This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/78c37f-2f69-4fec-a198-ccf528eb4dda/1/yVmYmJ_bWl-TIUetcWLGMATgZ6Q.mft File: yVmYmJ_bWl-TIUetcWLGMATgZ6Q.mft (raw, json) Hash identifier: RmfE6gTD1dhv+tPFsGL+5Y+GdM65KMNkp4u4UYqODPY= Subject key identifier: BE:33:39:0E:80:75:A5:EE:70:E3:B5:CA:77:36:80:E1:57:49:D5:E8 Authority key identifier: C9:59:98:98:9F:DB:5A:5F:93:21:47:AD:71:62:C6:30:04:E0:67:A4 Certificate issuer: /CN=c95998989fdb5a5f932147ad7162c63004e067a4 Certificate serial: 019AF1D18EF54CA10907CA96C48F9E0FE2FF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yVmYmJ_bWl-TIUetcWLGMATgZ6Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/78c37f-2f69-4fec-a198-ccf528eb4dda/1/yVmYmJ_bWl-TIUetcWLGMATgZ6Q.mft Manifest number: 0C44 Signing time: Sat 06 Dec 2025 04:00:33 +0000 Manifest this update: Sat 06 Dec 2025 04:00:33 +0000 Manifest next update: Sun 07 Dec 2025 04:00:33 +0000 Files and hashes: 1: yVmYmJ_bWl-TIUetcWLGMATgZ6Q.crl (hash: 0wfMorz8uo1mLsdDjXQ9KyY5FoXRuJluerShHdfImak=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/78c37f-2f69-4fec-a198-ccf528eb4dda/1/yVmYmJ_bWl-TIUetcWLGMATgZ6Q.crl rsync://rpki.ripe.net/repository/DEFAULT/81/78c37f-2f69-4fec-a198-ccf528eb4dda/1/yVmYmJ_bWl-TIUetcWLGMATgZ6Q.mft rsync://rpki.ripe.net/repository/DEFAULT/yVmYmJ_bWl-TIUetcWLGMATgZ6Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 04:00:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:d1:8e:f5:4c:a1:09:07:ca:96:c4:8f:9e:0f:e2:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c95998989fdb5a5f932147ad7162c63004e067a4 Validity Not Before: Dec 6 04:00:33 2025 GMT Not After : Dec 7 04:00:33 2025 GMT Subject: CN=be33390e8075a5ee70e3b5ca773680e15749d5e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:37:07:e6:b7:92:c6:b4:57:bd:7e:9a:81:7b: aa:e1:fb:94:c8:ba:b8:46:6b:82:51:40:bd:f3:05: a7:46:69:58:96:b6:8b:1e:04:f5:6b:2f:11:8c:b4: 04:84:c1:49:70:41:46:4f:30:06:c3:fd:92:bf:90: 11:eb:94:71:3c:8d:6e:59:08:f8:ed:5b:b4:ff:0e: d5:5e:bc:f1:d4:e4:28:78:3b:42:f8:9d:f3:9f:0d: 2f:74:8b:91:d9:1a:b7:c1:c7:27:63:13:87:5c:94: 98:ce:14:2b:dc:ce:0b:14:48:6b:21:6e:92:46:d3: 3e:b6:8f:70:33:8e:c6:8c:af:8b:a7:e1:a3:ec:ca: e2:76:ee:b0:9d:f1:ed:59:6f:0d:f9:b6:1c:6e:8f: cc:0b:83:9d:d9:c6:7d:79:6d:c1:d0:eb:93:7b:e5: ec:a9:f4:aa:f1:c5:53:d9:8a:cf:82:13:f9:99:f4: 5b:7d:98:e7:72:a2:c3:3d:d7:4e:8e:d6:9a:92:d7: 84:cc:f3:20:73:b7:d4:f6:ba:bf:f2:50:10:2a:54: ef:41:fa:52:01:83:95:3d:0a:13:2b:a8:58:f2:ee: ce:c8:47:a9:01:bc:13:f1:3f:48:23:5c:a7:d7:b6: 27:e3:93:10:25:17:df:11:19:e1:37:af:ce:b6:b2: 63:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:33:39:0E:80:75:A5:EE:70:E3:B5:CA:77:36:80:E1:57:49:D5:E8 X509v3 Authority Key Identifier: keyid:C9:59:98:98:9F:DB:5A:5F:93:21:47:AD:71:62:C6:30:04:E0:67:A4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yVmYmJ_bWl-TIUetcWLGMATgZ6Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/78c37f-2f69-4fec-a198-ccf528eb4dda/1/yVmYmJ_bWl-TIUetcWLGMATgZ6Q.