This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/7b540f-b83a-40b9-ae6d-cdcee23a83b0/1/yKQR5q7CPK13xDcrTXsLH8gtXcA.mft File: yKQR5q7CPK13xDcrTXsLH8gtXcA.mft (raw, json) Hash identifier: ZQ1yQThOHWqEXjRxJFk3j212XsYeCC5rx4wYsl3P4sc= Subject key identifier: D0:20:2D:E6:29:C6:10:DE:A4:F2:09:AE:73:3F:1E:95:82:9A:C2:72 Authority key identifier: C8:A4:11:E6:AE:C2:3C:AD:77:C4:37:2B:4D:7B:0B:1F:C8:2D:5D:C0 Certificate issuer: /CN=c8a411e6aec23cad77c4372b4d7b0b1fc82d5dc0 Certificate serial: 019AF1D17FB02E339EABA58B9921CFBDA9DC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yKQR5q7CPK13xDcrTXsLH8gtXcA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/7b540f-b83a-40b9-ae6d-cdcee23a83b0/1/yKQR5q7CPK13xDcrTXsLH8gtXcA.mft Manifest number: 175F Signing time: Sat 06 Dec 2025 04:00:29 +0000 Manifest this update: Sat 06 Dec 2025 04:00:29 +0000 Manifest next update: Sun 07 Dec 2025 04:00:29 +0000 Files and hashes: 1: yKQR5q7CPK13xDcrTXsLH8gtXcA.crl (hash: QWmFxOexJmPYf9GB3AyupWtZyrxHyzPVulbfPVQSGbQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/7b540f-b83a-40b9-ae6d-cdcee23a83b0/1/yKQR5q7CPK13xDcrTXsLH8gtXcA.crl rsync://rpki.ripe.net/repository/DEFAULT/d3/7b540f-b83a-40b9-ae6d-cdcee23a83b0/1/yKQR5q7CPK13xDcrTXsLH8gtXcA.mft rsync://rpki.ripe.net/repository/DEFAULT/yKQR5q7CPK13xDcrTXsLH8gtXcA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:d1:7f:b0:2e:33:9e:ab:a5:8b:99:21:cf:bd:a9:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c8a411e6aec23cad77c4372b4d7b0b1fc82d5dc0 Validity Not Before: Dec 6 04:00:29 2025 GMT Not After : Dec 7 04:00:29 2025 GMT Subject: CN=d0202de629c610dea4f209ae733f1e95829ac272 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:15:6c:c9:6e:1e:bd:1b:e1:cd:6e:59:be:80: 92:5c:df:0c:a8:64:18:2c:46:2b:06:07:a7:4d:9b: 35:6d:78:8b:a1:9e:a7:20:57:b9:f1:bd:60:8f:5d: 92:62:9b:3a:4b:26:9b:a8:26:df:df:d6:be:f9:4a: e7:30:2c:19:b3:04:a3:b7:03:43:1e:68:4c:08:08: e1:ea:9b:5b:09:d0:dd:e6:5b:e7:f4:4b:cb:d1:a4: d3:d6:e3:0d:95:09:93:7d:62:f0:35:4c:f3:3f:b9: 1a:d5:72:4a:c8:cf:5e:a4:f3:b5:79:ed:9f:a9:a0: c0:93:07:2d:1d:0f:5a:f0:f4:d9:75:85:3f:68:b6: 9b:37:9e:e6:93:f0:46:5f:9f:71:98:c8:d3:e0:49: be:15:70:9f:c4:78:7b:c2:a5:42:0c:8a:82:7e:fb: ed:26:67:66:d2:b1:fe:9a:22:99:dc:d6:97:16:68: a7:a4:c0:19:61:96:03:a2:45:ef:39:e1:5d:5e:dc: 2c:cd:6e:64:e1:ae:63:f3:93:4f:2a:7c:6d:be:ce: f4:96:f8:b0:af:73:d9:18:a6:2f:31:09:f8:ce:44: ad:00:a2:0f:d9:2f:61:41:1c:76:fb:14:fc:ee:b7: ca:25:44:b1:79:c1:82:5f:fe:eb:a4:24:6a:11:0d: b9:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:20:2D:E6:29:C6:10:DE:A4:F2:09:AE:73:3F:1E:95:82:9A:C2:72 X509v3 Authority Key Identifier: