This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/1f36d5-3080-4a0e-9d63-79344da3a2e6/1/ryNYW_zdBhypRuLZ6ouX5FucMdY.mft File: ryNYW_zdBhypRuLZ6ouX5FucMdY.mft (raw, json) Hash identifier: p3XskCs6WyGUC0yi04L97mRnat8C+XZYXlXR4dcPXnk= Subject key identifier: BE:CD:5F:31:B2:7E:CA:B5:09:7C:C2:41:90:4D:F2:80:85:D4:06:1E Authority key identifier: AF:23:58:5B:FC:DD:06:1C:A9:46:E2:D9:EA:8B:97:E4:5B:9C:31:D6 Certificate issuer: /CN=af23585bfcdd061ca946e2d9ea8b97e45b9c31d6 Certificate serial: 019B2219A6824A7EC3A50367DC134A5B17F6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ryNYW_zdBhypRuLZ6ouX5FucMdY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/1f36d5-3080-4a0e-9d63-79344da3a2e6/1/ryNYW_zdBhypRuLZ6ouX5FucMdY.mft Manifest number: 16E0 Signing time: Mon 15 Dec 2025 13:01:04 +0000 Manifest this update: Mon 15 Dec 2025 13:01:04 +0000 Manifest next update: Tue 16 Dec 2025 13:01:04 +0000 Files and hashes: 1: SeufauaKg6Zpqe8UY9h9PfD262s.roa (hash: f9EK4NXbDLFnpfyftEzrpn9paJMCGETNbGO1nrHQTYE=) 2: ryNYW_zdBhypRuLZ6ouX5FucMdY.crl (hash: mjVCYN9I0+FaXi32obpGDYri+HQiVme2rBCZtxJVlbc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/1f36d5-3080-4a0e-9d63-79344da3a2e6/1/ryNYW_zdBhypRuLZ6ouX5FucMdY.crl rsync://rpki.ripe.net/repository/DEFAULT/a3/1f36d5-3080-4a0e-9d63-79344da3a2e6/1/ryNYW_zdBhypRuLZ6ouX5FucMdY.mft rsync://rpki.ripe.net/repository/DEFAULT/ryNYW_zdBhypRuLZ6ouX5FucMdY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 13:01:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:22:19:a6:82:4a:7e:c3:a5:03:67:dc:13:4a:5b:17:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=af23585bfcdd061ca946e2d9ea8b97e45b9c31d6 Validity Not Before: Dec 15 13:01:04 2025 GMT Not After : Dec 16 13:01:04 2025 GMT Subject: CN=becd5f31b27ecab5097cc241904df28085d4061e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:09:f2:cb:91:d7:47:de:e1:c9:88:ea:58:f4: bd:39:f2:56:13:53:46:02:cf:fb:c9:9b:a0:f4:7c: 16:ab:e7:2d:75:d0:04:db:9e:cb:cb:46:1e:c0:6f: 12:5c:3d:28:da:de:9f:02:67:d0:5d:db:6f:dd:c9: 8e:59:7b:da:c1:18:04:3d:b7:e0:d2:de:e7:28:0a: f8:00:4a:ca:e5:86:fc:28:4f:2c:3b:62:a8:75:8d: 0f:6a:fc:b8:3b:a0:a2:ad:1d:b9:f8:81:45:a5:e4: 72:e8:33:ff:62:cc:36:5a:01:b2:95:d7:f6:82:29: 09:37:27:35:6c:03:56:05:39:6f:76:1e:42:70:96: 4d:c6:74:4d:27:4e:7a:c8:3b:e2:19:b3:3c:b0:ba: 88:1b:45:f6:f3:e0:85:c5:f7:4d:3b:df:81:e7:e6: 8c:c6:6f:1b:15:da:63:20:e4:87:5c:ba:ba:79:fd: 55:b4:7f:93:bf:00:da:45:4a:ac:23:1b:87:9d:b1: af:e3:08:3c:ae:42:cd:cf:c4:ef:e7:7c:05:ff:7c: 5d:7c:b5:7c:bf:d1:f2:71:a4:c4:3e:0b:d9:4e:06: 75:f7:4c:e8:03:c0:9c:f4:86:f3:dd:45:67:94:2a: 27:43:ac:51:cc:9a:0b:de:c7:95:0c:73:a6:29:e6: 9a:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:CD:5F:31:B2:7E:CA:B5:09:7C:C2:41:90:4D:F2:80:85:D4:06:1E X509v3 Authority Key Identifier: