This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/8840f0-271e-4527-a413-6c4719bcf9ee/1/yBi-GcEJgPFbze4HZpAHhJGoqiE.mft File: yBi-GcEJgPFbze4HZpAHhJGoqiE.mft (raw, json) Hash identifier: Ot9eK4C416qdEnDqXYx3KAG1vj9QitWZXdMaLRxnvEo= Subject key identifier: 77:5D:C2:AF:05:E8:69:7D:3A:0D:D4:6C:22:04:5C:7F:99:A0:ED:8F Authority key identifier: C8:18:BE:19:C1:09:80:F1:5B:CD:EE:07:66:90:07:84:91:A8:AA:21 Certificate issuer: /CN=c818be19c10980f15bcdee076690078491a8aa21 Certificate serial: 019AF3C009859682A286FDB5D2B65526F0D8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yBi-GcEJgPFbze4HZpAHhJGoqiE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/8840f0-271e-4527-a413-6c4719bcf9ee/1/yBi-GcEJgPFbze4HZpAHhJGoqiE.mft Manifest number: 0D90 Signing time: Sat 06 Dec 2025 13:00:39 +0000 Manifest this update: Sat 06 Dec 2025 13:00:39 +0000 Manifest next update: Sun 07 Dec 2025 13:00:39 +0000 Files and hashes: 1: gZMQxr61w0P4Si-B6lBsVj_b8vM.roa (hash: 3Vc/pW8ygtdQIimX5iqQ/MSW6PLhJ2nbGCIzRJsZshI=) 2: yBi-GcEJgPFbze4HZpAHhJGoqiE.crl (hash: 0Rf38JHu1kUzKuW4IWGAJkPh5kRG3t6C3BvuoQ5pjiM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/8840f0-271e-4527-a413-6c4719bcf9ee/1/yBi-GcEJgPFbze4HZpAHhJGoqiE.crl rsync://rpki.ripe.net/repository/DEFAULT/d2/8840f0-271e-4527-a413-6c4719bcf9ee/1/yBi-GcEJgPFbze4HZpAHhJGoqiE.mft rsync://rpki.ripe.net/repository/DEFAULT/yBi-GcEJgPFbze4HZpAHhJGoqiE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:c0:09:85:96:82:a2:86:fd:b5:d2:b6:55:26:f0:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c818be19c10980f15bcdee076690078491a8aa21 Validity Not Before: Dec 6 13:00:39 2025 GMT Not After : Dec 7 13:00:39 2025 GMT Subject: CN=775dc2af05e8697d3a0dd46c22045c7f99a0ed8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:75:2c:14:2a:e6:9a:9f:30:27:c1:df:9e:53: 25:b5:86:98:b1:41:88:25:7e:8e:d6:34:2b:ca:35: 1a:59:b7:d3:28:e5:56:9e:cf:bc:e7:5b:ff:76:93: 3e:d8:4b:50:40:28:0a:79:41:88:44:47:66:5e:5b: af:21:78:43:94:4d:24:5e:de:c8:02:6d:53:87:18: f1:b2:fb:62:0b:d3:f6:b3:74:11:ce:4f:a3:21:0b: a1:0a:92:d7:63:25:bb:df:63:1e:8d:69:d6:05:72: a5:3f:d6:83:35:9a:a5:f9:2d:85:a4:4b:a6:ad:b1: cb:97:66:15:c2:de:cc:15:70:45:a2:cd:54:88:cc: 77:3a:69:b1:01:69:74:83:0f:f0:a4:95:a8:0f:c6: 33:d6:1d:69:a5:cb:03:c8:b1:3e:bc:b0:e2:80:fd: a7:18:c9:20:7c:54:7e:fb:ec:c8:8a:74:21:d3:9e: 21:61:1d:76:c4:ee:14:09:f3:22:d3:18:a6:f3:dc: f9:8d:d7:eb:ea:77:68:9e:da:2e:0f:69:0e:cc:db: a3:7f:70:f0:01:e4:ec:64:3e:a9:24:27:0f:3a:3c: ea:0c:c5:da:04:0a:cc:c6:3a:52:61:bc:e0:b0:f3: cf:7b:88:87:c0:5c:dc:22:a2:28:9f:b3:64:75:10: f2:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:5D:C2:AF:05:E8:69:7D:3A:0D:D4:6C:22:04:5C:7F:99:A0:ED:8F X509v3 Authority Key Identifier: keyid:C8:18:BE:19:C1:09:80:F1:5B:CD:EE:07:66:90:07:84:91:A8:AA:21 