This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/8d9bb5-b4e5-4344-891b-0807f96ca4a2/1/yyDpqru2GRVGEQI1z3bEg4S0UdA.mft File: yyDpqru2GRVGEQI1z3bEg4S0UdA.mft (raw, json) Hash identifier: Wwu3Yc0F7OcXHJ471/Evx8dH/cPv0dkE4mbxYgfL4aI= Subject key identifier: A1:DC:B8:2B:4F:E8:78:21:58:8A:19:A4:C4:19:FE:41:91:BC:0B:44 Authority key identifier: CB:20:E9:AA:BB:B6:19:15:46:11:02:35:CF:76:C4:83:84:B4:51:D0 Certificate issuer: /CN=cb20e9aabbb6191546110235cf76c48384b451d0 Certificate serial: 019AF12D473CC72465570F6ABB82B4E9A391 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yyDpqru2GRVGEQI1z3bEg4S0UdA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/8d9bb5-b4e5-4344-891b-0807f96ca4a2/1/yyDpqru2GRVGEQI1z3bEg4S0UdA.mft Manifest number: 06AE Signing time: Sat 06 Dec 2025 01:01:07 +0000 Manifest this update: Sat 06 Dec 2025 01:01:07 +0000 Manifest next update: Sun 07 Dec 2025 01:01:07 +0000 Files and hashes: 1: yyDpqru2GRVGEQI1z3bEg4S0UdA.crl (hash: 3JThm5JupAiwaFS0iIKbJNu0n2zztRM2nofCCy+O96g=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/8d9bb5-b4e5-4344-891b-0807f96ca4a2/1/yyDpqru2GRVGEQI1z3bEg4S0UdA.crl rsync://rpki.ripe.net/repository/DEFAULT/6f/8d9bb5-b4e5-4344-891b-0807f96ca4a2/1/yyDpqru2GRVGEQI1z3bEg4S0UdA.mft rsync://rpki.ripe.net/repository/DEFAULT/yyDpqru2GRVGEQI1z3bEg4S0UdA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:01:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2d:47:3c:c7:24:65:57:0f:6a:bb:82:b4:e9:a3:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cb20e9aabbb6191546110235cf76c48384b451d0 Validity Not Before: Dec 6 01:01:07 2025 GMT Not After : Dec 7 01:01:07 2025 GMT Subject: CN=a1dcb82b4fe87821588a19a4c419fe4191bc0b44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:ac:02:39:cd:b1:2a:5a:c3:6a:50:c7:5f:69: 31:e8:9f:ca:3f:1f:e7:70:d5:8d:1f:f1:24:e3:2d: 03:9b:77:de:b5:5d:23:5e:05:a3:41:70:94:08:62: 16:f8:07:c2:72:f7:43:ef:9b:1c:b2:2a:50:5c:38: f6:27:b0:5f:cd:2a:eb:50:01:f3:84:3b:d3:db:dd: 6e:9a:8c:ca:d0:cb:db:47:b0:51:f2:82:a0:2d:4e: ac:a1:8b:8d:01:43:21:99:07:74:49:d3:bd:0c:23: 82:0d:27:d3:71:da:b2:21:ec:00:fc:eb:c0:00:c2: d9:28:c6:85:6d:bb:d8:5b:ee:52:0e:2c:b5:24:fe: 8e:04:db:e4:42:98:3f:51:39:f9:bc:b5:8d:f6:2a: ff:9e:1d:4a:22:22:d7:d2:89:8e:2a:3d:f7:4d:6e: 26:02:a7:39:15:16:e5:04:8e:bd:bf:1b:09:6f:6b: 79:e2:7e:c8:ed:98:c2:43:db:95:ee:ff:e9:1f:72: b1:4d:5b:28:76:fb:d4:09:8f:4a:a0:af:3d:a2:c7: 25:ff:1b:08:d7:90:55:48:86:5a:62:c7:92:65:52: 5e:e2:bd:19:d7:20:b7:2d:e4:e2:73:59:0b:31:14: 3c:61:cf:1c:27:78:34:d8:74:a6:c3:3b:09:22:e1: 6c:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:DC:B8:2B:4F:E8:78:21:58:8A:19:A4:C4:19:FE:41:91:BC:0B:44 X509v3 Authority Key Identifier: