This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/b55005-005d-4a64-be1a-dd2b061bd4f2/1/yNqJ-xUtQ8Y-PaL9agsN-yKgZYE.mft File: yNqJ-xUtQ8Y-PaL9agsN-yKgZYE.mft (raw, json) Hash identifier: 8mw09G3olRQOOegXyijjkiNnKidK520uc7FltXSYftY= Subject key identifier: C0:F2:11:2A:7D:C9:FF:86:F2:4B:DB:FC:38:60:46:A8:CE:C2:F1:2D Authority key identifier: C8:DA:89:FB:15:2D:43:C6:3E:3D:A2:FD:6A:0B:0D:FB:22:A0:65:81 Certificate issuer: /CN=c8da89fb152d43c63e3da2fd6a0b0dfb22a06581 Certificate serial: 019AF208B27144C2B9D37FF7F1A67487CA49 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yNqJ-xUtQ8Y-PaL9agsN-yKgZYE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/b55005-005d-4a64-be1a-dd2b061bd4f2/1/yNqJ-xUtQ8Y-PaL9agsN-yKgZYE.mft Manifest number: 0F2F Signing time: Sat 06 Dec 2025 05:00:47 +0000 Manifest this update: Sat 06 Dec 2025 05:00:47 +0000 Manifest next update: Sun 07 Dec 2025 05:00:47 +0000 Files and hashes: 1: yNqJ-xUtQ8Y-PaL9agsN-yKgZYE.crl (hash: ZOKM1JcTn3/M5f9wFbLxNKc9/byPU7CoRfW0fTgJTF0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2e/b55005-005d-4a64-be1a-dd2b061bd4f2/1/yNqJ-xUtQ8Y-PaL9agsN-yKgZYE.crl rsync://rpki.ripe.net/repository/DEFAULT/2e/b55005-005d-4a64-be1a-dd2b061bd4f2/1/yNqJ-xUtQ8Y-PaL9agsN-yKgZYE.mft rsync://rpki.ripe.net/repository/DEFAULT/yNqJ-xUtQ8Y-PaL9agsN-yKgZYE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:08:b2:71:44:c2:b9:d3:7f:f7:f1:a6:74:87:ca:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c8da89fb152d43c63e3da2fd6a0b0dfb22a06581 Validity Not Before: Dec 6 05:00:47 2025 GMT Not After : Dec 7 05:00:47 2025 GMT Subject: CN=c0f2112a7dc9ff86f24bdbfc386046a8cec2f12d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:ab:83:6b:ae:90:54:1d:c4:de:d1:1f:26:dd: 00:5b:3d:e2:03:6f:ca:aa:af:77:39:43:e9:f1:2f: 55:df:10:ec:25:fc:e8:a1:e5:43:71:99:1f:82:57: e1:fc:41:2c:fb:49:7d:6b:d6:c3:12:95:1b:76:2e: db:66:33:d9:5b:44:5d:b4:88:df:43:63:b6:29:c7: 99:2a:45:ec:e6:40:87:27:45:11:4f:cf:57:3a:c9: bd:55:7d:42:db:94:55:fb:fe:00:c7:08:c9:d4:0d: bc:40:db:42:42:6a:58:13:b9:93:dd:9c:b2:b0:58: d2:53:07:3e:0b:d3:97:2c:aa:62:75:33:56:57:af: b5:22:1c:80:4e:28:14:75:66:44:48:9e:08:c3:44: 35:bd:fa:14:8f:86:41:ad:12:74:b0:38:72:30:18: 3e:bc:41:90:fa:b5:eb:87:35:b4:c7:91:32:9d:40: 5b:cf:20:bd:57:62:29:1e:1d:5a:7d:73:08:59:7b: 0f:84:19:c7:9a:2d:2e:58:72:4d:c9:49:d8:44:47: 32:ce:f4:37:c6:db:b1:6a:58:97:14:bb:07:be:a8: 94:49:8f:f8:50:e4:7f:28:78:b5:8c:eb:d9:c9:62: bf:60:aa:40:d7:02:65:d9:0e:93:4f:15:95:20:ce: b1:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:F2:11:2A:7D:C9:FF:86:F2:4B:DB:FC:38:60:46:A8:CE:C2:F1:2D X509v3 Authority Key Identifier: keyid:C8:DA:89:FB:15:2D:43:C6:3E:3D:A2:FD:6A:0B:0D:FB:22:A0:65:81 