This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/682b07-773f-46fd-82e2-b9211e1fc1ac/1/yda1mpPjJAg_vKQjfkfp9evzcas.mft File: yda1mpPjJAg_vKQjfkfp9evzcas.mft (raw, json) Hash identifier: Iq1b9xxW0nZPFNs0OcOb4qMWPds22cZHT+4n0cWs+jg= Subject key identifier: FB:DC:DE:7C:01:EC:2E:AB:0C:68:AA:D4:CE:5F:0B:1D:F6:4D:E8:07 Authority key identifier: C9:D6:B5:9A:93:E3:24:08:3F:BC:A4:23:7E:47:E9:F5:EB:F3:71:AB Certificate issuer: /CN=c9d6b59a93e324083fbca4237e47e9f5ebf371ab Certificate serial: 019AF0886997B610AD0AB06A78555569B27B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yda1mpPjJAg_vKQjfkfp9evzcas.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/682b07-773f-46fd-82e2-b9211e1fc1ac/1/yda1mpPjJAg_vKQjfkfp9evzcas.mft Manifest number: 1787 Signing time: Fri 05 Dec 2025 22:01:02 +0000 Manifest this update: Fri 05 Dec 2025 22:01:02 +0000 Manifest next update: Sat 06 Dec 2025 22:01:02 +0000 Files and hashes: 1: N1MG3ptUi6lRkgCQgC4sjQwbS5E.roa (hash: JXk8TsLqv4eNpEsTxzdAoUG6ec7BUvgM4Lyhjc+WI9U=) 2: pMIZZEHYcO0IlQ8lJ-JaDY1xnJs.roa (hash: KI7tUZnJYI1JaBjFs0d5L727l5SVVoE+xByQFUZQZZI=) 3: uiLIHzK4-mf16_OjnZc2yUpW0us.roa (hash: RlQY7OlYxlif+RwnDDphDKPVhonzC8U4YVG2wYszXJM=) 4: wmxHtvcKqJtTUqnf5sR3cyCPMeg.roa (hash: /EPsVJFiMZ3O3IoH+IOAZdQSfyIhjr2V/FlxWvt6e5c=) 5: xF5VKoGOYu4SuTkWFtzR0bzZqmI.roa (hash: rdwu1BaRed5RxmIo/GH4jXiyNp3cFaIjeNX4kVrFm70=) 6: yda1mpPjJAg_vKQjfkfp9evzcas.crl (hash: tp8qO6x0mTMmmzHPjgdLmn5oNddevShJcPPNTZmSqD8=) 7: zPFc5xzrxxMWf2K11uBlgIiWqTo.roa (hash: 3x/T35aDdfP5Wrtlu3UJYc2NEgecLDM5KH+dyoNyYx0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/682b07-773f-46fd-82e2-b9211e1fc1ac/1/yda1mpPjJAg_vKQjfkfp9evzcas.crl rsync://rpki.ripe.net/repository/DEFAULT/57/682b07-773f-46fd-82e2-b9211e1fc1ac/1/yda1mpPjJAg_vKQjfkfp9evzcas.mft rsync://rpki.ripe.net/repository/DEFAULT/yda1mpPjJAg_vKQjfkfp9evzcas.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 22:01:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f0:88:69:97:b6:10:ad:0a:b0:6a:78:55:55:69:b2:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c9d6b59a93e324083fbca4237e47e9f5ebf371ab Validity Not Before: Dec 5 22:01:02 2025 GMT Not After : Dec 6 22:01:02 2025 GMT Subject: CN=fbdcde7c01ec2eab0c68aad4ce5f0b1df64de807 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:b7:36:ec:18:da:e3:60:d8:4f:48:8d:d9:2f: 37:aa:de:fa:56:1d:ae:1c:4b:c9:87:43:cb:eb:d3: 50:89:eb:0e:fc:c2:c8:d9:93:da:b8:d9:d4:a9:e2: 17:a3:6d:84:cd:79:00:3f:99:9f:78:62:46:bf:dc: 76:23:4f:75:0d:51:fb:24:92:d5:e0:17:f4:3c:04: 00:f0:8a:0d:02:f4:dc:4e:da:2b:df:d5:7c:1c:98: 23:40:25:83:74:68:58:7b:44:e6:2a:c9:a7:70:8f: bd:23:1f:58:ef:2d:71:60:4c:e7:14:c3:34:3d:98: 94:42:be:b6:7a:01:3e:52:21:43:9a:06:4c:f5:cf: 6d:6d:2a:c2:d3:fc:11:f9:fd:20:9b:cf:ec:b1:eb: 9d:e5:48:56:21:be:28:89:dd:c2:ef:b1:f3:65:d2: 67:42:52:c2:34:6c:d9:65:18:0a:b7:5c:91:2a:c7: e6:71:11:28:b0:a2:f4:3f:81:f5:a2:1d:83:fe:a9: e8:9b:10:0c:10:9b:1e:76:2c:d0:6b:d6:e6:1f:8b: ae:19:00:d6:55:4c:6e:54:67:a1:4d:98:db:df:17: 3b:4d:4e:cf:1e:e9:f2:bd:27:1f:1d:4a:8b:7a:99: c5:cf:d1:e3:91:97:28:a3:75:1b:98:40:1b:e7:d3: 08:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:DC:DE:7C:01:EC:2E:AB:0C:68:AA:D4:CE:5F:0B:1D:F6:4D:E8:07 X509v3 Authority Key Identifier: keyid:C9:D6:B5:9A:93:E3:24:08:3F:BC:A4:23:7E:47:E9:F5:EB:F3:71:AB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yda1mpPjJAg_vKQjfkfp9evzcas.