This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/583a2c-946d-4517-8083-26985ce45978/1/YFLhWSsSrSzTn1vlfAWFNe2xK5w.mft File: YFLhWSsSrSzTn1vlfAWFNe2xK5w.mft (raw, json) Hash identifier: JMY57IgIboyTsPiKT85wgYGJPK48ulc1bhJQCTachao= Subject key identifier: 83:14:42:D8:69:18:3D:EF:E2:D2:96:64:BD:07:00:9C:8A:80:27:6D Authority key identifier: 60:52:E1:59:2B:12:AD:2C:D3:9F:5B:E5:7C:05:85:35:ED:B1:2B:9C Certificate issuer: /CN=6052e1592b12ad2cd39f5be57c058535edb12b9c Certificate serial: 019AF19AB238B0C78CA950561CBE6832BE22 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YFLhWSsSrSzTn1vlfAWFNe2xK5w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/583a2c-946d-4517-8083-26985ce45978/1/YFLhWSsSrSzTn1vlfAWFNe2xK5w.mft Manifest number: 0CF4 Signing time: Sat 06 Dec 2025 03:00:38 +0000 Manifest this update: Sat 06 Dec 2025 03:00:38 +0000 Manifest next update: Sun 07 Dec 2025 03:00:38 +0000 Files and hashes: 1: 4ohGnWINC3iPFe6nDpOqBOx7d2s.roa (hash: 9AbJKb6HLl4DZwmq7R7PVZTsMXxo/QDCXs2EgLL85AU=) 2: YFLhWSsSrSzTn1vlfAWFNe2xK5w.crl (hash: dMslhiTGzmuiVuKJq0+iewDkdxNa4dogba5WmuRjiBY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/583a2c-946d-4517-8083-26985ce45978/1/YFLhWSsSrSzTn1vlfAWFNe2xK5w.crl rsync://rpki.ripe.net/repository/DEFAULT/7b/583a2c-946d-4517-8083-26985ce45978/1/YFLhWSsSrSzTn1vlfAWFNe2xK5w.mft rsync://rpki.ripe.net/repository/DEFAULT/YFLhWSsSrSzTn1vlfAWFNe2xK5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9a:b2:38:b0:c7:8c:a9:50:56:1c:be:68:32:be:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6052e1592b12ad2cd39f5be57c058535edb12b9c Validity Not Before: Dec 6 03:00:38 2025 GMT Not After : Dec 7 03:00:38 2025 GMT Subject: CN=831442d869183defe2d29664bd07009c8a80276d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:3d:f8:84:d3:f0:83:8a:02:d7:5c:59:50:dc: 5c:3c:be:44:00:be:cd:33:fa:3c:cb:c1:4d:8a:91: 08:23:0f:10:2f:cb:52:77:ae:2f:8c:77:cf:e3:be: e9:ce:be:22:5d:ee:07:a2:d4:6d:a8:27:fb:fb:8e: ee:d1:b5:df:f1:75:3b:17:5e:bd:19:c7:5d:2c:da: e6:b5:b1:5b:c7:cc:cb:68:70:9c:d5:64:64:20:4e: 22:2e:e9:34:65:0e:ab:77:6c:77:9e:89:68:1a:94: 06:1d:43:01:4f:8d:54:61:3a:d0:df:af:c7:ef:21: 0c:0b:0b:de:1f:ec:40:36:05:79:c9:8f:7b:13:8f: b3:e5:f5:82:73:68:ec:d4:08:87:76:f0:63:08:2c: 4c:de:fe:67:50:8d:82:e8:ac:1e:49:5f:1a:b3:78: 43:ac:4f:99:41:71:00:c8:2b:f3:f0:97:33:50:26: 80:66:bf:cf:b8:a4:1c:a3:cd:0e:72:23:89:1f:d3: 1f:06:ea:a1:50:99:6c:33:dc:e8:99:aa:1c:a6:c2: 23:25:4e:38:96:72:29:26:f2:20:25:1f:ca:1a:e8: 0b:80:32:47:06:6f:9a:bf:b1:a0:6d:f8:e3:6d:ea: 47:bf:07:17:e1:2e:be:bf:33:ae:84:30:b9:84:af: e0:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:14:42:D8:69:18:3D:EF:E2:D2:96:64:BD:07:00:9C:8A:80:27:6D X509v3 Authority Key Identifier: keyid:60:52:E1:59:2B:12:AD:2C:D3:9F:5B:E5:7C:05:85:35:ED:B1:2B:9C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YFLhWSsSrSzTn1vlfAWFNe2xK5w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/583a2c-946d-4517-8083-26985ce45978/1/YFLhWSsSrSzTn1vlfAWFNe2xK5w.