This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/fe702e-c26b-4429-99c1-87250f5a07cc/1/YzkukpMXrmveCKWjuYorcB3biTo.mft File: YzkukpMXrmveCKWjuYorcB3biTo.mft (raw, json) Hash identifier: GynAMfTM/YkmrmEJeluFPbceAWc3Qz3JTDHpJqkNNRI= Subject key identifier: 5B:FA:4E:D7:05:D6:05:49:26:1B:2A:13:FD:E3:2C:5A:5A:E1:DD:90 Authority key identifier: 63:39:2E:92:93:17:AE:6B:DE:08:A5:A3:B9:8A:2B:70:1D:DB:89:3A Certificate issuer: /CN=63392e929317ae6bde08a5a3b98a2b701ddb893a Certificate serial: 019B341F7F271E14BEDCFCC014BEA4366BF3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YzkukpMXrmveCKWjuYorcB3biTo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/fe702e-c26b-4429-99c1-87250f5a07cc/1/YzkukpMXrmveCKWjuYorcB3biTo.mft Manifest number: 05FE Signing time: Fri 19 Dec 2025 01:00:37 +0000 Manifest this update: Fri 19 Dec 2025 01:00:37 +0000 Manifest next update: Sat 20 Dec 2025 01:00:37 +0000 Files and hashes: 1: 3Tq13WIcjE4wrF9fmJGXuJJ3EA0.roa (hash: GyLSfZMIbW5GjQFGTgFakvct5lf6SBp5gMlZA4ZRfho=) 2: 7t0ruCwwheWDY1iuc2ABz5OkuLU.roa (hash: Wsc9jgqPgNqZ76JLps6IqRa7nxD3XGEuiy4WXzWnIxU=) 3: ImvsPyGjqHzil2zJhiiakufkk1I.roa (hash: 29vZWJ1xOkBr4giAfRXD6EraUbozMao9ed7L/bRqJaU=) 4: OBYQZDQ1ObRE7hokU9D4Av8auQ0.roa (hash: rilwxKs37kLhwVeNVD/MIAohgiQxYvRftQXfpAgpDb0=) 5: Qf3xuPjCoTEQLfLo_UoAbyihOBg.roa (hash: upxdgtTwbpkR0XgQ85zaD7BvaiRt7M2499aUCky2ako=) 6: Smlnej5n6B69IkLJuHE_uEPKvkM.roa (hash: ZGTm9kLyb+TVFfvRl0Z+2C+98Be3iA8+F42uOm7E6Cg=) 7: YzkukpMXrmveCKWjuYorcB3biTo.crl (hash: mTuYuJf8nTwBy2NpfzpeeR+l3oSmG+k7/sXkhOZ8UG8=) 8: ZtBVD_gU9JHOidmFecie_EQftRo.roa (hash: TATv9KEl0G9zS/KJs9wWiYzEnpI8uOZdyHODf/h2Zv8=) 9: fY9Iy2JY1E_TXtYJ0FV4aeZ6v-Y.roa (hash: eNIrQiQ2SfuQFshYez06LL23c6mQrj9GfYgkzxup5Xw=) 10: w-kDsP50J75PL4Ya6eQkdiS7MmA.roa (hash: e/heTB6HI2crd/P6O3UvBg+yFEyLCizumo10MAmv0a0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/fe702e-c26b-4429-99c1-87250f5a07cc/1/YzkukpMXrmveCKWjuYorcB3biTo.crl rsync://rpki.ripe.net/repository/DEFAULT/4d/fe702e-c26b-4429-99c1-87250f5a07cc/1/YzkukpMXrmveCKWjuYorcB3biTo.mft rsync://rpki.ripe.net/repository/DEFAULT/YzkukpMXrmveCKWjuYorcB3biTo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 22:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:34:1f:7f:27:1e:14:be:dc:fc:c0:14:be:a4:36:6b:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=63392e929317ae6bde08a5a3b98a2b701ddb893a Validity Not Before: Dec 19 01:00:37 2025 GMT Not After : Dec 20 01:00:37 2025 GMT Subject: CN=5bfa4ed705d60549261b2a13fde32c5a5ae1dd90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:40:66:67:f1:6b:43:b7:f8:0b:4c:7f:e6:d5: 51:31:ae:ba:52:c0:90:96:6f:c9:4a:c9:22:ef:a9: c8:ec:be:9a:53:8a:d7:bd:73:82:a3:1d:a0:b4:cc: f0:ae:a5:8e:09:b8:77:ab:17:12:f7:af:7b:20:06: 79:e1:5c:75:68:ba:76:ca:f1:40:56:e8:8f:5a:a3: 5a:d0:e1:c7:a2:59:29:d2:48:db:63:36:f2:dd:c6: 91:43:f4:9e:bb:ef:fa:68:29:f4:77:15:9d:1d:09: 22:a6:9b:26:05:49:91:87:da:05:62:b7:ac:2e:2c: f4:6d:88:88:02:04:69:5a:79:04:c7:3c:e3:cb:77: 0a:3e:2f:e4:16:a0:c7:a5:ce:83:d7:fb:15:02:77: cf:a2:a9:f1:0a:86:ab:15:cf:7a:6e:6f:12:f1:f6: 29:ba:e5:be:d2:a3:ed:c7:aa:89:14:e0:b8:12:f1: ed:60:83:67:8e:48:2f:04:64:c4:6f:3f:c8:36:dc: 89:52:7b:89:8a:7c:a1:6a:2d:93:f0:a4:13:c6:30: 