This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/ac3276-50ad-4ebc-a2a6-9808545933c9/1/YDgxphvIqPTLhYhwIvtvhjlzRdw.mft File: YDgxphvIqPTLhYhwIvtvhjlzRdw.mft (raw, json) Hash identifier: sq84lYdhj7uiSl5vieqgO1LARefGEbDwMzhy+kgCxQ4= Subject key identifier: CD:01:23:A4:08:9E:25:E6:75:83:62:86:A3:4F:5D:B8:A5:5F:55:8F Authority key identifier: 60:38:31:A6:1B:C8:A8:F4:CB:85:88:70:22:FB:6F:86:39:73:45:DC Certificate issuer: /CN=603831a61bc8a8f4cb85887022fb6f86397345dc Certificate serial: 019AAC82D71F390938FA037F4DCF152416DD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YDgxphvIqPTLhYhwIvtvhjlzRdw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/ac3276-50ad-4ebc-a2a6-9808545933c9/1/YDgxphvIqPTLhYhwIvtvhjlzRdw.mft Manifest number: 0E50 Signing time: Sat 22 Nov 2025 17:00:47 +0000 Manifest this update: Sat 22 Nov 2025 17:00:47 +0000 Manifest next update: Sun 23 Nov 2025 17:00:47 +0000 Files and hashes: 1: BbO3Y81u57rZF7WlM500MsuZpRM.roa (hash: ENegZhckEyjrMTUEgK0PeHY3+6b9WA+KNwr6cWbkGV8=) 2: VPoc4sp2b0J8IUmBhYFRCQnsPD0.roa (hash: syajYrJmIJZ/O9q2a3nZ7jEdzvbYM5uKAi7nB9k82iw=) 3: YDgxphvIqPTLhYhwIvtvhjlzRdw.crl (hash: k1obSEguF/HewihFEWy/fTcHE4Sxhp/9prg8zdb84hM=) 4: _mYolmt2fF0wabxHp1kAcOpFjJQ.roa (hash: Ni2pHhwSkaVczL8tsRRH+ZM9PBph4eSrgcYZ18OoRUY=) 5: ucZk7RPUTaIeSxLkQGWFeSNWVec.roa (hash: 5rWJbfTjArOhmwmwJF8k3Fgre3TIPFtEAx1ngBb1v5c=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/ac3276-50ad-4ebc-a2a6-9808545933c9/1/YDgxphvIqPTLhYhwIvtvhjlzRdw.crl rsync://rpki.ripe.net/repository/DEFAULT/b3/ac3276-50ad-4ebc-a2a6-9808545933c9/1/YDgxphvIqPTLhYhwIvtvhjlzRdw.mft rsync://rpki.ripe.net/repository/DEFAULT/YDgxphvIqPTLhYhwIvtvhjlzRdw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 23 Nov 2025 12:00:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:ac:82:d7:1f:39:09:38:fa:03:7f:4d:cf:15:24:16:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=603831a61bc8a8f4cb85887022fb6f86397345dc Validity Not Before: Nov 22 17:00:47 2025 GMT Not After : Nov 23 17:00:47 2025 GMT Subject: CN=cd0123a4089e25e675836286a34f5db8a55f558f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:c4:03:4b:0d:47:c5:2d:49:f8:d8:76:ea:eb: 36:1f:20:ef:3d:a0:02:74:99:13:55:9a:79:27:d2: c1:7a:a2:03:4b:af:77:76:c0:bf:b0:69:a4:26:68: eb:53:e5:0d:78:3c:e3:1f:25:86:d1:ae:7f:8f:5d: 41:d2:dc:65:c0:09:6b:18:16:11:ec:21:22:5b:c0: 26:6e:92:70:3e:21:25:82:d7:f6:56:60:fb:0d:c2: 04:b3:a9:38:c2:66:f4:16:7d:3f:83:c7:9e:9b:a0: 01:44:ee:a4:5c:23:34:67:cd:40:d5:99:3f:89:32: cb:2d:7e:46:14:ab:08:ea:09:9b:c6:0f:a5:54:3b: fe:12:bf:e1:54:a2:7c:6e:4d:58:6c:c3:0b:e7:c1: 53:1f:55:57:dd:38:73:1c:4b:c3:c0:4a:9a:b6:63: 77:c4:73:a2:c5:fa:99:30:bf:05:53:31:b2:cc:6b: 75:f3:62:61:2f:31:f8:b1:b6:0c:ca:02:0e:ef:d6: 9d:de:f1:db:f2:d8:1d:e1:24:a4:1e:61:c4:2e:87: f9:fe:8d:2b:2e:0f:28:8e:b8:6d:c9:c1:68:18:a5: 85:cf:3d:cd:3c:57:b8:a2:bc:db:f3:58:73:2e:0f: 9e:c3:1b:c1:b9:bb:2d:cd:a2:b5:b1:97:ca:a8:22: ca:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:01:23:A4:08:9E:25:E6:75:83:62:86:A3:4F:5D:B8:A5:5F:55:8F