This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/4d95ba-99fc-493e-a5c4-6b9ff2cfa07f/1/tY6n73bYACz8pmxSD3ybYIo5XZU.mft File: tY6n73bYACz8pmxSD3ybYIo5XZU.mft (raw, json) Hash identifier: 9JebdctlfribNRD0ZDOaRx9nJTH8VoLRziO42ju/7lA= Subject key identifier: D1:9D:78:72:A4:AA:70:72:4B:73:82:53:55:48:40:45:80:94:BF:C7 Authority key identifier: B5:8E:A7:EF:76:D8:00:2C:FC:A6:6C:52:0F:7C:9B:60:8A:39:5D:95 Certificate issuer: /CN=b58ea7ef76d8002cfca66c520f7c9b608a395d95 Certificate serial: 019B5ABF665F95A4ACC250179117AB2889D1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tY6n73bYACz8pmxSD3ybYIo5XZU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/4d95ba-99fc-493e-a5c4-6b9ff2cfa07f/1/tY6n73bYACz8pmxSD3ybYIo5XZU.mft Manifest number: 0728 Signing time: Fri 26 Dec 2025 13:00:51 +0000 Manifest this update: Fri 26 Dec 2025 13:00:51 +0000 Manifest next update: Sat 27 Dec 2025 13:00:51 +0000 Files and hashes: 1: tY6n73bYACz8pmxSD3ybYIo5XZU.crl (hash: SDR0hCVL0QERg8I7vzpt2VuMpaUk3qlG2ax4rQe+1Do=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/4d95ba-99fc-493e-a5c4-6b9ff2cfa07f/1/tY6n73bYACz8pmxSD3ybYIo5XZU.crl rsync://rpki.ripe.net/repository/DEFAULT/e5/4d95ba-99fc-493e-a5c4-6b9ff2cfa07f/1/tY6n73bYACz8pmxSD3ybYIo5XZU.mft rsync://rpki.ripe.net/repository/DEFAULT/tY6n73bYACz8pmxSD3ybYIo5XZU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 11:47:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5a:bf:66:5f:95:a4:ac:c2:50:17:91:17:ab:28:89:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b58ea7ef76d8002cfca66c520f7c9b608a395d95 Validity Not Before: Dec 26 13:00:51 2025 GMT Not After : Dec 27 13:00:51 2025 GMT Subject: CN=d19d7872a4aa70724b738253554840458094bfc7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:f7:ad:c4:ea:71:f1:1e:83:58:bc:96:ff:a5: 45:0f:7f:3f:d2:78:f7:84:f2:97:e0:14:c0:f4:07: 50:be:77:f0:6a:a3:71:85:a1:9c:24:85:5f:3c:43: 6a:58:9f:bf:e0:c8:9b:b1:ce:ac:21:43:2c:39:b0: e7:a6:43:8e:cd:47:e0:bb:6c:ad:34:f6:f0:f8:06: 1d:19:af:7f:e7:41:75:93:b2:2f:2b:d5:30:db:0b: fa:74:6c:37:0d:ee:f8:72:59:7f:0c:c3:fe:86:4a: 2d:b0:13:2e:b7:97:52:76:28:1f:6f:00:1a:19:9c: f0:82:05:a7:2b:fa:b7:03:72:02:3b:9f:de:f0:8a: 0e:c6:43:ac:97:db:06:b7:70:5d:0a:d3:ec:22:10: fa:93:a3:7f:36:88:66:d7:7c:b3:ae:2e:23:9e:1a: d2:0c:4d:1a:d3:42:43:15:63:0a:a2:d3:b7:3d:42: 7b:15:55:ec:ee:a3:1a:aa:b9:f7:69:e9:01:b9:a0: 16:ed:9f:ed:ae:9c:a9:14:f6:9b:f5:03:f9:54:cb: c1:a3:55:00:8a:84:7a:9b:41:28:c6:d5:bc:c5:c8: 6c:87:23:4b:e3:25:18:46:b6:6b:6a:41:46:22:7d: 39:f6:df:44:b2:2c:ff:42:ff:89:d2:e4:be:72:b0: f8:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:9D:78:72:A4:AA:70:72:4B:73:82:53:55:48:40:45:80:94:BF:C7 X509v3 Authority Key Identifier: keyid:B5:8E:A7:EF:76:D8:00:2C:FC:A6:6C:52:0F:7C:9B:60:8A:39:5D:95 