This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/279b66-38f1-41a5-90e2-946da5f5efbb/1/ymFHjk1lm-zoIDxei6jo-C8EcNc.mft File: ymFHjk1lm-zoIDxei6jo-C8EcNc.mft (raw, json) Hash identifier: sOQfrbRGpVZX11z/ItAdX0ukC0Q84iz5lgnWH5PQL20= Subject key identifier: D4:16:B9:E4:1F:BF:3B:53:29:3D:69:A2:DA:40:5A:05:81:6E:8D:AC Authority key identifier: CA:61:47:8E:4D:65:9B:EC:E8:20:3C:5E:8B:A8:E8:F8:2F:04:70:D7 Certificate issuer: /CN=ca61478e4d659bece8203c5e8ba8e8f82f0470d7 Certificate serial: 019AF2767DDF420745F4F879E58452655896 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ymFHjk1lm-zoIDxei6jo-C8EcNc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/279b66-38f1-41a5-90e2-946da5f5efbb/1/ymFHjk1lm-zoIDxei6jo-C8EcNc.mft Manifest number: 0183 Signing time: Sat 06 Dec 2025 07:00:42 +0000 Manifest this update: Sat 06 Dec 2025 07:00:42 +0000 Manifest next update: Sun 07 Dec 2025 07:00:42 +0000 Files and hashes: 1: gYcrvQwtqYo-zXt2MlI2__2qyrs.roa (hash: 7IenEYrIUNDwPACEjHuFIvJytPHusUhzdhduU7XIXns=) 2: ymFHjk1lm-zoIDxei6jo-C8EcNc.crl (hash: 9PvwaLhamu0cejl1/rEWJqb52uUsb7Xk4uyUVj4Npbg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/279b66-38f1-41a5-90e2-946da5f5efbb/1/ymFHjk1lm-zoIDxei6jo-C8EcNc.crl rsync://rpki.ripe.net/repository/DEFAULT/68/279b66-38f1-41a5-90e2-946da5f5efbb/1/ymFHjk1lm-zoIDxei6jo-C8EcNc.mft rsync://rpki.ripe.net/repository/DEFAULT/ymFHjk1lm-zoIDxei6jo-C8EcNc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:76:7d:df:42:07:45:f4:f8:79:e5:84:52:65:58:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ca61478e4d659bece8203c5e8ba8e8f82f0470d7 Validity Not Before: Dec 6 07:00:42 2025 GMT Not After : Dec 7 07:00:42 2025 GMT Subject: CN=d416b9e41fbf3b53293d69a2da405a05816e8dac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:1f:c3:b0:79:50:43:c8:80:26:6e:b9:c1:2a: 6c:48:a5:c9:95:69:ce:a6:35:15:db:2b:2f:e8:fe: f2:cf:bf:72:0d:38:72:60:c0:dd:71:12:88:c1:a1: 58:c6:5c:ba:4e:a9:47:21:3e:a5:9a:b6:26:47:5a: 91:6f:2f:ab:5b:d8:93:8f:d3:8f:5c:5e:53:64:4b: e0:5b:9b:24:09:f3:a7:38:f4:c4:9b:35:ba:8f:62: 87:86:b2:a7:46:67:a6:e5:a4:3e:64:ab:7f:d9:31: f1:f9:db:37:b6:8d:d5:09:b2:b0:e0:a2:b4:dc:68: 10:ef:8f:5c:a4:cc:19:55:96:2f:a4:df:b9:ee:97: e1:64:4f:87:65:df:f7:cb:b8:9f:7a:68:02:d6:dd: b7:6d:63:7c:d9:ad:48:6d:b0:1b:94:6d:7b:99:ef: 7a:10:ba:a0:68:42:4f:68:66:8f:33:b4:ab:6a:1b: 2b:28:51:c6:15:e1:63:12:9c:0c:52:8e:c9:a4:7a: b5:d9:b2:28:24:3f:c4:13:0e:ea:72:3a:4f:cf:84: 4f:b2:c0:64:e2:45:1d:ad:cf:38:c6:42:9e:03:69: 37:04:c0:68:8c:34:d4:92:bd:61:f2:dd:5b:72:fb: 77:4d:a6:3f:4e:7a:da:02:8e:cf:a3:fc:df:de:69: b9:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:16:B9:E4:1F:BF:3B:53:29:3D:69:A2:DA:40:5A:05:81:6E:8D:AC X509v3 Authority Key Identifier: keyid:CA:61:47:8E:4D:65:9B:EC:E8:20:3C:5E:8B:A8:E8:F8:2F:04:70:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ymFHjk1lm-zoIDxei6jo-C8EcNc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/279b66-38f1-41a5-90e2-946da5f5efbb/1/ymFHjk1lm-zoIDxei6jo-C8EcNc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/68/279b66-38f1-41a5-90e2-946da5f5efbb/1/ymFHjk1lm-zoIDxei6jo-C8EcNc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6e:14:ad:d0:91:0b:d3:1f:4e:7e:bc:b2:67:60:03:87:cc:d7: 8d:da:f0:a3:c5:31:3c:28:09:41:7f:81:16:de:83:93:39:eb: 64:b4:9c:3d:00:da:fc:77:b5:27:03:2d:10:5c:ce:9b:2c:d5: 56:50:1f:e7:86:10:14:0c:96:22:e1:0c:c2:d3:02:b2:53:ce: 8a:9e:1f:5a:b1:52:76:47:c6:6f:cf:eb:21:f4:de:6b:35:06: 36:97:04:3a:e8:b4:ad:02:09:94:bb:41:33:de:88:bb:1e:56: 53:79:59:c5:5a:43:19:5a:b8:9d:31:86:8f:28:f2:32:d4:9f: b9:34:cf:3d:e8:a4:32:a3:48:20:04:95:21:6e:67:7f:b3:a7: a6:62:6c:fc:c4:3a:38:dc:ce:b3:5c:c2:ef:05:f8:1d:cb:23: f4:ba:a8:fe:a6:ac:b0:20:28:c9:6a:1c:2c:95:61:48:1e:0c: 6c:e0:d5:0f:c6:bf:68:42:80:5a:00:a6:fd:9b:14:c7:57:ad: 2e:08:d2:a4:fa:00:b2:f0:01:cb:95:0e:46:2f:8a:77:ea:89: 07:8a:e8:ad:7b:91:0a:c9:d0:f2:0c:34:26:01:73:d1:ad:09: b6:85:cc:e9:39:1d:a8:eb:47:b5:d5:7d:a7:fd:6b:93:71:a6: c8:71:f0:01 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrydn3fQgdF9Ph55YRSZViWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNhNjE0NzhlNGQ2NTliZWNlODIwM2M1ZThiYThlOGY4MmYw NDcwZDcwHhcNMjUxMjA2MDcwMDQyWhcNMjUxMjA3MDcwMDQyWjAzMTEwLwYDVQQD EyhkNDE2YjllNDFmYmYzYjUzMjkzZDY5YTJkYTQwNWEwNTgxNmU4ZGFjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5B/DsHlQQ8iAJm65wSpsSKXJlWnO pjUV2ysv6P7yz79yDThyYMDdcRKIwaFYxly6TqlHIT6lmrYmR1qRby+rW9iTj9OP XF5TZEvgW5skCfOnOPTEmzW6j2KHhrKnRmem5aQ+ZKt/2THx+ds3to3VCbKw4KK0 3GgQ749cpMwZVZYvpN+57pfhZE+HZd/3y7ifemgC1t23bWN82a1IbbAblG17me96 ELqgaEJPaGaPM7SrahsrKFHGFeFjEpwMUo7JpHq12bIoJD/EEw7qcjpPz4RPssBk 4kUdrc84xkKeA2k3BMBojDTUkr1h8t1bcvt3TaY/TnraAo7Po/zf3mm5+wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNQWueQfvztTKT1potpAWgWBbo2sMB8GA1UdIwQY MBaAFMphR45NZZvs6CA8Xouo6PgvBHDXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveW1GSGprMWxtLXpvSUR4ZWk2am8tQzhFY05jLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OC8yNzliNjYtMzhmMS00MWE1LTkwZTIt OTQ2ZGE1ZjVlZmJiLzEveW1GSGprMWxtLXpvSUR4ZWk2am8tQzhFY05jLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82OC8yNzliNjYtMzhmMS00MWE1LTkwZTItOTQ2ZGE1ZjVlZmJi LzEveW1GSGprMWxtLXpvSUR4ZWk2am8tQzhFY05jLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbhSt0JEL 0x9OfryyZ2ADh8zXjdrwo8UxPCgJQX+BFt6DkznrZLScPQDa/He1JwMtEFzOmyzV VlAf54YQFAyWIuEMwtMCslPOip4fWrFSdkfGb8/rIfTeazUGNpcEOui0rQIJlLtB M96Iux5WU3lZxVpDGVq4nTGGjyjyMtSfuTTPPeikMqNIIASVIW5nf7OnpmJs/MQ6 ONzOs1zC7wX4Hcsj9Lqo/qassCAoyWocLJVhSB4MbODVD8a/aEKAWgCm/ZsUx1et LgjSpPoAsvABy5UORi+Kd+qJB4rorXuRCsnQ8gw0JgFz0a0JtoXM6TkdqOtHtdV9 p/1rk3GmyHHwAQ== -----END CERTIFICATE-----Generated at Sat Dec 6 13:23:24 2025 by rpki-client