This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/463666-00e0-492e-a463-0128d97179e8/1/YnqZUJ7VHfk6M_Kk4v1mLRyNZgs.mft File: YnqZUJ7VHfk6M_Kk4v1mLRyNZgs.mft (raw, json) Hash identifier: paVSk2fW3AulU6lvHog0xBOfgttf8sT1WNO0fWrbiSk= Subject key identifier: D5:B5:28:71:18:F9:4C:00:5E:02:1E:56:06:D7:39:3F:32:97:81:FB Authority key identifier: 62:7A:99:50:9E:D5:1D:F9:3A:33:F2:A4:E2:FD:66:2D:1C:8D:66:0B Certificate issuer: /CN=627a99509ed51df93a33f2a4e2fd662d1c8d660b Certificate serial: 019AF208BAF7A034A238E038EDF91865BC99 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YnqZUJ7VHfk6M_Kk4v1mLRyNZgs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/463666-00e0-492e-a463-0128d97179e8/1/YnqZUJ7VHfk6M_Kk4v1mLRyNZgs.mft Manifest number: 034F Signing time: Sat 06 Dec 2025 05:00:49 +0000 Manifest this update: Sat 06 Dec 2025 05:00:49 +0000 Manifest next update: Sun 07 Dec 2025 05:00:49 +0000 Files and hashes: 1: FRrrM4yAfnu6pnFh5wowlvqVDWA.roa (hash: Hv8/4ynB8VDf7OX62BWXwwqyCndg3mMaA+WdwhpJSlw=) 2: YnqZUJ7VHfk6M_Kk4v1mLRyNZgs.crl (hash: WEfmKATTyNfMdEIePYhlYr2W20ndHWw1Cazhmsw2QUo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/463666-00e0-492e-a463-0128d97179e8/1/YnqZUJ7VHfk6M_Kk4v1mLRyNZgs.crl rsync://rpki.ripe.net/repository/DEFAULT/5c/463666-00e0-492e-a463-0128d97179e8/1/YnqZUJ7VHfk6M_Kk4v1mLRyNZgs.mft rsync://rpki.ripe.net/repository/DEFAULT/YnqZUJ7VHfk6M_Kk4v1mLRyNZgs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:08:ba:f7:a0:34:a2:38:e0:38:ed:f9:18:65:bc:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=627a99509ed51df93a33f2a4e2fd662d1c8d660b Validity Not Before: Dec 6 05:00:49 2025 GMT Not After : Dec 7 05:00:49 2025 GMT Subject: CN=d5b5287118f94c005e021e5606d7393f329781fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:89:d7:e2:a6:ad:28:b7:3a:90:ec:d8:bb:41: 09:36:2c:24:e0:b8:19:af:a4:54:04:1d:27:6e:51: 36:cb:5c:32:1c:cb:8c:33:7c:9a:1e:28:c0:3e:c6: b3:8b:17:9d:b7:30:8d:fe:a6:0a:87:49:88:5a:76: e9:94:9d:59:a0:12:d1:f8:74:38:c3:36:45:e4:1b: 37:f4:ca:d1:a7:9e:e7:5c:d3:9c:41:ce:6c:d9:01: c1:1c:09:a5:c9:8a:d5:7b:88:98:1e:d5:8a:c4:bf: 15:fa:a1:9e:f7:08:aa:61:f0:28:9e:e1:d2:d6:80: de:00:53:a7:89:45:6b:60:e3:a2:18:0d:50:bb:42: c0:c1:e7:d6:23:cf:7d:86:20:ea:bf:78:5b:fb:81: b9:04:4c:70:5b:de:ef:11:ab:4c:15:32:35:4f:81: de:3b:4c:83:f6:8e:e7:ca:51:6c:4e:99:19:68:60: 60:54:5f:6a:75:0f:d4:a2:28:22:3a:4a:d3:82:55: 38:4a:db:e1:1a:5e:63:67:8a:c6:40:0b:b6:95:3f: dd:cc:af:48:07:51:1d:75:49:47:36:16:b9:60:4b: ce:dc:c1:69:5a:04:6d:c5:9e:8f:71:9f:b1:e8:3b: 42:58:52:d0:1d:73:8f:45:9c:1e:59:6f:5e:5c:42: 5e:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:B5:28:71:18:F9:4C:00:5E:02:1E:56:06:D7:39:3F:32:97:81:FB X509v3 Authority Key Identifier: keyid:62:7A:99:50:9E:D5:1D:F9:3A:33:F2:A4:E2:FD:66:2D:1C:8D:66:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YnqZUJ7VHfk6M_Kk4v1mLRyNZgs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/463666-00e0-492e-a463-0128d97179e8/1/YnqZUJ7VHfk6M_Kk4v1mLRyNZgs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/463666-00e0-492e-a463-0128d97179e8/1/YnqZUJ7VHfk6M_Kk4v1mLRyNZgs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 95:3a:c3:ba:4b:72:da:2d:5c:c0:15:ae:cf:9a:4e:a5:e5:62: 48:dc:50:2e:0a:2e:bd:cc:92:c9:a7:61:0f:07:a5:e2:9c:d3: 78:17:20:4f:45:64:43:ee:64:16:1a:b8:ce:f0:e1:c5:bd:d5: 2d:4c:a4:9b:58:28:59:7d:a8:b9:82:29:17:d3:1f:fb:77:87: 12:7e:d8:79:da:3d:8f:db:d0:7e:91:a2:38:da:42:c3:b0:0b: 1d:1a:58:c6:9c:8e:3a:49:00:3c:0f:b8:69:21:99:de:38:13: 89:6d:24:06:a1:0e:17:1c:ca:8e:bd:96:d2:4e:74:e1:96:99: c7:55:47:21:00:0d:9a:f1:66:3d:22:cb:c3:0e:b2:6d:4d:db: 22:56:57:43:da:00:cf:e3:2d:7b:1a:b0:ee:f7:4c:29:84:a3: 3b:35:41:72:6b:91:3e:14:9e:04:ed:eb:1c:8a:aa:18:d5:a2: 19:11:c6:97:ce:82:c5:13:d4:e0:bd:83:22:ea:fc:c5:87:9e: 3a:c1:a8:97:70:0a:07:8c:2e:66:4b:f3:ef:cc:84:b0:6e:e5: 3f:59:01:7b:cf:30:ba:b6:ae:b6:b9:54:44:c7:c9:bb:6d:99: 3a:0b:d7:8b:46:f3:2e:9a:20:fa:7c:76:14:6f:9f:a4:0f:31: 33:60:58:a7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCLr3oDSiOOA47fkYZbyZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYyN2E5OTUwOWVkNTFkZjkzYTMzZjJhNGUyZmQ2NjJkMWM4 ZDY2MGIwHhcNMjUxMjA2MDUwMDQ5WhcNMjUxMjA3MDUwMDQ5WjAzMTEwLwYDVQQD EyhkNWI1Mjg3MTE4Zjk0YzAwNWUwMjFlNTYwNmQ3MzkzZjMyOTc4MWZiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1InX4qatKLc6kOzYu0EJNiwk4LgZ r6RUBB0nblE2y1wyHMuMM3yaHijAPsazixedtzCN/qYKh0mIWnbplJ1ZoBLR+HQ4 wzZF5Bs39MrRp57nXNOcQc5s2QHBHAmlyYrVe4iYHtWKxL8V+qGe9wiqYfAonuHS 1oDeAFOniUVrYOOiGA1Qu0LAwefWI899hiDqv3hb+4G5BExwW97vEatMFTI1T4He O0yD9o7nylFsTpkZaGBgVF9qdQ/UoigiOkrTglU4StvhGl5jZ4rGQAu2lT/dzK9I B1EddUlHNha5YEvO3MFpWgRtxZ6PcZ+x6DtCWFLQHXOPRZweWW9eXEJe9wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNW1KHEY+UwAXgIeVgbXOT8yl4H7MB8GA1UdIwQY MBaAFGJ6mVCe1R35OjPypOL9Zi0cjWYLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWW5xWlVKN1ZIZms2TV9LazR2MW1MUnlOWmdzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yy80NjM2NjYtMDBlMC00OTJlLWE0NjMt MDEyOGQ5NzE3OWU4LzEvWW5xWlVKN1ZIZms2TV9LazR2MW1MUnlOWmdzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yy80NjM2NjYtMDBlMC00OTJlLWE0NjMtMDEyOGQ5NzE3OWU4 LzEvWW5xWlVKN1ZIZms2TV9LazR2MW1MUnlOWmdzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlTrDukty 2i1cwBWuz5pOpeViSNxQLgouvcySyadhDwel4pzTeBcgT0VkQ+5kFhq4zvDhxb3V LUykm1goWX2ouYIpF9Mf+3eHEn7Yedo9j9vQfpGiONpCw7ALHRpYxpyOOkkAPA+4 aSGZ3jgTiW0kBqEOFxzKjr2W0k504ZaZx1VHIQANmvFmPSLLww6ybU3bIlZXQ9oA z+Mtexqw7vdMKYSjOzVBcmuRPhSeBO3rHIqqGNWiGRHGl86CxRPU4L2DIur8xYee OsGol3AKB4wuZkvz78yEsG7lP1kBe88wurautrlURMfJu22ZOgvXi0bzLpog+nx2 FG+fpA8xM2BYpw== -----END CERTIFICATE-----Generated at Sat Dec 6 09:34:01 2025 by rpki-client