This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/5676a3-9c39-4db0-951e-d2b6982bc484/1/YEBzL9vKpSkA2yRiB1v07xUVlpU.mft File: YEBzL9vKpSkA2yRiB1v07xUVlpU.mft (raw, json) Hash identifier: 8248/uLH4MAQ7ZrLUO59h2xIwtlcHUL0TEfKXyDj/VI= Subject key identifier: 89:B5:A8:90:4E:A6:BD:CC:E3:14:30:A0:B4:66:8E:22:D3:19:9C:9C Authority key identifier: 60:40:73:2F:DB:CA:A5:29:00:DB:24:62:07:5B:F4:EF:15:15:96:95 Certificate issuer: /CN=6040732fdbcaa52900db2462075bf4ef15159695 Certificate serial: 019B2107186A17CFDB87CC35C2A86339AB65 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YEBzL9vKpSkA2yRiB1v07xUVlpU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/5676a3-9c39-4db0-951e-d2b6982bc484/1/YEBzL9vKpSkA2yRiB1v07xUVlpU.mft Manifest number: 062A Signing time: Mon 15 Dec 2025 08:01:11 +0000 Manifest this update: Mon 15 Dec 2025 08:01:11 +0000 Manifest next update: Tue 16 Dec 2025 08:01:11 +0000 Files and hashes: 1: 2zI93eWS4MAq1q_HzWCmHMK0vvc.roa (hash: OPrS0FrS6pSekQT7FXidaqihz4eIxPAHQ00wl3WWNU8=) 2: YEBzL9vKpSkA2yRiB1v07xUVlpU.crl (hash: YKOOY2b7BnEs4kki0fKwU4xrZK32jx2AP4GbPJf/agQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/5676a3-9c39-4db0-951e-d2b6982bc484/1/YEBzL9vKpSkA2yRiB1v07xUVlpU.crl rsync://rpki.ripe.net/repository/DEFAULT/a3/5676a3-9c39-4db0-951e-d2b6982bc484/1/YEBzL9vKpSkA2yRiB1v07xUVlpU.mft rsync://rpki.ripe.net/repository/DEFAULT/YEBzL9vKpSkA2yRiB1v07xUVlpU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 08:00:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:21:07:18:6a:17:cf:db:87:cc:35:c2:a8:63:39:ab:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6040732fdbcaa52900db2462075bf4ef15159695 Validity Not Before: Dec 15 08:01:11 2025 GMT Not After : Dec 16 08:01:11 2025 GMT Subject: CN=89b5a8904ea6bdcce31430a0b4668e22d3199c9c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:da:e1:5a:b5:9a:be:72:d9:fd:8a:5e:af:93: 14:0d:04:af:38:76:8a:61:ab:6c:63:f8:fd:b1:ce: f5:79:24:39:d0:ac:9a:be:47:43:d7:b3:e8:6a:0d: 74:c7:14:00:8c:bf:c2:63:ac:a1:ac:dc:cf:76:62: a9:eb:41:c2:16:13:fb:d3:53:3c:e8:92:dc:83:7a: ec:16:6b:e9:8f:92:b1:b7:59:4e:f0:99:f5:ea:90: e5:8e:75:f5:04:99:b5:22:5b:be:93:d3:52:4b:04: 72:9f:be:d9:21:90:2e:c3:71:b8:18:6d:7c:16:cc: 19:67:21:8b:8d:9f:6a:16:d4:e0:e7:04:d0:84:60: ec:10:dd:5b:6e:37:db:ec:6c:f6:4f:0e:ef:bf:89: 44:be:2d:8e:b9:3b:32:20:8c:7f:2d:5a:b5:0d:38: f5:d7:73:3b:98:fb:a0:8a:fe:98:d9:45:58:9c:2a: ed:1d:d4:fd:e7:c7:6c:77:7b:f4:c2:35:49:3b:e9: e1:31:1d:f2:55:23:bf:6c:98:03:ae:f6:96:de:b8: 11:f4:26:95:6f:d1:4a:31:f8:4c:8d:a5:97:3b:fa: fd:c4:1a:66:d4:96:bd:ff:a7:00:ed:d8:29:23:9d: 2c:ed:76:a5:60:6d:ea:68:bd:f5:71:9b:66:8f:08: 4c:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:B5:A8:90:4E:A6:BD:CC:E3:14:30:A0:B4:66:8E:22:D3:19:9C:9C X509v3 Authority Key Identifier: keyid:60:40:73:2F:DB:CA:A5:29:00:DB:24:62:07:5B:F4:EF:15:15:96:95 