This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/195893-699b-45b4-a03d-0db50bff944a/1/yWncvDPoAQQ4EpKC03rU6L-EuB8.mft File: yWncvDPoAQQ4EpKC03rU6L-EuB8.mft (raw, json) Hash identifier: UfdcjUTR9YDxWYK8f4hJ6Qewf6GucdaI3tnZCACgb/4= Subject key identifier: 79:07:C7:08:8C:5F:69:60:7C:9B:50:0A:63:F6:04:3B:F8:0E:9D:B6 Authority key identifier: C9:69:DC:BC:33:E8:01:04:38:12:92:82:D3:7A:D4:E8:BF:84:B8:1F Certificate issuer: /CN=c969dcbc33e8010438129282d37ad4e8bf84b81f Certificate serial: 019AF1D22D3E752FC0C6E76765AC1F3ED31E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yWncvDPoAQQ4EpKC03rU6L-EuB8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/195893-699b-45b4-a03d-0db50bff944a/1/yWncvDPoAQQ4EpKC03rU6L-EuB8.mft Manifest number: 168C Signing time: Sat 06 Dec 2025 04:01:14 +0000 Manifest this update: Sat 06 Dec 2025 04:01:14 +0000 Manifest next update: Sun 07 Dec 2025 04:01:14 +0000 Files and hashes: 1: FU1o4K68ASMHjxslt5agTXMw1Z4.roa (hash: cFpnMXx4SNy55YthuxgRWkF2I8U6u41jmzS8UiT8Yts=) 2: yWncvDPoAQQ4EpKC03rU6L-EuB8.crl (hash: cMYKhKdosHMbxcefgeagWMDwVbZTUfjmZR9PRax6lMA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c9/195893-699b-45b4-a03d-0db50bff944a/1/yWncvDPoAQQ4EpKC03rU6L-EuB8.crl rsync://rpki.ripe.net/repository/DEFAULT/c9/195893-699b-45b4-a03d-0db50bff944a/1/yWncvDPoAQQ4EpKC03rU6L-EuB8.mft rsync://rpki.ripe.net/repository/DEFAULT/yWncvDPoAQQ4EpKC03rU6L-EuB8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:d2:2d:3e:75:2f:c0:c6:e7:67:65:ac:1f:3e:d3:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c969dcbc33e8010438129282d37ad4e8bf84b81f Validity Not Before: Dec 6 04:01:14 2025 GMT Not After : Dec 7 04:01:14 2025 GMT Subject: CN=7907c7088c5f69607c9b500a63f6043bf80e9db6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:3c:b5:b4:22:48:dc:cd:45:1b:de:7b:3f:9e: 21:82:18:eb:c9:f5:04:0a:87:66:c6:04:18:9c:74: 13:77:e3:81:c9:2c:92:11:9b:bf:4a:45:7b:d4:94: 1d:e8:63:bf:91:80:bc:c5:8c:21:f0:8a:10:c7:bc: 2b:16:a6:75:29:06:d4:16:92:00:b5:66:e3:f4:a1: 2c:f8:c5:59:0e:82:49:97:c2:40:bd:99:be:9a:ba: 3a:ff:e3:60:5b:eb:54:8c:fd:3a:ae:4c:ae:88:ba: 0e:df:77:97:fa:49:3f:58:49:31:f3:d5:5e:cf:f9: e5:ac:a3:1a:b9:9b:6e:d9:d3:82:6a:56:3d:2f:0b: 4b:8e:f6:f4:2a:de:02:c5:2e:0f:fa:81:9c:8c:7a: e4:74:38:88:3b:f1:99:b7:8e:5f:67:04:5e:22:1a: 85:50:33:3f:d6:39:4d:1b:9d:ce:b8:fb:fe:ea:3c: ba:7e:4b:dc:a6:9a:01:50:cf:cb:43:e6:71:fe:6e: cc:16:46:fb:e6:aa:94:d8:97:a4:d2:4a:6e:8f:e1: 57:60:eb:d9:72:59:a3:a3:31:3e:0d:d6:b5:f3:7f: bc:bc:97:ec:85:b2:e2:00:77:47:8e:b3:c2:7b:00: 35:5f:34:88:3b:52:64:59:9a:2c:7f:6e:a6:ec:dc: 1c:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:07:C7:08:8C:5F:69:60:7C:9B:50:0A:63:F6:04:3B:F8:0E:9D:B6 X509v3 Authority Key Identifier: