This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/72f6cf-9bd4-467a-a92a-5a64a5fc8a64/1/YaXSF3WehhaW_HftmqY7lO2zvn0.mft File: YaXSF3WehhaW_HftmqY7lO2zvn0.mft (raw, json) Hash identifier: ZHdWxAPoFWXeGIN6vnoL/HBZx2h/YwXjGl4GRizZ6Rg= Subject key identifier: 1F:42:CA:CD:DB:2A:63:C5:97:D5:69:44:C9:0F:0E:2C:15:1B:21:42 Authority key identifier: 61:A5:D2:17:75:9E:86:16:96:FC:77:ED:9A:A6:3B:94:ED:B3:BE:7D Certificate issuer: /CN=61a5d217759e861696fc77ed9aa63b94edb3be7d Certificate serial: 019B5977453B8BDFA0116BCA77A228CD1B28 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YaXSF3WehhaW_HftmqY7lO2zvn0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/72f6cf-9bd4-467a-a92a-5a64a5fc8a64/1/YaXSF3WehhaW_HftmqY7lO2zvn0.mft Manifest number: 1727 Signing time: Fri 26 Dec 2025 07:02:27 +0000 Manifest this update: Fri 26 Dec 2025 07:02:27 +0000 Manifest next update: Sat 27 Dec 2025 07:02:27 +0000 Files and hashes: 1: 5fuh3MDvvFTdM9YPWplIlmW8ZkA.roa (hash: Wdi/0+eUolZTOBljIE3hewam0WUu332lXIc8cs32Fgk=) 2: 925S4SchOi83vL3V68Y_AUuJSD8.roa (hash: 6EULq2ShinRvQFwY+uALe+ivLl2vWfr/F3fyELn3cug=) 3: PGmGsgYp4SpOgDQPzfkm2Kp84ms.roa (hash: QvQzg0nCw1e7QpH5gXcvQpoprtCI6UOH6zwCxDuFkv0=) 4: YaXSF3WehhaW_HftmqY7lO2zvn0.crl (hash: IyvYia7U+3ZHnlWg81UGyZrhnvGjpzhqxnj0muIt9vw=) 5: z3s2kSvc4H2ywLCnLljgXCeMKHc.roa (hash: pgMrP+tE9sQxVvQRywnzdq3UOn28MH01XXGUWXVHask=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/72f6cf-9bd4-467a-a92a-5a64a5fc8a64/1/YaXSF3WehhaW_HftmqY7lO2zvn0.crl rsync://rpki.ripe.net/repository/DEFAULT/59/72f6cf-9bd4-467a-a92a-5a64a5fc8a64/1/YaXSF3WehhaW_HftmqY7lO2zvn0.mft rsync://rpki.ripe.net/repository/DEFAULT/YaXSF3WehhaW_HftmqY7lO2zvn0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:77:45:3b:8b:df:a0:11:6b:ca:77:a2:28:cd:1b:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=61a5d217759e861696fc77ed9aa63b94edb3be7d Validity Not Before: Dec 26 07:02:27 2025 GMT Not After : Dec 27 07:02:27 2025 GMT Subject: CN=1f42cacddb2a63c597d56944c90f0e2c151b2142 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:d9:83:9c:35:23:86:fa:65:97:83:bb:59:71: 61:6b:39:f9:be:22:3a:cb:d9:19:99:dc:5d:5a:d2: e2:f1:95:35:ef:c9:fb:2e:87:1c:6c:2c:cc:91:9c: 08:9d:a3:a5:7b:ed:f8:70:fc:12:9e:3f:3d:1b:aa: 52:1d:0e:e2:9d:20:d0:e7:32:86:66:3f:b7:0a:33: 1a:72:4e:fd:c5:1b:03:1e:91:c9:b4:1d:8e:77:0c: 2f:a9:7b:0d:b3:5a:60:6e:73:c6:19:43:6a:8c:5d: c5:d4:e3:10:70:36:50:17:90:76:5a:cb:b4:6f:25: 6e:74:ba:1d:06:65:e4:bd:ae:46:0c:c1:64:c0:cf: 0f:8d:e9:0c:7a:89:06:41:48:88:70:3d:d1:1b:a1: 94:af:9e:90:33:ef:17:f2:cb:7a:78:9d:92:b0:bb: 9f:68:9b:fe:1f:df:a4:3c:a3:b9:0c:68:e1:c1:96: 59:8d:63:67:11:d3:ec:56:d9:9e:24:f4:5b:c5:2b: 12:e3:37:25:5b:27:ad:51:9b:77:3a:39:12:e9:47: 24:0c:12:77:8d:02:f8:b4:08:73:c1:2b:67:24:36: 78:52:0a:49:4a:15:c3:ad:48:b8:b2:d2:7f:a8:e6: 45:5d:9f:aa:80:95:81:f7:9a:23:d9:e5:b4:e0:83: c7:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:42:CA:CD:DB:2A:63:C5:97:D5:69:44:C9:0F:0E:2C:15:1B:21:42 