This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/066509-7a91-45f9-9e18-a9e7b343bc66/1/pYXl4VqjQofK5DaMtY5yJ_2H7Lo.mft File: pYXl4VqjQofK5DaMtY5yJ_2H7Lo.mft (raw, json) Hash identifier: CjzJ/Zbc6xjmS8IFkc6QTwOIl0VvaUB7b6ztHytB8ZY= Subject key identifier: CC:FE:36:C7:68:D2:F6:72:46:7B:14:36:7A:EF:0C:6B:DC:2B:BC:68 Authority key identifier: A5:85:E5:E1:5A:A3:42:87:CA:E4:36:8C:B5:8E:72:27:FD:87:EC:BA Certificate issuer: /CN=a585e5e15aa34287cae4368cb58e7227fd87ecba Certificate serial: 019B5976B67A994C56E0FC82015B31EE0B7D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pYXl4VqjQofK5DaMtY5yJ_2H7Lo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/066509-7a91-45f9-9e18-a9e7b343bc66/1/pYXl4VqjQofK5DaMtY5yJ_2H7Lo.mft Manifest number: 1796 Signing time: Fri 26 Dec 2025 07:01:50 +0000 Manifest this update: Fri 26 Dec 2025 07:01:50 +0000 Manifest next update: Sat 27 Dec 2025 07:01:50 +0000 Files and hashes: 1: BfRloUJHji-lEUaufwMc19LxiqE.roa (hash: 94Vq30eYX4ShhMgHZx9s+4a5DKBY3zN9CTPT6BVaH44=) 2: pYXl4VqjQofK5DaMtY5yJ_2H7Lo.crl (hash: Gwk1jrFsvRzTkXk0nf5dTbyhX5gUMUsU6QVU6zeE+3o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fc/066509-7a91-45f9-9e18-a9e7b343bc66/1/pYXl4VqjQofK5DaMtY5yJ_2H7Lo.crl rsync://rpki.ripe.net/repository/DEFAULT/fc/066509-7a91-45f9-9e18-a9e7b343bc66/1/pYXl4VqjQofK5DaMtY5yJ_2H7Lo.mft rsync://rpki.ripe.net/repository/DEFAULT/pYXl4VqjQofK5DaMtY5yJ_2H7Lo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 07:01:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:59:76:b6:7a:99:4c:56:e0:fc:82:01:5b:31:ee:0b:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a585e5e15aa34287cae4368cb58e7227fd87ecba Validity Not Before: Dec 26 07:01:50 2025 GMT Not After : Dec 27 07:01:50 2025 GMT Subject: CN=ccfe36c768d2f672467b14367aef0c6bdc2bbc68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:03:6e:29:0a:4b:9b:55:62:6b:31:a5:f7:45: aa:0b:03:64:78:7a:08:91:8a:2a:fb:3d:05:81:df: 5a:4a:78:39:9f:06:6f:5b:4d:db:75:cd:36:18:5e: e5:d1:22:c0:b7:d0:d7:65:25:29:4d:03:c5:c7:7e: c3:be:0c:1b:09:a6:26:72:28:2a:81:36:61:24:55: 39:ee:66:e3:13:24:01:30:b2:d2:98:70:46:ae:f3: 6a:73:04:c4:35:84:de:46:e6:2d:7d:7d:43:dc:f8: 98:68:3c:1d:76:a0:da:88:d9:f1:b6:56:ad:94:c1: 72:e5:54:9c:04:2a:f7:63:8a:7a:dd:a8:82:44:75: fe:99:63:cd:b8:d7:f5:94:4e:9d:f1:cc:19:9a:d8: e7:99:aa:84:81:4e:2a:11:99:3b:2a:65:7b:1b:de: af:b2:19:ba:ee:65:3d:e3:53:06:20:23:0b:9e:50: df:d5:61:1f:64:b8:da:ad:da:d0:70:26:25:dd:5f: b4:e6:1a:4e:98:1f:f5:63:12:7c:02:92:f8:c5:9d: 9d:98:f5:a3:5c:f7:24:ad:c1:00:3f:f3:3a:0f:88: 44:c6:ed:80:8a:ee:7b:05:b4:93:a0:7c:27:dd:da: ef:5b:83:fe:3c:fd:23:08:4c:c0:cc:51:d7:61:df: d7:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:FE:36:C7:68:D2:F6:72:46:7B:14:36:7A:EF:0C:6B:DC:2B:BC:68 X509v3 Authority Key Identifier: keyid:A5:85:E5:E1:5A:A3:42:87:CA:E4:36:8C:B5:8E:72:27:FD:87:EC:BA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pYXl4VqjQofK5DaMtY5yJ_2H7Lo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/066509-7a91-45f9-9e18-a9e7b343bc66/1/pYXl4VqjQofK5DaMtY5yJ_2H7Lo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/066509-7a91-45f9-9e18-a9e7b343bc66/1/pYXl4VqjQofK5DaMtY5yJ_2H7Lo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 45:68:bb:16:cb:ab:22:8d:9b:ae:c4:e0:45:df:8b:73:79:f2: 23:35:1e:24:84:05:2e:52:7d:97:1c:11:65:48:10:7f:b0:93: 5d:8d:15:11:75:e2:5c:84:b9:f8:ea:c6:8d:c0:31:ca:92:8c: 90:56:43:d3:28:52:4e:99:58:99:24:69:22:a1:dc:ae:f7:9e: b4:a0:52:7d:49:58:d7:bc:2d:0e:f4:e2:73:d8:c4:30:b4:c3: 1d:59:5e:e7:7a:b4:66:62:de:b4:6e:1c:bd:3f:79:29:bd:26: 55:04:c5:2a:69:1b:f1:56:f0:e5:19:e2:ec:c2:3e:c7:6b:d0: 8d:de:46:6b:84:8b:c4:f1:41:58:33:ee:9d:97:3a:3c:b2:9f: 3b:1a:3e:66:43:5d:d3:dc:5e:21:57:7a:fa:c1:4f:dd:09:5b: b4:f6:95:d6:33:6d:e0:e4:c1:3c:25:ef:72:44:4f:fd:44:93: 1c:70:40:46:0c:63:62:14:54:49:50:a4:6e:a7:00:1d:5b:7b: 35:11:5e:83:5f:e1:c4:31:f8:07:7f:56:35:96:8e:f9:32:32: ba:c6:74:ca:0a:3a:b8:da:d8:20:83:a7:93:30:b7:3a:ac:3b: 53:a4:05:a5:ab:08:63:6b:f8:3b:44:6e:3d:11:db:bf:a3:64: 9b:e4:53:f4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtZdrZ6mUxW4PyCAVsx7gt9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE1ODVlNWUxNWFhMzQyODdjYWU0MzY4Y2I1OGU3MjI3ZmQ4 N2VjYmEwHhcNMjUxMjI2MDcwMTUwWhcNMjUxMjI3MDcwMTUwWjAzMTEwLwYDVQQD EyhjY2ZlMzZjNzY4ZDJmNjcyNDY3YjE0MzY3YWVmMGM2YmRjMmJiYzY4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5wNuKQpLm1ViazGl90WqCwNkeHoI kYoq+z0Fgd9aSng5nwZvW03bdc02GF7l0SLAt9DXZSUpTQPFx37DvgwbCaYmcigq gTZhJFU57mbjEyQBMLLSmHBGrvNqcwTENYTeRuYtfX1D3PiYaDwddqDaiNnxtlat lMFy5VScBCr3Y4p63aiCRHX+mWPNuNf1lE6d8cwZmtjnmaqEgU4qEZk7KmV7G96v shm67mU941MGICMLnlDf1WEfZLjardrQcCYl3V+05hpOmB/1YxJ8ApL4xZ2dmPWj XPckrcEAP/M6D4hExu2Aiu57BbSToHwn3drvW4P+PP0jCEzAzFHXYd/XQQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMz+Nsdo0vZyRnsUNnrvDGvcK7xoMB8GA1UdIwQY MBaAFKWF5eFao0KHyuQ2jLWOcif9h+y6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcFlYbDRWcWpRb2ZLNURhTXRZNXlKXzJIN0xvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYy8wNjY1MDktN2E5MS00NWY5LTllMTgt YTllN2IzNDNiYzY2LzEvcFlYbDRWcWpRb2ZLNURhTXRZNXlKXzJIN0xvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mYy8wNjY1MDktN2E5MS00NWY5LTllMTgtYTllN2IzNDNiYzY2 LzEvcFlYbDRWcWpRb2ZLNURhTXRZNXlKXzJIN0xvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARWi7Fsur Io2brsTgRd+Lc3nyIzUeJIQFLlJ9lxwRZUgQf7CTXY0VEXXiXIS5+OrGjcAxypKM kFZD0yhSTplYmSRpIqHcrveetKBSfUlY17wtDvTic9jEMLTDHVle53q0ZmLetG4c vT95Kb0mVQTFKmkb8Vbw5Rni7MI+x2vQjd5Ga4SLxPFBWDPunZc6PLKfOxo+ZkNd 09xeIVd6+sFP3QlbtPaV1jNt4OTBPCXvckRP/USTHHBARgxjYhRUSVCkbqcAHVt7 NRFeg1/hxDH4B39WNZaO+TIyusZ0ygo6uNrYIIOnkzC3Oqw7U6QFpasIY2v4O0Ru PRHbv6Nkm+RT9A== -----END CERTIFICATE-----Generated at Fri Dec 26 16:06:37 2025 by rpki-client