This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/0eecef-ae8f-4bf9-ab5e-524764a40e22/1/yBXVwM0hRrqv6Kpri5qnzrbkF1o.mft File: yBXVwM0hRrqv6Kpri5qnzrbkF1o.mft (raw, json) Hash identifier: a9jcbMRdz3jM8KPZJjKiEXInsXZ233PsDXvYi6rIB3A= Subject key identifier: DD:DB:29:CA:F5:F6:68:76:6B:7A:05:FD:DD:1E:DB:8F:9A:3B:7E:7E Authority key identifier: C8:15:D5:C0:CD:21:46:BA:AF:E8:AA:6B:8B:9A:A7:CE:B6:E4:17:5A Certificate issuer: /CN=c815d5c0cd2146baafe8aa6b8b9aa7ceb6e4175a Certificate serial: 019AF19B3441CC58993E2D15C28B0761A47B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yBXVwM0hRrqv6Kpri5qnzrbkF1o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/0eecef-ae8f-4bf9-ab5e-524764a40e22/1/yBXVwM0hRrqv6Kpri5qnzrbkF1o.mft Manifest number: 0F0E Signing time: Sat 06 Dec 2025 03:01:11 +0000 Manifest this update: Sat 06 Dec 2025 03:01:11 +0000 Manifest next update: Sun 07 Dec 2025 03:01:11 +0000 Files and hashes: 1: n0pJCaUiRCl5Ps5_Vu5R9Y3I9qU.roa (hash: yrWbMC7j+dM+coJf76N3ZfAw2TV7juT6B31o0/J59Ds=) 2: yBXVwM0hRrqv6Kpri5qnzrbkF1o.crl (hash: X/G445dyvUJzQc13rEKmw/hemNoAPuli54msK6hP3EY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/0eecef-ae8f-4bf9-ab5e-524764a40e22/1/yBXVwM0hRrqv6Kpri5qnzrbkF1o.crl rsync://rpki.ripe.net/repository/DEFAULT/e7/0eecef-ae8f-4bf9-ab5e-524764a40e22/1/yBXVwM0hRrqv6Kpri5qnzrbkF1o.mft rsync://rpki.ripe.net/repository/DEFAULT/yBXVwM0hRrqv6Kpri5qnzrbkF1o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9b:34:41:cc:58:99:3e:2d:15:c2:8b:07:61:a4:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c815d5c0cd2146baafe8aa6b8b9aa7ceb6e4175a Validity Not Before: Dec 6 03:01:11 2025 GMT Not After : Dec 7 03:01:11 2025 GMT Subject: CN=dddb29caf5f668766b7a05fddd1edb8f9a3b7e7e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:a1:5f:c3:f8:73:e2:68:4e:c3:98:cc:a3:d5: 20:fe:7d:e8:90:37:c1:09:5a:f7:e3:a2:46:fd:48: e3:2e:8f:30:b0:2e:f3:52:3a:f1:16:58:75:fd:8d: db:f0:3a:c8:6a:33:6e:60:68:5c:55:c1:4c:a3:8a: 55:c1:da:07:03:db:a1:b8:57:9c:9c:62:9e:cf:29: c8:b4:a2:4d:67:c3:d5:9b:20:d9:81:91:ec:44:8b: ca:7e:70:43:ba:48:46:58:9d:1c:d5:89:e8:8c:b7: 66:68:24:d8:30:1f:26:3c:55:65:f0:62:e6:ab:e9: 54:23:f1:b3:c1:8c:44:d4:8f:32:eb:3b:aa:80:29: b2:e5:be:1c:34:9b:64:89:b9:96:ed:e2:aa:01:65: 85:bd:a8:43:23:e0:b4:56:e2:c9:d9:46:46:66:b8: bc:8e:e8:2a:f6:02:9c:9b:d8:14:a0:f9:0f:da:cd: d7:4f:c9:56:ef:38:26:20:e0:2b:e5:66:c9:70:db: c7:77:f8:8f:35:d4:b5:1f:ad:12:73:bc:9d:d2:50: 6d:f9:d6:43:72:7c:4b:1b:0a:8e:15:59:5f:66:f2: 88:ef:62:1f:4d:fd:02:dd:6e:4d:e6:a5:4e:77:d0: 04:51:b4:8a:ce:22:49:3b:f5:e6:b0:47:ac:c8:72: d2:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:DB:29:CA:F5:F6:68:76:6B:7A:05:FD:DD:1E:DB:8F:9A:3B:7E:7E X509v3 Authority Key Identifier: keyid:C8:15:D5:C0:CD:21:46:BA:AF:E8:AA:6B:8B:9A:A7:CE:B6:E4:17:5A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yBXVwM0hRrqv6Kpri5qnzrbkF1o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/0eecef-ae8f-4bf9-ab5e-524764a40e22/1/yBXVwM0hRrqv6Kpri5qnzrbkF1o.