This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/71b2ab-157e-4820-a58b-a7edc4c99947/1/yqzE_rtIeZbU7gHVOxH4QgPKg2c.mft File: yqzE_rtIeZbU7gHVOxH4QgPKg2c.mft (raw, json) Hash identifier: JykYmKukKKXahGKVlawC1vVvqGA2czcFyaS+kc+GsBI= Subject key identifier: 84:EF:98:1E:4A:DF:38:35:53:C4:B0:6D:45:B3:01:0A:07:13:8C:66 Authority key identifier: CA:AC:C4:FE:BB:48:79:96:D4:EE:01:D5:3B:11:F8:42:03:CA:83:67 Certificate issuer: /CN=caacc4febb487996d4ee01d53b11f84203ca8367 Certificate serial: 019B59ACE7E82ED4C309CF4D24EC43B3B123 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yqzE_rtIeZbU7gHVOxH4QgPKg2c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/71b2ab-157e-4820-a58b-a7edc4c99947/1/yqzE_rtIeZbU7gHVOxH4QgPKg2c.mft Manifest number: 02F4 Signing time: Fri 26 Dec 2025 08:01:02 +0000 Manifest this update: Fri 26 Dec 2025 08:01:02 +0000 Manifest next update: Sat 27 Dec 2025 08:01:02 +0000 Files and hashes: 1: Dribm7v4eJGFRaCGtu-42niad5g.roa (hash: COADFM31Atbne40gqBHSktN8SaWdLigZF/t1VPBNlag=) 2: yqzE_rtIeZbU7gHVOxH4QgPKg2c.crl (hash: JGn2xqAfCRj5k6D/cmm2AjJK3HjxQI8JyLuBECCGv9w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/71b2ab-157e-4820-a58b-a7edc4c99947/1/yqzE_rtIeZbU7gHVOxH4QgPKg2c.crl rsync://rpki.ripe.net/repository/DEFAULT/7b/71b2ab-157e-4820-a58b-a7edc4c99947/1/yqzE_rtIeZbU7gHVOxH4QgPKg2c.mft rsync://rpki.ripe.net/repository/DEFAULT/yqzE_rtIeZbU7gHVOxH4QgPKg2c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:ac:e7:e8:2e:d4:c3:09:cf:4d:24:ec:43:b3:b1:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=caacc4febb487996d4ee01d53b11f84203ca8367 Validity Not Before: Dec 26 08:01:02 2025 GMT Not After : Dec 27 08:01:02 2025 GMT Subject: CN=84ef981e4adf383553c4b06d45b3010a07138c66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:12:26:5a:0f:2f:6a:01:eb:44:06:cb:ae:4c: b3:93:3f:ef:71:39:83:c7:52:55:46:47:50:b6:49: 77:ba:5b:66:15:ac:f9:77:18:ce:c6:8c:c9:52:5b: f2:8f:14:88:d5:be:62:8b:12:16:63:46:69:88:25: 32:8a:2c:68:d4:86:9c:f4:ac:71:b1:d9:94:d8:8d: 5a:66:69:50:53:00:2b:fc:35:2d:52:1e:17:32:65: 5c:c2:24:ca:9b:6e:7f:fe:5e:c7:18:41:4b:e2:80: 2b:33:fa:1f:f4:69:2d:7e:ff:b6:62:9d:7e:e4:57: a1:62:e0:bd:47:a5:22:fa:f5:42:23:a8:f5:27:a2: a6:01:84:5f:2c:ca:69:75:0c:6b:88:fb:b9:1e:87: 0c:7a:6d:af:4a:09:d4:31:b7:d4:6d:80:a3:c3:09: d9:6f:4a:5d:0d:a6:36:49:b4:ed:9a:35:a9:28:a1: 93:b4:14:14:d7:ad:40:84:ae:a6:d7:e2:f7:4d:bf: 57:e1:90:b6:4e:d5:2d:14:f3:6c:07:d9:e5:d6:4f: 16:f6:d2:48:1a:e6:6a:93:ef:64:b2:52:90:51:fd: 1e:4d:9e:6e:c4:4c:d0:7b:cf:a5:26:04:46:21:db: d1:1d:ad:3d:b4:5e:74:6d:50:1f:ad:ac:67:3b:ff: cc:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:EF:98:1E:4A:DF:38:35:53:C4:B0:6D:45:B3:01:0A:07:13:8C:66 X509v3 Authority Key Identifier: keyid:CA:AC:C4:FE:BB:48:79:96:D4:EE:01:D5:3B:11:F8:42:03:CA:83:67 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yqzE_rtIeZbU7gHVOxH4QgPKg2c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/71b2ab-157e-4820-a58b-a7edc4c99947/1/yqzE_rtIeZbU7gHVOxH4QgPKg2c.