This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/97ccab-d0c8-42e8-8725-a586b07add72/1/Yltc-eKZEkSMu7yG0gVhiZzbEE0.mft File: Yltc-eKZEkSMu7yG0gVhiZzbEE0.mft (raw, json) Hash identifier: 2XNCh+w3iUfueGy9nROVwak4f01otcWWPMonnjrRdgE= Subject key identifier: D3:88:7D:5B:70:45:8D:67:52:A3:22:A9:DE:D7:B8:4A:BB:CA:51:2F Authority key identifier: 62:5B:5C:F9:E2:99:12:44:8C:BB:BC:86:D2:05:61:89:9C:DB:10:4D Certificate issuer: /CN=625b5cf9e29912448cbbbc86d20561899cdb104d Certificate serial: 019AF2AD3E601B1B2FF075168C1687854B62 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yltc-eKZEkSMu7yG0gVhiZzbEE0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/97ccab-d0c8-42e8-8725-a586b07add72/1/Yltc-eKZEkSMu7yG0gVhiZzbEE0.mft Manifest number: 131E Signing time: Sat 06 Dec 2025 08:00:31 +0000 Manifest this update: Sat 06 Dec 2025 08:00:31 +0000 Manifest next update: Sun 07 Dec 2025 08:00:31 +0000 Files and hashes: 1: 3ir5WkvJIRxtwZei2sctSN0sCz0.roa (hash: kbUd9aHqn6kQ8QUhYDDaCsn+6zI4AKFQfFGDo83vd6o=) 2: Yltc-eKZEkSMu7yG0gVhiZzbEE0.crl (hash: KQP78BX+JWzv61gzN7fg2nQBkhxaoVPRlmYZKHuwd7k=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/97ccab-d0c8-42e8-8725-a586b07add72/1/Yltc-eKZEkSMu7yG0gVhiZzbEE0.crl rsync://rpki.ripe.net/repository/DEFAULT/17/97ccab-d0c8-42e8-8725-a586b07add72/1/Yltc-eKZEkSMu7yG0gVhiZzbEE0.mft rsync://rpki.ripe.net/repository/DEFAULT/Yltc-eKZEkSMu7yG0gVhiZzbEE0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 08:00:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:ad:3e:60:1b:1b:2f:f0:75:16:8c:16:87:85:4b:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=625b5cf9e29912448cbbbc86d20561899cdb104d Validity Not Before: Dec 6 08:00:31 2025 GMT Not After : Dec 7 08:00:31 2025 GMT Subject: CN=d3887d5b70458d6752a322a9ded7b84abbca512f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:7d:9f:b9:04:ee:61:cf:46:f2:e2:23:57:3c: 60:90:54:09:b0:eb:5a:a0:74:a5:6f:db:c2:48:e3: 11:ff:44:39:25:55:44:09:fe:24:29:07:cc:16:08: 38:bb:00:13:75:cc:b6:41:23:2b:75:fe:04:19:9c: a4:6a:fc:d1:b3:54:4e:ff:5a:d7:8c:e1:4c:e4:1d: 59:10:61:e4:cb:3a:22:78:31:31:7b:52:40:eb:75: 1d:2e:df:f1:6b:94:53:4e:17:2f:4f:0f:c9:08:83: 6e:98:f1:51:2c:f1:50:aa:0c:2b:24:d3:a0:32:a7: d0:3a:07:87:d2:b0:56:9a:bc:05:97:e7:35:bf:89: 18:fa:e2:db:e6:b9:6b:2f:92:68:0a:e1:96:72:20: d0:74:bc:58:b0:31:84:4e:aa:18:57:f9:94:5c:18: fc:f9:5e:0a:d1:e2:06:8a:23:45:7f:4f:fa:9f:51: aa:f9:6c:9a:25:98:c7:48:e2:f4:af:5e:f3:10:8b: d3:d4:80:85:32:1d:0e:84:ca:bd:bc:b4:34:a3:77: a4:c5:a7:f0:c3:01:05:b5:f8:a8:95:65:18:6b:c8: df:03:3b:53:b9:b1:80:43:14:2a:ef:87:d1:af:81: 4a:33:b3:95:db:03:f6:74:77:9b:1a:9a:82:7d:27: c7:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:88:7D:5B:70:45:8D:67:52:A3:22:A9:DE:D7:B8:4A:BB:CA:51:2F X509v3 Authority Key Identifier: keyid:62:5B:5C:F9:E2:99:12:44:8C:BB:BC:86:D2:05:61:89:9C:DB:10:4D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yltc-eKZEkSMu7yG0gVhiZzbEE0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/97ccab-d0c8-42e8-8725-a586b07add72/1/Yltc-eKZEkSMu7yG0gVhiZzbEE0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/17/97ccab-d0c8-42e8-8725-a586b07add72/1/Yltc-eKZEkSMu7yG0gVhiZzbEE0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 72:21:34:a6:e5:84:2e:3b:bd:f9:3d:43:f8:bf:20:13:01:81: c8:ca:2b:77:ce:e6:17:dc:01:ef:6a:60:e4:07:d8:7e:a8:c1: 8b:22:3e:a5:84:f2:a9:b3:b3:66:c1:b3:9d:4b:06:6a:fd:fb: 48:55:90:5e:dc:d4:8b:d9:79:8c:4b:b6:70:08:e5:51:6d:39: 31:e1:31:19:28:80:06:3d:0a:77:bf:43:45:31:3a:75:7d:41: e9:4e:65:a0:9e:7c:e5:0e:66:4b:82:bb:cf:b5:55:6a:c0:88: 0a:1f:2a:3c:af:f1:ae:c3:a7:3b:3f:4c:17:fc:51:c0:5d:b0: f9:a9:1a:8f:85:ea:87:64:b1:a1:8f:54:cf:b7:f0:a7:d3:8e: c7:aa:90:12:18:17:61:0d:2d:08:ff:51:1a:3c:db:78:84:e0: 43:37:e0:50:90:b6:4f:ce:14:3e:f9:df:10:58:d5:53:fa:19: 43:7a:6a:1b:35:ad:d8:65:89:a1:6b:a6:19:0a:de:db:de:ba: 5d:48:80:ca:d5:0b:33:01:5a:bc:cd:fb:38:39:c0:6c:43:c0: 60:2c:3a:3d:9d:de:45:ca:59:20:37:49:72:a3:c0:14:6b:bc: 91:0a:11:8a:34:4a:bc:de:94:0d:89:bb:ba:88:18:20:44:89: 49:5b:6c:9d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryrT5gGxsv8HUWjBaHhUtiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYyNWI1Y2Y5ZTI5OTEyNDQ4Y2JiYmM4NmQyMDU2MTg5OWNk YjEwNGQwHhcNMjUxMjA2MDgwMDMxWhcNMjUxMjA3MDgwMDMxWjAzMTEwLwYDVQQD EyhkMzg4N2Q1YjcwNDU4ZDY3NTJhMzIyYTlkZWQ3Yjg0YWJiY2E1MTJmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkH2fuQTuYc9G8uIjVzxgkFQJsOta oHSlb9vCSOMR/0Q5JVVECf4kKQfMFgg4uwATdcy2QSMrdf4EGZykavzRs1RO/1rX jOFM5B1ZEGHkyzoieDExe1JA63UdLt/xa5RTThcvTw/JCINumPFRLPFQqgwrJNOg MqfQOgeH0rBWmrwFl+c1v4kY+uLb5rlrL5JoCuGWciDQdLxYsDGETqoYV/mUXBj8 +V4K0eIGiiNFf0/6n1Gq+WyaJZjHSOL0r17zEIvT1ICFMh0OhMq9vLQ0o3ekxafw wwEFtfiolWUYa8jfAztTubGAQxQq74fRr4FKM7OV2wP2dHebGpqCfSfHKQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNOIfVtwRY1nUqMiqd7XuEq7ylEvMB8GA1UdIwQY MBaAFGJbXPnimRJEjLu8htIFYYmc2xBNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWWx0Yy1lS1pFa1NNdTd5RzBnVmhpWnpiRUUwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy85N2NjYWItZDBjOC00MmU4LTg3MjUt YTU4NmIwN2FkZDcyLzEvWWx0Yy1lS1pFa1NNdTd5RzBnVmhpWnpiRUUwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNy85N2NjYWItZDBjOC00MmU4LTg3MjUtYTU4NmIwN2FkZDcy LzEvWWx0Yy1lS1pFa1NNdTd5RzBnVmhpWnpiRUUwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAciE0puWE Lju9+T1D+L8gEwGByMord87mF9wB72pg5AfYfqjBiyI+pYTyqbOzZsGznUsGav37 SFWQXtzUi9l5jEu2cAjlUW05MeExGSiABj0Kd79DRTE6dX1B6U5loJ585Q5mS4K7 z7VVasCICh8qPK/xrsOnOz9MF/xRwF2w+akaj4Xqh2SxoY9Uz7fwp9OOx6qQEhgX YQ0tCP9RGjzbeITgQzfgUJC2T84UPvnfEFjVU/oZQ3pqGzWt2GWJoWumGQre2966 XUiAytULMwFavM37ODnAbEPAYCw6PZ3eRcpZIDdJcqPAFGu8kQoRijRKvN6UDYm7 uogYIESJSVtsnQ== -----END CERTIFICATE-----Generated at Sat Dec 6 17:05:35 2025 by rpki-client