This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/f558aa-55ef-450f-8b97-10090d1e7d94/1/ylFUFYkF0dRMRYjf0lgC8ySpPWE.mft File: ylFUFYkF0dRMRYjf0lgC8ySpPWE.mft (raw, json) Hash identifier: jkYzaVeaWdS/MI8TUFI47gNGwIoTatCFPRMyDFefkdM= Subject key identifier: 8D:CE:0B:16:7D:22:0F:11:DB:2D:5D:33:76:2B:F8:E3:C9:1B:B1:14 Authority key identifier: CA:51:54:15:89:05:D1:D4:4C:45:88:DF:D2:58:02:F3:24:A9:3D:61 Certificate issuer: /CN=ca5154158905d1d44c4588dfd25802f324a93d61 Certificate serial: 019B476F6691CF1C938397453E4EB6106E3F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ylFUFYkF0dRMRYjf0lgC8ySpPWE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/f558aa-55ef-450f-8b97-10090d1e7d94/1/ylFUFYkF0dRMRYjf0lgC8ySpPWE.mft Manifest number: 05E5 Signing time: Mon 22 Dec 2025 19:00:41 +0000 Manifest this update: Mon 22 Dec 2025 19:00:41 +0000 Manifest next update: Tue 23 Dec 2025 19:00:41 +0000 Files and hashes: 1: AVYBUHDR8cllHf1Clp-tHJ3mnJM.roa (hash: AnG8BWUfPxV5o1EC1SevW/uoDYd+aQAPwe1f/26+nZM=) 2: jDQ8F_F11yNWOX6kbTNP0Ql0Wi8.asa (hash: a4/BoGxMxUQA6ejTQInWpx7OBve66J6mI7qjuV4Hb5Q=) 3: ylFUFYkF0dRMRYjf0lgC8ySpPWE.crl (hash: nYPA1fBvIUCjBfC63lAsdR0Fyq5leX5aqD+U36yy5Hs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/f558aa-55ef-450f-8b97-10090d1e7d94/1/ylFUFYkF0dRMRYjf0lgC8ySpPWE.crl rsync://rpki.ripe.net/repository/DEFAULT/d6/f558aa-55ef-450f-8b97-10090d1e7d94/1/ylFUFYkF0dRMRYjf0lgC8ySpPWE.mft rsync://rpki.ripe.net/repository/DEFAULT/ylFUFYkF0dRMRYjf0lgC8ySpPWE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 23 Dec 2025 15:30:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:47:6f:66:91:cf:1c:93:83:97:45:3e:4e:b6:10:6e:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ca5154158905d1d44c4588dfd25802f324a93d61 Validity Not Before: Dec 22 19:00:41 2025 GMT Not After : Dec 23 19:00:41 2025 GMT Subject: CN=8dce0b167d220f11db2d5d33762bf8e3c91bb114 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:94:0c:3f:e4:88:a4:2a:fe:bc:5d:a4:ff:63: 44:f4:80:f7:85:c2:bf:c8:14:85:bf:04:14:c4:a1: d0:0c:4c:cd:3d:f1:d0:b1:c1:96:77:67:a2:c9:52: f4:36:51:6e:c9:8d:c2:6b:d2:91:35:ec:7f:b6:c6: 6a:ae:64:6c:a5:e0:80:71:f8:ab:fc:cd:38:e0:08: 61:4d:60:4c:41:ee:c2:09:a2:c9:4d:8c:32:ae:38: eb:e8:ee:45:64:db:39:99:a7:68:29:ce:22:b9:2c: e7:b5:3c:01:db:1d:61:c2:3c:5b:bd:c5:a4:7c:a6: 2b:70:c1:06:99:3d:d4:83:96:1f:26:46:e8:5f:10: 90:46:47:15:ed:7b:76:17:98:0f:ff:14:ad:83:98: 59:ed:bc:c5:87:ea:e2:70:8f:21:c2:ac:85:6e:30: ec:ca:de:07:e0:98:6f:9f:00:0a:cd:15:ea:12:bf: b2:54:12:9d:05:ca:ed:dd:0f:18:8e:00:88:c0:08: 14:cd:3f:e9:29:50:8f:4e:8e:4c:17:91:48:80:18: e4:dd:ab:1e:43:4f:74:10:45:3c:68:22:fb:b2:61: 8c:67:21:77:bb:9f:25:26:0e:a1:60:6e:9c:ab:58: 47:b3:57:8d:db:7a:80:0e:f9:ab:3b:d3:c8:09:7f: cd:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:CE:0B:16:7D:22:0F:11:DB:2D:5D:33:76:2B:F8:E3:C9:1B:B1:14 X509v3 Authority Key Identifier: