This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/57faee-68b2-4693-8130-ce434a402617/1/YO9KF7jv9Fugs51HSWVX44j__lI.mft File: YO9KF7jv9Fugs51HSWVX44j__lI.mft (raw, json) Hash identifier: CbZOB7+mSBoc03Oparor8M5MbEv8XzZ+dVA2iMpx7Kk= Subject key identifier: CD:77:19:D0:DD:A4:B6:4A:E4:FA:7E:C7:C3:F8:4E:E8:B7:B8:70:0E Authority key identifier: 60:EF:4A:17:B8:EF:F4:5B:A0:B3:9D:47:49:65:57:E3:88:FF:FE:52 Certificate issuer: /CN=60ef4a17b8eff45ba0b39d47496557e388fffe52 Certificate serial: 019B59AC8EE65FE3DD823A5DEAEC6F51CD29 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YO9KF7jv9Fugs51HSWVX44j__lI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/57faee-68b2-4693-8130-ce434a402617/1/YO9KF7jv9Fugs51HSWVX44j__lI.mft Manifest number: 027C Signing time: Fri 26 Dec 2025 08:00:39 +0000 Manifest this update: Fri 26 Dec 2025 08:00:39 +0000 Manifest next update: Sat 27 Dec 2025 08:00:39 +0000 Files and hashes: 1: WJ8mDGp2R9SerzYw88vehn3HSik.roa (hash: h5SXKLsi4QXI6eIjbslnIuS0eoxKGY5pZRrkhG82mKM=) 2: YO9KF7jv9Fugs51HSWVX44j__lI.crl (hash: lDWOpED82uMAkQb87dKB8DsQeCEVeq4YHjJH7hzKo60=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/57faee-68b2-4693-8130-ce434a402617/1/YO9KF7jv9Fugs51HSWVX44j__lI.crl rsync://rpki.ripe.net/repository/DEFAULT/b5/57faee-68b2-4693-8130-ce434a402617/1/YO9KF7jv9Fugs51HSWVX44j__lI.mft rsync://rpki.ripe.net/repository/DEFAULT/YO9KF7jv9Fugs51HSWVX44j__lI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:ac:8e:e6:5f:e3:dd:82:3a:5d:ea:ec:6f:51:cd:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=60ef4a17b8eff45ba0b39d47496557e388fffe52 Validity Not Before: Dec 26 08:00:39 2025 GMT Not After : Dec 27 08:00:39 2025 GMT Subject: CN=cd7719d0dda4b64ae4fa7ec7c3f84ee8b7b8700e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:29:52:d8:d4:57:a6:4e:36:e7:b4:04:4f:99: 1c:ab:9d:e8:5a:ff:a1:03:3b:92:af:6e:0d:31:e5: 9f:4f:8d:6a:fd:0e:7b:b6:db:bf:a8:59:04:26:a3: 38:b2:4b:c9:7c:ed:54:e5:f6:42:6b:af:99:1f:53: 48:63:76:8b:bf:c4:09:5d:f5:92:7f:47:44:87:88: 26:24:be:cf:e3:77:1a:e4:31:9e:45:f1:6a:39:0b: c2:31:fb:30:2e:67:5b:86:49:fb:be:c5:09:4f:65: 8f:a7:ef:93:c8:72:4a:82:59:0c:e7:19:7f:8e:4e: a7:00:85:e7:c4:60:e5:32:e9:c0:8f:7d:e7:74:72: f3:b9:ef:6b:75:a5:b6:e9:ba:3d:aa:40:85:89:97: e7:1d:cf:4e:37:83:dd:5b:59:b0:5d:d6:6a:ef:9a: 71:fb:05:e5:de:bc:ec:34:92:f3:95:9e:96:85:41: 00:30:57:59:82:9c:0e:94:b6:f3:4e:89:f9:60:38: 12:22:a1:0f:07:41:75:81:8f:86:b2:fd:55:e3:97: 61:12:6a:c9:1a:c6:73:0b:ab:34:61:fc:d8:35:d3: f2:0a:b4:ad:67:31:c6:f7:8b:c0:ed:49:23:23:64: 2f:a1:d2:bf:c4:3d:58:18:1b:01:10:f3:f0:50:b8: 41:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:77:19:D0:DD:A4:B6:4A:E4:FA:7E:C7:C3:F8:4E:E8:B7:B8:70:0E X509v3 Authority Key Identifier: keyid:60:EF:4A:17:B8:EF:F4:5B:A0:B3:9D:47:49:65:57:E3:88:FF:FE:52 