This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/1d2c58-a07b-449d-84ad-2a20a608f631/1/yEg4FrQ75KdvYGCDK-xJkvpamM4.mft File: yEg4FrQ75KdvYGCDK-xJkvpamM4.mft (raw, json) Hash identifier: 20We2QIRSUqSTCCzSlGQGr4EBImrLurkMCjZVtei/5A= Subject key identifier: 96:19:62:87:03:A8:04:3E:7B:28:32:D3:B2:3C:16:AE:87:C6:3A:A3 Authority key identifier: C8:48:38:16:B4:3B:E4:A7:6F:60:60:83:2B:EC:49:92:FA:5A:98:CE Certificate issuer: /CN=c8483816b43be4a76f6060832bec4992fa5a98ce Certificate serial: 019AF164170D1A44903812B1C8BD1CAB12EE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yEg4FrQ75KdvYGCDK-xJkvpamM4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/1d2c58-a07b-449d-84ad-2a20a608f631/1/yEg4FrQ75KdvYGCDK-xJkvpamM4.mft Manifest number: 0785 Signing time: Sat 06 Dec 2025 02:00:59 +0000 Manifest this update: Sat 06 Dec 2025 02:00:59 +0000 Manifest next update: Sun 07 Dec 2025 02:00:59 +0000 Files and hashes: 1: yEg4FrQ75KdvYGCDK-xJkvpamM4.crl (hash: 2LMMRbjr8UYyv6GWaqmyA8HdMaEYnTKDfJoT04i5VtU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/1d2c58-a07b-449d-84ad-2a20a608f631/1/yEg4FrQ75KdvYGCDK-xJkvpamM4.crl rsync://rpki.ripe.net/repository/DEFAULT/a8/1d2c58-a07b-449d-84ad-2a20a608f631/1/yEg4FrQ75KdvYGCDK-xJkvpamM4.mft rsync://rpki.ripe.net/repository/DEFAULT/yEg4FrQ75KdvYGCDK-xJkvpamM4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:64:17:0d:1a:44:90:38:12:b1:c8:bd:1c:ab:12:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c8483816b43be4a76f6060832bec4992fa5a98ce Validity Not Before: Dec 6 02:00:59 2025 GMT Not After : Dec 7 02:00:59 2025 GMT Subject: CN=9619628703a8043e7b2832d3b23c16ae87c63aa3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:82:c4:0b:c8:78:0d:fd:54:b9:41:6c:5d:8e: e3:bc:3c:5e:57:a8:d4:cd:13:bd:8c:15:18:3b:3f: 78:43:a0:47:b6:29:c8:27:78:dc:3b:85:dd:10:3c: e3:3d:6b:5a:06:58:ee:1d:15:10:52:a8:38:09:1f: 76:54:73:2d:f0:c8:30:64:0a:c4:20:c6:37:9b:b9: 1c:c2:be:9c:6b:64:46:2d:da:e8:08:a9:47:01:6f: 9b:53:ee:19:b3:b8:91:0b:8a:f9:3b:e8:2e:d4:cb: 0b:9c:44:52:2c:16:d9:90:53:28:14:0d:53:b1:6a: 1f:df:39:62:30:80:74:0d:ec:0a:a7:30:b4:91:34: 38:0a:3d:37:8a:b1:42:64:75:59:02:00:f5:7b:54: 2a:ea:a7:d2:8f:cd:e3:a9:8a:25:60:5f:7e:7a:05: c3:6d:25:43:d6:41:ef:87:bd:fd:b4:96:7c:65:24: d7:94:83:84:9c:31:a8:4e:d7:f3:74:5d:db:a0:c0: 60:85:fb:9e:71:06:09:be:66:db:b6:cd:16:a0:84: 18:53:ad:a5:ad:8c:43:54:96:cd:ef:f1:89:ce:26: 00:4d:4c:b5:d5:a2:74:8f:d1:17:27:4a:e1:87:5a: 37:08:99:83:b4:e9:57:72:2d:c5:f5:d9:20:da:81: 33:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:19:62:87:03:A8:04:3E:7B:28:32:D3:B2:3C:16:AE:87:C6:3A:A3 X509v3 Authority Key Identifier: