This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/57bf89-fe3b-4c21-8ffb-e8754d005ebe/1/y2RbwP24YmvOLAQlxAh7VOFQ04Y.mft File: y2RbwP24YmvOLAQlxAh7VOFQ04Y.mft (raw, json) Hash identifier: 5ce3wxHIUYe8u6wrNxkVrkE1hUQgpPiOeyrElb46yCM= Subject key identifier: 91:36:F1:A6:8E:96:B9:2D:A4:3C:C2:CC:D5:2A:43:97:32:A9:08:C7 Authority key identifier: CB:64:5B:C0:FD:B8:62:6B:CE:2C:04:25:C4:08:7B:54:E1:50:D3:86 Certificate issuer: /CN=cb645bc0fdb8626bce2c0425c4087b54e150d386 Certificate serial: 019AF1D23F3FF35FFAFCA0F7D379D8C95931 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y2RbwP24YmvOLAQlxAh7VOFQ04Y.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/57bf89-fe3b-4c21-8ffb-e8754d005ebe/1/y2RbwP24YmvOLAQlxAh7VOFQ04Y.mft Manifest number: 1300 Signing time: Sat 06 Dec 2025 04:01:19 +0000 Manifest this update: Sat 06 Dec 2025 04:01:19 +0000 Manifest next update: Sun 07 Dec 2025 04:01:19 +0000 Files and hashes: 1: nPtNOVhjTVbNoPzqUJGa-Eqnb0Y.roa (hash: Yuz9f1rxV7S4atM+GycUQVhSQinvjc3oT1lXV1zOVuE=) 2: y2RbwP24YmvOLAQlxAh7VOFQ04Y.crl (hash: PI4EggDe+ogoCz4voypOdXJ+wvL629mid1Q3nSDnBFU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/57bf89-fe3b-4c21-8ffb-e8754d005ebe/1/y2RbwP24YmvOLAQlxAh7VOFQ04Y.crl rsync://rpki.ripe.net/repository/DEFAULT/64/57bf89-fe3b-4c21-8ffb-e8754d005ebe/1/y2RbwP24YmvOLAQlxAh7VOFQ04Y.mft rsync://rpki.ripe.net/repository/DEFAULT/y2RbwP24YmvOLAQlxAh7VOFQ04Y.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 04:01:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:d2:3f:3f:f3:5f:fa:fc:a0:f7:d3:79:d8:c9:59:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cb645bc0fdb8626bce2c0425c4087b54e150d386 Validity Not Before: Dec 6 04:01:19 2025 GMT Not After : Dec 7 04:01:19 2025 GMT Subject: CN=9136f1a68e96b92da43cc2ccd52a439732a908c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:55:32:45:87:10:8b:43:d9:b7:69:eb:d8:1c: a9:71:a9:ee:c8:33:aa:9b:73:e5:24:4b:8f:e7:db: c5:ef:06:fd:b4:ba:19:b8:30:ad:de:2c:9d:fb:bb: 54:eb:b8:a0:bf:83:62:e6:44:0f:75:95:a7:1e:f9: 30:aa:49:12:15:5b:7d:f8:47:75:a9:3d:f0:f9:70: 8f:af:23:e2:a3:dd:f5:08:70:74:9b:0d:e6:33:60: a6:b7:b6:49:df:0c:2b:d6:83:43:70:a5:25:b7:f5: 3b:45:fa:0b:f7:af:ee:e0:48:4d:12:42:3d:1e:5c: 91:2c:35:7e:41:c3:ea:bf:9a:eb:20:22:7b:f6:85: 2a:3a:6a:43:44:e4:e6:13:90:39:b2:82:7f:45:87: 30:15:39:25:e6:0f:51:cc:0b:4a:69:a6:89:2a:dd: 6c:d8:20:f8:79:30:6f:14:31:f3:96:69:fe:b6:0a: 47:3a:89:64:7b:f2:98:48:d0:ed:55:b0:f1:c7:64: 7a:ce:93:7f:56:5c:e8:24:a2:23:97:68:8c:0b:fd: ce:c8:bd:29:c2:ff:2c:73:49:cf:98:d3:1c:92:ad: 82:c4:6e:4e:8c:55:67:a9:05:51:ae:05:76:cf:6e: bf:84:70:84:6a:61:b6:b2:ad:30:fc:d6:df:13:8e: 59:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:36:F1:A6:8E:96:B9:2D:A4:3C:C2:CC:D5:2A:43:97:32:A9:08:C7 X509v3 Authority Key Identifier: keyid:CB:64:5B:C0:FD:B8:62:6B:CE:2C:04:25:C4:08:7B:54:E1:50:D3:86 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y2RbwP24YmvOLAQlxAh7VOFQ04Y.