This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/76759e-3964-4c4f-876b-bc475d008869/1/ym3NrZkpBFbG18GOscBY2UEIiAE.mft File: ym3NrZkpBFbG18GOscBY2UEIiAE.mft (raw, json) Hash identifier: Ph2wElqoNJJyBH9zLjSFV22scO4KE4OXUzbgmbEHFro= Subject key identifier: 0F:82:1D:B2:A9:E1:61:E8:53:BF:1E:15:89:A5:22:EE:E3:6B:C9:76 Authority key identifier: CA:6D:CD:AD:99:29:04:56:C6:D7:C1:8E:B1:C0:58:D9:41:08:88:01 Certificate issuer: /CN=ca6dcdad99290456c6d7c18eb1c058d941088801 Certificate serial: 019B3A2189EE1EF5619BB7D767744F29FB34 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ym3NrZkpBFbG18GOscBY2UEIiAE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/76759e-3964-4c4f-876b-bc475d008869/1/ym3NrZkpBFbG18GOscBY2UEIiAE.mft Manifest number: 1729 Signing time: Sat 20 Dec 2025 05:00:34 +0000 Manifest this update: Sat 20 Dec 2025 05:00:34 +0000 Manifest next update: Sun 21 Dec 2025 05:00:34 +0000 Files and hashes: 1: Vm2xySa3TZzRcufAzxt4hRBLNss.roa (hash: O5+b4nw4CSapOt9ANvlpqmvnfoL7HE4era1klJG6PPo=) 2: ym3NrZkpBFbG18GOscBY2UEIiAE.crl (hash: VPIzKIwbc/SCqxVz9P0WCp4Y68ZTNX1ZnngCNhETf84=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/76759e-3964-4c4f-876b-bc475d008869/1/ym3NrZkpBFbG18GOscBY2UEIiAE.crl rsync://rpki.ripe.net/repository/DEFAULT/5f/76759e-3964-4c4f-876b-bc475d008869/1/ym3NrZkpBFbG18GOscBY2UEIiAE.mft rsync://rpki.ripe.net/repository/DEFAULT/ym3NrZkpBFbG18GOscBY2UEIiAE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 01:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3a:21:89:ee:1e:f5:61:9b:b7:d7:67:74:4f:29:fb:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ca6dcdad99290456c6d7c18eb1c058d941088801 Validity Not Before: Dec 20 05:00:34 2025 GMT Not After : Dec 21 05:00:34 2025 GMT Subject: CN=0f821db2a9e161e853bf1e1589a522eee36bc976 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:80:b8:e7:ae:57:e1:09:8f:79:26:71:da:f2: b7:ac:63:b2:a9:bf:24:67:30:62:13:f9:ca:ab:ec: 0d:9c:c9:ab:c3:59:32:f4:b1:f2:f6:67:75:ee:0a: 85:28:51:da:90:62:8a:21:cd:fa:6c:56:fd:e9:9f: e3:41:dc:10:fd:58:d0:42:02:ba:66:cc:0b:82:39: 51:8c:b0:b0:a9:ca:92:2c:f3:72:ea:a6:7f:34:a9: 99:f6:d2:6e:42:3a:4b:7e:37:ed:7e:0d:b3:73:e1: 0c:76:d8:05:81:6b:60:a8:f2:7e:eb:c7:bc:2c:86: 27:fe:68:28:8e:82:62:be:9d:de:d3:2b:d1:26:5f: 2e:9f:55:8d:2f:64:3b:79:0b:a7:9c:ae:3f:60:ec: 0f:b8:b6:e6:f5:78:b4:0f:7a:ee:27:1f:93:cd:26: a9:25:6f:f6:f8:bf:4b:94:1d:12:ed:2f:af:5b:d8: 54:c1:ba:f6:ef:c4:b4:dc:db:a8:7e:8e:46:21:58: c4:b1:6d:d0:cc:ec:93:29:30:ed:f8:8a:50:57:f0: 4b:a1:7c:53:17:7b:62:41:84:6d:45:bb:71:aa:9f: fa:52:cd:56:d9:e3:78:b9:05:16:04:8e:9d:fc:7e: 45:24:f1:57:00:1e:de:bb:40:bc:f5:73:38:8e:2d: 4b:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:82:1D:B2:A9:E1:61:E8:53:BF:1E:15:89:A5:22:EE:E3:6B:C9:76 X509v3 Authority Key Identifier: keyid:CA:6D:CD:AD:99:29:04:56:C6:D7:C1:8E:B1:C0:58:D9:41:08:88:01 