This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/11237d-c69d-40d4-b4d7-4e15b84ee706/1/PYyo-vPO4aXlGlxc2_lIKgACe2U.mft File: PYyo-vPO4aXlGlxc2_lIKgACe2U.mft (raw, json) Hash identifier: qfIcq0afpdEW4nrgkxL9+MKe79JC50AHtLUM9fzbk4A= Subject key identifier: 62:87:44:DB:97:8E:C4:FD:10:BE:10:58:EF:47:EF:52:94:6D:19:3F Authority key identifier: 3D:8C:A8:FA:F3:CE:E1:A5:E5:1A:5C:5C:DB:F9:48:2A:00:02:7B:65 Certificate issuer: /CN=3d8ca8faf3cee1a5e51a5c5cdbf9482a00027b65 Certificate serial: 019AF12E577B6A7A566FFC76A9B016A04779 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PYyo-vPO4aXlGlxc2_lIKgACe2U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/11237d-c69d-40d4-b4d7-4e15b84ee706/1/PYyo-vPO4aXlGlxc2_lIKgACe2U.mft Manifest number: 0CCE Signing time: Sat 06 Dec 2025 01:02:17 +0000 Manifest this update: Sat 06 Dec 2025 01:02:17 +0000 Manifest next update: Sun 07 Dec 2025 01:02:17 +0000 Files and hashes: 1: PYyo-vPO4aXlGlxc2_lIKgACe2U.crl (hash: fhOys8lxlEmjhzTlU2f2ptD+iBcMF8pq57p2f0mYDTo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/11237d-c69d-40d4-b4d7-4e15b84ee706/1/PYyo-vPO4aXlGlxc2_lIKgACe2U.crl rsync://rpki.ripe.net/repository/DEFAULT/01/11237d-c69d-40d4-b4d7-4e15b84ee706/1/PYyo-vPO4aXlGlxc2_lIKgACe2U.mft rsync://rpki.ripe.net/repository/DEFAULT/PYyo-vPO4aXlGlxc2_lIKgACe2U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:02:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2e:57:7b:6a:7a:56:6f:fc:76:a9:b0:16:a0:47:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3d8ca8faf3cee1a5e51a5c5cdbf9482a00027b65 Validity Not Before: Dec 6 01:02:17 2025 GMT Not After : Dec 7 01:02:17 2025 GMT Subject: CN=628744db978ec4fd10be1058ef47ef52946d193f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:1a:07:b2:bb:d0:94:27:51:c8:2a:df:e7:8e: 5b:c3:e7:8e:ec:c6:13:0c:ca:71:b9:c6:d7:f5:c8: 48:f1:5c:2f:44:98:3d:4e:7c:34:6a:1c:d0:83:24: 88:50:cd:1c:ad:d2:b3:0b:69:88:4b:e7:3f:20:83: 51:0d:d2:07:46:c0:3a:96:65:8f:14:df:24:31:35: 66:5a:94:be:3e:46:ab:cb:d4:a0:0c:b6:f1:77:b3: 6d:e5:1c:b9:86:11:3d:76:cc:da:26:db:d7:64:aa: 35:64:84:2d:04:07:e0:62:61:06:dc:df:ab:9a:51: b9:a6:cd:cf:92:b0:2b:f3:90:99:ad:57:a4:65:52: 7c:0a:da:8a:13:5b:31:a0:fe:2b:62:a7:bb:32:88: c3:fa:3d:cd:6f:d4:29:22:20:22:26:9c:b0:99:56: d5:4c:51:93:67:d0:6b:50:fb:ae:f3:e5:45:a8:25: a9:d8:54:ce:50:ab:aa:37:d8:69:7c:00:73:f8:6b: 9f:1c:fe:f8:7f:68:9e:08:dd:04:04:85:30:5a:8b: 19:14:2c:50:b2:c4:c8:07:c7:fe:80:65:40:98:95: 6f:98:50:0e:79:c3:ec:9b:c5:67:af:34:e1:4e:7b: 08:1d:ba:f0:d6:93:26:52:06:a3:c9:53:b3:7c:5f: 11:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:87:44:DB:97:8E:C4:FD:10:BE:10:58:EF:47:EF:52:94:6D:19:3F X509v3 Authority Key Identifier: keyid:3D:8C:A8:FA:F3:CE:E1:A5:E5:1A:5C:5C:DB:F9:48:2A:00:02:7B:65 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PYyo-vPO4aXlGlxc2_lIKgACe2U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/11237d-c69d-40d4-b4d7-4e15b84ee706/1/PYyo-vPO4aXlGlxc2_lIKgACe2U.