This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/402eea-4814-4877-8d7a-3ca2f796b596/1/YsuMEjOwFrHwSBCJc9asPnYvY-0.mft File: YsuMEjOwFrHwSBCJc9asPnYvY-0.mft (raw, json) Hash identifier: OZ6H15Ggo4NuvL3PplZkKWSO17ti911zNiaA6WLTKTk= Subject key identifier: A4:E4:FF:BA:85:19:79:4E:B5:18:1F:B8:21:25:DC:E9:8B:00:EC:B5 Authority key identifier: 62:CB:8C:12:33:B0:16:B1:F0:48:10:89:73:D6:AC:3E:76:2F:63:ED Certificate issuer: /CN=62cb8c1233b016b1f048108973d6ac3e762f63ed Certificate serial: 019B59E3ADB86E1B73D792B364155E3EE97A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YsuMEjOwFrHwSBCJc9asPnYvY-0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/402eea-4814-4877-8d7a-3ca2f796b596/1/YsuMEjOwFrHwSBCJc9asPnYvY-0.mft Manifest number: 133F Signing time: Fri 26 Dec 2025 09:00:51 +0000 Manifest this update: Fri 26 Dec 2025 09:00:51 +0000 Manifest next update: Sat 27 Dec 2025 09:00:51 +0000 Files and hashes: 1: YsuMEjOwFrHwSBCJc9asPnYvY-0.crl (hash: 7fuoBIJcoMmYiFA6JyikY5tBHeatJd4wycwoPLrpH0I=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/402eea-4814-4877-8d7a-3ca2f796b596/1/YsuMEjOwFrHwSBCJc9asPnYvY-0.crl rsync://rpki.ripe.net/repository/DEFAULT/e8/402eea-4814-4877-8d7a-3ca2f796b596/1/YsuMEjOwFrHwSBCJc9asPnYvY-0.mft rsync://rpki.ripe.net/repository/DEFAULT/YsuMEjOwFrHwSBCJc9asPnYvY-0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:e3:ad:b8:6e:1b:73:d7:92:b3:64:15:5e:3e:e9:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=62cb8c1233b016b1f048108973d6ac3e762f63ed Validity Not Before: Dec 26 09:00:51 2025 GMT Not After : Dec 27 09:00:51 2025 GMT Subject: CN=a4e4ffba8519794eb5181fb82125dce98b00ecb5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:21:59:c3:96:f7:b8:4c:7d:bc:ce:bd:f0:b5: 02:7e:c6:9e:a5:b0:0f:f2:c4:45:39:c5:28:f3:2d: 82:0a:f2:7d:ff:b6:30:84:28:f5:42:35:52:bc:54: b1:6e:77:7d:b9:ea:21:79:b3:7f:e3:d9:3a:c9:2a: 8b:be:36:7c:1e:89:9f:18:a1:62:01:6c:78:87:0c: 97:b0:ab:fe:15:57:30:cb:6b:cb:4c:d0:52:f6:f8: f3:82:e1:30:5a:52:b8:b4:69:bc:21:23:de:ae:59: ac:ca:5d:cf:a1:b3:56:bf:07:e1:49:07:e2:aa:df: 27:55:ef:c5:38:a3:5f:d0:ee:a9:5c:1a:25:ba:8d: 8b:ba:35:b3:60:86:db:49:e4:ae:2a:cb:38:2f:dd: 5d:8b:1b:51:37:93:4a:16:87:04:f2:47:11:9b:a1: 40:96:26:19:22:b1:a1:d2:70:f8:0c:a5:77:d8:1c: 05:c7:e4:f5:38:e3:7d:ed:c3:6d:ba:71:cf:b7:7f: 68:ea:a8:77:95:d2:65:c3:5b:9b:1f:69:27:30:ea: a8:97:fc:06:dc:12:9d:67:5a:59:c4:46:d5:fa:39: 66:07:c5:f7:b0:f1:09:9a:10:6b:f9:51:75:fe:ac: 8e:79:e6:7a:2d:b6:7c:46:6a:b2:48:e4:80:b3:1f: e1:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:E4:FF:BA:85:19:79:4E:B5:18:1F:B8:21:25:DC:E9:8B:00:EC:B5 X509v3 Authority Key Identifier: keyid:62:CB:8C:12:33:B0:16:B1:F0:48:10:89:73:D6:AC:3E:76:2F:63:ED