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/57bf89-fe3b-4c21-8ffb-e8754d005ebe/1/y2RbwP24YmvOLAQlxAh7VOFQ04Y.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/64/57bf89-fe3b-4c21-8ffb-e8754d005ebe/1/y2RbwP24YmvOLAQlxAh7VOFQ04Y.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 49:fe:46:7c:a8:47:6b:2b:bf:54:b9:1a:ae:ad:cd:20:ef:f6: f4:75:90:60:a8:fc:8c:42:2b:9d:60:9f:69:c9:9d:16:a4:4c: 4b:af:2d:ae:b1:06:e9:78:f9:eb:e9:cc:bb:c6:4e:2c:90:d1: ac:d3:b6:79:d2:18:c2:25:42:ed:d8:ac:e6:d8:28:93:5f:e7: 83:24:91:6e:67:e9:87:23:84:36:32:1e:78:1f:5d:41:24:80: 45:9c:55:1b:ae:49:5e:26:61:f7:b4:2d:c2:f7:e7:2a:86:e3: 0a:69:1a:dd:b0:f4:a5:a6:7e:02:89:2f:f4:56:1a:a7:06:b9: 86:21:db:e7:bf:de:3f:d0:35:78:dc:b9:99:a3:00:10:7d:ad: 19:28:14:c6:ed:5c:ac:fc:47:67:33:a8:7a:10:36:d4:5f:91: 47:0f:eb:cf:81:99:d2:86:6a:68:85:f1:7d:9b:e8:e4:dd:91: 4c:64:f7:c5:3a:e6:21:a1:ac:29:54:95:87:0e:b7:7c:f1:e5: 2b:5a:50:58:dc:5e:43:a5:8b:be:e0:02:71:77:1e:72:9c:84: 02:98:3f:3b:a7:62:5c:c5:95:38:46:c2:42:54:5c:5c:f2:c9: b5:e1:f1:ad:0a:a6:00:2b:49:52:a6:b0:9d:2b:79:eb:bd:31: 8c:d1:00:5a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrx0j8/81/6/KD303nYyVkxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNiNjQ1YmMwZmRiODYyNmJjZTJjMDQyNWM0MDg3YjU0ZTE1 MGQzODYwHhcNMjUxMjA2MDQwMTE5WhcNMjUxMjA3MDQwMTE5WjAzMTEwLwYDVQQD Eyg5MTM2ZjFhNjhlOTZiOTJkYTQzY2MyY2NkNTJhNDM5NzMyYTkwOGM3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnVUyRYcQi0PZt2nr2BypcanuyDOq m3PlJEuP59vF7wb9tLoZuDCt3iyd+7tU67igv4Ni5kQPdZWnHvkwqkkSFVt9+Ed1 qT3w+XCPryPio931CHB0mw3mM2Cmt7ZJ3wwr1oNDcKUlt/U7RfoL96/u4EhNEkI9 HlyRLDV+QcPqv5rrICJ79oUqOmpDROTmE5A5soJ/RYcwFTkl5g9RzAtKaaaJKt1s 2CD4eTBvFDHzlmn+tgpHOolke/KYSNDtVbDxx2R6zpN/VlzoJKIjl2iMC/3OyL0p wv8sc0nPmNMckq2CxG5OjFVnqQVRrgV2z26/hHCEamG2sq0w/NbfE45ZrQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJE28aaOlrktpDzCzNUqQ5cyqQjHMB8GA1UdIwQY MBaAFMtkW8D9uGJrziwEJcQIe1ThUNOGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveTJSYndQMjRZbXZPTEFRbHhBaDdWT0ZRMDRZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC81N2JmODktZmUzYi00YzIxLThmZmIt ZTg3NTRkMDA1ZWJlLzEveTJSYndQMjRZbXZPTEFRbHhBaDdWT0ZRMDRZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NC81N2JmODktZmUzYi00YzIxLThmZmItZTg3NTRkMDA1ZWJl LzEveTJSYndQMjRZbXZPTEFRbHhBaDdWT0ZRMDRZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASf5GfKhH ayu/VLkarq3NIO/29HWQYKj8jEIrnWCfacmdFqRMS68trrEG6Xj56+nMu8ZOLJDR rNO2edIYwiVC7dis5tgok1/ngySRbmfphyOENjIeeB9dQSSARZxVG65JXiZh97Qt wvfnKobjCmka3bD0paZ+Aokv9FYapwa5hiHb57/eP9A1eNy5maMAEH2tGSgUxu1c rPxHZzOoehA21F+RRw/rz4GZ0oZqaIXxfZvo5N2RTGT3xTrmIaGsKVSVhw63fPHl K1pQWNxeQ6WLvuACcXcecpyEApg/O6diXMWVOEbCQlRcXPLJteHxrQqmACtJUqaw nSt5670xjNEAWg== -----END CERTIFICATE-----Generated at Sat Dec 6 12:35:20 2025 by rpki-client