This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/d16463-89be-4f5b-b2f2-acc41cacf7e1/1/y9lerW0qHa8u9oestMKedgdrKAk.mft File: y9lerW0qHa8u9oestMKedgdrKAk.mft (raw, json) Hash identifier: RObuwRVFA8VMq29fGzppKRDTHEUGf4ILnIhbjrBBitY= Subject key identifier: 77:94:B9:3A:CC:F3:B6:2F:16:20:FF:1D:6B:6E:62:5C:BA:3B:AA:A2 Authority key identifier: CB:D9:5E:AD:6D:2A:1D:AF:2E:F6:87:AC:B4:C2:9E:76:07:6B:28:09 Certificate issuer: /CN=cbd95ead6d2a1daf2ef687acb4c29e76076b2809 Certificate serial: 019B5A88A6BEC007714B190367B8D1DEA00D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y9lerW0qHa8u9oestMKedgdrKAk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/d16463-89be-4f5b-b2f2-acc41cacf7e1/1/y9lerW0qHa8u9oestMKedgdrKAk.mft Manifest number: 0B79 Signing time: Fri 26 Dec 2025 12:01:03 +0000 Manifest this update: Fri 26 Dec 2025 12:01:03 +0000 Manifest next update: Sat 27 Dec 2025 12:01:03 +0000 Files and hashes: 1: dLJ0i3DKxKOgLSZU6DT_1_-wzDs.roa (hash: R+7BGQyfLFShlywgi4Re33H2XJ0XnH/YSJRVXJB4EDE=) 2: y9lerW0qHa8u9oestMKedgdrKAk.crl (hash: 09DH1NzQNu+261h+zKNmDtdTPfW1lQcS1yLHmxhhOyA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/d16463-89be-4f5b-b2f2-acc41cacf7e1/1/y9lerW0qHa8u9oestMKedgdrKAk.crl rsync://rpki.ripe.net/repository/DEFAULT/f0/d16463-89be-4f5b-b2f2-acc41cacf7e1/1/y9lerW0qHa8u9oestMKedgdrKAk.mft rsync://rpki.ripe.net/repository/DEFAULT/y9lerW0qHa8u9oestMKedgdrKAk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5a:88:a6:be:c0:07:71:4b:19:03:67:b8:d1:de:a0:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cbd95ead6d2a1daf2ef687acb4c29e76076b2809 Validity Not Before: Dec 26 12:01:03 2025 GMT Not After : Dec 27 12:01:03 2025 GMT Subject: CN=7794b93accf3b62f1620ff1d6b6e625cba3baaa2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:f4:d2:f3:99:fb:15:8c:a1:d6:48:5a:f6:bb: 69:3d:8b:7c:ab:a9:69:3d:21:35:fd:e7:cb:e7:54: cd:7e:7b:cf:0b:a0:05:96:13:a1:88:02:7a:12:f5: 99:5d:06:a5:58:a3:81:cd:76:24:6e:b2:47:c9:7d: 84:90:46:d8:75:f5:8a:6b:5f:59:bb:24:22:89:c3: ff:c4:35:74:a1:65:47:56:c3:1a:7b:ea:c5:89:ab: 0f:e0:5d:c1:0d:e4:62:c9:a1:bf:22:33:b5:fd:8d: 3a:7e:2e:71:35:53:ea:68:0f:8b:c8:17:48:6c:99: 48:fb:fa:eb:b5:db:76:ad:b9:78:ba:3f:17:89:09: 2a:e2:30:0a:7f:55:bf:4c:49:b4:43:7f:20:70:c5: e9:cd:6b:91:3e:39:6f:4d:50:b6:1d:9c:62:dd:0a: 2e:e9:52:36:08:33:8e:87:fc:69:ec:61:72:07:1a: 00:f5:2c:d4:b3:ec:17:34:39:b0:15:69:8f:2a:85: 06:88:08:3b:b9:8f:4f:78:3b:77:7d:ef:9c:f1:5e: 06:b9:f9:5d:90:52:9c:e4:ab:6f:82:0b:87:d5:16: d8:c0:a1:cb:5b:b1:d3:68:77:e4:f0:78:45:14:c3: 8b:98:09:59:aa:e6:60:82:3f:35:09:b8:e0:ae:f7: 4a:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:94:B9:3A:CC:F3:B6:2F:16:20:FF:1D:6B:6E:62:5C:BA:3B:AA:A2 X509v3 Authority Key Identifier: keyid:CB:D9:5E:AD:6D:2A:1D:AF:2E:F6:87:AC:B4:C2:9E:76:07:6B:28:09 