This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/6062af-53bc-435d-b5fb-a118498325f7/1/YcXtDe2GJbMrZTMgcinyxGclmEg.mft File: YcXtDe2GJbMrZTMgcinyxGclmEg.mft (raw, json) Hash identifier: taeGlqPEem/KnrRAn0uqEhkdRb0h9qQK11qsOA61ahc= Subject key identifier: 97:99:A1:9D:34:19:59:1F:E8:22:0D:B1:D0:34:6F:48:B3:3A:A4:EC Authority key identifier: 61:C5:ED:0D:ED:86:25:B3:2B:65:33:20:72:29:F2:C4:67:25:98:48 Certificate issuer: /CN=61c5ed0ded8625b32b6533207229f2c467259848 Certificate serial: 019AF5E59AFEA48C1BA1458A0F4E9F9D68E3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YcXtDe2GJbMrZTMgcinyxGclmEg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/6062af-53bc-435d-b5fb-a118498325f7/1/YcXtDe2GJbMrZTMgcinyxGclmEg.mft Manifest number: 1764 Signing time: Sat 06 Dec 2025 23:00:56 +0000 Manifest this update: Sat 06 Dec 2025 23:00:56 +0000 Manifest next update: Sun 07 Dec 2025 23:00:56 +0000 Files and hashes: 1: CYWLmYxcCQgki-Xk5YRvuSHALzs.roa (hash: 61Fic0FYH+kK7MaPnl8UV3ohGlvf2gRHDh8nlfVoQGY=) 2: YcXtDe2GJbMrZTMgcinyxGclmEg.crl (hash: zj3Bo9cNwPCQWSlJ5u8Jyt4sFB9l7NQjQ+r2ccpFNuY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/6062af-53bc-435d-b5fb-a118498325f7/1/YcXtDe2GJbMrZTMgcinyxGclmEg.crl rsync://rpki.ripe.net/repository/DEFAULT/59/6062af-53bc-435d-b5fb-a118498325f7/1/YcXtDe2GJbMrZTMgcinyxGclmEg.mft rsync://rpki.ripe.net/repository/DEFAULT/YcXtDe2GJbMrZTMgcinyxGclmEg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 21:29:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:e5:9a:fe:a4:8c:1b:a1:45:8a:0f:4e:9f:9d:68:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=61c5ed0ded8625b32b6533207229f2c467259848 Validity Not Before: Dec 6 23:00:56 2025 GMT Not After : Dec 7 23:00:56 2025 GMT Subject: CN=9799a19d3419591fe8220db1d0346f48b33aa4ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:56:ad:cb:fa:e7:2d:9d:bb:76:f2:d3:d2:3c: 59:4a:f9:0b:77:fb:ce:d0:42:bc:c9:fe:de:b5:58: e1:e0:ea:bd:5c:7d:fe:08:46:45:15:0c:a7:00:51: fa:e9:ee:81:45:fd:f5:2d:65:3c:51:69:ca:c6:54: 6f:03:13:9b:38:f6:5c:40:7d:70:05:a9:73:1d:d9: b7:e4:b1:a6:2d:e9:30:2e:84:b8:e6:74:b2:97:f6: 27:d7:ee:d0:28:ae:29:d6:6e:fb:94:0a:31:79:63: f7:10:45:4e:d5:51:27:98:d2:4e:6d:53:cb:7c:a9: 1b:2a:c6:a3:d2:69:55:73:b7:83:3b:db:c3:c4:5e: 5c:64:0c:76:14:fb:9c:3d:7a:65:85:e5:df:ed:81: ce:04:29:e9:4a:4b:60:34:d1:a5:e3:81:8c:2a:0b: d6:76:04:e2:19:3e:c1:70:a1:02:01:c6:89:e3:97: 55:e0:54:36:24:63:41:90:1b:8e:45:4e:d8:4b:64: de:28:a3:4a:49:39:20:cb:cb:14:e6:c1:98:e2:2b: 02:03:ae:c8:09:76:86:6a:61:58:c7:14:f9:24:c4: a2:ef:05:99:93:97:41:18:6f:48:1c:90:33:aa:c7: 4d:92:c7:5a:3c:79:ae:f2:9c:40:90:88:57:3a:f0: 0b:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:99:A1:9D:34:19:59:1F:E8:22:0D:B1:D0:34:6F:48:B3:3A:A4:EC X509v3 Authority Key Identifier: keyid:61:C5:ED:0D:ED:86:25:B3:2B:65:33:20:72:29:F2:C4:67:25:98:48 