This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/7253f0-d825-4dab-801f-9b509e5931f9/1/RPYQ-HLPMbfDIkzSwWacmWg1C3o.mft File: RPYQ-HLPMbfDIkzSwWacmWg1C3o.mft (raw, json) Hash identifier: 2fMAuUAtdzgg9Qm1ZCQNkbeZu11vHLf5yk5SYwGpDTc= Subject key identifier: C4:F5:D3:72:09:3C:F0:FA:2A:E1:F9:62:D6:41:F4:3F:42:AC:D8:15 Authority key identifier: 44:F6:10:F8:72:CF:31:B7:C3:22:4C:D2:C1:66:9C:99:68:35:0B:7A Certificate issuer: /CN=44f610f872cf31b7c3224cd2c1669c9968350b7a Certificate serial: 019AF19B5E676486E9CEC189FE4D0E6A5E41 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RPYQ-HLPMbfDIkzSwWacmWg1C3o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/7253f0-d825-4dab-801f-9b509e5931f9/1/RPYQ-HLPMbfDIkzSwWacmWg1C3o.mft Manifest number: 1760 Signing time: Sat 06 Dec 2025 03:01:22 +0000 Manifest this update: Sat 06 Dec 2025 03:01:22 +0000 Manifest next update: Sun 07 Dec 2025 03:01:22 +0000 Files and hashes: 1: RPYQ-HLPMbfDIkzSwWacmWg1C3o.crl (hash: fmGj7QjbNDalZNthBuT94ksb7qIp6JKkbz0n4QCD5tE=) 2: ZmJk3i0UqR_uJ_XLaSjGUe2aH00.roa (hash: BCwdh7j1ZUyJ+mVEfLtfrzwX+n9rg9YN807VJjPHsUE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/7253f0-d825-4dab-801f-9b509e5931f9/1/RPYQ-HLPMbfDIkzSwWacmWg1C3o.crl rsync://rpki.ripe.net/repository/DEFAULT/29/7253f0-d825-4dab-801f-9b509e5931f9/1/RPYQ-HLPMbfDIkzSwWacmWg1C3o.mft rsync://rpki.ripe.net/repository/DEFAULT/RPYQ-HLPMbfDIkzSwWacmWg1C3o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 03:01:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9b:5e:67:64:86:e9:ce:c1:89:fe:4d:0e:6a:5e:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=44f610f872cf31b7c3224cd2c1669c9968350b7a Validity Not Before: Dec 6 03:01:22 2025 GMT Not After : Dec 7 03:01:22 2025 GMT Subject: CN=c4f5d372093cf0fa2ae1f962d641f43f42acd815 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:36:dc:34:df:90:68:4b:77:95:74:11:eb:b6: ec:a6:cc:8c:15:4d:39:e6:71:0c:38:39:27:29:f7: 16:6a:41:67:6d:04:ae:f1:43:aa:fe:fa:d4:d1:c1: 86:46:2b:79:84:f6:5c:47:dc:50:6b:81:51:03:dc: ab:7a:d4:ad:7b:42:70:c8:70:6b:bd:16:82:c4:e3: a9:9c:73:d6:eb:21:e8:7e:fc:9c:ae:e8:4a:7d:64: ee:d4:72:1c:a2:1b:e4:1f:76:12:da:dd:0e:05:da: e7:3b:85:5c:52:22:da:9d:66:37:ba:c7:03:c1:79: 73:6a:3e:75:84:a6:64:53:c0:eb:14:14:49:c9:ee: 50:26:4c:4e:cd:77:48:eb:2f:a1:23:c4:7c:07:12: 38:16:f5:35:3e:c7:39:2b:c7:36:bb:73:97:72:2e: 95:97:68:ea:6f:97:09:d6:a6:cf:34:78:1f:4a:02: 22:ae:0d:da:ac:62:12:35:b7:1e:55:96:b4:5a:1e: 96:0d:c2:82:db:f2:b3:d8:d2:8c:1a:9b:73:6e:d9: 5a:6e:c0:87:43:3f:34:6e:4b:57:26:0a:e1:2b:bf: 7b:7e:2b:99:19:99:06:11:51:f8:04:23:38:7a:f4: f8:ef:bd:2e:69:47:6b:a7:fd:ed:32:25:45:3e:e4: 93:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:F5:D3:72:09:3C:F0:FA:2A:E1:F9:62:D6:41:F4:3F:42:AC:D8:15 X509v3 Authority Key Identifier: keyid:44:F6:10:F8:72:CF:31:B7:C3:22:4C:D2:C1:66:9C:99:68:35:0B:7A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RPYQ-HLPMbfDIkzSwWacmWg1C3o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/7253f0-d825-4dab-801f-9b509e5931f9/1/RPYQ-HLPMbfDIkzSwWacmWg1C3o.