This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/2f977a-c0db-437e-9f60-5592360e3e8e/1/yrk2s1-SzexekN8zvcUIZhwntFU.mft File: yrk2s1-SzexekN8zvcUIZhwntFU.mft (raw, json) Hash identifier: v+A6Ks0g4TXbQynfsGyByrLNn+0nII86EXDGhbSdp3E= Subject key identifier: 37:89:8B:CF:3C:C3:4D:57:48:6C:25:C8:A4:F7:9F:18:F3:46:74:AF Authority key identifier: CA:B9:36:B3:5F:92:CD:EC:5E:90:DF:33:BD:C5:08:66:1C:27:B4:55 Certificate issuer: /CN=cab936b35f92cdec5e90df33bdc508661c27b455 Certificate serial: 019B19BC9A6B9E416C89CE0FDE7ADE6F576B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yrk2s1-SzexekN8zvcUIZhwntFU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/2f977a-c0db-437e-9f60-5592360e3e8e/1/yrk2s1-SzexekN8zvcUIZhwntFU.mft Manifest number: 0EA8 Signing time: Sat 13 Dec 2025 22:02:29 +0000 Manifest this update: Sat 13 Dec 2025 22:02:29 +0000 Manifest next update: Sun 14 Dec 2025 22:02:29 +0000 Files and hashes: 1: jXQtN0_lH1jMkgeFoBItsFqK9sA.roa (hash: CEWMWhf6Wo0twHsiVnqhdkBQ3a5xIOWXXq6UQo1OqpU=) 2: k4w-6jVNy-8iNTxThqtVK8dHfNM.roa (hash: i49dbw3SszheCL/rtxIrLH6ESMYCJl9JAeSfGhPrYzs=) 3: yrk2s1-SzexekN8zvcUIZhwntFU.crl (hash: LUKl1Q8Vpg1zM3Tah6Nb+HmPfWYww82hNaAHZiOlkvA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/2f977a-c0db-437e-9f60-5592360e3e8e/1/yrk2s1-SzexekN8zvcUIZhwntFU.crl rsync://rpki.ripe.net/repository/DEFAULT/a7/2f977a-c0db-437e-9f60-5592360e3e8e/1/yrk2s1-SzexekN8zvcUIZhwntFU.mft rsync://rpki.ripe.net/repository/DEFAULT/yrk2s1-SzexekN8zvcUIZhwntFU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Dec 2025 17:47:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:19:bc:9a:6b:9e:41:6c:89:ce:0f:de:7a:de:6f:57:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cab936b35f92cdec5e90df33bdc508661c27b455 Validity Not Before: Dec 13 22:02:29 2025 GMT Not After : Dec 14 22:02:29 2025 GMT Subject: CN=37898bcf3cc34d57486c25c8a4f79f18f34674af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:3e:2f:fc:ef:71:83:52:28:3b:64:e0:a6:d2: 6f:d5:73:7c:67:62:d3:8f:95:48:d5:c9:80:1f:07: a8:8f:c2:df:ff:4b:a7:ed:c0:a1:8b:e0:85:72:4f: 2e:8e:40:c7:b0:79:05:f6:5b:1c:36:a8:63:49:73: 14:86:31:e1:6e:22:ac:60:82:a4:c4:29:36:67:d3: 58:62:71:6c:bc:83:e0:84:a6:93:cd:91:6a:e2:36: f9:22:b3:a9:f2:4e:17:32:83:eb:93:c8:68:56:f8: f7:37:35:9d:d7:15:bb:5f:8e:46:ac:cd:3c:e2:5d: b5:cc:45:30:15:cc:1d:f2:5b:49:8a:b6:29:ea:d3: 7a:b4:e6:75:98:bd:bc:5e:d0:ab:06:f5:a0:55:89: 64:20:b4:5e:9d:08:28:2c:c8:fb:68:c9:76:74:78: 96:b2:22:3b:dc:a1:ce:5e:71:6a:b9:83:d3:1e:10: b6:0c:8a:a3:a6:e7:9e:ac:c5:92:1c:db:7a:10:f9: c6:54:6c:24:0a:90:58:18:12:50:f5:9c:30:1a:03: c9:4d:3f:66:99:bc:46:29:62:11:7f:52:bf:e6:fc: 60:52:9d:a0:39:c1:25:7f:17:dc:22:8e:11:de:47: e9:fb:65:80:0d:70:ff:a1:dd:42:0d:53:f3:fd:35: df:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:89:8B:CF:3C:C3:4D:57:48:6C:25:C8:A4:F7:9F:18:F3:46:74:AF X509v3 Authority Key Identifier: keyid:CA:B9:36:B3:5F:92:CD:EC:5E:90:DF:33:BD:C5:08:66:1C:27:B4:55 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yrk2s1-SzexekN8zvcUIZhwntFU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/2f977a-c0db-437e-9f60-5592360e3e8e/1/yrk2s1-SzexekN8zvcUIZhwntFU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/2f977a-c0db-437e-9f60-5592360e3e8e/1/yrk2s1-SzexekN8zvcUIZhwntFU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9a:a3:65:00:a3:2f:f1:b4:05:2b:a7:1f:39:3c:f7:e2:85:55: d4:56:7f:2d:d2:5a:94:19:ef:15:92:a2:6d:14:3f:07:b0:6a: ee:63:11:40:91:08:42:41:1e:af:f2:28:aa:4a:f5:c1:9a:d3: 31:d0:c2:41:12:e7:8b:ac:d2:61:04:8b:ba:93:aa:a0:f7:4d: 60:d7:cb:4f:ff:e6:39:b8:ec:f0:38:3a:c3:31:a4:62:cc:12: c7:b5:72:e9:d8:69:04:c1:8e:ac:7b:1a:b4:71:0d:ee:84:48: 24:52:e2:49:7c:fb:64:b2:3e:7e:31:d6:77:8c:5e:54:a9:f1: 7a:61:da:8a:1f:65:4b:8e:f7:8d:c2:2e:92:90:2d:c3:f6:9c: e8:b4:2f:a9:ab:db:e1:66:e6:54:26:79:64:fe:e0:b0:37:63: 42:42:4c:4d:6d:ec:5b:6c:26:64:bf:2b:ee:66:95:5d:1f:6f: 2b:43:b9:a1:82:53:4c:7c:92:ea:41:fe:53:65:b1:cc:01:c6: b7:40:72:fd:97:de:0d:7c:51:ed:bf:d3:b9:bb:fe:a5:e9:e8: cc:7f:a6:1b:b8:d9:b6:99:3e:4c:08:f2:bf:d4:dd:ef:da:f2: 2b:9f:3f:ab:8c:02:1a:e6:c2:be:64:e6:a1:69:5e:20:ce:9e: 5e:11:ad:d0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsZvJprnkFsic4P3nreb1drMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNhYjkzNmIzNWY5MmNkZWM1ZTkwZGYzM2JkYzUwODY2MWMy N2I0NTUwHhcNMjUxMjEzMjIwMjI5WhcNMjUxMjE0MjIwMjI5WjAzMTEwLwYDVQQD EygzNzg5OGJjZjNjYzM0ZDU3NDg2YzI1YzhhNGY3OWYxOGYzNDY3NGFmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuz4v/O9xg1IoO2TgptJv1XN8Z2LT j5VI1cmAHweoj8Lf/0un7cChi+CFck8ujkDHsHkF9lscNqhjSXMUhjHhbiKsYIKk xCk2Z9NYYnFsvIPghKaTzZFq4jb5IrOp8k4XMoPrk8hoVvj3NzWd1xW7X45GrM08 4l21zEUwFcwd8ltJirYp6tN6tOZ1mL28XtCrBvWgVYlkILRenQgoLMj7aMl2dHiW siI73KHOXnFquYPTHhC2DIqjpueerMWSHNt6EPnGVGwkCpBYGBJQ9ZwwGgPJTT9m mbxGKWIRf1K/5vxgUp2gOcElfxfcIo4R3kfp+2WADXD/od1CDVPz/TXfAQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDeJi888w01XSGwlyKT3nxjzRnSvMB8GA1UdIwQY MBaAFMq5NrNfks3sXpDfM73FCGYcJ7RVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveXJrMnMxLVN6ZXhla044enZjVUlaaHdudEZVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy8yZjk3N2EtYzBkYi00MzdlLTlmNjAt NTU5MjM2MGUzZThlLzEveXJrMnMxLVN6ZXhla044enZjVUlaaHdudEZVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNy8yZjk3N2EtYzBkYi00MzdlLTlmNjAtNTU5MjM2MGUzZThl LzEveXJrMnMxLVN6ZXhla044enZjVUlaaHdudEZVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmqNlAKMv 8bQFK6cfOTz34oVV1FZ/LdJalBnvFZKibRQ/B7Bq7mMRQJEIQkEer/Ioqkr1wZrT MdDCQRLni6zSYQSLupOqoPdNYNfLT//mObjs8Dg6wzGkYswSx7Vy6dhpBMGOrHsa tHEN7oRIJFLiSXz7ZLI+fjHWd4xeVKnxemHaih9lS473jcIukpAtw/ac6LQvqavb 4WbmVCZ5ZP7gsDdjQkJMTW3sW2wmZL8r7maVXR9vK0O5oYJTTHyS6kH+U2WxzAHG t0By/ZfeDXxR7b/Tubv+penozH+mG7jZtpk+TAjyv9Td79ryK58/q4wCGubCvmTm oWleIM6eXhGt0A== -----END CERTIFICATE-----Generated at Sun Dec 14 00:03:15 2025 by rpki-client