This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/af334a-f9b3-419d-b590-fb0fb1c06c74/1/Y3A8pQxDKs1_HLunwH2iICKZymM.mft File: Y3A8pQxDKs1_HLunwH2iICKZymM.mft (raw, json) Hash identifier: UtF8Aeb/q70d7s/6/35UnYr3UX9a3ePgweJc75fEXts= Subject key identifier: A6:BD:65:6B:47:BD:5A:BC:DB:5D:21:CB:EF:DA:9A:94:BF:3E:E8:EE Authority key identifier: 63:70:3C:A5:0C:43:2A:CD:7F:1C:BB:A7:C0:7D:A2:20:22:99:CA:63 Certificate issuer: /CN=63703ca50c432acd7f1cbba7c07da2202299ca63 Certificate serial: 019B2AAE6F6E56B26D9B41324AC6787CF388 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y3A8pQxDKs1_HLunwH2iICKZymM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/af334a-f9b3-419d-b590-fb0fb1c06c74/1/Y3A8pQxDKs1_HLunwH2iICKZymM.mft Manifest number: 1483 Signing time: Wed 17 Dec 2025 05:00:33 +0000 Manifest this update: Wed 17 Dec 2025 05:00:33 +0000 Manifest next update: Thu 18 Dec 2025 05:00:33 +0000 Files and hashes: 1: Y3A8pQxDKs1_HLunwH2iICKZymM.crl (hash: kO43Egdnkitzoc7hFHkOp99RFIC/GOOe1cWokwpcQHE=) 2: uKlqiwtoXkp9xjLftlQ9vTMqqrs.roa (hash: EwwfvCJkfqVqVmU0gYHOqumHmaTFzwTDUQGR86XAOZk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/af334a-f9b3-419d-b590-fb0fb1c06c74/1/Y3A8pQxDKs1_HLunwH2iICKZymM.crl rsync://rpki.ripe.net/repository/DEFAULT/9c/af334a-f9b3-419d-b590-fb0fb1c06c74/1/Y3A8pQxDKs1_HLunwH2iICKZymM.mft rsync://rpki.ripe.net/repository/DEFAULT/Y3A8pQxDKs1_HLunwH2iICKZymM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 05:00:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2a:ae:6f:6e:56:b2:6d:9b:41:32:4a:c6:78:7c:f3:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=63703ca50c432acd7f1cbba7c07da2202299ca63 Validity Not Before: Dec 17 05:00:33 2025 GMT Not After : Dec 18 05:00:33 2025 GMT Subject: CN=a6bd656b47bd5abcdb5d21cbefda9a94bf3ee8ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:08:45:88:f6:bf:f7:8a:66:36:09:97:8c:af: cc:01:af:20:a3:24:ba:7a:a3:e4:55:30:52:4e:26: a4:55:36:c6:08:a2:16:8c:c1:ab:f1:d5:c0:ff:6d: 7f:f3:34:7b:e7:9b:ab:b6:2a:30:e8:ce:12:9c:ea: 7e:27:13:fb:d0:d8:c4:11:1a:45:ca:ea:c2:38:dc: 18:17:15:63:60:87:f3:1f:b1:1d:a1:1a:8e:93:c9: 8c:35:d8:45:b5:45:ca:07:3d:05:b7:dc:c6:f5:4f: 73:9f:9e:8a:8e:e7:43:07:a4:ee:c8:b9:15:85:94: 53:f8:7f:78:ad:58:32:d7:0e:b3:b7:b6:77:25:73: 06:2f:5e:de:da:c6:79:1e:6e:bf:08:9f:b7:f1:79: 74:46:f1:3a:0d:0f:0c:f0:62:7a:91:a2:16:ce:81: a3:2f:3a:72:06:84:e0:b6:76:03:0c:d7:52:e5:40: 6a:a1:45:c7:52:71:98:07:ad:fb:33:fd:2e:cf:ff: 67:29:7a:a5:4f:29:64:1a:f1:32:b2:d4:97:56:d6: bc:7e:25:b8:7c:e9:ba:a6:bb:1e:ad:8b:c9:f5:fc: 41:51:08:10:9f:0a:bc:86:93:dc:e4:94:61:2b:c2: e7:7f:ec:88:ad:9e:e9:83:3a:64:ce:96:8c:a3:22: 35:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:BD:65:6B:47:BD:5A:BC:DB:5D:21:CB:EF:DA:9A:94:BF:3E:E8:EE X509v3 Authority Key Identifier: keyid:63:70:3C:A5:0C:43:2A:CD:7F:1C:BB:A7:C0:7D:A2:20:22:99:CA:63 