This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/98e825-b58c-456e-af28-7b35a06ab54b/1/YQy4N7bSF3jkw9u5aWefDxxQtIo.mft File: YQy4N7bSF3jkw9u5aWefDxxQtIo.mft (raw, json) Hash identifier: Tw3cMA2/H5WW3UDSo0ltmOe0hOZynSILr7brLtRe8I4= Subject key identifier: B5:DC:D0:A8:6F:32:13:F1:F7:62:D5:80:57:41:1E:AE:24:14:2F:E9 Authority key identifier: 61:0C:B8:37:B6:D2:17:78:E4:C3:DB:B9:69:67:9F:0F:1C:50:B4:8A Certificate issuer: /CN=610cb837b6d21778e4c3dbb969679f0f1c50b48a Certificate serial: 019AF12D3A3B23034A1E7779C2A5ADAE0F84 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YQy4N7bSF3jkw9u5aWefDxxQtIo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/98e825-b58c-456e-af28-7b35a06ab54b/1/YQy4N7bSF3jkw9u5aWefDxxQtIo.mft Manifest number: 0F79 Signing time: Sat 06 Dec 2025 01:01:04 +0000 Manifest this update: Sat 06 Dec 2025 01:01:04 +0000 Manifest next update: Sun 07 Dec 2025 01:01:04 +0000 Files and hashes: 1: YQy4N7bSF3jkw9u5aWefDxxQtIo.crl (hash: KZQzNga/ae5BYO2uddmqgDm1MZ1e1qaCHUtNFRKA6es=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/98e825-b58c-456e-af28-7b35a06ab54b/1/YQy4N7bSF3jkw9u5aWefDxxQtIo.crl rsync://rpki.ripe.net/repository/DEFAULT/a3/98e825-b58c-456e-af28-7b35a06ab54b/1/YQy4N7bSF3jkw9u5aWefDxxQtIo.mft rsync://rpki.ripe.net/repository/DEFAULT/YQy4N7bSF3jkw9u5aWefDxxQtIo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:01:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2d:3a:3b:23:03:4a:1e:77:79:c2:a5:ad:ae:0f:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=610cb837b6d21778e4c3dbb969679f0f1c50b48a Validity Not Before: Dec 6 01:01:04 2025 GMT Not After : Dec 7 01:01:04 2025 GMT Subject: CN=b5dcd0a86f3213f1f762d58057411eae24142fe9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:bb:a1:3d:fb:7b:bb:50:3a:0e:ff:fd:6a:a3: ef:94:28:f6:b3:c6:9a:51:a1:48:1c:de:84:1a:ed: db:c0:34:a4:dc:63:26:4e:dd:08:01:8d:64:1f:01: d2:b0:2b:39:d9:7b:89:a2:45:45:95:2c:10:86:cc: 90:6b:8c:da:79:b0:18:24:d0:77:02:89:14:54:7c: e8:7e:3e:0d:68:90:ea:9b:9b:46:ec:5a:5d:70:59: 32:b8:f3:36:73:8c:b0:52:b1:19:7b:96:ea:79:b0: d1:fe:26:f2:68:73:e8:4e:dd:cf:04:dd:3a:c2:ef: c0:ff:ac:b5:00:7a:0e:96:c0:a0:9c:be:b6:c3:1a: 6a:6e:70:5d:f0:dd:9a:1d:a4:7f:b8:dd:d9:37:cc: b9:c9:5f:4f:49:f2:21:e5:e7:69:d6:7c:57:04:41: 83:8d:96:89:e5:24:e0:5a:fb:06:74:17:88:a6:e6: c0:4a:9d:c8:f5:56:92:7b:a8:9d:ac:9f:1d:6d:d5: e9:35:f3:80:0e:ac:38:fb:9f:b9:94:46:26:a3:3e: 0b:36:89:d6:63:0a:a1:eb:eb:87:5d:55:63:f4:21: 64:3f:40:42:cb:92:b1:bf:98:6c:41:a4:d8:38:7e: 16:ec:ec:ec:9e:20:83:f6:60:1a:6d:5d:99:20:28: 72:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:DC:D0:A8:6F:32:13:F1:F7:62:D5:80:57:41:1E:AE:24:14:2F:E9 X509v3 Authority Key Identifier: keyid:61:0C:B8:37:B6:D2:17:78:E4:C3:DB:B9:69:67:9F:0F:1C:50:B4:8A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YQy4N7bSF3jkw9u5aWefDxxQtIo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/98e825-b58c-456e-af28-7b35a06ab54b/1/YQy4N7bSF3jkw9u5aWefDxxQtIo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/98e825-b58c-456e-af28-7b35a06ab54b/1/YQy4N7bSF3jkw9u5aWefDxxQtIo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3e:7d:a8:67:f5:17:41:18:77:f9:5b:e4:9a:b2:ba:d3:66:0c: 86:fe:3e:19:85:51:0f:b8:53:c2:f2:02:82:7d:8e:fd:72:f0: 1f:10:5e:d2:50:74:e8:0e:ec:f9:4f:63:5d:bf:c2:79:7c:87: 39:11:d4:77:29:4c:8b:f1:4d:8d:2c:39:ae:a0:1b:8e:54:0f: 0e:3d:3c:0c:38:fc:e3:b0:97:16:c4:b3:fb:0f:30:83:be:fc: 71:8f:8a:8f:40:c1:cc:6e:58:05:74:05:d5:23:f0:9e:db:b3: 72:e6:ce:4c:4c:31:db:29:8d:93:d4:a8:06:4f:0a:8f:91:d9: 29:f1:f0:76:c9:e4:fa:d7:70:b9:86:e9:27:87:69:05:8a:f2: 48:37:4e:f7:dc:64:6e:c2:0b:db:96:14:ac:81:09:41:f2:b3: cd:26:6b:93:05:41:8e:85:83:4b:b2:6c:df:13:4e:9a:95:a9: 98:e8:fa:7a:32:77:59:ab:b9:33:5b:3e:b5:9d:82:b3:fa:a0: e8:cc:00:8e:36:ac:ba:a0:a3:28:ea:a3:45:bf:e3:7d:0d:71: 39:7e:bc:b1:08:37:07:60:69:c0:b8:2a:06:08:7d:2e:cc:db: b4:99:5f:49:de:f1:15:8f:69:05:19:af:74:ed:c5:16:24:7d: 2b:db:cc:90 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLTo7IwNKHnd5wqWtrg+EMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYxMGNiODM3YjZkMjE3NzhlNGMzZGJiOTY5Njc5ZjBmMWM1 MGI0OGEwHhcNMjUxMjA2MDEwMTA0WhcNMjUxMjA3MDEwMTA0WjAzMTEwLwYDVQQD EyhiNWRjZDBhODZmMzIxM2YxZjc2MmQ1ODA1NzQxMWVhZTI0MTQyZmU5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3LuhPft7u1A6Dv/9aqPvlCj2s8aa UaFIHN6EGu3bwDSk3GMmTt0IAY1kHwHSsCs52XuJokVFlSwQhsyQa4zaebAYJNB3 AokUVHzofj4NaJDqm5tG7FpdcFkyuPM2c4ywUrEZe5bqebDR/ibyaHPoTt3PBN06 wu/A/6y1AHoOlsCgnL62wxpqbnBd8N2aHaR/uN3ZN8y5yV9PSfIh5edp1nxXBEGD jZaJ5STgWvsGdBeIpubASp3I9VaSe6idrJ8dbdXpNfOADqw4+5+5lEYmoz4LNonW Ywqh6+uHXVVj9CFkP0BCy5Kxv5hsQaTYOH4W7OzsniCD9mAabV2ZIChy0wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLXc0KhvMhPx92LVgFdBHq4kFC/pMB8GA1UdIwQY MBaAFGEMuDe20hd45MPbuWlnnw8cULSKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWVF5NE43YlNGM2prdzl1NWFXZWZEeHhRdElvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy85OGU4MjUtYjU4Yy00NTZlLWFmMjgt N2IzNWEwNmFiNTRiLzEvWVF5NE43YlNGM2prdzl1NWFXZWZEeHhRdElvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMy85OGU4MjUtYjU4Yy00NTZlLWFmMjgtN2IzNWEwNmFiNTRi LzEvWVF5NE43YlNGM2prdzl1NWFXZWZEeHhRdElvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPn2oZ/UX QRh3+VvkmrK602YMhv4+GYVRD7hTwvICgn2O/XLwHxBe0lB06A7s+U9jXb/CeXyH ORHUdylMi/FNjSw5rqAbjlQPDj08DDj847CXFsSz+w8wg778cY+Kj0DBzG5YBXQF 1SPwntuzcubOTEwx2ymNk9SoBk8Kj5HZKfHwdsnk+tdwuYbpJ4dpBYrySDdO99xk bsIL25YUrIEJQfKzzSZrkwVBjoWDS7Js3xNOmpWpmOj6ejJ3Wau5M1s+tZ2Cs/qg 6MwAjjasuqCjKOqjRb/jfQ1xOX68sQg3B2BpwLgqBgh9LszbtJlfSd7xFY9pBRmv dO3FFiR9K9vMkA== -----END CERTIFICATE-----Generated at Sat Dec 6 07:24:58 2025 by rpki-client