This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/93b38e-6400-4e6d-a0eb-049cc1fce37e/1/yFiMcrJRDxd7g18gHjNl7PnkWh0.mft File: yFiMcrJRDxd7g18gHjNl7PnkWh0.mft (raw, json) Hash identifier: JEbxlT0J7mSTAitLbWMaehBpNTBSdMYexI3Utd+mkhc= Subject key identifier: CF:D9:CC:50:E4:EC:48:DD:58:F5:DF:CC:52:74:42:F7:6D:06:7E:DF Authority key identifier: C8:58:8C:72:B2:51:0F:17:7B:83:5F:20:1E:33:65:EC:F9:E4:5A:1D Certificate issuer: /CN=c8588c72b2510f177b835f201e3365ecf9e45a1d Certificate serial: 019AF5AE7842121B4F3007C3B21010166564 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yFiMcrJRDxd7g18gHjNl7PnkWh0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/93b38e-6400-4e6d-a0eb-049cc1fce37e/1/yFiMcrJRDxd7g18gHjNl7PnkWh0.mft Manifest number: 1114 Signing time: Sat 06 Dec 2025 22:00:43 +0000 Manifest this update: Sat 06 Dec 2025 22:00:43 +0000 Manifest next update: Sun 07 Dec 2025 22:00:43 +0000 Files and hashes: 1: yFiMcrJRDxd7g18gHjNl7PnkWh0.crl (hash: oqBzbw3ojR1qTsrrtYsvjZQu+5VieOWANn50CNaEc70=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/93b38e-6400-4e6d-a0eb-049cc1fce37e/1/yFiMcrJRDxd7g18gHjNl7PnkWh0.crl rsync://rpki.ripe.net/repository/DEFAULT/2b/93b38e-6400-4e6d-a0eb-049cc1fce37e/1/yFiMcrJRDxd7g18gHjNl7PnkWh0.mft rsync://rpki.ripe.net/repository/DEFAULT/yFiMcrJRDxd7g18gHjNl7PnkWh0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 21:29:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:ae:78:42:12:1b:4f:30:07:c3:b2:10:10:16:65:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c8588c72b2510f177b835f201e3365ecf9e45a1d Validity Not Before: Dec 6 22:00:43 2025 GMT Not After : Dec 7 22:00:43 2025 GMT Subject: CN=cfd9cc50e4ec48dd58f5dfcc527442f76d067edf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:2c:d6:5e:e6:95:49:59:d5:32:61:ae:b2:45: d0:2f:d7:22:13:69:47:3e:4b:56:2e:f4:24:34:99: dd:fc:f9:03:2b:16:9c:32:8b:25:82:0a:9b:b1:21: fa:9b:60:e0:9e:10:db:bf:84:1c:a6:4c:da:54:23: 82:da:57:93:a3:dd:8b:f3:73:57:78:fa:11:04:4f: 5f:e2:2b:c8:06:dd:67:eb:a9:a1:21:3b:57:ef:cb: 0a:29:50:0f:2e:cf:b6:db:7c:20:78:a4:70:e6:2e: c0:f4:04:5b:2b:e2:18:77:dc:5f:ee:c1:5f:dc:f6: 7c:eb:0b:ec:85:02:28:c8:ed:06:16:33:45:e1:e9: 9c:f4:c4:d9:1b:86:3b:93:28:5f:01:bb:14:5a:4e: 13:38:bb:6a:12:db:4b:4c:db:03:4b:37:60:27:07: e3:0c:3f:80:6a:cb:93:9b:bf:2c:ee:dc:5f:4f:1d: e2:c5:25:b1:e6:57:cc:9c:63:f1:74:a9:e6:a8:8d: 7b:5a:c6:74:c7:d4:af:8e:30:b8:e9:8f:97:19:82: b4:d2:9e:e4:c0:98:e0:56:73:29:75:6b:d6:07:0d: 79:6b:e5:d7:0c:9d:97:cf:4d:67:69:d4:93:6e:16: a5:7f:95:5f:28:b8:72:02:c4:28:4e:c4:48:f1:38: 1c:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:D9:CC:50:E4:EC:48:DD:58:F5:DF:CC:52:74:42:F7:6D:06:7E:DF X509v3 Authority Key Identifier: keyid:C8:58:8C:72:B2:51:0F:17:7B:83:5F:20:1E:33:65:EC:F9:E4:5A:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yFiMcrJRDxd7g18gHjNl7PnkWh0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/93b38e-6400-4e6d-a0eb-049cc1fce37e/1/yFiMcrJRDxd7g18gHjNl7PnkWh0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/93b38e-6400-4e6d-a0eb-049cc1fce37e/1/yFiMcrJRDxd7g18gHjNl7PnkWh0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 10:8f:2e:70:b7:21:ce:34:d0:85:a5:07:07:9b:90:e7:15:9e: 23:99:8c:e0:09:a2:8b:84:25:d9:b6:d7:fe:0a:cd:fe:df:68: 11:6c:06:8d:65:13:00:ff:c1:5a:f8:aa:c4:8a:9f:c8:7d:be: 50:fe:c0:ed:10:ae:9b:c0:c3:cc:36:f0:76:6a:9a:f9:3a:ea: 7a:96:54:01:da:6d:cf:fd:9e:46:b5:e5:fa:6a:42:1c:25:0e: c8:19:13:c1:d7:96:3c:38:93:0a:2b:35:cc:7e:d3:08:75:c2: 29:09:fc:78:25:f0:c4:fa:80:82:da:fb:24:ba:3a:22:0f:d8: ff:c7:cf:dd:98:e5:61:8e:4a:1a:ff:3c:98:1b:2f:0f:ba:3e: b7:85:14:24:8f:61:b1:f8:14:af:27:4b:83:82:2a:fe:fd:59: e2:54:8d:ae:27:67:62:e8:47:03:03:ba:9d:1b:86:cc:1e:87: 91:20:e9:23:9d:25:65:62:09:61:25:88:33:5c:2f:86:46:41: ec:bb:7d:ab:49:e2:84:c2:2a:22:de:98:e1:9e:c0:e4:fd:91: b9:87:fd:ce:52:c5:03:07:8e:13:b9:96:7c:1e:fb:ea:11:e6: 00:d1:32:71:91:2c:b8:29:73:27:bd:1e:e0:e4:db:8a:70:90: 7c:64:15:2b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr1rnhCEhtPMAfDshAQFmVkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM4NTg4YzcyYjI1MTBmMTc3YjgzNWYyMDFlMzM2NWVjZjll NDVhMWQwHhcNMjUxMjA2MjIwMDQzWhcNMjUxMjA3MjIwMDQzWjAzMTEwLwYDVQQD EyhjZmQ5Y2M1MGU0ZWM0OGRkNThmNWRmY2M1Mjc0NDJmNzZkMDY3ZWRmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtCzWXuaVSVnVMmGuskXQL9ciE2lH PktWLvQkNJnd/PkDKxacMoslggqbsSH6m2DgnhDbv4QcpkzaVCOC2leTo92L83NX ePoRBE9f4ivIBt1n66mhITtX78sKKVAPLs+223wgeKRw5i7A9ARbK+IYd9xf7sFf 3PZ86wvshQIoyO0GFjNF4emc9MTZG4Y7kyhfAbsUWk4TOLtqEttLTNsDSzdgJwfj DD+AasuTm78s7txfTx3ixSWx5lfMnGPxdKnmqI17WsZ0x9SvjjC46Y+XGYK00p7k wJjgVnMpdWvWBw15a+XXDJ2Xz01nadSTbhalf5VfKLhyAsQoTsRI8TgcsQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFM/ZzFDk7EjdWPXfzFJ0QvdtBn7fMB8GA1UdIwQY MBaAFMhYjHKyUQ8Xe4NfIB4zZez55FodMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveUZpTWNySlJEeGQ3ZzE4Z0hqTmw3UG5rV2gwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi85M2IzOGUtNjQwMC00ZTZkLWEwZWIt MDQ5Y2MxZmNlMzdlLzEveUZpTWNySlJEeGQ3ZzE4Z0hqTmw3UG5rV2gwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYi85M2IzOGUtNjQwMC00ZTZkLWEwZWItMDQ5Y2MxZmNlMzdl LzEveUZpTWNySlJEeGQ3ZzE4Z0hqTmw3UG5rV2gwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEI8ucLch zjTQhaUHB5uQ5xWeI5mM4Amii4Ql2bbX/grN/t9oEWwGjWUTAP/BWviqxIqfyH2+ UP7A7RCum8DDzDbwdmqa+TrqepZUAdptz/2eRrXl+mpCHCUOyBkTwdeWPDiTCis1 zH7TCHXCKQn8eCXwxPqAgtr7JLo6Ig/Y/8fP3ZjlYY5KGv88mBsvD7o+t4UUJI9h sfgUrydLg4Iq/v1Z4lSNridnYuhHAwO6nRuGzB6HkSDpI50lZWIJYSWIM1wvhkZB 7Lt9q0nihMIqIt6Y4Z7A5P2RuYf9zlLFAweOE7mWfB776hHmANEycZEsuClzJ70e 4OTbinCQfGQVKw== -----END CERTIFICATE-----Generated at Sun Dec 7 03:16:22 2025 by rpki-client