This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/a0cdd8-092d-43bb-a2a8-880c2e4faa6e/1/Y2sCe_q5GqRxmoDv4CEkYTdCi9o.mft File: Y2sCe_q5GqRxmoDv4CEkYTdCi9o.mft (raw, json) Hash identifier: I116tUv50TH0DYRI1xFTvCHRCWB+FUzB4BlHCz9qRUU= Subject key identifier: ED:11:EA:E1:F2:2E:E0:5E:8F:FF:08:17:EC:D6:9B:2C:02:CF:19:88 Authority key identifier: 63:6B:02:7B:FA:B9:1A:A4:71:9A:80:EF:E0:21:24:61:37:42:8B:DA Certificate issuer: /CN=636b027bfab91aa4719a80efe021246137428bda Certificate serial: 019AF465436D0028151DB0817C8A1185B710 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y2sCe_q5GqRxmoDv4CEkYTdCi9o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/a0cdd8-092d-43bb-a2a8-880c2e4faa6e/1/Y2sCe_q5GqRxmoDv4CEkYTdCi9o.mft Manifest number: 1502 Signing time: Sat 06 Dec 2025 16:01:08 +0000 Manifest this update: Sat 06 Dec 2025 16:01:08 +0000 Manifest next update: Sun 07 Dec 2025 16:01:08 +0000 Files and hashes: 1: Y2sCe_q5GqRxmoDv4CEkYTdCi9o.crl (hash: htNg2I2NlabS4ODybzq9uIbYBaP5MBD7e/07TqqaWhE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/a0cdd8-092d-43bb-a2a8-880c2e4faa6e/1/Y2sCe_q5GqRxmoDv4CEkYTdCi9o.crl rsync://rpki.ripe.net/repository/DEFAULT/97/a0cdd8-092d-43bb-a2a8-880c2e4faa6e/1/Y2sCe_q5GqRxmoDv4CEkYTdCi9o.mft rsync://rpki.ripe.net/repository/DEFAULT/Y2sCe_q5GqRxmoDv4CEkYTdCi9o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f4:65:43:6d:00:28:15:1d:b0:81:7c:8a:11:85:b7:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=636b027bfab91aa4719a80efe021246137428bda Validity Not Before: Dec 6 16:01:08 2025 GMT Not After : Dec 7 16:01:08 2025 GMT Subject: CN=ed11eae1f22ee05e8fff0817ecd69b2c02cf1988 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:77:51:bb:64:bf:f8:55:b1:da:90:1f:3b:1c: fa:02:ff:29:f8:7d:f6:24:af:20:72:e3:8e:df:89: a7:29:3b:e3:e8:2f:32:a2:9d:79:b9:ae:75:80:c6: b5:41:6f:8d:b5:fe:9f:07:ea:45:8f:13:13:b2:a1: 07:ca:32:29:e7:c7:d7:4f:ac:93:4f:55:61:39:06: 8d:66:0c:1e:30:93:04:72:1b:3b:de:20:25:a3:ed: 59:52:39:dc:c6:6d:e2:65:fb:ee:27:42:f5:49:0b: 9d:19:0a:a1:2b:db:90:7e:27:3b:9e:60:2b:83:25: ef:42:cd:e8:b3:11:81:6e:6c:99:e6:1e:73:0f:29: 59:99:0d:f6:67:60:b5:d7:c0:fa:85:13:34:7f:58: 14:df:4c:1b:21:fe:c0:cd:39:8a:49:2b:b5:39:43: ea:0f:62:fe:a5:73:f6:fa:68:8d:01:1e:58:1d:2a: 98:17:57:48:e7:5f:6f:64:85:af:c1:32:df:64:20: 75:cb:f9:5e:df:d2:3a:1c:ec:f7:df:00:88:14:1b: ba:d2:0e:68:58:73:ce:9e:70:36:b0:e2:6b:6f:d6: d0:05:98:2e:ff:77:78:d4:d1:5d:57:6e:e1:8a:e1: 3d:b4:5c:3b:9b:6f:59:55:48:7e:29:d1:34:17:02: 1a:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:11:EA:E1:F2:2E:E0:5E:8F:FF:08:17:EC:D6:9B:2C:02:CF:19:88 X509v3 Authority Key Identifier: keyid:63:6B:02:7B:FA:B9:1A:A4:71:9A:80:EF:E0:21:24:61:37:42:8B:DA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y2sCe_q5GqRxmoDv4CEkYTdCi9o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/a0cdd8-092d-43bb-a2a8-880c2e4faa6e/1/Y2sCe_q5GqRxmoDv4CEkYTdCi9o.