This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/550873-d063-420d-a051-16b97b9a885e/1/yF0BtEKUbhkkMT1WTzG35C4kVec.mft File: yF0BtEKUbhkkMT1WTzG35C4kVec.mft (raw, json) Hash identifier: jX3JkhEjwYC0XXyTxvmvKTH7cS1jFn7WsItMdMKYn9g= Subject key identifier: 38:81:32:66:7C:3D:A2:B4:54:CD:84:12:67:4B:FE:6C:B8:64:6A:A6 Authority key identifier: C8:5D:01:B4:42:94:6E:19:24:31:3D:56:4F:31:B7:E4:2E:24:55:E7 Certificate issuer: /CN=c85d01b442946e1924313d564f31b7e42e2455e7 Certificate serial: 019AF0BF4D4C831B1A1648B2BCBCC90170B0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yF0BtEKUbhkkMT1WTzG35C4kVec.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/550873-d063-420d-a051-16b97b9a885e/1/yF0BtEKUbhkkMT1WTzG35C4kVec.mft Manifest number: 0BE2 Signing time: Fri 05 Dec 2025 23:01:00 +0000 Manifest this update: Fri 05 Dec 2025 23:01:00 +0000 Manifest next update: Sat 06 Dec 2025 23:01:00 +0000 Files and hashes: 1: DpCybAm9bBRoUpHGAuIQ86Lq5pw.roa (hash: 2p6cZB/6xzzCJ7jeUbBrD5Bf0hcHEh4tn/vPl+35cnU=) 2: yF0BtEKUbhkkMT1WTzG35C4kVec.crl (hash: h9FKLiKB9q0DiBoszSHSBrRawDcr/VEQziUuerFPB44=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/550873-d063-420d-a051-16b97b9a885e/1/yF0BtEKUbhkkMT1WTzG35C4kVec.crl rsync://rpki.ripe.net/repository/DEFAULT/54/550873-d063-420d-a051-16b97b9a885e/1/yF0BtEKUbhkkMT1WTzG35C4kVec.mft rsync://rpki.ripe.net/repository/DEFAULT/yF0BtEKUbhkkMT1WTzG35C4kVec.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 23:01:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f0:bf:4d:4c:83:1b:1a:16:48:b2:bc:bc:c9:01:70:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c85d01b442946e1924313d564f31b7e42e2455e7 Validity Not Before: Dec 5 23:01:00 2025 GMT Not After : Dec 6 23:01:00 2025 GMT Subject: CN=388132667c3da2b454cd8412674bfe6cb8646aa6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:f7:04:a8:d5:5f:31:fd:99:61:fe:17:f6:ed: 70:a5:26:6c:87:e1:39:7d:ea:26:0e:fb:52:68:18: 97:b4:61:ad:f5:88:18:68:6e:3f:e8:a7:3a:c5:a2: f7:0e:26:27:19:20:4d:70:d6:1c:29:5c:d2:6e:fc: 7d:c9:f8:b0:5b:a6:83:17:94:65:0d:97:51:35:ab: 64:8a:be:34:23:c0:b8:74:61:d0:9f:e7:77:d3:f9: 80:ca:9d:58:93:d2:ab:6f:21:5c:b0:36:8b:30:e1: 29:56:42:a8:20:0a:be:60:45:5f:03:62:50:66:ec: c2:79:db:5a:b3:c9:d3:ec:cc:6f:46:8c:ed:d1:92: bd:eb:9a:50:3e:a7:44:15:66:89:1a:99:b4:32:90: 30:b5:67:2d:67:d2:c1:c0:e7:71:9b:a6:99:07:13: 57:5d:6b:78:5e:d5:3a:8b:c0:9c:1f:e7:b2:75:98: 45:6a:1c:fc:ff:41:61:3c:c1:05:a6:96:e0:23:19: 37:ce:12:d7:bb:44:4b:8f:38:bc:50:57:3b:bf:2d: e3:99:c6:15:28:b5:28:03:21:be:13:ee:05:69:18: 28:06:73:13:6e:22:d7:55:9f:6a:b6:31:12:f3:15: f4:4b:40:64:a5:5f:c8:63:e0:a8:24:50:b6:f1:f7: 30:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:81:32:66:7C:3D:A2:B4:54:CD:84:12:67:4B:FE:6C:B8:64:6A:A6 X509v3 Authority Key Identifier: keyid:C8:5D:01:B4:42:94:6E:19:24:31:3D:56:4F:31:B7:E4:2E:24:55:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yF0BtEKUbhkkMT1WTzG35C4kVec.