This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/a26b0f-3353-4e59-bf70-118454ccd412/1/yKs8W2mvXCGN1K92TJQ2bGRvg6U.mft File: yKs8W2mvXCGN1K92TJQ2bGRvg6U.mft (raw, json) Hash identifier: kIqtVh/bKIKCp7Aollf39ENyzgqsvPEb35SSwUrz4PY= Subject key identifier: 30:83:15:5C:DE:CD:B7:4C:ED:8B:26:5A:0E:EC:6D:A5:8B:61:6C:B5 Authority key identifier: C8:AB:3C:5B:69:AF:5C:21:8D:D4:AF:76:4C:94:36:6C:64:6F:83:A5 Certificate issuer: /CN=c8ab3c5b69af5c218dd4af764c94366c646f83a5 Certificate serial: 019B24E3F11504A799BA7A513ABB8B950006 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yKs8W2mvXCGN1K92TJQ2bGRvg6U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/a26b0f-3353-4e59-bf70-118454ccd412/1/yKs8W2mvXCGN1K92TJQ2bGRvg6U.mft Manifest number: 1410 Signing time: Tue 16 Dec 2025 02:01:16 +0000 Manifest this update: Tue 16 Dec 2025 02:01:16 +0000 Manifest next update: Wed 17 Dec 2025 02:01:16 +0000 Files and hashes: 1: SNGV0mPG4-vHp6-PAm-3E8l_tQ4.roa (hash: FllvrAA0IFuRu04U/PVVcunONsM/J0wPDkjc5E97TCo=) 2: yKs8W2mvXCGN1K92TJQ2bGRvg6U.crl (hash: RrCCzjFGQCtKaOZdk35Bar7AcSOCVEkSLFmVzkZubpQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/a26b0f-3353-4e59-bf70-118454ccd412/1/yKs8W2mvXCGN1K92TJQ2bGRvg6U.crl rsync://rpki.ripe.net/repository/DEFAULT/60/a26b0f-3353-4e59-bf70-118454ccd412/1/yKs8W2mvXCGN1K92TJQ2bGRvg6U.mft rsync://rpki.ripe.net/repository/DEFAULT/yKs8W2mvXCGN1K92TJQ2bGRvg6U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:24:e3:f1:15:04:a7:99:ba:7a:51:3a:bb:8b:95:00:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c8ab3c5b69af5c218dd4af764c94366c646f83a5 Validity Not Before: Dec 16 02:01:16 2025 GMT Not After : Dec 17 02:01:16 2025 GMT Subject: CN=3083155cdecdb74ced8b265a0eec6da58b616cb5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:3a:40:ea:8a:ee:65:5f:7a:a9:2f:d9:13:6c: 42:51:14:a1:b7:18:3f:20:8a:2d:4a:9e:1b:67:0b: 16:60:8c:0c:68:7a:b4:8d:59:a6:52:44:8b:0a:b3: 83:d0:14:86:18:14:48:c5:93:40:c7:f0:15:e3:e0: 1f:9f:57:9b:46:46:31:bc:4e:d5:b6:f7:a8:46:17: 28:80:61:56:1f:04:eb:55:a6:7d:41:47:70:e4:6a: 44:0c:7d:e1:62:54:4f:95:dd:ba:05:8f:ef:3b:85: 01:6a:c2:2a:98:3b:26:50:47:3d:37:b6:89:6e:b9: 12:0b:56:22:5a:5c:99:2c:f4:33:24:eb:8a:8b:ac: 4b:0a:b9:1f:65:55:7a:d5:f8:a3:fd:82:15:3c:c9: 01:4d:53:4f:a6:8a:27:cc:5d:65:d7:07:19:97:04: 97:cf:7a:6f:b1:de:9e:61:c1:95:4f:fe:f1:70:e9: 0f:61:d3:17:87:38:eb:38:fd:0c:8a:07:dd:bf:00: 0e:aa:f6:97:27:05:8c:4e:2a:c5:2f:d8:a1:71:59: ff:fb:09:a9:55:62:8e:cd:97:d1:0c:86:dd:6f:4a: 36:c9:cb:c9:56:74:84:51:68:ac:13:01:70:85:c6: 73:f6:a7:60:99:a6:74:71:59:39:a9:37:49:19:ed: 25:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:83:15:5C:DE:CD:B7:4C:ED:8B:26:5A:0E:EC:6D:A5:8B:61:6C:B5 X509v3 Authority Key Identifier: keyid:C8:AB:3C:5B:69:AF:5C:21:8D:D4:AF:76:4C:94:36:6C:64:6F:83:A5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yKs8W2mvXCGN1K92TJQ2bGRvg6U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/a26b0f-3353-4e59-bf70-118454ccd412/1/yKs8W2mvXCGN1K92TJQ2bGRvg6U.