keyid:CB:20:E9:AA:BB:B6:19:15:46:11:02:35:CF:76:C4:83:84:B4:51:D0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yyDpqru2GRVGEQI1z3bEg4S0UdA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/8d9bb5-b4e5-4344-891b-0807f96ca4a2/1/yyDpqru2GRVGEQI1z3bEg4S0UdA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/8d9bb5-b4e5-4344-891b-0807f96ca4a2/1/yyDpqru2GRVGEQI1z3bEg4S0UdA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6e:9b:4c:dc:ea:d5:b2:25:58:b9:f7:89:66:eb:80:f3:07:c8: 3b:54:b5:ac:71:77:92:dd:1c:32:58:9d:66:da:f6:3d:6e:6a: d4:e1:aa:09:66:d4:bb:dd:bf:21:8c:e1:e3:fc:a6:ce:39:15: a1:bd:7f:b1:82:23:22:ba:02:a0:af:ce:b2:63:15:25:79:f8: c6:1c:76:9c:f5:98:10:9f:a1:06:68:70:14:3e:a7:3d:d1:5b: f6:e2:94:79:08:75:6f:28:a6:72:97:ec:05:e3:c5:4e:be:85: 18:9a:28:59:1a:67:3e:56:27:f5:05:dd:04:10:56:44:ce:f3: 2f:f8:7d:4b:21:db:c3:75:41:09:be:14:2f:1c:52:7b:fb:36: 1f:3d:c0:8d:c7:1e:aa:a0:19:74:ba:73:e2:1c:b4:a8:19:a3: db:6f:d4:68:1c:61:49:df:56:9e:f0:94:6d:a4:db:3d:0c:1a: 4d:c9:6a:86:54:90:73:53:2b:50:55:8f:88:28:d6:12:21:c2: a9:23:9e:6e:2c:0c:7e:3b:ca:63:18:c1:83:6b:36:40:ac:1b: 16:e6:22:45:c8:51:f0:0c:c8:e6:ea:0e:3b:b6:94:19:8e:e2: bf:c9:89:0b:22:2b:0c:c2:04:80:66:53:b7:24:45:e5:31:3e: ce:ff:3e:f1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLUc8xyRlVw9qu4K06aORMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNiMjBlOWFhYmJiNjE5MTU0NjExMDIzNWNmNzZjNDgzODRi NDUxZDAwHhcNMjUxMjA2MDEwMTA3WhcNMjUxMjA3MDEwMTA3WjAzMTEwLwYDVQQD EyhhMWRjYjgyYjRmZTg3ODIxNTg4YTE5YTRjNDE5ZmU0MTkxYmMwYjQ0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwawCOc2xKlrDalDHX2kx6J/KPx/n cNWNH/Ek4y0Dm3fetV0jXgWjQXCUCGIW+AfCcvdD75scsipQXDj2J7BfzSrrUAHz hDvT291umozK0MvbR7BR8oKgLU6soYuNAUMhmQd0SdO9DCOCDSfTcdqyIewA/OvA AMLZKMaFbbvYW+5SDiy1JP6OBNvkQpg/UTn5vLWN9ir/nh1KIiLX0omOKj33TW4m Aqc5FRblBI69vxsJb2t54n7I7ZjCQ9uV7v/pH3KxTVsodvvUCY9KoK89oscl/xsI 15BVSIZaYseSZVJe4r0Z1yC3LeTic1kLMRQ8Yc8cJ3g02HSmwzsJIuFs2QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKHcuCtP6HghWIoZpMQZ/kGRvAtEMB8GA1UdIwQY MBaAFMsg6aq7thkVRhECNc92xIOEtFHQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveXlEcHFydTJHUlZHRVFJMXozYkVnNFMwVWRBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Zi84ZDliYjUtYjRlNS00MzQ0LTg5MWIt MDgwN2Y5NmNhNGEyLzEveXlEcHFydTJHUlZHRVFJMXozYkVnNFMwVWRBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Zi84ZDliYjUtYjRlNS00MzQ0LTg5MWItMDgwN2Y5NmNhNGEy LzEveXlEcHFydTJHUlZHRVFJMXozYkVnNFMwVWRBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbptM3OrV siVYufeJZuuA8wfIO1S1rHF3kt0cMlidZtr2PW5q1OGqCWbUu92/IYzh4/ymzjkV ob1/sYIjIroCoK/OsmMVJXn4xhx2nPWYEJ+hBmhwFD6nPdFb9uKUeQh1byimcpfs BePFTr6FGJooWRpnPlYn9QXdBBBWRM7zL/h9SyHbw3VBCb4ULxxSe/s2Hz3Ajcce qqAZdLpz4hy0qBmj22/UaBxhSd9WnvCUbaTbPQwaTclqhlSQc1MrUFWPiCjWEiHC qSOebiwMfjvKYxjBg2s2QKwbFuYiRchR8AzI5uoOO7aUGY7iv8mJCyIrDMIEgGZT tyRF5TE+zv8+8Q== -----END CERTIFICATE-----Generated at Sat Dec 6 10:10:17 2025 by rpki-client