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/01/11237d-c69d-40d4-b4d7-4e15b84ee706/1/PYyo-vPO4aXlGlxc2_lIKgACe2U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 46:de:4a:7a:f4:e0:86:7f:ee:e9:e8:dc:95:fa:1b:ef:3f:9d: 19:b1:04:25:e5:0f:df:4a:39:24:b2:34:7b:b0:f6:cd:72:24: f6:5e:19:2f:70:4d:11:84:52:17:32:ec:7d:51:06:f6:6d:de: 78:2f:6f:77:58:13:38:02:26:7c:5c:0f:9b:5c:d2:03:bf:a0: fc:4c:5a:48:ae:d4:3c:c9:15:14:76:29:2c:90:de:c8:e3:bf: 78:5a:3c:5c:83:0f:77:89:8f:d5:20:0c:82:a6:3c:c9:4d:7c: d0:e3:bb:f7:5e:26:42:52:45:48:35:9b:25:6a:95:20:59:82: 5b:1e:37:a7:e1:54:b3:c2:84:7f:e0:99:44:de:3d:79:6d:c3: b4:0e:e4:ba:93:8c:c6:7c:64:3f:8e:af:3f:54:2f:76:22:44: d7:d1:77:24:b4:0a:cb:9e:f8:0e:ae:a7:b8:7a:b3:c8:9e:40: 60:64:33:c9:34:ae:ad:61:f0:54:c4:ab:12:7e:cc:68:bb:38: 74:2f:e6:fa:57:70:60:c6:97:ae:17:82:f0:7c:da:79:eb:bb: 24:8a:f8:a8:5b:b3:2d:09:15:f4:95:d1:a9:6e:fd:de:d8:f8: 3e:82:75:e4:d4:e4:23:c6:94:24:29:f2:2d:2e:79:fb:43:6b: bf:d6:2f:a9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLld7anpWb/x2qbAWoEd5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNkOGNhOGZhZjNjZWUxYTVlNTFhNWM1Y2RiZjk0ODJhMDAw MjdiNjUwHhcNMjUxMjA2MDEwMjE3WhcNMjUxMjA3MDEwMjE3WjAzMTEwLwYDVQQD Eyg2Mjg3NDRkYjk3OGVjNGZkMTBiZTEwNThlZjQ3ZWY1Mjk0NmQxOTNmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzBoHsrvQlCdRyCrf545bw+eO7MYT DMpxucbX9chI8VwvRJg9Tnw0ahzQgySIUM0crdKzC2mIS+c/IINRDdIHRsA6lmWP FN8kMTVmWpS+Pkary9SgDLbxd7Nt5Ry5hhE9dszaJtvXZKo1ZIQtBAfgYmEG3N+r mlG5ps3PkrAr85CZrVekZVJ8CtqKE1sxoP4rYqe7MojD+j3Nb9QpIiAiJpywmVbV TFGTZ9BrUPuu8+VFqCWp2FTOUKuqN9hpfABz+GufHP74f2ieCN0EBIUwWosZFCxQ ssTIB8f+gGVAmJVvmFAOecPsm8VnrzThTnsIHbrw1pMmUgajyVOzfF8RFQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGKHRNuXjsT9EL4QWO9H71KUbRk/MB8GA1UdIwQY MBaAFD2MqPrzzuGl5RpcXNv5SCoAAntlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUFl5by12UE80YVhsR2x4YzJfbElLZ0FDZTJVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMS8xMTIzN2QtYzY5ZC00MGQ0LWI0ZDct NGUxNWI4NGVlNzA2LzEvUFl5by12UE80YVhsR2x4YzJfbElLZ0FDZTJVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMS8xMTIzN2QtYzY5ZC00MGQ0LWI0ZDctNGUxNWI4NGVlNzA2 LzEvUFl5by12UE80YVhsR2x4YzJfbElLZ0FDZTJVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARt5KevTg hn/u6ejclfob7z+dGbEEJeUP30o5JLI0e7D2zXIk9l4ZL3BNEYRSFzLsfVEG9m3e eC9vd1gTOAImfFwPm1zSA7+g/ExaSK7UPMkVFHYpLJDeyOO/eFo8XIMPd4mP1SAM gqY8yU180OO7914mQlJFSDWbJWqVIFmCWx43p+FUs8KEf+CZRN49eW3DtA7kupOM xnxkP46vP1QvdiJE19F3JLQKy574Dq6nuHqzyJ5AYGQzyTSurWHwVMSrEn7MaLs4 dC/m+ldwYMaXrheC8Hzaeeu7JIr4qFuzLQkV9JXRqW793tj4PoJ15NTkI8aUJCny LS55+0Nrv9YvqQ== -----END CERTIFICATE-----Generated at Sat Dec 6 07:43:55 2025 by rpki-client