This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/0ddbdc-5e22-4945-bdcd-a09854ab65a2/1/yhoaYsgLDzM0xdwY3GS3v5eIkBM.mft File: yhoaYsgLDzM0xdwY3GS3v5eIkBM.mft (raw, json) Hash identifier: sTNy5Fhl0c/5UNaKRnG7KvREHBr1jQB83zGdkF1hus0= Subject key identifier: CF:98:CD:0A:D3:A5:AD:4D:D2:9D:94:E6:14:E7:8D:1D:00:89:FC:4E Authority key identifier: CA:1A:1A:62:C8:0B:0F:33:34:C5:DC:18:DC:64:B7:BF:97:88:90:13 Certificate issuer: /CN=ca1a1a62c80b0f3334c5dc18dc64b7bf97889013 Certificate serial: 019AF2093223C076D687066522BC88032265 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yhoaYsgLDzM0xdwY3GS3v5eIkBM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/0ddbdc-5e22-4945-bdcd-a09854ab65a2/1/yhoaYsgLDzM0xdwY3GS3v5eIkBM.mft Manifest number: 0A79 Signing time: Sat 06 Dec 2025 05:01:20 +0000 Manifest this update: Sat 06 Dec 2025 05:01:20 +0000 Manifest next update: Sun 07 Dec 2025 05:01:20 +0000 Files and hashes: 1: yhoaYsgLDzM0xdwY3GS3v5eIkBM.crl (hash: FX98cG4Bsm3AmXytLhbhX1WTRP+Y5DpjFkm7p+7MA+8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/0ddbdc-5e22-4945-bdcd-a09854ab65a2/1/yhoaYsgLDzM0xdwY3GS3v5eIkBM.crl rsync://rpki.ripe.net/repository/DEFAULT/01/0ddbdc-5e22-4945-bdcd-a09854ab65a2/1/yhoaYsgLDzM0xdwY3GS3v5eIkBM.mft rsync://rpki.ripe.net/repository/DEFAULT/yhoaYsgLDzM0xdwY3GS3v5eIkBM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:09:32:23:c0:76:d6:87:06:65:22:bc:88:03:22:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ca1a1a62c80b0f3334c5dc18dc64b7bf97889013 Validity Not Before: Dec 6 05:01:20 2025 GMT Not After : Dec 7 05:01:20 2025 GMT Subject: CN=cf98cd0ad3a5ad4dd29d94e614e78d1d0089fc4e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:63:1c:a6:a6:8b:75:66:22:ef:1f:32:63:e5: a9:53:92:c9:ed:54:ad:5e:09:8b:71:3a:9a:13:53: ae:c8:3f:3f:fb:be:47:1e:cb:ff:27:d6:45:03:c0: cf:3e:e1:a6:1d:32:44:71:b4:d4:33:7e:44:a7:5c: 06:70:36:df:cf:10:38:11:6f:c5:8c:8f:53:d3:63: e5:69:09:5d:3c:d5:e8:d1:f9:8b:8b:4e:08:9b:ac: 1c:29:86:da:ab:a8:e4:2d:d9:07:a4:57:69:be:a4: 4c:94:ca:4a:d6:11:e8:99:ed:fe:d8:2d:20:55:fe: f4:4a:6d:bb:c0:6b:69:c3:4a:54:d5:00:64:db:b5: 04:92:fe:44:ea:25:9c:d4:49:66:9b:54:ea:2c:3d: 03:b5:dd:6a:d6:7d:a8:36:d7:d6:0b:0b:55:d5:a8: 27:9c:49:46:4e:42:a5:0f:6a:e4:dd:23:93:77:ce: da:6a:47:77:3f:7e:42:08:e9:a6:bd:0c:6f:0a:3e: ac:d9:fd:98:00:82:17:05:98:a8:23:b2:64:a2:4e: d5:17:8b:57:fc:a8:df:7b:2a:06:bf:b8:83:59:2a: c7:fd:d1:71:96:2e:2e:75:14:8a:cb:e0:f6:b5:82: 12:d6:d4:83:47:da:26:57:cf:42:ca:28:aa:6f:df: 86:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:98:CD:0A:D3:A5:AD:4D:D2:9D:94:E6:14:E7:8D:1D:00:89:FC:4E X509v3 Authority Key Identifier: keyid:CA:1A:1A:62:C8:0B:0F:33:34:C5:DC:18:DC:64:B7:BF:97:88:90:13 