This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/54213d-c3ed-4d67-b9bf-7ba136f51ef9/1/YhuOSG7srmEk3hBJT9OROe1KN8s.mft File: YhuOSG7srmEk3hBJT9OROe1KN8s.mft (raw, json) Hash identifier: srGIZLNcSHCadGIRE7hKISH1P5x4Ur1/oZWkDNKOdUQ= Subject key identifier: 39:BC:59:B1:AD:09:62:0F:4F:C3:3C:D1:DA:B4:63:32:41:75:94:DD Authority key identifier: 62:1B:8E:48:6E:EC:AE:61:24:DE:10:49:4F:D3:91:39:ED:4A:37:CB Certificate issuer: /CN=621b8e486eecae6124de10494fd39139ed4a37cb Certificate serial: 019AF16449877761AA826007E34E67AA30C2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YhuOSG7srmEk3hBJT9OROe1KN8s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/54213d-c3ed-4d67-b9bf-7ba136f51ef9/1/YhuOSG7srmEk3hBJT9OROe1KN8s.mft Manifest number: 1761 Signing time: Sat 06 Dec 2025 02:01:12 +0000 Manifest this update: Sat 06 Dec 2025 02:01:12 +0000 Manifest next update: Sun 07 Dec 2025 02:01:12 +0000 Files and hashes: 1: YhuOSG7srmEk3hBJT9OROe1KN8s.crl (hash: Af501GyItQ7pVkFZwt3qT24Op+HOCwqLp7UWNbQH45U=) 2: eKGme1_RE2Cve029wfoTPnjkx8E.roa (hash: 7e5ken09Fa398flHkK+xPpARVfWAIKVd53mQhTUCt6w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/54213d-c3ed-4d67-b9bf-7ba136f51ef9/1/YhuOSG7srmEk3hBJT9OROe1KN8s.crl rsync://rpki.ripe.net/repository/DEFAULT/98/54213d-c3ed-4d67-b9bf-7ba136f51ef9/1/YhuOSG7srmEk3hBJT9OROe1KN8s.mft rsync://rpki.ripe.net/repository/DEFAULT/YhuOSG7srmEk3hBJT9OROe1KN8s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:01:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:64:49:87:77:61:aa:82:60:07:e3:4e:67:aa:30:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=621b8e486eecae6124de10494fd39139ed4a37cb Validity Not Before: Dec 6 02:01:12 2025 GMT Not After : Dec 7 02:01:12 2025 GMT Subject: CN=39bc59b1ad09620f4fc33cd1dab46332417594dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:e0:3c:81:d2:b5:93:8f:88:47:d5:97:47:3c: 05:c6:2e:dd:13:6e:c3:d9:a5:2f:1b:be:67:ca:9b: c0:25:94:f3:b6:da:75:7b:82:f5:6e:78:c7:2a:df: 7c:90:8d:be:be:ef:d0:8d:23:04:02:ec:ae:97:94: 4c:ab:38:83:6e:fe:97:7e:7e:c1:ef:9d:2b:12:7e: 7b:b5:92:2b:ac:67:58:8b:cf:0f:57:03:e0:f6:4f: 4a:34:86:2f:3b:d3:e4:b4:16:03:13:69:14:6d:e1: b1:d1:4e:73:ef:13:97:66:4c:d9:c4:27:de:89:7f: 3f:3f:59:fd:38:ca:4e:ba:13:bc:60:eb:90:4e:b8: 34:05:07:31:ea:80:59:d1:5e:b6:d2:c4:64:fe:21: bb:1b:89:ed:f2:d4:a8:ad:3b:30:99:df:22:28:df: 26:f0:6d:e7:c5:1e:63:1f:bb:23:9d:6c:a4:9c:de: cc:f6:2f:04:60:3d:3d:24:c1:7a:62:a8:34:16:02: e3:36:49:f3:e5:6a:91:5d:6d:e9:a4:4a:bb:db:7d: 50:0e:90:48:ef:a1:95:8c:03:fb:04:c0:4f:2b:a9: d1:08:cf:b8:b8:54:da:da:23:d7:cc:b9:d5:4c:20: 51:07:52:48:ef:e2:41:f7:a9:d7:a7:25:da:8d:22: 5f:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:BC:59:B1:AD:09:62:0F:4F:C3:3C:D1:DA:B4:63:32:41:75:94:DD X509v3 Authority Key Identifier: keyid:62:1B:8E:48:6E:EC:AE:61:24:DE:10:49:4F:D3:91:39:ED:4A:37:CB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YhuOSG7srmEk3hBJT9OROe1KN8s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/54213d-c3ed-4d67-b9bf-7ba136f51ef9/1/YhuOSG7srmEk3hBJT9OROe1KN8s.