This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/2f67b9-490b-43ef-b088-4ab3973502fb/1/YC8n-tkkUqJUswoGDtODsTx1jtY.mft File: YC8n-tkkUqJUswoGDtODsTx1jtY.mft (raw, json) Hash identifier: idlPwc3zao/WnBa12O7DyhgsAeSlDxukbAyOI842s7I= Subject key identifier: 7C:14:FF:07:DC:94:63:41:ED:BA:D5:F9:C4:45:01:2C:63:37:A5:33 Authority key identifier: 60:2F:27:FA:D9:24:52:A2:54:B3:0A:06:0E:D3:83:B1:3C:75:8E:D6 Certificate issuer: /CN=602f27fad92452a254b30a060ed383b13c758ed6 Certificate serial: 019AF209A1B99CA326979D7F395674B55DA8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YC8n-tkkUqJUswoGDtODsTx1jtY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/2f67b9-490b-43ef-b088-4ab3973502fb/1/YC8n-tkkUqJUswoGDtODsTx1jtY.mft Manifest number: 09C6 Signing time: Sat 06 Dec 2025 05:01:48 +0000 Manifest this update: Sat 06 Dec 2025 05:01:48 +0000 Manifest next update: Sun 07 Dec 2025 05:01:48 +0000 Files and hashes: 1: TRV1zvMwN77u4mbYXqSf5mMtgyk.roa (hash: AGCpSC7dzCZj1/xhxXIQK1OjIYEOjpJ4XzT4WLt1kl0=) 2: YC8n-tkkUqJUswoGDtODsTx1jtY.crl (hash: Xakj4J8gTRWEm1JM17JRLW42i2cdNlnirb/vJMQojsU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/2f67b9-490b-43ef-b088-4ab3973502fb/1/YC8n-tkkUqJUswoGDtODsTx1jtY.crl rsync://rpki.ripe.net/repository/DEFAULT/d1/2f67b9-490b-43ef-b088-4ab3973502fb/1/YC8n-tkkUqJUswoGDtODsTx1jtY.mft rsync://rpki.ripe.net/repository/DEFAULT/YC8n-tkkUqJUswoGDtODsTx1jtY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:09:a1:b9:9c:a3:26:97:9d:7f:39:56:74:b5:5d:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=602f27fad92452a254b30a060ed383b13c758ed6 Validity Not Before: Dec 6 05:01:48 2025 GMT Not After : Dec 7 05:01:48 2025 GMT Subject: CN=7c14ff07dc946341edbad5f9c445012c6337a533 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:13:15:c7:ca:f0:64:f3:e7:06:ad:a2:cd:a2: ee:c1:80:4d:9a:ee:86:2b:13:d6:f4:76:95:33:c1: c6:44:92:1d:1d:a4:33:5d:45:f5:e5:49:26:4d:6e: 62:3e:73:fa:70:27:9b:21:74:bc:74:ec:89:8f:4c: 7c:60:d2:10:a8:fa:0b:19:83:ca:03:e2:8c:f3:6b: f3:5d:98:3c:0c:52:5d:70:40:a4:07:e3:3b:3d:ea: 2a:28:46:ba:74:fb:aa:ad:f4:3b:44:1e:3d:b4:90: 98:27:86:fd:73:ba:73:0e:09:18:3a:58:fa:bf:c0: 2e:3f:09:f2:16:71:2d:72:d3:d0:a5:97:c4:01:80: 00:79:9e:0e:2d:c6:61:48:3e:d4:b8:29:de:3b:ca: 90:66:a6:ca:ed:d0:97:ba:ae:2f:17:70:ac:df:c7: c7:f1:e5:e8:16:4d:b5:57:37:1a:8c:33:0d:93:bb: d4:b2:43:f1:23:60:53:0f:43:98:91:5f:d1:5e:30: 54:fd:d8:a8:a4:10:e7:5e:98:ed:e9:91:86:6b:8b: 76:84:2b:0a:25:d1:36:25:1f:e4:db:bb:1a:4f:1d: 79:a2:77:6e:5b:1d:22:43:5d:3c:fa:5d:13:84:94: f6:cb:9a:41:19:38:d4:60:42:09:37:66:f4:d5:10: 49:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:14:FF:07:DC:94:63:41:ED:BA:D5:F9:C4:45:01:2C:63:37:A5:33 X509v3 Authority Key Identifier: keyid:60:2F:27:FA:D9:24:52:A2:54:B3:0A:06:0E:D3:83:B1:3C:75:8E:D6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YC8n-tkkUqJUswoGDtODsTx1jtY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/2f67b9-490b-43ef-b088-4ab3973502fb/1/YC8n-tkkUqJUswoGDtODsTx1jtY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/2f67b9-490b-43ef-b088-4ab3973502fb/1/YC8n-tkkUqJUswoGDtODsTx1jtY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 29:3b:fb:e0:59:3d:73:b5:31:a5:ab:fe:80:50:a2:12:04:bb: 4d:a1:50:a2:e9:00:6c:53:86:67:7a:b9:16:44:92:a8:17:92: 76:35:e9:f6:e8:b0:dc:a4:0b:f7:cc:a0:ba:e9:af:09:85:de: e1:71:93:56:e8:47:48:f5:87:b7:d8:08:d3:3d:00:48:0c:10: 78:06:fd:23:c6:6e:06:2c:3e:1c:12:47:d3:09:83:b0:b3:34: 7b:18:c9:33:8f:73:6d:c4:5c:ed:53:47:b6:63:6f:3d:99:22: a1:cf:89:b2:2a:a8:cf:2e:36:61:f8:2e:5e:a7:cb:18:3b:b7: 4c:01:b1:2d:51:71:c5:fe:27:ba:76:1b:af:31:62:5c:83:e0: c9:82:0e:9c:5a:10:7d:10:4e:fe:84:d2:4a:03:64:42:f4:37: d4:ba:fa:d9:cc:f9:c8:d1:16:06:9c:00:dc:2c:24:55:c4:6a: 7d:bd:53:4c:32:00:31:3c:23:16:18:c0:5c:f7:9e:39:28:98: 29:19:05:03:39:66:9c:82:2c:f3:e5:3f:47:c8:64:53:22:c0: 37:5d:c5:15:b7:dc:7e:d7:7d:96:be:34:73:d0:cd:65:e5:62: 3d:4e:69:9c:1d:56:33:4a:c2:3a:f8:e3:ae:ad:06:5f:fa:49: 4d:12:48:9e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCaG5nKMml51/OVZ0tV2oMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwMmYyN2ZhZDkyNDUyYTI1NGIzMGEwNjBlZDM4M2IxM2M3 NThlZDYwHhcNMjUxMjA2MDUwMTQ4WhcNMjUxMjA3MDUwMTQ4WjAzMTEwLwYDVQQD Eyg3YzE0ZmYwN2RjOTQ2MzQxZWRiYWQ1ZjljNDQ1MDEyYzYzMzdhNTMzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyxMVx8rwZPPnBq2izaLuwYBNmu6G KxPW9HaVM8HGRJIdHaQzXUX15UkmTW5iPnP6cCebIXS8dOyJj0x8YNIQqPoLGYPK A+KM82vzXZg8DFJdcECkB+M7PeoqKEa6dPuqrfQ7RB49tJCYJ4b9c7pzDgkYOlj6 v8AuPwnyFnEtctPQpZfEAYAAeZ4OLcZhSD7UuCneO8qQZqbK7dCXuq4vF3Cs38fH 8eXoFk21VzcajDMNk7vUskPxI2BTD0OYkV/RXjBU/diopBDnXpjt6ZGGa4t2hCsK JdE2JR/k27saTx15onduWx0iQ108+l0ThJT2y5pBGTjUYEIJN2b01RBJDwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHwU/wfclGNB7brV+cRFASxjN6UzMB8GA1UdIwQY MBaAFGAvJ/rZJFKiVLMKBg7Tg7E8dY7WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWUM4bi10a2tVcUpVc3dvR0R0T0RzVHgxanRZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMS8yZjY3YjktNDkwYi00M2VmLWIwODgt NGFiMzk3MzUwMmZiLzEvWUM4bi10a2tVcUpVc3dvR0R0T0RzVHgxanRZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMS8yZjY3YjktNDkwYi00M2VmLWIwODgtNGFiMzk3MzUwMmZi LzEvWUM4bi10a2tVcUpVc3dvR0R0T0RzVHgxanRZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKTv74Fk9 c7Uxpav+gFCiEgS7TaFQoukAbFOGZ3q5FkSSqBeSdjXp9uiw3KQL98yguumvCYXe 4XGTVuhHSPWHt9gI0z0ASAwQeAb9I8ZuBiw+HBJH0wmDsLM0exjJM49zbcRc7VNH tmNvPZkioc+Jsiqozy42YfguXqfLGDu3TAGxLVFxxf4nunYbrzFiXIPgyYIOnFoQ fRBO/oTSSgNkQvQ31Lr62cz5yNEWBpwA3CwkVcRqfb1TTDIAMTwjFhjAXPeeOSiY KRkFAzlmnIIs8+U/R8hkUyLAN13FFbfcftd9lr40c9DNZeViPU5pnB1WM0rCOvjj rq0GX/pJTRJIng== -----END CERTIFICATE-----Generated at Sat Dec 6 13:54:41 2025 by rpki-client