This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/1a7be5-3cf2-40c5-ba67-854182f09ef5/1/y78j_5hnaDYlSUYv4JLGMV6sykA.mft File: y78j_5hnaDYlSUYv4JLGMV6sykA.mft (raw, json) Hash identifier: 7k6c6u9/zNM9E4JgksGU21/KPh/SExxM5MviO80daGU= Subject key identifier: 02:0D:E5:C7:B1:C1:CE:8A:75:7D:03:FE:8B:D7:EB:C3:C3:7B:87:B7 Authority key identifier: CB:BF:23:FF:98:67:68:36:25:49:46:2F:E0:92:C6:31:5E:AC:CA:40 Certificate issuer: /CN=cbbf23ff986768362549462fe092c6315eacca40 Certificate serial: 019AF2AD4B94ED57A394FA77991C83C273D1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y78j_5hnaDYlSUYv4JLGMV6sykA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/1a7be5-3cf2-40c5-ba67-854182f09ef5/1/y78j_5hnaDYlSUYv4JLGMV6sykA.mft Manifest number: 1761 Signing time: Sat 06 Dec 2025 08:00:34 +0000 Manifest this update: Sat 06 Dec 2025 08:00:34 +0000 Manifest next update: Sun 07 Dec 2025 08:00:34 +0000 Files and hashes: 1: a0gi81K4PU-mZZPSh82aNeLjsVI.roa (hash: Id1bqvDurbpWKdNvf29qBzclAu3m5HKcR5Kg3lRHGKE=) 2: y78j_5hnaDYlSUYv4JLGMV6sykA.crl (hash: eHrtI0aujMe8oMs8ltnk2qUI00fpE0N0jX4s7K+/QSg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/1a7be5-3cf2-40c5-ba67-854182f09ef5/1/y78j_5hnaDYlSUYv4JLGMV6sykA.crl rsync://rpki.ripe.net/repository/DEFAULT/23/1a7be5-3cf2-40c5-ba67-854182f09ef5/1/y78j_5hnaDYlSUYv4JLGMV6sykA.mft rsync://rpki.ripe.net/repository/DEFAULT/y78j_5hnaDYlSUYv4JLGMV6sykA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:ad:4b:94:ed:57:a3:94:fa:77:99:1c:83:c2:73:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cbbf23ff986768362549462fe092c6315eacca40 Validity Not Before: Dec 6 08:00:34 2025 GMT Not After : Dec 7 08:00:34 2025 GMT Subject: CN=020de5c7b1c1ce8a757d03fe8bd7ebc3c37b87b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:4b:7f:78:93:38:1c:b8:b1:3b:ea:b8:ff:00: 19:6e:36:68:76:37:1f:ac:57:4d:4c:10:1d:00:02: 11:3a:5a:eb:11:a3:ec:ca:b5:08:15:e3:35:02:bf: de:d2:35:24:a1:68:62:b3:85:7d:a1:f2:ff:a1:0a: 34:1c:d9:12:15:be:f5:8f:c3:82:aa:e2:8c:48:54: 2b:cc:48:b3:b8:3e:d1:f4:b3:d3:b5:e9:50:c1:10: 0a:b1:87:8e:77:a1:d2:b6:fd:01:93:58:37:7b:ae: 16:60:ec:f9:40:6e:a7:38:b1:3e:8e:64:90:15:19: db:ae:d4:c0:df:57:1a:71:8d:5e:d2:e0:dd:bd:7f: 3b:d6:87:07:f7:92:76:cf:a2:29:6b:47:99:a7:67: 3e:9b:55:48:60:3b:fb:18:7c:82:08:a3:8d:bd:a7: 42:95:4b:b4:db:ea:19:56:10:34:46:c0:ec:e0:42: eb:9b:c0:bc:82:af:2a:8b:26:61:eb:31:3a:6d:2e: 89:ed:59:c3:c0:24:1c:ff:9e:73:65:e9:16:83:93: 16:33:60:29:4d:43:2f:96:26:3f:aa:42:a3:b5:15: 32:0d:53:0f:59:9f:66:1c:81:00:7b:15:23:8d:ff: c0:8b:a4:2d:e7:e5:30:1a:5d:42:f7:47:ac:dd:60: 03:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:0D:E5:C7:B1:C1:CE:8A:75:7D:03:FE:8B:D7:EB:C3:C3:7B:87:B7 X509v3 Authority Key Identifier: keyid:CB:BF:23:FF:98:67:68:36:25:49:46:2F:E0:92:C6:31:5E:AC:CA:40 