This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/856c05-d7b2-499a-af39-39dfa48ea6b9/1/yiMaQ2K8HsD9tDSZAbYcz51nnWU.mft File: yiMaQ2K8HsD9tDSZAbYcz51nnWU.mft (raw, json) Hash identifier: /HL+iHF3s2EH9kU3SiWSovBW84V5+jSbhOFCDe63+2w= Subject key identifier: 51:C5:9A:D5:10:8B:28:EC:7F:46:DC:AD:57:B9:9D:69:CC:99:31:7E Authority key identifier: CA:23:1A:43:62:BC:1E:C0:FD:B4:34:99:01:B6:1C:CF:9D:67:9D:65 Certificate issuer: /CN=ca231a4362bc1ec0fdb4349901b61ccf9d679d65 Certificate serial: 019AF12EA54CCAA2AE2B5CFE8E8C1C8E5B9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yiMaQ2K8HsD9tDSZAbYcz51nnWU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/856c05-d7b2-499a-af39-39dfa48ea6b9/1/yiMaQ2K8HsD9tDSZAbYcz51nnWU.mft Manifest number: 04E6 Signing time: Sat 06 Dec 2025 01:02:37 +0000 Manifest this update: Sat 06 Dec 2025 01:02:37 +0000 Manifest next update: Sun 07 Dec 2025 01:02:37 +0000 Files and hashes: 1: eVWj75QB5-NY5cip7EaAMqsD3_Q.roa (hash: R8SYABsszbTf/c1Z91aXqCMR7hgNS09va3LcQa+6Zyg=) 2: yiMaQ2K8HsD9tDSZAbYcz51nnWU.crl (hash: 7s8UTH0dNJVjrX7LE+J2wELQf1Ei17/rwgb5P9ugnWo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/856c05-d7b2-499a-af39-39dfa48ea6b9/1/yiMaQ2K8HsD9tDSZAbYcz51nnWU.crl rsync://rpki.ripe.net/repository/DEFAULT/95/856c05-d7b2-499a-af39-39dfa48ea6b9/1/yiMaQ2K8HsD9tDSZAbYcz51nnWU.mft rsync://rpki.ripe.net/repository/DEFAULT/yiMaQ2K8HsD9tDSZAbYcz51nnWU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:02:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2e:a5:4c:ca:a2:ae:2b:5c:fe:8e:8c:1c:8e:5b:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ca231a4362bc1ec0fdb4349901b61ccf9d679d65 Validity Not Before: Dec 6 01:02:37 2025 GMT Not After : Dec 7 01:02:37 2025 GMT Subject: CN=51c59ad5108b28ec7f46dcad57b99d69cc99317e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:5e:95:95:88:91:d6:0e:41:b4:d9:17:d8:af: 0a:f3:f9:35:d4:a5:7e:68:1f:6a:46:33:57:20:42: 8f:fd:22:62:58:79:47:37:ac:c0:7b:26:55:da:ea: 90:42:3e:f0:00:dc:b1:a5:22:66:c3:77:47:d4:b9: c5:c6:0b:b2:d4:3b:d9:f5:15:b4:af:a9:0c:c1:99: cc:28:9f:28:28:b5:a6:1f:32:0d:36:cc:fd:d8:7c: 83:4d:dc:78:3f:87:c0:a7:62:11:c3:86:65:39:90: 34:bb:39:df:94:91:23:0e:54:4e:c4:36:10:e3:44: 22:b3:9e:80:f6:da:4a:cc:a8:1a:f2:63:52:47:aa: 3e:af:8c:04:7e:e0:c6:3a:ef:a2:de:b9:0c:b9:13: c0:cd:2e:e9:19:6e:4d:e8:5b:8f:be:02:59:62:e8: f6:2e:ef:a7:67:49:24:d9:1c:4e:d4:e5:09:1f:a8: a8:ac:2e:88:14:2e:2e:2b:57:40:15:fb:43:33:f9: 12:f7:47:2b:f3:27:19:8c:1b:5e:08:02:2b:1a:c9: d7:ce:21:b3:1b:c1:ab:cb:7e:f4:bc:b6:75:88:23: 03:3e:b0:53:40:8e:99:48:f5:12:91:7a:c4:db:6d: a2:28:59:8c:69:dd:7a:fb:51:64:f7:04:4a:24:34: bb:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:C5:9A:D5:10:8B:28:EC:7F:46:DC:AD:57:B9:9D:69:CC:99:31:7E X509v3 Authority Key Identifier: keyid:CA:23:1A:43:62:BC:1E:C0:FD:B4:34:99:01:B6:1C:CF:9D:67:9D:65 