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y9lerW0qHa8u9oestMKedgdrKAk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/d16463-89be-4f5b-b2f2-acc41cacf7e1/1/y9lerW0qHa8u9oestMKedgdrKAk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/d16463-89be-4f5b-b2f2-acc41cacf7e1/1/y9lerW0qHa8u9oestMKedgdrKAk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 39:5b:93:1d:54:6a:9d:d0:f6:fe:4f:2d:b1:db:b4:56:c0:db: d8:30:3b:b6:d4:2c:45:70:6e:32:df:ce:3b:f9:3d:86:29:3a: bb:ac:90:1b:9c:a9:0f:82:23:e9:42:aa:59:46:40:6b:a4:e8: a5:df:ff:28:b6:37:2c:91:49:b4:76:46:00:cc:7a:0a:e7:5e: 64:ba:a0:ef:e1:24:48:4c:ca:c0:b1:5d:a4:35:97:f3:2b:bd: f2:07:6b:01:ed:fd:5c:1d:84:7e:e6:11:82:f5:f4:94:35:70: 2c:2d:c3:6e:31:91:38:35:c4:c6:b0:18:0d:d8:12:20:f8:ad: ff:7e:ec:67:90:93:67:9b:94:82:59:58:59:f9:69:9e:7a:3c: d1:59:3c:14:9e:55:83:45:6e:d1:03:77:70:9d:13:65:b1:a1: 06:fc:89:6b:3c:d2:34:b9:5f:b9:02:1a:24:39:e1:73:8d:17: ba:66:90:97:e2:c2:0c:db:e5:31:e2:ad:54:23:a1:61:b1:31: e3:3c:89:83:1c:cd:9d:c4:0b:a8:03:35:79:3e:a3:3a:0e:d4: be:f9:06:4d:e4:ff:f9:f5:12:61:35:01:e0:bd:81:73:87:06: 68:da:49:62:e2:e8:92:e6:84:7a:1b:ac:4d:3a:c2:17:2e:ba: 8e:2a:fc:d5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtaiKa+wAdxSxkDZ7jR3qANMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNiZDk1ZWFkNmQyYTFkYWYyZWY2ODdhY2I0YzI5ZTc2MDc2 YjI4MDkwHhcNMjUxMjI2MTIwMTAzWhcNMjUxMjI3MTIwMTAzWjAzMTEwLwYDVQQD Eyg3Nzk0YjkzYWNjZjNiNjJmMTYyMGZmMWQ2YjZlNjI1Y2JhM2JhYWEyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl/TS85n7FYyh1kha9rtpPYt8q6lp PSE1/efL51TNfnvPC6AFlhOhiAJ6EvWZXQalWKOBzXYkbrJHyX2EkEbYdfWKa19Z uyQiicP/xDV0oWVHVsMae+rFiasP4F3BDeRiyaG/IjO1/Y06fi5xNVPqaA+LyBdI bJlI+/rrtdt2rbl4uj8XiQkq4jAKf1W/TEm0Q38gcMXpzWuRPjlvTVC2HZxi3Qou 6VI2CDOOh/xp7GFyBxoA9SzUs+wXNDmwFWmPKoUGiAg7uY9PeDt3fe+c8V4Gufld kFKc5KtvgguH1RbYwKHLW7HTaHfk8HhFFMOLmAlZquZggj81CbjgrvdK1QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHeUuTrM87YvFiD/HWtuYly6O6qiMB8GA1UdIwQY MBaAFMvZXq1tKh2vLvaHrLTCnnYHaygJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveTlsZXJXMHFIYTh1OW9lc3RNS2VkZ2RyS0FrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMC9kMTY0NjMtODliZS00ZjViLWIyZjIt YWNjNDFjYWNmN2UxLzEveTlsZXJXMHFIYTh1OW9lc3RNS2VkZ2RyS0FrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMC9kMTY0NjMtODliZS00ZjViLWIyZjItYWNjNDFjYWNmN2Ux LzEveTlsZXJXMHFIYTh1OW9lc3RNS2VkZ2RyS0FrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOVuTHVRq ndD2/k8tsdu0VsDb2DA7ttQsRXBuMt/OO/k9hik6u6yQG5ypD4Ij6UKqWUZAa6To pd//KLY3LJFJtHZGAMx6CudeZLqg7+EkSEzKwLFdpDWX8yu98gdrAe39XB2EfuYR gvX0lDVwLC3DbjGRODXExrAYDdgSIPit/37sZ5CTZ5uUgllYWflpnno80Vk8FJ5V g0Vu0QN3cJ0TZbGhBvyJazzSNLlfuQIaJDnhc40XumaQl+LCDNvlMeKtVCOhYbEx 4zyJgxzNncQLqAM1eT6jOg7UvvkGTeT/+fUSYTUB4L2Bc4cGaNpJYuLokuaEehus TTrCFy66jir81Q== -----END CERTIFICATE-----Generated at Fri Dec 26 15:47:21 2025 by rpki-client