This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/8bdd00-7943-4584-84f3-3b242d54e788/1/YwYjArQ4WSN2xCZPSdxeZz7bLPs.mft File: YwYjArQ4WSN2xCZPSdxeZz7bLPs.mft (raw, json) Hash identifier: 48nfv/6Ng+QDVTl4MS39nBX9Ax3COSVvhFZrPXNFaKA= Subject key identifier: A8:8B:53:42:C8:CC:22:75:C3:A4:90:D8:24:24:42:96:9C:42:18:27 Authority key identifier: 63:06:23:02:B4:38:59:23:76:C4:26:4F:49:DC:5E:67:3E:DB:2C:FB Certificate issuer: /CN=63062302b438592376c4264f49dc5e673edb2cfb Certificate serial: 019AF31BA4E3077E625F7813309ED766E9C4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YwYjArQ4WSN2xCZPSdxeZz7bLPs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/8bdd00-7943-4584-84f3-3b242d54e788/1/YwYjArQ4WSN2xCZPSdxeZz7bLPs.mft Manifest number: 0B4C Signing time: Sat 06 Dec 2025 10:01:06 +0000 Manifest this update: Sat 06 Dec 2025 10:01:06 +0000 Manifest next update: Sun 07 Dec 2025 10:01:06 +0000 Files and hashes: 1: YwYjArQ4WSN2xCZPSdxeZz7bLPs.crl (hash: PeaGfiGXEd+hnyygH27htNT3N553oKwH0UyrueNgrhg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/8bdd00-7943-4584-84f3-3b242d54e788/1/YwYjArQ4WSN2xCZPSdxeZz7bLPs.crl rsync://rpki.ripe.net/repository/DEFAULT/26/8bdd00-7943-4584-84f3-3b242d54e788/1/YwYjArQ4WSN2xCZPSdxeZz7bLPs.mft rsync://rpki.ripe.net/repository/DEFAULT/YwYjArQ4WSN2xCZPSdxeZz7bLPs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 10:01:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:1b:a4:e3:07:7e:62:5f:78:13:30:9e:d7:66:e9:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=63062302b438592376c4264f49dc5e673edb2cfb Validity Not Before: Dec 6 10:01:06 2025 GMT Not After : Dec 7 10:01:06 2025 GMT Subject: CN=a88b5342c8cc2275c3a490d8242442969c421827 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:2d:0d:70:a4:19:85:f0:dd:25:bf:0b:0f:30: aa:d8:92:38:d3:1f:bb:86:3d:1d:08:65:cf:7e:cd: b1:ea:cc:c6:10:2b:25:38:8b:8c:1b:0c:1f:37:4d: a8:b6:ec:48:f8:64:1b:eb:f9:52:61:4a:fd:e3:54: 5c:5e:15:19:4c:eb:f5:f9:02:24:ef:90:7b:94:d8: 77:db:01:3d:58:fc:1e:50:ac:d5:62:02:de:9b:6c: f7:fa:c0:0e:e0:9a:dd:89:d9:e1:24:b9:4d:66:9d: 34:f1:42:fe:5a:1e:c9:86:f2:ee:3c:93:cf:54:17: b2:e6:9f:f0:eb:ba:46:77:77:f4:8c:97:50:13:9a: 4c:e8:52:bc:5f:7f:cb:93:37:4d:94:d9:17:17:78: b7:90:25:5b:57:71:a1:63:0c:b0:02:8f:6a:15:12: 9c:89:0a:e5:b7:d9:76:5f:10:6a:ac:ae:5b:55:3b: a6:dd:1f:e0:6b:6f:9f:7c:57:61:c9:76:66:fe:8a: 16:ed:a5:2a:a4:d7:43:41:52:0e:82:64:14:f6:10: 40:af:61:63:b0:7b:85:b6:0b:48:eb:d8:0b:81:80: 7c:e4:ec:91:8a:f7:a9:58:26:7f:9f:33:0c:2b:a4: 4d:de:7a:00:ca:ba:b7:0a:a0:f0:66:04:a4:1e:26: cb:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:8B:53:42:C8:CC:22:75:C3:A4:90:D8:24:24:42:96:9C:42:18:27 X509v3 Authority Key Identifier: keyid:63:06:23:02:B4:38:59:23:76:C4:26:4F:49:DC:5E:67:3E:DB:2C:FB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YwYjArQ4WSN2xCZPSdxeZz7bLPs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/8bdd00-7943-4584-84f3-3b242d54e788/1/YwYjArQ4WSN2xCZPSdxeZz7bLPs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/26/8bdd00-7943-4584-84f3-3b242d54e788/1/YwYjArQ4WSN2xCZPSdxeZz7bLPs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 92:fa:47:f3:84:b2:ee:95:b4:5a:2e:b0:31:aa:0f:d8:cf:50: 3a:8d:6c:5e:f9:1c:ef:88:a3:43:d8:ba:3c:2f:1d:99:12:eb: 0e:33:c0:ac:e7:2c:c3:6c:77:59:fb:17:99:7c:75:6c:1c:f6: bc:66:89:65:87:a5:f2:e6:de:34:11:73:ff:38:a3:13:1b:26: ad:f7:1f:fa:55:a8:15:6f:57:ac:28:0c:d1:01:66:79:b7:5e: 5c:97:96:35:48:e5:a4:4e:6f:97:d3:33:76:42:9a:75:70:32: 1d:b0:31:e8:0a:56:4c:7e:09:a0:3b:cd:7d:d5:f1:0f:49:ec: 5f:68:d9:02:33:2b:b9:13:c7:05:a0:f8:4a:7d:53:0b:e7:0e: 84:8a:68:8b:d4:42:77:dc:60:62:97:45:7b:a2:e1:16:55:92: 55:4b:8d:d9:7e:93:d7:b4:a7:7e:de:76:3d:54:c6:5d:02:a0: 3a:9e:16:02:a4:5b:ee:ad:d3:52:7d:f2:ba:3c:93:1a:31:a9: 58:da:83:e3:1c:73:56:c3:0a:d2:d4:d5:7e:22:f2:62:58:5d: 50:2d:fc:54:ed:b9:ac:77:3b:cd:cf:5b:55:f7:0f:1c:c8:41: c0:39:de:cb:11:98:92:c5:2b:5a:65:38:dd:50:1b:f2:ba:d3: 98:95:f3:b5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzG6TjB35iX3gTMJ7XZunEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYzMDYyMzAyYjQzODU5MjM3NmM0MjY0ZjQ5ZGM1ZTY3M2Vk YjJjZmIwHhcNMjUxMjA2MTAwMTA2WhcNMjUxMjA3MTAwMTA2WjAzMTEwLwYDVQQD EyhhODhiNTM0MmM4Y2MyMjc1YzNhNDkwZDgyNDI0NDI5NjljNDIxODI3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnS0NcKQZhfDdJb8LDzCq2JI40x+7 hj0dCGXPfs2x6szGECslOIuMGwwfN02otuxI+GQb6/lSYUr941RcXhUZTOv1+QIk 75B7lNh32wE9WPweUKzVYgLem2z3+sAO4JrdidnhJLlNZp008UL+Wh7JhvLuPJPP VBey5p/w67pGd3f0jJdQE5pM6FK8X3/LkzdNlNkXF3i3kCVbV3GhYwywAo9qFRKc iQrlt9l2XxBqrK5bVTum3R/ga2+ffFdhyXZm/ooW7aUqpNdDQVIOgmQU9hBAr2Fj sHuFtgtI69gLgYB85OyRivepWCZ/nzMMK6RN3noAyrq3CqDwZgSkHibL4QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKiLU0LIzCJ1w6SQ2CQkQpacQhgnMB8GA1UdIwQY MBaAFGMGIwK0OFkjdsQmT0ncXmc+2yz7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWXdZakFyUTRXU04yeENaUFNkeGVaejdiTFBzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNi84YmRkMDAtNzk0My00NTg0LTg0ZjMt M2IyNDJkNTRlNzg4LzEvWXdZakFyUTRXU04yeENaUFNkeGVaejdiTFBzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNi84YmRkMDAtNzk0My00NTg0LTg0ZjMtM2IyNDJkNTRlNzg4 LzEvWXdZakFyUTRXU04yeENaUFNkeGVaejdiTFBzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkvpH84Sy 7pW0Wi6wMaoP2M9QOo1sXvkc74ijQ9i6PC8dmRLrDjPArOcsw2x3WfsXmXx1bBz2 vGaJZYel8ubeNBFz/zijExsmrfcf+lWoFW9XrCgM0QFmebdeXJeWNUjlpE5vl9Mz dkKadXAyHbAx6ApWTH4JoDvNfdXxD0nsX2jZAjMruRPHBaD4Sn1TC+cOhIpoi9RC d9xgYpdFe6LhFlWSVUuN2X6T17Snft52PVTGXQKgOp4WAqRb7q3TUn3yujyTGjGp WNqD4xxzVsMK0tTVfiLyYlhdUC38VO25rHc7zc9bVfcPHMhBwDneyxGYksUrWmU4 3VAb8rrTmJXztQ== -----END CERTIFICATE-----Generated at Sat Dec 6 19:12:05 2025 by rpki-client