keyid:C8:A4:11:E6:AE:C2:3C:AD:77:C4:37:2B:4D:7B:0B:1F:C8:2D:5D:C0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yKQR5q7CPK13xDcrTXsLH8gtXcA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/7b540f-b83a-40b9-ae6d-cdcee23a83b0/1/yKQR5q7CPK13xDcrTXsLH8gtXcA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/7b540f-b83a-40b9-ae6d-cdcee23a83b0/1/yKQR5q7CPK13xDcrTXsLH8gtXcA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 56:1e:c3:f7:61:6b:be:61:5d:e1:a3:f4:f5:87:ba:81:f0:52: 06:e4:f5:5d:14:ff:e5:99:9f:19:3b:bd:c2:92:16:d4:42:94: 45:31:53:78:54:0c:30:df:4a:e8:6d:07:87:d2:42:5d:5b:0f: 2d:9b:c7:23:80:b6:7f:98:77:15:13:9c:88:44:35:71:1b:b5: 34:2a:8e:78:f4:65:ac:71:a9:5e:7a:78:d9:96:2d:57:80:04: 96:0b:1d:2f:f5:02:65:c4:6a:a0:9b:e7:f5:11:5e:ee:88:98: ec:16:df:2b:fd:06:a0:0c:ea:34:c6:4b:08:0f:3d:3f:2d:b1: 16:67:1e:e9:90:ee:13:d1:8b:f2:08:59:56:e4:11:cb:04:36: 89:7a:5f:cc:03:44:88:3f:1a:a3:8b:a6:99:1d:2c:31:94:f9: c3:ad:b1:8d:84:0d:da:36:44:22:b8:6b:6d:c4:c3:5a:c1:fd: c7:40:73:a4:d8:cf:6f:32:d7:fe:15:ce:8c:ff:8f:2a:86:9c: ae:a6:3e:3a:55:b0:c2:4e:45:c7:25:6e:09:58:6e:2b:db:76: 9d:9f:52:55:2a:1b:c3:12:30:f2:8c:19:69:ba:dc:84:0a:5f: 64:ff:05:b2:70:31:6d:1a:f0:e2:c1:98:19:a9:8d:08:d4:d5: 08:12:13:a8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrx0X+wLjOeq6WLmSHPvancMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM4YTQxMWU2YWVjMjNjYWQ3N2M0MzcyYjRkN2IwYjFmYzgy ZDVkYzAwHhcNMjUxMjA2MDQwMDI5WhcNMjUxMjA3MDQwMDI5WjAzMTEwLwYDVQQD EyhkMDIwMmRlNjI5YzYxMGRlYTRmMjA5YWU3MzNmMWU5NTgyOWFjMjcyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4BVsyW4evRvhzW5ZvoCSXN8MqGQY LEYrBgenTZs1bXiLoZ6nIFe58b1gj12SYps6SyabqCbf39a++UrnMCwZswSjtwND HmhMCAjh6ptbCdDd5lvn9EvL0aTT1uMNlQmTfWLwNUzzP7ka1XJKyM9epPO1ee2f qaDAkwctHQ9a8PTZdYU/aLabN57mk/BGX59xmMjT4Em+FXCfxHh7wqVCDIqCfvvt Jmdm0rH+miKZ3NaXFminpMAZYZYDokXvOeFdXtwszW5k4a5j85NPKnxtvs70lviw r3PZGKYvMQn4zkStAKIP2S9hQRx2+xT87rfKJUSxecGCX/7rpCRqEQ25/wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNAgLeYpxhDepPIJrnM/HpWCmsJyMB8GA1UdIwQY MBaAFMikEeauwjytd8Q3K017Cx/ILV3AMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveUtRUjVxN0NQSzEzeERjclRYc0xIOGd0WGNBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy83YjU0MGYtYjgzYS00MGI5LWFlNmQt Y2RjZWUyM2E4M2IwLzEveUtRUjVxN0NQSzEzeERjclRYc0xIOGd0WGNBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMy83YjU0MGYtYjgzYS00MGI5LWFlNmQtY2RjZWUyM2E4M2Iw LzEveUtRUjVxN0NQSzEzeERjclRYc0xIOGd0WGNBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVh7D92Fr vmFd4aP09Ye6gfBSBuT1XRT/5ZmfGTu9wpIW1EKURTFTeFQMMN9K6G0Hh9JCXVsP LZvHI4C2f5h3FROciEQ1cRu1NCqOePRlrHGpXnp42ZYtV4AElgsdL/UCZcRqoJvn 9RFe7oiY7BbfK/0GoAzqNMZLCA89Py2xFmce6ZDuE9GL8ghZVuQRywQ2iXpfzANE iD8ao4ummR0sMZT5w62xjYQN2jZEIrhrbcTDWsH9x0BzpNjPbzLX/hXOjP+PKoac rqY+OlWwwk5FxyVuCVhuK9t2nZ9SVSobwxIw8owZabrchApfZP8FsnAxbRrw4sGY GamNCNTVCBITqA== -----END CERTIFICATE-----Generated at Sat Dec 6 09:21:10 2025 by rpki-client