This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/6062af-53bc-435d-b5fb-a118498325f7/1/YcXtDe2GJbMrZTMgcinyxGclmEg.mft File: YcXtDe2GJbMrZTMgcinyxGclmEg.mft (raw, json) Hash identifier: 5hZMCPzST72L42GaKyhrb+bFMWFEiHh/QMHv/CgvcKw= Subject key identifier: 55:A1:E4:DD:DA:44:34:60:B6:B5:55:02:44:6F:62:EF:ED:8F:54:FB Authority key identifier: 61:C5:ED:0D:ED:86:25:B3:2B:65:33:20:72:29:F2:C4:67:25:98:48 Certificate issuer: /CN=61c5ed0ded8625b32b6533207229f2c467259848 Certificate serial: 019B4ADEB61E790BB778B084D60B386EC1A5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YcXtDe2GJbMrZTMgcinyxGclmEg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/6062af-53bc-435d-b5fb-a118498325f7/1/YcXtDe2GJbMrZTMgcinyxGclmEg.mft Manifest number: 1790 Signing time: Tue 23 Dec 2025 11:01:08 +0000 Manifest this update: Tue 23 Dec 2025 11:01:08 +0000 Manifest next update: Wed 24 Dec 2025 11:01:08 +0000 Files and hashes: 1: CYWLmYxcCQgki-Xk5YRvuSHALzs.roa (hash: 61Fic0FYH+kK7MaPnl8UV3ohGlvf2gRHDh8nlfVoQGY=) 2: YcXtDe2GJbMrZTMgcinyxGclmEg.crl (hash: fnfDT6GOxYREpYAjmGD7eN4GOcEyzO8VjI5brzhuZEQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/6062af-53bc-435d-b5fb-a118498325f7/1/YcXtDe2GJbMrZTMgcinyxGclmEg.crl rsync://rpki.ripe.net/repository/DEFAULT/59/6062af-53bc-435d-b5fb-a118498325f7/1/YcXtDe2GJbMrZTMgcinyxGclmEg.mft rsync://rpki.ripe.net/repository/DEFAULT/YcXtDe2GJbMrZTMgcinyxGclmEg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 24 Dec 2025 09:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:4a:de:b6:1e:79:0b:b7:78:b0:84:d6:0b:38:6e:c1:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=61c5ed0ded8625b32b6533207229f2c467259848 Validity Not Before: Dec 23 11:01:08 2025 GMT Not After : Dec 24 11:01:08 2025 GMT Subject: CN=55a1e4ddda443460b6b55502446f62efed8f54fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:bc:fc:18:b8:3c:56:e0:29:4f:57:13:c4:4b: 98:cd:a2:0c:8d:50:10:55:a8:d6:79:59:eb:a7:85: 95:34:85:9e:d2:ed:96:de:a6:0e:5a:43:d7:58:19: 06:90:87:6a:a8:09:21:7c:d7:ec:35:8c:53:08:06: b7:72:a0:78:f9:e7:4a:17:a9:56:a5:40:c7:cd:4b: cf:fc:f3:d3:9a:fe:66:ec:5c:55:3c:97:15:93:75: c9:a0:a6:c4:9b:39:cc:fa:1d:7f:15:39:a8:15:05: 74:77:d5:ba:e9:69:ff:83:be:ca:47:43:85:87:73: dc:c6:57:09:f5:f1:33:11:27:67:db:24:a9:02:2a: 35:27:2c:e6:c3:c7:2f:fc:ba:ef:46:58:61:91:08: 7a:56:1c:f4:01:6f:54:9a:e4:09:95:d6:c1:22:dd: f6:58:3f:40:f7:d7:76:a0:51:a7:d6:5a:eb:f2:3b: 66:92:6d:ad:35:91:3d:f9:ca:6c:86:f3:97:59:65: 46:98:2e:0e:3f:ea:6d:ca:a4:6a:d0:eb:03:89:67: e2:4c:01:ec:8c:65:6f:df:ab:ef:05:9f:98:ad:1c: e9:c2:1e:43:3f:b8:4b:fb:29:de:76:4d:07:ea:d8: 09:eb:9f:b3:2a:38:77:3e:03:9f:55:61:92:dd:9f: a4:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:A1:E4:DD:DA:44:34:60:B6:B5:55:02:44:6F:62:EF:ED:8F:54:FB X509v3 Authority Key Identifier: keyid:61:C5:ED:0D:ED:86:25:B3:2B:65:33:20:72:29:F2:C4:67:25:98:48 