This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft File: ylF4miMTWsImjCKihWAKX5sFN3A.mft (raw, json) Hash identifier: Kks8MhhEVam7oMXhceXjmjnYbWEzhAqHsgUC4x4UE80= Subject key identifier: 4F:30:03:91:43:2C:D1:7C:E8:C5:93:56:E1:77:3E:D1:C2:45:EA:7B Authority key identifier: CA:51:78:9A:23:13:5A:C2:26:8C:22:A2:85:60:0A:5F:9B:05:37:70 Certificate issuer: /CN=ca51789a23135ac2268c22a285600a5f9b053770 Certificate serial: 019AF79CA998BB3C3B1BF64BD6D0133BF671 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ylF4miMTWsImjCKihWAKX5sFN3A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft Manifest number: 12CC Signing time: Sun 07 Dec 2025 07:00:30 +0000 Manifest this update: Sun 07 Dec 2025 07:00:30 +0000 Manifest next update: Mon 08 Dec 2025 07:00:30 +0000 Files and hashes: 1: HAjyOzGCAwLUy5RivV8kbOy5Vu4.roa (hash: PsK5K2sZtAdplKvTizBojj+ePHRa8hE1Sr8s/0IgHpY=) 2: ylF4miMTWsImjCKihWAKX5sFN3A.crl (hash: RCvwQJUVg+SbbPTA1IeXuYSDtDxBsLuyubdt3WEgw7U=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.crl rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft rsync://rpki.ripe.net/repository/DEFAULT/ylF4miMTWsImjCKihWAKX5sFN3A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 08 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f7:9c:a9:98:bb:3c:3b:1b:f6:4b:d6:d0:13:3b:f6:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ca51789a23135ac2268c22a285600a5f9b053770 Validity Not Before: Dec 7 07:00:30 2025 GMT Not After : Dec 8 07:00:30 2025 GMT Subject: CN=4f300391432cd17ce8c59356e1773ed1c245ea7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:2d:2b:d6:6b:c3:ec:e0:5c:ce:fc:ec:ea:1a: 5b:44:00:dd:f4:8a:94:c1:35:a7:cd:96:d0:3c:ee: ee:e2:ba:d4:d1:84:d2:c4:ad:cc:f2:7f:d8:04:62: 84:22:ba:86:6c:42:17:61:a5:07:6c:37:c2:3b:97: 5a:c3:5d:92:c3:d1:d9:b5:47:da:1e:19:21:14:35: 4d:93:8a:a6:e1:83:35:0a:66:7e:6e:1b:47:58:49: a4:63:02:07:d4:9d:de:1e:ef:b8:c0:7a:0f:ab:8d: 92:19:0e:cf:f0:2f:3b:5d:e1:3c:28:b3:44:96:12: 49:4e:c3:0a:1b:44:45:64:d5:b1:07:2c:4e:7d:7e: e0:e8:be:18:1e:6a:0b:8c:85:5c:73:bd:a1:3c:53: 11:eb:83:5b:7d:52:50:2c:1d:9c:fe:96:bc:eb:59: 0e:a3:96:07:29:71:11:e8:c1:cf:f3:80:be:ef:fb: 31:1b:d5:11:25:5c:c9:d7:18:2e:81:32:98:fc:3f: 51:72:f8:b2:10:a0:c3:33:80:68:91:0e:d6:09:43: 92:56:85:4a:b6:9f:1a:22:6f:29:ea:1a:81:c2:59: 2d:f4:5f:05:ee:27:0b:09:94:4a:20:ed:89:d6:15: 04:99:ad:c5:26:c7:e6:be:fa:ba:e3:69:38:7e:1e: 48:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:30:03:91:43:2C:D1:7C:E8:C5:93:56:E1:77:3E:D1:C2:45:EA:7B X509v3 Authority Key Identifier: keyid:CA:51:78:9A:23:13:5A:C2:26:8C:22:A2:85:60:0A:5F:9B:05:37:70 