This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/c99d6f-82ee-4768-805b-476d7e62cef6/1/YOdz2_t1lX8Mxchj_M52ylijkwg.mft File: YOdz2_t1lX8Mxchj_M52ylijkwg.mft (raw, json) Hash identifier: rZ1vpf8X1EnWnnve4SeVo/8/wh8ty97ZWXoC8nFcsFY= Subject key identifier: 22:48:91:D3:EF:7F:AF:BC:F1:7B:E8:22:84:9A:0B:45:79:9C:AB:99 Authority key identifier: 60:E7:73:DB:FB:75:95:7F:0C:C5:C8:63:FC:CE:76:CA:58:A3:93:08 Certificate issuer: /CN=60e773dbfb75957f0cc5c863fcce76ca58a39308 Certificate serial: 019B3645547FEBD6C31D44FD1C3A73B8A460 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YOdz2_t1lX8Mxchj_M52ylijkwg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/c99d6f-82ee-4768-805b-476d7e62cef6/1/YOdz2_t1lX8Mxchj_M52ylijkwg.mft Manifest number: 0A51 Signing time: Fri 19 Dec 2025 11:01:11 +0000 Manifest this update: Fri 19 Dec 2025 11:01:11 +0000 Manifest next update: Sat 20 Dec 2025 11:01:11 +0000 Files and hashes: 1: PQtqUQS_s4n0kinqfMA_4YnfNNY.roa (hash: D39QZGtQwYdkCVJ23N2oD5YrqEwumLtNGePQrn18tVk=) 2: YOdz2_t1lX8Mxchj_M52ylijkwg.crl (hash: TCMD8CE2MeERg580UdAlva7M721hGiv+z3fQJCvvHVs=) 3: pdC1KsOnjOvGFainyuUjzICPFes.roa (hash: 9PpZVEet2RmTDOe5qqgJNSaHCeSHC8NK2RueyDRCl5M=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/c99d6f-82ee-4768-805b-476d7e62cef6/1/YOdz2_t1lX8Mxchj_M52ylijkwg.crl rsync://rpki.ripe.net/repository/DEFAULT/98/c99d6f-82ee-4768-805b-476d7e62cef6/1/YOdz2_t1lX8Mxchj_M52ylijkwg.mft rsync://rpki.ripe.net/repository/DEFAULT/YOdz2_t1lX8Mxchj_M52ylijkwg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 07:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:36:45:54:7f:eb:d6:c3:1d:44:fd:1c:3a:73:b8:a4:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=60e773dbfb75957f0cc5c863fcce76ca58a39308 Validity Not Before: Dec 19 11:01:11 2025 GMT Not After : Dec 20 11:01:11 2025 GMT Subject: CN=224891d3ef7fafbcf17be822849a0b45799cab99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:bc:a1:64:29:ad:7c:5b:3f:d1:5e:cf:34:d8: 24:5d:bf:d3:5e:d6:a6:e9:b0:a4:02:29:d0:de:3b: 70:98:96:eb:e7:fd:d8:21:fc:24:d6:d9:ee:4f:d9: e2:6e:86:4b:0c:fe:92:fe:16:c9:e4:30:3b:cb:79: 3a:2a:91:c9:e2:a5:71:31:05:b4:df:fa:18:a7:c8: dd:56:1b:6a:d7:09:a3:a9:aa:26:af:be:d0:f7:54: 8b:86:63:a8:db:bb:f8:f9:f1:2c:8b:1f:47:4b:3e: f0:43:9c:ba:a2:6b:80:87:b6:7d:a9:ad:49:f4:a5: 94:08:06:5a:4e:3d:24:ed:8d:24:eb:b3:cd:d2:23: 14:3c:71:10:63:de:48:a2:87:5f:ce:d4:6f:cd:93: 0f:bc:a0:b8:6e:7c:5c:5a:ca:5f:2d:80:86:6b:49: 1d:ea:b5:ca:bf:06:52:8f:ed:d5:d2:37:4a:61:cd: 3e:03:02:24:f9:b4:f4:c5:6a:1a:7c:f9:a0:20:9a: 7d:79:df:c3:f7:0a:b1:82:4a:53:c3:b8:12:3a:30: 78:7e:0f:88:0c:e3:e8:22:1e:d8:29:86:f3:30:63: 6b:49:11:8e:ad:87:fd:7c:2f:00:9a:51:0c:18:53: 6e:f3:08:22:f8:01:7c:5e:15:8c:1f:7e:cc:d2:a7: f8:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:48:91:D3:EF:7F:AF:BC:F1:7B:E8:22:84:9A:0B:45:79:9C:AB:99 X509v3 Authority Key Identifier: keyid:60:E7:73:DB:FB:75:95:7F:0C:C5:C8:63:FC:CE:76:CA:58:A3:93:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YOdz2_t1lX8Mxchj_M52ylijkwg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/c99d6f-82ee-4768-805b-476d7e62cef6/1/YOdz2_t1lX8Mxchj_M52ylijkwg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/98/c99d6f-82ee-4768-805b-476d7e62cef6/1/YOdz2_t1lX8Mxchj_M52ylijkwg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption e8:1b:54:cb:91:25:5e:0b:cc:20:c7:02:97:4c:35:46:39:ff: ae:34:e1:5a:59:a1:f7:6d:db:c5:26:b5:7a:ef:6b:79:b2:ff: a9:fa:7d:b3:8d:b6:fc:d9:13:d7:2b:ed:78:ae:7a:fd:17:bb: c4:1c:17:2c:1e:43:76:2b:76:dc:02:12:e1:d0:7c:b8:79:45: 1b:e9:c2:7e:3d:c4:03:44:e9:df:d0:b0:f4:c0:0b:00:c9:81: 34:e9:68:a2:f9:e6:c3:94:ab:eb:ba:c8:c4:36:51:f4:2b:32: 11:35:7c:f0:45:b3:cf:f9:1f:89:90:eb:17:e9:08:ac:66:67: a2:ad:e0:ff:b4:11:df:e1:2b:d3:aa:5d:e6:11:3e:c8:d1:1d: d1:27:fd:b4:6c:e9:3d:9d:6e:34:d6:f6:be:eb:31:ff:3d:6c: 03:e8:76:55:d0:34:d6:b8:10:b3:cd:b8:53:1b:be:2a:16:83: 62:01:d7:6a:0c:aa:9e:9a:fc:04:2d:0c:93:f2:37:5c:43:a0: ff:ba:61:bd:0e:a6:23:be:ef:9c:96:4b:1c:1b:b9:97:9a:66: 7f:59:fa:bc:03:2b:96:8b:c5:eb:d7:51:5f:5d:df:47:2f:58: 51:0c:34:2f:91:7b:5d:b8:8a:2b:ab:66:96:ca:31:c8:63:4a: 12:4e:e1:83 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs2RVR/69bDHUT9HDpzuKRgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwZTc3M2RiZmI3NTk1N2YwY2M1Yzg2M2ZjY2U3NmNhNThh MzkzMDgwHhcNMjUxMjE5MTEwMTExWhcNMjUxMjIwMTEwMTExWjAzMTEwLwYDVQQD EygyMjQ4OTFkM2VmN2ZhZmJjZjE3YmU4MjI4NDlhMGI0NTc5OWNhYjk5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxLyhZCmtfFs/0V7PNNgkXb/TXtam 6bCkAinQ3jtwmJbr5/3YIfwk1tnuT9niboZLDP6S/hbJ5DA7y3k6KpHJ4qVxMQW0 3/oYp8jdVhtq1wmjqaomr77Q91SLhmOo27v4+fEsix9HSz7wQ5y6omuAh7Z9qa1J 9KWUCAZaTj0k7Y0k67PN0iMUPHEQY95IoodfztRvzZMPvKC4bnxcWspfLYCGa0kd 6rXKvwZSj+3V0jdKYc0+AwIk+bT0xWoafPmgIJp9ed/D9wqxgkpTw7gSOjB4fg+I DOPoIh7YKYbzMGNrSRGOrYf9fC8AmlEMGFNu8wgi+AF8XhWMH37M0qf4WwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCJIkdPvf6+88XvoIoSaC0V5nKuZMB8GA1UdIwQY MBaAFGDnc9v7dZV/DMXIY/zOdspYo5MIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWU9kejJfdDFsWDhNeGNoal9NNTJ5bGlqa3dnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OC9jOTlkNmYtODJlZS00NzY4LTgwNWIt NDc2ZDdlNjJjZWY2LzEvWU9kejJfdDFsWDhNeGNoal9NNTJ5bGlqa3dnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85OC9jOTlkNmYtODJlZS00NzY4LTgwNWItNDc2ZDdlNjJjZWY2 LzEvWU9kejJfdDFsWDhNeGNoal9NNTJ5bGlqa3dnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA6BtUy5El XgvMIMcCl0w1Rjn/rjThWlmh923bxSa1eu9rebL/qfp9s422/NkT1yvteK56/Re7 xBwXLB5Ddit23AIS4dB8uHlFG+nCfj3EA0Tp39Cw9MALAMmBNOloovnmw5Sr67rI xDZR9CsyETV88EWzz/kfiZDrF+kIrGZnoq3g/7QR3+Er06pd5hE+yNEd0Sf9tGzp PZ1uNNb2vusx/z1sA+h2VdA01rgQs824Uxu+KhaDYgHXagyqnpr8BC0Mk/I3XEOg /7phvQ6mI77vnJZLHBu5l5pmf1n6vAMrlovF69dRX13fRy9YUQw0L5F7XbiKK6tm lsoxyGNKEk7hgw== -----END CERTIFICATE-----Generated at Fri Dec 19 13:12:27 2025 by rpki-client