keyid:C8:48:38:16:B4:3B:E4:A7:6F:60:60:83:2B:EC:49:92:FA:5A:98:CE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yEg4FrQ75KdvYGCDK-xJkvpamM4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/1d2c58-a07b-449d-84ad-2a20a608f631/1/yEg4FrQ75KdvYGCDK-xJkvpamM4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/1d2c58-a07b-449d-84ad-2a20a608f631/1/yEg4FrQ75KdvYGCDK-xJkvpamM4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5c:57:bf:29:43:e7:20:00:d9:a2:34:37:f9:cd:3c:1b:41:5a: 13:43:a0:af:83:43:59:5e:2e:81:7b:9e:10:ca:0b:21:39:b6: d3:9e:a1:ba:b9:4a:87:4a:d1:41:d5:32:d8:a3:63:aa:01:28: f6:6e:52:0c:a8:30:d9:30:47:55:1d:81:a1:3c:81:d3:0c:0a: 42:43:c4:c2:a8:be:f2:a9:8c:3a:f8:10:4a:cb:df:a9:78:f5: c6:63:f6:4c:53:57:9f:dc:f0:c9:f3:7b:e6:bd:88:2c:b3:ee: 3d:02:e6:49:e7:76:db:82:74:43:be:93:41:7c:27:6c:8e:01: f9:d0:55:c6:59:ab:92:ec:76:da:31:f8:86:79:17:46:64:3b: 7b:da:c8:e8:ad:bd:4b:6c:71:e0:d7:b2:94:a6:8a:27:e3:6c: a6:25:f2:e7:d7:93:7f:1b:05:bb:58:87:76:f0:c3:d9:fb:d6: 23:c0:96:93:d3:96:97:4a:bb:36:ee:c5:0c:75:d1:5b:6d:97: 21:4b:c6:58:b1:ad:29:b6:85:c2:e2:ce:95:09:71:9d:b5:6d: c5:7e:68:bc:cd:5e:be:bc:4b:0c:4f:ed:1b:58:c2:3c:9f:b5: 0c:3d:83:f6:82:19:db:a2:c0:43:62:49:f6:2e:13:46:1f:bb: 37:c7:d8:69 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxZBcNGkSQOBKxyL0cqxLuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM4NDgzODE2YjQzYmU0YTc2ZjYwNjA4MzJiZWM0OTkyZmE1 YTk4Y2UwHhcNMjUxMjA2MDIwMDU5WhcNMjUxMjA3MDIwMDU5WjAzMTEwLwYDVQQD Eyg5NjE5NjI4NzAzYTgwNDNlN2IyODMyZDNiMjNjMTZhZTg3YzYzYWEzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv4LEC8h4Df1UuUFsXY7jvDxeV6jU zRO9jBUYOz94Q6BHtinIJ3jcO4XdEDzjPWtaBljuHRUQUqg4CR92VHMt8MgwZArE IMY3m7kcwr6ca2RGLdroCKlHAW+bU+4Zs7iRC4r5O+gu1MsLnERSLBbZkFMoFA1T sWof3zliMIB0DewKpzC0kTQ4Cj03irFCZHVZAgD1e1Qq6qfSj83jqYolYF9+egXD bSVD1kHvh739tJZ8ZSTXlIOEnDGoTtfzdF3boMBghfuecQYJvmbbts0WoIQYU62l rYxDVJbN7/GJziYATUy11aJ0j9EXJ0rhh1o3CJmDtOlXci3F9dkg2oEzPQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJYZYocDqAQ+eygy07I8Fq6HxjqjMB8GA1UdIwQY MBaAFMhIOBa0O+Snb2BggyvsSZL6WpjOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveUVnNEZyUTc1S2R2WUdDREsteEprdnBhbU00LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOC8xZDJjNTgtYTA3Yi00NDlkLTg0YWQt MmEyMGE2MDhmNjMxLzEveUVnNEZyUTc1S2R2WUdDREsteEprdnBhbU00Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hOC8xZDJjNTgtYTA3Yi00NDlkLTg0YWQtMmEyMGE2MDhmNjMx LzEveUVnNEZyUTc1S2R2WUdDREsteEprdnBhbU00LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXFe/KUPn IADZojQ3+c08G0FaE0Ogr4NDWV4ugXueEMoLITm2056hurlKh0rRQdUy2KNjqgEo 9m5SDKgw2TBHVR2BoTyB0wwKQkPEwqi+8qmMOvgQSsvfqXj1xmP2TFNXn9zwyfN7 5r2ILLPuPQLmSed224J0Q76TQXwnbI4B+dBVxlmrkux22jH4hnkXRmQ7e9rI6K29 S2xx4NeylKaKJ+NspiXy59eTfxsFu1iHdvDD2fvWI8CWk9OWl0q7Nu7FDHXRW22X IUvGWLGtKbaFwuLOlQlxnbVtxX5ovM1evrxLDE/tG1jCPJ+1DD2D9oIZ26LAQ2JJ 9i4TRh+7N8fYaQ== -----END CERTIFICATE-----Generated at Sat Dec 6 08:06:16 2025 by rpki-client