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ym3NrZkpBFbG18GOscBY2UEIiAE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/76759e-3964-4c4f-876b-bc475d008869/1/ym3NrZkpBFbG18GOscBY2UEIiAE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/76759e-3964-4c4f-876b-bc475d008869/1/ym3NrZkpBFbG18GOscBY2UEIiAE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6b:05:9a:9e:64:5b:35:3f:6f:c7:4c:e7:ca:54:17:bd:3e:0f: eb:cc:8a:83:5b:40:22:e7:3a:d3:92:1a:31:e4:1f:f1:f6:bc: 12:d6:e6:e4:03:53:ab:4e:a6:1b:9f:18:d9:7b:86:5f:d4:25: 23:45:cd:d6:a9:4a:ee:62:67:08:84:58:5e:60:98:71:79:9c: 1d:6d:8f:3b:a9:41:d4:d2:95:8a:ac:31:4a:3b:e0:bb:4a:73: c7:72:80:65:fa:54:c5:0d:b1:a8:01:0c:13:68:87:29:82:8e: f3:f9:4f:4d:2d:94:aa:b5:71:10:64:13:c5:00:fd:85:36:c8: 02:0c:71:a6:b3:6e:ce:3e:e3:31:ae:9b:76:88:a3:4c:9c:0d: d0:4d:a7:55:4e:55:ac:6c:08:5f:90:00:5c:72:2b:b4:ef:07: 59:f8:0c:5c:f5:4c:7e:0c:d8:7c:ac:2f:1b:aa:42:aa:38:91: 3b:cc:29:4b:43:66:46:25:76:ce:98:22:4e:c4:3d:00:48:9f: ff:46:a1:37:83:4c:4d:b9:0f:e1:7e:52:8e:5b:3b:df:ac:4f: b0:1d:a0:70:6e:54:f2:e4:06:02:6f:aa:12:40:9d:a4:c3:cf: fc:ac:3b:16:88:ab:f1:82:8f:ce:13:7a:10:4c:11:ff:bd:02: 84:06:4e:5b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs6IYnuHvVhm7fXZ3RPKfs0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNhNmRjZGFkOTkyOTA0NTZjNmQ3YzE4ZWIxYzA1OGQ5NDEw ODg4MDEwHhcNMjUxMjIwMDUwMDM0WhcNMjUxMjIxMDUwMDM0WjAzMTEwLwYDVQQD EygwZjgyMWRiMmE5ZTE2MWU4NTNiZjFlMTU4OWE1MjJlZWUzNmJjOTc2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv4C4565X4QmPeSZx2vK3rGOyqb8k ZzBiE/nKq+wNnMmrw1ky9LHy9md17gqFKFHakGKKIc36bFb96Z/jQdwQ/VjQQgK6 ZswLgjlRjLCwqcqSLPNy6qZ/NKmZ9tJuQjpLfjftfg2zc+EMdtgFgWtgqPJ+68e8 LIYn/mgojoJivp3e0yvRJl8un1WNL2Q7eQunnK4/YOwPuLbm9Xi0D3ruJx+TzSap JW/2+L9LlB0S7S+vW9hUwbr278S03Nuofo5GIVjEsW3QzOyTKTDt+IpQV/BLoXxT F3tiQYRtRbtxqp/6Us1W2eN4uQUWBI6d/H5FJPFXAB7eu0C89XM4ji1LlwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFA+CHbKp4WHoU78eFYmlIu7ja8l2MB8GA1UdIwQY MBaAFMptza2ZKQRWxtfBjrHAWNlBCIgBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveW0zTnJaa3BCRmJHMThHT3NjQlkyVUVJaUFFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi83Njc1OWUtMzk2NC00YzRmLTg3NmIt YmM0NzVkMDA4ODY5LzEveW0zTnJaa3BCRmJHMThHT3NjQlkyVUVJaUFFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Zi83Njc1OWUtMzk2NC00YzRmLTg3NmItYmM0NzVkMDA4ODY5 LzEveW0zTnJaa3BCRmJHMThHT3NjQlkyVUVJaUFFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAawWanmRb NT9vx0znylQXvT4P68yKg1tAIuc605IaMeQf8fa8Etbm5ANTq06mG58Y2XuGX9Ql I0XN1qlK7mJnCIRYXmCYcXmcHW2PO6lB1NKViqwxSjvgu0pzx3KAZfpUxQ2xqAEM E2iHKYKO8/lPTS2UqrVxEGQTxQD9hTbIAgxxprNuzj7jMa6bdoijTJwN0E2nVU5V rGwIX5AAXHIrtO8HWfgMXPVMfgzYfKwvG6pCqjiRO8wpS0NmRiV2zpgiTsQ9AEif /0ahN4NMTbkP4X5Sjls736xPsB2gcG5U8uQGAm+qEkCdpMPP/Kw7Foir8YKPzhN6 EEwR/70ChAZOWw== -----END CERTIFICATE-----Generated at Sat Dec 20 06:36:34 2025 by rpki-client