This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7fa791-b3c9-48ae-8034-c2104673c20b/1/0YZHAF-osG5H7i77_e3Jegx3Vfg.mft File: 0YZHAF-osG5H7i77_e3Jegx3Vfg.mft (raw, json) Hash identifier: H4FlshcuqBXPs1G+3oM3ehdRfD5Krz6q6H+V/NwU2Oc= Subject key identifier: 05:3F:82:4A:6B:E4:54:C2:AC:55:E3:48:5E:7D:BE:B5:EC:9C:F9:D3 Authority key identifier: D1:86:47:00:5F:A8:B0:6E:47:EE:2E:FB:FD:ED:C9:7A:0C:77:55:F8 Certificate issuer: /CN=d18647005fa8b06e47ee2efbfdedc97a0c7755f8 Certificate serial: 019AF12EFED3A7CFB76837A6AD46C3E7FBA1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0YZHAF-osG5H7i77_e3Jegx3Vfg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7fa791-b3c9-48ae-8034-c2104673c20b/1/0YZHAF-osG5H7i77_e3Jegx3Vfg.mft Manifest number: 1761 Signing time: Sat 06 Dec 2025 01:03:00 +0000 Manifest this update: Sat 06 Dec 2025 01:03:00 +0000 Manifest next update: Sun 07 Dec 2025 01:03:00 +0000 Files and hashes: 1: 0YZHAF-osG5H7i77_e3Jegx3Vfg.crl (hash: 9+I50uUkr6b/8fhH/7TJm7X79EB1XlGnt9W4BdbrjYM=) 2: ZyIu060SPaMWxMQNL4CIeyP46Zk.roa (hash: GVU/SWZQhKij7yAFfd4z7w9wi6LHgd9IcJaXLlSPbVg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/7fa791-b3c9-48ae-8034-c2104673c20b/1/0YZHAF-osG5H7i77_e3Jegx3Vfg.crl rsync://rpki.ripe.net/repository/DEFAULT/5b/7fa791-b3c9-48ae-8034-c2104673c20b/1/0YZHAF-osG5H7i77_e3Jegx3Vfg.mft rsync://rpki.ripe.net/repository/DEFAULT/0YZHAF-osG5H7i77_e3Jegx3Vfg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:03:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2e:fe:d3:a7:cf:b7:68:37:a6:ad:46:c3:e7:fb:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d18647005fa8b06e47ee2efbfdedc97a0c7755f8 Validity Not Before: Dec 6 01:03:00 2025 GMT Not After : Dec 7 01:03:00 2025 GMT Subject: CN=053f824a6be454c2ac55e3485e7dbeb5ec9cf9d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:fb:af:36:ee:ce:77:08:5c:82:84:c4:57:8d: da:c6:0d:25:65:ab:d1:96:28:3e:92:0c:81:35:ef: 18:34:b4:fc:5f:d9:6f:85:79:e2:0f:d8:8b:d8:e8: cb:4e:6f:4d:eb:cc:1d:0e:22:cf:b0:ca:c4:64:35: b5:71:5b:5d:e0:f4:27:fc:a3:9a:08:8c:3a:b9:ac: b1:34:fc:85:51:10:88:54:3b:8d:8b:5a:f9:ba:c3: b2:7e:d4:96:08:01:d1:5b:7c:10:d1:41:f9:97:13: 7b:da:65:80:1b:82:1f:85:ad:83:51:36:fc:5d:af: 68:bd:de:a2:05:95:c1:5c:7e:1b:9b:c7:86:c7:04: 6e:6c:4d:d5:99:25:00:e6:18:0f:3e:d9:ef:77:89: a7:d2:de:0e:40:c5:2f:46:c2:22:f5:44:ae:7c:c4: 67:d0:a1:5b:a0:70:a1:eb:85:37:b6:ea:0c:52:9f: c0:9b:c3:00:22:01:e3:56:b5:1f:bc:be:75:89:c6: c3:10:ae:91:df:f2:03:a1:5a:dc:19:34:e2:24:2d: 1c:50:ef:a2:2b:97:3e:ca:c5:2c:16:bf:c5:e6:18: 5b:75:ad:68:e3:78:0a:86:d6:bc:dd:2d:35:03:a8: d0:b6:59:b7:36:e8:c4:00:0f:6b:cb:ae:00:f5:46: 0e:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:3F:82:4A:6B:E4:54:C2:AC:55:E3:48:5E:7D:BE:B5:EC:9C:F9:D3 X509v3 Authority Key Identifier: keyid:D1:86:47:00:5F:A8:B0:6E:47:EE:2E:FB:FD:ED:C9:7A:0C:77:55:F8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0YZHAF-osG5H7i77_e3Jegx3Vfg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7fa791-b3c9-48ae-8034-c2104673c20b/1/0YZHAF-osG5H7i77_e3Jegx3Vfg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7fa791-b3c9-48ae-8034-c2104673c20b/1/0YZHAF-osG5H7i77_e3Jegx3Vfg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7f:b1:e0:62:01:d7:e3:d8:05:ea:de:10:30:26:5d:6d:40:46: 44:20:d3:3e:94:4e:a0:fd:00:a9:b8:c2:e5:e6:bf:b5:91:f9: 53:a3:38:93:f5:0e:a4:12:96:ed:b6:61:da:6b:4d:c4:19:69: 32:eb:3b:40:57:bd:3d:87:c5:56:12:b7:66:a7:25:3e:76:32: 16:6f:58:68:a2:f8:1b:16:ce:69:a3:bf:2f:b0:fb:a4:ed:aa: f8:62:d2:11:0c:2f:eb:36:84:e5:f2:5b:0f:78:63:74:57:c7: 11:93:36:07:b1:46:ec:5e:6d:e3:1a:a3:0d:da:31:c7:dc:32: d8:c0:39:80:98:5e:75:1a:8a:db:70:ba:41:dd:7c:12:00:a5: a0:b5:df:13:59:02:21:99:9d:7f:46:1f:c3:cf:26:be:bf:ae: d2:1d:58:47:60:46:b3:7f:21:13:59:9d:ad:a2:3d:c4:73:65: 56:27:26:5a:2d:95:34:5a:6c:1f:e6:7b:bf:01:1f:73:97:03: ed:26:f8:df:b7:0d:74:66:04:5a:5b:aa:3d:3e:44:4b:a3:5b: 7e:b9:03:aa:7d:20:55:06:9e:88:21:d6:2d:5e:95:eb:a4:0e: 69:c6:15:64:d2:06:b8:16:ba:85:89:46:93:c8:20:a0:55:6a: 87:76:3e:1c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLv7Tp8+3aDemrUbD5/uhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQxODY0NzAwNWZhOGIwNmU0N2VlMmVmYmZkZWRjOTdhMGM3 NzU1ZjgwHhcNMjUxMjA2MDEwMzAwWhcNMjUxMjA3MDEwMzAwWjAzMTEwLwYDVQQD EygwNTNmODI0YTZiZTQ1NGMyYWM1NWUzNDg1ZTdkYmViNWVjOWNmOWQzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy/uvNu7OdwhcgoTEV43axg0lZavR lig+kgyBNe8YNLT8X9lvhXniD9iL2OjLTm9N68wdDiLPsMrEZDW1cVtd4PQn/KOa CIw6uayxNPyFURCIVDuNi1r5usOyftSWCAHRW3wQ0UH5lxN72mWAG4Ifha2DUTb8 Xa9ovd6iBZXBXH4bm8eGxwRubE3VmSUA5hgPPtnvd4mn0t4OQMUvRsIi9USufMRn 0KFboHCh64U3tuoMUp/Am8MAIgHjVrUfvL51icbDEK6R3/IDoVrcGTTiJC0cUO+i K5c+ysUsFr/F5hhbda1o43gKhta83S01A6jQtlm3NujEAA9ry64A9UYOywIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAU/gkpr5FTCrFXjSF59vrXsnPnTMB8GA1UdIwQY MBaAFNGGRwBfqLBuR+4u+/3tyXoMd1X4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMFlaSEFGLW9zRzVIN2k3N19lM0plZ3gzVmZnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi83ZmE3OTEtYjNjOS00OGFlLTgwMzQt YzIxMDQ2NzNjMjBiLzEvMFlaSEFGLW9zRzVIN2k3N19lM0plZ3gzVmZnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yi83ZmE3OTEtYjNjOS00OGFlLTgwMzQtYzIxMDQ2NzNjMjBi LzEvMFlaSEFGLW9zRzVIN2k3N19lM0plZ3gzVmZnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAf7HgYgHX 49gF6t4QMCZdbUBGRCDTPpROoP0AqbjC5ea/tZH5U6M4k/UOpBKW7bZh2mtNxBlp Mus7QFe9PYfFVhK3ZqclPnYyFm9YaKL4GxbOaaO/L7D7pO2q+GLSEQwv6zaE5fJb D3hjdFfHEZM2B7FG7F5t4xqjDdoxx9wy2MA5gJhedRqK23C6Qd18EgCloLXfE1kC IZmdf0Yfw88mvr+u0h1YR2BGs38hE1mdraI9xHNlVicmWi2VNFpsH+Z7vwEfc5cD 7Sb437cNdGYEWluqPT5ES6NbfrkDqn0gVQaeiCHWLV6V66QOacYVZNIGuBa6hYlG k8ggoFVqh3Y+HA== -----END CERTIFICATE-----Generated at Sat Dec 6 06:58:39 2025 by rpki-client