keyid:C9:69:DC:BC:33:E8:01:04:38:12:92:82:D3:7A:D4:E8:BF:84:B8:1F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yWncvDPoAQQ4EpKC03rU6L-EuB8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/195893-699b-45b4-a03d-0db50bff944a/1/yWncvDPoAQQ4EpKC03rU6L-EuB8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/195893-699b-45b4-a03d-0db50bff944a/1/yWncvDPoAQQ4EpKC03rU6L-EuB8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 43:5a:f8:e8:67:ba:9e:a0:1a:e1:e0:ee:d0:01:d9:a7:67:7d: b1:fa:32:c9:38:8e:e8:ef:d6:ab:3e:0f:66:aa:53:d1:eb:21: e4:05:12:03:fe:59:38:ea:84:a3:9a:f4:0d:01:30:ba:72:cf: 85:16:d4:48:47:ed:18:c8:40:56:f4:bf:1f:c4:74:da:c6:9c: 67:c5:4e:df:61:f3:9b:be:81:89:1d:e4:f4:91:b2:88:94:d6: 26:1c:3b:07:02:a9:e2:83:ec:e1:d8:23:7a:4e:7b:d8:2d:64: 9e:09:60:4f:ac:2a:9d:1e:b3:de:51:26:f9:3f:9b:61:39:c5: c6:1f:eb:9a:80:fd:04:8c:d7:65:9a:6a:3f:46:fc:6f:27:c4: e9:94:67:83:51:d3:eb:38:18:91:ab:52:e1:37:70:b6:8d:89: 60:3a:1d:f7:1f:5a:70:d8:d6:f2:c8:53:82:07:21:77:19:93: f6:a8:e9:eb:46:8a:5a:10:4f:6f:17:59:06:d6:dd:16:5a:84: 4e:c6:f0:e2:8b:a1:7c:a6:09:2d:50:1e:d0:31:8c:25:1b:8f: e5:a5:1e:18:79:f1:0f:ea:5e:95:9c:c6:e1:9e:66:7c:31:b7: 12:30:35:88:f1:63:ba:dc:e1:6a:b2:d9:a4:df:1f:68:49:86: 87:26:57:24 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrx0i0+dS/AxudnZawfPtMeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM5NjlkY2JjMzNlODAxMDQzODEyOTI4MmQzN2FkNGU4YmY4 NGI4MWYwHhcNMjUxMjA2MDQwMTE0WhcNMjUxMjA3MDQwMTE0WjAzMTEwLwYDVQQD Eyg3OTA3YzcwODhjNWY2OTYwN2M5YjUwMGE2M2Y2MDQzYmY4MGU5ZGI2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtjy1tCJI3M1FG957P54hghjryfUE CodmxgQYnHQTd+OBySySEZu/SkV71JQd6GO/kYC8xYwh8IoQx7wrFqZ1KQbUFpIA tWbj9KEs+MVZDoJJl8JAvZm+mro6/+NgW+tUjP06rkyuiLoO33eX+kk/WEkx89Ve z/nlrKMauZtu2dOCalY9LwtLjvb0Kt4CxS4P+oGcjHrkdDiIO/GZt45fZwReIhqF UDM/1jlNG53OuPv+6jy6fkvcppoBUM/LQ+Zx/m7MFkb75qqU2Jek0kpuj+FXYOvZ clmjozE+Dda183+8vJfshbLiAHdHjrPCewA1XzSIO1JkWZosf26m7NwcRwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHkHxwiMX2lgfJtQCmP2BDv4Dp22MB8GA1UdIwQY MBaAFMlp3Lwz6AEEOBKSgtN61Oi/hLgfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveVduY3ZEUG9BUVE0RXBLQzAzclU2TC1FdUI4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOS8xOTU4OTMtNjk5Yi00NWI0LWEwM2Qt MGRiNTBiZmY5NDRhLzEveVduY3ZEUG9BUVE0RXBLQzAzclU2TC1FdUI4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jOS8xOTU4OTMtNjk5Yi00NWI0LWEwM2QtMGRiNTBiZmY5NDRh LzEveVduY3ZEUG9BUVE0RXBLQzAzclU2TC1FdUI4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQ1r46Ge6 nqAa4eDu0AHZp2d9sfoyyTiO6O/Wqz4PZqpT0esh5AUSA/5ZOOqEo5r0DQEwunLP hRbUSEftGMhAVvS/H8R02sacZ8VO32Hzm76BiR3k9JGyiJTWJhw7BwKp4oPs4dgj ek572C1knglgT6wqnR6z3lEm+T+bYTnFxh/rmoD9BIzXZZpqP0b8byfE6ZRng1HT 6zgYkatS4Tdwto2JYDod9x9acNjW8shTggchdxmT9qjp60aKWhBPbxdZBtbdFlqE Tsbw4ouhfKYJLVAe0DGMJRuP5aUeGHnxD+pelZzG4Z5mfDG3EjA1iPFjutzharLZ pN8faEmGhyZXJA== -----END CERTIFICATE-----Generated at Sat Dec 6 07:24:26 2025 by rpki-client