This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/af334a-f9b3-419d-b590-fb0fb1c06c74/1/Y3A8pQxDKs1_HLunwH2iICKZymM.mft File: Y3A8pQxDKs1_HLunwH2iICKZymM.mft (raw, json) Hash identifier: HYuojGpHkKB/xbNgDlmSTCDRJBX+ou4w+zxmkgLKxMU= Subject key identifier: 40:1A:04:FC:55:BD:31:A2:7B:8E:EB:AD:21:31:88:0B:DE:44:0E:C7 Authority key identifier: 63:70:3C:A5:0C:43:2A:CD:7F:1C:BB:A7:C0:7D:A2:20:22:99:CA:63 Certificate issuer: /CN=63703ca50c432acd7f1cbba7c07da2202299ca63 Certificate serial: 019AF2AD3C422AD156E21F00D069CD54E9B4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y3A8pQxDKs1_HLunwH2iICKZymM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/af334a-f9b3-419d-b590-fb0fb1c06c74/1/Y3A8pQxDKs1_HLunwH2iICKZymM.mft Manifest number: 1466 Signing time: Sat 06 Dec 2025 08:00:30 +0000 Manifest this update: Sat 06 Dec 2025 08:00:30 +0000 Manifest next update: Sun 07 Dec 2025 08:00:30 +0000 Files and hashes: 1: Y3A8pQxDKs1_HLunwH2iICKZymM.crl (hash: t8lWTrsVCeNL97riVeuBVvqLL796qhqwwnsxPapyhi0=) 2: uKlqiwtoXkp9xjLftlQ9vTMqqrs.roa (hash: EwwfvCJkfqVqVmU0gYHOqumHmaTFzwTDUQGR86XAOZk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/af334a-f9b3-419d-b590-fb0fb1c06c74/1/Y3A8pQxDKs1_HLunwH2iICKZymM.crl rsync://rpki.ripe.net/repository/DEFAULT/9c/af334a-f9b3-419d-b590-fb0fb1c06c74/1/Y3A8pQxDKs1_HLunwH2iICKZymM.mft rsync://rpki.ripe.net/repository/DEFAULT/Y3A8pQxDKs1_HLunwH2iICKZymM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 08:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:ad:3c:42:2a:d1:56:e2:1f:00:d0:69:cd:54:e9:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=63703ca50c432acd7f1cbba7c07da2202299ca63 Validity Not Before: Dec 6 08:00:30 2025 GMT Not After : Dec 7 08:00:30 2025 GMT Subject: CN=401a04fc55bd31a27b8eebad2131880bde440ec7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:ef:3c:16:fa:e4:fb:f0:51:19:96:77:bd:52: 50:55:ec:58:26:eb:e1:3c:89:d7:1a:67:2d:b7:3d: 5c:09:ac:e3:04:9e:c9:15:24:1b:27:4b:5c:52:5b: ee:4b:19:dd:2a:f2:23:73:b3:4a:13:3c:58:e6:71: d3:32:c4:05:df:8c:fa:17:60:9c:38:50:94:94:e6: 35:4f:76:3a:97:68:ea:c7:5d:eb:c5:08:4e:24:ec: f2:f0:6f:aa:c9:8d:99:a1:cf:6f:50:c1:2c:0d:f9: 92:bc:3c:cf:79:05:98:e8:ab:50:d2:73:e5:e8:7b: 3f:a0:7c:74:bc:7b:50:64:a4:2c:af:3b:75:01:5e: d5:35:3b:d4:73:ad:b6:1e:6d:a9:02:72:1f:8f:e0: e0:77:29:ed:8a:69:60:ab:ce:7b:ac:84:c4:54:3b: 8d:66:02:86:ad:36:20:ef:6a:f1:09:c3:00:b8:1d: 84:81:65:83:f7:aa:32:0c:29:bb:9b:f8:52:4e:6b: 5a:d1:1f:c5:2a:ba:1a:31:39:54:78:57:3a:5c:5b: e7:87:99:77:aa:8d:e0:c4:fb:e8:99:c0:0c:9b:e0: 5f:d3:6e:3f:4c:3a:85:81:b9:7c:18:a4:a1:61:8d: 96:9e:16:ec:2e:cb:54:d4:02:a1:15:f9:4d:87:53: fd:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:1A:04:FC:55:BD:31:A2:7B:8E:EB:AD:21:31:88:0B:DE:44:0E:C7 X509v3 Authority Key Identifier: keyid:63:70:3C:A5:0C:43:2A:CD:7F:1C:BB:A7:C0:7D:A2:20:22:99:CA:63 