This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/36bd40-4a48-4c04-9710-5e763d3a4d1d/1/ygBGolNBzREDtgzOC5nqN1S6XEE.mft File: ygBGolNBzREDtgzOC5nqN1S6XEE.mft (raw, json) Hash identifier: snYH5xBbM4/+EIqjIrpEQTEMlQJSYXuVkqF2cbS4RIc= Subject key identifier: 15:37:72:6B:09:B9:23:C1:16:69:CD:DD:F2:0B:58:B6:1A:19:56:A8 Authority key identifier: CA:00:46:A2:53:41:CD:11:03:B6:0C:CE:0B:99:EA:37:54:BA:5C:41 Certificate issuer: /CN=ca0046a25341cd1103b60cce0b99ea3754ba5c41 Certificate serial: 019AF164331889D78872E5D2495F1F46623B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ygBGolNBzREDtgzOC5nqN1S6XEE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/36bd40-4a48-4c04-9710-5e763d3a4d1d/1/ygBGolNBzREDtgzOC5nqN1S6XEE.mft Manifest number: 045A Signing time: Sat 06 Dec 2025 02:01:06 +0000 Manifest this update: Sat 06 Dec 2025 02:01:06 +0000 Manifest next update: Sun 07 Dec 2025 02:01:06 +0000 Files and hashes: 1: YKvMMcRqLG8F9RKMTccvi7ZwGaQ.roa (hash: vyK0AzONbiCe5g5hUQ+qpo+ABY7iaBzdOKFUE4y2Cqc=) 2: ygBGolNBzREDtgzOC5nqN1S6XEE.crl (hash: hmpoInsIucvjEZUfo3K+4ZE4RQlmoJ16GhUCPmjRZw0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/36bd40-4a48-4c04-9710-5e763d3a4d1d/1/ygBGolNBzREDtgzOC5nqN1S6XEE.crl rsync://rpki.ripe.net/repository/DEFAULT/18/36bd40-4a48-4c04-9710-5e763d3a4d1d/1/ygBGolNBzREDtgzOC5nqN1S6XEE.mft rsync://rpki.ripe.net/repository/DEFAULT/ygBGolNBzREDtgzOC5nqN1S6XEE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:64:33:18:89:d7:88:72:e5:d2:49:5f:1f:46:62:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ca0046a25341cd1103b60cce0b99ea3754ba5c41 Validity Not Before: Dec 6 02:01:06 2025 GMT Not After : Dec 7 02:01:06 2025 GMT Subject: CN=1537726b09b923c11669cdddf20b58b61a1956a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:cc:da:ce:38:a9:39:8e:48:73:bd:a3:d7:86: 31:50:16:1d:58:4a:89:bd:d6:3f:81:e5:4f:8d:f7: 0d:ac:69:d0:ac:e7:f0:b2:d5:b3:85:5f:db:9c:2f: 96:24:03:74:47:ca:6e:50:12:ea:35:5d:13:9f:be: 58:30:a7:d7:5c:2c:f6:1d:61:ac:a8:31:cd:62:c7: 71:c4:a6:4d:0a:72:d9:ba:cb:b0:d8:25:b9:b8:b1: c8:bb:fb:07:30:14:fd:d0:22:14:cf:8f:5e:5d:ac: 45:0b:09:0e:13:3b:a7:b2:50:57:4b:e1:f7:16:00: 4d:17:f3:8a:ce:a7:e7:62:73:12:33:d7:42:d2:cf: f5:82:c1:60:0e:6e:c8:8e:e2:f4:59:e9:96:bc:34: 2a:b7:a7:63:c9:1b:75:75:2f:fa:b3:5e:92:63:d7: 49:78:59:4f:65:08:08:e5:91:e8:f0:e2:95:34:af: 8e:c4:93:dc:e7:13:36:4a:55:f9:ed:24:27:b9:54: 83:27:59:04:b4:a7:f3:d0:63:c3:15:de:82:91:5e: d0:00:6c:a0:e8:8b:66:46:5a:a9:e3:94:0b:0c:52: 89:d7:eb:1f:6c:7c:a8:75:56:0d:56:79:d6:8d:d4: ee:ed:54:ce:a1:0e:92:a9:83:ca:cb:3e:15:13:fc: a2:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:37:72:6B:09:B9:23:C1:16:69:CD:DD:F2:0B:58:B6:1A:19:56:A8 X509v3 Authority Key Identifier: keyid:CA:00:46:A2:53:41:CD:11:03:B6:0C:CE:0B:99:EA:37:54:BA:5C:41 