:90:ca:06:ad:37:57:33:f2:11:53:8d: 9f:43:c8:60:d3:89:be:14:1f:ba:48:29:93:b2:8a: 8c:19:c4:55:6d:8f:b1:cd:6f:4f:3f:49:f8:4d:d5: e3:fa:df:c4:71:c1:fb:65:a1:46:ae:71:33:59:06: fd:8e:2b:65:4a:8c:c6:7f:6c:9d:35:e0:23:60:3a: 6f:19:f5:8b:ee:6a:d0:44:28:bf:df:44:63:3a:94: ab:24:f4:a1:6f:98:8e:50:05:c4:44:62:17:bf:2a: f5:dc:06:0b:89:e1:c0:24:61:1e:b8:53:2d:54:43: 98:93:68:b3:3e:dc:37:ce:04:93:c4:e7:31:07:ac: 8e:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:9B:C0:21:F4:FB:C3:6D:BA:79:87:59:F8:00:C8:20:8C:3F:16:30 X509v3 Authority Key Identifier: keyid:C8:DF:33:7C:EA:56:A0:83:F4:6B:79:90:72:E7:0D:A3:45:CC:23:64 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yN8zfOpWoIP0a3mQcucNo0XMI2Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/297d54-bd82-42e0-9c42-6fdbca600e00/1/yN8zfOpWoIP0a3mQcucNo0XMI2Q.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/55/297d54-bd82-42e0-9c42-6fdbca600e00/1/yN8zfOpWoIP0a3mQcucNo0XMI2Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9c:47:27:fc:bf:2f:c3:e2:45:74:61:3b:1f:57:c6:30:b4:ec: 3c:e3:f2:e6:92:43:63:9f:92:3f:6c:a0:78:4d:dc:07:dd:8f: 04:9b:f5:a8:f6:89:b4:34:1d:ed:4d:d8:45:cf:42:70:94:11: 96:b1:9d:7a:68:6c:b7:91:02:63:ba:8a:0b:6a:1a:22:8f:3e: 4a:a8:b1:e7:f8:b7:1d:10:d3:e6:c4:5d:51:cf:b0:c0:28:fb: 83:50:91:66:3f:2a:9f:ea:ab:d5:4d:de:08:5c:a2:00:af:67: 6c:d7:3b:e3:08:0a:a9:2c:36:08:5f:44:fa:c9:2f:73:f8:37: 09:c9:4b:71:29:4f:4d:ca:3c:f9:03:51:76:77:2f:ab:09:ee: e0:6c:c1:ed:52:b7:ac:30:a5:c5:89:af:13:bd:cd:74:6b:08: b9:cd:c9:5c:2d:a0:4e:99:a9:48:c6:2f:79:3b:12:a5:22:d5: e1:18:11:3f:a2:66:25:a5:63:8b:9e:23:3e:dc:d8:7c:14:6c: 59:c7:63:c1:cb:d4:fe:ae:d2:49:d5:bf:a8:a6:ad:c5:79:08: 9e:0d:61:95:20:3d:14:2f:1e:d3:fd:49:6d:df:0e:43:60:f5: 76:1c:32:dc:db:df:1a:ff:0e:35:61:01:a2:2e:b5:44:66:07: 63:9d:bb:17 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtaGujin87sCsFmm6hUwmGwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM4ZGYzMzdjZWE1NmEwODNmNDZiNzk5MDcyZTcwZGEzNDVj YzIzNjQwHhcNMjUxMjI2MTAwMTExWhcNMjUxMjI3MTAwMTExWjAzMTEwLwYDVQQD EyhiYzliYzAyMWY0ZmJjMzZkYmE3OTg3NTlmODAwYzgyMDhjM2YxNjMwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3heAwWsFP0ZFZL6UOzyjYVLbCI0e 7UqRku8zh6Q7QOyGWEvwLo0PSkQLXFdly2+bRbLhd/VXLhTRIf/GkqfAGXSmnAeK ALzbDlKY3KWcHmY1FAkqpC9+NYym8l9W17jM6n/VuieCNm/dMo+77ppTcT//QEE2 OfZmlG5vkMoGrTdXM/IRU42fQ8hg04m+FB+6SCmTsoqMGcRVbY+xzW9PP0n4TdXj +t/EccH7ZaFGrnEzWQb9jitlSozGf2ydNeAjYDpvGfWL7mrQRCi/30RjOpSrJPSh b5iOUAXERGIXvyr13AYLieHAJGEeuFMtVEOYk2izPtw3zgSTxOcxB6yOnwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLybwCH0+8NtunmHWfgAyCCMPxYwMB8GA1UdIwQY MBaAFMjfM3zqVqCD9Gt5kHLnDaNFzCNkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveU44emZPcFdvSVAwYTNtUWN1Y05vMFhNSTJRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NS8yOTdkNTQtYmQ4Mi00MmUwLTljNDIt NmZkYmNhNjAwZTAwLzEveU44emZPcFdvSVAwYTNtUWN1Y05vMFhNSTJRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81NS8yOTdkNTQtYmQ4Mi00MmUwLTljNDItNmZkYmNhNjAwZTAw LzEveU44emZPcFdvSVAwYTNtUWN1Y05vMFhNSTJRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnEcn/L8v w+JFdGE7H1fGMLTsPOPy5pJDY5+SP2ygeE3cB92PBJv1qPaJtDQd7U3YRc9CcJQR lrGdemhst5ECY7qKC2oaIo8+Sqix5/i3HRDT5sRdUc+wwCj7g1CRZj8qn+qr1U3e CFyiAK9nbNc74wgKqSw2CF9E+skvc/g3CclLcSlPTco8+QNRdncvqwnu4GzB7VK3 rDClxYmvE73NdGsIuc3JXC2gTpmpSMYveTsSpSLV4RgRP6JmJaVji54jPtzYfBRs WcdjwcvU/q7SSdW/qKatxXkIng1hlSA9FC8e0/1Jbd8OQ2D1dhwy3NvfGv8ONWEB oi61RGYHY527Fw== -----END CERTIFICATE-----Generated at Fri Dec 26 15:45:18 2025 by rpki-client