This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/a20d6a-91ba-442f-8927-dc0043e9bb4d/1/YG03z4fxLyqy3vMTgMOGuCbBnWU.mft File: YG03z4fxLyqy3vMTgMOGuCbBnWU.mft (raw, json) Hash identifier: 0UVnCyajOc3rUIsOQVqImbI5XR3FWiIMSlXG1kmkpsI= Subject key identifier: 25:16:15:0D:A0:E8:50:57:DF:07:E9:0C:5A:2B:0E:00:D4:CA:27:09 Authority key identifier: 60:6D:37:CF:87:F1:2F:2A:B2:DE:F3:13:80:C3:86:B8:26:C1:9D:65 Certificate issuer: /CN=606d37cf87f12f2ab2def31380c386b826c19d65 Certificate serial: 019AF19AB9E4B9F249CDDE6A158FC851B89D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YG03z4fxLyqy3vMTgMOGuCbBnWU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/a20d6a-91ba-442f-8927-dc0043e9bb4d/1/YG03z4fxLyqy3vMTgMOGuCbBnWU.mft Manifest number: 175D Signing time: Sat 06 Dec 2025 03:00:40 +0000 Manifest this update: Sat 06 Dec 2025 03:00:40 +0000 Manifest next update: Sun 07 Dec 2025 03:00:40 +0000 Files and hashes: 1: YG03z4fxLyqy3vMTgMOGuCbBnWU.crl (hash: T3cznHXD8Wn/VspPGMvKIJ1wt1t4YEJawGKYj5/A0Qk=) 2: nLsyVuehs4jeCS4JRJE2VO5aV5I.roa (hash: ypIKdtNC4Ic9Sqbxvpei64KUmu5yr6lYiqShQ2+fMBo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/a20d6a-91ba-442f-8927-dc0043e9bb4d/1/YG03z4fxLyqy3vMTgMOGuCbBnWU.crl rsync://rpki.ripe.net/repository/DEFAULT/2a/a20d6a-91ba-442f-8927-dc0043e9bb4d/1/YG03z4fxLyqy3vMTgMOGuCbBnWU.mft rsync://rpki.ripe.net/repository/DEFAULT/YG03z4fxLyqy3vMTgMOGuCbBnWU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9a:b9:e4:b9:f2:49:cd:de:6a:15:8f:c8:51:b8:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=606d37cf87f12f2ab2def31380c386b826c19d65 Validity Not Before: Dec 6 03:00:40 2025 GMT Not After : Dec 7 03:00:40 2025 GMT Subject: CN=2516150da0e85057df07e90c5a2b0e00d4ca2709 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:01:57:68:f5:7a:c8:b4:50:a0:5b:59:d0:ae: 05:b4:78:92:eb:31:eb:74:03:50:63:b0:c2:e2:f4: da:75:dd:fa:a7:a7:ae:cf:1c:09:40:ab:41:a9:95: 0a:6c:b0:b5:bb:b9:50:9d:58:51:03:95:91:c7:6c: 7f:a2:bb:3f:7a:cf:1d:b0:80:da:f8:70:cd:88:fa: fd:de:6f:bf:08:a4:6f:39:98:41:df:b1:42:d7:bc: 74:4f:29:f5:87:f6:b5:81:c8:94:50:85:77:5f:06: c8:7e:81:a8:ee:e5:4b:d8:7e:a6:94:5a:28:79:58: d8:d7:d2:44:6e:ee:96:c1:27:d9:68:47:12:6b:4e: 0e:4b:0a:99:81:d0:e1:4c:a8:5a:e5:7f:e8:17:e2: 4b:36:49:0a:9d:74:86:f8:75:b0:53:7e:d8:36:5c: 4a:c4:b5:de:dd:e3:c0:48:ee:aa:1f:a9:ea:fc:a1: d4:b7:92:54:d7:82:6f:0e:bc:3a:4f:c9:fc:f9:e8: 11:12:4f:bc:6e:73:a0:ac:4a:3c:23:4a:d4:c9:87: 3a:d9:82:5b:2b:b8:20:d1:96:e6:12:84:d6:9c:4e: ee:bf:40:54:33:b9:49:18:8e:3d:06:36:57:8d:3a: f8:72:bf:4c:36:84:ee:33:11:f2:01:a6:0a:27:de: 28:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:16:15:0D:A0:E8:50:57:DF:07:E9:0C:5A:2B:0E:00:D4:CA:27:09 X509v3 Authority Key Identifier: keyid:60:6D:37:CF:87:F1:2F:2A:B2:DE:F3:13:80:C3:86:B8:26:C1:9D:65 