This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/2f3c19-56d5-4924-8bcb-bac472ab7b6a/1/YbGV0TBQ_zxGihSXeHELU1giUdk.mft File: YbGV0TBQ_zxGihSXeHELU1giUdk.mft (raw, json) Hash identifier: lMXVfcnL6CbH1CSi4iPBw6EFS/y5xIm2oQLtnZvOgPI= Subject key identifier: 0F:02:08:5A:E0:F4:C3:19:40:AD:92:C2:66:34:75:20:62:E0:A5:26 Authority key identifier: 61:B1:95:D1:30:50:FF:3C:46:8A:14:97:78:71:0B:53:58:22:51:D9 Certificate issuer: /CN=61b195d13050ff3c468a149778710b53582251d9 Certificate serial: 019B59E4260833D930EAD11F27EFB53067E4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbGV0TBQ_zxGihSXeHELU1giUdk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/2f3c19-56d5-4924-8bcb-bac472ab7b6a/1/YbGV0TBQ_zxGihSXeHELU1giUdk.mft Manifest number: 179B Signing time: Fri 26 Dec 2025 09:01:22 +0000 Manifest this update: Fri 26 Dec 2025 09:01:22 +0000 Manifest next update: Sat 27 Dec 2025 09:01:22 +0000 Files and hashes: 1: Wt3X3B6NcZ-mxrNPh2fG99PqrRE.roa (hash: q1LYdMsfXSEFkYw+v/2PtBLKm0CXtMVR1H0DEe1ErnY=) 2: YbGV0TBQ_zxGihSXeHELU1giUdk.crl (hash: ZiHx3M4pCzL9kLsMkPClK7K6VBbcQJdvgAFXfzZmIzM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/2f3c19-56d5-4924-8bcb-bac472ab7b6a/1/YbGV0TBQ_zxGihSXeHELU1giUdk.crl rsync://rpki.ripe.net/repository/DEFAULT/61/2f3c19-56d5-4924-8bcb-bac472ab7b6a/1/YbGV0TBQ_zxGihSXeHELU1giUdk.mft rsync://rpki.ripe.net/repository/DEFAULT/YbGV0TBQ_zxGihSXeHELU1giUdk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:e4:26:08:33:d9:30:ea:d1:1f:27:ef:b5:30:67:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=61b195d13050ff3c468a149778710b53582251d9 Validity Not Before: Dec 26 09:01:22 2025 GMT Not After : Dec 27 09:01:22 2025 GMT Subject: CN=0f02085ae0f4c31940ad92c26634752062e0a526 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:52:9c:88:4d:09:5c:cf:92:c2:6f:5a:5b:5e: 48:bf:47:95:84:e3:55:f8:c3:ca:27:09:04:27:85: 32:48:ad:50:e2:c9:6f:35:f8:56:90:cf:bb:ff:81: 35:aa:7c:6a:3d:d9:6c:98:60:ae:d8:8b:77:fe:b2: 03:c6:ca:31:5d:47:d1:07:d8:0b:bc:41:de:ab:9d: 3a:34:0f:32:fd:93:52:4a:65:46:1c:4b:13:c2:86: 46:64:28:08:93:bb:9a:5b:8f:33:6b:15:90:47:c2: b6:b7:a5:c4:ba:a6:b4:29:85:2e:15:52:1f:66:fb: c4:a1:50:38:13:26:66:3b:76:a0:e6:51:20:29:a1: 8f:0a:26:39:5e:66:49:bd:d6:a1:99:ea:ba:a3:e3: cc:60:45:af:7b:eb:0b:22:44:0b:ff:9c:a1:00:2e: 69:07:f1:fc:19:34:f3:31:7f:ed:3b:77:da:fc:14: 12:43:78:bf:65:07:01:06:de:fc:a4:fc:71:6d:bd: e5:b2:e5:13:6d:96:a4:24:ee:fa:31:15:08:2b:bc: 25:d3:ee:2c:c1:a6:d0:ee:75:14:59:a9:3b:96:10: a3:6c:37:b4:49:aa:cd:47:57:39:43:47:bd:e2:b9: fb:88:d3:43:f6:74:f9:e8:59:fb:1f:b2:a5:9d:03: 4b:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:02:08:5A:E0:F4:C3:19:40:AD:92:C2:66:34:75:20:62:E0:A5:26 X509v3 Authority Key Identifier: keyid:61:B1:95:D1:30:50:FF:3C:46:8A:14:97:78:71:0B:53:58:22:51:D9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbGV0TBQ_zxGihSXeHELU1giUdk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/2f3c19-56d5-4924-8bcb-bac472ab7b6a/1/YbGV0TBQ_zxGihSXeHELU1giUdk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/61/2f3c19-56d5-4924-8bcb-bac472ab7b6a/1/YbGV0TBQ_zxGihSXeHELU1giUdk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4d:be:26:70:3a:b9:6f:79:ff:a0:a2:83:fe:a3:6f:56:71:3b: d2:f9:f8:fe:95:4e:08:55:0a:6f:c8:22:74:9f:ed:a1:6b:d2: 5a:ac:25:cb:ea:28:0d:7e:db:68:fb:25:5e:12:b9:c2:d8:f2: 78:11:da:3b:ec:8c:10:95:85:0a:85:a2:d2:b0:0f:f6:8d:3c: 95:12:bd:28:89:58:2c:98:f0:31:bd:02:5a:e0:5a:50:5a:09: 78:9b:73:ac:a5:72:62:89:40:51:49:24:b0:9c:fa:8d:0a:88: 1d:64:ba:b0:8a:46:fb:a1:59:3c:cb:31:7e:1f:f1:c8:d3:d9: e9:59:04:49:73:54:60:4d:1b:d3:65:ba:b6:5a:a9:cf:db:0e: f1:dd:d2:c8:4b:ea:ca:fe:8a:fb:13:e6:aa:55:8a:ac:41:7f: 7e:e1:e5:32:32:f6:82:11:aa:ed:fe:06:95:ce:26:be:ed:45: 2b:3a:64:88:fa:e6:95:a6:f4:7e:d3:b7:58:e2:1f:06:50:99: 2f:b8:0f:f5:d0:37:96:74:8a:dc:65:9e:cd:39:6f:44:8d:df: 2a:a4:e9:8b:9a:3b:2d:5a:4b:71:55:f5:62:24:5e:3e:42:06: e9:53:37:e5:57:a6:04:6e:80:0c:ea:c0:93:8e:b6:f0:b0:84: aa:7f:3b:27 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZ5CYIM9kw6tEfJ++1MGfkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYxYjE5NWQxMzA1MGZmM2M0NjhhMTQ5Nzc4NzEwYjUzNTgy MjUxZDkwHhcNMjUxMjI2MDkwMTIyWhcNMjUxMjI3MDkwMTIyWjAzMTEwLwYDVQQD EygwZjAyMDg1YWUwZjRjMzE5NDBhZDkyYzI2NjM0NzUyMDYyZTBhNTI2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4FKciE0JXM+Swm9aW15Iv0eVhONV +MPKJwkEJ4UySK1Q4slvNfhWkM+7/4E1qnxqPdlsmGCu2It3/rIDxsoxXUfRB9gL vEHeq506NA8y/ZNSSmVGHEsTwoZGZCgIk7uaW48zaxWQR8K2t6XEuqa0KYUuFVIf ZvvEoVA4EyZmO3ag5lEgKaGPCiY5XmZJvdahmeq6o+PMYEWve+sLIkQL/5yhAC5p B/H8GTTzMX/tO3fa/BQSQ3i/ZQcBBt78pPxxbb3lsuUTbZakJO76MRUIK7wl0+4s wabQ7nUUWak7lhCjbDe0SarNR1c5Q0e94rn7iNND9nT56Fn7H7KlnQNLpwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFA8CCFrg9MMZQK2SwmY0dSBi4KUmMB8GA1UdIwQY MBaAFGGxldEwUP88RooUl3hxC1NYIlHZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWWJHVjBUQlFfenhHaWhTWGVIRUxVMWdpVWRrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS8yZjNjMTktNTZkNS00OTI0LThiY2It YmFjNDcyYWI3YjZhLzEvWWJHVjBUQlFfenhHaWhTWGVIRUxVMWdpVWRrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82MS8yZjNjMTktNTZkNS00OTI0LThiY2ItYmFjNDcyYWI3YjZh LzEvWWJHVjBUQlFfenhHaWhTWGVIRUxVMWdpVWRrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATb4mcDq5 b3n/oKKD/qNvVnE70vn4/pVOCFUKb8gidJ/toWvSWqwly+ooDX7baPslXhK5wtjy eBHaO+yMEJWFCoWi0rAP9o08lRK9KIlYLJjwMb0CWuBaUFoJeJtzrKVyYolAUUkk sJz6jQqIHWS6sIpG+6FZPMsxfh/xyNPZ6VkESXNUYE0b02W6tlqpz9sO8d3SyEvq yv6K+xPmqlWKrEF/fuHlMjL2ghGq7f4Glc4mvu1FKzpkiPrmlab0ftO3WOIfBlCZ L7gP9dA3lnSK3GWezTlvRI3fKqTpi5o7LVpLcVX1YiRePkIG6VM35VemBG6ADOrA k4628LCEqn87Jw== -----END CERTIFICATE-----Generated at Fri Dec 26 16:00:54 2025 by rpki-client