X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YsuMEjOwFrHwSBCJc9asPnYvY-0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/402eea-4814-4877-8d7a-3ca2f796b596/1/YsuMEjOwFrHwSBCJc9asPnYvY-0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/402eea-4814-4877-8d7a-3ca2f796b596/1/YsuMEjOwFrHwSBCJc9asPnYvY-0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 91:52:1b:de:42:cb:4b:3b:20:b1:20:61:f5:49:ae:e9:30:2d: 69:0c:49:43:7a:93:81:23:c5:0a:54:78:e0:aa:6c:5c:87:bf: 78:52:47:89:7b:c8:94:f7:6c:63:be:a2:0c:cc:30:49:a5:a0: 35:ba:49:46:45:a3:b6:9a:05:ed:67:b8:e6:d0:ec:fb:32:d2: d0:bb:9e:7c:97:7d:a2:74:49:6d:e8:6c:5a:00:b9:2d:1b:bc: c2:e6:11:91:0c:88:ff:bf:5e:29:1a:c6:b3:f8:41:be:e1:3a: 1b:13:2b:ff:40:98:79:cc:04:c7:4f:bf:78:d1:41:c0:40:af: 3a:47:69:2a:eb:e7:82:01:91:cb:39:a1:2b:ef:7a:5c:76:cf: 1b:5d:83:ed:46:6a:a0:b0:20:f7:72:5d:2a:98:8a:52:98:c6: ce:df:0b:2a:1c:16:28:4e:19:38:fc:41:e0:f5:44:98:ef:0e: 16:0e:57:90:ae:5a:4c:b9:52:e6:0e:d1:d9:9b:c6:bd:c6:3e: 28:41:bc:45:fd:21:88:37:d2:c0:65:f7:3f:fe:06:a9:f8:1c: 5f:28:80:54:8d:b8:2c:f1:cf:f4:62:60:25:e0:b9:39:bc:f5: 40:06:8c:50:81:be:e6:48:63:9d:0a:dd:d7:72:fb:63:d0:38: a3:d1:2d:e0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZ4624bhtz15KzZBVePul6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYyY2I4YzEyMzNiMDE2YjFmMDQ4MTA4OTczZDZhYzNlNzYy ZjYzZWQwHhcNMjUxMjI2MDkwMDUxWhcNMjUxMjI3MDkwMDUxWjAzMTEwLwYDVQQD EyhhNGU0ZmZiYTg1MTk3OTRlYjUxODFmYjgyMTI1ZGNlOThiMDBlY2I1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5CFZw5b3uEx9vM698LUCfsaepbAP 8sRFOcUo8y2CCvJ9/7YwhCj1QjVSvFSxbnd9ueohebN/49k6ySqLvjZ8HomfGKFi AWx4hwyXsKv+FVcwy2vLTNBS9vjzguEwWlK4tGm8ISPerlmsyl3PobNWvwfhSQfi qt8nVe/FOKNf0O6pXBoluo2LujWzYIbbSeSuKss4L91dixtRN5NKFocE8kcRm6FA liYZIrGh0nD4DKV32BwFx+T1OON97cNtunHPt39o6qh3ldJlw1ubH2knMOqol/wG 3BKdZ1pZxEbV+jlmB8X3sPEJmhBr+VF1/qyOeeZ6LbZ8RmqySOSAsx/h9wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKTk/7qFGXlOtRgfuCEl3OmLAOy1MB8GA1UdIwQY MBaAFGLLjBIzsBax8EgQiXPWrD52L2PtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWXN1TUVqT3dGckh3U0JDSmM5YXNQbll2WS0wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOC80MDJlZWEtNDgxNC00ODc3LThkN2Et M2NhMmY3OTZiNTk2LzEvWXN1TUVqT3dGckh3U0JDSmM5YXNQbll2WS0wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lOC80MDJlZWEtNDgxNC00ODc3LThkN2EtM2NhMmY3OTZiNTk2 LzEvWXN1TUVqT3dGckh3U0JDSmM5YXNQbll2WS0wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkVIb3kLL SzsgsSBh9Umu6TAtaQxJQ3qTgSPFClR44KpsXIe/eFJHiXvIlPdsY76iDMwwSaWg NbpJRkWjtpoF7We45tDs+zLS0LuefJd9onRJbehsWgC5LRu8wuYRkQyI/79eKRrG s/hBvuE6GxMr/0CYecwEx0+/eNFBwECvOkdpKuvnggGRyzmhK+96XHbPG12D7UZq oLAg93JdKpiKUpjGzt8LKhwWKE4ZOPxB4PVEmO8OFg5XkK5aTLlS5g7R2ZvGvcY+ KEG8Rf0hiDfSwGX3P/4GqfgcXyiAVI24LPHP9GJgJeC5Obz1QAaMUIG+5khjnQrd 13L7Y9A4o9Et4A== -----END CERTIFICATE-----Generated at Fri Dec 26 14:17:00 2025 by rpki-client