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/97/a0cdd8-092d-43bb-a2a8-880c2e4faa6e/1/Y2sCe_q5GqRxmoDv4CEkYTdCi9o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption af:33:df:4f:74:c4:2d:69:6f:73:9f:a5:69:28:a1:87:49:ba: ea:b1:ae:ff:c0:dc:8a:e9:03:9f:12:ca:a1:eb:f1:11:f0:74: ee:70:21:f2:8b:da:06:81:ea:8b:8c:87:7a:c0:ce:f9:02:90: b1:99:ab:72:03:3a:46:c0:8c:64:72:61:02:ae:c0:50:a7:37: bb:28:ae:0f:08:6f:5b:38:8d:50:2a:0a:91:a5:90:55:fe:f3: 70:a1:86:93:4e:8f:6d:82:a1:b2:71:6d:3a:80:1f:53:92:62: 06:75:5c:1f:71:4f:92:fb:47:61:9d:ee:31:4c:da:38:bf:70: 11:e5:7e:38:7b:bd:b0:cc:5e:66:32:cb:34:4b:ac:3f:89:da: 93:8b:3f:f7:d0:7c:94:79:7e:e5:cc:56:b7:a9:2a:f6:ea:92: d1:95:cb:64:63:a2:9b:33:d4:e8:1f:5e:ee:e2:f1:28:b1:76: 98:6e:a1:f7:de:27:ae:1d:cf:2f:a0:3e:97:c3:7d:38:db:ce: 71:78:39:cd:1b:1d:08:4a:e8:9e:ec:a8:15:83:87:57:f0:e0: ff:ac:0a:63:90:92:13:6f:c4:57:35:93:b1:44:38:d0:d9:e4: 03:2a:1f:6b:95:a6:c5:9d:c1:b1:a8:dc:3e:89:31:d7:e0:33: 00:52:44:1f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr0ZUNtACgVHbCBfIoRhbcQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYzNmIwMjdiZmFiOTFhYTQ3MTlhODBlZmUwMjEyNDYxMzc0 MjhiZGEwHhcNMjUxMjA2MTYwMTA4WhcNMjUxMjA3MTYwMTA4WjAzMTEwLwYDVQQD EyhlZDExZWFlMWYyMmVlMDVlOGZmZjA4MTdlY2Q2OWIyYzAyY2YxOTg4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAindRu2S/+FWx2pAfOxz6Av8p+H32 JK8gcuOO34mnKTvj6C8yop15ua51gMa1QW+Ntf6fB+pFjxMTsqEHyjIp58fXT6yT T1VhOQaNZgweMJMEchs73iAlo+1ZUjncxm3iZfvuJ0L1SQudGQqhK9uQfic7nmAr gyXvQs3osxGBbmyZ5h5zDylZmQ32Z2C118D6hRM0f1gU30wbIf7AzTmKSSu1OUPq D2L+pXP2+miNAR5YHSqYF1dI519vZIWvwTLfZCB1y/le39I6HOz33wCIFBu60g5o WHPOnnA2sOJrb9bQBZgu/3d41NFdV27hiuE9tFw7m29ZVUh+KdE0FwIaoQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFO0R6uHyLuBej/8IF+zWmywCzxmIMB8GA1UdIwQY MBaAFGNrAnv6uRqkcZqA7+AhJGE3QovaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWTJzQ2VfcTVHcVJ4bW9EdjRDRWtZVGRDaTlvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Ny9hMGNkZDgtMDkyZC00M2JiLWEyYTgt ODgwYzJlNGZhYTZlLzEvWTJzQ2VfcTVHcVJ4bW9EdjRDRWtZVGRDaTlvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Ny9hMGNkZDgtMDkyZC00M2JiLWEyYTgtODgwYzJlNGZhYTZl LzEvWTJzQ2VfcTVHcVJ4bW9EdjRDRWtZVGRDaTlvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArzPfT3TE LWlvc5+laSihh0m66rGu/8DciukDnxLKoevxEfB07nAh8ovaBoHqi4yHesDO+QKQ sZmrcgM6RsCMZHJhAq7AUKc3uyiuDwhvWziNUCoKkaWQVf7zcKGGk06PbYKhsnFt OoAfU5JiBnVcH3FPkvtHYZ3uMUzaOL9wEeV+OHu9sMxeZjLLNEusP4nak4s/99B8 lHl+5cxWt6kq9uqS0ZXLZGOimzPU6B9e7uLxKLF2mG6h994nrh3PL6A+l8N9ONvO cXg5zRsdCEronuyoFYOHV/Dg/6wKY5CSE2/EVzWTsUQ40NnkAyofa5WmxZ3Bsajc Pokx1+AzAFJEHw== -----END CERTIFICATE-----Generated at Sat Dec 6 19:20:13 2025 by rpki-client