This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/d43085-d94e-469d-9778-3b8ec1a65880/1/cYsTi6k1I08RyhAl1mfxM_B9Vf0.mft File: cYsTi6k1I08RyhAl1mfxM_B9Vf0.mft (raw, json) Hash identifier: sNAFK6D5X4ElwpckbnZTofVR+xlK4L2r+QUjGUvvTyg= Subject key identifier: AB:10:FE:31:5D:AF:45:79:33:71:E3:85:FC:58:3E:75:89:A5:08:38 Authority key identifier: 71:8B:13:8B:A9:35:23:4F:11:CA:10:25:D6:67:F1:33:F0:7D:55:FD Certificate issuer: /CN=718b138ba935234f11ca1025d667f133f07d55fd Certificate serial: 019AF208E657C890C9C3E3EAEDAB028D6719 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cYsTi6k1I08RyhAl1mfxM_B9Vf0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/d43085-d94e-469d-9778-3b8ec1a65880/1/cYsTi6k1I08RyhAl1mfxM_B9Vf0.mft Manifest number: 1762 Signing time: Sat 06 Dec 2025 05:01:00 +0000 Manifest this update: Sat 06 Dec 2025 05:01:00 +0000 Manifest next update: Sun 07 Dec 2025 05:01:00 +0000 Files and hashes: 1: 7EHgO3PucIIBrDXTf3unAqcCVmM.roa (hash: xo4Z+bj09YwXVnD23gXzeCAhnM1Vgv1JkS4OxDZhKZ8=) 2: cYsTi6k1I08RyhAl1mfxM_B9Vf0.crl (hash: 19/o5qYZAdwQ+szqEOGxplMxZ0fbiLFmsbFqm8qbayE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/d43085-d94e-469d-9778-3b8ec1a65880/1/cYsTi6k1I08RyhAl1mfxM_B9Vf0.crl rsync://rpki.ripe.net/repository/DEFAULT/22/d43085-d94e-469d-9778-3b8ec1a65880/1/cYsTi6k1I08RyhAl1mfxM_B9Vf0.mft rsync://rpki.ripe.net/repository/DEFAULT/cYsTi6k1I08RyhAl1mfxM_B9Vf0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:08:e6:57:c8:90:c9:c3:e3:ea:ed:ab:02:8d:67:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=718b138ba935234f11ca1025d667f133f07d55fd Validity Not Before: Dec 6 05:01:00 2025 GMT Not After : Dec 7 05:01:00 2025 GMT Subject: CN=ab10fe315daf45793371e385fc583e7589a50838 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:65:0b:25:e1:c6:c8:5d:d0:e6:5e:a0:c1:3a: 12:bf:46:31:4c:7b:fa:7c:81:e0:d8:93:8a:b8:82: 90:3f:b8:1c:f0:cd:6e:5e:89:3a:ef:8b:db:3b:67: 35:3f:6b:6f:f1:9f:ed:fc:d4:38:fd:cd:b2:ac:f9: 7a:91:e5:b2:3c:52:24:df:d3:fc:7c:e0:15:6c:fc: d4:1d:71:fe:15:67:e8:de:41:0f:f2:4f:9f:79:46: e0:57:10:67:8b:52:01:32:db:c7:4d:e4:26:88:57: 2a:b1:b7:1b:ac:0d:63:e9:0d:3c:42:61:8a:f6:af: ea:0f:ee:08:a1:16:e1:f9:85:19:17:0c:72:3e:fc: ce:cb:ac:fd:88:3b:a2:93:88:d1:fd:23:b7:e9:92: de:3f:b8:7e:d5:bc:d6:96:ca:51:c6:05:51:17:91: 12:eb:9d:cc:cd:c1:e1:cf:33:77:a3:e8:73:0d:4a: c4:a2:a4:ad:4d:75:b0:16:cc:f6:3a:15:b9:fc:91: 4e:57:f2:24:82:f3:6e:fb:d6:eb:15:4a:06:c8:fc: 45:0a:7e:a1:fc:c3:9b:28:ba:70:73:e8:b0:8d:4b: 06:23:24:83:93:10:61:98:c3:91:57:58:45:a5:3a: 9b:13:8f:2b:92:0e:0f:64:a4:4a:e6:fc:39:b4:fd: de:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:10:FE:31:5D:AF:45:79:33:71:E3:85:FC:58:3E:75:89:A5:08:38 X509v3 Authority Key Identifier: keyid:71:8B:13:8B:A9:35:23:4F:11:CA:10:25:D6:67:F1:33:F0:7D:55:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cYsTi6k1I08RyhAl1mfxM_B9Vf0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/d43085-d94e-469d-9778-3b8ec1a65880/1/cYsTi6k1I08RyhAl1mfxM_B9Vf0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/22/d43085-d94e-469d-9778-3b8ec1a65880/1/cYsTi6k1I08RyhAl1mfxM_B9Vf0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a3:a4:a4:89:de:84:ce:e5:c2:03:ce:59:a0:49:75:c8:c8:49: 56:82:38:ba:08:bf:c9:e4:fb:9f:d7:fe:12:58:45:44:88:bb: d9:60:49:d5:0d:39:26:d2:6c:9c:8d:4c:09:d9:ac:0d:b7:ca: 5b:13:5d:cb:f0:57:bd:1c:fb:4b:bc:a7:25:a9:54:f1:44:39: c3:39:1b:aa:3f:41:b5:bc:0d:e2:70:58:5a:a1:73:1f:4b:36: 46:03:6f:87:90:46:9a:2a:cb:df:b9:d9:4a:da:fb:10:84:c4: 74:bc:97:89:2e:54:1d:d5:6d:8b:d2:76:59:7c:74:4d:88:3c: 42:70:2d:4c:8e:65:29:85:1f:57:5a:6d:49:e4:df:3f:88:66: 0d:49:4c:9e:6f:f8:fe:8d:5d:75:73:e3:5e:b0:88:ad:a3:da: 81:4c:a1:4a:47:b7:16:f1:e2:2e:00:0a:b5:eb:2c:52:ba:1a: e3:39:83:70:59:5b:b5:5c:96:cd:da:40:09:49:9c:25:99:a5: a3:0c:c7:b5:eb:c1:14:91:e3:6a:7b:ca:ca:82:00:64:b0:83: dd:3d:4f:ef:3d:17:ae:7b:90:e2:04:2a:5d:39:ed:7a:c0:57: 2d:e2:16:06:e7:bf:f2:95:d9:3f:12:ad:9e:93:1d:11:ca:37: 36:e1:80:e1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCOZXyJDJw+Pq7asCjWcZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcxOGIxMzhiYTkzNTIzNGYxMWNhMTAyNWQ2NjdmMTMzZjA3 ZDU1ZmQwHhcNMjUxMjA2MDUwMTAwWhcNMjUxMjA3MDUwMTAwWjAzMTEwLwYDVQQD EyhhYjEwZmUzMTVkYWY0NTc5MzM3MWUzODVmYzU4M2U3NTg5YTUwODM4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy2ULJeHGyF3Q5l6gwToSv0YxTHv6 fIHg2JOKuIKQP7gc8M1uXok674vbO2c1P2tv8Z/t/NQ4/c2yrPl6keWyPFIk39P8 fOAVbPzUHXH+FWfo3kEP8k+feUbgVxBni1IBMtvHTeQmiFcqsbcbrA1j6Q08QmGK 9q/qD+4IoRbh+YUZFwxyPvzOy6z9iDuik4jR/SO36ZLeP7h+1bzWlspRxgVRF5ES 653MzcHhzzN3o+hzDUrEoqStTXWwFsz2OhW5/JFOV/IkgvNu+9brFUoGyPxFCn6h /MObKLpwc+iwjUsGIySDkxBhmMORV1hFpTqbE48rkg4PZKRK5vw5tP3enQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKsQ/jFdr0V5M3HjhfxYPnWJpQg4MB8GA1UdIwQY MBaAFHGLE4upNSNPEcoQJdZn8TPwfVX9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY1lzVGk2azFJMDhSeWhBbDFtZnhNX0I5VmYwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi9kNDMwODUtZDk0ZS00NjlkLTk3Nzgt M2I4ZWMxYTY1ODgwLzEvY1lzVGk2azFJMDhSeWhBbDFtZnhNX0I5VmYwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMi9kNDMwODUtZDk0ZS00NjlkLTk3NzgtM2I4ZWMxYTY1ODgw LzEvY1lzVGk2azFJMDhSeWhBbDFtZnhNX0I5VmYwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAo6Skid6E zuXCA85ZoEl1yMhJVoI4ugi/yeT7n9f+ElhFRIi72WBJ1Q05JtJsnI1MCdmsDbfK WxNdy/BXvRz7S7ynJalU8UQ5wzkbqj9BtbwN4nBYWqFzH0s2RgNvh5BGmirL37nZ Str7EITEdLyXiS5UHdVti9J2WXx0TYg8QnAtTI5lKYUfV1ptSeTfP4hmDUlMnm/4 /o1ddXPjXrCIraPagUyhSke3FvHiLgAKtessUroa4zmDcFlbtVyWzdpACUmcJZml owzHtevBFJHjanvKyoIAZLCD3T1P7z0XrnuQ4gQqXTntesBXLeIWBue/8pXZPxKt npMdEco3NuGA4Q== -----END CERTIFICATE-----Generated at Sat Dec 6 10:17:51 2025 by rpki-client