This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/71f2e8-bd86-4c5e-9551-4d3a59cb9439/1/YihBc2HBxAaumnJX2qn7BiB4LTU.mft File: YihBc2HBxAaumnJX2qn7BiB4LTU.mft (raw, json) Hash identifier: mYNaxM7K1qjcGGqfQVZF4xGPeyoJ03WJf8FlCPD2ojI= Subject key identifier: 9A:42:EC:D6:1A:AF:56:B8:59:17:16:1C:75:57:90:99:B8:60:31:4A Authority key identifier: 62:28:41:73:61:C1:C4:06:AE:9A:72:57:DA:A9:FB:06:20:78:2D:35 Certificate issuer: /CN=6228417361c1c406ae9a7257daa9fb0620782d35 Certificate serial: 019B443879A20D3B46D6B79A275BEA0AC737 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YihBc2HBxAaumnJX2qn7BiB4LTU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/71f2e8-bd86-4c5e-9551-4d3a59cb9439/1/YihBc2HBxAaumnJX2qn7BiB4LTU.mft Manifest number: 1031 Signing time: Mon 22 Dec 2025 04:01:50 +0000 Manifest this update: Mon 22 Dec 2025 04:01:50 +0000 Manifest next update: Tue 23 Dec 2025 04:01:50 +0000 Files and hashes: 1: YihBc2HBxAaumnJX2qn7BiB4LTU.crl (hash: NR84EAPo725spxZPWy0svMe5FhJN9e8JRbIBQKW2hjY=) 2: orR6QmUobPq58IiNnqewDNf0I7s.roa (hash: cEMGLelbH1U4lpzSE43pcUZRdK2/HRG/uJ16sgFxOVU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b8/71f2e8-bd86-4c5e-9551-4d3a59cb9439/1/YihBc2HBxAaumnJX2qn7BiB4LTU.crl rsync://rpki.ripe.net/repository/DEFAULT/b8/71f2e8-bd86-4c5e-9551-4d3a59cb9439/1/YihBc2HBxAaumnJX2qn7BiB4LTU.mft rsync://rpki.ripe.net/repository/DEFAULT/YihBc2HBxAaumnJX2qn7BiB4LTU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 22:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:44:38:79:a2:0d:3b:46:d6:b7:9a:27:5b:ea:0a:c7:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6228417361c1c406ae9a7257daa9fb0620782d35 Validity Not Before: Dec 22 04:01:50 2025 GMT Not After : Dec 23 04:01:50 2025 GMT Subject: CN=9a42ecd61aaf56b85917161c75579099b860314a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:ff:18:40:bd:cf:e3:d5:b6:fd:25:cb:be:b3: 5d:8c:62:41:80:bb:01:cf:04:10:cd:fc:dd:38:41: 81:ef:29:d9:b7:0b:ae:89:73:79:c1:b4:3c:79:63: 3d:e3:14:89:67:a8:5d:25:95:7b:ea:8f:b4:cd:c9: 56:4e:60:2e:f1:73:6b:a6:12:b4:6b:fb:15:ae:8c: c9:8d:31:e5:0f:38:24:53:cd:de:3e:6b:60:07:10: e3:67:b9:13:fb:55:5d:49:fe:cf:17:e7:37:8d:34: 36:69:06:e8:98:38:27:9c:88:56:61:77:31:a5:45: 8d:a7:41:21:00:7b:28:24:27:40:6d:9e:43:74:db: 76:64:85:89:9d:cd:76:a6:ee:cd:9f:6e:11:8b:1d: 1f:72:23:a3:88:f4:b1:50:c9:80:7d:d0:2d:1a:fd: 5f:07:13:92:32:2b:5f:c7:a9:77:9b:0f:6f:06:37: fb:fa:e1:12:61:a1:13:a4:22:c8:2e:45:99:e3:22: 34:a1:0c:12:45:89:7f:1e:99:81:fc:2e:f3:cc:2d: 94:21:d0:06:19:bb:06:c8:f5:02:5d:b3:a2:b4:1c: bf:16:c7:0d:02:c2:d1:ca:18:31:51:13:aa:3a:49: ca:68:f5:59:ff:2f:92:1a:5d:21:d8:cc:b7:9a:88: 97:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:42:EC:D6:1A:AF:56:B8:59:17:16:1C:75:57:90:99:B8:60:31:4A X509v3 Authority Key Identifier: keyid:62:28:41:73:61:C1:C4:06:AE:9A:72:57:DA:A9:FB:06:20:78:2D:35 