This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/b8ea83-4765-43a6-a54f-20d24900130a/1/yaOl5BHeryKE_9AVML-0H4Fsu6M.mft File: yaOl5BHeryKE_9AVML-0H4Fsu6M.mft (raw, json) Hash identifier: U4FIbfx+CYC/X/5x/VG8B4Z7c+qHryokiMAf/j4MNO4= Subject key identifier: 73:F7:5C:AB:9F:90:29:91:10:66:78:BE:41:F6:F9:F2:D5:76:2C:C4 Authority key identifier: C9:A3:A5:E4:11:DE:AF:22:84:FF:D0:15:30:BF:B4:1F:81:6C:BB:A3 Certificate issuer: /CN=c9a3a5e411deaf2284ffd01530bfb41f816cbba3 Certificate serial: 019B2BF916817AC0E1CAB5285DF2F43A9686 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yaOl5BHeryKE_9AVML-0H4Fsu6M.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/b8ea83-4765-43a6-a54f-20d24900130a/1/yaOl5BHeryKE_9AVML-0H4Fsu6M.mft Manifest number: 0557 Signing time: Wed 17 Dec 2025 11:01:43 +0000 Manifest this update: Wed 17 Dec 2025 11:01:43 +0000 Manifest next update: Thu 18 Dec 2025 11:01:43 +0000 Files and hashes: 1: 1-LEPBz6i6hImn3mV_S1v00A4A9I.roa (hash: n8X2YxrArW/csdR8L4lSuYzNuaLlfUpgcoHhlnq7ZqA=) 2: CRLKSL7jlflKsL6EjE4-moIQmCM.roa (hash: 6+JoZAmESgaN/76bU7Y5WiwYsPPWlXJLt1m1R/AMrUc=) 3: UVQQxsyFxE5G_GAZUd3A6ZXjkCE.roa (hash: zpm9oScjJUHtNk/CwO+EVZyjIHRYFCB8FAgH34Qnsvo=) 4: yaOl5BHeryKE_9AVML-0H4Fsu6M.crl (hash: EaQqHRn+GqsCrPsPZOyEPcDMzd+fqVG5AD40LQheteg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/b8ea83-4765-43a6-a54f-20d24900130a/1/yaOl5BHeryKE_9AVML-0H4Fsu6M.crl rsync://rpki.ripe.net/repository/DEFAULT/5c/b8ea83-4765-43a6-a54f-20d24900130a/1/yaOl5BHeryKE_9AVML-0H4Fsu6M.mft rsync://rpki.ripe.net/repository/DEFAULT/yaOl5BHeryKE_9AVML-0H4Fsu6M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 11:01:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2b:f9:16:81:7a:c0:e1:ca:b5:28:5d:f2:f4:3a:96:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c9a3a5e411deaf2284ffd01530bfb41f816cbba3 Validity Not Before: Dec 17 11:01:43 2025 GMT Not After : Dec 18 11:01:43 2025 GMT Subject: CN=73f75cab9f902991106678be41f6f9f2d5762cc4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:9b:88:4d:77:93:e1:e0:dd:63:f4:dd:08:49: d3:69:3d:03:17:f5:19:13:78:b3:3e:95:b3:c7:c7: 96:7d:56:0b:fa:c1:3a:e7:67:dd:db:93:05:3b:e2: ef:e8:d4:03:95:f0:eb:a4:98:ad:a3:ad:2c:e5:27: 0c:9c:df:16:fa:68:0b:99:4d:9f:5f:9b:cd:de:65: 6d:0e:df:a5:3b:87:d9:66:ed:40:87:97:77:31:30: 9c:26:f2:46:af:17:03:48:01:29:8b:a2:ad:82:43: 49:89:4a:02:0d:0a:a2:1e:ec:c1:b8:e9:7a:fe:17: dc:5f:24:8c:14:51:ea:fe:2f:19:8e:e9:28:14:12: 79:24:dc:13:bf:a2:9b:74:79:49:9f:a0:af:fb:94: c6:40:4a:bb:e9:02:b2:80:bf:ed:95:57:d5:0a:a7: bb:75:7d:41:c8:3b:24:e6:21:8f:a6:a6:87:13:04: 40:c9:6c:e1:ca:33:44:34:ae:3d:fb:e5:b8:8d:e7: 00:0e:ad:71:2b:1b:f8:da:b8:bd:a4:47:c5:36:00: 6e:99:9b:e4:c1:c9:74:54:b6:a0:2f:62:f4:95:27: 63:2e:3b:9c:c6:5a:e4:c1:2a:2b:95:1f:97:12:6c: 94:c1:7d:50:2c:23:1f:14:f9:51:d9:30:0c:cf:09: e5:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:F7:5C:AB:9F:90:29:91:10:66:78:BE:41:F6:F9:F2:D5:76:2C:C4 X509v3 Authority Key Identifier: keyid:C9:A3:A5:E4:11:DE:AF:22:84:FF:D0:15:30:BF:B4:1F:81:6C:BB:A3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yaOl5BHeryKE_9AVML-0H4Fsu6M.