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/29/7253f0-d825-4dab-801f-9b509e5931f9/1/RPYQ-HLPMbfDIkzSwWacmWg1C3o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 11:5a:aa:2d:4b:e3:85:19:20:18:3b:56:b4:18:ee:36:00:a8: 86:cd:40:79:07:e5:d4:b8:a6:48:35:21:61:36:ef:8c:02:5f: 27:a0:bc:4e:ba:22:5d:f7:2e:8f:cd:26:fa:04:d1:7f:1b:23: c0:1a:f2:fe:0b:e5:f9:f6:47:e1:21:b0:cc:96:b8:8b:1d:36: cc:c0:d5:1e:cf:4d:8a:ac:39:8e:f7:e7:70:7f:3f:e2:96:d8: cf:28:d4:88:fd:33:ff:57:35:0f:9d:3f:78:18:b5:63:6e:16: 98:e1:4d:b6:2a:0b:0b:1c:50:1f:08:b0:36:08:1e:cd:4c:64: 25:87:58:a7:60:f0:50:95:35:c5:42:f9:6f:9a:33:cc:ef:3c: 81:5e:80:8b:45:fb:7a:cd:55:4c:6e:74:6b:c4:23:a8:1a:29: b3:ae:42:fa:2f:f2:81:b1:d3:4d:80:e4:58:7a:aa:2c:a6:94: 11:d8:91:08:3e:d4:b1:90:d1:45:d2:e2:b8:a8:e8:04:6e:b3: 5b:98:60:1c:f7:f2:0b:ba:45:64:17:7d:f6:aa:82:78:b4:b8: a6:2d:ca:9e:f5:02:b3:94:da:01:96:08:4f:90:bf:96:93:95: 0a:83:b0:23:44:f7:52:d5:2e:d2:8d:b7:42:87:ef:ca:6c:50: e5:63:4d:99 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxm15nZIbpzsGJ/k0Oal5BMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ0ZjYxMGY4NzJjZjMxYjdjMzIyNGNkMmMxNjY5Yzk5Njgz NTBiN2EwHhcNMjUxMjA2MDMwMTIyWhcNMjUxMjA3MDMwMTIyWjAzMTEwLwYDVQQD EyhjNGY1ZDM3MjA5M2NmMGZhMmFlMWY5NjJkNjQxZjQzZjQyYWNkODE1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6TbcNN+QaEt3lXQR67bspsyMFU05 5nEMODknKfcWakFnbQSu8UOq/vrU0cGGRit5hPZcR9xQa4FRA9yretSte0JwyHBr vRaCxOOpnHPW6yHofvycruhKfWTu1HIcohvkH3YS2t0OBdrnO4VcUiLanWY3uscD wXlzaj51hKZkU8DrFBRJye5QJkxOzXdI6y+hI8R8BxI4FvU1Psc5K8c2u3OXci6V l2jqb5cJ1qbPNHgfSgIirg3arGISNbceVZa0Wh6WDcKC2/Kz2NKMGptzbtlabsCH Qz80bktXJgrhK797fiuZGZkGEVH4BCM4evT4770uaUdrp/3tMiVFPuSTywIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMT103IJPPD6KuH5YtZB9D9CrNgVMB8GA1UdIwQY MBaAFET2EPhyzzG3wyJM0sFmnJloNQt6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUlBZUS1ITFBNYmZESWt6U3dXYWNtV2cxQzNvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS83MjUzZjAtZDgyNS00ZGFiLTgwMWYt OWI1MDllNTkzMWY5LzEvUlBZUS1ITFBNYmZESWt6U3dXYWNtV2cxQzNvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOS83MjUzZjAtZDgyNS00ZGFiLTgwMWYtOWI1MDllNTkzMWY5 LzEvUlBZUS1ITFBNYmZESWt6U3dXYWNtV2cxQzNvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEVqqLUvj hRkgGDtWtBjuNgCohs1AeQfl1LimSDUhYTbvjAJfJ6C8TroiXfcuj80m+gTRfxsj wBry/gvl+fZH4SGwzJa4ix02zMDVHs9Niqw5jvfncH8/4pbYzyjUiP0z/1c1D50/ eBi1Y24WmOFNtioLCxxQHwiwNggezUxkJYdYp2DwUJU1xUL5b5ozzO88gV6Ai0X7 es1VTG50a8QjqBops65C+i/ygbHTTYDkWHqqLKaUEdiRCD7UsZDRRdLiuKjoBG6z W5hgHPfyC7pFZBd99qqCeLS4pi3KnvUCs5TaAZYIT5C/lpOVCoOwI0T3UtUu0o23 QofvymxQ5WNNmQ== -----END CERTIFICATE-----Generated at Sat Dec 6 11:25:44 2025 by rpki-client