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yNqJ-xUtQ8Y-PaL9agsN-yKgZYE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/b55005-005d-4a64-be1a-dd2b061bd4f2/1/yNqJ-xUtQ8Y-PaL9agsN-yKgZYE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/b55005-005d-4a64-be1a-dd2b061bd4f2/1/yNqJ-xUtQ8Y-PaL9agsN-yKgZYE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a5:e4:a2:1d:f5:f4:ba:e2:66:fe:63:9c:3f:91:b0:1d:e9:ec: 26:fe:86:04:bd:25:51:49:42:0e:57:a7:f4:de:0e:d5:36:ac: f6:cd:d9:8d:9f:68:9f:23:db:32:9c:b1:60:d2:a4:b9:d3:ee: e2:92:3f:dc:2f:85:87:93:dc:16:03:33:fd:33:65:12:09:09: ac:e2:23:05:4b:a4:e2:24:55:ca:22:a7:28:13:61:63:ee:45: 26:e5:bb:d0:4b:2c:bb:8a:5a:3d:0a:3e:f3:90:f5:bd:9d:bc: a8:d3:d0:cd:60:64:df:d1:43:24:46:72:2a:f2:68:be:d6:28: f9:be:ac:bf:57:49:71:8e:55:2a:c9:6b:fe:fe:ef:3d:d2:31: 08:6e:fb:d4:1d:15:1c:b5:d8:d2:f1:78:98:91:aa:b4:5e:24: 00:70:5b:91:1b:84:fe:3f:66:f8:70:d2:6a:2b:af:93:19:ca: b9:c8:b2:d3:54:c3:ea:f1:47:d3:55:12:54:3c:29:17:82:47: 7a:de:3d:e1:72:1c:90:d2:cd:b4:b1:d6:c9:ef:2b:24:80:58: b5:47:97:9a:8c:00:27:b9:3a:9c:d6:22:c2:74:44:77:16:83: 72:52:1f:d8:bd:bb:9b:5b:c3:47:29:26:02:a6:2b:e2:ce:ff: a3:57:38:9e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCLJxRMK503/38aZ0h8pJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM4ZGE4OWZiMTUyZDQzYzYzZTNkYTJmZDZhMGIwZGZiMjJh MDY1ODEwHhcNMjUxMjA2MDUwMDQ3WhcNMjUxMjA3MDUwMDQ3WjAzMTEwLwYDVQQD EyhjMGYyMTEyYTdkYzlmZjg2ZjI0YmRiZmMzODYwNDZhOGNlYzJmMTJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvquDa66QVB3E3tEfJt0AWz3iA2/K qq93OUPp8S9V3xDsJfzooeVDcZkfglfh/EEs+0l9a9bDEpUbdi7bZjPZW0RdtIjf Q2O2KceZKkXs5kCHJ0URT89XOsm9VX1C25RV+/4AxwjJ1A28QNtCQmpYE7mT3Zyy sFjSUwc+C9OXLKpidTNWV6+1IhyATigUdWZESJ4Iw0Q1vfoUj4ZBrRJ0sDhyMBg+ vEGQ+rXrhzW0x5EynUBbzyC9V2IpHh1afXMIWXsPhBnHmi0uWHJNyUnYREcyzvQ3 xtuxaliXFLsHvqiUSY/4UOR/KHi1jOvZyWK/YKpA1wJl2Q6TTxWVIM6xRwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMDyESp9yf+G8kvb/DhgRqjOwvEtMB8GA1UdIwQY MBaAFMjaifsVLUPGPj2i/WoLDfsioGWBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveU5xSi14VXRROFktUGFMOWFnc04teUtnWllFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZS9iNTUwMDUtMDA1ZC00YTY0LWJlMWEt ZGQyYjA2MWJkNGYyLzEveU5xSi14VXRROFktUGFMOWFnc04teUtnWllFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZS9iNTUwMDUtMDA1ZC00YTY0LWJlMWEtZGQyYjA2MWJkNGYy LzEveU5xSi14VXRROFktUGFMOWFnc04teUtnWllFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApeSiHfX0 uuJm/mOcP5GwHensJv6GBL0lUUlCDlen9N4O1Tas9s3ZjZ9onyPbMpyxYNKkudPu 4pI/3C+Fh5PcFgMz/TNlEgkJrOIjBUuk4iRVyiKnKBNhY+5FJuW70Essu4paPQo+ 85D1vZ28qNPQzWBk39FDJEZyKvJovtYo+b6sv1dJcY5VKslr/v7vPdIxCG771B0V HLXY0vF4mJGqtF4kAHBbkRuE/j9m+HDSaiuvkxnKuciy01TD6vFH01USVDwpF4JH et494XIckNLNtLHWye8rJIBYtUeXmowAJ7k6nNYiwnREdxaDclIf2L27m1vDRykm AqYr4s7/o1c4ng== -----END CERTIFICATE-----Generated at Sat Dec 6 11:59:22 2025 by rpki-client