This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/ea7121-5414-4484-9185-eec14c971c4d/1/yRggtQAH5BxT3WAps3lU01cvTCk.mft File: yRggtQAH5BxT3WAps3lU01cvTCk.mft (raw, json) Hash identifier: /6Fls4cBZYEzJBoFWShS8qcJkGHkJG1ZIcjrq/RDPj0= Subject key identifier: A9:10:A9:9A:00:66:06:C4:69:95:5E:08:68:0A:E2:0B:15:B2:35:C8 Authority key identifier: C9:18:20:B5:00:07:E4:1C:53:DD:60:29:B3:79:54:D3:57:2F:4C:29 Certificate issuer: /CN=c91820b50007e41c53dd6029b37954d3572f4c29 Certificate serial: 019AF3C0197CFA62DFB0F0053DA8516C699F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yRggtQAH5BxT3WAps3lU01cvTCk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/ea7121-5414-4484-9185-eec14c971c4d/1/yRggtQAH5BxT3WAps3lU01cvTCk.mft Manifest number: 12A6 Signing time: Sat 06 Dec 2025 13:00:43 +0000 Manifest this update: Sat 06 Dec 2025 13:00:43 +0000 Manifest next update: Sun 07 Dec 2025 13:00:43 +0000 Files and hashes: 1: juTNVsKtR118cxI6QcWd767caRM.roa (hash: MCsaWupCkvlIsE0i3wi2ave3G1GEJt2KTaWMIAFFXxI=) 2: yRggtQAH5BxT3WAps3lU01cvTCk.crl (hash: Ftn0fjTaUDhYJVJPaMnS3EKbo3p8WDtBlKfNsaL+Hks=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/ea7121-5414-4484-9185-eec14c971c4d/1/yRggtQAH5BxT3WAps3lU01cvTCk.crl rsync://rpki.ripe.net/repository/DEFAULT/e1/ea7121-5414-4484-9185-eec14c971c4d/1/yRggtQAH5BxT3WAps3lU01cvTCk.mft rsync://rpki.ripe.net/repository/DEFAULT/yRggtQAH5BxT3WAps3lU01cvTCk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:00:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:c0:19:7c:fa:62:df:b0:f0:05:3d:a8:51:6c:69:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c91820b50007e41c53dd6029b37954d3572f4c29 Validity Not Before: Dec 6 13:00:43 2025 GMT Not After : Dec 7 13:00:43 2025 GMT Subject: CN=a910a99a006606c469955e08680ae20b15b235c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:57:2d:75:c1:c9:e8:fc:bc:99:62:36:cd:5e: c7:7e:f3:1e:21:2e:5c:68:e1:86:e3:9d:91:f5:0f: 07:a1:fd:72:6f:e8:53:7e:91:05:7e:2a:cb:3a:a6: be:4e:10:07:27:0b:cd:68:f4:09:ac:6f:6a:fb:7b: ba:5b:0d:3e:3d:61:49:51:9d:3f:25:24:d5:ab:a1: 25:71:1a:41:ab:e5:f6:4b:f7:3f:ef:1f:c4:b6:91: 7c:f4:fe:04:3b:19:b8:7c:13:7f:45:50:53:b9:44: 75:c1:79:6b:dd:4f:d1:c9:f4:df:29:87:26:87:44: 86:3f:ff:d8:7b:c1:f5:26:40:c4:fc:8e:10:c0:ed: 2f:1f:ad:35:4e:13:43:82:2a:d3:ee:59:d6:99:70: 72:62:0e:8f:ab:cf:c3:b3:7b:d6:4f:d1:e5:43:c2: 02:52:f3:b2:0b:66:8d:a3:f6:8b:62:eb:e9:9b:84: 23:93:83:20:d4:c3:04:7c:4d:4a:90:37:6e:1b:35: de:3c:a2:e4:e0:1a:54:5b:51:10:c6:18:6e:40:00: 72:5f:fd:4d:17:2e:91:5c:0e:16:3c:f2:30:10:fd: a0:6f:24:9d:21:cf:d7:6c:42:00:d9:d3:e6:a7:b7: 8d:8e:3a:a7:97:a5:30:ca:b1:6b:81:8a:3a:b5:2a: a1:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:10:A9:9A:00:66:06:C4:69:95:5E:08:68:0A:E2:0B:15:B2:35:C8 X509v3 Authority Key Identifier: keyid:C9:18:20:B5:00:07:E4:1C:53:DD:60:29:B3:79:54:D3:57:2F:4C:29 