This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/216973-516f-4501-9164-7f435bf5501c/1/yikNsvcpBfDbYmsAW6zwiHjRe6w.mft File: yikNsvcpBfDbYmsAW6zwiHjRe6w.mft (raw, json) Hash identifier: p/qmpNnELIv/2bsfmh9ujwJ9BFxY3tQuIf9iGWxynAA= Subject key identifier: E7:EF:D1:D3:11:E1:18:CB:DA:1D:FF:44:42:3A:97:29:22:27:6C:4F Authority key identifier: CA:29:0D:B2:F7:29:05:F0:DB:62:6B:00:5B:AC:F0:88:78:D1:7B:AC Certificate issuer: /CN=ca290db2f72905f0db626b005bacf08878d17bac Certificate serial: 019B5B65D66018C624C4B467708E834A07BB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yikNsvcpBfDbYmsAW6zwiHjRe6w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/216973-516f-4501-9164-7f435bf5501c/1/yikNsvcpBfDbYmsAW6zwiHjRe6w.mft Manifest number: 0BC2 Signing time: Fri 26 Dec 2025 16:02:39 +0000 Manifest this update: Fri 26 Dec 2025 16:02:39 +0000 Manifest next update: Sat 27 Dec 2025 16:02:39 +0000 Files and hashes: 1: 4hjeIW8185ZaECNggenf_uHhDOA.roa (hash: UoLjdkox8BXch3olGfF5NhOzyEQg7VA83kohLHFMIMk=) 2: Fw_kxU9y2ZFFUFhTyjj3cOM8HE0.roa (hash: RbilBDizHS14qZ4Da7c1uCTbplJrxj3lujK+7Ie1xww=) 3: IFrDv6Ls6n5V8fwzlZ-9RjYsC1A.roa (hash: /KA/Ir1BpmGewtvhuM2WTh9hgPTfLUu7FlDEzEKhle8=) 4: _6UZkqieR9kIkKZwwfKfkm35fd4.roa (hash: TAVIhSh9eMt1b6339NxSWJ46JPMbHN7C8v9n3qx3ibk=) 5: gqWeYouP3tCgtjbkj-l_gQg8hIo.roa (hash: /JDKYsMSdFrnBptTFdWQqSfzinHaa7LMqQq1Q4agYW8=) 6: iqYLpAFtuo6gr-j-Ly-Vnr8R2MU.roa (hash: qX/Ce2Cu2rGWIQEWtxm8FeM0QBiPxiljZdApDi//miE=) 7: yikNsvcpBfDbYmsAW6zwiHjRe6w.crl (hash: bCRGtG28JJ24xj6suqzwJ90riTzlo/ig9uTTCskjJ5A=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/216973-516f-4501-9164-7f435bf5501c/1/yikNsvcpBfDbYmsAW6zwiHjRe6w.crl rsync://rpki.ripe.net/repository/DEFAULT/be/216973-516f-4501-9164-7f435bf5501c/1/yikNsvcpBfDbYmsAW6zwiHjRe6w.mft rsync://rpki.ripe.net/repository/DEFAULT/yikNsvcpBfDbYmsAW6zwiHjRe6w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 16:02:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5b:65:d6:60:18:c6:24:c4:b4:67:70:8e:83:4a:07:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ca290db2f72905f0db626b005bacf08878d17bac Validity Not Before: Dec 26 16:02:39 2025 GMT Not After : Dec 27 16:02:39 2025 GMT Subject: CN=e7efd1d311e118cbda1dff44423a972922276c4f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:02:c3:74:08:5c:22:65:cc:16:30:ec:7a:12: 7c:29:d2:a6:a8:15:3a:d8:97:df:cc:3c:84:9c:42: 1f:86:11:e6:7e:09:5b:3e:98:ba:f3:62:af:be:f6: 81:4e:74:31:51:54:b3:b8:37:b1:36:d8:fa:aa:0a: 65:3b:9c:f4:db:46:ab:f6:19:a6:a0:89:e1:87:c6: 91:03:21:a8:f1:13:09:9f:35:43:d3:f6:bb:36:f7: 5a:b9:fe:b5:93:42:09:1c:a3:9f:5b:fd:79:bb:7f: 7a:cb:06:52:6a:db:50:b9:2f:0a:0a:d9:7d:13:1a: 19:44:f4:38:32:68:83:71:67:71:36:60:18:c6:56: c7:72:28:32:a0:ea:26:16:d3:c9:66:bb:12:fd:70: d0:d8:4d:d9:fd:db:c4:70:4f:17:9d:a9:f9:df:81: d2:2c:c6:53:7b:33:66:9c:2b:eb:a0:24:ee:04:ae: ea:22:b1:e8:e2:58:69:34:be:80:13:09:42:d8:46: 69:af:f6:8d:0d:61:09:b3:65:5c:3d:44:1c:00:ad: e7:0b:0a:40:c5:26:22:18:9e:70:f4:9f:47:00:44: bd:70:eb:29:ef:df:1a:72:4d:5f:c6:f9:57:77:ea: 57:f2:a2:cd:64:cc:71:bc:dd:20:3a:e2:b3:ea:d1: 1b:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:EF:D1:D3:11:E1:18:CB:DA:1D:FF:44:42:3A:97:29:22:27:6C:4F X509v3 Authority Key Identifier: keyid:CA:29:0D:B2:F7:29:05:F0:DB:62:6B:00:5B:AC:F0:88:78:D1:7B:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yikNsvcpBfDbYmsAW6zwiHjRe6w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/216973-516f-4501-9164-7f435bf5501c/1/yikNsvcpBfDbYmsAW6zwiHjRe6w.