This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/441755-b52f-4fb6-b3ef-7acbc6c9f985/1/ryfUX8GLqRerHomhfvC2NgmEgiQ.mft File: ryfUX8GLqRerHomhfvC2NgmEgiQ.mft (raw, json) Hash identifier: osiAWOqJWWAdzMp8iJNXVEDvxdFf5hvckTSkLtwE8jo= Subject key identifier: 1A:54:9F:5D:69:B7:E4:08:37:58:21:B9:CD:E6:4D:49:55:BC:6C:4B Authority key identifier: AF:27:D4:5F:C1:8B:A9:17:AB:1E:89:A1:7E:F0:B6:36:09:84:82:24 Certificate issuer: /CN=af27d45fc18ba917ab1e89a17ef0b63609848224 Certificate serial: 019AF208A523EA037A560A01C33DB4A44324 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ryfUX8GLqRerHomhfvC2NgmEgiQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/441755-b52f-4fb6-b3ef-7acbc6c9f985/1/ryfUX8GLqRerHomhfvC2NgmEgiQ.mft Manifest number: 140A Signing time: Sat 06 Dec 2025 05:00:43 +0000 Manifest this update: Sat 06 Dec 2025 05:00:43 +0000 Manifest next update: Sun 07 Dec 2025 05:00:43 +0000 Files and hashes: 1: ryfUX8GLqRerHomhfvC2NgmEgiQ.crl (hash: Rf7XXQWVZRBT40CsGVvhVrbdD9fADwWsQeMdtFljL/s=) 2: zl8vYnMSKo50V7tHcL3U74d2LS4.roa (hash: cxI3XYqo0XKxXcEnFf9KagnCReAfMGFWl39LE0K//l8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/441755-b52f-4fb6-b3ef-7acbc6c9f985/1/ryfUX8GLqRerHomhfvC2NgmEgiQ.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/441755-b52f-4fb6-b3ef-7acbc6c9f985/1/ryfUX8GLqRerHomhfvC2NgmEgiQ.mft rsync://rpki.ripe.net/repository/DEFAULT/ryfUX8GLqRerHomhfvC2NgmEgiQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:08:a5:23:ea:03:7a:56:0a:01:c3:3d:b4:a4:43:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=af27d45fc18ba917ab1e89a17ef0b63609848224 Validity Not Before: Dec 6 05:00:43 2025 GMT Not After : Dec 7 05:00:43 2025 GMT Subject: CN=1a549f5d69b7e408375821b9cde64d4955bc6c4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:29:ec:4b:14:b1:21:58:19:96:f3:9f:2a:f8: 5a:bd:db:0c:ee:f5:bd:78:45:44:01:5a:b0:d7:2f: 47:a0:5e:51:b9:d0:fe:89:0c:6e:9d:20:e4:6b:5f: 94:fb:dc:cb:50:5f:10:42:f3:8c:81:7b:79:af:72: 38:bf:a5:cf:01:16:4b:3e:17:2b:6c:c3:f1:aa:a2: c6:08:a4:ec:16:9d:69:f1:e0:2e:87:e1:62:40:b2: a0:ef:f2:39:89:50:c3:f1:ca:32:e8:f2:2b:67:8d: 22:b8:21:6d:8d:66:8e:e8:48:a2:5c:e9:d8:b9:7d: 18:97:1f:e0:6d:16:fa:5e:7d:42:be:8f:49:82:32: 47:ed:06:5f:63:58:43:9e:3c:71:88:aa:05:d1:01: d8:d4:55:60:7e:50:1f:c9:b0:1d:c4:c6:de:c3:f3: 01:e1:9b:9b:97:02:e3:a1:5e:c4:ee:ee:15:90:55: 68:37:88:b2:95:a6:c5:4b:00:42:6c:4f:80:b5:1b: f5:ec:08:23:c0:dc:d8:b4:2b:cb:2e:62:cc:89:47: b0:00:95:c9:48:c1:50:87:c7:d8:4a:f4:58:9c:59: 00:24:63:56:0a:e1:49:57:c4:73:d3:61:e9:c1:8a: a3:23:2c:04:84:06:d8:87:05:f0:18:c0:f2:3c:8d: b5:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:54:9F:5D:69:B7:E4:08:37:58:21:B9:CD:E6:4D:49:55:BC:6C:4B X509v3 Authority Key Identifier: keyid:AF:27:D4:5F:C1:8B:A9:17:AB:1E:89:A1:7E:F0:B6:36:09:84:82:24 