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yhoaYsgLDzM0xdwY3GS3v5eIkBM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/0ddbdc-5e22-4945-bdcd-a09854ab65a2/1/yhoaYsgLDzM0xdwY3GS3v5eIkBM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/01/0ddbdc-5e22-4945-bdcd-a09854ab65a2/1/yhoaYsgLDzM0xdwY3GS3v5eIkBM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0b:72:45:62:60:47:5d:04:a7:65:76:61:69:b8:fa:6b:c0:8b: 44:db:02:3e:05:7f:c7:37:ad:ac:c7:73:24:3d:48:8d:35:07: 25:28:14:e1:8a:b0:7e:80:22:2e:bf:0a:60:51:09:a1:26:57: c5:fb:70:22:ce:ff:bc:26:d8:b5:a5:48:3e:05:4b:4a:92:6f: cf:4a:d4:aa:45:42:92:de:01:a2:17:41:b6:f1:ff:2e:84:ab: 86:5f:41:6d:81:30:8d:ac:21:c1:dc:c0:d5:d0:a3:13:c9:16: 23:37:24:dd:d9:a6:2d:0c:cc:4c:7d:ce:a8:7b:87:c2:3e:46: 36:c6:8b:d3:ff:d2:30:a6:c4:ff:5c:93:c7:fa:2f:c4:b2:b4: bf:eb:8b:92:47:d2:a6:05:bd:f7:48:d1:45:06:50:38:8b:0b: 57:d2:18:da:f1:6b:f0:1d:9f:a3:5d:2d:1d:9a:40:5b:49:71: 29:77:4e:93:0a:0f:41:82:3e:b6:e7:a9:be:ce:c7:b9:b6:10: f9:64:17:94:2e:0a:06:66:9f:78:f9:ac:2b:54:45:be:a5:8f: d8:26:6c:e7:d3:d3:25:89:49:f4:ad:cf:e4:69:45:e3:3a:4f: 2f:a2:cf:bb:f6:ec:2a:12:4e:ee:3b:67:ab:12:75:45:82:20: 01:d3:87:35 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCTIjwHbWhwZlIryIAyJlMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNhMWExYTYyYzgwYjBmMzMzNGM1ZGMxOGRjNjRiN2JmOTc4 ODkwMTMwHhcNMjUxMjA2MDUwMTIwWhcNMjUxMjA3MDUwMTIwWjAzMTEwLwYDVQQD EyhjZjk4Y2QwYWQzYTVhZDRkZDI5ZDk0ZTYxNGU3OGQxZDAwODlmYzRlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtWMcpqaLdWYi7x8yY+WpU5LJ7VSt XgmLcTqaE1OuyD8/+75HHsv/J9ZFA8DPPuGmHTJEcbTUM35Ep1wGcDbfzxA4EW/F jI9T02PlaQldPNXo0fmLi04Im6wcKYbaq6jkLdkHpFdpvqRMlMpK1hHome3+2C0g Vf70Sm27wGtpw0pU1QBk27UEkv5E6iWc1Elmm1TqLD0Dtd1q1n2oNtfWCwtV1agn nElGTkKlD2rk3SOTd87aakd3P35CCOmmvQxvCj6s2f2YAIIXBZioI7Jkok7VF4tX /KjfeyoGv7iDWSrH/dFxli4udRSKy+D2tYIS1tSDR9omV89Cyiiqb9+GZQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFM+YzQrTpa1N0p2U5hTnjR0AifxOMB8GA1UdIwQY MBaAFMoaGmLICw8zNMXcGNxkt7+XiJATMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveWhvYVlzZ0xEek0weGR3WTNHUzN2NWVJa0JNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMS8wZGRiZGMtNWUyMi00OTQ1LWJkY2Qt YTA5ODU0YWI2NWEyLzEveWhvYVlzZ0xEek0weGR3WTNHUzN2NWVJa0JNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMS8wZGRiZGMtNWUyMi00OTQ1LWJkY2QtYTA5ODU0YWI2NWEy LzEveWhvYVlzZ0xEek0weGR3WTNHUzN2NWVJa0JNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAC3JFYmBH XQSnZXZhabj6a8CLRNsCPgV/xzetrMdzJD1IjTUHJSgU4YqwfoAiLr8KYFEJoSZX xftwIs7/vCbYtaVIPgVLSpJvz0rUqkVCkt4BohdBtvH/LoSrhl9BbYEwjawhwdzA 1dCjE8kWIzck3dmmLQzMTH3OqHuHwj5GNsaL0//SMKbE/1yTx/ovxLK0v+uLkkfS pgW990jRRQZQOIsLV9IY2vFr8B2fo10tHZpAW0lxKXdOkwoPQYI+tuepvs7HubYQ +WQXlC4KBmafePmsK1RFvqWP2CZs59PTJYlJ9K3P5GlF4zpPL6LPu/bsKhJO7jtn qxJ1RYIgAdOHNQ== -----END CERTIFICATE-----Generated at Sat Dec 6 07:10:54 2025 by rpki-client