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/583a2c-946d-4517-8083-26985ce45978/1/YFLhWSsSrSzTn1vlfAWFNe2xK5w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a6:95:2a:88:4e:4f:b7:25:d7:d1:63:01:9f:96:89:3a:88:95: d3:96:7d:a6:e8:c5:5f:fe:d8:59:b2:ba:24:51:25:03:6d:d7: 84:0d:09:ae:65:03:39:2f:24:e1:a9:72:0f:45:44:1a:c1:7a: 26:2a:8b:3a:8b:f5:15:55:3a:20:01:9d:b1:19:d3:cc:9c:42: 3d:53:c3:91:4c:03:b4:05:e9:c0:f2:59:4b:46:43:c8:37:dc: 82:5f:00:1b:86:d8:72:5f:d8:08:a2:7e:71:a2:4e:bd:d3:ff: d6:b5:89:04:02:27:27:1a:ba:fa:6f:85:d6:84:62:8d:7a:fc: 9e:ac:66:7d:5d:c6:3d:4f:0a:e8:b4:37:05:df:ae:02:a4:6e: 9b:11:bb:ec:f1:d7:1c:fb:66:2e:98:ca:87:d4:26:e1:40:d7: 02:f9:7b:ef:77:85:40:78:3c:45:c3:9c:e3:97:65:76:48:27: e4:07:09:dc:7b:4a:fe:f2:23:cd:bd:c1:11:70:3c:16:2d:6e: 1a:a7:1a:dd:66:32:68:53:b5:1d:fe:eb:fd:f3:55:6f:0a:e2: f6:b0:4e:74:a0:ae:05:c4:eb:12:3b:72:1e:8d:7c:95:7f:12: cd:c5:bd:1d:f1:da:a5:78:e1:50:fe:16:e4:d0:ae:54:c1:80: 8e:ce:4b:a9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxmrI4sMeMqVBWHL5oMr4iMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwNTJlMTU5MmIxMmFkMmNkMzlmNWJlNTdjMDU4NTM1ZWRi MTJiOWMwHhcNMjUxMjA2MDMwMDM4WhcNMjUxMjA3MDMwMDM4WjAzMTEwLwYDVQQD Eyg4MzE0NDJkODY5MTgzZGVmZTJkMjk2NjRiZDA3MDA5YzhhODAyNzZkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvT34hNPwg4oC11xZUNxcPL5EAL7N M/o8y8FNipEIIw8QL8tSd64vjHfP477pzr4iXe4HotRtqCf7+47u0bXf8XU7F169 GcddLNrmtbFbx8zLaHCc1WRkIE4iLuk0ZQ6rd2x3noloGpQGHUMBT41UYTrQ36/H 7yEMCwveH+xANgV5yY97E4+z5fWCc2js1AiHdvBjCCxM3v5nUI2C6KweSV8as3hD rE+ZQXEAyCvz8JczUCaAZr/PuKQco80OciOJH9MfBuqhUJlsM9zomaocpsIjJU44 lnIpJvIgJR/KGugLgDJHBm+av7GgbfjjbepHvwcX4S6+vzOuhDC5hK/gdwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIMUQthpGD3v4tKWZL0HAJyKgCdtMB8GA1UdIwQY MBaAFGBS4VkrEq0s059b5XwFhTXtsSucMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWUZMaFdTc1NyU3pUbjF2bGZBV0ZOZTJ4SzV3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yi81ODNhMmMtOTQ2ZC00NTE3LTgwODMt MjY5ODVjZTQ1OTc4LzEvWUZMaFdTc1NyU3pUbjF2bGZBV0ZOZTJ4SzV3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Yi81ODNhMmMtOTQ2ZC00NTE3LTgwODMtMjY5ODVjZTQ1OTc4 LzEvWUZMaFdTc1NyU3pUbjF2bGZBV0ZOZTJ4SzV3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAppUqiE5P tyXX0WMBn5aJOoiV05Z9pujFX/7YWbK6JFElA23XhA0JrmUDOS8k4alyD0VEGsF6 JiqLOov1FVU6IAGdsRnTzJxCPVPDkUwDtAXpwPJZS0ZDyDfcgl8AG4bYcl/YCKJ+ caJOvdP/1rWJBAInJxq6+m+F1oRijXr8nqxmfV3GPU8K6LQ3Bd+uAqRumxG77PHX HPtmLpjKh9Qm4UDXAvl773eFQHg8RcOc45dldkgn5AcJ3HtK/vIjzb3BEXA8Fi1u Gqca3WYyaFO1Hf7r/fNVbwri9rBOdKCuBcTrEjtyHo18lX8SzcW9HfHapXjhUP4W 5NCuVMGAjs5LqQ== -----END CERTIFICATE-----Generated at Sat Dec 6 07:25:05 2025 by rpki-client