This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/d25015-7d24-4ad5-a2c1-ac4e28c2c5b6/1/yoFg7-OfGjB3_dL68ipkgEtUE4I.mft File: yoFg7-OfGjB3_dL68ipkgEtUE4I.mft (raw, json) Hash identifier: xxLlA+NJs75VduijobnCcaXbBlfPH7zMma+k+vcBkRw= Subject key identifier: 4E:B9:A1:05:0C:E9:F1:16:6D:2D:12:78:33:8F:52:E2:29:05:E7:B1 Authority key identifier: CA:81:60:EF:E3:9F:1A:30:77:FD:D2:FA:F2:2A:64:80:4B:54:13:82 Certificate issuer: /CN=ca8160efe39f1a3077fdd2faf22a64804b541382 Certificate serial: 019AF1D1CAEC9B6B79414821A4F8612CB8E1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yoFg7-OfGjB3_dL68ipkgEtUE4I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/d25015-7d24-4ad5-a2c1-ac4e28c2c5b6/1/yoFg7-OfGjB3_dL68ipkgEtUE4I.mft Manifest number: 1401 Signing time: Sat 06 Dec 2025 04:00:49 +0000 Manifest this update: Sat 06 Dec 2025 04:00:49 +0000 Manifest next update: Sun 07 Dec 2025 04:00:49 +0000 Files and hashes: 1: h-rZd3ShfaYedaYA6tLbzrX_MkU.roa (hash: 6iJffUIazxHr4GTAEcidCyRV9SNB9d9va8nX06PMskE=) 2: yoFg7-OfGjB3_dL68ipkgEtUE4I.crl (hash: TclQRtiz2MGH0zhPGD/LmXfAotuqukmZnXvAw+AWu0o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/d25015-7d24-4ad5-a2c1-ac4e28c2c5b6/1/yoFg7-OfGjB3_dL68ipkgEtUE4I.crl rsync://rpki.ripe.net/repository/DEFAULT/9a/d25015-7d24-4ad5-a2c1-ac4e28c2c5b6/1/yoFg7-OfGjB3_dL68ipkgEtUE4I.mft rsync://rpki.ripe.net/repository/DEFAULT/yoFg7-OfGjB3_dL68ipkgEtUE4I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:d1:ca:ec:9b:6b:79:41:48:21:a4:f8:61:2c:b8:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ca8160efe39f1a3077fdd2faf22a64804b541382 Validity Not Before: Dec 6 04:00:49 2025 GMT Not After : Dec 7 04:00:49 2025 GMT Subject: CN=4eb9a1050ce9f1166d2d1278338f52e22905e7b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:c4:bf:b8:10:83:00:07:42:9c:4b:eb:15:78: b8:2a:6a:3f:fa:24:52:a3:89:cc:c6:64:55:6b:04: 04:a9:91:33:b8:9f:82:a8:ee:b4:a2:e2:19:19:ac: b1:45:07:cd:46:a2:b3:d6:f1:d9:5e:53:28:c9:9f: d4:21:6d:77:ee:07:51:ec:21:b0:da:4b:9b:dc:06: 50:3e:78:0d:09:ff:1f:59:28:a6:0c:23:77:a9:84: 1d:46:76:9c:9a:c4:a2:ff:da:72:72:c9:15:88:dc: 6c:55:0a:4e:3e:90:e0:b6:2d:65:e4:2f:e6:02:c1: a0:fd:f7:ff:3d:8d:0e:74:d9:1c:46:6c:3b:bc:3b: 08:65:59:cd:5a:9b:e3:42:ef:6b:0e:12:f5:a4:48: c1:2c:d3:37:5d:40:af:cd:31:8f:05:4a:d5:52:60: 9c:67:33:cb:2d:3a:ce:15:af:5e:40:44:28:78:31: 05:76:73:5b:a8:81:78:50:0a:88:8b:46:3d:ef:4b: 15:d0:53:2d:7b:b8:b9:65:63:9f:fb:f0:aa:90:91: 90:d9:75:7d:a9:91:53:ae:1a:da:36:44:1d:e9:61: f5:79:63:0e:a7:df:7a:02:c0:ba:1e:0d:95:9c:7b: fd:e7:e6:2e:a0:8a:1f:43:c5:c7:28:ec:55:b2:c4: 8c:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:B9:A1:05:0C:E9:F1:16:6D:2D:12:78:33:8F:52:E2:29:05:E7:B1 X509v3 Authority Key Identifier: keyid:CA:81:60:EF:E3:9F:1A:30:77:FD:D2:FA:F2:2A:64:80:4B:54:13:82 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yoFg7-OfGjB3_dL68ipkgEtUE4I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/d25015-7d24-4ad5-a2c1-ac4e28c2c5b6/1/yoFg7-OfGjB3_dL68ipkgEtUE4I.