This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/1f431e-37c8-4080-9bb3-416204a02737/1/yQDj7qi7474R-IxoK9E4wmUH99w.mft File: yQDj7qi7474R-IxoK9E4wmUH99w.mft (raw, json) Hash identifier: 5OsO3hL8P5w3hmbXOl46sDOYydNOdCT3NKQmD2X8YJU= Subject key identifier: 72:08:1C:9B:D6:08:F0:98:53:F6:6B:92:1F:A3:13:F2:A3:64:48:5E Authority key identifier: C9:00:E3:EE:A8:BB:E3:BE:11:F8:8C:68:2B:D1:38:C2:65:07:F7:DC Certificate issuer: /CN=c900e3eea8bbe3be11f88c682bd138c26507f7dc Certificate serial: 019AF31BF1CF65209F243188C00670A5296F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yQDj7qi7474R-IxoK9E4wmUH99w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/1f431e-37c8-4080-9bb3-416204a02737/1/yQDj7qi7474R-IxoK9E4wmUH99w.mft Manifest number: 0E47 Signing time: Sat 06 Dec 2025 10:01:26 +0000 Manifest this update: Sat 06 Dec 2025 10:01:26 +0000 Manifest next update: Sun 07 Dec 2025 10:01:26 +0000 Files and hashes: 1: yQDj7qi7474R-IxoK9E4wmUH99w.crl (hash: VldxAv3/BnFnakqJOux3eAu6XB0glkQwUl8snQz9qF8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5e/1f431e-37c8-4080-9bb3-416204a02737/1/yQDj7qi7474R-IxoK9E4wmUH99w.crl rsync://rpki.ripe.net/repository/DEFAULT/5e/1f431e-37c8-4080-9bb3-416204a02737/1/yQDj7qi7474R-IxoK9E4wmUH99w.mft rsync://rpki.ripe.net/repository/DEFAULT/yQDj7qi7474R-IxoK9E4wmUH99w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 10:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:1b:f1:cf:65:20:9f:24:31:88:c0:06:70:a5:29:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c900e3eea8bbe3be11f88c682bd138c26507f7dc Validity Not Before: Dec 6 10:01:26 2025 GMT Not After : Dec 7 10:01:26 2025 GMT Subject: CN=72081c9bd608f09853f66b921fa313f2a364485e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:1d:af:af:57:17:a4:33:70:f7:fd:07:61:42: a4:a0:d2:57:14:30:63:53:03:58:f5:55:e0:5e:a0: e9:d8:f5:f7:a9:e4:77:57:8e:ab:a4:22:31:91:35: 4b:10:57:45:e0:89:55:5c:4a:b0:3d:04:d4:dd:7a: 11:01:72:f8:1d:c3:cf:82:ec:65:e6:c6:4a:09:f8: 9b:70:77:f0:37:b4:48:dc:bb:70:8b:5b:11:09:e1: 1f:fb:b6:80:62:35:23:fd:a1:67:e0:9a:5a:b5:36: 24:33:dd:5e:52:83:32:5c:fb:78:9b:66:23:dc:f9: d4:bf:32:7f:5c:97:33:6f:87:25:eb:f5:c3:ac:b2: f4:ca:03:45:67:42:c8:0e:58:fd:4c:98:6a:ea:cb: 76:8f:88:b0:8d:57:e2:ad:b4:a0:93:d4:9b:60:4c: 04:33:ae:f4:ef:89:0b:53:42:a1:da:ee:66:ba:42: 22:64:97:50:2a:d6:32:39:a2:f3:a9:c8:eb:20:29: b3:84:64:d9:b0:6c:76:97:0d:6d:0a:39:28:5d:1b: 98:d6:6f:25:a3:fc:71:c6:2d:2d:6b:f1:82:69:d3: ab:18:87:61:f3:b9:5a:08:25:ef:2f:fa:cb:aa:2e: 87:43:d9:8d:7f:27:ee:02:50:fa:ab:f4:28:d0:73: d4:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:08:1C:9B:D6:08:F0:98:53:F6:6B:92:1F:A3:13:F2:A3:64:48:5E X509v3 Authority Key Identifier: keyid:C9:00:E3:EE:A8:BB:E3:BE:11:F8:8C:68:2B:D1:38:C2:65:07:F7:DC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yQDj7qi7474R-IxoK9E4wmUH99w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/1f431e-37c8-4080-9bb3-416204a02737/1/yQDj7qi7474R-IxoK9E4wmUH99w.