This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/c3a343-da82-427a-98c6-ce30d4a398e0/1/pY1Jg8nGO9ihWAA8WF9D2ZTBLcI.mft File: pY1Jg8nGO9ihWAA8WF9D2ZTBLcI.mft (raw, json) Hash identifier: J0o60vk0mGLaXMZevDs2Ck56NGszkCuwtVp3Dh9XBr8= Subject key identifier: C0:4D:AB:1C:4C:47:EA:5C:15:97:A4:4B:F0:30:B4:35:8C:F6:1C:0B Authority key identifier: A5:8D:49:83:C9:C6:3B:D8:A1:58:00:3C:58:5F:43:D9:94:C1:2D:C2 Certificate issuer: /CN=a58d4983c9c63bd8a158003c585f43d994c12dc2 Certificate serial: 019AF0F5DFE24BE6FC38DD164F7CF5C49748 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pY1Jg8nGO9ihWAA8WF9D2ZTBLcI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/c3a343-da82-427a-98c6-ce30d4a398e0/1/pY1Jg8nGO9ihWAA8WF9D2ZTBLcI.mft Manifest number: 0BC2 Signing time: Sat 06 Dec 2025 00:00:36 +0000 Manifest this update: Sat 06 Dec 2025 00:00:36 +0000 Manifest next update: Sun 07 Dec 2025 00:00:36 +0000 Files and hashes: 1: 9gn_Ey5jZ-COR2fvOiyvSDQaMtw.roa (hash: Bkvsu5pYLIYxEeTzpFG4I0bzHciLlqQK08tuoGJR2qE=) 2: NncLDck5QCsXoP-zdGMzAoehMpc.asa (hash: Ct9G108vU2K9LuYOAFXT37wdYPmx9qzQzjeMUoqKDE8=) 3: jp2UFYGcsehDO-4gfejiaCOzrJw.asa (hash: fxeg6hVvgjfs2m8eyuQiBn+zKpG0DqwOznKeAA9KOJE=) 4: pY1Jg8nGO9ihWAA8WF9D2ZTBLcI.crl (hash: KKL4XtmFfomN5DelgvWRZyiGLHvzjqpBI1cHFIdQ+Es=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/c3a343-da82-427a-98c6-ce30d4a398e0/1/pY1Jg8nGO9ihWAA8WF9D2ZTBLcI.crl rsync://rpki.ripe.net/repository/DEFAULT/78/c3a343-da82-427a-98c6-ce30d4a398e0/1/pY1Jg8nGO9ihWAA8WF9D2ZTBLcI.mft rsync://rpki.ripe.net/repository/DEFAULT/pY1Jg8nGO9ihWAA8WF9D2ZTBLcI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 00:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f0:f5:df:e2:4b:e6:fc:38:dd:16:4f:7c:f5:c4:97:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a58d4983c9c63bd8a158003c585f43d994c12dc2 Validity Not Before: Dec 6 00:00:36 2025 GMT Not After : Dec 7 00:00:36 2025 GMT Subject: CN=c04dab1c4c47ea5c1597a44bf030b4358cf61c0b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:d4:3b:eb:94:83:99:fd:5c:d5:95:6d:2c:69: 0e:ab:26:b3:36:2f:74:28:25:62:d8:46:13:ca:a9: a0:d9:1e:08:00:82:53:a1:e6:27:76:12:62:b7:56: b8:4c:6f:84:b2:3d:32:16:38:ef:60:96:51:d1:e4: 0c:b2:fd:17:04:7d:16:98:30:21:ad:43:60:30:ae: b6:dd:87:55:29:3a:ba:49:20:e5:14:b3:b6:e4:09: 71:3f:4f:ea:a8:e5:43:58:54:7b:c7:4e:93:eb:6f: 9f:94:bf:fe:82:ef:e2:4c:33:d9:3b:a2:12:63:da: 0b:af:34:9c:bd:51:63:cb:69:13:ce:04:53:2d:a3: f3:c2:df:aa:13:7d:72:cb:72:97:3b:49:d3:17:bf: 70:2f:db:22:d0:d2:a8:5f:82:41:8d:32:0f:2a:79: b6:8d:27:e9:1d:1a:b5:fd:de:d4:19:0c:ee:2f:54: 95:c4:62:53:a7:fd:59:2e:9b:51:22:f8:52:7e:85: 7b:38:b2:4c:fa:f5:29:db:09:18:76:bf:52:7b:3a: b4:5e:fe:56:77:6f:d3:1b:6c:3e:7c:dd:e5:bb:83: 90:10:90:b7:6e:f2:29:5c:5e:98:40:9b:7b:ff:9f: 03:57:99:7e:cb:ac:25:ef:0d:03:5a:04:40:c6:f9: f0:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:4D:AB:1C:4C:47:EA:5C:15:97:A4:4B:F0:30:B4:35:8C:F6:1C:0B X509v3 Authority