This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/9aa858-e1be-40e9-bd9a-0ee63357d847/1/YFUCYwejbuxeaBw5SK71Oif5lzY.mft File: YFUCYwejbuxeaBw5SK71Oif5lzY.mft (raw, json) Hash identifier: RK3K9wvtLg9WJNrbSZsnSbAlbROsP97PM1gsDBx4Akg= Subject key identifier: 95:D2:4E:EC:E8:FE:C5:6E:1E:13:A1:65:36:55:03:95:EA:06:DB:F6 Authority key identifier: 60:55:02:63:07:A3:6E:EC:5E:68:1C:39:48:AE:F5:3A:27:F9:97:36 Certificate issuer: /CN=6055026307a36eec5e681c3948aef53a27f99736 Certificate serial: 019AF0F5D2F2A4D7D93B76057BE38BA820F9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YFUCYwejbuxeaBw5SK71Oif5lzY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/9aa858-e1be-40e9-bd9a-0ee63357d847/1/YFUCYwejbuxeaBw5SK71Oif5lzY.mft Manifest number: 017D Signing time: Sat 06 Dec 2025 00:00:33 +0000 Manifest this update: Sat 06 Dec 2025 00:00:33 +0000 Manifest next update: Sun 07 Dec 2025 00:00:33 +0000 Files and hashes: 1: 7jIqwtDbMy9vdRo0YUm5EEwEiSU.roa (hash: zcVysxxJ8InMIpqNYEgmGN9PoMJVnhc3HSBD/6SlWos=) 2: YFUCYwejbuxeaBw5SK71Oif5lzY.crl (hash: ae4CKj2VsSEbN3OLUFn4dqRFrKnVRZ8AA2hLSkfdOOo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/9aa858-e1be-40e9-bd9a-0ee63357d847/1/YFUCYwejbuxeaBw5SK71Oif5lzY.crl rsync://rpki.ripe.net/repository/DEFAULT/aa/9aa858-e1be-40e9-bd9a-0ee63357d847/1/YFUCYwejbuxeaBw5SK71Oif5lzY.mft rsync://rpki.ripe.net/repository/DEFAULT/YFUCYwejbuxeaBw5SK71Oif5lzY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 00:00:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f0:f5:d2:f2:a4:d7:d9:3b:76:05:7b:e3:8b:a8:20:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6055026307a36eec5e681c3948aef53a27f99736 Validity Not Before: Dec 6 00:00:33 2025 GMT Not After : Dec 7 00:00:33 2025 GMT Subject: CN=95d24eece8fec56e1e13a16536550395ea06dbf6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:16:5e:0f:9f:b6:27:11:c6:9f:98:38:ec:e4: a7:bf:d7:39:3c:da:f5:6e:57:b3:a7:a6:59:2a:8a: 2a:5b:26:95:be:a4:dc:dd:5d:8d:db:ff:23:a5:56: 0b:60:0a:b1:81:fa:dd:3c:1a:f8:81:9f:24:d8:87: 9b:85:19:5f:be:8c:20:09:20:26:18:4a:b1:a0:58: 10:f0:d7:15:8c:32:4d:27:8b:60:96:c5:7e:64:15: df:f5:41:3e:1c:46:98:28:49:14:7c:99:95:c1:ba: 24:b7:0d:5b:ca:65:b1:10:25:07:57:c9:7e:1f:3e: 39:83:e8:91:2a:ac:fc:3c:a3:d1:d8:f0:5c:c4:ed: 67:1e:9e:e6:54:50:9f:9c:01:0d:0e:6d:47:e4:a3: e2:fd:18:12:df:4a:d5:03:b1:72:86:15:c9:9c:8b: 08:f0:b7:a0:e0:33:e5:f4:c7:fe:43:c5:2b:06:f6: 7b:43:4a:8e:63:a3:0c:0f:9a:47:99:ac:13:fc:06: f7:77:c1:db:16:39:2a:30:68:a2:86:56:bd:78:db: f2:49:4a:55:40:cc:b0:57:64:f6:7c:f7:62:5c:e5: f8:d9:31:a7:d6:3c:d2:15:15:b0:b3:e6:0e:30:4c: d7:9b:15:aa:b7:dd:10:62:29:c8:dc:03:f6:6f:37: 84:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:D2:4E:EC:E8:FE:C5:6E:1E:13:A1:65:36:55:03:95:EA:06:DB:F6 X509v3 Authority Key Identifier: keyid:60:55:02:63:07:A3:6E:EC:5E:68:1C:39:48:AE:F5:3A:27:F9:97:36 