This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/2f67b9-490b-43ef-b088-4ab3973502fb/1/YC8n-tkkUqJUswoGDtODsTx1jtY.mft File: YC8n-tkkUqJUswoGDtODsTx1jtY.mft (raw, json) Hash identifier: Ubb6VZ2/9cmQfIimMaGZe2VhaeTgY8N4lo+68W/MlFk= Subject key identifier: 6C:CD:DF:38:F8:B7:84:A8:2A:0C:71:4D:AD:3E:E8:96:F8:E8:6C:44 Authority key identifier: 60:2F:27:FA:D9:24:52:A2:54:B3:0A:06:0E:D3:83:B1:3C:75:8E:D6 Certificate issuer: /CN=602f27fad92452a254b30a060ed383b13c758ed6 Certificate serial: 019B5A5204184A112D03BAEC05F3AF5A53F8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YC8n-tkkUqJUswoGDtODsTx1jtY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/2f67b9-490b-43ef-b088-4ab3973502fb/1/YC8n-tkkUqJUswoGDtODsTx1jtY.mft Manifest number: 09FC Signing time: Fri 26 Dec 2025 11:01:23 +0000 Manifest this update: Fri 26 Dec 2025 11:01:23 +0000 Manifest next update: Sat 27 Dec 2025 11:01:23 +0000 Files and hashes: 1: TRV1zvMwN77u4mbYXqSf5mMtgyk.roa (hash: AGCpSC7dzCZj1/xhxXIQK1OjIYEOjpJ4XzT4WLt1kl0=) 2: YC8n-tkkUqJUswoGDtODsTx1jtY.crl (hash: YxPx06gFPzBrWp/lSKOP4LnXF3eTfqjJq3LJ0ooA35w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/2f67b9-490b-43ef-b088-4ab3973502fb/1/YC8n-tkkUqJUswoGDtODsTx1jtY.crl rsync://rpki.ripe.net/repository/DEFAULT/d1/2f67b9-490b-43ef-b088-4ab3973502fb/1/YC8n-tkkUqJUswoGDtODsTx1jtY.mft rsync://rpki.ripe.net/repository/DEFAULT/YC8n-tkkUqJUswoGDtODsTx1jtY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 11:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5a:52:04:18:4a:11:2d:03:ba:ec:05:f3:af:5a:53:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=602f27fad92452a254b30a060ed383b13c758ed6 Validity Not Before: Dec 26 11:01:23 2025 GMT Not After : Dec 27 11:01:23 2025 GMT Subject: CN=6ccddf38f8b784a82a0c714dad3ee896f8e86c44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:1e:96:73:76:13:78:59:3f:51:54:b3:ef:28: 83:d5:64:ac:46:e2:7c:a4:dc:8b:b9:27:27:d4:a7: 04:0f:bd:43:3d:73:f7:32:1c:75:e9:c1:4a:74:bb: 65:49:52:4b:71:50:c1:7e:d8:d9:40:97:f2:c4:cd: 85:d2:39:1c:f1:36:e2:7d:6c:03:23:e9:fb:fe:79: 6e:ec:94:8f:7f:5e:db:bc:e2:47:61:68:f0:5b:eb: 7a:b1:34:35:05:35:50:dc:c6:5b:4d:84:65:87:cb: 04:cc:fa:75:fe:03:f3:7b:b6:7a:ec:ae:35:aa:fc: 41:6f:3f:5d:b7:fd:06:4d:be:84:95:bc:ce:0a:61: 03:25:3d:3d:fd:51:29:57:03:44:39:54:eb:63:0e: 04:9c:33:aa:5e:7f:29:00:d3:4c:07:50:e8:93:e1: af:5c:c8:f1:55:5b:b6:bb:4c:39:84:88:d7:61:36: 66:b1:ce:34:12:63:ae:fa:be:fb:b6:66:54:0f:ff: 29:18:ba:99:f0:69:cb:b9:8e:4d:78:37:75:d9:18: da:3a:1d:8a:f1:db:18:02:2b:c4:bf:71:f6:a9:5a: a2:cb:9b:9c:6f:5c:be:87:cf:b6:73:ba:48:2a:f4: 36:d9:db:0e:3f:80:63:30:20:10:29:4c:10:46:98: ee:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:CD:DF:38:F8:B7:84:A8:2A:0C:71:4D:AD:3E:E8:96:F8:E8:6C:44 X509v3 Authority Key Identifier: keyid:60:2F:27:FA:D9:24:52:A2:54:B3:0A:06:0E:D3:83:B1:3C:75:8E:D6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YC8n-tkkUqJUswoGDtODsTx1jtY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/2f67b9-490b-43ef-b088-4ab3973502fb/1/YC8n-tkkUqJUswoGDtODsTx1jtY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/2f67b9-490b-43ef-b088-4ab3973502fb/1/YC8n-tkkUqJUswoGDtODsTx1jtY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a5:29:72:ec:41:56:11:37:6c:52:68:ae:52:89:96:34:f5:4d: 90:09:be:fd:2d:1f:d5:51:3d:95:b6:fa:23:fa:56:b4:6e:73: 74:40:85:b4:a5:b5:1e:8f:30:67:3d:f6:1c:f0:6a:38:bc:21: 2c:d6:c5:45:6c:c1:4b:cf:9f:4f:bb:d7:35:29:f6:1d:da:5c: ac:97:9c:4b:f6:d7:86:1a:b6:de:96:5a:4e:e0:7a:82:68:ea: 83:70:2d:cd:43:ea:41:96:5e:33:0f:c4:f2:d7:81:0d:79:e8: 5e:f3:3b:42:52:0c:f3:37:ad:c1:a2:f5:1b:8a:bc:93:1c:26: f9:46:5b:6b:ca:e7:f3:c0:2d:a5:19:b3:88:70:d2:e6:28:90: 31:16:d8:03:44:b3:30:9a:1d:cf:c4:b3:76:43:b2:f0:d7:9c: 8d:95:77:91:0f:c7:94:d8:f6:59:94:53:26:90:7a:b6:32:54: 24:73:da:e0:d5:52:13:11:ad:dd:9f:5d:40:1f:96:8e:b6:b8: 6b:6a:4e:13:9c:72:f0:4f:66:74:b6:08:26:4f:b5:93:cc:8d: ed:3c:7c:70:cf:1d:f9:91:bc:4b:92:6c:fd:7b:c4:5f:6f:66: d3:dd:a1:eb:c3:b9:82:aa:2d:ed:f6:f6:1d:f0:33:9a:52:a9: ae:13:0b:7b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtaUgQYShEtA7rsBfOvWlP4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwMmYyN2ZhZDkyNDUyYTI1NGIzMGEwNjBlZDM4M2IxM2M3 NThlZDYwHhcNMjUxMjI2MTEwMTIzWhcNMjUxMjI3MTEwMTIzWjAzMTEwLwYDVQQD Eyg2Y2NkZGYzOGY4Yjc4NGE4MmEwYzcxNGRhZDNlZTg5NmY4ZTg2YzQ0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqh6Wc3YTeFk/UVSz7yiD1WSsRuJ8 pNyLuScn1KcED71DPXP3Mhx16cFKdLtlSVJLcVDBftjZQJfyxM2F0jkc8TbifWwD I+n7/nlu7JSPf17bvOJHYWjwW+t6sTQ1BTVQ3MZbTYRlh8sEzPp1/gPze7Z67K41 qvxBbz9dt/0GTb6ElbzOCmEDJT09/VEpVwNEOVTrYw4EnDOqXn8pANNMB1Dok+Gv XMjxVVu2u0w5hIjXYTZmsc40EmOu+r77tmZUD/8pGLqZ8GnLuY5NeDd12RjaOh2K 8dsYAivEv3H2qVqiy5ucb1y+h8+2c7pIKvQ22dsOP4BjMCAQKUwQRpjuwQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGzN3zj4t4SoKgxxTa0+6Jb46GxEMB8GA1UdIwQY MBaAFGAvJ/rZJFKiVLMKBg7Tg7E8dY7WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWUM4bi10a2tVcUpVc3dvR0R0T0RzVHgxanRZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMS8yZjY3YjktNDkwYi00M2VmLWIwODgt NGFiMzk3MzUwMmZiLzEvWUM4bi10a2tVcUpVc3dvR0R0T0RzVHgxanRZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMS8yZjY3YjktNDkwYi00M2VmLWIwODgtNGFiMzk3MzUwMmZi LzEvWUM4bi10a2tVcUpVc3dvR0R0T0RzVHgxanRZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApSly7EFW ETdsUmiuUomWNPVNkAm+/S0f1VE9lbb6I/pWtG5zdECFtKW1Ho8wZz32HPBqOLwh LNbFRWzBS8+fT7vXNSn2HdpcrJecS/bXhhq23pZaTuB6gmjqg3AtzUPqQZZeMw/E 8teBDXnoXvM7QlIM8zetwaL1G4q8kxwm+UZba8rn88AtpRmziHDS5iiQMRbYA0Sz MJodz8SzdkOy8NecjZV3kQ/HlNj2WZRTJpB6tjJUJHPa4NVSExGt3Z9dQB+Wjra4 a2pOE5xy8E9mdLYIJk+1k8yN7Tx8cM8d+ZG8S5Js/XvEX29m092h68O5gqot7fb2 HfAzmlKprhMLew== -----END CERTIFICATE-----Generated at Fri Dec 26 16:03:52 2025 by rpki-client