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/98/54213d-c3ed-4d67-b9bf-7ba136f51ef9/1/YhuOSG7srmEk3hBJT9OROe1KN8s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 08:a3:b7:4b:1b:f5:9d:38:07:f2:7b:51:a0:ba:76:d8:bf:c8: fc:b2:cf:d6:c5:40:76:3b:67:d3:21:92:a0:69:f5:f6:a7:89: ad:96:cc:01:3c:64:97:21:37:1c:88:09:55:b4:d5:ad:b6:07: 24:07:45:d7:1a:3a:cf:33:90:49:6c:ad:45:e8:03:a4:fb:27: 16:4e:1f:85:04:95:06:6e:1d:19:54:f1:d1:f4:41:c9:72:d5: 86:85:00:3f:85:de:d6:7a:aa:56:19:f6:b4:e3:9f:16:c8:c5: 43:09:3f:69:a1:06:c4:d1:7c:c5:c3:57:e7:08:a8:bd:7d:34: 4a:3d:ab:9d:2b:2a:fc:94:00:16:7d:a9:6d:2c:01:2a:63:5b: b0:56:f3:3f:80:b0:c2:a4:51:d6:ae:3a:e3:9c:2b:cf:ff:8a: 8a:33:7a:57:46:98:57:9f:3d:a9:b1:03:fe:48:09:8f:8b:ee: 03:d0:f5:ff:08:b5:01:c9:24:2f:3d:03:6d:53:a2:8d:66:9e: fc:1a:3d:0d:bc:a6:4a:f9:0b:b7:74:85:a3:92:15:13:50:4e: 25:15:f9:25:3a:cc:3d:b4:c2:45:b0:da:fe:9c:8d:da:41:52: 4a:3e:09:07:29:bf:95:c5:5f:75:a2:ce:17:9f:e8:d7:5c:d9: 08:3b:2d:12 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxZEmHd2GqgmAH405nqjDCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYyMWI4ZTQ4NmVlY2FlNjEyNGRlMTA0OTRmZDM5MTM5ZWQ0 YTM3Y2IwHhcNMjUxMjA2MDIwMTEyWhcNMjUxMjA3MDIwMTEyWjAzMTEwLwYDVQQD EygzOWJjNTliMWFkMDk2MjBmNGZjMzNjZDFkYWI0NjMzMjQxNzU5NGRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqOA8gdK1k4+IR9WXRzwFxi7dE27D 2aUvG75nypvAJZTzttp1e4L1bnjHKt98kI2+vu/QjSMEAuyul5RMqziDbv6Xfn7B 750rEn57tZIrrGdYi88PVwPg9k9KNIYvO9PktBYDE2kUbeGx0U5z7xOXZkzZxCfe iX8/P1n9OMpOuhO8YOuQTrg0BQcx6oBZ0V620sRk/iG7G4nt8tSorTswmd8iKN8m 8G3nxR5jH7sjnWyknN7M9i8EYD09JMF6Yqg0FgLjNknz5WqRXW3ppEq7231QDpBI 76GVjAP7BMBPK6nRCM+4uFTa2iPXzLnVTCBRB1JI7+JB96nXpyXajSJf4QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDm8WbGtCWIPT8M80dq0YzJBdZTdMB8GA1UdIwQY MBaAFGIbjkhu7K5hJN4QSU/TkTntSjfLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWWh1T1NHN3NybUVrM2hCSlQ5T1JPZTFLTjhzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OC81NDIxM2QtYzNlZC00ZDY3LWI5YmYt N2JhMTM2ZjUxZWY5LzEvWWh1T1NHN3NybUVrM2hCSlQ5T1JPZTFLTjhzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85OC81NDIxM2QtYzNlZC00ZDY3LWI5YmYtN2JhMTM2ZjUxZWY5 LzEvWWh1T1NHN3NybUVrM2hCSlQ5T1JPZTFLTjhzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACKO3Sxv1 nTgH8ntRoLp22L/I/LLP1sVAdjtn0yGSoGn19qeJrZbMATxklyE3HIgJVbTVrbYH JAdF1xo6zzOQSWytRegDpPsnFk4fhQSVBm4dGVTx0fRByXLVhoUAP4Xe1nqqVhn2 tOOfFsjFQwk/aaEGxNF8xcNX5wiovX00Sj2rnSsq/JQAFn2pbSwBKmNbsFbzP4Cw wqRR1q4645wrz/+KijN6V0aYV589qbED/kgJj4vuA9D1/wi1AckkLz0DbVOijWae /Bo9DbymSvkLt3SFo5IVE1BOJRX5JTrMPbTCRbDa/pyN2kFSSj4JBym/lcVfdaLO F5/o11zZCDstEg== -----END CERTIFICATE-----Generated at Sat Dec 6 11:13:16 2025 by rpki-client