This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/decde3-277a-4956-bf92-f0a8123e70f9/1/YL83NiAUbm8piugtLIqDccrLexs.mft File: YL83NiAUbm8piugtLIqDccrLexs.mft (raw, json) Hash identifier: BECpmHkpyQsAG33ob/DfJby6EnNU+QzQC18Cw1N4zn8= Subject key identifier: B2:D0:73:89:23:40:3D:A6:1B:ED:86:68:A4:52:BE:19:05:81:0D:F1 Authority key identifier: 60:BF:37:36:20:14:6E:6F:29:8A:E8:2D:2C:8A:83:71:CA:CB:7B:1B Certificate issuer: /CN=60bf373620146e6f298ae82d2c8a8371cacb7b1b Certificate serial: 019AF12D699D2716591D84BFEB218B2D65F4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YL83NiAUbm8piugtLIqDccrLexs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/decde3-277a-4956-bf92-f0a8123e70f9/1/YL83NiAUbm8piugtLIqDccrLexs.mft Manifest number: 1761 Signing time: Sat 06 Dec 2025 01:01:16 +0000 Manifest this update: Sat 06 Dec 2025 01:01:16 +0000 Manifest next update: Sun 07 Dec 2025 01:01:16 +0000 Files and hashes: 1: FcPpw1IibzSy4BenkulclpDum4U.roa (hash: HSUDUncC0CCpqaUKBhWSJTD0GmSsEAzCocsfF6H1tqA=) 2: YL83NiAUbm8piugtLIqDccrLexs.crl (hash: d9lTUOgz0lq02tHK/guhCN+o24TjMaxYawUfv2ZSJFI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/decde3-277a-4956-bf92-f0a8123e70f9/1/YL83NiAUbm8piugtLIqDccrLexs.crl rsync://rpki.ripe.net/repository/DEFAULT/5b/decde3-277a-4956-bf92-f0a8123e70f9/1/YL83NiAUbm8piugtLIqDccrLexs.mft rsync://rpki.ripe.net/repository/DEFAULT/YL83NiAUbm8piugtLIqDccrLexs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:01:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2d:69:9d:27:16:59:1d:84:bf:eb:21:8b:2d:65:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=60bf373620146e6f298ae82d2c8a8371cacb7b1b Validity Not Before: Dec 6 01:01:16 2025 GMT Not After : Dec 7 01:01:16 2025 GMT Subject: CN=b2d0738923403da61bed8668a452be1905810df1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:68:ec:64:fd:ef:1b:d3:28:c2:19:86:3f:87: 28:88:22:39:23:0c:0f:57:fa:e2:fc:ba:f0:93:07: 2a:69:82:b9:f5:e8:dc:a9:be:f3:73:76:6b:be:d2: fb:8a:e3:68:c4:73:2c:d3:88:95:31:d0:f3:10:f2: fd:fd:45:b1:7b:a1:70:99:b1:3b:30:ca:eb:64:8d: 1a:34:ad:03:2b:b6:f0:61:b1:aa:30:41:df:8d:f2: 2f:9e:92:23:e3:c5:87:44:5c:8b:22:07:38:bc:1b: c8:e8:68:2c:8d:7f:89:3a:0f:1d:c9:6f:e1:48:89: 82:10:0d:ab:ef:fa:a1:1c:bc:50:a7:60:f7:ec:5f: 8b:cf:4c:79:63:96:ff:48:9a:86:a7:73:39:e6:c4: 31:b3:16:8f:07:4e:c3:18:35:8c:70:a2:6e:5f:d1: 4f:b2:4e:14:f1:80:ad:f6:7b:7b:51:49:6c:cf:04: 6e:06:81:1c:24:7f:4c:12:2b:0d:cd:1a:29:ca:09: be:d7:54:ee:22:67:b6:fd:77:1a:6c:36:d1:55:e7: 48:67:90:91:b3:2c:8d:dd:1e:24:62:cf:55:cf:79: 8b:9f:56:41:7a:e3:1c:fa:47:e0:d8:01:63:74:33: 6f:5c:cb:85:4f:3c:d6:a4:51:1f:df:13:88:45:cf: 27:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:D0:73:89:23:40:3D:A6:1B:ED:86:68:A4:52:BE:19:05:81:0D:F1 X509v3 Authority Key Identifier: keyid:60:BF:37:36:20:14:6E:6F:29:8A:E8:2D:2C:8A:83:71:CA:CB:7B:1B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YL83NiAUbm8piugtLIqDccrLexs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/decde3-277a-4956-bf92-f0a8123e70f9/1/YL83NiAUbm8piugtLIqDccrLexs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/decde3-277a-4956-bf92-f0a8123e70f9/1/YL83NiAUbm8piugtLIqDccrLexs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 85:c1:0a:08:d0:55:2f:f0:94:e4:c6:13:1e:d1:49:e7:2a:2d: 47:f8:4f:78:85:69:db:40:ff:4c:dd:ad:00:b5:5b:9d:41:0a: d4:ab:67:dd:23:f2:1b:93:86:7b:22:d1:ea:00:8b:33:9d:1a: 4b:0f:e3:77:df:8e:d1:37:f0:a3:99:9f:99:b8:d2:26:52:2c: ac:9d:93:5d:1b:e8:06:34:2f:7f:e5:97:8b:bc:09:8c:b9:2a: e3:18:57:b9:d9:ad:77:89:a3:a0:90:b1:20:9a:95:70:97:7a: a8:1e:4b:ff:c3:0e:28:15:88:07:e4:96:05:c9:53:fa:eb:e5: 53:8a:6b:fb:0a:c8:d5:49:03:ae:ff:5a:6a:f7:9d:a6:95:68: cc:d6:89:e6:48:3a:57:cc:ee:d7:db:a4:5b:db:e7:c0:22:d3: 81:b0:19:46:d5:13:71:c8:1d:93:7b:3e:df:fc:1a:5b:31:59: 14:73:17:fc:b2:50:83:0d:44:7a:34:0a:a7:45:48:14:47:77: 54:f9:1f:7a:6b:44:a1:8b:a6:6a:c2:d1:37:d8:2a:6b:9a:ae: a4:b6:c2:7c:ec:6e:bc:8b:03:4c:79:ba:af:22:53:40:33:46: 60:f1:ee:0b:d2:37:dd:e9:5c:a5:38:9b:a9:28:9d:75:d4:21: de:bd:48:73 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLWmdJxZZHYS/6yGLLWX0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwYmYzNzM2MjAxNDZlNmYyOThhZTgyZDJjOGE4MzcxY2Fj YjdiMWIwHhcNMjUxMjA2MDEwMTE2WhcNMjUxMjA3MDEwMTE2WjAzMTEwLwYDVQQD EyhiMmQwNzM4OTIzNDAzZGE2MWJlZDg2NjhhNDUyYmUxOTA1ODEwZGYxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqWjsZP3vG9MowhmGP4coiCI5IwwP V/ri/LrwkwcqaYK59ejcqb7zc3ZrvtL7iuNoxHMs04iVMdDzEPL9/UWxe6FwmbE7 MMrrZI0aNK0DK7bwYbGqMEHfjfIvnpIj48WHRFyLIgc4vBvI6GgsjX+JOg8dyW/h SImCEA2r7/qhHLxQp2D37F+Lz0x5Y5b/SJqGp3M55sQxsxaPB07DGDWMcKJuX9FP sk4U8YCt9nt7UUlszwRuBoEcJH9MEisNzRopygm+11TuIme2/XcabDbRVedIZ5CR syyN3R4kYs9Vz3mLn1ZBeuMc+kfg2AFjdDNvXMuFTzzWpFEf3xOIRc8nvwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLLQc4kjQD2mG+2GaKRSvhkFgQ3xMB8GA1UdIwQY MBaAFGC/NzYgFG5vKYroLSyKg3HKy3sbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWUw4M05pQVVibThwaXVndExJcURjY3JMZXhzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi9kZWNkZTMtMjc3YS00OTU2LWJmOTIt ZjBhODEyM2U3MGY5LzEvWUw4M05pQVVibThwaXVndExJcURjY3JMZXhzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yi9kZWNkZTMtMjc3YS00OTU2LWJmOTItZjBhODEyM2U3MGY5 LzEvWUw4M05pQVVibThwaXVndExJcURjY3JMZXhzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhcEKCNBV L/CU5MYTHtFJ5yotR/hPeIVp20D/TN2tALVbnUEK1Ktn3SPyG5OGeyLR6gCLM50a Sw/jd9+O0Tfwo5mfmbjSJlIsrJ2TXRvoBjQvf+WXi7wJjLkq4xhXudmtd4mjoJCx IJqVcJd6qB5L/8MOKBWIB+SWBclT+uvlU4pr+wrI1UkDrv9aavedppVozNaJ5kg6 V8zu19ukW9vnwCLTgbAZRtUTccgdk3s+3/waWzFZFHMX/LJQgw1EejQKp0VIFEd3 VPkfemtEoYumasLRN9gqa5qupLbCfOxuvIsDTHm6ryJTQDNGYPHuC9I33elcpTib qSidddQh3r1Icw== -----END CERTIFICATE-----Generated at Sat Dec 6 11:32:51 2025 by rpki-client