This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/666670-d0f1-44a3-b93a-50111c4292d0/1/YFq7JTt2bc1_FtnwG8EZaRhI6w4.mft File: YFq7JTt2bc1_FtnwG8EZaRhI6w4.mft (raw, json) Hash identifier: cfPNRTY9Ov56RoYQWj09bGGC6aq+Hn7VNmvcKjvOpeU= Subject key identifier: DE:80:6B:58:02:2B:BC:5E:BC:C7:01:92:44:45:D7:BD:F3:0D:C9:F3 Authority key identifier: 60:5A:BB:25:3B:76:6D:CD:7F:16:D9:F0:1B:C1:19:69:18:48:EB:0E Certificate issuer: /CN=605abb253b766dcd7f16d9f01bc119691848eb0e Certificate serial: 019AF42E30BB2C6E8940203C161174D634CB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YFq7JTt2bc1_FtnwG8EZaRhI6w4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/666670-d0f1-44a3-b93a-50111c4292d0/1/YFq7JTt2bc1_FtnwG8EZaRhI6w4.mft Manifest number: 03BF Signing time: Sat 06 Dec 2025 15:00:59 +0000 Manifest this update: Sat 06 Dec 2025 15:00:59 +0000 Manifest next update: Sun 07 Dec 2025 15:00:59 +0000 Files and hashes: 1: YFq7JTt2bc1_FtnwG8EZaRhI6w4.crl (hash: vZo+G3jkMJ1k//4jUZ+4K1IPcurY0h/gjV1ldeUNSWU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/666670-d0f1-44a3-b93a-50111c4292d0/1/YFq7JTt2bc1_FtnwG8EZaRhI6w4.crl rsync://rpki.ripe.net/repository/DEFAULT/15/666670-d0f1-44a3-b93a-50111c4292d0/1/YFq7JTt2bc1_FtnwG8EZaRhI6w4.mft rsync://rpki.ripe.net/repository/DEFAULT/YFq7JTt2bc1_FtnwG8EZaRhI6w4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f4:2e:30:bb:2c:6e:89:40:20:3c:16:11:74:d6:34:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=605abb253b766dcd7f16d9f01bc119691848eb0e Validity Not Before: Dec 6 15:00:59 2025 GMT Not After : Dec 7 15:00:59 2025 GMT Subject: CN=de806b58022bbc5ebcc701924445d7bdf30dc9f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:eb:8c:dd:4a:81:5b:b2:1a:d9:44:e4:19:7b: 61:3a:9e:8e:34:25:0f:50:9a:35:d4:f9:c9:63:06: 66:c2:99:0b:9e:0a:63:db:94:19:bc:ea:4a:5c:51: b6:b8:17:dd:65:bd:9c:04:03:7e:ea:1d:05:a2:2d: 16:37:08:f9:c1:ea:75:64:cd:9d:d8:9e:66:18:2b: fd:6a:fb:73:9a:1d:c1:7a:22:90:96:4c:1d:46:60: 96:16:89:d8:9a:20:4a:e3:cc:b5:2b:6c:7d:a8:39: e3:a2:51:2f:8c:75:34:06:2e:43:3a:dc:8f:73:21: 2f:2d:af:22:0b:74:e7:fb:95:f0:39:40:c7:63:17: 90:3b:7b:fd:bf:26:b7:27:c4:c2:87:28:42:b6:d1: 21:13:73:3e:8a:fa:36:30:e4:a8:29:41:29:60:c9: 77:06:61:d0:00:b2:64:d0:5e:fe:0b:8e:c4:47:fa: 0a:b8:0b:92:9f:9f:c6:f5:39:ec:fa:be:97:5c:7f: 10:0e:42:eb:95:7b:09:73:21:58:5b:55:96:b4:d4: 54:b6:f7:07:b9:d5:66:82:65:8a:55:16:5a:c6:f4: cf:65:bf:fe:fa:20:72:92:1d:e5:6c:74:e8:29:84: b3:e8:36:88:b8:6c:04:b6:da:99:e0:d6:34:ee:49: fd:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:80:6B:58:02:2B:BC:5E:BC:C7:01:92:44:45:D7:BD:F3:0D:C9:F3 X509v3 Authority Key Identifier: keyid:60:5A:BB:25:3B:76:6D:CD:7F:16:D9:F0:1B:C1:19:69:18:48:EB:0E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YFq7JTt2bc1_FtnwG8EZaRhI6w4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/666670-d0f1-44a3-b93a-50111c4292d0/1/YFq7JTt2bc1_FtnwG8EZaRhI6w4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/15/666670-d0f1-44a3-b93a-50111c4292d0/1/YFq7JTt2bc1_FtnwG8EZaRhI6w4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4b:bf:4f:1c:57:12:26:b1:89:aa:d4:49:1b:de:ee:00:47:47: f1:d4:57:78:44:4f:62:03:68:c1:7c:cc:c6:06:9e:d4:4e:0c: bc:57:52:ac:71:e7:c8:c6:9d:a6:87:9d:4e:2b:18:9e:f6:de: 3f:ad:bd:51:12:f6:19:28:7c:25:74:3e:ae:b2:18:e2:f6:93: 66:1b:e4:6c:78:bd:55:31:9d:35:8c:f0:bd:73:01:d2:da:53: 29:bc:cb:89:36:95:74:53:d0:d4:d5:8a:67:d6:9c:76:81:c0: c5:f3:e8:7a:9b:5f:26:c0:ad:d5:96:1f:14:c8:eb:8f:d3:57: 55:ca:5f:48:1a:43:79:c0:09:e9:ee:8b:18:e4:fa:1e:27:e9: 89:07:b0:29:d7:42:67:49:cf:51:83:cd:00:37:8a:ab:bf:23: 00:d2:41:55:39:08:08:d9:5a:1a:eb:bd:04:30:6d:a8:f9:ef: 1c:34:31:4f:c4:6c:61:08:1a:1c:f0:d2:35:04:a7:eb:52:c8: 42:5c:11:d0:d5:74:5a:12:f1:79:ef:dc:35:3e:72:97:e3:97: 51:a7:48:44:47:b7:2b:55:66:0b:8a:6a:06:50:50:5d:dc:d6: 12:fe:01:07:fb:9f:2a:20:68:d8:c1:9e:0c:82:1d:07:19:39: 0e:c8:cc:4c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr0LjC7LG6JQCA8FhF01jTLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwNWFiYjI1M2I3NjZkY2Q3ZjE2ZDlmMDFiYzExOTY5MTg0 OGViMGUwHhcNMjUxMjA2MTUwMDU5WhcNMjUxMjA3MTUwMDU5WjAzMTEwLwYDVQQD EyhkZTgwNmI1ODAyMmJiYzVlYmNjNzAxOTI0NDQ1ZDdiZGYzMGRjOWYzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5OuM3UqBW7Ia2UTkGXthOp6ONCUP UJo11PnJYwZmwpkLngpj25QZvOpKXFG2uBfdZb2cBAN+6h0Foi0WNwj5wep1ZM2d 2J5mGCv9avtzmh3BeiKQlkwdRmCWFonYmiBK48y1K2x9qDnjolEvjHU0Bi5DOtyP cyEvLa8iC3Tn+5XwOUDHYxeQO3v9vya3J8TChyhCttEhE3M+ivo2MOSoKUEpYMl3 BmHQALJk0F7+C47ER/oKuAuSn5/G9Tns+r6XXH8QDkLrlXsJcyFYW1WWtNRUtvcH udVmgmWKVRZaxvTPZb/++iBykh3lbHToKYSz6DaIuGwEttqZ4NY07kn9LwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFN6Aa1gCK7xevMcBkkRF173zDcnzMB8GA1UdIwQY MBaAFGBauyU7dm3NfxbZ8BvBGWkYSOsOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWUZxN0pUdDJiYzFfRnRud0c4RVphUmhJNnc0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS82NjY2NzAtZDBmMS00NGEzLWI5M2Et NTAxMTFjNDI5MmQwLzEvWUZxN0pUdDJiYzFfRnRud0c4RVphUmhJNnc0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNS82NjY2NzAtZDBmMS00NGEzLWI5M2EtNTAxMTFjNDI5MmQw LzEvWUZxN0pUdDJiYzFfRnRud0c4RVphUmhJNnc0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAS79PHFcS JrGJqtRJG97uAEdH8dRXeERPYgNowXzMxgae1E4MvFdSrHHnyMadpoedTisYnvbe P629URL2GSh8JXQ+rrIY4vaTZhvkbHi9VTGdNYzwvXMB0tpTKbzLiTaVdFPQ1NWK Z9acdoHAxfPoeptfJsCt1ZYfFMjrj9NXVcpfSBpDecAJ6e6LGOT6HifpiQewKddC Z0nPUYPNADeKq78jANJBVTkICNlaGuu9BDBtqPnvHDQxT8RsYQgaHPDSNQSn61LI QlwR0NV0WhLxee/cNT5yl+OXUadIREe3K1VmC4pqBlBQXdzWEv4BB/ufKiBo2MGe DIIdBxk5DsjMTA== -----END CERTIFICATE-----Generated at Sat Dec 6 20:02:21 2025 by rpki-client