This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/1f32cb-dab2-4a9f-ae77-8447e29c1524/1/YDRE4ZlioZHv0vIWoSji9M_io94.mft File: YDRE4ZlioZHv0vIWoSji9M_io94.mft (raw, json) Hash identifier: 6gIbmnC5UXrfECxa292AlfWW/xCtH7Asb/KHwCUE3+Y= Subject key identifier: D0:AD:9C:53:24:B8:AE:4E:83:68:26:97:21:65:F4:8D:13:B6:97:71 Authority key identifier: 60:34:44:E1:99:62:A1:91:EF:D2:F2:16:A1:28:E2:F4:CF:E2:A3:DE Certificate issuer: /CN=603444e19962a191efd2f216a128e2f4cfe2a3de Certificate serial: 019AF31C4966F2D71C8D08755CD086559505 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YDRE4ZlioZHv0vIWoSji9M_io94.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/1f32cb-dab2-4a9f-ae77-8447e29c1524/1/YDRE4ZlioZHv0vIWoSji9M_io94.mft Manifest number: 077C Signing time: Sat 06 Dec 2025 10:01:48 +0000 Manifest this update: Sat 06 Dec 2025 10:01:48 +0000 Manifest next update: Sun 07 Dec 2025 10:01:48 +0000 Files and hashes: 1: YDRE4ZlioZHv0vIWoSji9M_io94.crl (hash: wI3LJeEGdojSFMdnOtrOxA68yzemEt+XMyKdwo5/rGQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/1f32cb-dab2-4a9f-ae77-8447e29c1524/1/YDRE4ZlioZHv0vIWoSji9M_io94.crl rsync://rpki.ripe.net/repository/DEFAULT/a8/1f32cb-dab2-4a9f-ae77-8447e29c1524/1/YDRE4ZlioZHv0vIWoSji9M_io94.mft rsync://rpki.ripe.net/repository/DEFAULT/YDRE4ZlioZHv0vIWoSji9M_io94.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:1c:49:66:f2:d7:1c:8d:08:75:5c:d0:86:55:95:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=603444e19962a191efd2f216a128e2f4cfe2a3de Validity Not Before: Dec 6 10:01:48 2025 GMT Not After : Dec 7 10:01:48 2025 GMT Subject: CN=d0ad9c5324b8ae4e836826972165f48d13b69771 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:06:7d:a7:67:5d:4b:9e:c1:82:41:73:f8:3a: e6:62:b1:a7:c6:cb:d4:98:db:7f:b3:d9:66:4e:3d: cc:57:be:6c:1b:34:1d:a7:f4:d8:98:0b:20:5e:0b: e6:2c:fe:21:77:b9:f6:b9:dd:e3:27:10:90:70:0d: ec:b6:ec:b1:14:a6:55:84:7c:8f:f7:10:90:b2:21: af:d3:1c:e3:da:38:bb:d1:70:94:8a:eb:cc:39:a4: 2e:a7:35:94:71:c9:ef:3f:ee:61:45:91:6a:8d:2e: 02:d0:c5:ce:03:64:b1:90:bc:1a:7f:fa:bf:8f:42: 6c:ad:b5:a2:43:2d:e5:64:b2:c6:da:28:a5:3e:e8: 06:d2:72:89:9e:d8:a5:81:fd:b6:bc:88:24:37:44: 94:80:a8:84:ea:23:b3:91:7e:85:6a:d1:2a:56:29: 80:a4:56:71:3f:ca:e8:01:a1:a8:d2:2a:6b:7c:3f: cc:e6:3f:30:54:75:b3:8e:fa:43:c0:81:db:24:13: 82:e1:8f:50:99:84:62:9b:2c:1e:66:fc:45:33:64: 83:bf:ec:16:80:03:8d:10:a6:f8:1f:51:98:d9:da: 94:8d:d6:c3:74:c2:bb:84:78:7f:15:5d:b8:e6:e9: 7b:be:e5:41:db:7f:71:92:ef:8e:b5:da:bc:29:86: e5:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:AD:9C:53:24:B8:AE:4E:83:68:26:97:21:65:F4:8D:13:B6:97:71 X509v3 Authority Key Identifier: keyid:60:34:44:E1:99:62:A1:91:EF:D2:F2:16:A1:28:E2:F4:CF:E2:A3:DE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YDRE4ZlioZHv0vIWoSji9M_io94.