This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/a7b265-5476-49f4-bd4a-2f9f81e93298/1/yfcvcKzNptLmEzWoFzDm9u5RPMU.mft File: yfcvcKzNptLmEzWoFzDm9u5RPMU.mft (raw, json) Hash identifier: UDiPpjvI7RYz2ZqAdtmixr4OA8WoEb2QNNbIdFMImfY= Subject key identifier: 7B:C9:7B:87:C5:3E:A9:43:1A:6E:ED:AB:43:C5:1F:03:86:E7:CF:07 Authority key identifier: C9:F7:2F:70:AC:CD:A6:D2:E6:13:35:A8:17:30:E6:F6:EE:51:3C:C5 Certificate issuer: /CN=c9f72f70accda6d2e61335a81730e6f6ee513cc5 Certificate serial: 019AF12EDEC0FB6C842D0E398E7DB20A3C04 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yfcvcKzNptLmEzWoFzDm9u5RPMU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/a7b265-5476-49f4-bd4a-2f9f81e93298/1/yfcvcKzNptLmEzWoFzDm9u5RPMU.mft Manifest number: 175D Signing time: Sat 06 Dec 2025 01:02:51 +0000 Manifest this update: Sat 06 Dec 2025 01:02:51 +0000 Manifest next update: Sun 07 Dec 2025 01:02:51 +0000 Files and hashes: 1: yfcvcKzNptLmEzWoFzDm9u5RPMU.crl (hash: ZVjSgPkt6eZeQnnlIUzjWzhFBrGodnE3p24t3SCGUQM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/a7b265-5476-49f4-bd4a-2f9f81e93298/1/yfcvcKzNptLmEzWoFzDm9u5RPMU.crl rsync://rpki.ripe.net/repository/DEFAULT/05/a7b265-5476-49f4-bd4a-2f9f81e93298/1/yfcvcKzNptLmEzWoFzDm9u5RPMU.mft rsync://rpki.ripe.net/repository/DEFAULT/yfcvcKzNptLmEzWoFzDm9u5RPMU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:02:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2e:de:c0:fb:6c:84:2d:0e:39:8e:7d:b2:0a:3c:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c9f72f70accda6d2e61335a81730e6f6ee513cc5 Validity Not Before: Dec 6 01:02:51 2025 GMT Not After : Dec 7 01:02:51 2025 GMT Subject: CN=7bc97b87c53ea9431a6eedab43c51f0386e7cf07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:10:3e:4a:e6:af:bc:31:22:70:0b:e4:93:de: d2:37:df:4e:4c:f8:20:72:7b:c9:42:58:aa:6b:f5: 89:89:be:ec:66:41:d7:31:9f:42:42:9b:4c:24:9b: c3:a9:55:0c:71:e1:c4:e9:e3:95:3c:80:08:85:0b: 54:86:ed:2a:ce:b7:b9:25:1e:ee:03:57:d9:1e:89: ed:c3:c8:c4:53:d3:0d:75:b8:e3:27:03:df:cc:1d: 8b:2e:ff:79:d6:94:7a:46:dd:b5:98:76:f7:4c:83: d0:af:79:7a:33:f7:ba:21:29:38:51:1b:2f:6d:cd: 5c:0c:c2:4a:78:7d:db:42:bc:bb:fe:6a:48:d2:36: 77:52:58:ee:6e:c8:d1:39:d1:4c:45:ed:f3:08:0a: 0a:d1:ff:b6:d6:bd:20:22:cd:31:56:65:cf:9d:9b: 9a:bc:e6:78:27:41:a3:32:e6:26:94:d5:2e:dc:f0: 1d:c1:22:a4:cd:7b:0b:3f:82:5f:af:9c:bc:98:0f: 4c:9c:23:b5:c1:cc:95:74:9e:58:39:df:40:95:e9: a2:89:87:98:d2:2b:17:c1:d0:4f:d0:48:ad:b0:a3: d8:f6:2a:45:54:a9:dc:ea:d2:36:47:9c:3c:22:ca: 7c:88:f4:e0:66:9f:99:d5:6a:d4:32:5e:70:1a:b4: 57:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:C9:7B:87:C5:3E:A9:43:1A:6E:ED:AB:43:C5:1F:03:86:E7:CF:07 X509v3 Authority Key Identifier: keyid:C9:F7:2F:70:AC:CD:A6:D2:E6:13:35:A8:17:30:E6:F6:EE:51:3C:C5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yfcvcKzNptLmEzWoFzDm9u5RPMU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/a7b265-5476-49f4-bd4a-2f9f81e93298/1/yfcvcKzNptLmEzWoFzDm9u5RPMU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/05/a7b265-5476-49f4-bd4a-2f9f81e93298/1/yfcvcKzNptLmEzWoFzDm9u5RPMU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 55:b8:1b:26:fc:c6:84:4a:e4:60:77:06:c5:6a:6b:50:0d:28: f9:a7:62:16:69:dc:b3:a4:b0:b7:42:f4:1f:15:cc:15:7f:08: 08:ef:74:f1:89:8d:51:02:3d:6b:ff:95:fd:98:97:7b:83:26: a8:a8:b3:e2:8d:13:73:6b:8a:17:e4:7a:7a:c8:59:d1:46:58: f8:09:a0:2b:5e:d0:89:fe:7b:6c:42:3d:ca:8a:f2:75:31:01: f9:e6:29:07:64:23:77:0e:2b:57:01:c5:5c:13:f6:a0:a1:4f: 84:0d:8b:93:94:7f:ff:2f:f8:ad:2a:12:c2:e0:81:76:2d:0e: 07:09:4c:69:76:66:30:2e:89:89:12:d5:90:82:99:8f:f6:1e: 6d:47:3e:57:31:1c:78:dc:f2:d6:d3:5e:a9:95:21:1a:e9:b7: f9:63:c1:f2:b8:62:19:e5:42:a7:d5:9b:44:fa:bf:5f:09:52: ca:6c:75:4d:65:d2:f8:aa:bc:b1:59:62:ee:ae:78:35:7b:c5: 1b:ae:1a:b1:c1:02:e7:04:c2:65:93:01:65:a3:b9:b8:1e:1d: 30:76:59:69:0c:68:ca:64:cc:02:6d:f7:dd:f3:cf:4e:db:f8: 78:5a:ff:da:f2:7f:6c:3b:82:ca:9b:1b:59:e6:3d:f1:82:5f: 69:68:5c:a3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLt7A+2yELQ45jn2yCjwEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM5ZjcyZjcwYWNjZGE2ZDJlNjEzMzVhODE3MzBlNmY2ZWU1 MTNjYzUwHhcNMjUxMjA2MDEwMjUxWhcNMjUxMjA3MDEwMjUxWjAzMTEwLwYDVQQD Eyg3YmM5N2I4N2M1M2VhOTQzMWE2ZWVkYWI0M2M1MWYwMzg2ZTdjZjA3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArhA+SuavvDEicAvkk97SN99OTPgg cnvJQliqa/WJib7sZkHXMZ9CQptMJJvDqVUMceHE6eOVPIAIhQtUhu0qzre5JR7u A1fZHontw8jEU9MNdbjjJwPfzB2LLv951pR6Rt21mHb3TIPQr3l6M/e6ISk4URsv bc1cDMJKeH3bQry7/mpI0jZ3UljubsjROdFMRe3zCAoK0f+21r0gIs0xVmXPnZua vOZ4J0GjMuYmlNUu3PAdwSKkzXsLP4Jfr5y8mA9MnCO1wcyVdJ5YOd9AlemiiYeY 0isXwdBP0EitsKPY9ipFVKnc6tI2R5w8Isp8iPTgZp+Z1WrUMl5wGrRX7wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHvJe4fFPqlDGm7tq0PFHwOG588HMB8GA1UdIwQY MBaAFMn3L3CszabS5hM1qBcw5vbuUTzFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveWZjdmNLek5wdExtRXpXb0Z6RG05dTVSUE1VLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNS9hN2IyNjUtNTQ3Ni00OWY0LWJkNGEt MmY5ZjgxZTkzMjk4LzEveWZjdmNLek5wdExtRXpXb0Z6RG05dTVSUE1VLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNS9hN2IyNjUtNTQ3Ni00OWY0LWJkNGEtMmY5ZjgxZTkzMjk4 LzEveWZjdmNLek5wdExtRXpXb0Z6RG05dTVSUE1VLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVbgbJvzG hErkYHcGxWprUA0o+adiFmncs6Swt0L0HxXMFX8ICO908YmNUQI9a/+V/ZiXe4Mm qKiz4o0Tc2uKF+R6eshZ0UZY+AmgK17Qif57bEI9yorydTEB+eYpB2Qjdw4rVwHF XBP2oKFPhA2Lk5R//y/4rSoSwuCBdi0OBwlMaXZmMC6JiRLVkIKZj/YebUc+VzEc eNzy1tNeqZUhGum3+WPB8rhiGeVCp9WbRPq/XwlSymx1TWXS+Kq8sVli7q54NXvF G64ascEC5wTCZZMBZaO5uB4dMHZZaQxoymTMAm333fPPTtv4eFr/2vJ/bDuCypsb WeY98YJfaWhcow== -----END CERTIFICATE-----Generated at Sat Dec 6 07:11:08 2025 by rpki-client