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YcXtDe2GJbMrZTMgcinyxGclmEg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/6062af-53bc-435d-b5fb-a118498325f7/1/YcXtDe2GJbMrZTMgcinyxGclmEg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/59/6062af-53bc-435d-b5fb-a118498325f7/1/YcXtDe2GJbMrZTMgcinyxGclmEg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 16:ba:7a:88:ed:a1:63:63:2b:2e:3a:ce:e6:c0:2e:54:f9:f9: 71:ca:5f:7f:c9:6c:a8:2f:44:05:3b:d1:f1:63:68:72:b4:13: c7:b9:2c:57:8a:68:12:9d:a8:18:bf:bb:e6:a4:8d:c3:bb:17: 9a:0b:ce:07:6c:a1:68:7b:c4:63:e3:59:98:97:19:22:0b:51: 92:c7:13:2e:ee:0c:3a:d9:1d:7b:65:41:12:1f:89:ea:42:e1: 25:6a:5b:13:02:96:b5:fe:c6:fa:b5:eb:8f:da:4f:0d:0d:b2: 2b:10:98:04:12:31:2a:88:08:8e:45:95:ad:70:10:27:4e:19: 7e:84:64:1b:dd:23:22:e4:f7:c6:d1:3e:f7:39:51:5e:76:32: 3d:5f:cd:11:b2:79:5c:ad:74:42:73:58:65:01:9f:2f:d5:ca: 95:49:97:ca:2c:d5:48:0a:89:33:c4:ee:88:b5:d7:ac:0e:47: bf:c5:18:25:9c:6f:38:6b:dc:2c:08:3c:37:e2:c8:a8:f4:22: 8e:c9:05:00:99:7e:97:8c:fe:4e:20:8f:37:9f:14:4d:09:55: 3e:eb:24:a8:4a:14:da:14:ee:bf:f7:d5:75:0b:d6:2f:db:77: 9e:0a:84:f7:1a:7f:0a:e1:eb:85:02:fb:39:1b:73:64:66:e2: f6:f9:16:60 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtK3rYeeQu3eLCE1gs4bsGlMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYxYzVlZDBkZWQ4NjI1YjMyYjY1MzMyMDcyMjlmMmM0Njcy NTk4NDgwHhcNMjUxMjIzMTEwMTA4WhcNMjUxMjI0MTEwMTA4WjAzMTEwLwYDVQQD Eyg1NWExZTRkZGRhNDQzNDYwYjZiNTU1MDI0NDZmNjJlZmVkOGY1NGZiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs7z8GLg8VuApT1cTxEuYzaIMjVAQ VajWeVnrp4WVNIWe0u2W3qYOWkPXWBkGkIdqqAkhfNfsNYxTCAa3cqB4+edKF6lW pUDHzUvP/PPTmv5m7FxVPJcVk3XJoKbEmznM+h1/FTmoFQV0d9W66Wn/g77KR0OF h3PcxlcJ9fEzESdn2ySpAio1Jyzmw8cv/LrvRlhhkQh6Vhz0AW9UmuQJldbBIt32 WD9A99d2oFGn1lrr8jtmkm2tNZE9+cpshvOXWWVGmC4OP+ptyqRq0OsDiWfiTAHs jGVv36vvBZ+YrRzpwh5DP7hL+ynedk0H6tgJ65+zKjh3PgOfVWGS3Z+kdQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFWh5N3aRDRgtrVVAkRvYu/tj1T7MB8GA1UdIwQY MBaAFGHF7Q3thiWzK2UzIHIp8sRnJZhIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWWNYdERlMkdKYk1yWlRNZ2Npbnl4R2NsbUVnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OS82MDYyYWYtNTNiYy00MzVkLWI1ZmIt YTExODQ5ODMyNWY3LzEvWWNYdERlMkdKYk1yWlRNZ2Npbnl4R2NsbUVnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OS82MDYyYWYtNTNiYy00MzVkLWI1ZmItYTExODQ5ODMyNWY3 LzEvWWNYdERlMkdKYk1yWlRNZ2Npbnl4R2NsbUVnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFrp6iO2h Y2MrLjrO5sAuVPn5ccpff8lsqC9EBTvR8WNocrQTx7ksV4poEp2oGL+75qSNw7sX mgvOB2yhaHvEY+NZmJcZIgtRkscTLu4MOtkde2VBEh+J6kLhJWpbEwKWtf7G+rXr j9pPDQ2yKxCYBBIxKogIjkWVrXAQJ04ZfoRkG90jIuT3xtE+9zlRXnYyPV/NEbJ5 XK10QnNYZQGfL9XKlUmXyizVSAqJM8TuiLXXrA5Hv8UYJZxvOGvcLAg8N+LIqPQi jskFAJl+l4z+TiCPN58UTQlVPuskqEoU2hTuv/fVdQvWL9t3ngqE9xp/CuHrhQL7 ORtzZGbi9vkWYA== -----END CERTIFICATE-----Generated at Tue Dec 23 14:54:03 2025 by rpki-client