keyid:AF:23:58:5B:FC:DD:06:1C:A9:46:E2:D9:EA:8B:97:E4:5B:9C:31:D6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ryNYW_zdBhypRuLZ6ouX5FucMdY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/1f36d5-3080-4a0e-9d63-79344da3a2e6/1/ryNYW_zdBhypRuLZ6ouX5FucMdY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/1f36d5-3080-4a0e-9d63-79344da3a2e6/1/ryNYW_zdBhypRuLZ6ouX5FucMdY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a3:36:46:97:65:57:cc:77:e4:73:10:f6:23:52:79:8d:06:21: 1c:95:89:c4:bf:59:db:31:1f:60:99:7b:b6:94:22:7d:70:83: 07:e3:dd:df:3c:ec:01:ee:7f:48:f4:e3:50:d0:8f:5d:dd:4b: 05:aa:81:d8:42:a9:a7:de:26:6b:8c:9d:e6:e2:9e:4a:cf:cc: c8:7f:9f:f9:f4:64:99:9f:2a:4d:35:38:a4:20:f9:dc:2d:9a: 16:82:b1:75:a0:dc:8a:62:5c:1e:68:ad:9d:cb:21:82:06:1d: f5:64:86:67:af:a2:6c:f0:32:d9:aa:91:f5:8e:61:cb:bc:03: e8:b4:1e:14:be:7b:e5:6d:2d:f1:6c:89:8c:0b:de:bb:50:35: c1:99:e8:bf:85:5f:bb:bf:08:ef:5f:8e:a4:3d:48:3a:1b:e1: 6c:1f:1f:60:4c:f0:74:f8:e9:b8:a1:69:04:fa:15:6b:52:5e: 92:da:31:4e:17:3c:89:21:16:d4:65:b2:3a:71:db:30:55:79: 61:42:30:56:98:ea:82:52:17:97:f5:1d:52:89:bf:27:5f:65: 1a:d3:c2:ac:bf:66:a4:0c:bc:1a:74:cf:db:7a:9d:43:86:45: 9f:4e:53:c6:4d:ac:53:ce:81:00:29:f3:29:9c:70:34:d8:78: 60:26:31:ed -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsiGaaCSn7DpQNn3BNKWxf2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFmMjM1ODViZmNkZDA2MWNhOTQ2ZTJkOWVhOGI5N2U0NWI5 YzMxZDYwHhcNMjUxMjE1MTMwMTA0WhcNMjUxMjE2MTMwMTA0WjAzMTEwLwYDVQQD EyhiZWNkNWYzMWIyN2VjYWI1MDk3Y2MyNDE5MDRkZjI4MDg1ZDQwNjFlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiAnyy5HXR97hyYjqWPS9OfJWE1NG As/7yZug9HwWq+ctddAE257Ly0YewG8SXD0o2t6fAmfQXdtv3cmOWXvawRgEPbfg 0t7nKAr4AErK5Yb8KE8sO2KodY0Pavy4O6CirR25+IFFpeRy6DP/Ysw2WgGyldf2 gikJNyc1bANWBTlvdh5CcJZNxnRNJ056yDviGbM8sLqIG0X28+CFxfdNO9+B5+aM xm8bFdpjIOSHXLq6ef1VtH+TvwDaRUqsIxuHnbGv4wg8rkLNz8Tv53wF/3xdfLV8 v9HycaTEPgvZTgZ190zoA8Cc9Ibz3UVnlConQ6xRzJoL3seVDHOmKeaafQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFL7NXzGyfsq1CXzCQZBN8oCF1AYeMB8GA1UdIwQY MBaAFK8jWFv83QYcqUbi2eqLl+RbnDHWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcnlOWVdfemRCaHlwUnVMWjZvdVg1RnVjTWRZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy8xZjM2ZDUtMzA4MC00YTBlLTlkNjMt NzkzNDRkYTNhMmU2LzEvcnlOWVdfemRCaHlwUnVMWjZvdVg1RnVjTWRZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMy8xZjM2ZDUtMzA4MC00YTBlLTlkNjMtNzkzNDRkYTNhMmU2 LzEvcnlOWVdfemRCaHlwUnVMWjZvdVg1RnVjTWRZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAozZGl2VX zHfkcxD2I1J5jQYhHJWJxL9Z2zEfYJl7tpQifXCDB+Pd3zzsAe5/SPTjUNCPXd1L BaqB2EKpp94ma4yd5uKeSs/MyH+f+fRkmZ8qTTU4pCD53C2aFoKxdaDcimJcHmit ncshggYd9WSGZ6+ibPAy2aqR9Y5hy7wD6LQeFL575W0t8WyJjAveu1A1wZnov4Vf u78I71+OpD1IOhvhbB8fYEzwdPjpuKFpBPoVa1JektoxThc8iSEW1GWyOnHbMFV5 YUIwVpjqglIXl/UdUom/J19lGtPCrL9mpAy8GnTP23qdQ4ZFn05Txk2sU86BACnz KZxwNNh4YCYx7Q== -----END CERTIFICATE-----Generated at Mon Dec 15 16:35:10 2025 by rpki-client