This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/91332b-3456-4651-9305-fa6b98f8470e/1/yTLAXdVS5YBU2FWljWFhlVP1HGM.mft File: yTLAXdVS5YBU2FWljWFhlVP1HGM.mft (raw, json) Hash identifier: fmqxZPg/r/R6dG4KycgdbN/868dZ5OKkWKJB7+Lql5Q= Subject key identifier: 51:C8:FC:99:FB:2F:B5:9D:BE:BC:D1:EA:EF:95:FF:90:57:69:D3:35 Authority key identifier: C9:32:C0:5D:D5:52:E5:80:54:D8:55:A5:8D:61:61:95:53:F5:1C:63 Certificate issuer: /CN=c932c05dd552e58054d855a58d61619553f51c63 Certificate serial: 019AF49BBE210EC74AFBE483C4F55AA2321A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yTLAXdVS5YBU2FWljWFhlVP1HGM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/91332b-3456-4651-9305-fa6b98f8470e/1/yTLAXdVS5YBU2FWljWFhlVP1HGM.mft Manifest number: 01E9 Signing time: Sat 06 Dec 2025 17:00:38 +0000 Manifest this update: Sat 06 Dec 2025 17:00:38 +0000 Manifest next update: Sun 07 Dec 2025 17:00:38 +0000 Files and hashes: 1: yTLAXdVS5YBU2FWljWFhlVP1HGM.crl (hash: j5/LDhNdq3x62qhTfvdGQLQDhxc54S9CyBt3iYYQyqk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/91332b-3456-4651-9305-fa6b98f8470e/1/yTLAXdVS5YBU2FWljWFhlVP1HGM.crl rsync://rpki.ripe.net/repository/DEFAULT/a9/91332b-3456-4651-9305-fa6b98f8470e/1/yTLAXdVS5YBU2FWljWFhlVP1HGM.mft rsync://rpki.ripe.net/repository/DEFAULT/yTLAXdVS5YBU2FWljWFhlVP1HGM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f4:9b:be:21:0e:c7:4a:fb:e4:83:c4:f5:5a:a2:32:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c932c05dd552e58054d855a58d61619553f51c63 Validity Not Before: Dec 6 17:00:38 2025 GMT Not After : Dec 7 17:00:38 2025 GMT Subject: CN=51c8fc99fb2fb59dbebcd1eaef95ff905769d335 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:99:9c:c1:6d:11:3a:79:ad:52:f2:54:bc:ac: d3:c0:b4:a3:8f:82:3b:c3:e6:a2:3b:80:4f:4c:8c: 1d:09:3b:9e:95:0c:68:e2:4b:99:ff:e2:ef:e9:4e: 86:e0:01:77:bc:93:8a:86:e6:00:e9:f6:8b:63:72: 6c:5c:5d:24:b3:75:23:95:a5:f3:71:5b:d1:31:e0: 03:eb:79:33:70:16:33:72:73:7e:d5:c9:a9:88:62: 98:03:27:4c:6f:fd:43:f0:f4:cc:38:07:cf:67:a6: 2b:7d:00:09:2a:d8:f8:29:b2:af:23:b4:34:27:80: 54:14:6c:02:78:02:e9:35:59:c6:8e:a0:c4:09:bc: a1:08:ce:a6:97:9f:9e:3a:d8:c3:6e:09:d2:68:24: 9e:ec:cb:e3:11:11:ed:2f:47:09:42:21:14:d2:e1: a1:f8:bd:03:6a:0f:18:38:d2:39:03:89:03:bf:16: b1:db:93:2b:14:5b:dc:52:4b:32:b0:98:16:8a:7c: 7b:d7:62:4b:f5:38:73:fb:6a:79:b1:f1:fb:58:fb: fb:fe:7d:d9:fb:c5:c4:1c:45:d7:6a:08:55:c7:a2: 94:c8:f6:c3:33:63:79:90:3c:ed:e5:a4:f4:09:a7: 6e:72:44:49:13:0b:8b:bb:c8:6c:70:07:62:a1:f7: a9:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:C8:FC:99:FB:2F:B5:9D:BE:BC:D1:EA:EF:95:FF:90:57:69:D3:35 X509v3 Authority Key Identifier: keyid:C9:32:C0:5D:D5:52:E5:80:54:D8:55:A5:8D:61:61:95:53:F5:1C:63 