This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/a89c01-6bb1-477c-94bc-5abe93aff642/1/yQDvPdXdG-FdCLuTy91jtKyGDms.mft File: yQDvPdXdG-FdCLuTy91jtKyGDms.mft (raw, json) Hash identifier: D87qhl7EJHJOKvZhvNZcQ6ZCKJbPw1S9AyciKcYxo9s= Subject key identifier: 1B:FE:DF:49:EA:0F:B5:E7:86:A7:03:05:27:A5:A3:29:05:54:23:A1 Authority key identifier: C9:00:EF:3D:D5:DD:1B:E1:5D:08:BB:93:CB:DD:63:B4:AC:86:0E:6B Certificate issuer: /CN=c900ef3dd5dd1be15d08bb93cbdd63b4ac860e6b Certificate serial: 019B360E0A60C9E9B0889ED0660163F79831 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yQDvPdXdG-FdCLuTy91jtKyGDms.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/a89c01-6bb1-477c-94bc-5abe93aff642/1/yQDvPdXdG-FdCLuTy91jtKyGDms.mft Manifest number: 11F5 Signing time: Fri 19 Dec 2025 10:00:48 +0000 Manifest this update: Fri 19 Dec 2025 10:00:48 +0000 Manifest next update: Sat 20 Dec 2025 10:00:48 +0000 Files and hashes: 1: kNwo0JsX3ICm84nVo9dsXQUG9kE.roa (hash: NK1ts8W0/zMpiUmbhnMjlz816+vYjFkNttYVHl02NWQ=) 2: yQDvPdXdG-FdCLuTy91jtKyGDms.crl (hash: rlkMeE9K8CSQ1I6hw3M16NpdJiy/ZFDhx8IyHR1/vhY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/a89c01-6bb1-477c-94bc-5abe93aff642/1/yQDvPdXdG-FdCLuTy91jtKyGDms.crl rsync://rpki.ripe.net/repository/DEFAULT/0a/a89c01-6bb1-477c-94bc-5abe93aff642/1/yQDvPdXdG-FdCLuTy91jtKyGDms.mft rsync://rpki.ripe.net/repository/DEFAULT/yQDvPdXdG-FdCLuTy91jtKyGDms.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 07:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:36:0e:0a:60:c9:e9:b0:88:9e:d0:66:01:63:f7:98:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c900ef3dd5dd1be15d08bb93cbdd63b4ac860e6b Validity Not Before: Dec 19 10:00:48 2025 GMT Not After : Dec 20 10:00:48 2025 GMT Subject: CN=1bfedf49ea0fb5e786a7030527a5a329055423a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:1c:fb:16:89:18:96:eb:a2:82:52:82:0c:d9: 32:97:3e:97:68:c9:2d:21:4b:95:94:20:ad:ea:ab: f0:0a:e4:52:b7:16:3a:41:03:95:53:17:1f:cd:98: cd:c4:fd:98:58:6f:85:93:c4:b4:97:b6:a4:98:d5: 9c:25:de:71:ef:ae:ba:d9:6c:1b:eb:b7:37:3a:60: 9e:00:72:d9:f4:68:05:c3:c1:c4:25:3d:8f:b7:b1: 90:9c:6e:82:64:ad:d8:1f:b3:df:65:bd:7d:9d:30: 71:69:6d:a4:af:75:4a:c9:41:e5:4f:8e:0b:97:ca: ff:3c:28:e2:bd:db:3c:62:db:51:f4:0a:7b:12:c8: a0:fc:20:9a:23:33:9b:50:ad:0c:bf:7e:51:fb:4e: 15:b2:9c:9a:8a:0d:15:d3:10:21:0a:7a:a2:d8:82: 16:0d:37:f9:3b:c9:d4:f3:62:26:72:e5:21:e7:53: 4a:4e:a0:9e:09:e9:02:5b:27:d7:80:fe:21:21:89: 3e:f8:4b:04:e9:1a:34:fe:ca:f8:86:6f:4e:b9:f1: ca:cf:41:6e:a2:01:48:ca:35:95:87:c3:11:54:04: ba:c7:05:3d:40:06:16:ac:67:5e:de:b2:6a:51:82: 69:0f:64:67:a9:3c:ad:a4:c4:3a:7e:44:10:35:98: a9:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:FE:DF:49:EA:0F:B5:E7:86:A7:03:05:27:A5:A3:29:05:54:23:A1 X509v3 Authority Key Identifier: keyid:C9:00:EF:3D:D5:DD:1B:E1:5D:08:BB:93:CB:DD:63:B4:AC:86:0E:6B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yQDvPdXdG-FdCLuTy91jtKyGDms.