This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/decde3-277a-4956-bf92-f0a8123e70f9/1/YL83NiAUbm8piugtLIqDccrLexs.mft File: YL83NiAUbm8piugtLIqDccrLexs.mft (raw, json) Hash identifier: qPiCXXEWD/1gei/KicSxDXwa3EBBKSZ2HC7HgVaXj8A= Subject key identifier: 70:2C:3B:AD:76:AB:B1:89:F6:47:80:47:D2:DA:9B:81:23:CB:04:0F Authority key identifier: 60:BF:37:36:20:14:6E:6F:29:8A:E8:2D:2C:8A:83:71:CA:CB:7B:1B Certificate issuer: /CN=60bf373620146e6f298ae82d2c8a8371cacb7b1b Certificate serial: 019B10138D92F2827CEAEEF3100C00B0FB88 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YL83NiAUbm8piugtLIqDccrLexs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/decde3-277a-4956-bf92-f0a8123e70f9/1/YL83NiAUbm8piugtLIqDccrLexs.mft Manifest number: 1771 Signing time: Fri 12 Dec 2025 01:01:15 +0000 Manifest this update: Fri 12 Dec 2025 01:01:15 +0000 Manifest next update: Sat 13 Dec 2025 01:01:15 +0000 Files and hashes: 1: FcPpw1IibzSy4BenkulclpDum4U.roa (hash: HSUDUncC0CCpqaUKBhWSJTD0GmSsEAzCocsfF6H1tqA=) 2: YL83NiAUbm8piugtLIqDccrLexs.crl (hash: Q98Erh2cebLEF4X8wODBltR7iA9pLu62rAT26LkCR+k=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/decde3-277a-4956-bf92-f0a8123e70f9/1/YL83NiAUbm8piugtLIqDccrLexs.crl rsync://rpki.ripe.net/repository/DEFAULT/5b/decde3-277a-4956-bf92-f0a8123e70f9/1/YL83NiAUbm8piugtLIqDccrLexs.mft rsync://rpki.ripe.net/repository/DEFAULT/YL83NiAUbm8piugtLIqDccrLexs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 23:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:10:13:8d:92:f2:82:7c:ea:ee:f3:10:0c:00:b0:fb:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=60bf373620146e6f298ae82d2c8a8371cacb7b1b Validity Not Before: Dec 12 01:01:15 2025 GMT Not After : Dec 13 01:01:15 2025 GMT Subject: CN=702c3bad76abb189f6478047d2da9b8123cb040f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:b9:a3:2f:53:3b:2e:cd:41:bb:63:c1:dd:d6: b1:f1:e3:c6:da:c8:46:0a:57:0c:c3:ab:81:53:6d: f8:62:87:64:9c:a1:c3:d5:48:be:f3:5d:78:e7:bb: 57:99:f5:dd:f7:81:72:f6:9c:82:48:28:2c:78:81: d8:87:08:f0:93:2e:cc:ad:00:47:67:2f:95:b4:18: 18:4d:15:30:57:7b:e7:9b:0b:95:8e:89:7a:3b:b5: 8d:e6:96:ea:ea:24:ab:eb:30:4b:07:ee:bb:98:7a: 39:49:9e:9b:8a:ce:f2:96:27:62:fa:4f:35:6d:ac: aa:4d:4d:0b:cd:af:0e:35:a9:c8:75:86:b4:e5:88: c3:52:4c:10:c5:d0:6d:de:a1:c0:c5:c8:48:c7:b2: da:bd:60:98:49:75:5e:85:15:b2:d2:fa:2c:40:07: 27:ef:8f:86:42:0e:2f:75:aa:4e:fa:38:d8:4c:0c: e4:3d:bf:ea:c3:0b:4a:26:d3:34:2e:12:dd:c9:a3: 8f:be:7f:0a:bf:53:3f:c4:c5:f8:0a:dc:43:c0:fa: f5:fa:62:f0:d0:43:a5:3a:ab:c7:b4:88:9a:67:82: 52:e2:47:88:7b:4c:af:bf:ab:84:b3:cf:36:80:63: 29:bf:1a:b2:26:e4:59:c7:a1:e9:26:9e:c7:42:77: 7c:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:2C:3B:AD:76:AB:B1:89:F6:47:80:47:D2:DA:9B:81:23:CB:04:0F X509v3 Authority Key Identifier: keyid:60:BF:37:36:20:14:6E:6F:29:8A:E8:2D:2C:8A:83:71:CA:CB:7B:1B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YL83NiAUbm8piugtLIqDccrLexs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/decde3-277a-4956-bf92-f0a8123e70f9/1/YL83NiAUbm8piugtLIqDccrLexs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/decde3-277a-4956-bf92-f0a8123e70f9/1/YL83NiAUbm8piugtLIqDccrLexs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 13:e7:8a:c4:3b:fa:5e:2e:01:c3:f7:ee:68:bd:4d:8e:0d:83: 4a:f1:1d:8f:8f:56:c1:49:dc:b8:2c:ed:73:2c:5c:d0:1b:23: f1:03:2c:75:03:a4:fd:9c:d0:7e:1b:da:f4:1b:2d:ea:b5:24: 49:ab:03:7e:c6:d0:b2:6c:c0:e6:e2:f6:0d:82:3d:36:7b:d6: fc:4f:bb:5a:a4:70:4c:0b:b4:bd:09:8b:f8:58:aa:cb:b5:f6: ac:89:2c:60:fc:27:d6:d5:9f:e4:70:c7:9e:76:e1:ef:90:e0: d5:1c:43:c1:52:ea:cd:4e:7b:98:ec:0f:f3:29:ad:16:5a:df: 09:5e:89:45:b5:6a:fa:b7:0b:ff:cd:09:ba:5e:6d:59:70:3b: b8:ea:c1:49:2a:ed:72:8d:5c:e7:55:ef:30:bc:c0:98:57:d1: 66:ad:b9:7a:d0:4f:48:d2:94:7b:47:84:a9:5d:40:18:1f:d5: 19:9c:fd:1f:c5:25:15:53:36:47:e4:7c:05:af:b7:a5:5e:d8: 18:95:0f:24:7b:29:08:18:5a:ef:57:04:c8:b0:15:e3:a9:0f: e7:cc:e4:4f:7f:89:eb:a1:c8:68:e9:62:6d:3a:48:ff:86:68: f5:8e:c8:c6:36:7c:a6:03:ee:a9:3a:df:d8:36:f3:f0:70:11: 80:9e:91:f9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsQE42S8oJ86u7zEAwAsPuIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwYmYzNzM2MjAxNDZlNmYyOThhZTgyZDJjOGE4MzcxY2Fj YjdiMWIwHhcNMjUxMjEyMDEwMTE1WhcNMjUxMjEzMDEwMTE1WjAzMTEwLwYDVQQD Eyg3MDJjM2JhZDc2YWJiMTg5ZjY0NzgwNDdkMmRhOWI4MTIzY2IwNDBmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi7mjL1M7Ls1Bu2PB3dax8ePG2shG ClcMw6uBU234YodknKHD1Ui+811457tXmfXd94Fy9pyCSCgseIHYhwjwky7MrQBH Zy+VtBgYTRUwV3vnmwuVjol6O7WN5pbq6iSr6zBLB+67mHo5SZ6bis7ylidi+k81 bayqTU0Lza8ONanIdYa05YjDUkwQxdBt3qHAxchIx7LavWCYSXVehRWy0vosQAcn 74+GQg4vdapO+jjYTAzkPb/qwwtKJtM0LhLdyaOPvn8Kv1M/xMX4CtxDwPr1+mLw 0EOlOqvHtIiaZ4JS4keIe0yvv6uEs882gGMpvxqyJuRZx6HpJp7HQnd89QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHAsO612q7GJ9keAR9Lam4EjywQPMB8GA1UdIwQY MBaAFGC/NzYgFG5vKYroLSyKg3HKy3sbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWUw4M05pQVVibThwaXVndExJcURjY3JMZXhzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi9kZWNkZTMtMjc3YS00OTU2LWJmOTIt ZjBhODEyM2U3MGY5LzEvWUw4M05pQVVibThwaXVndExJcURjY3JMZXhzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yi9kZWNkZTMtMjc3YS00OTU2LWJmOTItZjBhODEyM2U3MGY5 LzEvWUw4M05pQVVibThwaXVndExJcURjY3JMZXhzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAE+eKxDv6 Xi4Bw/fuaL1Njg2DSvEdj49WwUncuCztcyxc0Bsj8QMsdQOk/ZzQfhva9Bst6rUk SasDfsbQsmzA5uL2DYI9NnvW/E+7WqRwTAu0vQmL+Fiqy7X2rIksYPwn1tWf5HDH nnbh75Dg1RxDwVLqzU57mOwP8ymtFlrfCV6JRbVq+rcL/80Jul5tWXA7uOrBSSrt co1c51XvMLzAmFfRZq25etBPSNKUe0eEqV1AGB/VGZz9H8UlFVM2R+R8Ba+3pV7Y GJUPJHspCBha71cEyLAV46kP58zkT3+J66HIaOlibTpI/4Zo9Y7IxjZ8pgPuqTrf 2Dbz8HARgJ6R+Q== -----END CERTIFICATE-----Generated at Fri Dec 12 06:39:49 2025 by rpki-client