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yTLAXdVS5YBU2FWljWFhlVP1HGM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/91332b-3456-4651-9305-fa6b98f8470e/1/yTLAXdVS5YBU2FWljWFhlVP1HGM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/91332b-3456-4651-9305-fa6b98f8470e/1/yTLAXdVS5YBU2FWljWFhlVP1HGM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption bf:3e:e9:06:81:35:64:42:e1:a0:76:e4:d4:b8:cf:96:46:f4: 68:9f:0e:18:74:fc:28:bd:92:80:3b:d7:0e:17:72:8c:d9:ee: e0:9a:99:c4:5b:6a:28:ff:a3:95:15:d9:0a:d9:11:b9:3f:0e: 4e:92:36:df:f8:75:c8:3c:57:39:b6:20:15:17:2f:a8:05:3a: aa:b3:51:54:85:be:8a:88:4e:6d:3f:18:35:aa:c2:14:7d:1e: 2d:4c:1b:1a:5a:74:0e:bc:4a:21:be:52:75:84:fc:27:26:1b: d6:3d:1b:8d:2b:db:12:85:0d:3b:37:bb:61:fb:f7:71:19:8b: 1b:fd:35:10:ca:b4:ca:da:c3:e7:33:89:e3:b3:08:cd:0a:cd: e8:7c:b2:bd:fe:7e:27:e0:ae:37:0d:74:7b:ee:76:81:86:04: 35:5f:d7:d4:d5:97:52:0b:91:64:d7:b7:e4:97:d4:80:34:2b: e9:da:94:16:fb:c1:7c:a7:15:82:4c:80:57:25:3b:c9:f8:ce: 25:97:52:39:36:96:78:3c:11:69:07:c8:88:f7:77:49:dd:a6: 9c:aa:bf:c7:d2:a0:75:67:81:90:c7:5f:dc:cc:b0:47:c0:56: 43:80:15:a8:a6:70:f7:55:b3:76:0d:63:58:e0:14:0f:3e:1f: 84:02:24:5f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr0m74hDsdK++SDxPVaojIaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM5MzJjMDVkZDU1MmU1ODA1NGQ4NTVhNThkNjE2MTk1NTNm NTFjNjMwHhcNMjUxMjA2MTcwMDM4WhcNMjUxMjA3MTcwMDM4WjAzMTEwLwYDVQQD Eyg1MWM4ZmM5OWZiMmZiNTlkYmViY2QxZWFlZjk1ZmY5MDU3NjlkMzM1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmZmcwW0ROnmtUvJUvKzTwLSjj4I7 w+aiO4BPTIwdCTuelQxo4kuZ/+Lv6U6G4AF3vJOKhuYA6faLY3JsXF0ks3UjlaXz cVvRMeAD63kzcBYzcnN+1cmpiGKYAydMb/1D8PTMOAfPZ6YrfQAJKtj4KbKvI7Q0 J4BUFGwCeALpNVnGjqDECbyhCM6ml5+eOtjDbgnSaCSe7MvjERHtL0cJQiEU0uGh +L0Dag8YONI5A4kDvxax25MrFFvcUksysJgWinx712JL9Thz+2p5sfH7WPv7/n3Z +8XEHEXXaghVx6KUyPbDM2N5kDzt5aT0CaduckRJEwuLu8hscAdiofepuQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFHI/Jn7L7WdvrzR6u+V/5BXadM1MB8GA1UdIwQY MBaAFMkywF3VUuWAVNhVpY1hYZVT9RxjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveVRMQVhkVlM1WUJVMkZXbGpXRmhsVlAxSEdNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOS85MTMzMmItMzQ1Ni00NjUxLTkzMDUt ZmE2Yjk4Zjg0NzBlLzEveVRMQVhkVlM1WUJVMkZXbGpXRmhsVlAxSEdNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hOS85MTMzMmItMzQ1Ni00NjUxLTkzMDUtZmE2Yjk4Zjg0NzBl LzEveVRMQVhkVlM1WUJVMkZXbGpXRmhsVlAxSEdNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAvz7pBoE1 ZELhoHbk1LjPlkb0aJ8OGHT8KL2SgDvXDhdyjNnu4JqZxFtqKP+jlRXZCtkRuT8O TpI23/h1yDxXObYgFRcvqAU6qrNRVIW+iohObT8YNarCFH0eLUwbGlp0DrxKIb5S dYT8JyYb1j0bjSvbEoUNOze7Yfv3cRmLG/01EMq0ytrD5zOJ47MIzQrN6Hyyvf5+ J+CuNw10e+52gYYENV/X1NWXUguRZNe35JfUgDQr6dqUFvvBfKcVgkyAVyU7yfjO JZdSOTaWeDwRaQfIiPd3Sd2mnKq/x9KgdWeBkMdf3MywR8BWQ4AVqKZw91Wzdg1j WOAUDz4fhAIkXw== -----END CERTIFICATE-----Generated at Sat Dec 6 18:51:18 2025 by rpki-client