This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/6062af-53bc-435d-b5fb-a118498325f7/1/YcXtDe2GJbMrZTMgcinyxGclmEg.mft File: YcXtDe2GJbMrZTMgcinyxGclmEg.mft (raw, json) Hash identifier: jUDuwVQTr4Me0TQh2kgKbWaHluJdDRHxyW2GnNfsO+Y= Subject key identifier: C7:D4:EC:7E:22:EC:28:4A:48:1F:7A:94:34:A0:A1:03:CB:08:90:35 Authority key identifier: 61:C5:ED:0D:ED:86:25:B3:2B:65:33:20:72:29:F2:C4:67:25:98:48 Certificate issuer: /CN=61c5ed0ded8625b32b6533207229f2c467259848 Certificate serial: 019B4324C8ADDD36EA464BA638B2E6D4F5A4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YcXtDe2GJbMrZTMgcinyxGclmEg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/6062af-53bc-435d-b5fb-a118498325f7/1/YcXtDe2GJbMrZTMgcinyxGclmEg.mft Manifest number: 178C Signing time: Sun 21 Dec 2025 23:00:42 +0000 Manifest this update: Sun 21 Dec 2025 23:00:42 +0000 Manifest next update: Mon 22 Dec 2025 23:00:42 +0000 Files and hashes: 1: CYWLmYxcCQgki-Xk5YRvuSHALzs.roa (hash: 61Fic0FYH+kK7MaPnl8UV3ohGlvf2gRHDh8nlfVoQGY=) 2: YcXtDe2GJbMrZTMgcinyxGclmEg.crl (hash: FupzIbLM+ET/tic9Aom63sE9ymDoGWDQxA6u0ZCerag=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/6062af-53bc-435d-b5fb-a118498325f7/1/YcXtDe2GJbMrZTMgcinyxGclmEg.crl rsync://rpki.ripe.net/repository/DEFAULT/59/6062af-53bc-435d-b5fb-a118498325f7/1/YcXtDe2GJbMrZTMgcinyxGclmEg.mft rsync://rpki.ripe.net/repository/DEFAULT/YcXtDe2GJbMrZTMgcinyxGclmEg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 22:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:43:24:c8:ad:dd:36:ea:46:4b:a6:38:b2:e6:d4:f5:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=61c5ed0ded8625b32b6533207229f2c467259848 Validity Not Before: Dec 21 23:00:42 2025 GMT Not After : Dec 22 23:00:42 2025 GMT Subject: CN=c7d4ec7e22ec284a481f7a9434a0a103cb089035 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:97:67:60:97:ee:93:c2:db:d2:6e:c6:69:48: b0:37:d2:b1:44:0c:5c:12:87:45:eb:cb:26:61:43: 29:ac:61:be:02:da:8f:53:77:60:a6:83:e3:73:aa: 14:13:49:c7:0f:e3:4c:55:6d:5d:c0:91:6b:e9:3a: 09:1f:50:55:8e:a5:77:a7:b2:24:16:d6:3a:54:69: 1f:58:5f:72:69:7d:e6:af:e7:16:df:da:b4:64:d6: c6:9a:3c:d4:b2:c5:fa:88:8a:fe:0b:ac:1c:e1:d9: cd:4d:ad:70:ab:ca:b8:41:5a:f8:d0:d5:b8:89:5d: 6b:bd:96:06:a8:da:f4:db:b7:c1:3f:10:ac:48:f8: 51:7c:73:14:37:e5:ab:6c:5d:c8:cb:92:f8:d3:ab: a8:6e:eb:cb:d3:8c:30:fc:d3:bf:50:d3:15:88:14: 10:e4:a0:98:71:22:2d:78:3f:72:4c:5b:dd:e5:61: e4:9c:22:a8:74:c5:0f:57:9c:31:14:01:62:a7:12: 62:fb:44:f5:11:e2:22:a2:77:85:34:9f:2a:7d:c8: e8:3b:2a:46:81:9d:7b:54:75:0e:30:88:c7:8f:14: 3b:04:1e:8d:91:f9:ca:b0:7c:f1:2c:09:94:06:91: da:59:98:0a:1d:fe:ec:b4:8d:47:a3:83:cc:e8:3c: 9e:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:D4:EC:7E:22:EC:28:4A:48:1F:7A:94:34:A0:A1:03:CB:08:90:35 X509v3 Authority Key Identifier: keyid:61:C5:ED:0D:ED:86:25:B3:2B:65:33:20:72:29:F2:C4:67:25:98:48 