This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/8bf7ea-883a-4c43-946c-82dafe104bc5/1/A_P-YHUIK-jliDKbQ9dhv257AdA.mft File: A_P-YHUIK-jliDKbQ9dhv257AdA.mft (raw, json) Hash identifier: C1L4rdWDDPrakpFkQL0zibhYKFoYThrFu9Fk2RvQfiI= Subject key identifier: 3D:B6:E9:A4:D9:EA:9E:6C:A9:8B:ED:AA:47:A4:1D:2B:0A:83:74:57 Authority key identifier: 03:F3:FE:60:75:08:2B:E8:E5:88:32:9B:43:D7:61:BF:6E:7B:01:D0 Certificate issuer: /CN=03f3fe6075082be8e588329b43d761bf6e7b01d0 Certificate serial: 019AF42E29D859F01A17A017433194C52C26 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A_P-YHUIK-jliDKbQ9dhv257AdA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/8bf7ea-883a-4c43-946c-82dafe104bc5/1/A_P-YHUIK-jliDKbQ9dhv257AdA.mft Manifest number: 0996 Signing time: Sat 06 Dec 2025 15:00:57 +0000 Manifest this update: Sat 06 Dec 2025 15:00:57 +0000 Manifest next update: Sun 07 Dec 2025 15:00:57 +0000 Files and hashes: 1: A_P-YHUIK-jliDKbQ9dhv257AdA.crl (hash: WqbHiWFPY3wha4wL6THAGPc3AZiuygKoc7tb8DupUZI=) 2: NLokuyayf_xTBz620eUda7ND62Y.roa (hash: wnbXZXqLcKm2LPuwdWnQJhZT1lgCNXU3KAjP4hIxaAc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/8bf7ea-883a-4c43-946c-82dafe104bc5/1/A_P-YHUIK-jliDKbQ9dhv257AdA.crl rsync://rpki.ripe.net/repository/DEFAULT/b3/8bf7ea-883a-4c43-946c-82dafe104bc5/1/A_P-YHUIK-jliDKbQ9dhv257AdA.mft rsync://rpki.ripe.net/repository/DEFAULT/A_P-YHUIK-jliDKbQ9dhv257AdA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f4:2e:29:d8:59:f0:1a:17:a0:17:43:31:94:c5:2c:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=03f3fe6075082be8e588329b43d761bf6e7b01d0 Validity Not Before: Dec 6 15:00:57 2025 GMT Not After : Dec 7 15:00:57 2025 GMT Subject: CN=3db6e9a4d9ea9e6ca98bedaa47a41d2b0a837457 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:aa:b2:eb:aa:c0:87:1c:e0:16:b5:e7:de:a9: ca:50:25:8b:0a:1d:7d:15:87:d0:01:05:58:05:c0: 66:fd:a5:a3:99:54:26:a7:14:fc:25:c0:8e:5c:ba: 92:f7:4d:9f:80:c9:d9:16:87:74:3f:af:da:7c:15: 51:c4:38:6c:94:87:6a:7d:fd:7b:e9:1d:09:e3:92: 95:69:f0:d6:81:f4:68:d2:e6:68:2d:a7:db:be:89: aa:c2:94:61:4c:63:7d:de:2a:fb:29:a1:b2:de:1c: 10:86:ae:42:dc:e1:9e:af:29:cd:d8:3c:dd:9c:25: fa:97:60:ee:9e:12:5e:e4:43:bf:fc:0b:23:73:c1: 88:5a:8e:2f:08:8e:42:cb:31:3e:6c:db:1c:f3:b4: bf:ba:d7:17:51:93:62:34:5a:44:fe:ca:9c:48:27: b4:63:f3:c3:56:67:22:77:75:12:0a:61:c8:13:7c: 7b:fb:fe:37:58:49:21:e1:46:50:0f:ef:89:64:11: fd:56:c5:12:89:63:9a:60:03:c4:3a:6f:7b:ff:57: a4:46:67:01:42:d8:f2:02:0a:4e:4f:c0:1d:e3:72: f5:df:69:3f:8f:f4:39:29:7c:70:c5:18:de:5a:9a: 9b:d3:c5:a6:5b:30:8b:23:69:ea:c6:3e:86:3f:a3: bb:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:B6:E9:A4:D9:EA:9E:6C:A9:8B:ED:AA:47:A4:1D:2B:0A:83:74:57 X509v3 Authority Key Identifier: keyid:03:F3:FE:60:75:08:2B:E8:E5:88:32:9B:43:D7:61:BF:6E:7B:01:D0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A_P-YHUIK-jliDKbQ9dhv257AdA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/8bf7ea-883a-4c43-946c-82dafe104bc5/1/A_P-YHUIK-jliDKbQ9dhv257AdA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/8bf7ea-883a-4c43-946c-82dafe104bc5/1/A_P-YHUIK-jliDKbQ9dhv257AdA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 22:06:59:0a:b3:49:0f:c1:25:3a:9c:7f:9c:0a:97:ad:69:5b: c7:b2:fa:dc:14:9c:e8:23:ad:70:01:7e:b5:c1:b5:64:03:90: bb:98:e3:52:8b:64:b4:9c:98:f4:22:70:7d:60:06:f6:8e:66: 86:f1:d1:f2:ce:4b:ad:e2:c2:08:35:7d:b7:12:35:81:b7:41: 6f:77:ae:58:1c:0e:c6:51:f5:aa:72:f4:e4:5d:08:0d:7d:e7: 25:5a:eb:f6:0d:42:97:de:8f:16:ea:93:94:07:8f:5e:fc:a1: a5:89:80:b6:57:57:ff:37:ad:57:a5:36:90:a4:85:14:4f:7b: 90:c4:a5:d9:3d:5c:39:4f:72:ac:96:dd:25:b5:07:f1:b2:b5: 16:79:13:74:06:7d:d3:d7:43:4b:fb:c2:60:dd:d1:25:d3:d6: 20:1d:0d:9c:c7:46:ac:e7:25:95:8a:89:e7:fd:dc:bd:d6:d8: 0d:4d:2e:42:4f:07:08:41:c9:b7:ff:1a:d3:6a:c8:63:4f:90: c7:40:7d:31:c8:a5:e1:c1:19:40:1d:92:96:90:cd:e9:77:e1: 59:d1:f2:b8:d9:32:c5:5a:b2:f7:ac:df:ac:d5:05:8e:e1:32: 47:e5:2c:a2:c4:86:4f:9a:c4:35:f8:b1:ba:d9:eb:97:1b:9e: f6:3a:fc:b7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr0LinYWfAaF6AXQzGUxSwmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAzZjNmZTYwNzUwODJiZThlNTg4MzI5YjQzZDc2MWJmNmU3 YjAxZDAwHhcNMjUxMjA2MTUwMDU3WhcNMjUxMjA3MTUwMDU3WjAzMTEwLwYDVQQD EygzZGI2ZTlhNGQ5ZWE5ZTZjYTk4YmVkYWE0N2E0MWQyYjBhODM3NDU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnKqy66rAhxzgFrXn3qnKUCWLCh19 FYfQAQVYBcBm/aWjmVQmpxT8JcCOXLqS902fgMnZFod0P6/afBVRxDhslIdqff17 6R0J45KVafDWgfRo0uZoLafbvomqwpRhTGN93ir7KaGy3hwQhq5C3OGerynN2Dzd nCX6l2DunhJe5EO//Asjc8GIWo4vCI5CyzE+bNsc87S/utcXUZNiNFpE/sqcSCe0 Y/PDVmcid3USCmHIE3x7+/43WEkh4UZQD++JZBH9VsUSiWOaYAPEOm97/1ekRmcB QtjyAgpOT8Ad43L132k/j/Q5KXxwxRjeWpqb08WmWzCLI2nqxj6GP6O7KQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFD226aTZ6p5sqYvtqkekHSsKg3RXMB8GA1UdIwQY MBaAFAPz/mB1CCvo5Ygym0PXYb9uewHQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQV9QLVlIVUlLLWpsaURLYlE5ZGh2MjU3QWRBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMy84YmY3ZWEtODgzYS00YzQzLTk0NmMt ODJkYWZlMTA0YmM1LzEvQV9QLVlIVUlLLWpsaURLYlE5ZGh2MjU3QWRBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMy84YmY3ZWEtODgzYS00YzQzLTk0NmMtODJkYWZlMTA0YmM1 LzEvQV9QLVlIVUlLLWpsaURLYlE5ZGh2MjU3QWRBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIgZZCrNJ D8ElOpx/nAqXrWlbx7L63BSc6COtcAF+tcG1ZAOQu5jjUotktJyY9CJwfWAG9o5m hvHR8s5LreLCCDV9txI1gbdBb3euWBwOxlH1qnL05F0IDX3nJVrr9g1Cl96PFuqT lAePXvyhpYmAtldX/zetV6U2kKSFFE97kMSl2T1cOU9yrJbdJbUH8bK1FnkTdAZ9 09dDS/vCYN3RJdPWIB0NnMdGrOcllYqJ5/3cvdbYDU0uQk8HCEHJt/8a02rIY0+Q x0B9Mcil4cEZQB2SlpDN6XfhWdHyuNkyxVqy96zfrNUFjuEyR+UsosSGT5rENfix utnrlxue9jr8tw== -----END CERTIFICATE-----Generated at Sat Dec 6 21:58:39 2025 by rpki-client