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yRggtQAH5BxT3WAps3lU01cvTCk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/ea7121-5414-4484-9185-eec14c971c4d/1/yRggtQAH5BxT3WAps3lU01cvTCk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/ea7121-5414-4484-9185-eec14c971c4d/1/yRggtQAH5BxT3WAps3lU01cvTCk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 41:74:c3:34:4d:4e:96:2c:38:14:47:a7:3b:b4:b8:4e:44:3f: c3:54:7b:50:67:4e:31:86:cd:22:1c:aa:22:d5:fa:18:c1:87: 6a:f3:e0:1e:4d:7e:b6:f1:84:a7:fa:77:d1:36:32:9b:80:bc: 37:31:4a:0a:29:da:31:40:4f:67:d9:50:c0:4a:43:8b:68:c0: 19:95:14:e5:19:5c:40:c0:c9:49:76:2b:a2:e2:11:83:e7:66: 8e:22:25:4f:0a:57:8d:ee:8b:4e:0c:1b:22:27:fa:1c:d5:14: 85:6e:cb:2c:55:25:28:10:f9:3b:06:7c:61:75:85:6f:db:84: aa:a4:66:45:de:c9:35:c3:23:1f:20:7d:d5:84:5f:67:39:59: cd:25:71:ca:24:04:5d:e1:60:6f:85:2b:d7:89:e3:e1:80:08: 13:ae:27:90:7f:08:30:a9:10:24:53:8a:77:14:eb:95:8a:a9: ed:2d:8b:f8:fa:9d:f4:f2:6c:e1:31:b0:7c:0f:c3:a2:bb:c2: 29:48:d8:0d:61:71:3d:50:be:79:5d:da:3d:b2:fe:bf:a7:5a: bd:e9:bf:0b:c2:98:34:1d:5a:35:77:2a:b2:7c:69:38:56:44: d4:9a:44:77:2c:74:37:7b:36:7a:cb:1a:ce:37:1b:14:7c:56: fe:15:a0:30 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzwBl8+mLfsPAFPahRbGmfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM5MTgyMGI1MDAwN2U0MWM1M2RkNjAyOWIzNzk1NGQzNTcy ZjRjMjkwHhcNMjUxMjA2MTMwMDQzWhcNMjUxMjA3MTMwMDQzWjAzMTEwLwYDVQQD EyhhOTEwYTk5YTAwNjYwNmM0Njk5NTVlMDg2ODBhZTIwYjE1YjIzNWM4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlVctdcHJ6Py8mWI2zV7HfvMeIS5c aOGG452R9Q8Hof1yb+hTfpEFfirLOqa+ThAHJwvNaPQJrG9q+3u6Ww0+PWFJUZ0/ JSTVq6ElcRpBq+X2S/c/7x/EtpF89P4EOxm4fBN/RVBTuUR1wXlr3U/RyfTfKYcm h0SGP//Ye8H1JkDE/I4QwO0vH601ThNDgirT7lnWmXByYg6Pq8/Ds3vWT9HlQ8IC UvOyC2aNo/aLYuvpm4Qjk4Mg1MMEfE1KkDduGzXePKLk4BpUW1EQxhhuQAByX/1N Fy6RXA4WPPIwEP2gbySdIc/XbEIA2dPmp7eNjjqnl6UwyrFrgYo6tSqhYQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKkQqZoAZgbEaZVeCGgK4gsVsjXIMB8GA1UdIwQY MBaAFMkYILUAB+QcU91gKbN5VNNXL0wpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveVJnZ3RRQUg1QnhUM1dBcHMzbFUwMWN2VENrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMS9lYTcxMjEtNTQxNC00NDg0LTkxODUt ZWVjMTRjOTcxYzRkLzEveVJnZ3RRQUg1QnhUM1dBcHMzbFUwMWN2VENrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMS9lYTcxMjEtNTQxNC00NDg0LTkxODUtZWVjMTRjOTcxYzRk LzEveVJnZ3RRQUg1QnhUM1dBcHMzbFUwMWN2VENrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQXTDNE1O liw4FEenO7S4TkQ/w1R7UGdOMYbNIhyqItX6GMGHavPgHk1+tvGEp/p30TYym4C8 NzFKCinaMUBPZ9lQwEpDi2jAGZUU5RlcQMDJSXYrouIRg+dmjiIlTwpXje6LTgwb Iif6HNUUhW7LLFUlKBD5OwZ8YXWFb9uEqqRmRd7JNcMjHyB91YRfZzlZzSVxyiQE XeFgb4Ur14nj4YAIE64nkH8IMKkQJFOKdxTrlYqp7S2L+Pqd9PJs4TGwfA/DorvC KUjYDWFxPVC+eV3aPbL+v6davem/C8KYNB1aNXcqsnxpOFZE1JpEdyx0N3s2essa zjcbFHxW/hWgMA== -----END CERTIFICATE-----Generated at Sat Dec 6 22:19:06 2025 by rpki-client