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/81/78c37f-2f69-4fec-a198-ccf528eb4dda/1/yVmYmJ_bWl-TIUetcWLGMATgZ6Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8e:a0:f5:d8:18:35:14:98:5e:f9:71:d9:9b:7c:12:57:f3:83: 34:8c:35:e2:65:8d:e2:c3:65:83:4f:a3:df:7f:56:f5:cd:de: 22:06:48:32:d2:c1:ea:91:db:b2:d3:1a:61:6c:c0:90:3c:71: 27:ba:d9:bc:cb:97:82:32:bd:6e:da:de:95:7f:8a:ea:94:4a: 91:f8:63:5b:07:38:39:2c:b1:a0:88:03:39:ab:23:69:90:00: b1:49:bb:cd:50:9e:a6:30:c5:45:d6:de:4b:ad:f3:20:b3:e1: 10:96:9f:95:d6:9d:02:4e:e9:d5:bb:96:2e:8e:d0:9d:06:6f: 33:03:4b:05:60:bc:39:d9:82:b2:9c:30:40:bd:ef:85:f4:e3: fd:7e:01:0e:0d:11:e4:41:f9:c3:17:53:a4:52:b9:84:72:dd: 6a:47:a8:da:4f:72:b9:7e:04:52:a5:f1:92:45:0e:87:37:7d: 49:e4:8c:7a:66:d1:6c:1d:a2:56:6a:c7:13:99:f7:8c:19:c9: c9:60:27:ad:60:23:af:1a:c4:aa:0e:3e:a8:38:e8:16:e3:74: e6:20:d0:5f:98:54:cc:44:34:8d:86:0d:93:4a:97:5c:c8:9c: 78:95:0c:2e:81:42:64:54:ba:8a:e0:e3:69:f9:c6:61:03:41: 5b:da:d2:b1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrx0Y71TKEJB8qWxI+eD+L/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM5NTk5ODk4OWZkYjVhNWY5MzIxNDdhZDcxNjJjNjMwMDRl MDY3YTQwHhcNMjUxMjA2MDQwMDMzWhcNMjUxMjA3MDQwMDMzWjAzMTEwLwYDVQQD EyhiZTMzMzkwZTgwNzVhNWVlNzBlM2I1Y2E3NzM2ODBlMTU3NDlkNWU4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1jcH5reSxrRXvX6agXuq4fuUyLq4 RmuCUUC98wWnRmlYlraLHgT1ay8RjLQEhMFJcEFGTzAGw/2Sv5AR65RxPI1uWQj4 7Vu0/w7VXrzx1OQoeDtC+J3znw0vdIuR2Rq3wccnYxOHXJSYzhQr3M4LFEhrIW6S RtM+to9wM47GjK+Lp+Gj7Mridu6wnfHtWW8N+bYcbo/MC4Od2cZ9eW3B0OuTe+Xs qfSq8cVT2YrPghP5mfRbfZjncqLDPddOjtaakteEzPMgc7fU9rq/8lAQKlTvQfpS AYOVPQoTK6hY8u7OyEepAbwT8T9II1yn17Yn45MQJRffERnhN6/OtrJjQwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFL4zOQ6AdaXucOO1ync2gOFXSdXoMB8GA1UdIwQY MBaAFMlZmJif21pfkyFHrXFixjAE4GekMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveVZtWW1KX2JXbC1USVVldGNXTEdNQVRnWjZRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MS83OGMzN2YtMmY2OS00ZmVjLWExOTgt Y2NmNTI4ZWI0ZGRhLzEveVZtWW1KX2JXbC1USVVldGNXTEdNQVRnWjZRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84MS83OGMzN2YtMmY2OS00ZmVjLWExOTgtY2NmNTI4ZWI0ZGRh LzEveVZtWW1KX2JXbC1USVVldGNXTEdNQVRnWjZRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjqD12Bg1 FJhe+XHZm3wSV/ODNIw14mWN4sNlg0+j339W9c3eIgZIMtLB6pHbstMaYWzAkDxx J7rZvMuXgjK9btrelX+K6pRKkfhjWwc4OSyxoIgDOasjaZAAsUm7zVCepjDFRdbe S63zILPhEJafldadAk7p1buWLo7QnQZvMwNLBWC8OdmCspwwQL3vhfTj/X4BDg0R 5EH5wxdTpFK5hHLdakeo2k9yuX4EUqXxkkUOhzd9SeSMembRbB2iVmrHE5n3jBnJ yWAnrWAjrxrEqg4+qDjoFuN05iDQX5hUzEQ0jYYNk0qXXMiceJUMLoFCZFS6iuDj afnGYQNBW9rSsQ== -----END CERTIFICATE-----Generated at Sat Dec 6 12:05:39 2025 by rpki-client