This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/ea3614-f090-4a2b-9355-b89a511c3bbd/1/yYuCXzbpzDMDFclA3oAMurzjOXs.mft File: yYuCXzbpzDMDFclA3oAMurzjOXs.mft (raw, json) Hash identifier: RDQQv13OrTp9rbiuEm553+ptMNYownQWVRxcqWLuPv0= Subject key identifier: FD:88:72:8D:DD:04:CA:2F:A7:8A:0A:05:11:4E:8A:17:B7:22:42:52 Authority key identifier: C9:8B:82:5F:36:E9:CC:33:03:15:C9:40:DE:80:0C:BA:BC:E3:39:7B Certificate issuer: /CN=c98b825f36e9cc330315c940de800cbabce3397b Certificate serial: 019B1CF30AE279DB7A3ED79ED01CCB7BF039 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yYuCXzbpzDMDFclA3oAMurzjOXs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/ea3614-f090-4a2b-9355-b89a511c3bbd/1/yYuCXzbpzDMDFclA3oAMurzjOXs.mft Manifest number: 1387 Signing time: Sun 14 Dec 2025 13:00:48 +0000 Manifest this update: Sun 14 Dec 2025 13:00:48 +0000 Manifest next update: Mon 15 Dec 2025 13:00:48 +0000 Files and hashes: 1: 9fWXkacnWfLXH44Xb8HrXGzmknY.roa (hash: ueIT5017I7hv93aOprGzdVNSjT4YNhBA1fdwv5/AgdI=) 2: HRQ3zVG8fQhstKqXqVzvaQOYW-8.roa (hash: J4bA2yn+4d47gpldTm1th3QAEiyAys+UIYmTMp8Fvck=) 3: KW27n6S1v0MgxCxbh7E0buBfif8.roa (hash: toMOgZfSEbU3csqRPx4QZ9cAdliSmxp8YH9UOfmQEwM=) 4: f9hfmHvrY5AwY36q7MIQ4falWVM.roa (hash: poIPC46neVOYvv7bF8o92LK9XXWLEMpfpDFVMKy16AU=) 5: gu6tT7UFC6FmYiSvKO6wxYLbsHc.roa (hash: 33W9F+bpX2oF1GIOeMA/5dpyW1er0qfORrvZ4OzY3Zc=) 6: yYuCXzbpzDMDFclA3oAMurzjOXs.crl (hash: /ehQtTQw0LVAhLDS3WdsBoho6Kf8c/bopAi7xX4qMI4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7c/ea3614-f090-4a2b-9355-b89a511c3bbd/1/yYuCXzbpzDMDFclA3oAMurzjOXs.crl rsync://rpki.ripe.net/repository/DEFAULT/7c/ea3614-f090-4a2b-9355-b89a511c3bbd/1/yYuCXzbpzDMDFclA3oAMurzjOXs.mft rsync://rpki.ripe.net/repository/DEFAULT/yYuCXzbpzDMDFclA3oAMurzjOXs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 15 Dec 2025 13:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:1c:f3:0a:e2:79:db:7a:3e:d7:9e:d0:1c:cb:7b:f0:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c98b825f36e9cc330315c940de800cbabce3397b Validity Not Before: Dec 14 13:00:48 2025 GMT Not After : Dec 15 13:00:48 2025 GMT Subject: CN=fd88728ddd04ca2fa78a0a05114e8a17b7224252 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:b1:71:52:90:9f:29:1f:62:27:e4:eb:75:df: 69:39:d3:d7:65:95:91:23:b5:dc:8c:8c:29:0b:2e: f5:78:bb:d7:64:ef:83:7b:4f:e1:7b:af:a3:bc:da: f3:9f:72:f0:34:05:1d:70:de:da:7f:27:84:aa:45: 91:84:89:d2:f3:d6:14:05:89:98:99:c7:a8:99:99: d0:e0:96:6a:82:8a:99:af:d9:9d:6d:79:cd:fd:b7: 50:8f:2c:f8:73:a5:e8:1f:e5:c7:46:41:5c:d7:c7: 90:eb:24:f9:ce:ba:9d:36:cd:b9:56:72:38:2e:a0: aa:86:f4:a3:7f:69:88:85:21:33:f8:0b:27:8b:4e: b9:ad:2a:8f:9f:fd:c3:79:86:82:c0:a9:b6:2e:74: 4f:e4:b0:27:f8:d7:74:3b:38:2e:9e:76:6e:29:46: 61:a1:7f:d8:3c:41:35:49:f3:7d:6e:f6:6b:9e:f5: bf:62:86:8e:f5:43:34:82:df:d8:c4:62:fd:b2:68: f4:f9:48:ef:54:f6:24:ee:7a:38:9c:60:74:57:f5: 0c:a2:30:a3:21:d3:79:0f:d1:ee:94:ff:99:98:4b: 6e:59:cf:5b:21:73:36:57:0b:96:5b:8b:f5:1b:78: 0b:21:a9:b9:1d:d8:25:23:be:ad:76:33:47:fe:12: a4:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:88:72:8D:DD:04:CA:2F:A7:8A:0A:05:11:4E:8A:17:B7:22:42:52 X509v3 Authority Key Identifier: keyid:C9:8B:82:5F:36:E9:CC:33:03:15:C9:40:DE:80:0C:BA:BC:E3:39:7B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yYuCXzbpzDMDFclA3oAMurzjOXs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/ea3614-f090-4a2b-9355-b89a511c3bbd/1/yYuCXzbpzDMDFclA3oAMurzjOXs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/ea3614-f090-4a2b-9355-b89a511c3bbd/1/yYuCXzbpzDMDFclA3oAMurzjOXs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5e:a7:1e:23:dc:63:45:62:2d:c6:6b:5a:78:d2:27:16:3a:47: ee:e9:82:1a:94:c2:ba:35:85:87:ab:db:43:88:e1:6b:1a:58: 0f:44:d0:a5:04:00:58:ca:d5:49:d3:f6:e9:61:a6:45:69:04: 55:f6:db:25:e6:cf:6e:26:1f:ab:9e:49:95:80:4a:6c:a5:8a: 3d:43:36:39:2a:27:c8:9a:9a:a7:ac:76:b0:06:36:e8:27:ab: b5:2b:10:a1:ba:5d:e8:5f:01:2d:76:0c:a1:98:7f:c4:ca:be: a5:47:b9:81:ff:8a:4f:a6:a3:0a:01:b1:b2:a4:20:3c:fe:07: 00:3f:6c:70:dd:4e:9b:7d:57:4c:c8:e1:63:9e:9d:85:b5:9c: 74:ca:d5:4c:02:89:ea:3e:1e:ff:a4:4f:d8:a9:75:67:d9:ad: 47:9b:d3:f5:b9:d2:eb:8e:9b:76:c5:ba:98:8c:c3:0c:72:5f: ed:c4:f8:12:20:04:b9:79:47:7f:14:5d:89:b7:e0:ed:57:8b: e5:fd:98:0a:13:b1:84:ad:80:6d:32:c3:41:5e:51:a7:b7:5a: e0:7e:e5:52:55:54:2d:51:da:0f:4a:45:e6:19:c1:58:c1:4b: c4:60:bb:70:1c:ed:16:3e:3e:67:41:39:21:d0:73:3e:20:12: ea:52:56:8a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsc8wriedt6Ptee0BzLe/A5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM5OGI4MjVmMzZlOWNjMzMwMzE1Yzk0MGRlODAwY2JhYmNl MzM5N2IwHhcNMjUxMjE0MTMwMDQ4WhcNMjUxMjE1MTMwMDQ4WjAzMTEwLwYDVQQD EyhmZDg4NzI4ZGRkMDRjYTJmYTc4YTBhMDUxMTRlOGExN2I3MjI0MjUyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk7FxUpCfKR9iJ+Trdd9pOdPXZZWR I7XcjIwpCy71eLvXZO+De0/he6+jvNrzn3LwNAUdcN7afyeEqkWRhInS89YUBYmY mceomZnQ4JZqgoqZr9mdbXnN/bdQjyz4c6XoH+XHRkFc18eQ6yT5zrqdNs25VnI4 LqCqhvSjf2mIhSEz+Asni065rSqPn/3DeYaCwKm2LnRP5LAn+Nd0OzgunnZuKUZh oX/YPEE1SfN9bvZrnvW/YoaO9UM0gt/YxGL9smj0+UjvVPYk7no4nGB0V/UMojCj IdN5D9HulP+ZmEtuWc9bIXM2VwuWW4v1G3gLIam5HdglI76tdjNH/hKk9QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFP2Ico3dBMovp4oKBRFOihe3IkJSMB8GA1UdIwQY MBaAFMmLgl826cwzAxXJQN6ADLq84zl7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveVl1Q1h6YnB6RE1ERmNsQTNvQU11cnpqT1hzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yy9lYTM2MTQtZjA5MC00YTJiLTkzNTUt Yjg5YTUxMWMzYmJkLzEveVl1Q1h6YnB6RE1ERmNsQTNvQU11cnpqT1hzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Yy9lYTM2MTQtZjA5MC00YTJiLTkzNTUtYjg5YTUxMWMzYmJk LzEveVl1Q1h6YnB6RE1ERmNsQTNvQU11cnpqT1hzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXqceI9xj RWItxmtaeNInFjpH7umCGpTCujWFh6vbQ4jhaxpYD0TQpQQAWMrVSdP26WGmRWkE VfbbJebPbiYfq55JlYBKbKWKPUM2OSonyJqap6x2sAY26CertSsQobpd6F8BLXYM oZh/xMq+pUe5gf+KT6ajCgGxsqQgPP4HAD9scN1Om31XTMjhY56dhbWcdMrVTAKJ 6j4e/6RP2Kl1Z9mtR5vT9bnS646bdsW6mIzDDHJf7cT4EiAEuXlHfxRdibfg7VeL 5f2YChOxhK2AbTLDQV5Rp7da4H7lUlVULVHaD0pF5hnBWMFLxGC7cBztFj4+Z0E5 IdBzPiAS6lJWig== -----END CERTIFICATE-----Generated at Sun Dec 14 21:34:56 2025 by rpki-client