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y78j_5hnaDYlSUYv4JLGMV6sykA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/1a7be5-3cf2-40c5-ba67-854182f09ef5/1/y78j_5hnaDYlSUYv4JLGMV6sykA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/23/1a7be5-3cf2-40c5-ba67-854182f09ef5/1/y78j_5hnaDYlSUYv4JLGMV6sykA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a4:40:bd:05:8c:16:a8:97:9c:43:79:75:88:ac:58:ef:a2:2c: c4:b3:1e:4a:da:a5:58:1e:fe:cb:cb:57:11:a5:d4:76:5a:21: 28:8a:17:04:2e:f1:66:43:ce:8b:c5:69:70:40:69:82:dd:16: 55:b0:04:ef:05:66:98:c2:db:0b:ec:3a:62:e4:8f:07:c4:dd: 79:a1:b3:42:2a:83:65:1b:5e:9a:fe:67:ef:3e:ef:38:81:89: 42:0d:ec:5f:99:ed:55:06:36:88:5b:8f:d6:a3:68:d6:9c:d9: b5:2c:2c:1c:8c:d0:58:ed:fd:86:ba:5a:df:d6:bc:0e:ad:ac: a8:82:ef:18:cb:0c:ff:1c:da:73:d7:37:2a:f2:94:9d:b6:fa: c3:d0:3f:f0:a4:3a:1e:34:40:31:21:d2:08:2b:1f:ab:ef:5c: 80:6d:2d:57:98:5e:cd:78:b6:c4:f6:ca:4b:42:93:63:b4:d5: 0f:2c:54:9a:46:51:f0:3e:0a:6a:ac:13:a1:2b:d6:06:2f:ed: c9:bb:a5:47:46:87:c0:e9:62:b1:c8:f7:6e:53:27:c7:e8:03: c4:d7:af:f4:17:e1:ca:b8:09:bd:a4:6e:f6:58:f1:3d:87:ec: 56:9b:f9:41:7d:18:7d:8a:c1:c2:7b:d3:96:d3:5a:2c:18:06: bb:7a:95:f8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryrUuU7VejlPp3mRyDwnPRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNiYmYyM2ZmOTg2NzY4MzYyNTQ5NDYyZmUwOTJjNjMxNWVh Y2NhNDAwHhcNMjUxMjA2MDgwMDM0WhcNMjUxMjA3MDgwMDM0WjAzMTEwLwYDVQQD EygwMjBkZTVjN2IxYzFjZThhNzU3ZDAzZmU4YmQ3ZWJjM2MzN2I4N2I3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn0t/eJM4HLixO+q4/wAZbjZodjcf rFdNTBAdAAIROlrrEaPsyrUIFeM1Ar/e0jUkoWhis4V9ofL/oQo0HNkSFb71j8OC quKMSFQrzEizuD7R9LPTtelQwRAKsYeOd6HStv0Bk1g3e64WYOz5QG6nOLE+jmSQ FRnbrtTA31cacY1e0uDdvX871ocH95J2z6Ipa0eZp2c+m1VIYDv7GHyCCKONvadC lUu02+oZVhA0RsDs4ELrm8C8gq8qiyZh6zE6bS6J7VnDwCQc/55zZekWg5MWM2Ap TUMvliY/qkKjtRUyDVMPWZ9mHIEAexUjjf/Ai6Qt5+UwGl1C90es3WADawIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAIN5cexwc6KdX0D/ovX68PDe4e3MB8GA1UdIwQY MBaAFMu/I/+YZ2g2JUlGL+CSxjFerMpAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveTc4al81aG5hRFlsU1VZdjRKTEdNVjZzeWtBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMy8xYTdiZTUtM2NmMi00MGM1LWJhNjct ODU0MTgyZjA5ZWY1LzEveTc4al81aG5hRFlsU1VZdjRKTEdNVjZzeWtBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMy8xYTdiZTUtM2NmMi00MGM1LWJhNjctODU0MTgyZjA5ZWY1 LzEveTc4al81aG5hRFlsU1VZdjRKTEdNVjZzeWtBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApEC9BYwW qJecQ3l1iKxY76IsxLMeStqlWB7+y8tXEaXUdlohKIoXBC7xZkPOi8VpcEBpgt0W VbAE7wVmmMLbC+w6YuSPB8TdeaGzQiqDZRtemv5n7z7vOIGJQg3sX5ntVQY2iFuP 1qNo1pzZtSwsHIzQWO39hrpa39a8Dq2sqILvGMsM/xzac9c3KvKUnbb6w9A/8KQ6 HjRAMSHSCCsfq+9cgG0tV5hezXi2xPbKS0KTY7TVDyxUmkZR8D4KaqwToSvWBi/t ybulR0aHwOliscj3blMnx+gDxNev9BfhyrgJvaRu9ljxPYfsVpv5QX0YfYrBwnvT ltNaLBgGu3qV+A== -----END CERTIFICATE-----Generated at Sat Dec 6 11:38:50 2025 by rpki-client