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tY6n73bYACz8pmxSD3ybYIo5XZU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/4d95ba-99fc-493e-a5c4-6b9ff2cfa07f/1/tY6n73bYACz8pmxSD3ybYIo5XZU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/4d95ba-99fc-493e-a5c4-6b9ff2cfa07f/1/tY6n73bYACz8pmxSD3ybYIo5XZU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 94:d7:c2:cf:01:ac:22:ae:10:8a:08:38:6e:ca:38:cd:a1:3d: f1:0c:42:fb:d6:96:cc:46:80:26:69:aa:43:7a:62:76:1b:e0: 91:10:d7:32:97:84:e2:fe:d6:c0:63:28:59:da:02:8c:e2:9f: aa:21:97:a3:69:7c:e7:1f:df:95:a8:94:03:79:3f:09:97:a4: 86:cc:52:4d:4c:6f:28:5c:72:60:64:ba:2e:f8:43:b7:3f:ee: 2c:03:23:d4:63:ee:0f:35:3d:a0:c2:06:9d:2f:a1:02:a7:93: be:3c:d6:85:61:64:17:b0:97:35:ca:b7:35:c8:04:1a:e1:7d: c8:aa:5c:af:bf:eb:67:b3:24:1e:03:16:85:70:61:1c:36:a2: 96:84:6e:19:61:6b:55:92:70:88:36:2d:78:75:95:9f:8f:07: 99:7e:bf:2e:eb:6f:c0:65:a9:27:39:cb:b9:fe:03:d5:f7:f1: d3:04:85:9a:01:ef:09:87:a4:1d:38:4b:58:64:15:d8:3a:25: d5:00:5e:c0:1b:1f:bf:a0:74:f4:c9:23:8c:ee:50:cb:66:7d: 15:87:70:b7:df:c7:65:24:45:c4:9f:fd:40:eb:ea:60:10:d0: 08:08:be:c2:a1:81:c1:53:c2:d9:60:30:a8:41:2f:c1:8a:1e: 90:09:6f:d0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtav2ZflaSswlAXkRerKInRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI1OGVhN2VmNzZkODAwMmNmY2E2NmM1MjBmN2M5YjYwOGEz OTVkOTUwHhcNMjUxMjI2MTMwMDUxWhcNMjUxMjI3MTMwMDUxWjAzMTEwLwYDVQQD EyhkMTlkNzg3MmE0YWE3MDcyNGI3MzgyNTM1NTQ4NDA0NTgwOTRiZmM3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+PetxOpx8R6DWLyW/6VFD38/0nj3 hPKX4BTA9AdQvnfwaqNxhaGcJIVfPENqWJ+/4Mibsc6sIUMsObDnpkOOzUfgu2yt NPbw+AYdGa9/50F1k7IvK9Uw2wv6dGw3De74cll/DMP+hkotsBMut5dSdigfbwAa GZzwggWnK/q3A3ICO5/e8IoOxkOsl9sGt3BdCtPsIhD6k6N/Nohm13yzri4jnhrS DE0a00JDFWMKotO3PUJ7FVXs7qMaqrn3aekBuaAW7Z/trpypFPab9QP5VMvBo1UA ioR6m0EoxtW8xchshyNL4yUYRrZrakFGIn059t9Esiz/Qv+J0uS+crD40wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNGdeHKkqnByS3OCU1VIQEWAlL/HMB8GA1UdIwQY MBaAFLWOp+922AAs/KZsUg98m2CKOV2VMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdFk2bjczYllBQ3o4cG14U0QzeWJZSW81WFpVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNS80ZDk1YmEtOTlmYy00OTNlLWE1YzQt NmI5ZmYyY2ZhMDdmLzEvdFk2bjczYllBQ3o4cG14U0QzeWJZSW81WFpVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNS80ZDk1YmEtOTlmYy00OTNlLWE1YzQtNmI5ZmYyY2ZhMDdm LzEvdFk2bjczYllBQ3o4cG14U0QzeWJZSW81WFpVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlNfCzwGs Iq4Qigg4bso4zaE98QxC+9aWzEaAJmmqQ3pidhvgkRDXMpeE4v7WwGMoWdoCjOKf qiGXo2l85x/flaiUA3k/CZekhsxSTUxvKFxyYGS6LvhDtz/uLAMj1GPuDzU9oMIG nS+hAqeTvjzWhWFkF7CXNcq3NcgEGuF9yKpcr7/rZ7MkHgMWhXBhHDailoRuGWFr VZJwiDYteHWVn48HmX6/LutvwGWpJznLuf4D1ffx0wSFmgHvCYekHThLWGQV2Dol 1QBewBsfv6B09MkjjO5Qy2Z9FYdwt9/HZSRFxJ/9QOvqYBDQCAi+wqGBwVPC2WAw qEEvwYoekAlv0A== -----END CERTIFICATE-----Generated at Fri Dec 26 16:05:27 2025 by rpki-client