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/60/a26b0f-3353-4e59-bf70-118454ccd412/1/yKs8W2mvXCGN1K92TJQ2bGRvg6U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6e:aa:14:31:5f:01:b6:83:14:08:70:51:db:b3:a1:02:80:8d: 70:d1:aa:b3:2e:4f:ab:b2:dd:f5:2a:c5:ac:49:bb:a8:1c:ca: e3:81:92:1f:d1:82:c0:84:55:50:58:0a:64:23:76:e9:75:1c: c4:98:e0:8c:ec:11:ac:1b:e4:fc:f3:1c:c1:58:87:78:e1:98: 50:8a:3d:08:87:b7:35:3c:b6:bc:b2:22:db:fb:d2:b6:ea:43: a2:55:1c:e1:f3:16:07:3e:81:f1:2b:d3:df:ed:e8:03:9c:ee: b5:4f:5b:8a:78:dd:3e:cc:f4:9a:13:0f:c7:40:88:e6:70:f9: fd:6f:76:76:57:e8:10:f3:d0:39:ec:66:4a:07:43:d9:a4:c4: 49:dd:64:a2:ff:18:f8:e5:83:83:84:99:2e:69:55:68:4a:88: 09:44:93:ef:40:3b:ec:b9:2c:f7:7a:ef:69:ab:93:69:49:8e: 35:10:e4:81:8b:48:f2:70:6a:d4:5e:3d:d8:67:ad:31:40:1e: b5:46:5c:06:b0:7d:22:7a:90:9e:19:9b:28:ab:c6:2a:1c:01: e3:84:5b:f7:47:1c:68:b4:32:d2:ec:40:46:3d:3f:b2:74:67: e4:37:ef:a0:04:1c:2f:48:da:b2:94:29:a1:96:b1:e2:da:51: 9d:1b:22:05 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsk4/EVBKeZunpROruLlQAGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM4YWIzYzViNjlhZjVjMjE4ZGQ0YWY3NjRjOTQzNjZjNjQ2 ZjgzYTUwHhcNMjUxMjE2MDIwMTE2WhcNMjUxMjE3MDIwMTE2WjAzMTEwLwYDVQQD EygzMDgzMTU1Y2RlY2RiNzRjZWQ4YjI2NWEwZWVjNmRhNThiNjE2Y2I1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzjpA6oruZV96qS/ZE2xCURShtxg/ IIotSp4bZwsWYIwMaHq0jVmmUkSLCrOD0BSGGBRIxZNAx/AV4+Afn1ebRkYxvE7V tveoRhcogGFWHwTrVaZ9QUdw5GpEDH3hYlRPld26BY/vO4UBasIqmDsmUEc9N7aJ brkSC1YiWlyZLPQzJOuKi6xLCrkfZVV61fij/YIVPMkBTVNPpoonzF1l1wcZlwSX z3pvsd6eYcGVT/7xcOkPYdMXhzjrOP0MigfdvwAOqvaXJwWMTirFL9ihcVn/+wmp VWKOzZfRDIbdb0o2ycvJVnSEUWisEwFwhcZz9qdgmaZ0cVk5qTdJGe0lewIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDCDFVzezbdM7YsmWg7sbaWLYWy1MB8GA1UdIwQY MBaAFMirPFtpr1whjdSvdkyUNmxkb4OlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveUtzOFcybXZYQ0dOMUs5MlRKUTJiR1J2ZzZVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MC9hMjZiMGYtMzM1My00ZTU5LWJmNzAt MTE4NDU0Y2NkNDEyLzEveUtzOFcybXZYQ0dOMUs5MlRKUTJiR1J2ZzZVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82MC9hMjZiMGYtMzM1My00ZTU5LWJmNzAtMTE4NDU0Y2NkNDEy LzEveUtzOFcybXZYQ0dOMUs5MlRKUTJiR1J2ZzZVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbqoUMV8B toMUCHBR27OhAoCNcNGqsy5Pq7Ld9SrFrEm7qBzK44GSH9GCwIRVUFgKZCN26XUc xJjgjOwRrBvk/PMcwViHeOGYUIo9CIe3NTy2vLIi2/vStupDolUc4fMWBz6B8SvT 3+3oA5zutU9binjdPsz0mhMPx0CI5nD5/W92dlfoEPPQOexmSgdD2aTESd1kov8Y +OWDg4SZLmlVaEqICUST70A77Lks93rvaauTaUmONRDkgYtI8nBq1F492GetMUAe tUZcBrB9InqQnhmbKKvGKhwB44Rb90ccaLQy0uxARj0/snRn5DfvoAQcL0jaspQp oZax4tpRnRsiBQ== -----END CERTIFICATE-----Generated at Tue Dec 16 05:56:29 2025 by rpki-client