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YG03z4fxLyqy3vMTgMOGuCbBnWU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/a20d6a-91ba-442f-8927-dc0043e9bb4d/1/YG03z4fxLyqy3vMTgMOGuCbBnWU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/a20d6a-91ba-442f-8927-dc0043e9bb4d/1/YG03z4fxLyqy3vMTgMOGuCbBnWU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 51:b5:7e:d6:f4:02:d0:0f:9a:5d:eb:24:b5:08:df:6e:bc:c7: 72:32:53:a0:b3:e2:94:23:32:89:53:79:7a:84:63:ce:fe:53: dc:62:6a:23:0c:d2:94:e4:2a:3c:ee:62:63:b0:3b:e8:f3:72: c3:ed:7f:ca:a0:5a:e1:38:f1:e7:23:df:e8:65:5d:64:d1:b3: 47:4e:5f:38:3f:2c:16:80:40:6c:e4:09:62:6c:c4:ee:95:75: bb:4d:b8:cb:f9:36:1e:eb:a7:82:f2:2e:10:46:bc:b5:29:fc: eb:8d:40:b7:11:e5:ca:37:b6:ab:55:09:2e:b7:cb:9b:ed:ce: 0c:fa:30:de:9b:d5:25:9b:bc:d8:c9:ea:9a:f2:f9:88:c8:63: 4f:59:38:54:94:27:92:df:b0:96:79:bf:2b:a8:7b:cd:2f:70: bc:57:11:83:c6:e6:ce:de:a0:fb:3b:26:a8:1d:1a:23:6c:1e: b1:53:5f:a9:f8:f6:0c:e7:42:e4:4f:85:dc:2b:98:d3:54:ad: 13:74:a2:9d:36:e4:13:53:2e:07:d4:52:e8:00:d9:6a:15:0d: b6:ef:ee:24:ca:0b:64:be:b8:34:3d:2c:75:c4:3b:08:46:55: 88:f1:45:3e:15:97:bf:0f:31:61:a2:6e:20:c8:87:9b:c1:28: 5f:f8:68:76 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxmrnkufJJzd5qFY/IUbidMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwNmQzN2NmODdmMTJmMmFiMmRlZjMxMzgwYzM4NmI4MjZj MTlkNjUwHhcNMjUxMjA2MDMwMDQwWhcNMjUxMjA3MDMwMDQwWjAzMTEwLwYDVQQD EygyNTE2MTUwZGEwZTg1MDU3ZGYwN2U5MGM1YTJiMGUwMGQ0Y2EyNzA5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvwFXaPV6yLRQoFtZ0K4FtHiS6zHr dANQY7DC4vTadd36p6euzxwJQKtBqZUKbLC1u7lQnVhRA5WRx2x/ors/es8dsIDa +HDNiPr93m+/CKRvOZhB37FC17x0Tyn1h/a1gciUUIV3XwbIfoGo7uVL2H6mlFoo eVjY19JEbu6WwSfZaEcSa04OSwqZgdDhTKha5X/oF+JLNkkKnXSG+HWwU37YNlxK xLXe3ePASO6qH6nq/KHUt5JU14JvDrw6T8n8+egREk+8bnOgrEo8I0rUyYc62YJb K7gg0ZbmEoTWnE7uv0BUM7lJGI49BjZXjTr4cr9MNoTuMxHyAaYKJ94oQwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCUWFQ2g6FBX3wfpDForDgDUyicJMB8GA1UdIwQY MBaAFGBtN8+H8S8qst7zE4DDhrgmwZ1lMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWUcwM3o0ZnhMeXF5M3ZNVGdNT0d1Q2JCbldVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS9hMjBkNmEtOTFiYS00NDJmLTg5Mjct ZGMwMDQzZTliYjRkLzEvWUcwM3o0ZnhMeXF5M3ZNVGdNT0d1Q2JCbldVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYS9hMjBkNmEtOTFiYS00NDJmLTg5MjctZGMwMDQzZTliYjRk LzEvWUcwM3o0ZnhMeXF5M3ZNVGdNT0d1Q2JCbldVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUbV+1vQC 0A+aXesktQjfbrzHcjJToLPilCMyiVN5eoRjzv5T3GJqIwzSlOQqPO5iY7A76PNy w+1/yqBa4Tjx5yPf6GVdZNGzR05fOD8sFoBAbOQJYmzE7pV1u024y/k2HuungvIu EEa8tSn8641AtxHlyje2q1UJLrfLm+3ODPow3pvVJZu82MnqmvL5iMhjT1k4VJQn kt+wlnm/K6h7zS9wvFcRg8bmzt6g+zsmqB0aI2wesVNfqfj2DOdC5E+F3CuY01St E3SinTbkE1MuB9RS6ADZahUNtu/uJMoLZL64ND0sdcQ7CEZViPFFPhWXvw8xYaJu IMiHm8EoX/hodg== -----END CERTIFICATE-----Generated at Sat Dec 6 10:18:06 2025 by rpki-client