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y3A8pQxDKs1_HLunwH2iICKZymM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/af334a-f9b3-419d-b590-fb0fb1c06c74/1/Y3A8pQxDKs1_HLunwH2iICKZymM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/af334a-f9b3-419d-b590-fb0fb1c06c74/1/Y3A8pQxDKs1_HLunwH2iICKZymM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8b:01:e1:69:2e:b0:49:2a:29:60:b6:bd:e8:20:20:4b:b6:43: ec:3d:54:2c:06:35:6f:a3:4a:4d:7f:9e:d8:14:45:0f:fd:af: 05:06:8e:b5:51:90:cd:e5:5d:85:1e:cd:a1:60:79:e7:1c:73: 88:64:b4:9c:1e:d1:79:81:2d:9c:ca:61:91:8c:2f:67:5a:f5: bd:12:7a:02:f7:2e:ae:fd:01:13:7a:a9:a3:3a:27:c1:7b:59: 0a:31:a7:a4:bc:35:37:df:44:38:32:8f:83:05:c8:a6:25:de: 94:73:14:a0:e0:57:e6:8f:9c:ce:2b:da:23:5e:56:0b:da:ff: e9:ed:50:40:b8:1d:33:e9:82:65:4e:25:97:fe:90:56:a0:b1: af:d3:79:69:2c:35:80:bc:ae:72:b1:da:a0:8a:c2:e1:d5:e3: 97:3b:45:fd:7d:79:fd:64:d2:f5:1c:3d:0b:e0:e7:6f:59:85: e7:cc:f4:2a:42:1c:9c:29:5e:41:4c:a5:ff:66:3c:d1:f7:3a: dd:f1:31:52:85:84:61:1f:34:0c:d7:97:c4:70:ed:88:33:68: c9:9f:f4:bb:1c:02:bd:d8:f8:40:f5:26:ba:35:5e:2c:5c:6a: b6:f7:1e:6b:81:b4:54:08:53:17:d0:da:e6:20:96:cd:65:3b: f3:e2:17:74 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsqrm9uVrJtm0EySsZ4fPOIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYzNzAzY2E1MGM0MzJhY2Q3ZjFjYmJhN2MwN2RhMjIwMjI5 OWNhNjMwHhcNMjUxMjE3MDUwMDMzWhcNMjUxMjE4MDUwMDMzWjAzMTEwLwYDVQQD EyhhNmJkNjU2YjQ3YmQ1YWJjZGI1ZDIxY2JlZmRhOWE5NGJmM2VlOGVlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3ghFiPa/94pmNgmXjK/MAa8goyS6 eqPkVTBSTiakVTbGCKIWjMGr8dXA/21/8zR755urtiow6M4SnOp+JxP70NjEERpF yurCONwYFxVjYIfzH7EdoRqOk8mMNdhFtUXKBz0Ft9zG9U9zn56KjudDB6TuyLkV hZRT+H94rVgy1w6zt7Z3JXMGL17e2sZ5Hm6/CJ+38Xl0RvE6DQ8M8GJ6kaIWzoGj LzpyBoTgtnYDDNdS5UBqoUXHUnGYB637M/0uz/9nKXqlTylkGvEystSXVta8fiW4 fOm6prserYvJ9fxBUQgQnwq8hpPc5JRhK8Lnf+yIrZ7pgzpkzpaMoyI1bQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKa9ZWtHvVq8210hy+/ampS/PujuMB8GA1UdIwQY MBaAFGNwPKUMQyrNfxy7p8B9oiAimcpjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWTNBOHBReERLczFfSEx1bndIMmlJQ0taeW1NLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yy9hZjMzNGEtZjliMy00MTlkLWI1OTAt ZmIwZmIxYzA2Yzc0LzEvWTNBOHBReERLczFfSEx1bndIMmlJQ0taeW1NLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Yy9hZjMzNGEtZjliMy00MTlkLWI1OTAtZmIwZmIxYzA2Yzc0 LzEvWTNBOHBReERLczFfSEx1bndIMmlJQ0taeW1NLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiwHhaS6w SSopYLa96CAgS7ZD7D1ULAY1b6NKTX+e2BRFD/2vBQaOtVGQzeVdhR7NoWB55xxz iGS0nB7ReYEtnMphkYwvZ1r1vRJ6Avcurv0BE3qpozonwXtZCjGnpLw1N99EODKP gwXIpiXelHMUoOBX5o+czivaI15WC9r/6e1QQLgdM+mCZU4ll/6QVqCxr9N5aSw1 gLyucrHaoIrC4dXjlztF/X15/WTS9Rw9C+Dnb1mF58z0KkIcnCleQUyl/2Y80fc6 3fExUoWEYR80DNeXxHDtiDNoyZ/0uxwCvdj4QPUmujVeLFxqtvcea4G0VAhTF9Da 5iCWzWU78+IXdA== -----END CERTIFICATE-----Generated at Wed Dec 17 13:48:31 2025 by rpki-client