This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/d94681-abe6-4e23-9b98-79a0a528e0a4/1/YQ-Pmfymmqc_iKUx20bSKKfiw9M.mft File: YQ-Pmfymmqc_iKUx20bSKKfiw9M.mft (raw, json) Hash identifier: a/Ik+M/huKVNuKT2s4sy0myxmGxr5XoDYhuG5zwvupI= Subject key identifier: 75:AC:DB:68:87:92:A6:BF:D4:6B:37:6C:B9:8F:58:AB:81:CC:A4:FA Authority key identifier: 61:0F:8F:99:FC:A6:9A:A7:3F:88:A5:31:DB:46:D2:28:A7:E2:C3:D3 Certificate issuer: /CN=610f8f99fca69aa73f88a531db46d228a7e2c3d3 Certificate serial: 019B4A715D37D81B84B03FC3F737C39C74BE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YQ-Pmfymmqc_iKUx20bSKKfiw9M.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/d94681-abe6-4e23-9b98-79a0a528e0a4/1/YQ-Pmfymmqc_iKUx20bSKKfiw9M.mft Manifest number: 0E54 Signing time: Tue 23 Dec 2025 09:01:41 +0000 Manifest this update: Tue 23 Dec 2025 09:01:41 +0000 Manifest next update: Wed 24 Dec 2025 09:01:41 +0000 Files and hashes: 1: YQ-Pmfymmqc_iKUx20bSKKfiw9M.crl (hash: 6SpV9NkfbVjr1/R8CT1ogF+b9TP1J2rZFiUtK+nQMfA=) 2: tm8Rt7Sc2c1PcYKasPfyO3eBX9M.roa (hash: fWTds4doBQAqbglPwbw6IGwEFIO7de7/7OMc6gbtl08=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/d94681-abe6-4e23-9b98-79a0a528e0a4/1/YQ-Pmfymmqc_iKUx20bSKKfiw9M.crl rsync://rpki.ripe.net/repository/DEFAULT/64/d94681-abe6-4e23-9b98-79a0a528e0a4/1/YQ-Pmfymmqc_iKUx20bSKKfiw9M.mft rsync://rpki.ripe.net/repository/DEFAULT/YQ-Pmfymmqc_iKUx20bSKKfiw9M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 24 Dec 2025 09:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:4a:71:5d:37:d8:1b:84:b0:3f:c3:f7:37:c3:9c:74:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=610f8f99fca69aa73f88a531db46d228a7e2c3d3 Validity Not Before: Dec 23 09:01:41 2025 GMT Not After : Dec 24 09:01:41 2025 GMT Subject: CN=75acdb688792a6bfd46b376cb98f58ab81cca4fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:6f:7a:95:73:83:44:a8:8b:c6:0e:31:3b:5f: ca:da:e6:db:9e:e6:40:22:4c:6f:88:04:7b:ec:29: cc:4f:98:0d:eb:c4:88:cc:71:ed:4f:14:bf:8e:05: ba:4c:ab:05:65:c1:6a:10:db:3f:7e:75:65:e9:72: 5c:4e:56:d3:d0:5e:a7:79:4b:67:93:1a:4f:44:be: 57:06:f6:16:9c:3f:46:a5:c9:8e:cc:3d:06:d0:f3: 64:0a:78:a3:b8:1b:ee:86:4e:16:55:86:54:56:c5: 09:8d:a9:a7:a8:8b:f7:e4:31:6d:db:8d:05:e1:39: 38:da:7b:61:3c:58:65:7a:35:68:41:66:d7:b9:09: f0:67:95:39:dd:81:db:ec:3a:55:d8:5e:b9:8f:3d: 98:80:0d:da:2e:01:2b:74:61:a1:48:7c:6b:f1:99: 66:82:a2:b3:2e:e6:bf:f0:16:f9:d0:3e:cc:86:9f: 51:d6:28:b7:20:dd:35:75:6a:73:58:e4:00:6b:41: 9a:c3:2d:19:c2:c0:c6:80:4c:ae:60:0f:96:41:a1: 89:a2:b9:df:da:e4:ae:97:24:ec:66:4f:ac:c0:84: 58:95:25:17:bc:93:b9:77:b0:25:6e:6b:36:e0:32: 5c:ba:95:76:17:32:6d:24:d3:0f:72:74:b3:72:a0: 93:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:AC:DB:68:87:92:A6:BF:D4:6B:37:6C:B9:8F:58:AB:81:CC:A4:FA X509v3 Authority Key Identifier: keyid:61:0F:8F:99:FC:A6:9A:A7:3F:88:A5:31:DB:46:D2:28:A7:E2:C3:D3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YQ-Pmfymmqc_iKUx20bSKKfiw9M.