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y3A8pQxDKs1_HLunwH2iICKZymM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/af334a-f9b3-419d-b590-fb0fb1c06c74/1/Y3A8pQxDKs1_HLunwH2iICKZymM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/af334a-f9b3-419d-b590-fb0fb1c06c74/1/Y3A8pQxDKs1_HLunwH2iICKZymM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3d:0e:93:6c:51:0e:bd:f4:3e:01:c9:1c:31:3a:42:3b:58:18: 6b:93:58:1b:43:2a:35:d3:81:85:e0:d2:80:82:8a:7b:42:cd: 78:09:d5:38:52:f6:6c:68:6b:5d:7b:cc:4f:3b:e3:54:21:33: 21:93:d3:1a:83:4c:fc:07:60:96:a9:64:f2:b3:74:3c:05:27: 19:45:cb:e0:6a:36:c1:08:4e:09:fd:59:8c:0d:ea:8f:ea:c0: ad:cf:9e:f0:10:be:13:fb:dc:ab:c2:7b:32:bc:25:a6:8b:d3: 5c:b8:2f:77:5c:de:f0:a4:3a:0b:1f:f4:1a:eb:32:b4:2d:2f: 3f:81:08:d3:4f:23:a6:72:38:08:08:60:ef:f7:dd:e8:b8:bf: b8:f3:a0:05:59:10:7b:c1:7f:34:82:dc:f2:67:b5:43:64:12: 12:85:21:05:4e:1a:f2:41:ad:02:bb:2d:f7:c7:81:b1:30:cb: 17:45:fd:e7:5c:89:bf:e7:7b:f5:49:22:04:e8:2c:8b:50:16: 73:88:85:c2:d7:a4:14:54:07:35:74:d4:95:13:97:f9:9f:b7: a0:ac:78:51:ec:75:55:1f:12:7a:f7:01:cb:45:2a:0e:81:39: 06:21:3e:62:f3:97:f1:2b:40:41:86:48:39:62:c4:1b:30:c2: f4:8a:eb:62 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryrTxCKtFW4h8A0GnNVOm0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYzNzAzY2E1MGM0MzJhY2Q3ZjFjYmJhN2MwN2RhMjIwMjI5 OWNhNjMwHhcNMjUxMjA2MDgwMDMwWhcNMjUxMjA3MDgwMDMwWjAzMTEwLwYDVQQD Eyg0MDFhMDRmYzU1YmQzMWEyN2I4ZWViYWQyMTMxODgwYmRlNDQwZWM3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm+88Fvrk+/BRGZZ3vVJQVexYJuvh PInXGmcttz1cCazjBJ7JFSQbJ0tcUlvuSxndKvIjc7NKEzxY5nHTMsQF34z6F2Cc OFCUlOY1T3Y6l2jqx13rxQhOJOzy8G+qyY2Zoc9vUMEsDfmSvDzPeQWY6KtQ0nPl 6Hs/oHx0vHtQZKQsrzt1AV7VNTvUc622Hm2pAnIfj+Dgdyntimlgq857rITEVDuN ZgKGrTYg72rxCcMAuB2EgWWD96oyDCm7m/hSTmta0R/FKroaMTlUeFc6XFvnh5l3 qo3gxPvomcAMm+Bf024/TDqFgbl8GKShYY2WnhbsLstU1AKhFflNh1P99wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEAaBPxVvTGie47rrSExiAveRA7HMB8GA1UdIwQY MBaAFGNwPKUMQyrNfxy7p8B9oiAimcpjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWTNBOHBReERLczFfSEx1bndIMmlJQ0taeW1NLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yy9hZjMzNGEtZjliMy00MTlkLWI1OTAt ZmIwZmIxYzA2Yzc0LzEvWTNBOHBReERLczFfSEx1bndIMmlJQ0taeW1NLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Yy9hZjMzNGEtZjliMy00MTlkLWI1OTAtZmIwZmIxYzA2Yzc0 LzEvWTNBOHBReERLczFfSEx1bndIMmlJQ0taeW1NLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPQ6TbFEO vfQ+AckcMTpCO1gYa5NYG0MqNdOBheDSgIKKe0LNeAnVOFL2bGhrXXvMTzvjVCEz IZPTGoNM/Adglqlk8rN0PAUnGUXL4Go2wQhOCf1ZjA3qj+rArc+e8BC+E/vcq8J7 MrwlpovTXLgvd1ze8KQ6Cx/0GusytC0vP4EI008jpnI4CAhg7/fd6Li/uPOgBVkQ e8F/NILc8me1Q2QSEoUhBU4a8kGtArst98eBsTDLF0X951yJv+d79UkiBOgsi1AW c4iFwtekFFQHNXTUlROX+Z+3oKx4Uex1VR8SevcBy0UqDoE5BiE+YvOX8StAQYZI OWLEGzDC9IrrYg== -----END CERTIFICATE-----Generated at Sat Dec 6 17:32:26 2025 by rpki-client