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yBi-GcEJgPFbze4HZpAHhJGoqiE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/8840f0-271e-4527-a413-6c4719bcf9ee/1/yBi-GcEJgPFbze4HZpAHhJGoqiE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/8840f0-271e-4527-a413-6c4719bcf9ee/1/yBi-GcEJgPFbze4HZpAHhJGoqiE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 63:32:16:e3:ad:2f:28:af:00:c4:3c:70:dc:82:41:fa:ea:71: 46:1c:54:5c:45:60:a3:47:f8:41:94:44:ad:33:2a:29:6b:2e: e9:64:19:79:f3:fa:4d:df:30:83:80:6f:01:00:70:96:02:6e: a0:f8:c4:35:e3:94:78:79:3c:bc:f8:06:12:13:78:64:22:c6: 89:26:3b:96:47:0f:6a:5c:54:37:a7:93:c6:a7:99:f6:f3:d1: 15:2a:07:87:c2:cf:73:b4:25:96:41:ff:b2:cf:55:ee:12:20: cd:30:85:80:5a:86:89:ca:5e:96:d6:74:3a:ec:b8:0a:d9:a3: 3d:f9:29:0d:29:29:ec:bc:d3:aa:c4:14:7c:65:09:66:1c:13: a7:9d:80:97:02:a8:cc:ea:90:f2:d8:40:be:fa:53:56:a3:b7: 18:b1:f4:23:0c:f4:f3:09:36:81:e6:85:fb:7a:05:b3:ca:0a: 49:26:73:b2:56:e6:1e:93:44:7b:84:72:48:33:2b:b6:7f:5a: 4c:d6:c9:be:62:88:5a:fa:9c:b7:92:ed:59:75:bb:a2:aa:b6: 8d:52:a5:78:5d:23:e9:40:37:54:c1:5b:45:2d:45:84:7c:a7: 79:e2:a0:21:94:94:ee:ae:3a:a7:e3:ad:45:d8:36:73:4f:6d: 7f:0e:e0:fb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzwAmFloKihv210rZVJvDYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM4MThiZTE5YzEwOTgwZjE1YmNkZWUwNzY2OTAwNzg0OTFh OGFhMjEwHhcNMjUxMjA2MTMwMDM5WhcNMjUxMjA3MTMwMDM5WjAzMTEwLwYDVQQD Eyg3NzVkYzJhZjA1ZTg2OTdkM2EwZGQ0NmMyMjA0NWM3Zjk5YTBlZDhmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqnUsFCrmmp8wJ8HfnlMltYaYsUGI JX6O1jQryjUaWbfTKOVWns+851v/dpM+2EtQQCgKeUGIREdmXluvIXhDlE0kXt7I Am1ThxjxsvtiC9P2s3QRzk+jIQuhCpLXYyW732MejWnWBXKlP9aDNZql+S2FpEum rbHLl2YVwt7MFXBFos1UiMx3OmmxAWl0gw/wpJWoD8Yz1h1ppcsDyLE+vLDigP2n GMkgfFR+++zIinQh054hYR12xO4UCfMi0xim89z5jdfr6ndontouD2kOzNujf3Dw AeTsZD6pJCcPOjzqDMXaBArMxjpSYbzgsPPPe4iHwFzcIqIon7NkdRDyJQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHddwq8F6Gl9Og3UbCIEXH+ZoO2PMB8GA1UdIwQY MBaAFMgYvhnBCYDxW83uB2aQB4SRqKohMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveUJpLUdjRUpnUEZiemU0SFpwQUhoSkdvcWlFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMi84ODQwZjAtMjcxZS00NTI3LWE0MTMt NmM0NzE5YmNmOWVlLzEveUJpLUdjRUpnUEZiemU0SFpwQUhoSkdvcWlFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMi84ODQwZjAtMjcxZS00NTI3LWE0MTMtNmM0NzE5YmNmOWVl LzEveUJpLUdjRUpnUEZiemU0SFpwQUhoSkdvcWlFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYzIW460v KK8AxDxw3IJB+upxRhxUXEVgo0f4QZRErTMqKWsu6WQZefP6Td8wg4BvAQBwlgJu oPjENeOUeHk8vPgGEhN4ZCLGiSY7lkcPalxUN6eTxqeZ9vPRFSoHh8LPc7QllkH/ ss9V7hIgzTCFgFqGicpeltZ0Ouy4CtmjPfkpDSkp7LzTqsQUfGUJZhwTp52AlwKo zOqQ8thAvvpTVqO3GLH0Iwz08wk2geaF+3oFs8oKSSZzslbmHpNEe4RySDMrtn9a TNbJvmKIWvqct5LtWXW7oqq2jVKleF0j6UA3VMFbRS1FhHyneeKgIZSU7q46p+Ot Rdg2c09tfw7g+w== -----END CERTIFICATE-----Generated at Sat Dec 6 19:54:42 2025 by rpki-client