This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.mft File: YbcgLJIwwolFDtWmKxc2mgZZvGs.mft (raw, json) Hash identifier: o732lGk9wzAeMg7FK8aKM+c/21trWvDtz5TCZdaPrAU= Subject key identifier: 8B:26:0B:8E:F7:49:D2:CD:67:C0:7F:9D:AC:21:09:13:4E:38:F8:DD Authority key identifier: 61:B7:20:2C:92:30:C2:89:45:0E:D5:A6:2B:17:36:9A:06:59:BC:6B Certificate issuer: /CN=61b7202c9230c289450ed5a62b17369a0659bc6b Certificate serial: 019AF2090C35145EEC0F7C85BC17299EACA5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbcgLJIwwolFDtWmKxc2mgZZvGs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.mft Manifest number: 0A06 Signing time: Sat 06 Dec 2025 05:01:10 +0000 Manifest this update: Sat 06 Dec 2025 05:01:10 +0000 Manifest next update: Sun 07 Dec 2025 05:01:10 +0000 Files and hashes: 1: WEJghusKIKSFibkCzqHCeJYzUzA.roa (hash: OzzJ4qVi0bEqkT53q5LfwPnutGydp+ntCXtobu4buTA=) 2: YbcgLJIwwolFDtWmKxc2mgZZvGs.crl (hash: KRAJeKcpX4V8UEjYHR43Bnb9bqMWLJ3E/RiJMf1nflw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.crl rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.mft rsync://rpki.ripe.net/repository/DEFAULT/YbcgLJIwwolFDtWmKxc2mgZZvGs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:09:0c:35:14:5e:ec:0f:7c:85:bc:17:29:9e:ac:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=61b7202c9230c289450ed5a62b17369a0659bc6b Validity Not Before: Dec 6 05:01:10 2025 GMT Not After : Dec 7 05:01:10 2025 GMT Subject: CN=8b260b8ef749d2cd67c07f9dac2109134e38f8dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:63:93:5c:c4:31:0b:d5:3b:f3:77:52:14:86: 8d:3f:e2:68:14:6d:a7:ec:8a:a9:8c:59:d1:ba:30: 23:fb:5b:bf:ab:bd:6c:f9:b6:1c:de:51:97:21:92: 65:d6:32:52:da:0f:da:88:af:d6:79:52:82:d2:f6: 48:75:2b:f6:b6:c7:ad:d9:f8:74:db:fb:12:1f:39: 2c:6c:6d:20:96:a1:38:7b:83:b0:ca:95:ea:ad:ae: 48:e7:b1:0a:e3:b6:50:1f:b7:98:d1:de:6a:61:6a: c8:1e:77:fa:a5:04:3c:db:69:e9:9f:41:83:97:ff: 09:f5:7f:6b:08:de:fc:6c:58:8a:bb:29:56:d9:6b: 2f:4f:85:10:b1:14:03:ce:29:04:d1:4d:13:15:31: a5:09:af:43:b3:5d:8d:4b:d8:77:7d:ff:4f:d0:a0: 10:e6:a3:cf:af:65:2e:92:90:a7:72:5f:50:03:09: 94:d8:94:fd:5e:5f:08:6e:a4:95:56:f9:90:31:c4: 23:4b:03:9d:7d:e0:3e:cb:e9:c5:08:51:1e:33:ff: 63:7d:20:7e:dc:5d:69:42:04:e4:ea:77:28:56:f3: 94:d9:fe:94:66:41:c7:b7:fd:a1:e9:bc:ee:18:be: 00:61:4f:74:ff:ba:4b:8e:6d:b4:90:d0:1a:b2:7e: 5b:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:26:0B:8E:F7:49:D2:CD:67:C0:7F:9D:AC:21:09:13:4E:38:F8:DD X509v3 Authority Key Identifier: keyid:61:B7:20:2C:92:30:C2:89:45:0E:D5:A6:2B:17:36:9A:06:59:BC:6B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbcgLJIwwolFDtWmKxc2mgZZvGs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6f:ad:58:09:db:09:3b:19:11:c7:f9:66:b8:5b:fc:9f:16:09: d2:b2:fa:0f:94:cc:d1:51:a7:41:29:de:61:7a:8e:14:25:68: 84:e7:74:be:37:4d:a6:fc:38:51:74:3e:cf:b8:90:d8:90:50: e4:b9:da:d2:96:da:a7:4d:6d:e6:64:ba:84:2b:9b:62:b8:fb: 34:70:46:8f:d0:ed:8b:7a:79:c4:d1:df:e3:f2:b2:a5:d6:7f: f6:59:27:5a:03:b6:a6:63:4d:6c:40:4e:74:5d:28:0e:e2:2c: 69:8a:1c:9d:7b:b8:e0:7b:a2:8a:8e:83:1d:0d:cc:44:b7:ea: 37:e5:08:12:03:61:6c:9d:4e:3d:a5:e8:b9:e1:04:d4:dd:03: 6a:a4:2f:54:ee:40:09:14:b4:49:1e:7a:8c:57:4f:c8:c5:69: 8c:3c:f9:0a:66:b1:09:ff:2b:c6:ae:94:73:87:29:b6:20:a9: 34:b1:f2:6e:dc:c4:52:c2:67:9f:64:3f:0e:dc:56:da:c5:4c: 2d:e7:26:c5:ef:47:01:fc:03:61:3b:d4:b7:f0:65:12:3c:99: 6d:97:66:f4:71:58:e6:97:e5:ad:b2:f4:9a:2e:a0:5c:4d:4f: e3:53:5b:fd:be:2e:d0:b4:41:9c:5a:08:1a:84:a4:30:e2:47: 6a:f5:f1:30 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCQw1FF7sD3yFvBcpnqylMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYxYjcyMDJjOTIzMGMyODk0NTBlZDVhNjJiMTczNjlhMDY1 OWJjNmIwHhcNMjUxMjA2MDUwMTEwWhcNMjUxMjA3MDUwMTEwWjAzMTEwLwYDVQQD Eyg4YjI2MGI4ZWY3NDlkMmNkNjdjMDdmOWRhYzIxMDkxMzRlMzhmOGRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2WOTXMQxC9U783dSFIaNP+JoFG2n 7IqpjFnRujAj+1u/q71s+bYc3lGXIZJl1jJS2g/aiK/WeVKC0vZIdSv2tset2fh0 2/sSHzksbG0glqE4e4OwypXqra5I57EK47ZQH7eY0d5qYWrIHnf6pQQ822npn0GD l/8J9X9rCN78bFiKuylW2WsvT4UQsRQDzikE0U0TFTGlCa9Ds12NS9h3ff9P0KAQ 5qPPr2UukpCncl9QAwmU2JT9Xl8IbqSVVvmQMcQjSwOdfeA+y+nFCFEeM/9jfSB+ 3F1pQgTk6ncoVvOU2f6UZkHHt/2h6bzuGL4AYU90/7pLjm20kNAasn5bmQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIsmC473SdLNZ8B/nawhCRNOOPjdMB8GA1UdIwQY MBaAFGG3ICySMMKJRQ7VpisXNpoGWbxrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWWJjZ0xKSXd3b2xGRHRXbUt4YzJtZ1padkdzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC82MWQ0MmQtM2I0OC00NjhlLTlhZDkt MjE1ZmMzOTBiZmU0LzEvWWJjZ0xKSXd3b2xGRHRXbUt4YzJtZ1padkdzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMC82MWQ0MmQtM2I0OC00NjhlLTlhZDktMjE1ZmMzOTBiZmU0 LzEvWWJjZ0xKSXd3b2xGRHRXbUt4YzJtZ1padkdzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAb61YCdsJ OxkRx/lmuFv8nxYJ0rL6D5TM0VGnQSneYXqOFCVohOd0vjdNpvw4UXQ+z7iQ2JBQ 5Lna0pbap01t5mS6hCubYrj7NHBGj9Dti3p5xNHf4/KypdZ/9lknWgO2pmNNbEBO dF0oDuIsaYocnXu44Huiio6DHQ3MRLfqN+UIEgNhbJ1OPaXoueEE1N0DaqQvVO5A CRS0SR56jFdPyMVpjDz5CmaxCf8rxq6Uc4cptiCpNLHybtzEUsJnn2Q/DtxW2sVM Lecmxe9HAfwDYTvUt/BlEjyZbZdm9HFY5pflrbL0mi6gXE1P41Nb/b4u0LRBnFoI GoSkMOJHavXxMA== -----END CERTIFICATE-----Generated at Sat Dec 6 11:00:45 2025 by rpki-client