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YEBzL9vKpSkA2yRiB1v07xUVlpU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/5676a3-9c39-4db0-951e-d2b6982bc484/1/YEBzL9vKpSkA2yRiB1v07xUVlpU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/5676a3-9c39-4db0-951e-d2b6982bc484/1/YEBzL9vKpSkA2yRiB1v07xUVlpU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0b:06:60:1e:49:8e:31:97:f5:38:23:ca:50:a7:e4:f0:2f:34: 70:6a:d2:a8:09:f1:d0:a3:b1:8b:94:5d:19:fc:76:5d:ea:ae: 0d:74:61:21:2c:37:d1:71:cf:d0:39:ae:9f:dc:01:19:f3:e7: 85:b0:7f:a4:9a:56:e5:85:05:59:92:cd:23:54:0c:74:fd:53: 97:5e:bc:cb:8f:1f:28:e5:ac:4a:b5:34:0a:2d:da:7c:a8:de: 5d:ad:3e:ae:06:0a:c0:3e:10:83:73:05:55:b4:49:5b:51:60: 75:d0:8c:c7:cb:d5:10:d7:e2:4e:9d:ef:0f:48:90:be:0d:b8: 5a:ab:8a:60:cf:59:11:af:e7:6e:16:1a:9b:da:8b:2b:48:4b: 27:0e:be:85:32:99:e2:60:f5:54:52:01:de:cc:5b:9b:26:53: 08:f3:d6:4c:24:43:34:09:7a:42:30:8a:50:8c:0c:4f:90:ad: fa:59:85:1f:0e:76:d7:c3:9d:57:47:c5:a2:01:70:1c:c9:9f: da:5d:a8:27:38:2b:21:02:83:b7:0b:39:52:90:47:38:c3:3a: 75:be:c4:8e:a8:b5:79:c3:e4:a2:ca:7a:c4:82:2c:50:11:cf: 23:4b:08:ca:7a:6a:3c:18:88:10:70:72:de:dd:c9:42:40:5c: 2a:ba:12:ae -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZshBxhqF8/bh8w1wqhjOatlMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwNDA3MzJmZGJjYWE1MjkwMGRiMjQ2MjA3NWJmNGVmMTUx NTk2OTUwHhcNMjUxMjE1MDgwMTExWhcNMjUxMjE2MDgwMTExWjAzMTEwLwYDVQQD Eyg4OWI1YTg5MDRlYTZiZGNjZTMxNDMwYTBiNDY2OGUyMmQzMTk5YzljMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmdrhWrWavnLZ/Yper5MUDQSvOHaK YatsY/j9sc71eSQ50KyavkdD17Poag10xxQAjL/CY6yhrNzPdmKp60HCFhP701M8 6JLcg3rsFmvpj5Kxt1lO8Jn16pDljnX1BJm1Ilu+k9NSSwRyn77ZIZAuw3G4GG18 FswZZyGLjZ9qFtTg5wTQhGDsEN1bbjfb7Gz2Tw7vv4lEvi2OuTsyIIx/LVq1DTj1 13M7mPugiv6Y2UVYnCrtHdT958dsd3v0wjVJO+nhMR3yVSO/bJgDrvaW3rgR9CaV b9FKMfhMjaWXO/r9xBpm1Ja9/6cA7dgpI50s7XalYG3qaL31cZtmjwhMcQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIm1qJBOpr3M4xQwoLRmjiLTGZycMB8GA1UdIwQY MBaAFGBAcy/byqUpANskYgdb9O8VFZaVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWUVCekw5dktwU2tBMnlSaUIxdjA3eFVWbHBVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy81Njc2YTMtOWMzOS00ZGIwLTk1MWUt ZDJiNjk4MmJjNDg0LzEvWUVCekw5dktwU2tBMnlSaUIxdjA3eFVWbHBVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMy81Njc2YTMtOWMzOS00ZGIwLTk1MWUtZDJiNjk4MmJjNDg0 LzEvWUVCekw5dktwU2tBMnlSaUIxdjA3eFVWbHBVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACwZgHkmO MZf1OCPKUKfk8C80cGrSqAnx0KOxi5RdGfx2XequDXRhISw30XHP0Dmun9wBGfPn hbB/pJpW5YUFWZLNI1QMdP1Tl168y48fKOWsSrU0Ci3afKjeXa0+rgYKwD4Qg3MF VbRJW1FgddCMx8vVENfiTp3vD0iQvg24WquKYM9ZEa/nbhYam9qLK0hLJw6+hTKZ 4mD1VFIB3sxbmyZTCPPWTCRDNAl6QjCKUIwMT5Ct+lmFHw5218OdV0fFogFwHMmf 2l2oJzgrIQKDtws5UpBHOMM6db7Ejqi1ecPkosp6xIIsUBHPI0sIynpqPBiIEHBy 3t3JQkBcKroSrg== -----END CERTIFICATE-----Generated at Mon Dec 15 13:13:27 2025 by rpki-client