This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/a43766-91dd-4266-af60-920b320d2e21/1/CYdvfc8Myud0IWBGOzjhw181bRI.mft File: CYdvfc8Myud0IWBGOzjhw181bRI.mft (raw, json) Hash identifier: pleGWyt6JLJVAvwx+/RmvYZtzcHwMA4XwLrC4a0QiX0= Subject key identifier: 82:26:0F:D4:4E:97:00:D7:49:D3:B7:8C:CA:65:B3:1A:09:14:97:CC Authority key identifier: 09:87:6F:7D:CF:0C:CA:E7:74:21:60:46:3B:38:E1:C3:5F:35:6D:12 Certificate issuer: /CN=09876f7dcf0ccae7742160463b38e1c35f356d12 Certificate serial: 019AF19B5937DD9B41C82E7715E2924C9BCA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CYdvfc8Myud0IWBGOzjhw181bRI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/a43766-91dd-4266-af60-920b320d2e21/1/CYdvfc8Myud0IWBGOzjhw181bRI.mft Manifest number: 0FD4 Signing time: Sat 06 Dec 2025 03:01:21 +0000 Manifest this update: Sat 06 Dec 2025 03:01:21 +0000 Manifest next update: Sun 07 Dec 2025 03:01:21 +0000 Files and hashes: 1: CYdvfc8Myud0IWBGOzjhw181bRI.crl (hash: Wi+AD3ZPJx3LLwW6w7w+3pLtkce7ISxSmTcBgFK+2UY=) 2: v1PRoA5ebsh_hlHI-WdJ9oH7RYY.roa (hash: g731f8Kk7ZRmBzHdANv/XJyJm7Gc4rKXDwNwW3MJnpw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/a43766-91dd-4266-af60-920b320d2e21/1/CYdvfc8Myud0IWBGOzjhw181bRI.crl rsync://rpki.ripe.net/repository/DEFAULT/02/a43766-91dd-4266-af60-920b320d2e21/1/CYdvfc8Myud0IWBGOzjhw181bRI.mft rsync://rpki.ripe.net/repository/DEFAULT/CYdvfc8Myud0IWBGOzjhw181bRI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9b:59:37:dd:9b:41:c8:2e:77:15:e2:92:4c:9b:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09876f7dcf0ccae7742160463b38e1c35f356d12 Validity Not Before: Dec 6 03:01:21 2025 GMT Not After : Dec 7 03:01:21 2025 GMT Subject: CN=82260fd44e9700d749d3b78cca65b31a091497cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:65:1c:6a:b3:fc:83:43:f3:dd:a2:cf:4c:c0: 6d:d3:2e:f6:ba:e6:56:f3:e5:e0:06:26:32:c3:cc: 7f:ee:86:f3:f3:4a:f0:86:d7:a4:bd:07:c0:10:af: 6f:b3:a8:e0:a1:53:c1:04:e1:75:e0:89:bc:ae:83: 29:d5:73:5f:2e:7d:e9:a0:7f:51:42:5a:6f:3d:fe: a1:d0:f0:b2:72:aa:ee:0c:0f:77:91:af:c5:dd:80: 4f:a5:64:82:40:55:42:71:fe:78:c9:b4:69:d1:56: 63:a7:bb:f9:32:50:01:6e:b3:13:bd:e6:70:3d:7d: 16:f7:47:2f:f4:2c:f7:41:25:c1:de:90:41:50:56: 5d:61:34:1a:d5:ec:a8:dc:b4:87:21:0b:b0:ce:61: 25:e5:10:c5:7d:f9:b5:d3:0f:6b:f9:0b:a4:88:d3: 87:0e:13:68:37:be:0d:8e:72:97:88:f9:11:3d:89: 2d:e4:cf:0e:b8:93:80:be:e1:cb:ec:9a:10:fb:9e: 0d:01:a8:86:52:b2:b8:66:8a:fe:15:ca:2e:fe:25: 7e:48:39:47:a5:c5:fb:b1:1d:6c:33:72:37:eb:05: b0:df:aa:c3:64:17:62:8d:1c:8f:ba:99:f6:3c:1e: 96:b0:fa:da:90:72:f1:d6:b5:42:06:93:97:11:71: 53:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:26:0F:D4:4E:97:00:D7:49:D3:B7:8C:CA:65:B3:1A:09:14:97:CC X509v3 Authority Key Identifier: keyid:09:87:6F:7D:CF:0C:CA:E7:74:21:60:46:3B:38:E1:C3:5F:35:6D:12 