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/d94681-abe6-4e23-9b98-79a0a528e0a4/1/YQ-Pmfymmqc_iKUx20bSKKfiw9M.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/64/d94681-abe6-4e23-9b98-79a0a528e0a4/1/YQ-Pmfymmqc_iKUx20bSKKfiw9M.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b5:b4:e3:0a:88:58:7f:ce:60:0f:de:d8:2f:b3:39:c8:a6:6b: f9:bd:8c:f4:2c:cd:48:66:3d:e6:70:b9:dd:b2:60:be:19:75: 04:ea:dc:1a:a8:43:5a:23:8b:82:10:44:8e:61:5c:cd:27:f3: 9e:df:93:86:08:c5:a1:a0:1b:d3:a4:e4:cd:0c:92:c7:16:73: 3a:73:0f:36:1d:d9:b4:5e:69:e0:31:f4:a1:5e:fb:10:1c:e2: ec:91:f5:c0:f9:84:61:84:34:d9:75:55:7f:d3:b7:43:89:81: 52:fa:f5:ee:72:5b:f8:06:12:33:2a:d7:bf:8d:f6:3b:88:fc: 68:a6:64:57:ea:e0:42:91:b8:e7:2b:92:38:5c:a9:b7:02:75: 23:01:e4:53:29:fc:fc:d4:f1:0a:14:cd:96:e2:08:78:e9:ef: f0:e6:7d:c5:60:ac:af:af:ba:ff:f6:c4:7c:06:07:40:18:2b: ba:21:c8:ec:94:03:78:65:40:7c:08:31:96:72:26:bb:c2:33: a7:2e:a9:7e:d4:13:5e:f5:3f:82:e2:db:18:b2:dd:4d:1c:ea: 96:4a:7f:20:70:df:ad:d5:de:03:27:b2:cc:8d:48:fb:01:4b: 60:eb:fb:ce:24:fd:9e:56:52:e7:69:aa:14:0e:17:43:d6:22: bd:cb:67:1d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtKcV032BuEsD/D9zfDnHS+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYxMGY4Zjk5ZmNhNjlhYTczZjg4YTUzMWRiNDZkMjI4YTdl MmMzZDMwHhcNMjUxMjIzMDkwMTQxWhcNMjUxMjI0MDkwMTQxWjAzMTEwLwYDVQQD Eyg3NWFjZGI2ODg3OTJhNmJmZDQ2YjM3NmNiOThmNThhYjgxY2NhNGZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmm96lXODRKiLxg4xO1/K2ubbnuZA IkxviAR77CnMT5gN68SIzHHtTxS/jgW6TKsFZcFqENs/fnVl6XJcTlbT0F6neUtn kxpPRL5XBvYWnD9GpcmOzD0G0PNkCnijuBvuhk4WVYZUVsUJjamnqIv35DFt240F 4Tk42nthPFhlejVoQWbXuQnwZ5U53YHb7DpV2F65jz2YgA3aLgErdGGhSHxr8Zlm gqKzLua/8Bb50D7Mhp9R1ii3IN01dWpzWOQAa0Gawy0ZwsDGgEyuYA+WQaGJornf 2uSulyTsZk+swIRYlSUXvJO5d7Albms24DJcupV2FzJtJNMPcnSzcqCTvQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHWs22iHkqa/1Gs3bLmPWKuBzKT6MB8GA1UdIwQY MBaAFGEPj5n8ppqnP4ilMdtG0iin4sPTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWVEtUG1meW1tcWNfaUtVeDIwYlNLS2ZpdzlNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC9kOTQ2ODEtYWJlNi00ZTIzLTliOTgt NzlhMGE1MjhlMGE0LzEvWVEtUG1meW1tcWNfaUtVeDIwYlNLS2ZpdzlNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NC9kOTQ2ODEtYWJlNi00ZTIzLTliOTgtNzlhMGE1MjhlMGE0 LzEvWVEtUG1meW1tcWNfaUtVeDIwYlNLS2ZpdzlNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAtbTjCohY f85gD97YL7M5yKZr+b2M9CzNSGY95nC53bJgvhl1BOrcGqhDWiOLghBEjmFczSfz nt+ThgjFoaAb06TkzQySxxZzOnMPNh3ZtF5p4DH0oV77EBzi7JH1wPmEYYQ02XVV f9O3Q4mBUvr17nJb+AYSMyrXv432O4j8aKZkV+rgQpG45yuSOFyptwJ1IwHkUyn8 /NTxChTNluIIeOnv8OZ9xWCsr6+6//bEfAYHQBgruiHI7JQDeGVAfAgxlnImu8Iz py6pftQTXvU/guLbGLLdTRzqlkp/IHDfrdXeAyeyzI1I+wFLYOv7ziT9nlZS52mq FA4XQ9YivctnHQ== -----END CERTIFICATE-----Generated at Tue Dec 23 11:07:25 2025 by rpki-client