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YFUCYwejbuxeaBw5SK71Oif5lzY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/9aa858-e1be-40e9-bd9a-0ee63357d847/1/YFUCYwejbuxeaBw5SK71Oif5lzY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/9aa858-e1be-40e9-bd9a-0ee63357d847/1/YFUCYwejbuxeaBw5SK71Oif5lzY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3d:d9:ff:ce:7a:2f:85:d5:d5:54:44:43:5e:e4:a2:ad:84:0c: 5b:9d:6c:07:9e:17:55:d4:ce:81:6d:15:6b:01:54:59:99:e3: 8d:61:3f:d5:9b:5f:8b:aa:25:be:91:b0:0d:7c:bd:76:78:f6: b6:7f:a5:fb:d2:c5:45:21:4b:c3:13:0b:6b:ee:c7:00:63:fa: fa:b2:49:c9:82:64:d4:fe:5c:9c:cf:fb:83:b4:b3:09:f2:56: 88:fe:ab:2e:a0:ae:39:e9:a8:57:4e:cc:4b:31:7b:75:86:ec: 23:b5:b0:34:59:37:b5:60:e5:5b:a3:ac:96:f9:27:f6:7c:3a: 3d:c4:21:54:56:75:36:c0:d0:41:e5:43:07:d0:62:88:b7:23: 4e:6c:1d:47:39:26:88:af:27:b3:68:4b:2b:ae:35:76:2c:0a: b5:88:a9:16:b7:dd:75:51:a6:92:6f:97:30:53:ae:e5:fa:95: 46:b4:5a:b1:ae:50:7e:f8:4a:d2:a5:8c:0c:9b:ca:63:93:52: ae:1b:29:94:d0:72:4d:37:26:89:34:0a:b6:79:b2:50:4e:f1: 2b:f2:2f:f2:2c:3c:cb:23:ab:78:ab:2f:36:e8:f9:4a:61:14: d7:ea:2d:f4:61:a6:07:37:ff:ba:47:a0:3e:66:6d:2f:f2:2a: 10:85:7a:fd -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrw9dLypNfZO3YFe+OLqCD5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwNTUwMjYzMDdhMzZlZWM1ZTY4MWMzOTQ4YWVmNTNhMjdm OTk3MzYwHhcNMjUxMjA2MDAwMDMzWhcNMjUxMjA3MDAwMDMzWjAzMTEwLwYDVQQD Eyg5NWQyNGVlY2U4ZmVjNTZlMWUxM2ExNjUzNjU1MDM5NWVhMDZkYmY2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzRZeD5+2JxHGn5g47OSnv9c5PNr1 blezp6ZZKooqWyaVvqTc3V2N2/8jpVYLYAqxgfrdPBr4gZ8k2IebhRlfvowgCSAm GEqxoFgQ8NcVjDJNJ4tglsV+ZBXf9UE+HEaYKEkUfJmVwboktw1bymWxECUHV8l+ Hz45g+iRKqz8PKPR2PBcxO1nHp7mVFCfnAENDm1H5KPi/RgS30rVA7FyhhXJnIsI 8Leg4DPl9Mf+Q8UrBvZ7Q0qOY6MMD5pHmawT/Ab3d8HbFjkqMGiihla9eNvySUpV QMywV2T2fPdiXOX42TGn1jzSFRWws+YOMEzXmxWqt90QYinI3AP2bzeE0wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJXSTuzo/sVuHhOhZTZVA5XqBtv2MB8GA1UdIwQY MBaAFGBVAmMHo27sXmgcOUiu9Ton+Zc2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWUZVQ1l3ZWpidXhlYUJ3NVNLNzFPaWY1bHpZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS85YWE4NTgtZTFiZS00MGU5LWJkOWEt MGVlNjMzNTdkODQ3LzEvWUZVQ1l3ZWpidXhlYUJ3NVNLNzFPaWY1bHpZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYS85YWE4NTgtZTFiZS00MGU5LWJkOWEtMGVlNjMzNTdkODQ3 LzEvWUZVQ1l3ZWpidXhlYUJ3NVNLNzFPaWY1bHpZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPdn/znov hdXVVERDXuSirYQMW51sB54XVdTOgW0VawFUWZnjjWE/1Ztfi6olvpGwDXy9dnj2 tn+l+9LFRSFLwxMLa+7HAGP6+rJJyYJk1P5cnM/7g7SzCfJWiP6rLqCuOemoV07M SzF7dYbsI7WwNFk3tWDlW6Oslvkn9nw6PcQhVFZ1NsDQQeVDB9BiiLcjTmwdRzkm iK8ns2hLK641diwKtYipFrfddVGmkm+XMFOu5fqVRrRasa5QfvhK0qWMDJvKY5NS rhsplNByTTcmiTQKtnmyUE7xK/Iv8iw8yyOreKsvNuj5SmEU1+ot9GGmBzf/ukeg PmZtL/IqEIV6/Q== -----END CERTIFICATE-----Generated at Sat Dec 6 07:55:26 2025 by rpki-client