This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/296852-a8fd-48e5-8dd6-8abcbb65c621/1/yRjEAZR0zIHsZh_OZObJOJchlto.mft File: yRjEAZR0zIHsZh_OZObJOJchlto.mft (raw, json) Hash identifier: O/H2IVj4LCWjg1rHKYPg+J+FIcGITT2tu13p9LQCIro= Subject key identifier: 1C:8F:C5:3D:0C:46:FC:C0:F5:F2:AB:9F:D6:B2:44:CF:A8:01:1B:53 Authority key identifier: C9:18:C4:01:94:74:CC:81:EC:66:1F:CE:64:E6:C9:38:97:21:96:DA Certificate issuer: /CN=c918c4019474cc81ec661fce64e6c938972196da Certificate serial: 019AF23F6F408F96A060FD165D5E10D08AF9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yRjEAZR0zIHsZh_OZObJOJchlto.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/296852-a8fd-48e5-8dd6-8abcbb65c621/1/yRjEAZR0zIHsZh_OZObJOJchlto.mft Manifest number: 0704 Signing time: Sat 06 Dec 2025 06:00:34 +0000 Manifest this update: Sat 06 Dec 2025 06:00:34 +0000 Manifest next update: Sun 07 Dec 2025 06:00:34 +0000 Files and hashes: 1: Jsgd2QMS4v8iKbqKY7mpL6rgdrw.roa (hash: zUKbiJyZKBDLVjXxF3gSP5G2WQgNlz6YzfL6risxYY8=) 2: yRjEAZR0zIHsZh_OZObJOJchlto.crl (hash: y0l4En+eOiuTaCwZXCgPKW6EuCKecJ434SPyiLmgw4E=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/296852-a8fd-48e5-8dd6-8abcbb65c621/1/yRjEAZR0zIHsZh_OZObJOJchlto.crl rsync://rpki.ripe.net/repository/DEFAULT/61/296852-a8fd-48e5-8dd6-8abcbb65c621/1/yRjEAZR0zIHsZh_OZObJOJchlto.mft rsync://rpki.ripe.net/repository/DEFAULT/yRjEAZR0zIHsZh_OZObJOJchlto.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:3f:6f:40:8f:96:a0:60:fd:16:5d:5e:10:d0:8a:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c918c4019474cc81ec661fce64e6c938972196da Validity Not Before: Dec 6 06:00:34 2025 GMT Not After : Dec 7 06:00:34 2025 GMT Subject: CN=1c8fc53d0c46fcc0f5f2ab9fd6b244cfa8011b53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:46:60:46:9a:c7:41:94:1f:9f:7c:eb:30:0b: 39:6c:40:9f:8e:e2:aa:e4:53:ba:87:c1:cd:00:b4: 87:da:09:d3:57:09:26:da:c1:47:1a:b1:06:c5:41: ed:a9:94:4e:10:68:92:ce:35:af:26:6f:a4:b1:ff: 51:b4:6d:7a:d8:92:3d:5a:81:be:ec:4c:11:4a:9f: 2a:88:00:d9:c1:56:54:60:8c:7b:a1:4d:d2:5b:27: 12:fa:d8:12:ca:fa:c9:a0:b5:0e:1c:51:a4:b8:bf: dd:dd:0d:1f:5f:f7:7a:97:d8:47:cf:ba:2f:df:85: 75:da:17:6d:c0:7a:12:19:4c:68:36:53:aa:d9:44: 42:c7:21:1c:f9:11:68:06:3c:dc:7c:99:e6:0d:5a: ad:06:e6:11:e9:51:d8:d8:e6:5b:d4:04:c2:75:fc: d5:b1:e9:db:18:e0:8b:2f:7b:79:52:2a:78:af:dd: c4:ac:c9:ef:6f:36:c9:4f:c4:af:e1:ab:3a:58:16: ba:6a:09:bf:93:1f:f4:8e:79:6f:15:54:7d:d4:89: ad:41:11:dd:41:ec:93:7f:39:b3:0e:bd:d6:f0:f0: 73:40:4d:b7:57:16:75:39:47:03:a9:6d:70:53:f5: 63:2e:f9:2d:df:76:3a:19:dc:c2:44:21:20:44:79: 4d:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:8F:C5:3D:0C:46:FC:C0:F5:F2:AB:9F:D6:B2:44:CF:A8:01:1B:53 X509v3 Authority Key Identifier: keyid:C9:18:C4:01:94:74:CC:81:EC:66:1F:CE:64:E6:C9:38:97:21:96:DA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yRjEAZR0zIHsZh_OZObJOJchlto.