This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/57faee-68b2-4693-8130-ce434a402617/1/YO9KF7jv9Fugs51HSWVX44j__lI.mft File: YO9KF7jv9Fugs51HSWVX44j__lI.mft (raw, json) Hash identifier: sPy/ljDmEdjcxtOsI0k5O0oYoLy2lY4jiD8pXEC+0lo= Subject key identifier: 3E:45:E6:52:AB:FD:42:8B:F1:0E:C0:D0:E8:31:B5:67:33:DE:75:96 Authority key identifier: 60:EF:4A:17:B8:EF:F4:5B:A0:B3:9D:47:49:65:57:E3:88:FF:FE:52 Certificate issuer: /CN=60ef4a17b8eff45ba0b39d47496557e388fffe52 Certificate serial: 019AF163FFCF8613E73F7BA4F0408BADD8F0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YO9KF7jv9Fugs51HSWVX44j__lI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/57faee-68b2-4693-8130-ce434a402617/1/YO9KF7jv9Fugs51HSWVX44j__lI.mft Manifest number: 0246 Signing time: Sat 06 Dec 2025 02:00:53 +0000 Manifest this update: Sat 06 Dec 2025 02:00:53 +0000 Manifest next update: Sun 07 Dec 2025 02:00:53 +0000 Files and hashes: 1: WJ8mDGp2R9SerzYw88vehn3HSik.roa (hash: h5SXKLsi4QXI6eIjbslnIuS0eoxKGY5pZRrkhG82mKM=) 2: YO9KF7jv9Fugs51HSWVX44j__lI.crl (hash: fCm/mIZT8VUcpH1winfXp8/BIKfO2mgJQxZq3pwE3NI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/57faee-68b2-4693-8130-ce434a402617/1/YO9KF7jv9Fugs51HSWVX44j__lI.crl rsync://rpki.ripe.net/repository/DEFAULT/b5/57faee-68b2-4693-8130-ce434a402617/1/YO9KF7jv9Fugs51HSWVX44j__lI.mft rsync://rpki.ripe.net/repository/DEFAULT/YO9KF7jv9Fugs51HSWVX44j__lI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:63:ff:cf:86:13:e7:3f:7b:a4:f0:40:8b:ad:d8:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=60ef4a17b8eff45ba0b39d47496557e388fffe52 Validity Not Before: Dec 6 02:00:53 2025 GMT Not After : Dec 7 02:00:53 2025 GMT Subject: CN=3e45e652abfd428bf10ec0d0e831b56733de7596 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:ba:af:82:19:8d:c5:56:ce:70:95:7e:35:f3: b9:75:b5:b3:c9:84:c7:0b:c9:9e:d7:68:79:18:75: ed:89:b4:e5:3b:01:21:46:5d:b4:74:d9:55:e1:2a: ef:dc:56:68:4a:39:e4:b6:d7:4d:e5:72:d6:14:c4: 0b:ce:91:ea:b2:6c:96:8f:27:13:38:90:b6:7e:b3: 2a:e1:e4:8b:41:54:c0:39:cd:69:f3:02:b2:93:03: 2b:ae:e0:3d:64:6f:0a:78:6f:48:38:c3:23:8e:66: ec:96:e5:c1:39:73:b9:9a:84:bf:83:ed:89:88:2c: ab:3f:bc:06:00:70:8c:1b:eb:76:88:dd:3e:3d:88: df:ab:81:36:a8:7a:5d:25:18:97:80:d2:7b:c2:df: 9d:86:04:2d:e2:6e:fe:7a:8d:1f:fa:f1:8c:07:30: a3:26:5d:63:82:aa:60:f7:b8:70:79:02:27:50:e1: 93:da:9c:1b:e7:3e:b2:8b:90:8f:96:a3:c2:53:cb: 55:6b:24:2e:0b:b1:5c:e0:70:15:ea:1b:21:a9:cd: 05:07:5e:42:42:66:c1:97:4e:14:ed:48:cf:fb:99: 3b:aa:6f:6a:d3:64:6c:d2:92:cb:77:49:8e:bf:b6: 8c:22:71:9d:30:07:97:bf:fa:dd:2a:85:35:98:8a: c0:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:45:E6:52:AB:FD:42:8B:F1:0E:C0:D0:E8:31:B5:67:33:DE:75:96 X509v3 Authority Key Identifier: keyid:60:EF:4A:17:B8:EF:F4:5B:A0:B3:9D:47:49:65:57:E3:88:FF:FE:52 