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/1f431e-37c8-4080-9bb3-416204a02737/1/yQDj7qi7474R-IxoK9E4wmUH99w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 07:89:64:4d:45:92:81:f0:ed:69:f0:04:1b:89:a4:72:5e:93: 3d:6d:d4:85:d8:02:0b:9d:b7:1b:99:7d:01:f6:05:70:ea:6a: 03:49:87:0a:2b:b6:95:df:71:51:24:ab:c5:87:c4:fa:e3:e4: da:9a:bc:73:2e:bb:0f:27:46:1b:9a:50:bf:ae:f9:73:c2:70: 79:23:bf:13:4e:4b:41:89:d1:44:11:b4:15:16:de:b6:a4:3f: 19:ef:c0:49:ca:63:4a:f0:66:f0:d7:fb:f5:ed:de:cb:80:15: 5a:3a:cf:49:99:89:a8:ae:78:a3:ec:e9:7d:fd:11:5f:a2:a2: 5a:f4:15:d8:be:64:44:41:eb:f9:8d:3f:1f:83:eb:5d:6f:08: d8:66:71:8e:18:1d:5c:a8:49:78:3e:4d:c8:d7:2b:08:7d:db: 90:9b:b0:db:41:24:eb:45:35:98:27:a3:c6:d1:b8:76:01:e0: 64:5c:70:cb:bb:9d:a4:88:42:70:8a:2e:64:59:53:16:8b:f5: 04:c7:e5:37:58:14:7e:2c:60:33:cc:d0:ed:6f:b2:00:85:0f: 0a:48:75:6c:56:2c:df:2a:13:da:09:46:f4:cc:11:eb:4f:58: 1d:d0:e2:f3:a2:6f:7b:48:a6:ed:8e:af:69:b6:d6:7d:d0:e8: 0e:89:3e:39 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzG/HPZSCfJDGIwAZwpSlvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM5MDBlM2VlYThiYmUzYmUxMWY4OGM2ODJiZDEzOGMyNjUw N2Y3ZGMwHhcNMjUxMjA2MTAwMTI2WhcNMjUxMjA3MTAwMTI2WjAzMTEwLwYDVQQD Eyg3MjA4MWM5YmQ2MDhmMDk4NTNmNjZiOTIxZmEzMTNmMmEzNjQ0ODVlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1B2vr1cXpDNw9/0HYUKkoNJXFDBj UwNY9VXgXqDp2PX3qeR3V46rpCIxkTVLEFdF4IlVXEqwPQTU3XoRAXL4HcPPguxl 5sZKCfibcHfwN7RI3Ltwi1sRCeEf+7aAYjUj/aFn4JpatTYkM91eUoMyXPt4m2Yj 3PnUvzJ/XJczb4cl6/XDrLL0ygNFZ0LIDlj9TJhq6st2j4iwjVfirbSgk9SbYEwE M67074kLU0Kh2u5mukIiZJdQKtYyOaLzqcjrICmzhGTZsGx2lw1tCjkoXRuY1m8l o/xxxi0ta/GCadOrGIdh87laCCXvL/rLqi6HQ9mNfyfuAlD6q/Qo0HPUhQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHIIHJvWCPCYU/Zrkh+jE/KjZEheMB8GA1UdIwQY MBaAFMkA4+6ou+O+EfiMaCvROMJlB/fcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveVFEajdxaTc0NzRSLUl4b0s5RTR3bVVIOTl3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZS8xZjQzMWUtMzdjOC00MDgwLTliYjMt NDE2MjA0YTAyNzM3LzEveVFEajdxaTc0NzRSLUl4b0s5RTR3bVVIOTl3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81ZS8xZjQzMWUtMzdjOC00MDgwLTliYjMtNDE2MjA0YTAyNzM3 LzEveVFEajdxaTc0NzRSLUl4b0s5RTR3bVVIOTl3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAB4lkTUWS gfDtafAEG4mkcl6TPW3UhdgCC523G5l9AfYFcOpqA0mHCiu2ld9xUSSrxYfE+uPk 2pq8cy67DydGG5pQv675c8JweSO/E05LQYnRRBG0FRbetqQ/Ge/AScpjSvBm8Nf7 9e3ey4AVWjrPSZmJqK54o+zpff0RX6KiWvQV2L5kREHr+Y0/H4PrXW8I2GZxjhgd XKhJeD5NyNcrCH3bkJuw20Ek60U1mCejxtG4dgHgZFxwy7udpIhCcIouZFlTFov1 BMflN1gUfixgM8zQ7W+yAIUPCkh1bFYs3yoT2glG9MwR609YHdDi86Jve0im7Y6v abbWfdDoDok+OQ== -----END CERTIFICATE-----Generated at Sat Dec 6 17:05:09 2025 by rpki-client