This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/9e36b2-3f2d-444f-9d3a-40bcb74e4c28/1/Yj2Pmd-jCS0fZ1fvrLSfngDm1Lk.mft File: Yj2Pmd-jCS0fZ1fvrLSfngDm1Lk.mft (raw, json) Hash identifier: dREeZAccxdVMgd6r3I++j/chbbVWmwTIbTqWIJl5CJU= Subject key identifier: C2:DF:EB:D9:F4:85:50:18:E6:97:0C:55:AC:4D:35:4B:F4:FE:9F:DD Authority key identifier: 62:3D:8F:99:DF:A3:09:2D:1F:67:57:EF:AC:B4:9F:9E:00:E6:D4:B9 Certificate issuer: /CN=623d8f99dfa3092d1f6757efacb49f9e00e6d4b9 Certificate serial: 019AF12CDF39925FEA4C79F287759E15B24E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yj2Pmd-jCS0fZ1fvrLSfngDm1Lk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/9e36b2-3f2d-444f-9d3a-40bcb74e4c28/1/Yj2Pmd-jCS0fZ1fvrLSfngDm1Lk.mft Manifest number: 084A Signing time: Sat 06 Dec 2025 01:00:41 +0000 Manifest this update: Sat 06 Dec 2025 01:00:41 +0000 Manifest next update: Sun 07 Dec 2025 01:00:41 +0000 Files and hashes: 1: Yj2Pmd-jCS0fZ1fvrLSfngDm1Lk.crl (hash: lxukTwbUweOPWR7QcB9ZSjLWH5eY5rf4XfLfAAn4rGo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/88/9e36b2-3f2d-444f-9d3a-40bcb74e4c28/1/Yj2Pmd-jCS0fZ1fvrLSfngDm1Lk.crl rsync://rpki.ripe.net/repository/DEFAULT/88/9e36b2-3f2d-444f-9d3a-40bcb74e4c28/1/Yj2Pmd-jCS0fZ1fvrLSfngDm1Lk.mft rsync://rpki.ripe.net/repository/DEFAULT/Yj2Pmd-jCS0fZ1fvrLSfngDm1Lk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2c:df:39:92:5f:ea:4c:79:f2:87:75:9e:15:b2:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=623d8f99dfa3092d1f6757efacb49f9e00e6d4b9 Validity Not Before: Dec 6 01:00:41 2025 GMT Not After : Dec 7 01:00:41 2025 GMT Subject: CN=c2dfebd9f4855018e6970c55ac4d354bf4fe9fdd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:7e:93:de:a3:92:4e:36:6d:69:43:e8:43:fa: 6f:87:9b:70:b0:ce:9e:b7:5d:15:59:dc:19:3d:57: 2e:0b:1b:3f:eb:19:88:ef:3d:5f:4f:f0:d5:7b:21: 48:fd:5f:54:7b:83:94:6e:b6:2c:86:8d:31:1a:41: 8c:d4:59:ad:d9:72:0a:40:2a:c3:f6:48:70:36:be: 6b:00:3f:2f:fe:e8:e7:73:fe:e2:f3:8b:7f:03:74: eb:b3:f6:a0:13:d7:ca:70:61:d6:6a:28:5a:3e:46: 11:f8:b0:4f:04:a1:9d:19:04:4b:05:97:e9:5c:fc: 40:78:5e:d2:0e:45:f2:70:5c:42:a6:38:4a:a4:cc: be:9a:0a:fd:82:fc:ae:c1:c0:03:76:39:e3:d8:7b: 1d:cb:68:1f:fb:a0:fa:56:29:fa:54:a5:a1:98:18: 5e:3d:be:a0:b7:67:7d:c2:8a:18:c0:e0:0c:4e:94: 3c:50:45:6f:6f:1d:57:c8:3e:bd:91:72:f3:bb:db: 82:26:62:e0:b9:aa:f4:5a:a4:24:99:05:a4:90:af: 9e:7c:c4:90:0c:12:06:2f:4c:a3:95:6e:9e:a2:02: 39:74:99:a4:54:14:4c:98:29:4d:8d:ba:63:d5:3e: 7a:9e:b4:33:43:21:8e:10:a7:cd:ea:9d:c8:60:31: 73:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:DF:EB:D9:F4:85:50:18:E6:97:0C:55:AC:4D:35:4B:F4:FE:9F:DD X509v3 Authority Key Identifier: keyid:62:3D:8F:99:DF:A3:09:2D:1F:67:57:EF:AC:B4:9F:9E:00:E6:D4:B9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yj2Pmd-jCS0fZ1fvrLSfngDm1Lk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/9e36b2-3f2d-444f-9d3a-40bcb74e4c28/1/Yj2Pmd-jCS0fZ1fvrLSfngDm1Lk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/88/9e36b2-3f2d-444f-9d3a-40bcb74e4c28/1/Yj2Pmd-jCS0fZ1fvrLSfngDm1Lk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8c:aa:63:7e:cf:92:36:c2:fb:5c:b8:a0:1b:6f:e7:ba:f7:00: 0a:53:0c:67:f7:7f:f9:f4:3a:3e:40:54:b8:5b:a2:05:5c:28: 37:30:c5:81:5d:af:87:22:4f:b9:0e:f8:bf:dd:80:15:08:21: e1:76:fe:78:a1:dc:e1:a8:29:f6:48:13:fe:d7:85:3e:dd:e7: de:74:91:ba:f2:2b:ef:e8:90:29:1d:79:d3:df:3a:ee:02:f4: a4:cd:d3:06:7b:63:ec:01:90:92:5e:50:e3:22:5e:d3:21:3d: 34:a4:f6:ac:93:00:b5:f3:18:28:18:12:1c:1b:10:07:21:59: c3:6b:64:1b:22:73:60:c5:94:a2:65:93:29:13:88:5e:a8:c2: fb:e7:58:15:7b:27:53:a8:f5:e1:1e:7e:f0:53:b2:ca:b1:2d: 5e:49:49:c3:53:53:5c:8f:19:e1:bc:97:75:f8:8c:ce:da:1d: 15:ab:cd:20:51:fb:16:41:2e:b4:fb:ce:a3:6b:0d:fc:4b:84: b3:50:02:73:17:6a:84:d6:fe:aa:06:a2:9b:4d:6b:37:bd:1a: 1c:2b:97:46:54:35:7c:97:d3:aa:1f:7f:92:19:a7:99:bc:67: 15:06:db:47:28:e7:81:bd:21:96:e2:e6:3b:05:d5:f1:b7:c9: 0c:bc:9e:f4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLN85kl/qTHnyh3WeFbJOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYyM2Q4Zjk5ZGZhMzA5MmQxZjY3NTdlZmFjYjQ5ZjllMDBl NmQ0YjkwHhcNMjUxMjA2MDEwMDQxWhcNMjUxMjA3MDEwMDQxWjAzMTEwLwYDVQQD EyhjMmRmZWJkOWY0ODU1MDE4ZTY5NzBjNTVhYzRkMzU0YmY0ZmU5ZmRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnX6T3qOSTjZtaUPoQ/pvh5twsM6e t10VWdwZPVcuCxs/6xmI7z1fT/DVeyFI/V9Ue4OUbrYsho0xGkGM1Fmt2XIKQCrD 9khwNr5rAD8v/ujnc/7i84t/A3Trs/agE9fKcGHWaihaPkYR+LBPBKGdGQRLBZfp XPxAeF7SDkXycFxCpjhKpMy+mgr9gvyuwcADdjnj2Hsdy2gf+6D6Vin6VKWhmBhe Pb6gt2d9wooYwOAMTpQ8UEVvbx1XyD69kXLzu9uCJmLguar0WqQkmQWkkK+efMSQ DBIGL0yjlW6eogI5dJmkVBRMmClNjbpj1T56nrQzQyGOEKfN6p3IYDFzyQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMLf69n0hVAY5pcMVaxNNUv0/p/dMB8GA1UdIwQY MBaAFGI9j5nfowktH2dX76y0n54A5tS5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWWoyUG1kLWpDUzBmWjFmdnJMU2ZuZ0RtMUxrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OC85ZTM2YjItM2YyZC00NDRmLTlkM2Et NDBiY2I3NGU0YzI4LzEvWWoyUG1kLWpDUzBmWjFmdnJMU2ZuZ0RtMUxrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84OC85ZTM2YjItM2YyZC00NDRmLTlkM2EtNDBiY2I3NGU0YzI4 LzEvWWoyUG1kLWpDUzBmWjFmdnJMU2ZuZ0RtMUxrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjKpjfs+S NsL7XLigG2/nuvcAClMMZ/d/+fQ6PkBUuFuiBVwoNzDFgV2vhyJPuQ74v92AFQgh 4Xb+eKHc4agp9kgT/teFPt3n3nSRuvIr7+iQKR1509867gL0pM3TBntj7AGQkl5Q 4yJe0yE9NKT2rJMAtfMYKBgSHBsQByFZw2tkGyJzYMWUomWTKROIXqjC++dYFXsn U6j14R5+8FOyyrEtXklJw1NTXI8Z4byXdfiMztodFavNIFH7FkEutPvOo2sN/EuE s1ACcxdqhNb+qgaim01rN70aHCuXRlQ1fJfTqh9/khmnmbxnFQbbRyjngb0hluLm OwXV8bfJDLye9A== -----END CERTIFICATE-----Generated at Sat Dec 6 06:57:23 2025 by rpki-client