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/a89c01-6bb1-477c-94bc-5abe93aff642/1/yQDvPdXdG-FdCLuTy91jtKyGDms.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/a89c01-6bb1-477c-94bc-5abe93aff642/1/yQDvPdXdG-FdCLuTy91jtKyGDms.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0e:a2:5f:7e:c5:16:ff:41:d4:8b:ef:bf:6d:a7:4c:c6:35:11: 32:c2:39:c0:40:9e:3d:0c:ff:f8:b6:76:6e:61:dc:04:75:0f: 90:3b:a1:34:92:32:14:c7:d2:76:6c:fe:69:38:ec:12:a5:32: a6:c9:f5:6c:7c:5b:c3:09:20:cb:50:83:5e:6d:91:02:e1:e3: 2c:ff:ed:f6:f4:08:49:2d:55:ba:10:e7:59:43:b5:98:00:03: f5:78:59:08:f3:8c:5e:3c:d0:28:f2:02:88:7a:16:13:00:7d: 67:57:a7:fa:ae:ae:6b:e3:39:3f:07:69:3c:ed:3b:a1:71:18: 9e:3e:17:cb:f3:3c:a9:32:5c:96:30:33:7f:2c:81:44:14:f6: 86:6c:d9:f4:b3:2f:96:85:fd:13:84:2b:d8:3f:98:13:26:55: 0e:fd:fe:d2:87:7d:f7:38:aa:d4:e2:e7:57:b0:e3:02:25:ef: 49:81:40:33:6c:3e:ae:10:d6:84:60:87:e9:a9:f5:18:b2:b2: 18:b6:82:17:9e:3d:69:29:3b:6a:bc:1a:ad:7c:42:90:a9:55: 2a:b0:0b:21:a4:4e:8f:73:77:e6:68:7c:29:05:5f:26:a4:49: 62:fa:cc:b0:e6:1d:dd:f7:d1:0f:4f:c5:cf:67:0d:f9:97:b5: 25:fe:0a:55 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs2DgpgyemwiJ7QZgFj95gxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM5MDBlZjNkZDVkZDFiZTE1ZDA4YmI5M2NiZGQ2M2I0YWM4 NjBlNmIwHhcNMjUxMjE5MTAwMDQ4WhcNMjUxMjIwMTAwMDQ4WjAzMTEwLwYDVQQD EygxYmZlZGY0OWVhMGZiNWU3ODZhNzAzMDUyN2E1YTMyOTA1NTQyM2ExMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoxz7FokYluuiglKCDNkylz6XaMkt IUuVlCCt6qvwCuRStxY6QQOVUxcfzZjNxP2YWG+Fk8S0l7akmNWcJd5x76662Wwb 67c3OmCeAHLZ9GgFw8HEJT2Pt7GQnG6CZK3YH7PfZb19nTBxaW2kr3VKyUHlT44L l8r/PCjivds8YttR9Ap7Esig/CCaIzObUK0Mv35R+04Vspyaig0V0xAhCnqi2IIW DTf5O8nU82ImcuUh51NKTqCeCekCWyfXgP4hIYk++EsE6Ro0/sr4hm9OufHKz0Fu ogFIyjWVh8MRVAS6xwU9QAYWrGde3rJqUYJpD2RnqTytpMQ6fkQQNZipAwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBv+30nqD7XnhqcDBSeloykFVCOhMB8GA1UdIwQY MBaAFMkA7z3V3RvhXQi7k8vdY7Sshg5rMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveVFEdlBkWGRHLUZkQ0x1VHk5MWp0S3lHRG1zLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYS9hODljMDEtNmJiMS00NzdjLTk0YmMt NWFiZTkzYWZmNjQyLzEveVFEdlBkWGRHLUZkQ0x1VHk5MWp0S3lHRG1zLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYS9hODljMDEtNmJiMS00NzdjLTk0YmMtNWFiZTkzYWZmNjQy LzEveVFEdlBkWGRHLUZkQ0x1VHk5MWp0S3lHRG1zLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADqJffsUW /0HUi++/badMxjURMsI5wECePQz/+LZ2bmHcBHUPkDuhNJIyFMfSdmz+aTjsEqUy psn1bHxbwwkgy1CDXm2RAuHjLP/t9vQISS1VuhDnWUO1mAAD9XhZCPOMXjzQKPIC iHoWEwB9Z1en+q6ua+M5PwdpPO07oXEYnj4Xy/M8qTJcljAzfyyBRBT2hmzZ9LMv loX9E4Qr2D+YEyZVDv3+0od99ziq1OLnV7DjAiXvSYFAM2w+rhDWhGCH6an1GLKy GLaCF549aSk7arwarXxCkKlVKrALIaROj3N35mh8KQVfJqRJYvrMsOYd3ffRD0/F z2cN+Ze1Jf4KVQ== -----END CERTIFICATE-----Generated at Fri Dec 19 13:26:22 2025 by rpki-client