3c:a5:6e:f0:f0:e0:1c:33:56:bf:06:bb:69:18:4a: ec:08:8b:6c:07:fd:8e:0b:84:bf:69:a3:62:60:ae: a0:a9:c3:d7:12:5f:ca:96:3a:1b:5c:44:89:0c:9f: 76:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:FA:4E:D7:05:D6:05:49:26:1B:2A:13:FD:E3:2C:5A:5A:E1:DD:90 X509v3 Authority Key Identifier: keyid:63:39:2E:92:93:17:AE:6B:DE:08:A5:A3:B9:8A:2B:70:1D:DB:89:3A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YzkukpMXrmveCKWjuYorcB3biTo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/fe702e-c26b-4429-99c1-87250f5a07cc/1/YzkukpMXrmveCKWjuYorcB3biTo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/fe702e-c26b-4429-99c1-87250f5a07cc/1/YzkukpMXrmveCKWjuYorcB3biTo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 16:7e:d3:72:75:35:a5:68:74:9e:8f:8f:82:75:39:7b:19:4c: 59:72:60:b0:92:2c:29:16:7c:62:ea:72:fc:ef:89:d8:91:ff: c5:e9:f0:83:50:3c:d0:9f:35:39:8b:10:15:08:a4:01:5a:0a: d5:ce:79:fd:79:8c:ab:ac:3a:a3:3f:29:bc:5d:e0:8c:6b:54: e5:53:de:aa:c4:15:ef:c7:67:c2:99:c6:e4:02:1e:57:80:7a: 27:0b:b6:d8:c9:a8:70:ff:b7:a2:0d:c3:9e:87:4f:40:0c:ad: d6:90:2a:4f:9e:ff:65:e3:43:6c:59:78:26:6c:61:0a:5f:64: fc:dc:c5:7b:5a:80:0b:eb:23:08:56:d8:09:d9:c5:ca:57:4e: c7:1f:86:e2:85:59:3a:a6:e1:2e:ef:d7:55:34:e4:a8:18:a5: b6:a9:e1:83:e7:52:82:f4:8e:2c:74:76:52:40:64:f0:29:36: 57:fc:7a:4f:27:b5:b2:ea:4c:7d:86:5c:c0:9c:df:d9:29:0e: 25:d2:9a:3f:31:57:27:b8:35:55:84:a4:4c:81:dd:60:f8:d1: 11:fb:e8:21:e9:a3:d5:cd:39:1e:68:86:93:b4:eb:74:8d:cd: 73:3c:4e:e7:94:80:ec:4c:dd:e1:d1:2e:90:6f:5c:1c:93:43: 23:ca:29:ee -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs0H38nHhS+3PzAFL6kNmvzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYzMzkyZTkyOTMxN2FlNmJkZTA4YTVhM2I5OGEyYjcwMWRk Yjg5M2EwHhcNMjUxMjE5MDEwMDM3WhcNMjUxMjIwMDEwMDM3WjAzMTEwLwYDVQQD Eyg1YmZhNGVkNzA1ZDYwNTQ5MjYxYjJhMTNmZGUzMmM1YTVhZTFkZDkwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv0BmZ/FrQ7f4C0x/5tVRMa66UsCQ lm/JSski76nI7L6aU4rXvXOCox2gtMzwrqWOCbh3qxcS9697IAZ54Vx1aLp2yvFA VuiPWqNa0OHHolkp0kjbYzby3caRQ/Seu+/6aCn0dxWdHQkippsmBUmRh9oFYres Liz0bYiIAgRpWnkExzzjy3cKPi/kFqDHpc6D1/sVAnfPoqnxCoarFc96bm8S8fYp uuW+0qPtx6qJFOC4EvHtYINnjkgvBGTEbz/INtyJUnuJinyhai2T8KQTxjA8pW7w 8OAcM1a/BrtpGErsCItsB/2OC4S/aaNiYK6gqcPXEl/KljobXESJDJ922wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFv6TtcF1gVJJhsqE/3jLFpa4d2QMB8GA1UdIwQY MBaAFGM5LpKTF65r3gilo7mKK3Ad24k6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWXprdWtwTVhybXZlQ0tXanVZb3JjQjNiaVRvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZC9mZTcwMmUtYzI2Yi00NDI5LTk5YzEt ODcyNTBmNWEwN2NjLzEvWXprdWtwTVhybXZlQ0tXanVZb3JjQjNiaVRvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80ZC9mZTcwMmUtYzI2Yi00NDI5LTk5YzEtODcyNTBmNWEwN2Nj LzEvWXprdWtwTVhybXZlQ0tXanVZb3JjQjNiaVRvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFn7TcnU1 pWh0no+PgnU5exlMWXJgsJIsKRZ8Yupy/O+J2JH/xenwg1A80J81OYsQFQikAVoK 1c55/XmMq6w6oz8pvF3gjGtU5VPeqsQV78dnwpnG5AIeV4B6Jwu22MmocP+3og3D nodPQAyt1pAqT57/ZeNDbFl4JmxhCl9k/NzFe1qAC+sjCFbYCdnFyldOxx+G4oVZ OqbhLu/XVTTkqBiltqnhg+dSgvSOLHR2UkBk8Ck2V/x6Tye1supMfYZcwJzf2SkO JdKaPzFXJ7g1VYSkTIHdYPjREfvoIemj1c05HmiGk7TrdI3NczxO55SA7Ezd4dEu kG9cHJNDI8op7g== -----END CERTIFICATE-----Generated at Fri Dec 19 06:19:56 2025 by rpki-client