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YihBc2HBxAaumnJX2qn7BiB4LTU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/71f2e8-bd86-4c5e-9551-4d3a59cb9439/1/YihBc2HBxAaumnJX2qn7BiB4LTU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/71f2e8-bd86-4c5e-9551-4d3a59cb9439/1/YihBc2HBxAaumnJX2qn7BiB4LTU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 93:33:9e:fc:90:fd:5f:cc:10:8b:f5:ca:d3:c4:55:21:50:12: 27:04:aa:05:c9:6b:9c:e0:aa:2a:a8:69:a1:62:26:84:d0:48: eb:13:fd:64:33:72:bc:b5:63:d8:bb:e0:ff:fe:78:dc:43:32: ff:a9:33:fe:71:05:bb:6e:cc:eb:01:08:6a:b9:7b:ba:c1:84: af:04:c4:72:67:f4:2a:f8:bf:2f:ca:8d:b4:f6:b5:46:a7:23: fe:5c:a9:0a:56:94:1c:30:54:60:35:4e:7d:da:7e:0c:5e:5c: c9:54:07:b0:ce:ea:82:ff:0e:2a:4d:e0:fd:b6:65:81:04:52: 94:ac:f2:62:dd:5a:06:fe:52:af:df:b8:ff:0b:3a:c1:eb:5d: 75:04:41:2b:79:8f:1b:5b:dc:98:48:94:17:83:fe:b0:c8:89: 49:63:2e:ab:f2:c0:2a:79:b6:f3:21:8b:bb:dd:01:73:30:bb: 9b:48:ae:0c:cd:b5:e1:87:58:71:a8:84:2a:0b:a0:c1:6d:7a: e3:b4:cb:31:a2:b8:7a:99:6a:8e:eb:d8:7e:85:3b:8e:f3:53: 1d:8b:fc:c5:24:a7:d6:76:89:f8:b5:93:b0:b5:6d:8f:6d:2a: 8d:5f:00:23:41:4d:4b:1f:fc:0e:b9:57:78:db:57:eb:fe:99: 4e:da:13:78 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtEOHmiDTtG1reaJ1vqCsc3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYyMjg0MTczNjFjMWM0MDZhZTlhNzI1N2RhYTlmYjA2MjA3 ODJkMzUwHhcNMjUxMjIyMDQwMTUwWhcNMjUxMjIzMDQwMTUwWjAzMTEwLwYDVQQD Eyg5YTQyZWNkNjFhYWY1NmI4NTkxNzE2MWM3NTU3OTA5OWI4NjAzMTRhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnP8YQL3P49W2/SXLvrNdjGJBgLsB zwQQzfzdOEGB7ynZtwuuiXN5wbQ8eWM94xSJZ6hdJZV76o+0zclWTmAu8XNrphK0 a/sVrozJjTHlDzgkU83ePmtgBxDjZ7kT+1VdSf7PF+c3jTQ2aQbomDgnnIhWYXcx pUWNp0EhAHsoJCdAbZ5DdNt2ZIWJnc12pu7Nn24Rix0fciOjiPSxUMmAfdAtGv1f BxOSMitfx6l3mw9vBjf7+uESYaETpCLILkWZ4yI0oQwSRYl/HpmB/C7zzC2UIdAG GbsGyPUCXbOitBy/FscNAsLRyhgxUROqOknKaPVZ/y+SGl0h2My3moiX2QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJpC7NYar1a4WRcWHHVXkJm4YDFKMB8GA1UdIwQY MBaAFGIoQXNhwcQGrppyV9qp+wYgeC01MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWWloQmMySEJ4QWF1bW5KWDJxbjdCaUI0TFRVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOC83MWYyZTgtYmQ4Ni00YzVlLTk1NTEt NGQzYTU5Y2I5NDM5LzEvWWloQmMySEJ4QWF1bW5KWDJxbjdCaUI0TFRVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iOC83MWYyZTgtYmQ4Ni00YzVlLTk1NTEtNGQzYTU5Y2I5NDM5 LzEvWWloQmMySEJ4QWF1bW5KWDJxbjdCaUI0TFRVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkzOe/JD9 X8wQi/XK08RVIVASJwSqBclrnOCqKqhpoWImhNBI6xP9ZDNyvLVj2Lvg//543EMy /6kz/nEFu27M6wEIarl7usGErwTEcmf0Kvi/L8qNtPa1Rqcj/lypClaUHDBUYDVO fdp+DF5cyVQHsM7qgv8OKk3g/bZlgQRSlKzyYt1aBv5Sr9+4/ws6wetddQRBK3mP G1vcmEiUF4P+sMiJSWMuq/LAKnm28yGLu90BczC7m0iuDM214YdYcaiEKgugwW16 47TLMaK4eplqjuvYfoU7jvNTHYv8xSSn1naJ+LWTsLVtj20qjV8AI0FNSx/8DrlX eNtX6/6ZTtoTeA== -----END CERTIFICATE-----Generated at Mon Dec 22 06:09:42 2025 by rpki-client