This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/f6969c-3a6e-4bec-9742-ece87c6a0318/1/ypAPHhHi0l0LIxatbgEmhIOayB4.mft File: ypAPHhHi0l0LIxatbgEmhIOayB4.mft (raw, json) Hash identifier: fkNtS1q3frIvpfSLqjavtipM9wc61Egv7DLykJkDX68= Subject key identifier: 18:14:FB:70:FF:B6:D0:86:58:EA:A2:24:DD:39:1E:FC:79:FF:87:2B Authority key identifier: CA:90:0F:1E:11:E2:D2:5D:0B:23:16:AD:6E:01:26:84:83:9A:C8:1E Certificate issuer: /CN=ca900f1e11e2d25d0b2316ad6e012684839ac81e Certificate serial: 019AF3C06FEADCD9C53E6ABBA6664EB0FA5E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ypAPHhHi0l0LIxatbgEmhIOayB4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/f6969c-3a6e-4bec-9742-ece87c6a0318/1/ypAPHhHi0l0LIxatbgEmhIOayB4.mft Manifest number: 1763 Signing time: Sat 06 Dec 2025 13:01:06 +0000 Manifest this update: Sat 06 Dec 2025 13:01:06 +0000 Manifest next update: Sun 07 Dec 2025 13:01:06 +0000 Files and hashes: 1: UvHXXFoVL7W8kRf_CmjRtC48uH4.roa (hash: E8q/i3b6Anio6852XqG98vgAFVWa9Xn560kQh/u0aSY=) 2: ypAPHhHi0l0LIxatbgEmhIOayB4.crl (hash: wOm0lNKakfNqpUb09lJzUJUYyyp2EGtBE+gesJ42LhI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/f6969c-3a6e-4bec-9742-ece87c6a0318/1/ypAPHhHi0l0LIxatbgEmhIOayB4.crl rsync://rpki.ripe.net/repository/DEFAULT/ce/f6969c-3a6e-4bec-9742-ece87c6a0318/1/ypAPHhHi0l0LIxatbgEmhIOayB4.mft rsync://rpki.ripe.net/repository/DEFAULT/ypAPHhHi0l0LIxatbgEmhIOayB4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:01:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:c0:6f:ea:dc:d9:c5:3e:6a:bb:a6:66:4e:b0:fa:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ca900f1e11e2d25d0b2316ad6e012684839ac81e Validity Not Before: Dec 6 13:01:06 2025 GMT Not After : Dec 7 13:01:06 2025 GMT Subject: CN=1814fb70ffb6d08658eaa224dd391efc79ff872b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:a5:6f:79:b3:12:a7:a6:2c:53:fd:bb:75:e4: e7:3b:d9:12:e7:ab:cc:39:34:a4:85:22:45:a3:df: 7c:2d:22:77:74:b0:c0:54:73:5d:ce:38:69:04:be: fb:ca:f5:c9:ad:8e:8e:98:4a:7e:be:7e:9f:8c:4c: 38:cb:11:61:48:27:1f:a9:99:07:7b:ba:a4:ac:72: 9d:53:c9:3c:f9:c2:b6:13:e0:df:c6:6f:ee:d1:80: dc:e2:70:56:b3:95:9a:9d:c7:73:6e:bc:d4:9b:70: 37:aa:d8:48:8e:70:57:d6:24:9f:7b:11:45:e7:b0: d6:08:2d:02:08:1d:34:df:33:71:91:4a:79:e7:57: 8e:be:18:c7:91:aa:a8:7a:6f:00:1d:3e:3e:1a:94: 65:d0:b5:33:35:7d:ba:ad:a8:95:3b:0b:bf:91:70: f1:47:00:59:45:bc:a9:4b:09:7a:91:39:4b:31:57: 18:31:39:cf:4d:23:b4:25:48:99:bb:67:35:74:5e: 2b:19:9e:9c:0b:c0:b7:9d:34:7d:23:da:ba:6e:1a: c1:49:0d:9b:dc:9c:44:52:cc:4f:ed:05:d2:a7:f1: af:37:7f:93:30:ec:b0:ff:ca:97:eb:86:97:a0:ac: 76:0b:b2:16:88:17:97:a7:32:d5:95:b6:45:a1:74: 5f:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:14:FB:70:FF:B6:D0:86:58:EA:A2:24:DD:39:1E:FC:79:FF:87:2B X509v3 Authority Key Identifier: keyid:CA:90:0F:1E:11:E2:D2:5D:0B:23:16:AD:6E:01:26:84:83:9A:C8:1E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ypAPHhHi0l0LIxatbgEmhIOayB4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/f6969c-3a6e-4bec-9742-ece87c6a0318/1/ypAPHhHi0l0LIxatbgEmhIOayB4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/f6969c-3a6e-4bec-9742-ece87c6a0318/1/ypAPHhHi0l0LIxatbgEmhIOayB4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2d:6a:37:7e:45:fb:8c:09:6e:2f:13:0e:67:e5:3e:54:13:e2: 2b:cc:8a:87:48:f5:6b:48:d6:dd:d5:65:62:12:52:25:06:90: bc:85:fe:01:ea:28:1b:d2:21:68:33:b3:79:fe:0c:9b:43:95: 81:ad:e4:00:61:54:47:3f:00:a2:1d:2b:e1:8f:66:7d:90:d2: 36:e7:9d:3f:cf:1a:94:fd:9b:18:8f:10:49:6b:13:0b:99:6e: af:a4:80:1c:24:16:14:c0:0b:5f:1b:1c:c5:7c:f4:d1:4f:75: 49:83:52:79:e9:be:23:c0:10:dd:a4:f6:5f:c4:7a:5a:26:79: 46:bb:44:eb:78:a1:aa:41:fe:92:0a:d2:f0:d8:85:82:d5:73: 1f:fb:a9:81:5d:a1:f8:56:37:46:0e:00:6c:97:96:89:6f:d5: f3:6f:68:93:c1:bd:b7:79:c7:85:4c:bb:f7:9f:7b:59:71:79: ef:0b:7a:4d:11:e5:40:34:a0:bd:c3:cc:1c:a0:94:d2:50:a1: 11:cb:2e:59:2a:c1:ca:e7:6e:2d:56:15:e9:b3:d2:16:0e:fe: 89:c4:80:0c:4a:a6:dc:81:65:59:01:57:a8:2e:59:34:22:e7: f6:89:93:dd:ab:ed:ab:4c:bd:2e:ae:32:29:e1:5d:91:0b:f5: 01:6d:75:84 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzwG/q3NnFPmq7pmZOsPpeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNhOTAwZjFlMTFlMmQyNWQwYjIzMTZhZDZlMDEyNjg0ODM5 YWM4MWUwHhcNMjUxMjA2MTMwMTA2WhcNMjUxMjA3MTMwMTA2WjAzMTEwLwYDVQQD EygxODE0ZmI3MGZmYjZkMDg2NThlYWEyMjRkZDM5MWVmYzc5ZmY4NzJiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs6VvebMSp6YsU/27deTnO9kS56vM OTSkhSJFo998LSJ3dLDAVHNdzjhpBL77yvXJrY6OmEp+vn6fjEw4yxFhSCcfqZkH e7qkrHKdU8k8+cK2E+Dfxm/u0YDc4nBWs5WancdzbrzUm3A3qthIjnBX1iSfexFF 57DWCC0CCB003zNxkUp551eOvhjHkaqoem8AHT4+GpRl0LUzNX26raiVOwu/kXDx RwBZRbypSwl6kTlLMVcYMTnPTSO0JUiZu2c1dF4rGZ6cC8C3nTR9I9q6bhrBSQ2b 3JxEUsxP7QXSp/GvN3+TMOyw/8qX64aXoKx2C7IWiBeXpzLVlbZFoXRfWQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBgU+3D/ttCGWOqiJN05Hvx5/4crMB8GA1UdIwQY MBaAFMqQDx4R4tJdCyMWrW4BJoSDmsgeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveXBBUEhoSGkwbDBMSXhhdGJnRW1oSU9heUI0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZS9mNjk2OWMtM2E2ZS00YmVjLTk3NDIt ZWNlODdjNmEwMzE4LzEveXBBUEhoSGkwbDBMSXhhdGJnRW1oSU9heUI0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jZS9mNjk2OWMtM2E2ZS00YmVjLTk3NDItZWNlODdjNmEwMzE4 LzEveXBBUEhoSGkwbDBMSXhhdGJnRW1oSU9heUI0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALWo3fkX7 jAluLxMOZ+U+VBPiK8yKh0j1a0jW3dVlYhJSJQaQvIX+AeooG9IhaDOzef4Mm0OV ga3kAGFURz8Aoh0r4Y9mfZDSNuedP88alP2bGI8QSWsTC5lur6SAHCQWFMALXxsc xXz00U91SYNSeem+I8AQ3aT2X8R6WiZ5RrtE63ihqkH+kgrS8NiFgtVzH/upgV2h +FY3Rg4AbJeWiW/V829ok8G9t3nHhUy79597WXF57wt6TRHlQDSgvcPMHKCU0lCh EcsuWSrByuduLVYV6bPSFg7+icSADEqm3IFlWQFXqC5ZNCLn9omT3avtq0y9Lq4y KeFdkQv1AW11hA== -----END CERTIFICATE-----Generated at Sat Dec 6 15:47:06 2025 by rpki-client