This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/07badd-ff3f-4886-abf1-552e51542d4d/1/ryHdL3cqW7R5JcKLtdFs2TDyBrE.mft File: ryHdL3cqW7R5JcKLtdFs2TDyBrE.mft (raw, json) Hash identifier: tvh/YdDszzl6Ynx6pZgAv2gRI0xf6fx1FyPGJLOk3vI= Subject key identifier: 7A:2F:E3:C7:29:88:B2:BC:51:AB:CC:D1:4A:A7:A4:12:4D:3F:3B:6D Authority key identifier: AF:21:DD:2F:77:2A:5B:B4:79:25:C2:8B:B5:D1:6C:D9:30:F2:06:B1 Certificate issuer: /CN=af21dd2f772a5bb47925c28bb5d16cd930f206b1 Certificate serial: 019AF23FF95A3F8D3AC5D7F72956664EE733 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ryHdL3cqW7R5JcKLtdFs2TDyBrE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/07badd-ff3f-4886-abf1-552e51542d4d/1/ryHdL3cqW7R5JcKLtdFs2TDyBrE.mft Manifest number: 0B6F Signing time: Sat 06 Dec 2025 06:01:10 +0000 Manifest this update: Sat 06 Dec 2025 06:01:10 +0000 Manifest next update: Sun 07 Dec 2025 06:01:10 +0000 Files and hashes: 1: 6f9DfsZDUzdPo3_6eNoeG4QK_-I.roa (hash: 4tclq8R1V/fdbnM4AvEGc3ZJVkHqia0uVMOBrni8yPk=) 2: ryHdL3cqW7R5JcKLtdFs2TDyBrE.crl (hash: iNqqmByZ8Aq5nucJ8momNZi5PHOBPRoGw2P/bpZhf3o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b6/07badd-ff3f-4886-abf1-552e51542d4d/1/ryHdL3cqW7R5JcKLtdFs2TDyBrE.crl rsync://rpki.ripe.net/repository/DEFAULT/b6/07badd-ff3f-4886-abf1-552e51542d4d/1/ryHdL3cqW7R5JcKLtdFs2TDyBrE.mft rsync://rpki.ripe.net/repository/DEFAULT/ryHdL3cqW7R5JcKLtdFs2TDyBrE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 06:01:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:3f:f9:5a:3f:8d:3a:c5:d7:f7:29:56:66:4e:e7:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=af21dd2f772a5bb47925c28bb5d16cd930f206b1 Validity Not Before: Dec 6 06:01:10 2025 GMT Not After : Dec 7 06:01:10 2025 GMT Subject: CN=7a2fe3c72988b2bc51abccd14aa7a4124d3f3b6d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:14:dc:6c:b0:7f:37:aa:79:7f:c9:12:5f:3b: 9d:40:e4:3e:7c:b1:e3:63:c9:9c:46:b0:22:7d:cb: 1c:2e:78:57:dc:f6:41:8d:74:5e:3c:36:06:9c:af: d3:71:88:79:6f:91:44:6a:0f:21:57:ca:70:a6:5d: 86:2c:93:1f:cb:c7:b9:36:f9:f8:32:fe:fe:24:d0: 14:51:05:88:67:d0:a1:da:e7:f2:02:0a:e8:04:00: 84:e1:c7:eb:f7:9d:49:e8:1b:36:5d:47:25:4a:b3: c5:2d:65:91:a2:19:ba:03:60:57:d8:1c:aa:f6:57: c7:c7:a2:d9:36:1d:8c:6e:a1:b0:6b:b8:e7:df:9d: 77:8c:28:d1:21:f8:7c:24:13:9a:b2:0f:bd:ad:5b: f7:5c:be:e4:27:65:97:db:6f:bc:a1:28:1c:79:5d: c5:10:df:e0:d2:25:6a:ab:b0:ef:e9:b7:63:83:02: df:e3:bc:f7:75:c2:2d:3f:9d:d6:fd:33:0e:30:10: 34:e0:9b:0b:74:f4:2a:25:90:0c:5f:c9:ae:de:fb: d5:a9:dc:ed:65:a3:6f:2e:12:6c:68:6b:6b:2d:91: 27:ef:61:97:19:a6:25:67:bc:13:e6:8f:09:d4:24: 6a:7d:d6:02:5f:1b:ec:8b:39:d6:ac:30:42:cf:1a: 27:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:2F:E3:C7:29:88:B2:BC:51:AB:CC:D1:4A:A7:A4:12:4D:3F:3B:6D X509v3 Authority Key Identifier: keyid:AF:21:DD:2F:77:2A:5B:B4:79:25:C2:8B:B5:D1:6C:D9:30:F2:06:B1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ryHdL3cqW7R5JcKLtdFs2TDyBrE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/07badd-ff3f-4886-abf1-552e51542d4d/1/ryHdL3cqW7R5JcKLtdFs2TDyBrE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/07badd-ff3f-4886-abf1-552e51542d4d/1/ryHdL3cqW7R5JcKLtdFs2TDyBrE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 90:61:ec:fd:fd:89:4d:d0:fa:49:78:6c:35:c1:bf:65:f2:3c: 23:67:b9:5a:9f:1a:08:66:51:4c:89:70:5a:b4:c6:79:30:75: 98:e1:5e:86:6c:1d:9e:48:61:bf:1e:2b:93:0c:5e:21:98:a2: bb:2b:f0:b0:1d:6d:46:98:64:28:35:85:23:04:51:57:e6:fb: 07:ac:41:ed:50:65:c4:4c:64:75:98:1e:f1:e3:73:b4:0a:b3: 8c:8a:39:b8:c8:da:ce:e4:56:03:63:a1:f8:0d:da:a0:ef:69: f6:13:31:10:41:b9:44:2f:36:f6:39:4a:2a:60:f3:29:29:25: 67:7f:8b:d9:d9:7c:a5:d8:fe:07:18:82:88:ac:5f:45:02:91: d0:85:a3:d4:0f:d3:8c:90:41:cb:d3:18:c3:0e:d1:33:74:d6: 00:e2:ba:5b:4e:42:98:ea:7b:6b:e6:fd:55:93:26:d7:ed:1f: d8:96:b7:26:5b:2e:1f:20:37:69:5b:51:61:ff:77:6e:60:c1: f0:71:50:6c:bb:0a:8d:b2:81:b3:4f:6b:54:a9:be:e4:c6:5d: f1:84:5e:25:66:76:e9:e2:ca:00:99:73:c4:86:66:0c:7b:f3: eb:c3:6a:fa:67:b3:bd:3a:60:66:76:47:27:66:f9:24:33:9f: e5:b3:5b:ef -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryP/laP406xdf3KVZmTuczMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFmMjFkZDJmNzcyYTViYjQ3OTI1YzI4YmI1ZDE2Y2Q5MzBm MjA2YjEwHhcNMjUxMjA2MDYwMTEwWhcNMjUxMjA3MDYwMTEwWjAzMTEwLwYDVQQD Eyg3YTJmZTNjNzI5ODhiMmJjNTFhYmNjZDE0YWE3YTQxMjRkM2YzYjZkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqhTcbLB/N6p5f8kSXzudQOQ+fLHj Y8mcRrAifcscLnhX3PZBjXRePDYGnK/TcYh5b5FEag8hV8pwpl2GLJMfy8e5Nvn4 Mv7+JNAUUQWIZ9Ch2ufyAgroBACE4cfr951J6Bs2XUclSrPFLWWRohm6A2BX2Byq 9lfHx6LZNh2MbqGwa7jn3513jCjRIfh8JBOasg+9rVv3XL7kJ2WX22+8oSgceV3F EN/g0iVqq7Dv6bdjgwLf47z3dcItP53W/TMOMBA04JsLdPQqJZAMX8mu3vvVqdzt ZaNvLhJsaGtrLZEn72GXGaYlZ7wT5o8J1CRqfdYCXxvsiznWrDBCzxonnQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHov48cpiLK8UavM0UqnpBJNPzttMB8GA1UdIwQY MBaAFK8h3S93Klu0eSXCi7XRbNkw8gaxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcnlIZEwzY3FXN1I1SmNLTHRkRnMyVER5QnJFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNi8wN2JhZGQtZmYzZi00ODg2LWFiZjEt NTUyZTUxNTQyZDRkLzEvcnlIZEwzY3FXN1I1SmNLTHRkRnMyVER5QnJFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNi8wN2JhZGQtZmYzZi00ODg2LWFiZjEtNTUyZTUxNTQyZDRk LzEvcnlIZEwzY3FXN1I1SmNLTHRkRnMyVER5QnJFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkGHs/f2J TdD6SXhsNcG/ZfI8I2e5Wp8aCGZRTIlwWrTGeTB1mOFehmwdnkhhvx4rkwxeIZii uyvwsB1tRphkKDWFIwRRV+b7B6xB7VBlxExkdZge8eNztAqzjIo5uMjazuRWA2Oh +A3aoO9p9hMxEEG5RC829jlKKmDzKSklZ3+L2dl8pdj+BxiCiKxfRQKR0IWj1A/T jJBBy9MYww7RM3TWAOK6W05CmOp7a+b9VZMm1+0f2Ja3JlsuHyA3aVtRYf93bmDB 8HFQbLsKjbKBs09rVKm+5MZd8YReJWZ26eLKAJlzxIZmDHvz68Nq+mezvTpgZnZH J2b5JDOf5bNb7w== -----END CERTIFICATE-----Generated at Sat Dec 6 15:46:27 2025 by rpki-client