This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/682b07-773f-46fd-82e2-b9211e1fc1ac/1/yda1mpPjJAg_vKQjfkfp9evzcas.mft File: yda1mpPjJAg_vKQjfkfp9evzcas.mft (raw, json) Hash identifier: H1obbUvKjmnB9YtM9N2kT3dMNrMEryEWWD1Ecv239NY= Subject key identifier: 47:0D:BC:1F:E6:C9:CA:2B:33:D5:3F:55:CB:94:11:14:C3:F5:1F:C4 Authority key identifier: C9:D6:B5:9A:93:E3:24:08:3F:BC:A4:23:7E:47:E9:F5:EB:F3:71:AB Certificate issuer: /CN=c9d6b59a93e324083fbca4237e47e9f5ebf371ab Certificate serial: 019AFA30514E5F11DEDA2C90620BAEB4CB66 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yda1mpPjJAg_vKQjfkfp9evzcas.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/682b07-773f-46fd-82e2-b9211e1fc1ac/1/yda1mpPjJAg_vKQjfkfp9evzcas.mft Manifest number: 178C Signing time: Sun 07 Dec 2025 19:01:01 +0000 Manifest this update: Sun 07 Dec 2025 19:01:01 +0000 Manifest next update: Mon 08 Dec 2025 19:01:01 +0000 Files and hashes: 1: N1MG3ptUi6lRkgCQgC4sjQwbS5E.roa (hash: JXk8TsLqv4eNpEsTxzdAoUG6ec7BUvgM4Lyhjc+WI9U=) 2: pMIZZEHYcO0IlQ8lJ-JaDY1xnJs.roa (hash: KI7tUZnJYI1JaBjFs0d5L727l5SVVoE+xByQFUZQZZI=) 3: uiLIHzK4-mf16_OjnZc2yUpW0us.roa (hash: RlQY7OlYxlif+RwnDDphDKPVhonzC8U4YVG2wYszXJM=) 4: wmxHtvcKqJtTUqnf5sR3cyCPMeg.roa (hash: /EPsVJFiMZ3O3IoH+IOAZdQSfyIhjr2V/FlxWvt6e5c=) 5: xF5VKoGOYu4SuTkWFtzR0bzZqmI.roa (hash: rdwu1BaRed5RxmIo/GH4jXiyNp3cFaIjeNX4kVrFm70=) 6: yda1mpPjJAg_vKQjfkfp9evzcas.crl (hash: 1sRP7HV0ezPOgUEEvEvWjwcmelgY0c8IL0YYCLztC+M=) 7: zPFc5xzrxxMWf2K11uBlgIiWqTo.roa (hash: 3x/T35aDdfP5Wrtlu3UJYc2NEgecLDM5KH+dyoNyYx0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/682b07-773f-46fd-82e2-b9211e1fc1ac/1/yda1mpPjJAg_vKQjfkfp9evzcas.crl rsync://rpki.ripe.net/repository/DEFAULT/57/682b07-773f-46fd-82e2-b9211e1fc1ac/1/yda1mpPjJAg_vKQjfkfp9evzcas.mft rsync://rpki.ripe.net/repository/DEFAULT/yda1mpPjJAg_vKQjfkfp9evzcas.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 08 Dec 2025 17:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:fa:30:51:4e:5f:11:de:da:2c:90:62:0b:ae:b4:cb:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c9d6b59a93e324083fbca4237e47e9f5ebf371ab Validity Not Before: Dec 7 19:01:01 2025 GMT Not After : Dec 8 19:01:01 2025 GMT Subject: CN=470dbc1fe6c9ca2b33d53f55cb941114c3f51fc4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:0d:06:3f:ad:47:d2:50:19:44:a4:0d:40:cb: c6:e1:62:51:01:b8:b9:fd:3a:16:83:02:60:eb:7a: 0b:02:cd:a8:ed:4f:d7:71:93:e3:51:84:dd:cc:27: c7:d2:5e:45:10:a6:e5:89:4e:00:f9:a9:1b:db:2b: 26:63:6f:e7:59:79:a1:b5:34:d7:32:a8:ff:e1:ac: 61:44:8d:e6:17:09:c9:ca:26:7c:79:4c:41:31:f2: a8:a7:01:0b:01:a6:55:d1:c9:c1:cd:8b:4d:04:5d: 42:c1:ee:b0:02:ec:5e:70:79:0f:03:e2:f8:c0:cd: c6:a4:6d:38:0d:d4:26:28:d3:49:de:c4:e0:f9:8f: 93:c2:ee:16:1d:f0:21:9f:45:29:84:54:2d:d2:67: ef:31:ec:4f:01:03:86:d1:b4:90:8d:f4:46:54:9c: ad:1c:13:98:2a:af:3e:fe:23:57:45:a3:de:3e:3f: 02:95:b3:6a:5d:e6:be:6c:e9:c2:2d:aa:84:6f:34: 80:a4:4c:5d:22:59:21:80:f7:32:6e:46:9f:9f:25: c6:55:b4:aa:8a:b2:49:81:1e:33:18:c9:9a:c6:2e: e8:26:d1:b8:6e:88:9a:a9:fc:de:b9:a6:5b:9b:ee: bd:b7:c6:9f:de:de:fd:1b:ef:27:64:34:17:6e:aa: c3:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:0D:BC:1F:E6:C9:CA:2B:33:D5:3F:55:CB:94:11:14:C3:F5:1F:C4 X509v3 Authority Key Identifier: keyid:C9:D6:B5:9A:93:E3:24:08:3F:BC:A4:23:7E:47:E9:F5:EB:F3:71:AB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yda1mpPjJAg_vKQjfkfp9evzcas.