This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/7b540f-b83a-40b9-ae6d-cdcee23a83b0/1/yKQR5q7CPK13xDcrTXsLH8gtXcA.mft File: yKQR5q7CPK13xDcrTXsLH8gtXcA.mft (raw, json) Hash identifier: XNaaCF8OL9QgPka/JSAgsvtv57+Ddx9oXELgn+puDp0= Subject key identifier: C2:26:2E:72:61:23:B9:B7:A1:57:A7:39:C1:C1:E9:5E:A6:3A:46:91 Authority key identifier: C8:A4:11:E6:AE:C2:3C:AD:77:C4:37:2B:4D:7B:0B:1F:C8:2D:5D:C0 Certificate issuer: /CN=c8a411e6aec23cad77c4372b4d7b0b1fc82d5dc0 Certificate serial: 019B2DB01F06F645DC915E6ED3547CD8ABA7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yKQR5q7CPK13xDcrTXsLH8gtXcA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/7b540f-b83a-40b9-ae6d-cdcee23a83b0/1/yKQR5q7CPK13xDcrTXsLH8gtXcA.mft Manifest number: 177E Signing time: Wed 17 Dec 2025 19:01:15 +0000 Manifest this update: Wed 17 Dec 2025 19:01:15 +0000 Manifest next update: Thu 18 Dec 2025 19:01:15 +0000 Files and hashes: 1: yKQR5q7CPK13xDcrTXsLH8gtXcA.crl (hash: Kp44/7cJ4JJF0CyFvA4+DY1ooWjnjY3SBnmM8gGhzf0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/7b540f-b83a-40b9-ae6d-cdcee23a83b0/1/yKQR5q7CPK13xDcrTXsLH8gtXcA.crl rsync://rpki.ripe.net/repository/DEFAULT/d3/7b540f-b83a-40b9-ae6d-cdcee23a83b0/1/yKQR5q7CPK13xDcrTXsLH8gtXcA.mft rsync://rpki.ripe.net/repository/DEFAULT/yKQR5q7CPK13xDcrTXsLH8gtXcA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 18 Dec 2025 19:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2d:b0:1f:06:f6:45:dc:91:5e:6e:d3:54:7c:d8:ab:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c8a411e6aec23cad77c4372b4d7b0b1fc82d5dc0 Validity Not Before: Dec 17 19:01:15 2025 GMT Not After : Dec 18 19:01:15 2025 GMT Subject: CN=c2262e726123b9b7a157a739c1c1e95ea63a4691 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:c9:b4:51:7d:f6:fe:05:9d:73:27:41:df:78: 2a:5e:b7:f2:13:d9:0d:1e:74:b8:b4:a1:53:15:81: 10:00:00:f4:52:2a:4a:43:8a:db:4a:b1:49:97:ca: 1b:43:c9:31:06:7d:9e:aa:f9:38:2a:0d:a2:47:f3: e4:c0:6e:76:62:bb:71:58:27:dc:25:a6:d4:15:da: c2:c1:96:f4:79:29:3b:08:98:c6:2c:f4:58:f4:3c: d4:44:86:e4:83:cf:72:b8:cb:81:6d:17:b4:b9:25: b9:10:49:c0:1f:28:2f:cf:9a:a5:bf:d4:c6:ea:28: 8f:5d:67:bf:27:d7:ee:d7:1c:14:c5:b4:ce:2c:dd: 0e:e3:7c:44:d3:8b:37:8a:83:4b:b3:e3:eb:89:83: 1f:4d:da:68:3f:70:1c:a6:0d:ee:70:46:aa:d1:92: 7c:a6:1f:29:ee:27:7c:62:a7:02:c3:4e:86:87:f4: 89:0a:cf:54:3b:a7:54:d4:92:57:db:4d:5d:4c:d0: 79:49:97:6d:72:31:89:49:da:73:8d:31:f2:ad:66: 0b:8b:6d:04:e0:4c:5c:20:c9:83:bb:df:5d:3a:a8: d5:bd:db:0d:f9:51:30:2f:68:a0:d7:6c:05:bd:aa: cf:28:30:42:50:37:13:aa:12:e6:2a:16:2a:f5:35: ba:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:26:2E:72:61:23:B9:B7:A1:57:A7:39:C1:C1:E9:5E:A6:3A:46:91 X509v3 Authority Key Identifier: keyid:C8:A4:11:E6:AE:C2:3C:AD:77:C4:37:2B:4D:7B:0B:1F:C8:2D:5D:C0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yKQR5q7CPK13xDcrTXsLH8gtXcA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/7b540f-b83a-40b9-ae6d-cdcee23a83b0/1/yKQR5q7CPK13xDcrTXsLH8gtXcA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/7b540f-b83a-40b9-ae6d-cdcee23a83b0/1/yKQR5q7CPK13xDcrTXsLH8gtXcA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9c:78:54:f9:c6:5b:f2:5d:d0:3d:90:95:6c:16:b2:e7:72:fc: 05:75:67:82:a8:c7:fc:ec:78:0d:5e:f5:5c:2b:62:0e:56:63: cf:72:be:14:8e:f0:44:6a:12:64:2e:0b:81:96:f7:f9:e9:76: 02:61:ca:29:65:3b:9d:cc:fa:d4:c6:43:31:1d:6d:6f:ab:cd: 7b:d5:95:92:98:97:3c:e4:ec:9c:5c:97:e8:50:e2:ab:dc:67: 5d:ab:9d:dd:60:83:d5:57:2b:11:86:44:e2:e2:d3:93:be:9e: 88:88:2b:15:9a:7f:77:f6:9e:b9:15:0c:66:bc:52:fa:67:ef: 95:5f:e4:76:a3:d5:2e:e9:40:3d:1f:58:88:83:0e:bb:ec:56: b7:ae:f5:b3:92:d6:df:03:f1:ce:dc:eb:00:ab:ac:8f:7f:58: 2c:cf:b8:c5:bc:4a:20:c2:41:2f:b7:31:f1:66:10:63:3b:b7: 5c:59:0a:72:4e:6f:7e:b2:8b:24:3f:c4:b4:f2:eb:30:d3:99: f2:ac:3b:41:d4:54:38:28:ad:74:f8:58:b6:01:0a:66:72:df: 5f:5a:44:e8:c1:76:66:8a:2f:d7:03:38:e8:43:b1:cc:b4:cb: c5:c5:34:21:42:7b:14:88:78:1d:31:d1:59:2d:1b:52:f7:f0: 41:fa:da:5c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZstsB8G9kXckV5u01R82KunMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM4YTQxMWU2YWVjMjNjYWQ3N2M0MzcyYjRkN2IwYjFmYzgy ZDVkYzAwHhcNMjUxMjE3MTkwMTE1WhcNMjUxMjE4MTkwMTE1WjAzMTEwLwYDVQQD EyhjMjI2MmU3MjYxMjNiOWI3YTE1N2E3MzljMWMxZTk1ZWE2M2E0NjkxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs8m0UX32/gWdcydB33gqXrfyE9kN HnS4tKFTFYEQAAD0UipKQ4rbSrFJl8obQ8kxBn2eqvk4Kg2iR/PkwG52YrtxWCfc JabUFdrCwZb0eSk7CJjGLPRY9DzURIbkg89yuMuBbRe0uSW5EEnAHygvz5qlv9TG 6iiPXWe/J9fu1xwUxbTOLN0O43xE04s3ioNLs+PriYMfTdpoP3Acpg3ucEaq0ZJ8 ph8p7id8YqcCw06Gh/SJCs9UO6dU1JJX201dTNB5SZdtcjGJSdpzjTHyrWYLi20E 4ExcIMmDu99dOqjVvdsN+VEwL2ig12wFvarPKDBCUDcTqhLmKhYq9TW6wQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMImLnJhI7m3oVenOcHB6V6mOkaRMB8GA1UdIwQY MBaAFMikEeauwjytd8Q3K017Cx/ILV3AMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveUtRUjVxN0NQSzEzeERjclRYc0xIOGd0WGNBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy83YjU0MGYtYjgzYS00MGI5LWFlNmQt Y2RjZWUyM2E4M2IwLzEveUtRUjVxN0NQSzEzeERjclRYc0xIOGd0WGNBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMy83YjU0MGYtYjgzYS00MGI5LWFlNmQtY2RjZWUyM2E4M2Iw LzEveUtRUjVxN0NQSzEzeERjclRYc0xIOGd0WGNBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnHhU+cZb 8l3QPZCVbBay53L8BXVngqjH/Ox4DV71XCtiDlZjz3K+FI7wRGoSZC4LgZb3+el2 AmHKKWU7ncz61MZDMR1tb6vNe9WVkpiXPOTsnFyX6FDiq9xnXaud3WCD1VcrEYZE 4uLTk76eiIgrFZp/d/aeuRUMZrxS+mfvlV/kdqPVLulAPR9YiIMOu+xWt671s5LW 3wPxztzrAKusj39YLM+4xbxKIMJBL7cx8WYQYzu3XFkKck5vfrKLJD/EtPLrMNOZ 8qw7QdRUOCitdPhYtgEKZnLfX1pE6MF2Zoov1wM46EOxzLTLxcU0IUJ7FIh4HTHR WS0bUvfwQfraXA== -----END CERTIFICATE-----Generated at Thu Dec 18 05:43:41 2025 by rpki-client