keyid:CA:51:54:15:89:05:D1:D4:4C:45:88:DF:D2:58:02:F3:24:A9:3D:61 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ylFUFYkF0dRMRYjf0lgC8ySpPWE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/f558aa-55ef-450f-8b97-10090d1e7d94/1/ylFUFYkF0dRMRYjf0lgC8ySpPWE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/f558aa-55ef-450f-8b97-10090d1e7d94/1/ylFUFYkF0dRMRYjf0lgC8ySpPWE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 45:40:b1:8f:90:76:b6:66:19:e0:3a:b4:a0:15:65:3d:c5:48: ce:3c:1f:07:6b:7c:b0:f3:20:20:f3:94:09:c8:9c:06:51:1c: eb:f2:59:ee:31:f3:40:d6:f0:d3:5a:89:74:57:e9:72:c0:54: ee:b2:9a:6d:cd:aa:c5:48:f4:8a:ee:ca:59:ad:46:9b:1b:ed: 9a:0f:2b:b9:cb:fc:3b:51:3a:dd:19:7e:52:3a:09:85:4e:c9: 4f:54:c4:70:2c:78:3c:34:ac:f8:e9:a7:d5:eb:16:7c:38:c5: 7a:db:8e:d3:17:a8:cd:c3:59:98:5a:e0:96:4e:a9:0a:70:ba: f1:9f:60:fb:3d:2b:68:91:62:8c:8b:a8:61:80:a7:b6:83:49: 5a:98:50:fd:08:6c:f9:a2:80:be:89:95:34:e2:10:54:65:fd: 0a:7a:e5:d8:7a:f7:3c:fa:6e:93:7f:05:bb:25:4a:41:5d:13: 2c:55:0b:67:66:64:c4:74:a8:de:ec:b3:71:25:3f:c2:02:67: c2:1c:28:97:f3:66:d1:72:a0:54:c3:14:01:2c:c6:36:ab:d5: e2:8d:a6:ea:ec:e9:bb:00:87:d9:66:40:1d:08:29:73:31:23: 08:f7:7d:03:86:05:27:1e:36:26:bf:cb:66:18:d3:cf:45:19: 52:51:c5:8d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtHb2aRzxyTg5dFPk62EG4/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNhNTE1NDE1ODkwNWQxZDQ0YzQ1ODhkZmQyNTgwMmYzMjRh OTNkNjEwHhcNMjUxMjIyMTkwMDQxWhcNMjUxMjIzMTkwMDQxWjAzMTEwLwYDVQQD Eyg4ZGNlMGIxNjdkMjIwZjExZGIyZDVkMzM3NjJiZjhlM2M5MWJiMTE0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArZQMP+SIpCr+vF2k/2NE9ID3hcK/ yBSFvwQUxKHQDEzNPfHQscGWd2eiyVL0NlFuyY3Ca9KRNex/tsZqrmRspeCAcfir /M044AhhTWBMQe7CCaLJTYwyrjjr6O5FZNs5madoKc4iuSzntTwB2x1hwjxbvcWk fKYrcMEGmT3Ug5YfJkboXxCQRkcV7Xt2F5gP/xStg5hZ7bzFh+ricI8hwqyFbjDs yt4H4JhvnwAKzRXqEr+yVBKdBcrt3Q8YjgCIwAgUzT/pKVCPTo5MF5FIgBjk3ase Q090EEU8aCL7smGMZyF3u58lJg6hYG6cq1hHs1eN23qADvmrO9PICX/NXwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFI3OCxZ9Ig8R2y1dM3Yr+OPJG7EUMB8GA1UdIwQY MBaAFMpRVBWJBdHUTEWI39JYAvMkqT1hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveWxGVUZZa0YwZFJNUllqZjBsZ0M4eVNwUFdFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNi9mNTU4YWEtNTVlZi00NTBmLThiOTct MTAwOTBkMWU3ZDk0LzEveWxGVUZZa0YwZFJNUllqZjBsZ0M4eVNwUFdFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNi9mNTU4YWEtNTVlZi00NTBmLThiOTctMTAwOTBkMWU3ZDk0 LzEveWxGVUZZa0YwZFJNUllqZjBsZ0M4eVNwUFdFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARUCxj5B2 tmYZ4Dq0oBVlPcVIzjwfB2t8sPMgIPOUCcicBlEc6/JZ7jHzQNbw01qJdFfpcsBU 7rKabc2qxUj0iu7KWa1Gmxvtmg8rucv8O1E63Rl+UjoJhU7JT1TEcCx4PDSs+Omn 1esWfDjFetuO0xeozcNZmFrglk6pCnC68Z9g+z0raJFijIuoYYCntoNJWphQ/Qhs +aKAvomVNOIQVGX9Cnrl2Hr3PPpuk38FuyVKQV0TLFULZ2ZkxHSo3uyzcSU/wgJn whwol/Nm0XKgVMMUASzGNqvV4o2m6uzpuwCH2WZAHQgpczEjCPd9A4YFJx42Jr/L ZhjTz0UZUlHFjQ== -----END CERTIFICATE-----Generated at Mon Dec 22 20:44:00 2025 by rpki-client