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/b8ea83-4765-43a6-a54f-20d24900130a/1/yaOl5BHeryKE_9AVML-0H4Fsu6M.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/b8ea83-4765-43a6-a54f-20d24900130a/1/yaOl5BHeryKE_9AVML-0H4Fsu6M.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 48:ef:1f:42:76:68:69:98:cd:8a:fa:45:3f:10:79:13:65:54: 69:80:9b:72:58:97:e6:37:2c:77:27:fa:f4:23:d6:48:c4:2c: d8:ec:ed:24:bb:88:8a:df:f4:c4:60:a5:7f:2a:14:61:bc:cf: 88:94:7a:d4:2a:0d:b7:19:e4:80:2c:df:a4:ef:72:e5:68:75: 7b:42:8a:81:cb:26:62:b2:8b:a7:c6:23:83:b9:74:40:d5:0e: 42:40:ac:83:e1:6b:8f:d9:d6:a5:0e:a8:0f:25:cf:92:38:4e: 4b:77:af:9b:f3:8a:b6:d0:ba:c0:5c:e9:d7:75:dc:1d:15:5c: 58:6b:9b:1f:76:0f:f6:b5:49:16:dd:00:31:34:66:b4:61:ec: a7:b4:88:a4:29:73:55:dd:eb:1f:65:0e:3b:80:bc:af:19:2a: c8:e2:79:f3:04:ef:aa:52:75:96:91:d3:35:40:f5:9b:e0:dc: b2:5a:99:67:ed:b4:26:32:d9:04:b2:5f:78:6d:d8:98:a5:0a: 1a:64:13:d0:9d:27:78:9e:3e:39:db:72:7e:b2:eb:d7:2a:26: 42:e4:aa:27:38:5f:e1:c5:41:65:e6:a0:d4:6d:70:e9:d3:4d: 99:77:ef:97:39:60:60:8e:43:b5:0e:0a:7c:50:64:97:40:73: 2b:4b:63:25 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsr+RaBesDhyrUoXfL0OpaGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM5YTNhNWU0MTFkZWFmMjI4NGZmZDAxNTMwYmZiNDFmODE2 Y2JiYTMwHhcNMjUxMjE3MTEwMTQzWhcNMjUxMjE4MTEwMTQzWjAzMTEwLwYDVQQD Eyg3M2Y3NWNhYjlmOTAyOTkxMTA2Njc4YmU0MWY2ZjlmMmQ1NzYyY2M0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqpuITXeT4eDdY/TdCEnTaT0DF/UZ E3izPpWzx8eWfVYL+sE652fd25MFO+Lv6NQDlfDrpJito60s5ScMnN8W+mgLmU2f X5vN3mVtDt+lO4fZZu1Ah5d3MTCcJvJGrxcDSAEpi6KtgkNJiUoCDQqiHuzBuOl6 /hfcXySMFFHq/i8ZjukoFBJ5JNwTv6KbdHlJn6Cv+5TGQEq76QKygL/tlVfVCqe7 dX1ByDsk5iGPpqaHEwRAyWzhyjNENK49++W4jecADq1xKxv42ri9pEfFNgBumZvk wcl0VLagL2L0lSdjLjucxlrkwSorlR+XEmyUwX1QLCMfFPlR2TAMzwnl9wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHP3XKufkCmREGZ4vkH2+fLVdizEMB8GA1UdIwQY MBaAFMmjpeQR3q8ihP/QFTC/tB+BbLujMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveWFPbDVCSGVyeUtFXzlBVk1MLTBINEZzdTZNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yy9iOGVhODMtNDc2NS00M2E2LWE1NGYt MjBkMjQ5MDAxMzBhLzEveWFPbDVCSGVyeUtFXzlBVk1MLTBINEZzdTZNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yy9iOGVhODMtNDc2NS00M2E2LWE1NGYtMjBkMjQ5MDAxMzBh LzEveWFPbDVCSGVyeUtFXzlBVk1MLTBINEZzdTZNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASO8fQnZo aZjNivpFPxB5E2VUaYCbcliX5jcsdyf69CPWSMQs2OztJLuIit/0xGClfyoUYbzP iJR61CoNtxnkgCzfpO9y5Wh1e0KKgcsmYrKLp8Yjg7l0QNUOQkCsg+Frj9nWpQ6o DyXPkjhOS3evm/OKttC6wFzp13XcHRVcWGubH3YP9rVJFt0AMTRmtGHsp7SIpClz Vd3rH2UOO4C8rxkqyOJ58wTvqlJ1lpHTNUD1m+DcslqZZ+20JjLZBLJfeG3YmKUK GmQT0J0neJ4+OdtyfrLr1yomQuSqJzhf4cVBZeag1G1w6dNNmXfvlzlgYI5DtQ4K fFBkl0BzK0tjJQ== -----END CERTIFICATE-----Generated at Wed Dec 17 21:58:42 2025 by rpki-client