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YcXtDe2GJbMrZTMgcinyxGclmEg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/6062af-53bc-435d-b5fb-a118498325f7/1/YcXtDe2GJbMrZTMgcinyxGclmEg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/59/6062af-53bc-435d-b5fb-a118498325f7/1/YcXtDe2GJbMrZTMgcinyxGclmEg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 49:fc:ec:a9:ca:6e:b8:0f:c4:03:26:33:3a:a0:ab:a8:5c:5e: 7e:06:bb:8a:34:7f:34:b7:8b:01:a7:40:01:5e:e4:6c:bd:25: d8:db:24:61:07:12:6d:9b:0e:95:ba:9c:21:77:12:6f:96:a3: c8:6f:8c:5d:ee:3f:cf:23:02:49:37:b9:ca:af:eb:25:46:0f: 3d:d8:16:70:6a:98:79:23:e2:55:0a:a9:c8:02:7b:26:3f:15: 65:80:57:e2:0b:3d:99:45:f6:6b:3b:9a:12:b3:73:46:7c:60: 62:5a:dd:32:49:26:09:26:a0:2c:5a:bf:83:8a:50:b1:ad:d0: 40:c4:54:3c:12:27:10:af:f0:89:06:16:74:cf:20:83:1f:99: 4d:e6:af:db:92:7d:2c:59:7f:fd:49:73:fe:01:80:ea:25:6f: 0c:1d:30:d8:79:ce:3e:fa:d7:ec:39:41:18:84:b4:71:82:81: 06:4d:de:c2:51:e3:c7:72:3d:3f:85:cf:88:79:65:b8:04:96: 64:5a:e1:91:97:e4:c5:a0:f9:02:27:0c:50:87:e0:2e:c8:63: 7f:40:11:08:3c:6a:2c:99:b6:d6:26:12:ce:48:b4:51:6a:8c: 1d:41:a8:1e:df:22:ca:af:ea:f9:12:96:88:d8:dd:77:4a:df: 95:a0:fd:a4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr15Zr+pIwboUWKD06fnWjjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYxYzVlZDBkZWQ4NjI1YjMyYjY1MzMyMDcyMjlmMmM0Njcy NTk4NDgwHhcNMjUxMjA2MjMwMDU2WhcNMjUxMjA3MjMwMDU2WjAzMTEwLwYDVQQD Eyg5Nzk5YTE5ZDM0MTk1OTFmZTgyMjBkYjFkMDM0NmY0OGIzM2FhNGVjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzlaty/rnLZ27dvLT0jxZSvkLd/vO 0EK8yf7etVjh4Oq9XH3+CEZFFQynAFH66e6BRf31LWU8UWnKxlRvAxObOPZcQH1w BalzHdm35LGmLekwLoS45nSyl/Yn1+7QKK4p1m77lAoxeWP3EEVO1VEnmNJObVPL fKkbKsaj0mlVc7eDO9vDxF5cZAx2FPucPXplheXf7YHOBCnpSktgNNGl44GMKgvW dgTiGT7BcKECAcaJ45dV4FQ2JGNBkBuORU7YS2TeKKNKSTkgy8sU5sGY4isCA67I CXaGamFYxxT5JMSi7wWZk5dBGG9IHJAzqsdNksdaPHmu8pxAkIhXOvALeQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJeZoZ00GVkf6CINsdA0b0izOqTsMB8GA1UdIwQY MBaAFGHF7Q3thiWzK2UzIHIp8sRnJZhIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWWNYdERlMkdKYk1yWlRNZ2Npbnl4R2NsbUVnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OS82MDYyYWYtNTNiYy00MzVkLWI1ZmIt YTExODQ5ODMyNWY3LzEvWWNYdERlMkdKYk1yWlRNZ2Npbnl4R2NsbUVnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OS82MDYyYWYtNTNiYy00MzVkLWI1ZmItYTExODQ5ODMyNWY3 LzEvWWNYdERlMkdKYk1yWlRNZ2Npbnl4R2NsbUVnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASfzsqcpu uA/EAyYzOqCrqFxefga7ijR/NLeLAadAAV7kbL0l2NskYQcSbZsOlbqcIXcSb5aj yG+MXe4/zyMCSTe5yq/rJUYPPdgWcGqYeSPiVQqpyAJ7Jj8VZYBX4gs9mUX2azua ErNzRnxgYlrdMkkmCSagLFq/g4pQsa3QQMRUPBInEK/wiQYWdM8ggx+ZTeav25J9 LFl//Ulz/gGA6iVvDB0w2HnOPvrX7DlBGIS0cYKBBk3ewlHjx3I9P4XPiHlluASW ZFrhkZfkxaD5AicMUIfgLshjf0ARCDxqLJm21iYSzki0UWqMHUGoHt8iyq/q+RKW iNjdd0rflaD9pA== -----END CERTIFICATE-----Generated at Sun Dec 7 02:47:48 2025 by rpki-client