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ryfUX8GLqRerHomhfvC2NgmEgiQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/441755-b52f-4fb6-b3ef-7acbc6c9f985/1/ryfUX8GLqRerHomhfvC2NgmEgiQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/441755-b52f-4fb6-b3ef-7acbc6c9f985/1/ryfUX8GLqRerHomhfvC2NgmEgiQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 25:7f:5d:63:82:82:9e:d0:32:e7:de:6b:c0:3c:cd:35:e3:a0: fa:73:5e:75:a2:b8:03:1c:e6:63:7a:13:41:ec:f2:f6:72:98: 59:37:d7:5d:db:7a:d3:5a:ff:3c:6a:c4:05:be:12:3e:d2:e1: 87:43:df:81:f9:5b:2b:2b:6b:7f:1f:06:b4:62:46:07:56:e1: 49:cf:b1:1b:03:38:16:d5:8e:24:7a:90:9e:b1:95:ab:68:b1: 60:a7:dc:f1:33:0b:bd:ed:7b:8e:de:e3:ff:ec:e4:76:ef:8e: 56:f9:23:20:bf:b0:0b:01:dc:04:38:3b:20:a2:24:8b:c3:f4: a4:20:fb:0e:b0:07:f5:ec:4b:39:98:78:be:ba:d4:11:a0:01: 9e:73:c5:f0:59:92:38:87:44:de:9f:1f:58:67:0f:a4:34:8e: 5f:cb:fe:23:e1:fa:c5:7b:46:fd:1f:82:e7:29:b4:39:6e:d0: 0b:67:d4:fe:8f:c7:29:77:17:b3:dc:08:1b:13:8e:d5:92:f0: 30:b4:16:67:73:9e:05:33:84:ca:69:a3:74:2d:c1:d8:09:85: 1d:d0:90:a6:6c:c2:56:07:6d:fd:0f:8f:ce:ec:50:92:38:66: 3b:ab:f8:9f:97:36:7a:8a:77:97:b9:63:90:5b:54:e3:de:34: a6:e9:4b:86 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCKUj6gN6VgoBwz20pEMkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFmMjdkNDVmYzE4YmE5MTdhYjFlODlhMTdlZjBiNjM2MDk4 NDgyMjQwHhcNMjUxMjA2MDUwMDQzWhcNMjUxMjA3MDUwMDQzWjAzMTEwLwYDVQQD EygxYTU0OWY1ZDY5YjdlNDA4Mzc1ODIxYjljZGU2NGQ0OTU1YmM2YzRiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAninsSxSxIVgZlvOfKvhavdsM7vW9 eEVEAVqw1y9HoF5RudD+iQxunSDka1+U+9zLUF8QQvOMgXt5r3I4v6XPARZLPhcr bMPxqqLGCKTsFp1p8eAuh+FiQLKg7/I5iVDD8coy6PIrZ40iuCFtjWaO6EiiXOnY uX0Ylx/gbRb6Xn1Cvo9JgjJH7QZfY1hDnjxxiKoF0QHY1FVgflAfybAdxMbew/MB 4ZublwLjoV7E7u4VkFVoN4iylabFSwBCbE+AtRv17AgjwNzYtCvLLmLMiUewAJXJ SMFQh8fYSvRYnFkAJGNWCuFJV8Rz02HpwYqjIywEhAbYhwXwGMDyPI21TQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBpUn11pt+QIN1ghuc3mTUlVvGxLMB8GA1UdIwQY MBaAFK8n1F/Bi6kXqx6JoX7wtjYJhIIkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcnlmVVg4R0xxUmVySG9taGZ2QzJOZ21FZ2lRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC80NDE3NTUtYjUyZi00ZmI2LWIzZWYt N2FjYmM2YzlmOTg1LzEvcnlmVVg4R0xxUmVySG9taGZ2QzJOZ21FZ2lRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC80NDE3NTUtYjUyZi00ZmI2LWIzZWYtN2FjYmM2YzlmOTg1 LzEvcnlmVVg4R0xxUmVySG9taGZ2QzJOZ21FZ2lRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJX9dY4KC ntAy595rwDzNNeOg+nNedaK4AxzmY3oTQezy9nKYWTfXXdt601r/PGrEBb4SPtLh h0PfgflbKytrfx8GtGJGB1bhSc+xGwM4FtWOJHqQnrGVq2ixYKfc8TMLve17jt7j /+zkdu+OVvkjIL+wCwHcBDg7IKIki8P0pCD7DrAH9exLOZh4vrrUEaABnnPF8FmS OIdE3p8fWGcPpDSOX8v+I+H6xXtG/R+C5ym0OW7QC2fU/o/HKXcXs9wIGxOO1ZLw MLQWZ3OeBTOEymmjdC3B2AmFHdCQpmzCVgdt/Q+PzuxQkjhmO6v4n5c2eop3l7lj kFtU4940pulLhg== -----END CERTIFICATE-----Generated at Sat Dec 6 09:19:53 2025 by rpki-client