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/550873-d063-420d-a051-16b97b9a885e/1/yF0BtEKUbhkkMT1WTzG35C4kVec.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/54/550873-d063-420d-a051-16b97b9a885e/1/yF0BtEKUbhkkMT1WTzG35C4kVec.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c6:29:25:c5:d1:e5:0e:85:e6:8a:b3:51:58:70:55:48:3a:e5: 01:84:20:94:6b:61:59:50:b7:a7:60:07:7e:3a:38:dc:de:80: 22:7e:f1:88:45:18:f4:ec:68:bb:97:b1:4a:f7:c8:50:b0:6f: e2:95:a2:e2:67:4c:0b:bb:2f:95:2f:92:a1:b0:14:69:ba:3e: bf:ea:3f:4a:93:4e:a6:10:0a:9a:65:18:47:11:43:21:76:21: 58:4a:4b:74:0e:ee:bd:f1:71:d5:75:9d:f0:c8:ad:3a:c7:95: 9c:42:ce:bb:cf:b8:09:6e:56:f2:11:34:d0:d9:c3:79:d2:1a: 3d:c8:ad:7f:cc:39:23:f5:61:9b:7a:88:d3:fc:85:c1:63:bf: cc:d6:46:e7:09:b9:13:47:a4:a2:37:d2:04:9e:fa:5e:8e:1d: a6:b4:b8:4c:4f:f6:19:cc:66:67:2b:3a:cf:b0:8b:ba:7a:98: 88:c8:66:7f:67:6f:20:b6:52:8f:37:8a:5b:49:b5:4d:65:7c: 0b:b3:c3:71:38:89:56:26:e9:0c:6d:ca:1d:90:3c:3b:4c:a6: 71:59:a8:55:09:3a:f0:e8:8a:07:e0:63:c4:bc:e6:8c:f3:46: 2d:3a:64:83:43:5c:78:c2:fa:70:72:62:d9:5a:30:00:c2:5c: 23:2e:8a:24 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrwv01MgxsaFkiyvLzJAXCwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM4NWQwMWI0NDI5NDZlMTkyNDMxM2Q1NjRmMzFiN2U0MmUy NDU1ZTcwHhcNMjUxMjA1MjMwMTAwWhcNMjUxMjA2MjMwMTAwWjAzMTEwLwYDVQQD EygzODgxMzI2NjdjM2RhMmI0NTRjZDg0MTI2NzRiZmU2Y2I4NjQ2YWE2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu/cEqNVfMf2ZYf4X9u1wpSZsh+E5 feomDvtSaBiXtGGt9YgYaG4/6Kc6xaL3DiYnGSBNcNYcKVzSbvx9yfiwW6aDF5Rl DZdRNatkir40I8C4dGHQn+d30/mAyp1Yk9KrbyFcsDaLMOEpVkKoIAq+YEVfA2JQ ZuzCedtas8nT7MxvRozt0ZK965pQPqdEFWaJGpm0MpAwtWctZ9LBwOdxm6aZBxNX XWt4XtU6i8CcH+eydZhFahz8/0FhPMEFppbgIxk3zhLXu0RLjzi8UFc7vy3jmcYV KLUoAyG+E+4FaRgoBnMTbiLXVZ9qtjES8xX0S0BkpV/IY+CoJFC28fcwQwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDiBMmZ8PaK0VM2EEmdL/my4ZGqmMB8GA1UdIwQY MBaAFMhdAbRClG4ZJDE9Vk8xt+QuJFXnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveUYwQnRFS1ViaGtrTVQxV1R6RzM1QzRrVmVjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC81NTA4NzMtZDA2My00MjBkLWEwNTEt MTZiOTdiOWE4ODVlLzEveUYwQnRFS1ViaGtrTVQxV1R6RzM1QzRrVmVjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81NC81NTA4NzMtZDA2My00MjBkLWEwNTEtMTZiOTdiOWE4ODVl LzEveUYwQnRFS1ViaGtrTVQxV1R6RzM1QzRrVmVjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAxiklxdHl DoXmirNRWHBVSDrlAYQglGthWVC3p2AHfjo43N6AIn7xiEUY9Oxou5exSvfIULBv 4pWi4mdMC7svlS+SobAUabo+v+o/SpNOphAKmmUYRxFDIXYhWEpLdA7uvfFx1XWd 8MitOseVnELOu8+4CW5W8hE00NnDedIaPcitf8w5I/Vhm3qI0/yFwWO/zNZG5wm5 E0ekojfSBJ76Xo4dprS4TE/2GcxmZys6z7CLunqYiMhmf2dvILZSjzeKW0m1TWV8 C7PDcTiJVibpDG3KHZA8O0ymcVmoVQk68OiKB+BjxLzmjPNGLTpkg0NceML6cHJi 2VowAMJcIy6KJA== -----END CERTIFICATE-----Generated at Sat Dec 6 08:10:34 2025 by rpki-client