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/d25015-7d24-4ad5-a2c1-ac4e28c2c5b6/1/yoFg7-OfGjB3_dL68ipkgEtUE4I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 28:f9:94:8c:0c:3d:c7:a4:14:1b:24:d5:a6:fc:ae:18:2a:d5: a7:90:8b:19:e1:ff:d4:12:4b:cc:85:ed:b5:ee:3e:e3:70:a2: bd:73:cd:13:83:c4:10:52:29:46:25:6d:9f:eb:31:f5:4e:7d: 55:6e:df:a7:e8:65:04:a3:cf:3d:fa:33:1b:76:67:86:c8:fc: 6b:c2:db:12:a8:f8:03:5a:29:31:63:db:8e:8f:d8:8a:c8:fa: e9:7d:f4:8a:86:21:9b:76:13:a9:a6:dd:e7:aa:27:08:9b:f9: e1:40:1e:c7:17:de:7d:fe:c7:06:bf:c5:5b:3f:89:f4:16:a2: e8:70:f8:86:17:b9:a0:d7:51:99:5b:0c:6d:2c:94:7b:12:5d: 9f:c6:b2:85:e4:54:d5:bc:eb:ca:ae:07:bd:98:82:82:53:70: 65:6a:b1:44:7f:c0:c5:4d:0d:94:b2:fe:61:86:4b:fc:18:dc: a2:0a:52:85:f9:78:59:c7:64:fa:31:ee:d2:54:5d:03:91:ad: 65:73:5c:1a:a2:88:ec:b1:a3:b8:b6:5a:20:2f:8f:ec:eb:91: e2:10:4f:26:22:0b:f6:6e:fb:fc:11:24:2c:d6:22:b6:bb:93: 85:c2:5f:49:e5:a4:ba:bd:cf:c1:f9:94:f8:fd:c7:4e:57:1f: b6:08:a8:a0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrx0crsm2t5QUghpPhhLLjhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNhODE2MGVmZTM5ZjFhMzA3N2ZkZDJmYWYyMmE2NDgwNGI1 NDEzODIwHhcNMjUxMjA2MDQwMDQ5WhcNMjUxMjA3MDQwMDQ5WjAzMTEwLwYDVQQD Eyg0ZWI5YTEwNTBjZTlmMTE2NmQyZDEyNzgzMzhmNTJlMjI5MDVlN2IxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkMS/uBCDAAdCnEvrFXi4Kmo/+iRS o4nMxmRVawQEqZEzuJ+CqO60ouIZGayxRQfNRqKz1vHZXlMoyZ/UIW137gdR7CGw 2kub3AZQPngNCf8fWSimDCN3qYQdRnacmsSi/9pycskViNxsVQpOPpDgti1l5C/m AsGg/ff/PY0OdNkcRmw7vDsIZVnNWpvjQu9rDhL1pEjBLNM3XUCvzTGPBUrVUmCc ZzPLLTrOFa9eQEQoeDEFdnNbqIF4UAqIi0Y970sV0FMte7i5ZWOf+/CqkJGQ2XV9 qZFTrhraNkQd6WH1eWMOp996AsC6Hg2VnHv95+YuoIofQ8XHKOxVssSMJQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFE65oQUM6fEWbS0SeDOPUuIpBeexMB8GA1UdIwQY MBaAFMqBYO/jnxowd/3S+vIqZIBLVBOCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveW9GZzctT2ZHakIzX2RMNjhpcGtnRXRVRTRJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85YS9kMjUwMTUtN2QyNC00YWQ1LWEyYzEt YWM0ZTI4YzJjNWI2LzEveW9GZzctT2ZHakIzX2RMNjhpcGtnRXRVRTRJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85YS9kMjUwMTUtN2QyNC00YWQ1LWEyYzEtYWM0ZTI4YzJjNWI2 LzEveW9GZzctT2ZHakIzX2RMNjhpcGtnRXRVRTRJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKPmUjAw9 x6QUGyTVpvyuGCrVp5CLGeH/1BJLzIXtte4+43CivXPNE4PEEFIpRiVtn+sx9U59 VW7fp+hlBKPPPfozG3Znhsj8a8LbEqj4A1opMWPbjo/Yisj66X30ioYhm3YTqabd 56onCJv54UAexxfeff7HBr/FWz+J9Bai6HD4hhe5oNdRmVsMbSyUexJdn8ayheRU 1bzryq4HvZiCglNwZWqxRH/AxU0NlLL+YYZL/BjcogpShfl4Wcdk+jHu0lRdA5Gt ZXNcGqKI7LGjuLZaIC+P7OuR4hBPJiIL9m77/BEkLNYitruThcJfSeWkur3PwfmU +P3HTlcftgiooA== -----END CERTIFICATE-----Generated at Sat Dec 6 08:07:07 2025 by rpki-client