This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/b4c9d5-e27f-44bf-ba42-6c3d11d40d78/1/YjqxggzkjFedpAxm2FJl8cLPy04.mft File: YjqxggzkjFedpAxm2FJl8cLPy04.mft (raw, json) Hash identifier: xL8BM055vppcJ1NIBLiMrmqRtpHw5gj7gQno6otFTVM= Subject key identifier: 4A:20:92:E6:2B:C1:0F:E2:67:FB:5B:79:AC:9B:77:D6:0D:CA:FF:B8 Authority key identifier: 62:3A:B1:82:0C:E4:8C:57:9D:A4:0C:66:D8:52:65:F1:C2:CF:CB:4E Certificate issuer: /CN=623ab1820ce48c579da40c66d85265f1c2cfcb4e Certificate serial: 019B35A1134F02828A0496CCBAD6554D2EFB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YjqxggzkjFedpAxm2FJl8cLPy04.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/b4c9d5-e27f-44bf-ba42-6c3d11d40d78/1/YjqxggzkjFedpAxm2FJl8cLPy04.mft Manifest number: 0809 Signing time: Fri 19 Dec 2025 08:01:47 +0000 Manifest this update: Fri 19 Dec 2025 08:01:47 +0000 Manifest next update: Sat 20 Dec 2025 08:01:47 +0000 Files and hashes: 1: YjqxggzkjFedpAxm2FJl8cLPy04.crl (hash: XDe37t0R96/kBQMIVG/tXHCczxQaAczM4BTx6jt0JZs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/b4c9d5-e27f-44bf-ba42-6c3d11d40d78/1/YjqxggzkjFedpAxm2FJl8cLPy04.crl rsync://rpki.ripe.net/repository/DEFAULT/9a/b4c9d5-e27f-44bf-ba42-6c3d11d40d78/1/YjqxggzkjFedpAxm2FJl8cLPy04.mft rsync://rpki.ripe.net/repository/DEFAULT/YjqxggzkjFedpAxm2FJl8cLPy04.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 07:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:35:a1:13:4f:02:82:8a:04:96:cc:ba:d6:55:4d:2e:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=623ab1820ce48c579da40c66d85265f1c2cfcb4e Validity Not Before: Dec 19 08:01:47 2025 GMT Not After : Dec 20 08:01:47 2025 GMT Subject: CN=4a2092e62bc10fe267fb5b79ac9b77d60dcaffb8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:e5:5d:01:fa:27:61:0b:04:61:65:8a:10:bd: 74:cd:e4:07:f8:cb:39:df:66:7a:53:49:b8:58:57: 3b:f9:28:f7:07:d1:8e:65:44:56:3d:20:87:06:b3: df:50:ac:4d:6e:df:7a:42:aa:8b:e4:50:77:16:71: 7f:a2:77:06:b3:f4:d3:71:03:5a:e8:0e:92:cc:1a: fe:4c:30:31:41:27:7e:25:75:ec:d2:74:79:a1:ad: 87:1f:1a:15:a1:5e:bf:a9:31:42:c0:17:87:b5:14: bc:0c:c7:e8:12:54:38:7c:30:25:94:3a:1a:2b:ac: 52:bd:7a:dd:b6:e3:f8:38:68:f2:5a:6b:6b:11:83: 5f:30:38:40:9a:90:06:4b:5f:34:c0:ff:79:d4:9f: e9:50:74:b3:15:35:90:a3:35:43:d5:17:f7:85:15: ae:d8:96:64:e9:6a:97:6d:5e:29:cb:e9:81:95:fb: cc:ee:38:43:18:cd:7c:34:09:0f:27:30:a6:71:06: dd:27:92:7e:b1:40:61:ad:74:39:61:67:f1:ae:bb: 37:dd:71:9c:e0:64:cf:49:76:da:97:58:f6:53:83: b4:ec:de:4f:61:52:d8:43:c8:e5:fe:58:1c:ef:81: 8b:0f:a8:18:21:1c:ee:ae:34:3f:46:db:98:60:c6: 66:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:20:92:E6:2B:C1:0F:E2:67:FB:5B:79:AC:9B:77:D6:0D:CA:FF:B8 X509v3 Authority Key Identifier: keyid:62:3A:B1:82:0C:E4:8C:57:9D:A4:0C:66:D8:52:65:F1:C2:CF:CB:4E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YjqxggzkjFedpAxm2FJl8cLPy04.