This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/262a4b-c701-48dc-9ae5-346368827e68/1/Yi7MbMWQOuoNthIA9MzU-CTN1U8.mft File: Yi7MbMWQOuoNthIA9MzU-CTN1U8.mft (raw, json) Hash identifier: 1CWM153M0MYyvwgeMW8IDb5Jlswb5uFSDEvc24DCmGg= Subject key identifier: 4F:FB:3A:B5:52:B0:A2:D6:4F:DC:04:78:C1:AC:DD:3C:43:E9:32:D8 Authority key identifier: 62:2E:CC:6C:C5:90:3A:EA:0D:B6:12:00:F4:CC:D4:F8:24:CD:D5:4F Certificate issuer: /CN=622ecc6cc5903aea0db61200f4ccd4f824cdd54f Certificate serial: 019AF2093418A67EBE8C4CEEF07A51BB65EB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yi7MbMWQOuoNthIA9MzU-CTN1U8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/262a4b-c701-48dc-9ae5-346368827e68/1/Yi7MbMWQOuoNthIA9MzU-CTN1U8.mft Manifest number: 0918 Signing time: Sat 06 Dec 2025 05:01:20 +0000 Manifest this update: Sat 06 Dec 2025 05:01:20 +0000 Manifest next update: Sun 07 Dec 2025 05:01:20 +0000 Files and hashes: 1: CPodE3_RIBh9_-_Q9IrXnt0jBQQ.roa (hash: +FHXKf3f9JVzV+Qw7xj+2wXQmTxWPnbFGqd+rwkbcMY=) 2: EMXYEynUntG8ll4EW5Q-6Hk40TY.roa (hash: Xpiy8GuGmhJYwB9WLtl0u6lzkUU+gwZPYmYDPQzDZdI=) 3: OikZGL2LEHpl7dY7zmLA3J5GOEE.roa (hash: M6ctsVmPoPZhMMxHtbO6g9MMFqbmRKFOMWh5oVa/f94=) 4: Yi7MbMWQOuoNthIA9MzU-CTN1U8.crl (hash: nsM5HtanLQ0yVVBwuyj/O4e5xS/zN1fwu1/ssUvwmkE=) 5: ZTkkr8A-pu4VErIYAfOwtOL1xB0.roa (hash: RCu5F9BHN+FsFu6QEVOPg1gjGcIiYWmxnihME0bALsk=) 6: aeDfOfbVztGADm5NBTaLM-YRqHs.roa (hash: 0X4nT8WQ19Et5qFSAny70J/znuk2NQeORpBaCqs4M3A=) 7: l4a3XbHOtKFp0184MdRIDU-jOxk.roa (hash: q5kFgaOF3Cv5yGAbLEZMIoShfmz2+xh9WCr6tx/KZ50=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/262a4b-c701-48dc-9ae5-346368827e68/1/Yi7MbMWQOuoNthIA9MzU-CTN1U8.crl rsync://rpki.ripe.net/repository/DEFAULT/27/262a4b-c701-48dc-9ae5-346368827e68/1/Yi7MbMWQOuoNthIA9MzU-CTN1U8.mft rsync://rpki.ripe.net/repository/DEFAULT/Yi7MbMWQOuoNthIA9MzU-CTN1U8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:09:34:18:a6:7e:be:8c:4c:ee:f0:7a:51:bb:65:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=622ecc6cc5903aea0db61200f4ccd4f824cdd54f Validity Not Before: Dec 6 05:01:20 2025 GMT Not After : Dec 7 05:01:20 2025 GMT Subject: CN=4ffb3ab552b0a2d64fdc0478c1acdd3c43e932d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:86:df:b1:07:d4:b1:7a:19:49:e6:79:7e:9a:ad: 4d:85:4d:5f:fb:11:44:62:48:92:41:2a:1b:ca:2f: 05:a5:33:eb:06:fc:0a:00:1d:23:a9:14:4c:1c:b4: 29:80:94:36:90:0e:cc:6c:57:63:00:1f:fe:48:d5: e2:e7:8e:2c:18:6e:1e:7e:a8:5a:fa:e5:1f:43:f2: 48:08:3c:c1:7e:a9:f8:b4:f8:f3:08:d6:f2:40:e0: b7:4d:2f:8d:fe:dc:1a:be:a3:6c:79:e4:4c:02:69: 83:06:80:18:10:38:bc:68:bd:4d:18:cb:eb:73:7d: 50:c1:b1:b2:ad:da:4c:81:f3:fb:b5:e8:66:c5:dc: 16:d2:51:a7:9d:93:b9:8a:bf:05:54:3c:95:5c:4d: c9:77:39:cd:f2:be:11:06:ce:83:f7:31:e9:a7:e1: ba:9f:15:8e:bc:21:ac:b9:39:8d:da:b2:ed:ca:1c: 88:f2:0c:7f:b6:f5:10:7e:07:4d:34:cf:4b:b4:6f: 7b:65:32:84:e1:f5:8e:85:db:6e:d9:5d:2c:3d:74: 94:7f:17:8a:b9:6f:00:01:90:0e:fa:06:36:53:b6: b9:6b:7a:4b:d6:6b:61:e8:aa:2a:48:97:a5:bf:ae: 34:86:d0:0f:17:e2:d8:d1:81:fc:53:69:6b:5c:f6: 96:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:FB:3A:B5:52:B0:A2:D6:4F:DC:04:78:C1:AC:DD:3C:43:E9:32:D8 X509v3 Authority Key Identifier: keyid:62:2E:CC:6C:C5:90:3A:EA:0D:B6:12:00:F4:CC:D4:F8:24:CD:D5:4F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yi7MbMWQOuoNthIA9MzU-CTN1U8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/262a4b-c701-48dc-9ae5-346368827e68/1/Yi7MbMWQOuoNthIA9MzU-CTN1U8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/27/262a4b-c701-48dc-9ae5-346368827e68/1/Yi7MbMWQOuoNthIA9MzU-CTN1U8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9d:f5:d5:b3:66:b8:c9:1e:a4:2a:db:e6:c5:ef:0b:25:aa:92: 61:5e:28:0c:11:b1:78:3c:38:6d:31:27:2a:63:fb:93:98:b3: 5b:c5:81:82:be:73:d2:79:0c:9b:a3:f0:47:f8:22:05:e0:ba: 04:00:87:c0:b5:ea:ec:f6:21:ed:13:1e:09:82:3c:e0:57:b4: bf:b9:f0:de:84:77:53:28:50:8f:8a:bb:0c:15:a3:37:7a:bf: 6c:3d:24:13:fb:d8:63:89:9c:73:1f:ee:3e:9b:9b:a0:fc:53: 24:86:a3:6f:aa:63:8e:7f:ef:23:6d:39:cb:1f:e3:8a:02:e3: 7c:55:1e:e7:c7:b0:3a:af:05:a1:4b:1d:80:a1:47:08:6d:52: ac:ba:55:91:75:c5:d6:8e:48:2c:ec:2b:5a:2f:66:22:b4:7d: 7b:b5:a3:74:3f:a9:80:d5:a5:ff:e7:6f:9c:75:b4:62:b9:83: d5:c7:cb:49:7b:4f:b9:15:0c:9e:00:fe:a6:e7:82:ec:57:43: 84:5a:0c:76:df:c3:a9:6a:8c:8f:d3:af:50:44:48:f9:88:f0: bb:3b:3c:30:cc:8d:27:b5:bb:8f:84:44:4e:a1:d9:d8:0c:3d: 77:28:4c:5b:f5:ad:4f:16:fc:88:30:84:1a:7c:f1:4b:32:4a: 30:c7:20:9c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCTQYpn6+jEzu8HpRu2XrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYyMmVjYzZjYzU5MDNhZWEwZGI2MTIwMGY0Y2NkNGY4MjRj ZGQ1NGYwHhcNMjUxMjA2MDUwMTIwWhcNMjUxMjA3MDUwMTIwWjAzMTEwLwYDVQQD Eyg0ZmZiM2FiNTUyYjBhMmQ2NGZkYzA0NzhjMWFjZGQzYzQzZTkzMmQ4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAht+xB9SxehlJ5nl+mq1NhU1f+xFE YkiSQSobyi8FpTPrBvwKAB0jqRRMHLQpgJQ2kA7MbFdjAB/+SNXi544sGG4efqha +uUfQ/JICDzBfqn4tPjzCNbyQOC3TS+N/twavqNseeRMAmmDBoAYEDi8aL1NGMvr c31QwbGyrdpMgfP7tehmxdwW0lGnnZO5ir8FVDyVXE3JdznN8r4RBs6D9zHpp+G6 nxWOvCGsuTmN2rLtyhyI8gx/tvUQfgdNNM9LtG97ZTKE4fWOhdtu2V0sPXSUfxeK uW8AAZAO+gY2U7a5a3pL1mth6KoqSJelv640htAPF+LY0YH8U2lrXPaWgwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFE/7OrVSsKLWT9wEeMGs3TxD6TLYMB8GA1UdIwQY MBaAFGIuzGzFkDrqDbYSAPTM1PgkzdVPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWWk3TWJNV1FPdW9OdGhJQTlNelUtQ1ROMVU4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNy8yNjJhNGItYzcwMS00OGRjLTlhZTUt MzQ2MzY4ODI3ZTY4LzEvWWk3TWJNV1FPdW9OdGhJQTlNelUtQ1ROMVU4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNy8yNjJhNGItYzcwMS00OGRjLTlhZTUtMzQ2MzY4ODI3ZTY4 LzEvWWk3TWJNV1FPdW9OdGhJQTlNelUtQ1ROMVU4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnfXVs2a4 yR6kKtvmxe8LJaqSYV4oDBGxeDw4bTEnKmP7k5izW8WBgr5z0nkMm6PwR/giBeC6 BACHwLXq7PYh7RMeCYI84Fe0v7nw3oR3UyhQj4q7DBWjN3q/bD0kE/vYY4mccx/u PpuboPxTJIajb6pjjn/vI205yx/jigLjfFUe58ewOq8FoUsdgKFHCG1SrLpVkXXF 1o5ILOwrWi9mIrR9e7WjdD+pgNWl/+dvnHW0YrmD1cfLSXtPuRUMngD+pueC7FdD hFoMdt/DqWqMj9OvUERI+Yjwuzs8MMyNJ7W7j4RETqHZ2Aw9dyhMW/WtTxb8iDCE GnzxSzJKMMcgnA== -----END CERTIFICATE-----Generated at Sat Dec 6 09:23:12 2025 by rpki-client