This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/c96426-483a-4cbf-9aa3-9473580bc850/1/YRfWFYBDFQsK0iSgZI3wGFcGAZw.mft File: YRfWFYBDFQsK0iSgZI3wGFcGAZw.mft (raw, json) Hash identifier: Teu2y/U55sFR7b/63KXYVCrJmHy2AsXJnrTpn+tY7fk= Subject key identifier: A0:E8:C3:6E:66:B8:12:0D:84:21:0A:25:8B:AF:13:2B:2A:9D:23:33 Authority key identifier: 61:17:D6:15:80:43:15:0B:0A:D2:24:A0:64:8D:F0:18:57:06:01:9C Certificate issuer: /CN=6117d6158043150b0ad224a0648df0185706019c Certificate serial: 019AF50AA1ED84806AD466E46E733D4841F0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YRfWFYBDFQsK0iSgZI3wGFcGAZw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/c96426-483a-4cbf-9aa3-9473580bc850/1/YRfWFYBDFQsK0iSgZI3wGFcGAZw.mft Manifest number: 11F1 Signing time: Sat 06 Dec 2025 19:01:45 +0000 Manifest this update: Sat 06 Dec 2025 19:01:45 +0000 Manifest next update: Sun 07 Dec 2025 19:01:45 +0000 Files and hashes: 1: YRfWFYBDFQsK0iSgZI3wGFcGAZw.crl (hash: LbkHPS/X+87mlUPTsLgTOPtOi3EQmoj96wpSri91IkM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/c96426-483a-4cbf-9aa3-9473580bc850/1/YRfWFYBDFQsK0iSgZI3wGFcGAZw.crl rsync://rpki.ripe.net/repository/DEFAULT/1a/c96426-483a-4cbf-9aa3-9473580bc850/1/YRfWFYBDFQsK0iSgZI3wGFcGAZw.mft rsync://rpki.ripe.net/repository/DEFAULT/YRfWFYBDFQsK0iSgZI3wGFcGAZw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:0a:a1:ed:84:80:6a:d4:66:e4:6e:73:3d:48:41:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6117d6158043150b0ad224a0648df0185706019c Validity Not Before: Dec 6 19:01:45 2025 GMT Not After : Dec 7 19:01:45 2025 GMT Subject: CN=a0e8c36e66b8120d84210a258baf132b2a9d2333 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:1e:f4:9e:d6:e0:ec:88:30:17:c7:20:0a:1c: 0a:11:53:d0:24:c2:08:9b:b3:d4:50:f5:65:7e:bb: 5e:d4:b4:3e:e3:82:6b:aa:8c:57:ec:9b:4b:63:2f: f2:12:f9:47:c2:d2:40:fb:44:9d:4e:9e:b1:1c:76: 7d:e3:51:b8:b0:18:02:31:8a:9f:69:e3:df:60:6d: 4b:d4:77:b9:e3:36:68:b2:35:10:b6:fa:f8:e8:ea: ec:60:34:bf:e6:45:87:59:46:c9:4c:64:10:5e:22: ff:60:fe:44:9d:83:47:d0:ad:a8:36:b8:96:36:61: 29:c1:6d:88:e1:ef:48:94:30:3f:5e:de:4c:cc:a8: 66:98:a5:00:74:d4:10:86:93:60:94:6d:fd:31:f0: dc:4f:89:37:e7:c8:99:ad:9c:04:ac:ae:d1:34:d5: c6:38:63:3f:27:da:f1:5e:29:24:9b:23:96:2f:27: fb:19:73:43:f1:1b:b0:12:2c:b9:5b:9a:43:9b:f7: 48:de:6c:e1:87:87:13:e4:45:1f:9d:c3:c3:d5:f7: 0c:56:0c:c2:56:e5:9f:14:e5:16:b4:ff:d7:9c:83: 02:62:ef:29:8e:2d:df:3e:e2:72:76:45:23:7e:f5: 29:0a:86:46:f8:21:41:ce:a7:5a:2a:8f:87:7a:e2: 31:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:E8:C3:6E:66:B8:12:0D:84:21:0A:25:8B:AF:13:2B:2A:9D:23:33 X509v3 Authority Key Identifier: keyid:61:17:D6:15:80:43:15:0B:0A:D2:24:A0:64:8D:F0:18:57:06:01:9C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YRfWFYBDFQsK0iSgZI3wGFcGAZw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/c96426-483a-4cbf-9aa3-9473580bc850/1/YRfWFYBDFQsK0iSgZI3wGFcGAZw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/c96426-483a-4cbf-9aa3-9473580bc850/1/YRfWFYBDFQsK0iSgZI3wGFcGAZw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 42:c5:45:94:e9:2c:74:ed:ee:76:0a:ab:6c:c7:c5:bf:a0:f6: ad:68:a5:43:fc:38:b4:b6:71:db:5a:15:ee:09:98:e1:8a:af: fd:ac:63:73:2d:4f:0c:09:fd:ab:d0:55:8d:91:8e:e7:04:59: fb:f5:e1:4c:7c:2e:fa:1a:7c:55:15:f0:a7:fa:4d:56:f8:f0: bd:0c:19:20:2c:7b:cf:d1:98:e6:91:83:d0:9f:53:23:f6:50: c6:99:7e:bb:a1:8b:78:78:be:74:75:48:fd:2e:49:1b:6e:fc: 35:7a:a8:31:43:0a:d1:a0:e9:5c:60:be:92:42:64:10:0f:88: c3:bd:72:88:38:40:b8:e2:17:35:cd:15:07:04:8e:36:ad:53: 26:d9:5d:2f:65:68:4e:59:54:c4:db:0e:b7:54:be:1b:00:04: 43:c6:58:c0:21:59:0f:e4:74:df:d6:65:40:e9:0c:25:b2:35: e7:e3:e1:e9:71:87:7c:d2:f7:28:8c:d0:b6:01:4b:68:91:88: d6:3d:68:0f:4c:6b:2f:03:bf:cf:d0:1a:c9:d3:73:6b:c3:af: 47:aa:1f:3e:8d:ac:5b:96:3e:7f:d1:6a:83:2e:79:2d:ee:d8: 4e:60:8d:c9:a3:9b:cb:0e:de:30:5c:3c:73:21:ae:73:16:c0: a4:c7:36:3c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr1CqHthIBq1GbkbnM9SEHwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYxMTdkNjE1ODA0MzE1MGIwYWQyMjRhMDY0OGRmMDE4NTcw NjAxOWMwHhcNMjUxMjA2MTkwMTQ1WhcNMjUxMjA3MTkwMTQ1WjAzMTEwLwYDVQQD EyhhMGU4YzM2ZTY2YjgxMjBkODQyMTBhMjU4YmFmMTMyYjJhOWQyMzMzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6x70ntbg7IgwF8cgChwKEVPQJMII m7PUUPVlfrte1LQ+44JrqoxX7JtLYy/yEvlHwtJA+0SdTp6xHHZ941G4sBgCMYqf aePfYG1L1He54zZosjUQtvr46OrsYDS/5kWHWUbJTGQQXiL/YP5EnYNH0K2oNriW NmEpwW2I4e9IlDA/Xt5MzKhmmKUAdNQQhpNglG39MfDcT4k358iZrZwErK7RNNXG OGM/J9rxXikkmyOWLyf7GXND8RuwEiy5W5pDm/dI3mzhh4cT5EUfncPD1fcMVgzC VuWfFOUWtP/XnIMCYu8pji3fPuJydkUjfvUpCoZG+CFBzqdaKo+HeuIxSwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKDow25muBINhCEKJYuvEysqnSMzMB8GA1UdIwQY MBaAFGEX1hWAQxULCtIkoGSN8BhXBgGcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWVJmV0ZZQkRGUXNLMGlTZ1pJM3dHRmNHQVp3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYS9jOTY0MjYtNDgzYS00Y2JmLTlhYTMt OTQ3MzU4MGJjODUwLzEvWVJmV0ZZQkRGUXNLMGlTZ1pJM3dHRmNHQVp3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYS9jOTY0MjYtNDgzYS00Y2JmLTlhYTMtOTQ3MzU4MGJjODUw LzEvWVJmV0ZZQkRGUXNLMGlTZ1pJM3dHRmNHQVp3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQsVFlOks dO3udgqrbMfFv6D2rWilQ/w4tLZx21oV7gmY4Yqv/axjcy1PDAn9q9BVjZGO5wRZ +/XhTHwu+hp8VRXwp/pNVvjwvQwZICx7z9GY5pGD0J9TI/ZQxpl+u6GLeHi+dHVI /S5JG278NXqoMUMK0aDpXGC+kkJkEA+Iw71yiDhAuOIXNc0VBwSONq1TJtldL2Vo TllUxNsOt1S+GwAEQ8ZYwCFZD+R039ZlQOkMJbI15+Ph6XGHfNL3KIzQtgFLaJGI 1j1oD0xrLwO/z9AaydNza8OvR6ofPo2sW5Y+f9Fqgy55Le7YTmCNyaObyw7eMFw8 cyGucxbApMc2PA== -----END CERTIFICATE-----Generated at Sat Dec 6 22:28:10 2025 by rpki-client