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/682b07-773f-46fd-82e2-b9211e1fc1ac/1/yda1mpPjJAg_vKQjfkfp9evzcas.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/57/682b07-773f-46fd-82e2-b9211e1fc1ac/1/yda1mpPjJAg_vKQjfkfp9evzcas.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 28:9f:e5:41:8b:ed:bb:17:cd:bb:bc:1e:ea:1b:da:71:86:41: d7:cb:38:42:a4:83:5a:69:51:c6:8b:52:85:5a:57:ab:b1:20: 09:b0:f2:57:ec:df:ce:a3:e2:87:e7:87:58:09:08:95:f2:73: 56:cf:5e:12:62:6b:68:88:0e:12:6b:cf:11:ce:80:ad:69:81: b0:98:5e:89:0c:7d:7b:79:30:57:27:de:a9:c7:19:1c:45:08: b5:db:52:f0:9a:f1:f9:84:76:a8:4c:c8:ef:4e:52:3e:e7:da: a5:77:a3:7e:39:d5:63:33:ae:ad:e0:8e:8a:42:0e:cc:8c:39: a8:a5:25:dc:5e:5e:2a:f5:c4:63:f9:c2:8f:86:3f:c4:b2:95: a3:c5:64:6a:d4:6c:95:df:8c:b5:a2:91:6c:c2:10:49:87:64: b5:fe:08:65:84:21:6d:23:7a:fb:74:33:33:a9:e7:ad:a6:6c: 53:47:d8:fb:66:45:1a:8e:57:a2:13:72:71:09:aa:04:0a:42: e6:6d:b4:b5:14:73:89:c9:c9:71:12:d1:43:20:9f:2f:5b:c3: d4:c3:7c:a2:f9:b1:f3:96:1e:81:49:8a:36:81:43:54:fc:d8: cf:5d:ac:19:45:ca:06:89:84:a8:1a:2b:3d:ca:82:3c:59:d6: c0:ac:41:d9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr6MFFOXxHe2iyQYguutMtmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM5ZDZiNTlhOTNlMzI0MDgzZmJjYTQyMzdlNDdlOWY1ZWJm MzcxYWIwHhcNMjUxMjA3MTkwMTAxWhcNMjUxMjA4MTkwMTAxWjAzMTEwLwYDVQQD Eyg0NzBkYmMxZmU2YzljYTJiMzNkNTNmNTVjYjk0MTExNGMzZjUxZmM0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApg0GP61H0lAZRKQNQMvG4WJRAbi5 /ToWgwJg63oLAs2o7U/XcZPjUYTdzCfH0l5FEKbliU4A+akb2ysmY2/nWXmhtTTX Mqj/4axhRI3mFwnJyiZ8eUxBMfKopwELAaZV0cnBzYtNBF1Cwe6wAuxecHkPA+L4 wM3GpG04DdQmKNNJ3sTg+Y+Twu4WHfAhn0UphFQt0mfvMexPAQOG0bSQjfRGVJyt HBOYKq8+/iNXRaPePj8ClbNqXea+bOnCLaqEbzSApExdIlkhgPcybkafnyXGVbSq irJJgR4zGMmaxi7oJtG4boiaqfzeuaZbm+69t8af3t79G+8nZDQXbqrD1QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEcNvB/mycorM9U/VcuUERTD9R/EMB8GA1UdIwQY MBaAFMnWtZqT4yQIP7ykI35H6fXr83GrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveWRhMW1wUGpKQWdfdktRamZrZnA5ZXZ6Y2FzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ny82ODJiMDctNzczZi00NmZkLTgyZTIt YjkyMTFlMWZjMWFjLzEveWRhMW1wUGpKQWdfdktRamZrZnA5ZXZ6Y2FzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Ny82ODJiMDctNzczZi00NmZkLTgyZTItYjkyMTFlMWZjMWFj LzEveWRhMW1wUGpKQWdfdktRamZrZnA5ZXZ6Y2FzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKJ/lQYvt uxfNu7we6hvacYZB18s4QqSDWmlRxotShVpXq7EgCbDyV+zfzqPih+eHWAkIlfJz Vs9eEmJraIgOEmvPEc6ArWmBsJheiQx9e3kwVyfeqccZHEUItdtS8Jrx+YR2qEzI 705SPufapXejfjnVYzOureCOikIOzIw5qKUl3F5eKvXEY/nCj4Y/xLKVo8VkatRs ld+MtaKRbMIQSYdktf4IZYQhbSN6+3QzM6nnraZsU0fY+2ZFGo5XohNycQmqBApC 5m20tRRzicnJcRLRQyCfL1vD1MN8ovmx85YegUmKNoFDVPzYz12sGUXKBomEqBor PcqCPFnWwKxB2Q== -----END CERTIFICATE-----Generated at Mon Dec 8 02:57:10 2025 by rpki-client