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yiMaQ2K8HsD9tDSZAbYcz51nnWU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/856c05-d7b2-499a-af39-39dfa48ea6b9/1/yiMaQ2K8HsD9tDSZAbYcz51nnWU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/95/856c05-d7b2-499a-af39-39dfa48ea6b9/1/yiMaQ2K8HsD9tDSZAbYcz51nnWU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 50:8c:16:44:1a:9b:b0:ce:e8:b8:80:24:af:8c:62:e1:be:f6: c1:ed:bb:d5:12:84:f9:1e:cd:d6:2d:60:9c:5b:8a:24:3d:4c: f7:79:05:d4:97:d5:96:0f:b0:30:b2:df:f9:c2:8f:35:b0:a2: 69:57:78:72:1e:4f:85:8c:b4:d9:2f:b7:eb:43:b8:80:74:a7: 40:85:fc:cc:ae:c9:61:42:61:16:45:ce:e0:f7:34:55:7e:54: 37:47:e2:46:c6:69:34:48:15:ba:65:1a:26:61:8a:4f:59:3d: 55:cb:cc:2c:7d:95:37:fe:03:4a:9c:af:80:30:c6:03:d6:1b: a8:5a:65:0d:f8:56:26:48:d8:4d:16:41:60:b2:48:73:6a:6f: 2d:51:f3:7f:d0:e2:47:e0:d4:ff:97:a4:69:83:10:99:74:b2: 0c:6c:47:88:e3:dc:de:32:28:45:27:c0:c1:be:3f:1d:d3:96: da:54:c4:a8:d6:43:de:6f:78:f5:bb:7a:ea:10:4c:c3:3c:aa: 28:6b:b6:75:ea:c8:bc:d6:90:aa:90:eb:49:c5:57:14:f9:c7: 76:b8:fa:a9:85:2b:af:ec:59:df:30:13:b6:3b:d0:4b:6b:a7: b2:a5:c1:3c:90:12:29:e4:a8:56:60:99:12:a5:07:ed:d1:35: 88:6e:f0:94 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLqVMyqKuK1z+jowcjlucMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNhMjMxYTQzNjJiYzFlYzBmZGI0MzQ5OTAxYjYxY2NmOWQ2 NzlkNjUwHhcNMjUxMjA2MDEwMjM3WhcNMjUxMjA3MDEwMjM3WjAzMTEwLwYDVQQD Eyg1MWM1OWFkNTEwOGIyOGVjN2Y0NmRjYWQ1N2I5OWQ2OWNjOTkzMTdlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoV6VlYiR1g5BtNkX2K8K8/k11KV+ aB9qRjNXIEKP/SJiWHlHN6zAeyZV2uqQQj7wANyxpSJmw3dH1LnFxguy1DvZ9RW0 r6kMwZnMKJ8oKLWmHzINNsz92HyDTdx4P4fAp2IRw4ZlOZA0uznflJEjDlROxDYQ 40Qis56A9tpKzKga8mNSR6o+r4wEfuDGOu+i3rkMuRPAzS7pGW5N6FuPvgJZYuj2 Lu+nZ0kk2RxO1OUJH6iorC6IFC4uK1dAFftDM/kS90cr8ycZjBteCAIrGsnXziGz G8Gry370vLZ1iCMDPrBTQI6ZSPUSkXrE222iKFmMad16+1Fk9wRKJDS77QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFHFmtUQiyjsf0bcrVe5nWnMmTF+MB8GA1UdIwQY MBaAFMojGkNivB7A/bQ0mQG2HM+dZ51lMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveWlNYVEySzhIc0Q5dERTWkFiWWN6NTFubldVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NS84NTZjMDUtZDdiMi00OTlhLWFmMzkt MzlkZmE0OGVhNmI5LzEveWlNYVEySzhIc0Q5dERTWkFiWWN6NTFubldVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85NS84NTZjMDUtZDdiMi00OTlhLWFmMzktMzlkZmE0OGVhNmI5 LzEveWlNYVEySzhIc0Q5dERTWkFiWWN6NTFubldVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUIwWRBqb sM7ouIAkr4xi4b72we271RKE+R7N1i1gnFuKJD1M93kF1JfVlg+wMLLf+cKPNbCi aVd4ch5PhYy02S+360O4gHSnQIX8zK7JYUJhFkXO4Pc0VX5UN0fiRsZpNEgVumUa JmGKT1k9VcvMLH2VN/4DSpyvgDDGA9YbqFplDfhWJkjYTRZBYLJIc2pvLVHzf9Di R+DU/5ekaYMQmXSyDGxHiOPc3jIoRSfAwb4/HdOW2lTEqNZD3m949bt66hBMwzyq KGu2derIvNaQqpDrScVXFPnHdrj6qYUrr+xZ3zATtjvQS2unsqXBPJASKeSoVmCZ EqUH7dE1iG7wlA== -----END CERTIFICATE-----Generated at Sat Dec 6 07:21:16 2025 by rpki-client