This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/91cfe7-5c2d-474a-b587-c45852c7be20/1/YAluN0CSzDAL0LsGxBZAky7Pi0k.mft File: YAluN0CSzDAL0LsGxBZAky7Pi0k.mft (raw, json) Hash identifier: F3EHQall+GFgw+sNR+d/pLnjcY+J/h0RcSGnM2QF0Hg= Subject key identifier: 9B:0C:7D:9E:15:22:83:B8:0E:F1:F5:15:A2:C5:D5:7D:7E:F2:71:61 Authority key identifier: 60:09:6E:37:40:92:CC:30:0B:D0:BB:06:C4:16:40:93:2E:CF:8B:49 Certificate issuer: /CN=60096e374092cc300bd0bb06c41640932ecf8b49 Certificate serial: 019B1014EC2B76B2024B0F871F688B415C35 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YAluN0CSzDAL0LsGxBZAky7Pi0k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/91cfe7-5c2d-474a-b587-c45852c7be20/1/YAluN0CSzDAL0LsGxBZAky7Pi0k.mft Manifest number: 1703 Signing time: Fri 12 Dec 2025 01:02:45 +0000 Manifest this update: Fri 12 Dec 2025 01:02:45 +0000 Manifest next update: Sat 13 Dec 2025 01:02:45 +0000 Files and hashes: 1: 526G98YrX5YRgU8kSVFlOR-68SU.roa (hash: EfmIyH+1frBE08mLPE+N4lUdJCEbw7QSSljLZgrUP1M=) 2: YAluN0CSzDAL0LsGxBZAky7Pi0k.crl (hash: 0IoMdYz8YkRXjWsBRGeXrLjhAwfhb8TswszeXlJ4cBs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/84/91cfe7-5c2d-474a-b587-c45852c7be20/1/YAluN0CSzDAL0LsGxBZAky7Pi0k.crl rsync://rpki.ripe.net/repository/DEFAULT/84/91cfe7-5c2d-474a-b587-c45852c7be20/1/YAluN0CSzDAL0LsGxBZAky7Pi0k.mft rsync://rpki.ripe.net/repository/DEFAULT/YAluN0CSzDAL0LsGxBZAky7Pi0k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 23:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:10:14:ec:2b:76:b2:02:4b:0f:87:1f:68:8b:41:5c:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=60096e374092cc300bd0bb06c41640932ecf8b49 Validity Not Before: Dec 12 01:02:45 2025 GMT Not After : Dec 13 01:02:45 2025 GMT Subject: CN=9b0c7d9e152283b80ef1f515a2c5d57d7ef27161 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:eb:8d:95:ba:bb:bf:ca:76:dc:3a:d3:20:41: 9a:f5:da:42:67:b2:82:f4:8f:fa:87:6c:92:78:c5: 5e:02:49:40:5e:24:07:27:63:de:e4:75:4d:3c:28: 1c:63:15:58:7b:2a:77:15:03:e9:72:59:19:4d:29: d4:f4:1f:1b:ca:a3:3b:75:5a:bc:cf:04:a7:c2:97: b5:b0:4a:47:62:f7:83:52:20:56:e5:fb:55:36:04: 91:dd:8b:b9:7a:07:07:8e:68:8a:f4:0d:3e:af:00: 0b:ac:63:eb:1a:24:59:5f:ed:9f:6b:02:2f:b0:52: 16:4e:56:6d:46:d4:f8:f8:ab:1b:04:9b:44:fa:73: f5:c7:97:62:0d:0f:c0:a3:c8:e6:59:03:49:52:25: 81:6d:5a:23:74:b1:36:1a:ee:43:f1:e6:a2:00:4e: 97:0e:52:70:0b:2b:ff:a2:f1:89:fa:b8:49:0b:99: d4:1f:9b:6e:39:a9:ea:78:ad:d1:5f:7f:6b:44:87: 19:71:f0:84:d5:f2:99:a3:e0:76:8a:27:de:1e:6f: 26:8e:3b:b6:c5:d4:84:b4:0b:99:b4:6b:d2:3a:78: 4c:03:3c:26:b7:14:63:78:b1:6c:ca:5b:ea:56:41: 1d:a4:e0:89:76:66:77:d7:c4:10:1c:73:ab:e8:0c: 97:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:0C:7D:9E:15:22:83:B8:0E:F1:F5:15:A2:C5:D5:7D:7E:F2:71:61 X509v3 Authority Key Identifier: keyid:60:09:6E:37:40:92:CC:30:0B:D0:BB:06:C4:16:40:93:2E:CF:8B:49 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YAluN0CSzDAL0LsGxBZAky7Pi0k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/91cfe7-5c2d-474a-b587-c45852c7be20/1/YAluN0CSzDAL0LsGxBZAky7Pi0k.