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ylF4miMTWsImjCKihWAKX5sFN3A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 28:bc:51:4d:fd:1a:52:0e:f5:58:a3:19:94:47:47:05:a2:ce: b0:e9:d5:6f:21:5e:9d:44:7a:43:50:d3:a8:45:3a:9d:d4:42: f7:b8:cb:77:94:e2:fb:5a:8e:c5:7c:79:f3:17:b0:a2:cd:57: bd:bc:68:0f:23:2e:99:9e:bb:28:52:90:41:ce:32:49:7f:68: f9:69:93:b9:24:b0:c0:b6:c4:be:02:84:48:e5:8a:aa:1c:e2: c6:e2:c0:07:c4:ad:64:35:b0:ba:b6:8a:8f:63:39:71:b4:84: 05:70:84:12:72:cb:36:7a:20:6f:f1:65:aa:f1:7e:5b:ba:c4: 4f:1a:25:53:b1:b7:04:c3:ae:01:c0:ae:b3:2c:e2:b9:44:75: dd:17:78:fd:88:fb:5d:34:34:76:f8:e1:23:ec:4e:3d:4b:1f: 48:76:e2:00:8e:02:a6:d3:8e:26:1a:5c:b1:03:6b:bf:28:5c: db:07:40:23:9e:25:a1:76:bd:e0:5c:43:f8:80:79:6d:c6:6a: 73:97:da:cc:51:e2:42:9e:d9:b0:0d:87:f8:58:db:ec:63:e3: 40:8b:d0:95:d2:98:d3:52:19:a6:7d:7b:dc:84:f1:3e:8b:d0: 59:d5:07:4c:5e:f4:0c:e1:de:37:d8:3f:74:2b:38:3b:fb:e0: 64:c1:03:3d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr3nKmYuzw7G/ZL1tATO/ZxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNhNTE3ODlhMjMxMzVhYzIyNjhjMjJhMjg1NjAwYTVmOWIw NTM3NzAwHhcNMjUxMjA3MDcwMDMwWhcNMjUxMjA4MDcwMDMwWjAzMTEwLwYDVQQD Eyg0ZjMwMDM5MTQzMmNkMTdjZThjNTkzNTZlMTc3M2VkMWMyNDVlYTdiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoi0r1mvD7OBczvzs6hpbRADd9IqU wTWnzZbQPO7u4rrU0YTSxK3M8n/YBGKEIrqGbEIXYaUHbDfCO5daw12Sw9HZtUfa HhkhFDVNk4qm4YM1CmZ+bhtHWEmkYwIH1J3eHu+4wHoPq42SGQ7P8C87XeE8KLNE lhJJTsMKG0RFZNWxByxOfX7g6L4YHmoLjIVcc72hPFMR64NbfVJQLB2c/pa861kO o5YHKXER6MHP84C+7/sxG9URJVzJ1xgugTKY/D9RcviyEKDDM4BokQ7WCUOSVoVK tp8aIm8p6hqBwlkt9F8F7icLCZRKIO2J1hUEma3FJsfmvvq642k4fh5IKwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFE8wA5FDLNF86MWTVuF3PtHCRep7MB8GA1UdIwQY MBaAFMpReJojE1rCJowiooVgCl+bBTdwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveWxGNG1pTVRXc0ltakNLaWhXQUtYNXNGTjNBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni9iNGJmNjAtZDU5My00MGQyLTk3ODMt MWUxOTE2OGY1ZDczLzEveWxGNG1pTVRXc0ltakNLaWhXQUtYNXNGTjNBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ni9iNGJmNjAtZDU5My00MGQyLTk3ODMtMWUxOTE2OGY1ZDcz LzEveWxGNG1pTVRXc0ltakNLaWhXQUtYNXNGTjNBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKLxRTf0a Ug71WKMZlEdHBaLOsOnVbyFenUR6Q1DTqEU6ndRC97jLd5Ti+1qOxXx58xewos1X vbxoDyMumZ67KFKQQc4ySX9o+WmTuSSwwLbEvgKESOWKqhzixuLAB8StZDWwuraK j2M5cbSEBXCEEnLLNnogb/FlqvF+W7rETxolU7G3BMOuAcCusyziuUR13Rd4/Yj7 XTQ0dvjhI+xOPUsfSHbiAI4CptOOJhpcsQNrvyhc2wdAI54loXa94FxD+IB5bcZq c5fazFHiQp7ZsA2H+Fjb7GPjQIvQldKY01IZpn173ITxPovQWdUHTF70DOHeN9g/ dCs4O/vgZMEDPQ== -----END CERTIFICATE-----Generated at Sun Dec 7 13:08:35 2025 by rpki-client