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CYdvfc8Myud0IWBGOzjhw181bRI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/a43766-91dd-4266-af60-920b320d2e21/1/CYdvfc8Myud0IWBGOzjhw181bRI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/02/a43766-91dd-4266-af60-920b320d2e21/1/CYdvfc8Myud0IWBGOzjhw181bRI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 21:79:25:93:0e:2c:3a:bf:5f:e8:9f:83:57:d7:54:a0:d3:ff: a1:4f:b9:96:a1:9c:65:bf:61:51:f7:fd:25:be:1f:29:69:80: 18:17:e0:ad:0e:d7:0d:c7:08:37:db:84:93:ac:cb:16:1c:eb: f8:d1:99:0c:58:e0:b9:be:7a:29:69:08:48:63:a6:21:8e:cc: 1a:0d:7f:19:90:8d:90:cb:29:25:e1:0c:1c:c8:5d:d6:87:34: c9:a5:07:08:c7:aa:f3:9a:6e:92:42:9f:95:8e:a2:5a:51:98: 07:3e:b2:59:6b:6c:48:f9:d8:ad:48:48:a3:a7:34:6a:6c:db: 2b:a4:46:d6:71:a0:90:32:fd:f1:70:34:fb:49:e7:60:0d:46: 6d:be:35:f7:39:44:35:63:f2:be:c4:29:d1:46:da:77:06:87: 1b:6b:bc:23:a7:21:d7:96:44:3a:8e:30:13:87:f8:b7:34:19: 84:96:ee:22:ab:b7:51:17:c8:bb:76:5a:46:25:dd:f4:bd:4b: e4:3b:ec:a1:a0:c0:2b:02:47:1e:be:dc:20:a8:be:f6:a4:97: 3e:f9:5d:2f:72:a1:72:e2:6a:87:99:dd:93:f0:49:8d:15:52: ab:c6:09:53:93:d8:ad:3f:3b:b2:08:ba:3d:99:0c:04:a1:9b: 40:66:4c:22 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxm1k33ZtByC53FeKSTJvKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5ODc2ZjdkY2YwY2NhZTc3NDIxNjA0NjNiMzhlMWMzNWYz NTZkMTIwHhcNMjUxMjA2MDMwMTIxWhcNMjUxMjA3MDMwMTIxWjAzMTEwLwYDVQQD Eyg4MjI2MGZkNDRlOTcwMGQ3NDlkM2I3OGNjYTY1YjMxYTA5MTQ5N2NjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0GUcarP8g0Pz3aLPTMBt0y72uuZW 8+XgBiYyw8x/7obz80rwhtekvQfAEK9vs6jgoVPBBOF14Im8roMp1XNfLn3poH9R QlpvPf6h0PCycqruDA93ka/F3YBPpWSCQFVCcf54ybRp0VZjp7v5MlABbrMTveZw PX0W90cv9Cz3QSXB3pBBUFZdYTQa1eyo3LSHIQuwzmEl5RDFffm10w9r+QukiNOH DhNoN74NjnKXiPkRPYkt5M8OuJOAvuHL7JoQ+54NAaiGUrK4Zor+Fcou/iV+SDlH pcX7sR1sM3I36wWw36rDZBdijRyPupn2PB6WsPrakHLx1rVCBpOXEXFTQQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIImD9ROlwDXSdO3jMplsxoJFJfMMB8GA1UdIwQY MBaAFAmHb33PDMrndCFgRjs44cNfNW0SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1lkdmZjOE15dWQwSVdCR096amh3MTgxYlJJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi9hNDM3NjYtOTFkZC00MjY2LWFmNjAt OTIwYjMyMGQyZTIxLzEvQ1lkdmZjOE15dWQwSVdCR096amh3MTgxYlJJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMi9hNDM3NjYtOTFkZC00MjY2LWFmNjAtOTIwYjMyMGQyZTIx LzEvQ1lkdmZjOE15dWQwSVdCR096amh3MTgxYlJJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIXklkw4s Or9f6J+DV9dUoNP/oU+5lqGcZb9hUff9Jb4fKWmAGBfgrQ7XDccIN9uEk6zLFhzr +NGZDFjgub56KWkISGOmIY7MGg1/GZCNkMspJeEMHMhd1oc0yaUHCMeq85pukkKf lY6iWlGYBz6yWWtsSPnYrUhIo6c0amzbK6RG1nGgkDL98XA0+0nnYA1Gbb419zlE NWPyvsQp0UbadwaHG2u8I6ch15ZEOo4wE4f4tzQZhJbuIqu3URfIu3ZaRiXd9L1L 5DvsoaDAKwJHHr7cIKi+9qSXPvldL3KhcuJqh5ndk/BJjRVSq8YJU5PYrT87sgi6 PZkMBKGbQGZMIg== -----END CERTIFICATE-----Generated at Sat Dec 6 10:19:35 2025 by rpki-client