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ygBGolNBzREDtgzOC5nqN1S6XEE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/36bd40-4a48-4c04-9710-5e763d3a4d1d/1/ygBGolNBzREDtgzOC5nqN1S6XEE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/18/36bd40-4a48-4c04-9710-5e763d3a4d1d/1/ygBGolNBzREDtgzOC5nqN1S6XEE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 04:56:7a:43:4b:10:bb:f8:4c:aa:f3:5e:92:48:e7:14:89:9e: c0:0d:3a:03:36:4e:ee:d3:90:fb:e1:1f:02:85:4d:0e:e9:fc: 98:f6:3a:66:2b:c7:10:9f:0c:4e:c3:08:33:8b:9b:c6:19:29: 58:fc:69:0a:06:85:c1:a2:ea:8c:04:6a:f9:e1:0b:54:12:a6: 93:ef:42:fe:ab:f1:a7:e7:81:b4:ec:09:99:96:50:f6:05:ad: 73:87:f0:e9:36:0a:b5:05:77:f2:2d:96:c8:52:d8:10:8d:0d: c5:c2:3e:29:4f:58:71:a9:3c:1a:04:cf:b3:37:3a:12:b9:37: 1b:df:e1:4d:ed:1f:95:0b:40:d1:90:6d:e1:84:49:9a:55:6a: e2:34:ab:a5:21:5f:8e:c1:9e:6d:f0:ff:0e:5f:a3:b4:61:0a: df:c7:26:e3:25:92:f1:f1:b4:a9:46:c9:cd:54:11:d6:d6:9d: db:59:c7:ce:8c:9f:e7:58:15:93:47:95:e6:c3:f3:a1:3e:b9: 12:3f:7a:d1:39:43:5b:d5:f0:bd:6a:b0:91:99:c2:ec:e7:c9: fe:c4:dd:c9:f5:25:e5:47:2b:ea:e2:b8:67:24:ac:0c:61:72: 3b:15:05:8b:97:91:02:35:62:51:3b:ec:b8:70:b1:9b:02:cf: 27:fb:bd:69 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxZDMYideIcuXSSV8fRmI7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNhMDA0NmEyNTM0MWNkMTEwM2I2MGNjZTBiOTllYTM3NTRi YTVjNDEwHhcNMjUxMjA2MDIwMTA2WhcNMjUxMjA3MDIwMTA2WjAzMTEwLwYDVQQD EygxNTM3NzI2YjA5YjkyM2MxMTY2OWNkZGRmMjBiNThiNjFhMTk1NmE4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq8zazjipOY5Ic72j14YxUBYdWEqJ vdY/geVPjfcNrGnQrOfwstWzhV/bnC+WJAN0R8puUBLqNV0Tn75YMKfXXCz2HWGs qDHNYsdxxKZNCnLZusuw2CW5uLHIu/sHMBT90CIUz49eXaxFCwkOEzunslBXS+H3 FgBNF/OKzqfnYnMSM9dC0s/1gsFgDm7IjuL0WemWvDQqt6djyRt1dS/6s16SY9dJ eFlPZQgI5ZHo8OKVNK+OxJPc5xM2SlX57SQnuVSDJ1kEtKfz0GPDFd6CkV7QAGyg 6ItmRlqp45QLDFKJ1+sfbHyodVYNVnnWjdTu7VTOoQ6SqYPKyz4VE/yiYwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBU3cmsJuSPBFmnN3fILWLYaGVaoMB8GA1UdIwQY MBaAFMoARqJTQc0RA7YMzguZ6jdUulxBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveWdCR29sTkJ6UkVEdGd6T0M1bnFOMVM2WEVFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOC8zNmJkNDAtNGE0OC00YzA0LTk3MTAt NWU3NjNkM2E0ZDFkLzEveWdCR29sTkJ6UkVEdGd6T0M1bnFOMVM2WEVFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xOC8zNmJkNDAtNGE0OC00YzA0LTk3MTAtNWU3NjNkM2E0ZDFk LzEveWdCR29sTkJ6UkVEdGd6T0M1bnFOMVM2WEVFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABFZ6Q0sQ u/hMqvNekkjnFImewA06AzZO7tOQ++EfAoVNDun8mPY6ZivHEJ8MTsMIM4ubxhkp WPxpCgaFwaLqjARq+eELVBKmk+9C/qvxp+eBtOwJmZZQ9gWtc4fw6TYKtQV38i2W yFLYEI0NxcI+KU9Ycak8GgTPszc6Erk3G9/hTe0flQtA0ZBt4YRJmlVq4jSrpSFf jsGebfD/Dl+jtGEK38cm4yWS8fG0qUbJzVQR1tad21nHzoyf51gVk0eV5sPzoT65 Ej960TlDW9XwvWqwkZnC7OfJ/sTdyfUl5Ucr6uK4ZySsDGFyOxUFi5eRAjViUTvs uHCxmwLPJ/u9aQ== -----END CERTIFICATE-----Generated at Sat Dec 6 08:14:32 2025 by rpki-client