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/84/91cfe7-5c2d-474a-b587-c45852c7be20/1/YAluN0CSzDAL0LsGxBZAky7Pi0k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6e:dc:f5:20:ee:1a:b0:06:53:b5:47:10:3f:23:21:6c:ae:84: 8b:5e:ad:46:60:8d:3f:2a:7b:68:26:be:c7:e9:86:5b:15:df: a8:2e:bb:49:ad:b4:97:95:1c:d6:92:95:76:0e:d3:71:54:d2: 8b:2e:99:37:3d:80:99:71:ec:6d:92:59:c5:06:d3:ad:d2:78: 10:a3:55:3d:c6:e0:3c:11:a5:88:c8:82:fe:ba:bf:83:58:31: 55:ca:30:0b:be:ac:e2:6e:cf:b1:5e:0a:d1:f8:c4:c7:77:a4: 03:db:47:17:62:84:0a:3e:04:50:3a:8a:a9:d2:67:52:33:1a: 0a:69:ee:2d:82:0b:95:dc:c6:c2:20:43:69:85:84:bc:b0:56: 88:c5:95:a4:1b:88:2b:d3:4e:e8:31:9c:a8:24:eb:81:6f:15: 56:3d:76:ae:6d:f1:26:8f:bf:e1:ad:12:c7:57:01:32:0b:d0: 9b:32:5f:fd:f2:f8:2a:0a:ef:00:34:f4:03:0d:0b:a3:a0:0b: 59:d3:4d:00:14:a5:95:b5:27:c8:93:2e:c0:f9:fd:a1:21:71: 80:64:5e:4c:c0:77:3a:83:f4:b7:df:d8:0a:8e:66:11:01:10: 87:57:b1:6b:26:f0:4e:bb:44:33:37:f3:34:28:3f:7a:68:c3: e0:95:d3:67 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsQFOwrdrICSw+HH2iLQVw1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwMDk2ZTM3NDA5MmNjMzAwYmQwYmIwNmM0MTY0MDkzMmVj ZjhiNDkwHhcNMjUxMjEyMDEwMjQ1WhcNMjUxMjEzMDEwMjQ1WjAzMTEwLwYDVQQD Eyg5YjBjN2Q5ZTE1MjI4M2I4MGVmMWY1MTVhMmM1ZDU3ZDdlZjI3MTYxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyOuNlbq7v8p23DrTIEGa9dpCZ7KC 9I/6h2ySeMVeAklAXiQHJ2Pe5HVNPCgcYxVYeyp3FQPpclkZTSnU9B8byqM7dVq8 zwSnwpe1sEpHYveDUiBW5ftVNgSR3Yu5egcHjmiK9A0+rwALrGPrGiRZX+2fawIv sFIWTlZtRtT4+KsbBJtE+nP1x5diDQ/Ao8jmWQNJUiWBbVojdLE2Gu5D8eaiAE6X DlJwCyv/ovGJ+rhJC5nUH5tuOanqeK3RX39rRIcZcfCE1fKZo+B2iifeHm8mjju2 xdSEtAuZtGvSOnhMAzwmtxRjeLFsylvqVkEdpOCJdmZ318QQHHOr6AyXUQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJsMfZ4VIoO4DvH1FaLF1X1+8nFhMB8GA1UdIwQY MBaAFGAJbjdAkswwC9C7BsQWQJMuz4tJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWUFsdU4wQ1N6REFMMExzR3hCWkFreTdQaTBrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NC85MWNmZTctNWMyZC00NzRhLWI1ODct YzQ1ODUyYzdiZTIwLzEvWUFsdU4wQ1N6REFMMExzR3hCWkFreTdQaTBrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84NC85MWNmZTctNWMyZC00NzRhLWI1ODctYzQ1ODUyYzdiZTIw LzEvWUFsdU4wQ1N6REFMMExzR3hCWkFreTdQaTBrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbtz1IO4a sAZTtUcQPyMhbK6Ei16tRmCNPyp7aCa+x+mGWxXfqC67Sa20l5Uc1pKVdg7TcVTS iy6ZNz2AmXHsbZJZxQbTrdJ4EKNVPcbgPBGliMiC/rq/g1gxVcowC76s4m7PsV4K 0fjEx3ekA9tHF2KECj4EUDqKqdJnUjMaCmnuLYILldzGwiBDaYWEvLBWiMWVpBuI K9NO6DGcqCTrgW8VVj12rm3xJo+/4a0Sx1cBMgvQmzJf/fL4KgrvADT0Aw0Lo6AL WdNNABSllbUnyJMuwPn9oSFxgGReTMB3OoP0t9/YCo5mEQEQh1exaybwTrtEMzfz NCg/emjD4JXTZw== -----END CERTIFICATE-----Generated at Fri Dec 12 07:58:56 2025 by rpki-client