X509v3 Authority Key Identifier: keyid:61:A5:D2:17:75:9E:86:16:96:FC:77:ED:9A:A6:3B:94:ED:B3:BE:7D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YaXSF3WehhaW_HftmqY7lO2zvn0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/72f6cf-9bd4-467a-a92a-5a64a5fc8a64/1/YaXSF3WehhaW_HftmqY7lO2zvn0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/59/72f6cf-9bd4-467a-a92a-5a64a5fc8a64/1/YaXSF3WehhaW_HftmqY7lO2zvn0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 27:9f:04:4c:50:36:29:25:49:2f:47:4e:0d:9f:44:54:15:58: 39:16:e6:82:1c:8a:7f:d5:a8:c5:0a:e7:ec:94:23:e7:cc:7b: 03:c8:54:95:fe:1c:98:4d:9a:71:2e:84:10:a0:33:b0:f2:98: f2:4d:b2:fc:f4:61:03:f2:c8:a6:23:04:78:b9:aa:b9:b3:7d: 4a:89:e2:f2:ed:33:af:a3:1f:15:58:66:aa:a7:05:ff:9c:42: 1d:46:13:58:88:ed:04:26:9d:06:43:b1:0b:fb:c3:78:2f:b5: 68:be:f4:d1:e5:3f:9a:65:b2:9f:5d:53:b9:f7:55:ed:a6:b8: e0:dd:48:53:0f:cb:01:3e:af:e7:c2:58:ad:a2:ab:b7:81:33: f4:e5:30:14:b8:d1:9a:2f:6c:75:1a:c9:5b:72:4a:f3:a4:64: 49:af:e4:37:b6:bc:10:a7:d9:06:ac:21:26:13:35:9f:cc:ae: c8:ae:28:f0:74:4a:87:af:7e:16:d1:fe:de:e7:a7:84:ef:4e: c9:42:72:9e:4a:7e:34:ff:00:d9:62:af:cc:07:9e:0c:e4:bf: 55:53:32:2b:6a:f7:c5:fb:32:f7:ed:03:3b:0a:93:d1:2e:09: 33:51:2e:7e:8b:1e:22:c0:5d:84:b4:04:68:4a:c9:b0:3c:2d: dc:b9:4e:cf -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZd0U7i9+gEWvKd6IozRsoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYxYTVkMjE3NzU5ZTg2MTY5NmZjNzdlZDlhYTYzYjk0ZWRi M2JlN2QwHhcNMjUxMjI2MDcwMjI3WhcNMjUxMjI3MDcwMjI3WjAzMTEwLwYDVQQD EygxZjQyY2FjZGRiMmE2M2M1OTdkNTY5NDRjOTBmMGUyYzE1MWIyMTQyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjNmDnDUjhvpll4O7WXFhazn5viI6 y9kZmdxdWtLi8ZU178n7LoccbCzMkZwInaOle+34cPwSnj89G6pSHQ7inSDQ5zKG Zj+3CjMack79xRsDHpHJtB2OdwwvqXsNs1pgbnPGGUNqjF3F1OMQcDZQF5B2Wsu0 byVudLodBmXkva5GDMFkwM8PjekMeokGQUiIcD3RG6GUr56QM+8X8st6eJ2SsLuf aJv+H9+kPKO5DGjhwZZZjWNnEdPsVtmeJPRbxSsS4zclWyetUZt3OjkS6UckDBJ3 jQL4tAhzwStnJDZ4UgpJShXDrUi4stJ/qOZFXZ+qgJWB95oj2eW04IPHhQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFB9Cys3bKmPFl9VpRMkPDiwVGyFCMB8GA1UdIwQY MBaAFGGl0hd1noYWlvx37ZqmO5Tts759MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWWFYU0YzV2VoaGFXX0hmdG1xWTdsTzJ6dm4wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OS83MmY2Y2YtOWJkNC00NjdhLWE5MmEt NWE2NGE1ZmM4YTY0LzEvWWFYU0YzV2VoaGFXX0hmdG1xWTdsTzJ6dm4wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OS83MmY2Y2YtOWJkNC00NjdhLWE5MmEtNWE2NGE1ZmM4YTY0 LzEvWWFYU0YzV2VoaGFXX0hmdG1xWTdsTzJ6dm4wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJ58ETFA2 KSVJL0dODZ9EVBVYORbmghyKf9WoxQrn7JQj58x7A8hUlf4cmE2acS6EEKAzsPKY 8k2y/PRhA/LIpiMEeLmqubN9Soni8u0zr6MfFVhmqqcF/5xCHUYTWIjtBCadBkOx C/vDeC+1aL700eU/mmWyn11TufdV7aa44N1IUw/LAT6v58JYraKrt4Ez9OUwFLjR mi9sdRrJW3JK86RkSa/kN7a8EKfZBqwhJhM1n8yuyK4o8HRKh69+FtH+3uenhO9O yUJynkp+NP8A2WKvzAeeDOS/VVMyK2r3xfsy9+0DOwqT0S4JM1EufoseIsBdhLQE aErJsDwt3LlOzw== -----END CERTIFICATE-----Generated at Fri Dec 26 15:44:07 2025 by rpki-client