X509v3 Authority Key Identifier: keyid:60:38:31:A6:1B:C8:A8:F4:CB:85:88:70:22:FB:6F:86:39:73:45:DC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YDgxphvIqPTLhYhwIvtvhjlzRdw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/ac3276-50ad-4ebc-a2a6-9808545933c9/1/YDgxphvIqPTLhYhwIvtvhjlzRdw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/ac3276-50ad-4ebc-a2a6-9808545933c9/1/YDgxphvIqPTLhYhwIvtvhjlzRdw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 96:65:7a:cd:b5:ea:1f:ea:cb:86:96:ab:18:88:7d:9d:aa:20: a0:51:09:29:67:fd:44:f6:5b:01:ce:67:7c:d4:56:99:f1:47: eb:48:9e:a3:21:fa:53:1b:a8:2d:99:f7:46:a5:08:4f:11:85: f9:07:25:53:ae:8f:9a:71:e3:1f:df:08:e6:32:7a:45:b0:e9: c3:76:76:12:0d:1e:2d:e0:9c:b0:d5:42:ee:47:e5:78:8e:57: ff:88:58:37:4b:0c:b9:0b:81:97:d5:58:a8:d9:96:1b:ba:db: fd:89:97:4e:d7:4d:26:e0:47:1f:6c:46:38:58:84:08:06:54: 99:c8:2c:cf:ee:aa:c9:bf:41:00:13:f5:99:cb:02:92:22:0d: f1:08:29:17:79:7f:2e:e0:8a:3a:e4:1f:46:a1:77:bb:6e:3b: 8e:1b:aa:36:37:3c:fe:94:33:9f:2b:83:ac:e9:4a:0f:27:19: 68:b5:7b:67:e1:60:96:33:45:34:44:59:8f:e3:80:eb:0c:db: cb:6a:bb:0f:9d:18:20:6d:3d:f8:5a:f4:2e:a4:92:58:fb:18: f2:a5:fe:17:db:9d:2a:38:29:1e:8a:d4:5b:bf:39:98:cd:3c: bc:a0:1d:1b:c4:67:c7:73:e7:b7:64:a3:b5:7c:13:4f:1c:20: 91:68:64:e1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZqsgtcfOQk4+gN/Tc8VJBbdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwMzgzMWE2MWJjOGE4ZjRjYjg1ODg3MDIyZmI2Zjg2Mzk3 MzQ1ZGMwHhcNMjUxMTIyMTcwMDQ3WhcNMjUxMTIzMTcwMDQ3WjAzMTEwLwYDVQQD EyhjZDAxMjNhNDA4OWUyNWU2NzU4MzYyODZhMzRmNWRiOGE1NWY1NThmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAosQDSw1HxS1J+Nh26us2HyDvPaAC dJkTVZp5J9LBeqIDS693dsC/sGmkJmjrU+UNeDzjHyWG0a5/j11B0txlwAlrGBYR 7CEiW8AmbpJwPiElgtf2VmD7DcIEs6k4wmb0Fn0/g8eem6ABRO6kXCM0Z81A1Zk/ iTLLLX5GFKsI6gmbxg+lVDv+Er/hVKJ8bk1YbMML58FTH1VX3ThzHEvDwEqatmN3 xHOixfqZML8FUzGyzGt182JhLzH4sbYMygIO79ad3vHb8tgd4SSkHmHELof5/o0r Lg8ojrhtycFoGKWFzz3NPFe4orzb81hzLg+ewxvBubstzaK1sZfKqCLKgwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFM0BI6QIniXmdYNihqNPXbilX1WPMB8GA1UdIwQY MBaAFGA4MaYbyKj0y4WIcCL7b4Y5c0XcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWURneHBodklxUFRMaFlod0l2dHZoamx6UmR3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMy9hYzMyNzYtNTBhZC00ZWJjLWEyYTYt OTgwODU0NTkzM2M5LzEvWURneHBodklxUFRMaFlod0l2dHZoamx6UmR3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMy9hYzMyNzYtNTBhZC00ZWJjLWEyYTYtOTgwODU0NTkzM2M5 LzEvWURneHBodklxUFRMaFlod0l2dHZoamx6UmR3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlmV6zbXq H+rLhparGIh9naogoFEJKWf9RPZbAc5nfNRWmfFH60ieoyH6UxuoLZn3RqUITxGF +QclU66PmnHjH98I5jJ6RbDpw3Z2Eg0eLeCcsNVC7kfleI5X/4hYN0sMuQuBl9VY qNmWG7rb/YmXTtdNJuBHH2xGOFiECAZUmcgsz+6qyb9BABP1mcsCkiIN8QgpF3l/ LuCKOuQfRqF3u247jhuqNjc8/pQznyuDrOlKDycZaLV7Z+FgljNFNERZj+OA6wzb y2q7D50YIG09+Fr0LqSSWPsY8qX+F9udKjgpHorUW785mM08vKAdG8Rnx3Pnt2Sj tXwTTxwgkWhk4Q== -----END CERTIFICATE-----Generated at Sat Nov 22 21:40:06 2025 by rpki-client