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/71b2ab-157e-4820-a58b-a7edc4c99947/1/yqzE_rtIeZbU7gHVOxH4QgPKg2c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 55:6a:d1:ca:39:6d:19:db:e5:bd:92:fa:71:23:18:d5:7a:9d: c2:e1:f1:99:53:57:2f:96:9b:22:da:44:06:f8:1e:d2:2d:83: 45:15:fa:c6:a8:80:3e:2f:7c:1a:3f:66:08:f7:aa:19:92:87: af:89:43:0b:ac:8b:c3:1e:09:7a:2a:7f:ac:3f:23:d2:35:30: b5:6c:5c:f7:2b:87:b0:a4:5e:83:7b:17:f9:20:60:30:a8:7d: 94:f7:d2:0f:29:53:42:28:bf:59:4e:fd:63:76:c2:f0:c4:42: 1b:4d:bd:51:00:b5:15:46:ae:a6:fe:56:64:e5:17:3c:23:0b: d5:3b:0b:40:50:d2:98:39:54:17:df:46:a2:4d:75:b2:43:24: 46:cf:27:42:d2:d6:45:d7:93:12:be:68:78:b4:ac:5c:ab:73: 90:60:2d:7b:11:af:4b:a4:8f:90:fd:79:5e:35:37:c9:d4:f8: 73:55:d6:e8:86:cf:87:47:a1:88:fd:d3:80:d2:76:ee:72:64: b9:5d:ba:32:f6:c5:fa:31:2c:0c:ba:ce:a7:fb:4b:3f:7d:7a: 65:15:24:e4:f1:d3:26:a2:84:f3:6c:28:76:f2:89:f2:e7:04: 27:9d:01:38:ee:dd:9a:1f:f2:0a:68:2e:7c:15:a9:52:b6:17: 27:79:9e:99 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZrOfoLtTDCc9NJOxDs7EjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNhYWNjNGZlYmI0ODc5OTZkNGVlMDFkNTNiMTFmODQyMDNj YTgzNjcwHhcNMjUxMjI2MDgwMTAyWhcNMjUxMjI3MDgwMTAyWjAzMTEwLwYDVQQD Eyg4NGVmOTgxZTRhZGYzODM1NTNjNGIwNmQ0NWIzMDEwYTA3MTM4YzY2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmRImWg8vagHrRAbLrkyzkz/vcTmD x1JVRkdQtkl3ultmFaz5dxjOxozJUlvyjxSI1b5iixIWY0ZpiCUyiixo1Iac9Kxx sdmU2I1aZmlQUwAr/DUtUh4XMmVcwiTKm25//l7HGEFL4oArM/of9Gktfv+2Yp1+ 5FehYuC9R6Ui+vVCI6j1J6KmAYRfLMppdQxriPu5HocMem2vSgnUMbfUbYCjwwnZ b0pdDaY2SbTtmjWpKKGTtBQU161AhK6m1+L3Tb9X4ZC2TtUtFPNsB9nl1k8W9tJI GuZqk+9kslKQUf0eTZ5uxEzQe8+lJgRGIdvRHa09tF50bVAfraxnO//MHwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFITvmB5K3zg1U8SwbUWzAQoHE4xmMB8GA1UdIwQY MBaAFMqsxP67SHmW1O4B1TsR+EIDyoNnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveXF6RV9ydEllWmJVN2dIVk94SDRRZ1BLZzJjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yi83MWIyYWItMTU3ZS00ODIwLWE1OGIt YTdlZGM0Yzk5OTQ3LzEveXF6RV9ydEllWmJVN2dIVk94SDRRZ1BLZzJjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Yi83MWIyYWItMTU3ZS00ODIwLWE1OGItYTdlZGM0Yzk5OTQ3 LzEveXF6RV9ydEllWmJVN2dIVk94SDRRZ1BLZzJjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVWrRyjlt GdvlvZL6cSMY1XqdwuHxmVNXL5abItpEBvge0i2DRRX6xqiAPi98Gj9mCPeqGZKH r4lDC6yLwx4Jeip/rD8j0jUwtWxc9yuHsKReg3sX+SBgMKh9lPfSDylTQii/WU79 Y3bC8MRCG029UQC1FUaupv5WZOUXPCML1TsLQFDSmDlUF99Gok11skMkRs8nQtLW RdeTEr5oeLSsXKtzkGAtexGvS6SPkP15XjU3ydT4c1XW6IbPh0ehiP3TgNJ27nJk uV26MvbF+jEsDLrOp/tLP316ZRUk5PHTJqKE82wodvKJ8ucEJ50BOO7dmh/yCmgu fBWpUrYXJ3memQ== -----END CERTIFICATE-----Generated at Fri Dec 26 14:18:15 2025 by rpki-client