This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft File: ylF4miMTWsImjCKihWAKX5sFN3A.mft (raw, json) Hash identifier: XrE1+kQ2GzgPlryZ5QG65t7y2fppi+qmnVUiwtGCIes= Subject key identifier: A8:C3:8C:60:18:31:8A:C6:A7:9A:40:D6:23:33:0F:95:E4:60:AB:86 Authority key identifier: CA:51:78:9A:23:13:5A:C2:26:8C:22:A2:85:60:0A:5F:9B:05:37:70 Certificate issuer: /CN=ca51789a23135ac2268c22a285600a5f9b053770 Certificate serial: 019AF1D1EEDF2906E3479D9DE081704F6169 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ylF4miMTWsImjCKihWAKX5sFN3A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft Manifest number: 12C9 Signing time: Sat 06 Dec 2025 04:00:58 +0000 Manifest this update: Sat 06 Dec 2025 04:00:58 +0000 Manifest next update: Sun 07 Dec 2025 04:00:58 +0000 Files and hashes: 1: HAjyOzGCAwLUy5RivV8kbOy5Vu4.roa (hash: PsK5K2sZtAdplKvTizBojj+ePHRa8hE1Sr8s/0IgHpY=) 2: ylF4miMTWsImjCKihWAKX5sFN3A.crl (hash: DBEJF6gY//LE3MBc2jBSNaaRdvrmRSJLltPD8atRFMk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.crl rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft rsync://rpki.ripe.net/repository/DEFAULT/ylF4miMTWsImjCKihWAKX5sFN3A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:d1:ee:df:29:06:e3:47:9d:9d:e0:81:70:4f:61:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ca51789a23135ac2268c22a285600a5f9b053770 Validity Not Before: Dec 6 04:00:58 2025 GMT Not After : Dec 7 04:00:58 2025 GMT Subject: CN=a8c38c6018318ac6a79a40d623330f95e460ab86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:2b:36:a5:79:90:d5:47:74:44:1a:f6:5f:4a: 57:86:74:28:4b:24:08:1a:0c:99:44:ee:a1:b5:4a: 53:ef:7f:8a:8d:73:dc:86:f2:a1:1a:65:c2:0f:3a: f0:67:00:88:7a:9b:30:1e:b6:a1:76:43:90:33:57: 45:13:38:00:4f:65:15:93:24:1b:e0:c3:c2:be:0e: 42:ab:05:b9:a4:15:fc:dd:00:3c:c8:50:c1:1d:9d: 0c:79:0f:48:7d:5c:d3:dc:ad:fb:d4:6a:74:b9:a8: 09:6b:ad:2c:90:0a:05:c6:34:09:1b:fc:d3:48:81: 7b:81:77:be:12:02:25:79:43:92:da:bf:97:c3:4d: 8e:14:af:ed:15:63:ba:ca:cd:29:17:14:ac:b7:3a: 0e:47:9d:5c:20:99:a2:e6:a8:bf:4e:2f:5b:58:bf: 77:f4:fe:cc:19:24:f8:b7:5b:12:27:0c:34:06:e8: 3f:bd:8c:d8:cd:f5:7c:80:a9:46:49:99:4a:13:ad: dd:d7:34:64:48:c7:9a:5f:97:16:34:5f:5f:bc:55: 8c:eb:d7:e0:1b:5d:b0:fa:72:ff:e7:01:4b:47:77: cc:54:b4:78:2e:f8:8b:15:7a:64:a0:e8:aa:1f:df: bf:75:a9:b5:eb:aa:f8:22:a9:8b:0c:50:fb:f5:27: 7b:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:C3:8C:60:18:31:8A:C6:A7:9A:40:D6:23:33:0F:95:E4:60:AB:86 X509v3 Authority Key Identifier: keyid:CA:51:78:9A:23:13:5A:C2:26:8C:22:A2:85:60:0A:5F:9B:05:37:70 