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/b4c9d5-e27f-44bf-ba42-6c3d11d40d78/1/YjqxggzkjFedpAxm2FJl8cLPy04.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/b4c9d5-e27f-44bf-ba42-6c3d11d40d78/1/YjqxggzkjFedpAxm2FJl8cLPy04.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9f:89:c9:b4:54:4d:65:9e:9e:b0:be:2f:77:52:7a:ce:24:20: c4:7f:68:1f:cd:eb:86:1f:20:c9:cd:ad:36:60:a1:01:42:46: ab:12:d6:9c:a7:c7:5c:bf:12:b2:df:db:94:67:95:65:dc:c0: 2b:5d:0b:dd:e3:57:20:53:96:a3:68:e6:40:3b:3f:ac:c0:1f: 49:88:19:d6:e5:77:4f:47:f3:f0:b2:ca:46:0c:f5:a0:e7:41: 16:db:c8:c7:49:51:98:8c:12:11:bb:21:23:8f:58:33:c6:07: 5a:3f:59:38:08:9b:ae:1c:a6:01:da:3f:a9:d5:6e:53:11:83: 4c:45:ac:9e:14:11:74:13:22:c0:17:3c:09:52:47:5c:0a:d2: a8:09:43:16:2b:14:a0:2d:5e:26:20:e6:02:c6:90:b3:13:97: 99:5f:05:13:f8:33:04:dc:c8:4d:7c:69:98:f8:e5:3e:4a:9e: b5:06:44:d1:0b:30:b1:9c:a1:0c:9d:c7:30:4a:86:a5:a3:a9: fe:69:21:e2:18:e0:3f:88:75:fe:17:da:f6:f8:6f:3c:47:af: 23:28:63:a4:a4:6b:b9:9f:c7:29:31:70:fd:a4:d0:b4:92:cd: 66:4b:b5:d0:25:bb:29:2b:92:ca:93:f6:dd:83:62:93:02:c9: 9a:ac:c1:ef -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs1oRNPAoKKBJbMutZVTS77MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYyM2FiMTgyMGNlNDhjNTc5ZGE0MGM2NmQ4NTI2NWYxYzJj ZmNiNGUwHhcNMjUxMjE5MDgwMTQ3WhcNMjUxMjIwMDgwMTQ3WjAzMTEwLwYDVQQD Eyg0YTIwOTJlNjJiYzEwZmUyNjdmYjViNzlhYzliNzdkNjBkY2FmZmI4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3OVdAfonYQsEYWWKEL10zeQH+Ms5 32Z6U0m4WFc7+Sj3B9GOZURWPSCHBrPfUKxNbt96QqqL5FB3FnF/oncGs/TTcQNa 6A6SzBr+TDAxQSd+JXXs0nR5oa2HHxoVoV6/qTFCwBeHtRS8DMfoElQ4fDAllDoa K6xSvXrdtuP4OGjyWmtrEYNfMDhAmpAGS180wP951J/pUHSzFTWQozVD1Rf3hRWu 2JZk6WqXbV4py+mBlfvM7jhDGM18NAkPJzCmcQbdJ5J+sUBhrXQ5YWfxrrs33XGc 4GTPSXbal1j2U4O07N5PYVLYQ8jl/lgc74GLD6gYIRzurjQ/RtuYYMZmxwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEogkuYrwQ/iZ/tbeaybd9YNyv+4MB8GA1UdIwQY MBaAFGI6sYIM5IxXnaQMZthSZfHCz8tOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWWpxeGdnemtqRmVkcEF4bTJGSmw4Y0xQeTA0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85YS9iNGM5ZDUtZTI3Zi00NGJmLWJhNDIt NmMzZDExZDQwZDc4LzEvWWpxeGdnemtqRmVkcEF4bTJGSmw4Y0xQeTA0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85YS9iNGM5ZDUtZTI3Zi00NGJmLWJhNDItNmMzZDExZDQwZDc4 LzEvWWpxeGdnemtqRmVkcEF4bTJGSmw4Y0xQeTA0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAn4nJtFRN ZZ6esL4vd1J6ziQgxH9oH83rhh8gyc2tNmChAUJGqxLWnKfHXL8Sst/blGeVZdzA K10L3eNXIFOWo2jmQDs/rMAfSYgZ1uV3T0fz8LLKRgz1oOdBFtvIx0lRmIwSEbsh I49YM8YHWj9ZOAibrhymAdo/qdVuUxGDTEWsnhQRdBMiwBc8CVJHXArSqAlDFisU oC1eJiDmAsaQsxOXmV8FE/gzBNzITXxpmPjlPkqetQZE0QswsZyhDJ3HMEqGpaOp /mkh4hjgP4h1/hfa9vhvPEevIyhjpKRruZ/HKTFw/aTQtJLNZku10CW7KSuSypP2 3YNikwLJmqzB7w== -----END CERTIFICATE-----Generated at Fri Dec 19 10:26:40 2025 by rpki-client