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/296852-a8fd-48e5-8dd6-8abcbb65c621/1/yRjEAZR0zIHsZh_OZObJOJchlto.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/61/296852-a8fd-48e5-8dd6-8abcbb65c621/1/yRjEAZR0zIHsZh_OZObJOJchlto.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c1:24:35:6b:46:e0:cf:5b:8f:9d:2e:b1:0f:b3:c3:9d:e5:25: bb:6e:e5:b6:2f:bd:e7:a5:ca:17:b0:91:25:f6:64:6d:45:a5: 1a:ab:c5:43:5c:04:8f:d2:df:6e:2f:d8:a9:a1:f5:ae:7a:10: b4:8b:d2:6f:ae:f4:99:e2:3a:36:ce:27:c5:e5:6e:5e:f1:25: c5:0a:8b:b2:f3:6e:10:50:a7:9a:63:e5:49:0a:e3:0d:57:68: 5e:fb:76:75:f9:36:78:a2:1c:9e:34:af:dc:6e:ce:f4:f4:40: e1:c6:37:29:f5:ee:de:d7:6e:6b:17:fe:6a:4b:b0:72:91:2f: 12:e9:b3:8c:5b:12:cf:12:1d:5c:f9:ed:54:bb:61:1a:e2:12: d1:17:39:fe:8c:39:ae:5d:4d:74:92:cb:c5:32:9a:57:a7:f7: ca:5d:65:ee:c0:f6:57:7b:95:26:2e:6f:f8:8b:3d:c9:60:68: f0:34:0d:5c:09:d3:3b:22:d5:0a:60:e8:5c:ec:57:3f:b9:06: 41:73:5b:24:64:bc:b4:b2:6c:da:26:f3:4a:0f:83:39:46:5e: 8d:07:2f:4e:63:32:26:de:5a:10:b8:07:2f:cf:5f:62:fe:90: da:a5:06:7e:10:d1:e9:48:6c:ac:72:4c:91:0e:51:55:09:23: 5f:f1:0f:c4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryP29Aj5agYP0WXV4Q0Ir5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM5MThjNDAxOTQ3NGNjODFlYzY2MWZjZTY0ZTZjOTM4OTcy MTk2ZGEwHhcNMjUxMjA2MDYwMDM0WhcNMjUxMjA3MDYwMDM0WjAzMTEwLwYDVQQD EygxYzhmYzUzZDBjNDZmY2MwZjVmMmFiOWZkNmIyNDRjZmE4MDExYjUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArkZgRprHQZQfn3zrMAs5bECfjuKq 5FO6h8HNALSH2gnTVwkm2sFHGrEGxUHtqZROEGiSzjWvJm+ksf9RtG162JI9WoG+ 7EwRSp8qiADZwVZUYIx7oU3SWycS+tgSyvrJoLUOHFGkuL/d3Q0fX/d6l9hHz7ov 34V12hdtwHoSGUxoNlOq2URCxyEc+RFoBjzcfJnmDVqtBuYR6VHY2OZb1ATCdfzV senbGOCLL3t5Uip4r93ErMnvbzbJT8Sv4as6WBa6agm/kx/0jnlvFVR91ImtQRHd QeyTfzmzDr3W8PBzQE23VxZ1OUcDqW1wU/VjLvkt33Y6GdzCRCEgRHlNLwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFByPxT0MRvzA9fKrn9ayRM+oARtTMB8GA1UdIwQY MBaAFMkYxAGUdMyB7GYfzmTmyTiXIZbaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveVJqRUFaUjB6SUhzWmhfT1pPYkpPSmNobHRvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS8yOTY4NTItYThmZC00OGU1LThkZDYt OGFiY2JiNjVjNjIxLzEveVJqRUFaUjB6SUhzWmhfT1pPYkpPSmNobHRvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82MS8yOTY4NTItYThmZC00OGU1LThkZDYtOGFiY2JiNjVjNjIx LzEveVJqRUFaUjB6SUhzWmhfT1pPYkpPSmNobHRvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAwSQ1a0bg z1uPnS6xD7PDneUlu27lti+956XKF7CRJfZkbUWlGqvFQ1wEj9Lfbi/YqaH1rnoQ tIvSb670meI6Ns4nxeVuXvElxQqLsvNuEFCnmmPlSQrjDVdoXvt2dfk2eKIcnjSv 3G7O9PRA4cY3KfXu3tduaxf+akuwcpEvEumzjFsSzxIdXPntVLthGuIS0Rc5/ow5 rl1NdJLLxTKaV6f3yl1l7sD2V3uVJi5v+Is9yWBo8DQNXAnTOyLVCmDoXOxXP7kG QXNbJGS8tLJs2ibzSg+DOUZejQcvTmMyJt5aELgHL89fYv6Q2qUGfhDR6UhsrHJM kQ5RVQkjX/EPxA== -----END CERTIFICATE-----Generated at Sat Dec 6 07:45:58 2025 by rpki-client