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YcXtDe2GJbMrZTMgcinyxGclmEg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/6062af-53bc-435d-b5fb-a118498325f7/1/YcXtDe2GJbMrZTMgcinyxGclmEg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/59/6062af-53bc-435d-b5fb-a118498325f7/1/YcXtDe2GJbMrZTMgcinyxGclmEg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 02:e3:f6:d6:81:7f:de:ef:2d:e0:61:d5:d2:f9:60:96:4e:e9: 4a:1a:ce:0f:2b:1b:a2:e6:5b:33:81:b4:94:2c:0c:09:21:14: c2:9f:6b:64:d2:3f:4c:a4:8c:2b:1c:fb:da:e1:72:f0:17:fe: 5b:67:07:7f:cc:43:cc:d7:48:c5:98:94:6d:69:7c:3c:08:04: 8e:96:52:78:97:d3:69:62:1a:a8:75:88:1a:24:6e:ba:81:01: d2:2e:a1:3e:1f:64:c9:de:eb:51:3b:3e:3a:f2:07:25:0d:6f: 8f:59:b8:be:38:aa:b9:ba:9b:10:49:07:f8:88:39:2c:a4:3a: c1:79:da:19:06:6b:2b:4b:be:56:d1:ef:bc:f7:75:01:4d:c9: a2:86:9c:f2:28:af:a0:c0:ad:05:ab:10:9a:6b:bf:33:a3:e8: dc:60:b2:84:f6:9c:fc:52:e2:16:4f:cd:10:70:ff:df:3c:e1: ea:ba:aa:c4:b4:b8:c4:42:63:aa:e8:3f:ab:ad:3d:31:4a:21: f4:8f:d4:22:3e:dc:3e:83:30:1b:19:e7:b9:5c:ce:ca:ca:02: fa:61:c9:b9:b7:8b:e1:74:c8:a4:24:24:0d:c3:60:fa:52:37: e8:aa:1a:db:31:3c:03:e7:9b:d4:c9:ce:f4:81:03:5b:15:37: 11:74:28:20 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtDJMit3TbqRkumOLLm1PWkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYxYzVlZDBkZWQ4NjI1YjMyYjY1MzMyMDcyMjlmMmM0Njcy NTk4NDgwHhcNMjUxMjIxMjMwMDQyWhcNMjUxMjIyMjMwMDQyWjAzMTEwLwYDVQQD EyhjN2Q0ZWM3ZTIyZWMyODRhNDgxZjdhOTQzNGEwYTEwM2NiMDg5MDM1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxpdnYJfuk8Lb0m7GaUiwN9KxRAxc EodF68smYUMprGG+AtqPU3dgpoPjc6oUE0nHD+NMVW1dwJFr6ToJH1BVjqV3p7Ik FtY6VGkfWF9yaX3mr+cW39q0ZNbGmjzUssX6iIr+C6wc4dnNTa1wq8q4QVr40NW4 iV1rvZYGqNr027fBPxCsSPhRfHMUN+WrbF3Iy5L406uobuvL04ww/NO/UNMViBQQ 5KCYcSIteD9yTFvd5WHknCKodMUPV5wxFAFipxJi+0T1EeIioneFNJ8qfcjoOypG gZ17VHUOMIjHjxQ7BB6NkfnKsHzxLAmUBpHaWZgKHf7stI1Ho4PM6DyemwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMfU7H4i7ChKSB96lDSgoQPLCJA1MB8GA1UdIwQY MBaAFGHF7Q3thiWzK2UzIHIp8sRnJZhIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWWNYdERlMkdKYk1yWlRNZ2Npbnl4R2NsbUVnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OS82MDYyYWYtNTNiYy00MzVkLWI1ZmIt YTExODQ5ODMyNWY3LzEvWWNYdERlMkdKYk1yWlRNZ2Npbnl4R2NsbUVnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OS82MDYyYWYtNTNiYy00MzVkLWI1ZmItYTExODQ5ODMyNWY3 LzEvWWNYdERlMkdKYk1yWlRNZ2Npbnl4R2NsbUVnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAuP21oF/ 3u8t4GHV0vlglk7pShrODysbouZbM4G0lCwMCSEUwp9rZNI/TKSMKxz72uFy8Bf+ W2cHf8xDzNdIxZiUbWl8PAgEjpZSeJfTaWIaqHWIGiRuuoEB0i6hPh9kyd7rUTs+ OvIHJQ1vj1m4vjiqubqbEEkH+Ig5LKQ6wXnaGQZrK0u+VtHvvPd1AU3Jooac8iiv oMCtBasQmmu/M6Po3GCyhPac/FLiFk/NEHD/3zzh6rqqxLS4xEJjqug/q609MUoh 9I/UIj7cPoMwGxnnuVzOysoC+mHJubeL4XTIpCQkDcNg+lI36Koa2zE8A+eb1MnO 9IEDWxU3EXQoIA== -----END CERTIFICATE-----Generated at Mon Dec 22 06:50:32 2025 by rpki-client