This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/f96121-0335-402d-8491-4d88fce32399/1/YgTQ-JHcR16nA-be89bq0ej3wtY.mft File: YgTQ-JHcR16nA-be89bq0ej3wtY.mft (raw, json) Hash identifier: Wc/1y9FUtPIF8gO+6PTuWzrbBRicc+sJHdcPRpOCgkk= Subject key identifier: FC:56:41:82:D6:6F:3F:CD:12:A9:29:23:06:FE:5D:BA:82:6A:DE:43 Authority key identifier: 62:04:D0:F8:91:DC:47:5E:A7:03:E6:DE:F3:D6:EA:D1:E8:F7:C2:D6 Certificate issuer: /CN=6204d0f891dc475ea703e6def3d6ead1e8f7c2d6 Certificate serial: 019AF0886D94578D660BB49D2F56C86847C9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YgTQ-JHcR16nA-be89bq0ej3wtY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/f96121-0335-402d-8491-4d88fce32399/1/YgTQ-JHcR16nA-be89bq0ej3wtY.mft Manifest number: 175F Signing time: Fri 05 Dec 2025 22:01:03 +0000 Manifest this update: Fri 05 Dec 2025 22:01:03 +0000 Manifest next update: Sat 06 Dec 2025 22:01:03 +0000 Files and hashes: 1: 0BbFW_BAMtuxhOMr7yakRiiM3nk.roa (hash: cNxaXLNhQqWeIbn1R3i1vPo3toGI8Ah5QnfkdRtrGsY=) 2: YgTQ-JHcR16nA-be89bq0ej3wtY.crl (hash: jxmVp3DWUBdhQpZkV3hK7i/AFvedAzteDVRSrJfXfrc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/f96121-0335-402d-8491-4d88fce32399/1/YgTQ-JHcR16nA-be89bq0ej3wtY.crl rsync://rpki.ripe.net/repository/DEFAULT/e4/f96121-0335-402d-8491-4d88fce32399/1/YgTQ-JHcR16nA-be89bq0ej3wtY.mft rsync://rpki.ripe.net/repository/DEFAULT/YgTQ-JHcR16nA-be89bq0ej3wtY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 22:01:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f0:88:6d:94:57:8d:66:0b:b4:9d:2f:56:c8:68:47:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6204d0f891dc475ea703e6def3d6ead1e8f7c2d6 Validity Not Before: Dec 5 22:01:03 2025 GMT Not After : Dec 6 22:01:03 2025 GMT Subject: CN=fc564182d66f3fcd12a9292306fe5dba826ade43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:3a:62:f3:4c:a0:25:cd:58:b4:cd:fd:27:2e: da:0e:ab:13:dc:b3:ec:e2:be:2d:87:f1:dc:87:00: 94:2c:7b:ff:96:24:15:22:5e:cc:7b:ac:fd:99:54: ba:52:3d:78:ba:d6:40:2b:09:b6:5b:c0:3f:04:18: 5e:2d:7c:9e:bc:2d:3b:8b:73:9c:45:0d:97:0d:46: 6e:ad:8e:6e:2d:4e:a3:aa:5f:08:0a:a1:6e:85:8d: 3c:ea:a0:43:21:e1:a1:c6:3c:91:93:04:4d:6a:8e: 2b:b6:68:91:c0:3d:3f:ad:ac:6d:11:f9:7e:17:9f: 2f:fd:36:a7:84:19:b2:fb:fc:fe:ed:ae:72:7b:c0: 24:da:44:63:9c:2b:29:3d:a2:f0:f9:93:15:05:20: 95:ee:62:36:77:e5:0e:0d:1e:01:a9:76:5a:e7:a1: da:00:0c:97:30:77:b3:46:ca:ad:93:08:cd:79:24: 83:92:1a:13:b2:4a:3e:5a:3c:88:06:eb:d0:89:fa: f1:31:af:70:3c:a0:c1:25:38:c5:a2:97:23:b2:4f: df:53:1a:84:e2:b2:d0:22:ff:6f:21:23:74:df:60: 0d:9b:a5:ec:d1:6c:41:93:99:ce:2c:f8:05:86:67: 42:33:e2:75:1a:2b:7a:4b:c1:c3:b2:43:c5:2e:73: 18:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:56:41:82:D6:6F:3F:CD:12:A9:29:23:06:FE:5D:BA:82:6A:DE:43 X509v3 Authority Key Identifier: keyid:62:04:D0:F8:91:DC:47:5E:A7:03:E6:DE:F3:D6:EA:D1:E8:F7:C2:D6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YgTQ-JHcR16nA-be89bq0ej3wtY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/f96121-0335-402d-8491-4d88fce32399/1/YgTQ-JHcR16nA-be89bq0ej3wtY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/f96121-0335-402d-8491-4d88fce32399/1/YgTQ-JHcR16nA-be89bq0ej3wtY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 32:84:08:a9:0b:04:e7:80:c6:77:ca:27:fb:26:c2:b0:12:63: f7:3f:7d:ed:8e:a1:e9:c8:ae:fc:c0:9f:b7:f2:d3:c7:bd:65: 80:65:51:f1:e6:51:13:31:ee:75:4e:ab:0e:d5:30:e4:ba:6b: de:60:1b:b4:37:aa:f1:9a:38:70:f4:4a:98:ad:70:60:48:05: 82:7e:da:47:2e:98:4b:8b:07:87:28:f5:80:ed:14:3c:c9:90: dc:3a:26:d4:ea:69:49:bf:1f:ae:1c:cf:83:ba:e8:6c:52:60: 25:62:3a:67:74:6a:61:e2:7a:a4:3f:c9:07:e1:05:3d:f5:a2: ce:02:c5:5e:e9:03:5a:9c:55:45:cd:7c:75:4e:59:ab:04:11: d2:4b:96:5e:a9:88:2b:f3:72:ab:33:a3:b9:cc:6f:ee:9f:5d: 95:a2:77:d7:b9:84:b2:36:15:bc:13:60:89:ab:87:5f:57:6c: 0c:74:aa:51:7d:44:cb:24:4f:b1:85:21:94:ad:31:aa:3d:83: 83:de:ee:0f:49:08:bb:e8:47:d8:05:4e:d8:22:26:7d:3b:a3: eb:0f:b9:29:88:0f:5f:b6:af:e8:de:c1:b5:14:3c:40:ee:c0: 3c:d3:0e:e7:26:4e:38:dd:40:a7:5e:ac:65:9f:2e:d8:ff:00: 01:4a:2a:40 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrwiG2UV41mC7SdL1bIaEfJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYyMDRkMGY4OTFkYzQ3NWVhNzAzZTZkZWYzZDZlYWQxZThm N2MyZDYwHhcNMjUxMjA1MjIwMTAzWhcNMjUxMjA2MjIwMTAzWjAzMTEwLwYDVQQD EyhmYzU2NDE4MmQ2NmYzZmNkMTJhOTI5MjMwNmZlNWRiYTgyNmFkZTQzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApzpi80ygJc1YtM39Jy7aDqsT3LPs 4r4th/HchwCULHv/liQVIl7Me6z9mVS6Uj14utZAKwm2W8A/BBheLXyevC07i3Oc RQ2XDUZurY5uLU6jql8ICqFuhY086qBDIeGhxjyRkwRNao4rtmiRwD0/raxtEfl+ F58v/TanhBmy+/z+7a5ye8Ak2kRjnCspPaLw+ZMVBSCV7mI2d+UODR4BqXZa56Ha AAyXMHezRsqtkwjNeSSDkhoTsko+WjyIBuvQifrxMa9wPKDBJTjFopcjsk/fUxqE 4rLQIv9vISN032ANm6Xs0WxBk5nOLPgFhmdCM+J1Git6S8HDskPFLnMYswIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPxWQYLWbz/NEqkpIwb+XbqCat5DMB8GA1UdIwQY MBaAFGIE0PiR3EdepwPm3vPW6tHo98LWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWWdUUS1KSGNSMTZuQS1iZTg5YnEwZWozd3RZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNC9mOTYxMjEtMDMzNS00MDJkLTg0OTEt NGQ4OGZjZTMyMzk5LzEvWWdUUS1KSGNSMTZuQS1iZTg5YnEwZWozd3RZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNC9mOTYxMjEtMDMzNS00MDJkLTg0OTEtNGQ4OGZjZTMyMzk5 LzEvWWdUUS1KSGNSMTZuQS1iZTg5YnEwZWozd3RZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMoQIqQsE 54DGd8on+ybCsBJj9z997Y6h6ciu/MCft/LTx71lgGVR8eZREzHudU6rDtUw5Lpr 3mAbtDeq8Zo4cPRKmK1wYEgFgn7aRy6YS4sHhyj1gO0UPMmQ3Dom1OppSb8frhzP g7robFJgJWI6Z3RqYeJ6pD/JB+EFPfWizgLFXukDWpxVRc18dU5ZqwQR0kuWXqmI K/NyqzOjucxv7p9dlaJ317mEsjYVvBNgiauHX1dsDHSqUX1EyyRPsYUhlK0xqj2D g97uD0kIu+hH2AVO2CImfTuj6w+5KYgPX7av6N7BtRQ8QO7APNMO5yZOON1Ap16s ZZ8u2P8AAUoqQA== -----END CERTIFICATE-----Generated at Sat Dec 6 08:12:26 2025 by rpki-client