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YO9KF7jv9Fugs51HSWVX44j__lI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/57faee-68b2-4693-8130-ce434a402617/1/YO9KF7jv9Fugs51HSWVX44j__lI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/57faee-68b2-4693-8130-ce434a402617/1/YO9KF7jv9Fugs51HSWVX44j__lI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b4:2c:57:82:26:ad:0d:3e:19:a0:1c:a9:c1:8f:d0:80:66:fc: 54:d5:93:74:c8:f2:c5:1f:73:87:7a:de:2e:74:ff:72:d0:d5: df:d3:38:31:1b:3f:93:cf:bc:6b:09:e7:1e:4a:c3:d9:fb:f3: ae:3b:52:d4:b7:00:21:99:4c:d1:b4:93:8a:1a:1c:0e:e1:d5: 9f:f3:be:1e:36:28:66:8f:42:36:93:39:c3:6d:21:18:83:e6: 23:3b:a6:72:15:fe:e2:95:d3:af:21:16:f0:04:f0:a5:67:ee: 3b:44:cb:a7:5a:9a:24:82:28:b8:84:ef:f4:9d:36:67:be:ee: 6c:32:85:72:7c:e1:33:59:e1:eb:df:c4:1e:b5:35:34:e7:59: c0:64:2a:66:db:c3:74:f0:e6:32:12:85:fc:56:a4:c6:52:fb: 9b:b0:b1:bf:f4:c6:40:04:00:ef:e6:27:86:71:3f:b5:c1:85: 25:29:ab:25:c6:8c:cd:a4:8f:20:7e:ec:b2:4a:26:c4:9e:ae: 7f:09:cb:90:38:60:f1:38:de:6e:03:77:99:cf:e5:02:6b:a3: d2:dc:48:7b:b9:6e:00:75:05:4d:20:83:1d:65:1f:e7:25:39: 89:d4:0f:fa:b2:b9:d3:9f:06:16:8d:16:af:0a:af:89:3c:27: 97:44:f1:b8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZrI7mX+Pdgjpd6uxvUc0pMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwZWY0YTE3YjhlZmY0NWJhMGIzOWQ0NzQ5NjU1N2UzODhm ZmZlNTIwHhcNMjUxMjI2MDgwMDM5WhcNMjUxMjI3MDgwMDM5WjAzMTEwLwYDVQQD EyhjZDc3MTlkMGRkYTRiNjRhZTRmYTdlYzdjM2Y4NGVlOGI3Yjg3MDBlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzSlS2NRXpk4257QET5kcq53oWv+h AzuSr24NMeWfT41q/Q57ttu/qFkEJqM4skvJfO1U5fZCa6+ZH1NIY3aLv8QJXfWS f0dEh4gmJL7P43ca5DGeRfFqOQvCMfswLmdbhkn7vsUJT2WPp++TyHJKglkM5xl/ jk6nAIXnxGDlMunAj33ndHLzue9rdaW26bo9qkCFiZfnHc9ON4PdW1mwXdZq75px +wXl3rzsNJLzlZ6WhUEAMFdZgpwOlLbzTon5YDgSIqEPB0F1gY+Gsv1V45dhEmrJ GsZzC6s0YfzYNdPyCrStZzHG94vA7UkjI2QvodK/xD1YGBsBEPPwULhB2QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFM13GdDdpLZK5Pp+x8P4Tui3uHAOMB8GA1UdIwQY MBaAFGDvShe47/RboLOdR0llV+OI//5SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWU85S0Y3anY5RnVnczUxSFNXVlg0NGpfX2xJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNS81N2ZhZWUtNjhiMi00NjkzLTgxMzAt Y2U0MzRhNDAyNjE3LzEvWU85S0Y3anY5RnVnczUxSFNXVlg0NGpfX2xJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNS81N2ZhZWUtNjhiMi00NjkzLTgxMzAtY2U0MzRhNDAyNjE3 LzEvWU85S0Y3anY5RnVnczUxSFNXVlg0NGpfX2xJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAtCxXgiat DT4ZoBypwY/QgGb8VNWTdMjyxR9zh3reLnT/ctDV39M4MRs/k8+8awnnHkrD2fvz rjtS1LcAIZlM0bSTihocDuHVn/O+HjYoZo9CNpM5w20hGIPmIzumchX+4pXTryEW 8ATwpWfuO0TLp1qaJIIouITv9J02Z77ubDKFcnzhM1nh69/EHrU1NOdZwGQqZtvD dPDmMhKF/FakxlL7m7Cxv/TGQAQA7+YnhnE/tcGFJSmrJcaMzaSPIH7sskomxJ6u fwnLkDhg8TjebgN3mc/lAmuj0txIe7luAHUFTSCDHWUf5yU5idQP+rK5058GFo0W rwqviTwnl0TxuA== -----END CERTIFICATE-----Generated at Fri Dec 26 16:06:41 2025 by rpki-client