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YO9KF7jv9Fugs51HSWVX44j__lI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/57faee-68b2-4693-8130-ce434a402617/1/YO9KF7jv9Fugs51HSWVX44j__lI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/57faee-68b2-4693-8130-ce434a402617/1/YO9KF7jv9Fugs51HSWVX44j__lI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 36:78:b7:99:e3:56:16:81:f7:86:68:d0:64:6b:a1:e6:27:d1: 44:7b:ab:67:d9:be:f6:5b:d5:43:b6:c7:89:21:21:f1:5c:b6: 45:e9:4d:98:a2:3a:fc:5d:fa:76:ea:46:b6:67:75:be:27:b4: 70:55:27:3b:3a:8e:34:30:57:5d:c0:c0:c4:69:cb:a6:a5:96: b4:89:14:31:f4:dd:3e:de:a7:4b:e4:8c:f2:df:f0:a6:42:9e: 22:ed:8d:d9:8f:78:67:08:34:7b:0e:80:9b:0d:ab:e9:3f:d8: 36:98:58:53:d3:cf:2d:c8:ea:51:f5:fa:bf:9c:0c:09:ce:d3: 89:26:1d:1c:f8:a5:26:5d:13:9e:bd:55:f6:71:fa:03:b0:60: e3:af:32:54:64:c8:7d:94:cd:92:36:9c:0c:eb:6c:cd:ff:bf: bf:b7:bf:d0:3d:7e:7d:15:3b:5f:72:f3:5e:8d:91:d9:dc:e5: 29:34:71:d5:c2:55:95:78:92:8a:d9:51:e6:67:f7:41:a8:a0: ca:7e:a0:46:8f:c3:55:07:b3:a1:93:84:47:ec:fa:24:f2:c9: f0:d9:b2:e0:2a:1b:58:ec:ed:d8:4c:23:05:b3:d2:db:c3:14: d8:79:54:48:8c:a4:68:6c:63:b7:ad:88:77:77:65:d0:70:81: a9:96:98:40 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxY//PhhPnP3uk8ECLrdjwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwZWY0YTE3YjhlZmY0NWJhMGIzOWQ0NzQ5NjU1N2UzODhm ZmZlNTIwHhcNMjUxMjA2MDIwMDUzWhcNMjUxMjA3MDIwMDUzWjAzMTEwLwYDVQQD EygzZTQ1ZTY1MmFiZmQ0MjhiZjEwZWMwZDBlODMxYjU2NzMzZGU3NTk2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx7qvghmNxVbOcJV+NfO5dbWzyYTH C8me12h5GHXtibTlOwEhRl20dNlV4Srv3FZoSjnkttdN5XLWFMQLzpHqsmyWjycT OJC2frMq4eSLQVTAOc1p8wKykwMrruA9ZG8KeG9IOMMjjmbsluXBOXO5moS/g+2J iCyrP7wGAHCMG+t2iN0+PYjfq4E2qHpdJRiXgNJ7wt+dhgQt4m7+eo0f+vGMBzCj Jl1jgqpg97hweQInUOGT2pwb5z6yi5CPlqPCU8tVayQuC7Fc4HAV6hshqc0FB15C QmbBl04U7UjP+5k7qm9q02Rs0pLLd0mOv7aMInGdMAeXv/rdKoU1mIrAGQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFD5F5lKr/UKL8Q7A0OgxtWcz3nWWMB8GA1UdIwQY MBaAFGDvShe47/RboLOdR0llV+OI//5SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWU85S0Y3anY5RnVnczUxSFNXVlg0NGpfX2xJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNS81N2ZhZWUtNjhiMi00NjkzLTgxMzAt Y2U0MzRhNDAyNjE3LzEvWU85S0Y3anY5RnVnczUxSFNXVlg0NGpfX2xJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNS81N2ZhZWUtNjhiMi00NjkzLTgxMzAtY2U0MzRhNDAyNjE3 LzEvWU85S0Y3anY5RnVnczUxSFNXVlg0NGpfX2xJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANni3meNW FoH3hmjQZGuh5ifRRHurZ9m+9lvVQ7bHiSEh8Vy2RelNmKI6/F36dupGtmd1vie0 cFUnOzqONDBXXcDAxGnLpqWWtIkUMfTdPt6nS+SM8t/wpkKeIu2N2Y94Zwg0ew6A mw2r6T/YNphYU9PPLcjqUfX6v5wMCc7TiSYdHPilJl0Tnr1V9nH6A7Bg468yVGTI fZTNkjacDOtszf+/v7e/0D1+fRU7X3LzXo2R2dzlKTRx1cJVlXiSitlR5mf3Qaig yn6gRo/DVQezoZOER+z6JPLJ8Nmy4CobWOzt2EwjBbPS28MU2HlUSIykaGxjt62I d3dl0HCBqZaYQA== -----END CERTIFICATE-----Generated at Sat Dec 6 11:37:14 2025 by rpki-client