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/682b07-773f-46fd-82e2-b9211e1fc1ac/1/yda1mpPjJAg_vKQjfkfp9evzcas.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/57/682b07-773f-46fd-82e2-b9211e1fc1ac/1/yda1mpPjJAg_vKQjfkfp9evzcas.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 80:42:c0:19:0f:46:5c:b5:fe:86:39:3d:b6:58:c5:f5:4d:09: 45:e5:04:e8:a4:33:97:7b:a8:05:04:57:ae:a0:f1:b2:de:a3: 0f:99:19:1e:78:17:a3:8e:72:4e:f3:8c:02:b2:33:82:a1:5f: 24:ca:c1:64:bb:c0:78:a7:c5:a1:4c:1d:67:60:66:cc:a7:48: 85:b8:03:84:b4:2d:7d:79:4c:6a:c5:e7:00:2d:1d:2b:48:5a: bb:fa:43:73:72:6b:53:8a:50:b9:5f:14:22:9f:14:ff:2b:cf: 74:43:1b:77:e2:e6:ab:fc:73:9a:6a:85:db:1f:77:3a:34:78: 1c:e2:d3:d4:18:0a:7a:13:e7:f8:6f:de:66:23:11:94:7d:29: 7b:66:6f:53:16:89:5f:46:f0:28:4c:41:a4:11:28:de:98:f5: a6:a7:cc:82:b4:7d:ef:8f:9f:a0:60:c6:69:92:0b:64:0b:21: f2:d6:04:b7:fa:d1:3a:ad:0e:4a:ec:6d:9d:04:8a:57:f5:4e: ce:4f:17:e9:a9:39:f1:6d:24:86:96:e1:f0:ed:9d:97:33:03: c6:39:e6:d2:dc:8c:41:6d:a8:14:d9:f1:6a:da:30:09:eb:37: 33:09:97:3a:ff:e0:a4:2a:4a:6f:6d:c7:a2:ac:b7:9c:27:b5: d4:f4:50:b0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrwiGmXthCtCrBqeFVVabJ7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM5ZDZiNTlhOTNlMzI0MDgzZmJjYTQyMzdlNDdlOWY1ZWJm MzcxYWIwHhcNMjUxMjA1MjIwMTAyWhcNMjUxMjA2MjIwMTAyWjAzMTEwLwYDVQQD EyhmYmRjZGU3YzAxZWMyZWFiMGM2OGFhZDRjZTVmMGIxZGY2NGRlODA3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt7c27Bja42DYT0iN2S83qt76Vh2u HEvJh0PL69NQiesO/MLI2ZPauNnUqeIXo22EzXkAP5mfeGJGv9x2I091DVH7JJLV 4Bf0PAQA8IoNAvTcTtor39V8HJgjQCWDdGhYe0TmKsmncI+9Ix9Y7y1xYEznFMM0 PZiUQr62egE+UiFDmgZM9c9tbSrC0/wR+f0gm8/sseud5UhWIb4oid3C77HzZdJn QlLCNGzZZRgKt1yRKsfmcREosKL0P4H1oh2D/qnomxAMEJsedizQa9bmH4uuGQDW VUxuVGehTZjb3xc7TU7PHunyvScfHUqLepnFz9HjkZcoo3UbmEAb59MIUQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPvc3nwB7C6rDGiq1M5fCx32TegHMB8GA1UdIwQY MBaAFMnWtZqT4yQIP7ykI35H6fXr83GrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveWRhMW1wUGpKQWdfdktRamZrZnA5ZXZ6Y2FzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ny82ODJiMDctNzczZi00NmZkLTgyZTIt YjkyMTFlMWZjMWFjLzEveWRhMW1wUGpKQWdfdktRamZrZnA5ZXZ6Y2FzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Ny82ODJiMDctNzczZi00NmZkLTgyZTItYjkyMTFlMWZjMWFj LzEveWRhMW1wUGpKQWdfdktRamZrZnA5ZXZ6Y2FzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgELAGQ9G XLX+hjk9tljF9U0JReUE6KQzl3uoBQRXrqDxst6jD5kZHngXo45yTvOMArIzgqFf JMrBZLvAeKfFoUwdZ2BmzKdIhbgDhLQtfXlMasXnAC0dK0hau/pDc3JrU4pQuV8U Ip8U/yvPdEMbd+Lmq/xzmmqF2x93OjR4HOLT1BgKehPn+G/eZiMRlH0pe2ZvUxaJ X0bwKExBpBEo3pj1pqfMgrR974+foGDGaZILZAsh8tYEt/rROq0OSuxtnQSKV/VO zk8X6ak58W0khpbh8O2dlzMDxjnm0tyMQW2oFNnxatowCes3MwmXOv/gpCpKb23H oqy3nCe11PRQsA== -----END CERTIFICATE-----Generated at Sat Dec 6 08:09:41 2025 by rpki-client