Key Identifier: keyid:A5:8D:49:83:C9:C6:3B:D8:A1:58:00:3C:58:5F:43:D9:94:C1:2D:C2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pY1Jg8nGO9ihWAA8WF9D2ZTBLcI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/c3a343-da82-427a-98c6-ce30d4a398e0/1/pY1Jg8nGO9ihWAA8WF9D2ZTBLcI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/78/c3a343-da82-427a-98c6-ce30d4a398e0/1/pY1Jg8nGO9ihWAA8WF9D2ZTBLcI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ac:8e:75:44:da:ca:8c:0f:d4:ee:12:39:d8:53:04:f7:0f:b4: 34:be:c0:1a:13:b5:57:94:34:58:51:a6:3c:a4:7e:d3:78:5b: cf:7c:32:c8:76:bc:e1:49:7c:9e:95:96:c4:17:df:6e:1d:86: fb:12:53:3d:04:cd:9a:68:5a:e3:2f:e2:33:ed:ca:81:71:e3: 7c:86:f9:81:55:20:cc:9a:d1:df:2c:22:b8:f7:4f:4b:d3:4c: fb:da:04:1f:2a:16:12:6d:81:1e:74:ba:e4:8b:c1:7e:a1:dc: d2:10:a6:24:98:b5:73:3e:f8:ff:a8:0c:00:3f:f7:f8:89:67: ac:ce:b4:b5:e0:13:3c:c0:0c:9b:50:1a:fb:1c:51:63:bc:51: 4f:8b:9c:a6:a6:cc:0a:49:a6:0e:d0:bd:76:10:d9:2d:c3:76: cb:f3:fd:f6:88:a9:2f:c6:9f:68:60:0d:f0:0e:ab:19:43:72: 86:31:aa:24:b7:f9:4f:92:c8:25:ab:98:14:0f:b0:52:be:83: 8c:34:b9:f8:ec:81:26:c0:9e:08:96:d6:c7:ee:21:5f:a9:43: d6:58:fc:d3:cb:55:4b:79:d2:8f:bb:a5:de:4a:40:fc:5e:4f: e9:99:5f:8d:c9:14:55:8d:c4:bc:f4:77:16:a4:27:46:68:de: d4:8f:cc:ae -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrw9d/iS+b8ON0WT3z1xJdIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE1OGQ0OTgzYzljNjNiZDhhMTU4MDAzYzU4NWY0M2Q5OTRj MTJkYzIwHhcNMjUxMjA2MDAwMDM2WhcNMjUxMjA3MDAwMDM2WjAzMTEwLwYDVQQD EyhjMDRkYWIxYzRjNDdlYTVjMTU5N2E0NGJmMDMwYjQzNThjZjYxYzBiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt9Q765SDmf1c1ZVtLGkOqyazNi90 KCVi2EYTyqmg2R4IAIJToeYndhJit1a4TG+Esj0yFjjvYJZR0eQMsv0XBH0WmDAh rUNgMK623YdVKTq6SSDlFLO25AlxP0/qqOVDWFR7x06T62+flL/+gu/iTDPZO6IS Y9oLrzScvVFjy2kTzgRTLaPzwt+qE31yy3KXO0nTF79wL9si0NKoX4JBjTIPKnm2 jSfpHRq1/d7UGQzuL1SVxGJTp/1ZLptRIvhSfoV7OLJM+vUp2wkYdr9Sezq0Xv5W d2/TG2w+fN3lu4OQEJC3bvIpXF6YQJt7/58DV5l+y6wl7w0DWgRAxvnw/QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMBNqxxMR+pcFZekS/AwtDWM9hwLMB8GA1UdIwQY MBaAFKWNSYPJxjvYoVgAPFhfQ9mUwS3CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcFkxSmc4bkdPOWloV0FBOFdGOUQyWlRCTGNJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OC9jM2EzNDMtZGE4Mi00MjdhLTk4YzYt Y2UzMGQ0YTM5OGUwLzEvcFkxSmc4bkdPOWloV0FBOFdGOUQyWlRCTGNJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83OC9jM2EzNDMtZGE4Mi00MjdhLTk4YzYtY2UzMGQ0YTM5OGUw LzEvcFkxSmc4bkdPOWloV0FBOFdGOUQyWlRCTGNJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArI51RNrK jA/U7hI52FME9w+0NL7AGhO1V5Q0WFGmPKR+03hbz3wyyHa84Ul8npWWxBffbh2G +xJTPQTNmmha4y/iM+3KgXHjfIb5gVUgzJrR3ywiuPdPS9NM+9oEHyoWEm2BHnS6 5IvBfqHc0hCmJJi1cz74/6gMAD/3+IlnrM60teATPMAMm1Aa+xxRY7xRT4ucpqbM CkmmDtC9dhDZLcN2y/P99oipL8afaGAN8A6rGUNyhjGqJLf5T5LIJauYFA+wUr6D jDS5+OyBJsCeCJbWx+4hX6lD1lj808tVS3nSj7ul3kpA/F5P6ZlfjckUVY3EvPR3 FqQnRmje1I/Mrg== -----END CERTIFICATE-----Generated at Sat Dec 6 06:11:27 2025 by rpki-client