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/1f32cb-dab2-4a9f-ae77-8447e29c1524/1/YDRE4ZlioZHv0vIWoSji9M_io94.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/1f32cb-dab2-4a9f-ae77-8447e29c1524/1/YDRE4ZlioZHv0vIWoSji9M_io94.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 48:e4:7e:73:b9:b9:09:81:d6:c6:5d:2c:a4:35:86:3c:74:7c: ec:51:02:45:b7:44:f9:7e:86:ef:5c:d1:ca:e8:dd:1e:62:7c: 0f:b7:4f:64:e1:d1:8f:36:ce:88:27:8d:35:0a:b4:ad:48:a0: 0d:e7:a7:cd:bc:d9:95:81:9a:dc:d1:72:c0:f5:7a:b3:60:a1: 60:7d:0f:60:05:66:93:45:3d:49:0e:15:af:a5:bd:b3:9a:7f: b2:7f:1e:8b:06:cf:24:dd:8b:c3:3a:16:24:7c:53:c7:ff:c8: 58:6b:60:69:a3:dd:ae:a8:66:b8:e8:dc:c3:0f:62:18:ff:73: df:ef:cc:95:22:c7:f7:7a:5e:ba:5e:e8:8a:16:e6:35:76:ed: 65:24:22:b3:96:2b:eb:0b:a9:43:78:34:2d:4f:79:28:bc:57: 09:5d:24:6d:04:2d:b6:ef:72:54:83:bf:09:1c:4f:4a:42:90: 96:9f:ee:65:db:02:63:1c:65:ce:8a:38:01:0c:49:9e:04:0b: e7:52:01:88:a0:95:fa:24:17:94:5f:b8:71:1e:36:10:74:1f: 0a:b7:d4:0e:1d:9b:96:cd:45:8c:dc:ca:73:54:d2:08:72:f9: 2b:02:5c:67:79:30:47:cf:ef:da:8e:22:c2:16:5a:43:d0:6f: 2e:32:c7:a4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzHElm8tccjQh1XNCGVZUFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwMzQ0NGUxOTk2MmExOTFlZmQyZjIxNmExMjhlMmY0Y2Zl MmEzZGUwHhcNMjUxMjA2MTAwMTQ4WhcNMjUxMjA3MTAwMTQ4WjAzMTEwLwYDVQQD EyhkMGFkOWM1MzI0YjhhZTRlODM2ODI2OTcyMTY1ZjQ4ZDEzYjY5NzcxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlQZ9p2ddS57BgkFz+DrmYrGnxsvU mNt/s9lmTj3MV75sGzQdp/TYmAsgXgvmLP4hd7n2ud3jJxCQcA3stuyxFKZVhHyP 9xCQsiGv0xzj2ji70XCUiuvMOaQupzWUccnvP+5hRZFqjS4C0MXOA2SxkLwaf/q/ j0JsrbWiQy3lZLLG2iilPugG0nKJntilgf22vIgkN0SUgKiE6iOzkX6FatEqVimA pFZxP8roAaGo0iprfD/M5j8wVHWzjvpDwIHbJBOC4Y9QmYRimyweZvxFM2SDv+wW gAONEKb4H1GY2dqUjdbDdMK7hHh/FV245ul7vuVB239xku+Otdq8KYblcQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNCtnFMkuK5Og2gmlyFl9I0TtpdxMB8GA1UdIwQY MBaAFGA0ROGZYqGR79LyFqEo4vTP4qPeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWURSRTRabGlvWkh2MHZJV29Tamk5TV9pbzk0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOC8xZjMyY2ItZGFiMi00YTlmLWFlNzct ODQ0N2UyOWMxNTI0LzEvWURSRTRabGlvWkh2MHZJV29Tamk5TV9pbzk0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hOC8xZjMyY2ItZGFiMi00YTlmLWFlNzctODQ0N2UyOWMxNTI0 LzEvWURSRTRabGlvWkh2MHZJV29Tamk5TV9pbzk0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASOR+c7m5 CYHWxl0spDWGPHR87FECRbdE+X6G71zRyujdHmJ8D7dPZOHRjzbOiCeNNQq0rUig DeenzbzZlYGa3NFywPV6s2ChYH0PYAVmk0U9SQ4Vr6W9s5p/sn8eiwbPJN2LwzoW JHxTx//IWGtgaaPdrqhmuOjcww9iGP9z3+/MlSLH93peul7oihbmNXbtZSQis5Yr 6wupQ3g0LU95KLxXCV0kbQQttu9yVIO/CRxPSkKQlp/uZdsCYxxlzoo4AQxJngQL 51IBiKCV+iQXlF+4cR42EHQfCrfUDh2bls1FjNzKc1TSCHL5KwJcZ3kwR8/v2o4i whZaQ9BvLjLHpA== -----END CERTIFICATE-----Generated at Sat Dec 6 14:57:25 2025 by rpki-client