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/0eecef-ae8f-4bf9-ab5e-524764a40e22/1/yBXVwM0hRrqv6Kpri5qnzrbkF1o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1f:40:6e:5a:80:9a:b9:8e:58:26:d4:b8:b3:48:a4:87:d3:74: 5e:38:8a:0c:9a:d4:d4:98:c6:b3:4c:23:be:50:c8:9d:a1:fd: 27:3b:7b:67:2c:b3:6e:44:38:ff:02:22:06:ab:46:dd:ea:f9: 8e:91:44:0e:58:8e:b9:f0:c3:f9:db:05:eb:4d:ce:a6:84:ab: 88:bb:13:70:34:d8:9c:c6:d5:12:41:87:95:8c:a1:94:f4:b8: 05:b5:d5:ef:c6:5f:3d:54:de:da:af:b7:56:a9:5f:50:c3:a2: 24:90:c3:c9:02:05:f5:54:2f:ac:e5:a5:d9:40:12:61:e6:aa: 28:8f:3c:85:30:86:39:9a:80:92:b0:8c:fd:67:27:1a:1e:d3: 6c:07:e4:53:cb:9e:2b:2e:7d:ee:3b:84:bc:ce:ed:b1:be:92: ae:bf:4f:8a:9b:79:0e:cb:e4:03:5f:9e:ab:7e:bc:08:eb:11: fd:34:f8:58:30:7d:3a:e3:06:ef:11:23:9d:1d:07:4f:05:b7: 9f:11:ac:b9:e6:f2:97:fd:8c:53:c8:a8:cf:01:09:72:78:c9: ec:15:90:c8:65:3c:d4:47:d8:96:56:f1:83:ac:e7:57:fa:7f: a0:da:48:40:79:55:51:ce:92:9b:da:50:c5:6c:20:64:06:0e: 81:4e:fa:f7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxmzRBzFiZPi0VwosHYaR7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM4MTVkNWMwY2QyMTQ2YmFhZmU4YWE2YjhiOWFhN2NlYjZl NDE3NWEwHhcNMjUxMjA2MDMwMTExWhcNMjUxMjA3MDMwMTExWjAzMTEwLwYDVQQD EyhkZGRiMjljYWY1ZjY2ODc2NmI3YTA1ZmRkZDFlZGI4ZjlhM2I3ZTdlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz6Ffw/hz4mhOw5jMo9Ug/n3okDfB CVr346JG/UjjLo8wsC7zUjrxFlh1/Y3b8DrIajNuYGhcVcFMo4pVwdoHA9uhuFec nGKezynItKJNZ8PVmyDZgZHsRIvKfnBDukhGWJ0c1YnojLdmaCTYMB8mPFVl8GLm q+lUI/GzwYxE1I8y6zuqgCmy5b4cNJtkibmW7eKqAWWFvahDI+C0VuLJ2UZGZri8 jugq9gKcm9gUoPkP2s3XT8lW7zgmIOAr5WbJcNvHd/iPNdS1H60Sc7yd0lBt+dZD cnxLGwqOFVlfZvKI72IfTf0C3W5N5qVOd9AEUbSKziJJO/XmsEesyHLSjwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFN3bKcr19mh2a3oF/d0e24+aO35+MB8GA1UdIwQY MBaAFMgV1cDNIUa6r+iqa4uap8625BdaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveUJYVndNMGhScnF2Nktwcmk1cW56cmJrRjFvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNy8wZWVjZWYtYWU4Zi00YmY5LWFiNWUt NTI0NzY0YTQwZTIyLzEveUJYVndNMGhScnF2Nktwcmk1cW56cmJrRjFvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNy8wZWVjZWYtYWU4Zi00YmY5LWFiNWUtNTI0NzY0YTQwZTIy LzEveUJYVndNMGhScnF2Nktwcmk1cW56cmJrRjFvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAH0BuWoCa uY5YJtS4s0ikh9N0XjiKDJrU1JjGs0wjvlDInaH9Jzt7ZyyzbkQ4/wIiBqtG3er5 jpFEDliOufDD+dsF603OpoSriLsTcDTYnMbVEkGHlYyhlPS4BbXV78ZfPVTe2q+3 VqlfUMOiJJDDyQIF9VQvrOWl2UASYeaqKI88hTCGOZqAkrCM/WcnGh7TbAfkU8ue Ky597juEvM7tsb6Srr9Pipt5DsvkA1+eq368COsR/TT4WDB9OuMG7xEjnR0HTwW3 nxGsuebyl/2MU8iozwEJcnjJ7BWQyGU81EfYllbxg6znV/p/oNpIQHlVUc6Sm9pQ xWwgZAYOgU769w== -----END CERTIFICATE-----Generated at Sat Dec 6 07:26:07 2025 by rpki-client