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ylF4miMTWsImjCKihWAKX5sFN3A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 82:9a:68:2a:44:4a:97:e5:56:71:c2:97:6e:b9:f5:55:88:ae: a8:9d:14:0f:99:ef:5e:10:bb:9d:83:11:d6:8d:98:96:a4:fa: 71:c7:74:c7:56:51:d4:e7:a1:93:aa:dd:fd:f0:08:13:4e:b0: 19:01:e2:e3:9d:c1:01:09:76:2a:33:e5:3c:1c:2a:65:bc:52: fb:99:7b:8b:05:7c:d5:ec:b5:ce:8e:61:93:97:4b:bc:c2:07: 21:70:b5:c6:5a:3b:2f:94:9e:90:1c:de:4a:b1:0f:4e:42:1a: 44:ec:99:03:38:6e:f7:06:d6:f9:e1:3e:87:7f:29:76:fe:6e: 40:a7:90:ee:de:b4:ed:2b:3f:ef:38:db:6e:a0:d8:7a:db:84: 95:5a:7b:0e:4f:40:9e:ca:a7:02:4c:61:cf:ee:c0:19:76:eb: 81:98:0a:fa:a5:bb:f0:c4:2a:91:96:26:8c:97:16:51:5b:de: 8f:6c:c4:79:25:0e:de:d9:10:43:1f:f3:4a:5d:09:cb:d6:10: 42:18:05:a4:0c:a9:2e:bd:32:40:37:be:c2:f9:80:c5:dc:d0: 34:ee:9d:b0:e6:28:a9:84:8d:86:1f:5e:ac:82:02:67:75:15: 63:25:83:82:21:31:ff:87:3d:db:0d:6d:21:e4:06:e5:54:fe: 4e:ae:2c:6c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrx0e7fKQbjR52d4IFwT2FpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNhNTE3ODlhMjMxMzVhYzIyNjhjMjJhMjg1NjAwYTVmOWIw NTM3NzAwHhcNMjUxMjA2MDQwMDU4WhcNMjUxMjA3MDQwMDU4WjAzMTEwLwYDVQQD EyhhOGMzOGM2MDE4MzE4YWM2YTc5YTQwZDYyMzMzMGY5NWU0NjBhYjg2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxSs2pXmQ1Ud0RBr2X0pXhnQoSyQI GgyZRO6htUpT73+KjXPchvKhGmXCDzrwZwCIepswHrahdkOQM1dFEzgAT2UVkyQb 4MPCvg5CqwW5pBX83QA8yFDBHZ0MeQ9IfVzT3K371Gp0uagJa60skAoFxjQJG/zT SIF7gXe+EgIleUOS2r+Xw02OFK/tFWO6ys0pFxSstzoOR51cIJmi5qi/Ti9bWL93 9P7MGST4t1sSJww0Bug/vYzYzfV8gKlGSZlKE63d1zRkSMeaX5cWNF9fvFWM69fg G12w+nL/5wFLR3fMVLR4LviLFXpkoOiqH9+/dam166r4IqmLDFD79Sd7awIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKjDjGAYMYrGp5pA1iMzD5XkYKuGMB8GA1UdIwQY MBaAFMpReJojE1rCJowiooVgCl+bBTdwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveWxGNG1pTVRXc0ltakNLaWhXQUtYNXNGTjNBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni9iNGJmNjAtZDU5My00MGQyLTk3ODMt MWUxOTE2OGY1ZDczLzEveWxGNG1pTVRXc0ltakNLaWhXQUtYNXNGTjNBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ni9iNGJmNjAtZDU5My00MGQyLTk3ODMtMWUxOTE2OGY1ZDcz LzEveWxGNG1pTVRXc0ltakNLaWhXQUtYNXNGTjNBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgppoKkRK l+VWccKXbrn1VYiuqJ0UD5nvXhC7nYMR1o2YlqT6ccd0x1ZR1Oehk6rd/fAIE06w GQHi453BAQl2KjPlPBwqZbxS+5l7iwV81ey1zo5hk5dLvMIHIXC1xlo7L5SekBze SrEPTkIaROyZAzhu9wbW+eE+h38pdv5uQKeQ7t607Ss/7zjbbqDYetuElVp7Dk9A nsqnAkxhz+7AGXbrgZgK+qW78MQqkZYmjJcWUVvej2zEeSUO3tkQQx/zSl0Jy9YQ QhgFpAypLr0yQDe+wvmAxdzQNO6dsOYoqYSNhh9erIICZ3UVYyWDgiEx/4c92w1t IeQG5VT+Tq4sbA== -----END CERTIFICATE-----Generated at Sat Dec 6 07:57:40 2025 by rpki-client