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/be/216973-516f-4501-9164-7f435bf5501c/1/yikNsvcpBfDbYmsAW6zwiHjRe6w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4a:24:c0:5a:0f:b1:b5:0d:c1:e7:ae:ec:a7:b6:51:e0:7f:54: 50:74:84:2d:91:b8:68:bd:2f:9d:92:80:da:ee:00:61:47:ba: e5:01:fc:f0:38:28:af:ae:94:ab:f4:19:d9:4b:ea:4e:13:4b: dd:f9:08:40:7f:76:85:f0:f2:8d:11:82:13:a1:0c:29:a9:83: 20:08:8a:85:f8:3a:85:87:0e:5d:0a:3b:f6:51:ae:15:33:ad: 88:a0:02:b6:2a:5d:c6:ad:f0:53:b9:57:c5:01:05:00:18:08: 1d:bb:9e:9e:bd:df:f6:18:ec:8f:3d:3c:e1:7c:7a:df:5a:6f: 43:05:d6:8d:e9:8b:65:5e:9a:6a:6f:d0:98:3d:01:bf:98:ef: cd:4b:b5:1d:f7:4e:ac:a9:aa:92:79:24:42:d9:d7:e2:61:3d: 3a:8b:e4:91:e3:41:3b:7f:79:d6:ec:42:87:b0:28:c5:a0:34: 43:0b:a8:93:40:70:c1:88:ec:f1:79:c5:51:67:64:aa:43:5f: ed:80:00:60:12:72:81:43:dc:a3:2f:22:c7:d0:23:7e:7a:3f: aa:47:f4:83:c5:4b:45:04:83:f2:81:f2:38:ab:bd:fb:da:5b: 8d:84:48:ea:0b:fa:ef:29:0e:94:e2:ed:fa:7b:e1:4f:e5:25: 2a:8a:31:63 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtbZdZgGMYkxLRncI6DSge7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNhMjkwZGIyZjcyOTA1ZjBkYjYyNmIwMDViYWNmMDg4Nzhk MTdiYWMwHhcNMjUxMjI2MTYwMjM5WhcNMjUxMjI3MTYwMjM5WjAzMTEwLwYDVQQD EyhlN2VmZDFkMzExZTExOGNiZGExZGZmNDQ0MjNhOTcyOTIyMjc2YzRmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3QLDdAhcImXMFjDsehJ8KdKmqBU6 2JffzDyEnEIfhhHmfglbPpi682KvvvaBTnQxUVSzuDexNtj6qgplO5z020ar9hmm oInhh8aRAyGo8RMJnzVD0/a7Nvdauf61k0IJHKOfW/15u396ywZSattQuS8KCtl9 ExoZRPQ4MmiDcWdxNmAYxlbHcigyoOomFtPJZrsS/XDQ2E3Z/dvEcE8Xnan534HS LMZTezNmnCvroCTuBK7qIrHo4lhpNL6AEwlC2EZpr/aNDWEJs2VcPUQcAK3nCwpA xSYiGJ5w9J9HAES9cOsp798ack1fxvlXd+pX8qLNZMxxvN0gOuKz6tEbMQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOfv0dMR4RjL2h3/REI6lykiJ2xPMB8GA1UdIwQY MBaAFMopDbL3KQXw22JrAFus8Ih40XusMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveWlrTnN2Y3BCZkRiWW1zQVc2endpSGpSZTZ3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZS8yMTY5NzMtNTE2Zi00NTAxLTkxNjQt N2Y0MzViZjU1MDFjLzEveWlrTnN2Y3BCZkRiWW1zQVc2endpSGpSZTZ3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZS8yMTY5NzMtNTE2Zi00NTAxLTkxNjQtN2Y0MzViZjU1MDFj LzEveWlrTnN2Y3BCZkRiWW1zQVc2endpSGpSZTZ3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASiTAWg+x tQ3B567sp7ZR4H9UUHSELZG4aL0vnZKA2u4AYUe65QH88Dgor66Uq/QZ2UvqThNL 3fkIQH92hfDyjRGCE6EMKamDIAiKhfg6hYcOXQo79lGuFTOtiKACtipdxq3wU7lX xQEFABgIHbuenr3f9hjsjz084Xx631pvQwXWjemLZV6aam/QmD0Bv5jvzUu1HfdO rKmqknkkQtnX4mE9OovkkeNBO3951uxCh7AoxaA0Qwuok0BwwYjs8XnFUWdkqkNf 7YAAYBJygUPcoy8ix9Ajfno/qkf0g8VLRQSD8oHyOKu9+9pbjYRI6gv67ykOlOLt +nvhT+UlKooxYw== -----END CERTIFICATE-----Generated at Sat Dec 27 01:43:23 2025 by rpki-client