This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/fe702e-c26b-4429-99c1-87250f5a07cc/1/YzkukpMXrmveCKWjuYorcB3biTo.mft File: YzkukpMXrmveCKWjuYorcB3biTo.mft (raw, json) Hash identifier: YtEMSZghN2+xE3rOTCzleQ0bOVE9XcLQpFK4M9s6InM= Subject key identifier: B2:46:62:88:C7:E8:B5:95:2E:9C:84:0A:89:60:AA:01:33:00:71:A4 Authority key identifier: 63:39:2E:92:93:17:AE:6B:DE:08:A5:A3:B9:8A:2B:70:1D:DB:89:3A Certificate issuer: /CN=63392e929317ae6bde08a5a3b98a2b701ddb893a Certificate serial: 019AF1D2511A5E33D7F6432F821FB3D6E7FD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YzkukpMXrmveCKWjuYorcB3biTo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/fe702e-c26b-4429-99c1-87250f5a07cc/1/YzkukpMXrmveCKWjuYorcB3biTo.mft Manifest number: 05D9 Signing time: Sat 06 Dec 2025 04:01:23 +0000 Manifest this update: Sat 06 Dec 2025 04:01:23 +0000 Manifest next update: Sun 07 Dec 2025 04:01:23 +0000 Files and hashes: 1: 3Tq13WIcjE4wrF9fmJGXuJJ3EA0.roa (hash: GyLSfZMIbW5GjQFGTgFakvct5lf6SBp5gMlZA4ZRfho=) 2: 7t0ruCwwheWDY1iuc2ABz5OkuLU.roa (hash: Wsc9jgqPgNqZ76JLps6IqRa7nxD3XGEuiy4WXzWnIxU=) 3: ImvsPyGjqHzil2zJhiiakufkk1I.roa (hash: 29vZWJ1xOkBr4giAfRXD6EraUbozMao9ed7L/bRqJaU=) 4: Qf3xuPjCoTEQLfLo_UoAbyihOBg.roa (hash: upxdgtTwbpkR0XgQ85zaD7BvaiRt7M2499aUCky2ako=) 5: Smlnej5n6B69IkLJuHE_uEPKvkM.roa (hash: ZGTm9kLyb+TVFfvRl0Z+2C+98Be3iA8+F42uOm7E6Cg=) 6: XtfitIKECL4Esn5wVQYquZKD0aY.roa (hash: Rusmu3puclElkF3Iw8mfUgThxObk4QDJvsuY23x3w40=) 7: YzkukpMXrmveCKWjuYorcB3biTo.crl (hash: p6mcvPOw7j3ZQ8Ykg41+bgXlD6xSFkD83CgefRP4Qrc=) 8: ZtBVD_gU9JHOidmFecie_EQftRo.roa (hash: TATv9KEl0G9zS/KJs9wWiYzEnpI8uOZdyHODf/h2Zv8=) 9: fY9Iy2JY1E_TXtYJ0FV4aeZ6v-Y.roa (hash: eNIrQiQ2SfuQFshYez06LL23c6mQrj9GfYgkzxup5Xw=) 10: w-kDsP50J75PL4Ya6eQkdiS7MmA.roa (hash: e/heTB6HI2crd/P6O3UvBg+yFEyLCizumo10MAmv0a0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/fe702e-c26b-4429-99c1-87250f5a07cc/1/YzkukpMXrmveCKWjuYorcB3biTo.crl rsync://rpki.ripe.net/repository/DEFAULT/4d/fe702e-c26b-4429-99c1-87250f5a07cc/1/YzkukpMXrmveCKWjuYorcB3biTo.mft rsync://rpki.ripe.net/repository/DEFAULT/YzkukpMXrmveCKWjuYorcB3biTo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 04:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:d2:51:1a:5e:33:d7:f6:43:2f:82:1f:b3:d6:e7:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=63392e929317ae6bde08a5a3b98a2b701ddb893a Validity Not Before: Dec 6 04:01:23 2025 GMT Not After : Dec 7 04:01:23 2025 GMT Subject: CN=b2466288c7e8b5952e9c840a8960aa01330071a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:bd:89:b1:30:c3:5f:a8:fa:23:b8:c4:2d:52: ff:ac:4e:cf:25:df:22:5a:2f:61:9b:18:9e:73:53: d7:bd:5a:eb:f6:82:e6:14:1e:56:06:c6:e2:b4:7f: 63:ea:45:66:68:46:57:23:98:91:05:1c:2d:0c:42: 9b:29:60:0d:86:8f:b3:d9:e0:ea:ae:3d:27:8e:46: ff:7d:f3:9e:71:5a:6d:48:ed:91:65:14:f9:fe:bd: fe:3a:0e:85:27:e5:a7:61:9e:70:cc:11:ec:36:bc: 42:61:e5:83:a2:8a:a4:a5:c1:e4:86:06:b8:b6:83: 04:9a:b0:d4:6a:b2:a4:03:9d:d9:54:0c:10:ad:76: 3b:94:2f:f1:eb:47:a4:3f:b8:69:b6:17:93:3b:19: 55:8a:a9:92:25:33:73:55:23:97:8b:af:7c:71:c6: 70:95:2f:3a:3e:a7:7e:0c:0f:a8:08:3a:66:bd:57: 3e:63:f7:40:00:85:12:3e:e6:d6:63:71:3e:c6:69: 59:21:3e:85:34:5e:82:7a:33:d1:66:6f:4f:ff:a5: 3f:15:54:9d:e0:7d:b1:8d:0f:93:34:dd:9d:f0:f3: 1c:5f:57:54:18:46:5f:41:d0:a5:f6:16:8d:44:f6: 18:48:47:19:75:67:2c:64:c5:77:7a:09:c2:20:00: 0c:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:46:62:88:C7:E8:B5:95:2E:9C:84:0A:89:60:AA:01:33:00:71:A4 X509v3 Authority Key Identifier: keyid:63:39:2E:92:93:17:AE:6B:DE:08:A5:A3:B9:8A:2B:70:1D:DB:89:3A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YzkukpMXrmveCKWjuYorcB3biTo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/fe702e-c26b-4429-99c1-87250f5a07cc/1/YzkukpMXrmveCKWjuYorcB3biTo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/fe702e-c26b-4429-99c1-87250f5a07cc/1/YzkukpMXrmveCKWjuYorcB3biTo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 95:fb:20:0c:b7:45:8a:d8:3b:bf:a6:42:57:ab:b3:da:90:a5: 75:01:fa:48:99:02:95:f3:63:5c:53:67:a0:30:a4:55:a7:f8: c6:53:39:d4:ce:66:58:a5:c0:30:b8:e9:a7:08:98:e4:32:2f: e9:f0:c6:96:d2:bb:49:89:07:d8:e0:0e:d1:62:fc:a2:dd:b1: 0d:77:7e:fd:7f:48:1d:5f:e7:20:95:c1:20:da:7c:d9:3e:9e: ce:9a:51:7d:b2:85:31:f0:40:55:23:a1:79:f9:aa:9d:11:94: 8f:f5:a0:dd:64:cd:d2:c3:1d:ad:bf:8d:c9:2c:4e:0b:4f:2f: 0f:4c:65:c3:eb:f1:a0:b5:09:95:a7:65:5e:b5:08:7a:c7:94: 24:5e:6c:87:7a:26:7f:3a:5b:b2:7a:a2:b6:55:75:5e:05:72: 6e:90:af:81:4f:df:26:97:d0:26:44:44:e3:20:9e:06:ae:9c: 81:0c:68:82:7c:0b:9a:0a:0e:21:03:8a:ff:93:aa:8b:cb:51: 26:09:b9:74:a1:51:6c:be:62:fb:9e:d3:b3:d7:e8:6c:5b:ae: 6b:8a:b7:fd:91:fd:7b:c6:56:bd:2f:82:0e:30:e4:5b:58:e7: be:40:aa:5b:36:2e:1c:bc:bd:e7:05:cf:da:2f:f7:6c:79:5e: cf:50:a3:04 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrx0lEaXjPX9kMvgh+z1uf9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYzMzkyZTkyOTMxN2FlNmJkZTA4YTVhM2I5OGEyYjcwMWRk Yjg5M2EwHhcNMjUxMjA2MDQwMTIzWhcNMjUxMjA3MDQwMTIzWjAzMTEwLwYDVQQD EyhiMjQ2NjI4OGM3ZThiNTk1MmU5Yzg0MGE4OTYwYWEwMTMzMDA3MWE0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmL2JsTDDX6j6I7jELVL/rE7PJd8i Wi9hmxiec1PXvVrr9oLmFB5WBsbitH9j6kVmaEZXI5iRBRwtDEKbKWANho+z2eDq rj0njkb/ffOecVptSO2RZRT5/r3+Og6FJ+WnYZ5wzBHsNrxCYeWDooqkpcHkhga4 toMEmrDUarKkA53ZVAwQrXY7lC/x60ekP7hptheTOxlViqmSJTNzVSOXi698ccZw lS86Pqd+DA+oCDpmvVc+Y/dAAIUSPubWY3E+xmlZIT6FNF6CejPRZm9P/6U/FVSd 4H2xjQ+TNN2d8PMcX1dUGEZfQdCl9haNRPYYSEcZdWcsZMV3egnCIAAMwwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLJGYojH6LWVLpyEColgqgEzAHGkMB8GA1UdIwQY MBaAFGM5LpKTF65r3gilo7mKK3Ad24k6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWXprdWtwTVhybXZlQ0tXanVZb3JjQjNiaVRvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZC9mZTcwMmUtYzI2Yi00NDI5LTk5YzEt ODcyNTBmNWEwN2NjLzEvWXprdWtwTVhybXZlQ0tXanVZb3JjQjNiaVRvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80ZC9mZTcwMmUtYzI2Yi00NDI5LTk5YzEtODcyNTBmNWEwN2Nj LzEvWXprdWtwTVhybXZlQ0tXanVZb3JjQjNiaVRvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlfsgDLdF itg7v6ZCV6uz2pCldQH6SJkClfNjXFNnoDCkVaf4xlM51M5mWKXAMLjppwiY5DIv 6fDGltK7SYkH2OAO0WL8ot2xDXd+/X9IHV/nIJXBINp82T6ezppRfbKFMfBAVSOh efmqnRGUj/Wg3WTN0sMdrb+NySxOC08vD0xlw+vxoLUJladlXrUIeseUJF5sh3om fzpbsnqitlV1XgVybpCvgU/fJpfQJkRE4yCeBq6cgQxognwLmgoOIQOK/5Oqi8tR Jgm5dKFRbL5i+57Ts9fobFuua4q3/ZH9e8ZWvS+CDjDkW1jnvkCqWzYuHLy95wXP 2i/3bHlez1CjBA== -----END CERTIFICATE-----Generated at Sat Dec 6 11:17:02 2025 by rpki-client