This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/b09fec-d85d-4b64-a612-11eeca266d6c/1/YZp5QeDCyGEyL4Me0G8H-3CFo7s.mft File: YZp5QeDCyGEyL4Me0G8H-3CFo7s.mft (raw, json) Hash identifier: +6nOxmrlowmRbiy/jjGSAeSlqKm18xl7cqtAWXPZNbk= Subject key identifier: 1D:78:D7:E9:65:73:D8:AF:4E:88:F7:8F:67:62:D1:5D:4E:9A:5F:72 Authority key identifier: 61:9A:79:41:E0:C2:C8:61:32:2F:83:1E:D0:6F:07:FB:70:85:A3:BB Certificate issuer: /CN=619a7941e0c2c861322f831ed06f07fb7085a3bb Certificate serial: 019B269AEEFA1C8CABD2E92A238D5460130A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YZp5QeDCyGEyL4Me0G8H-3CFo7s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/b09fec-d85d-4b64-a612-11eeca266d6c/1/YZp5QeDCyGEyL4Me0G8H-3CFo7s.mft Manifest number: 1397 Signing time: Tue 16 Dec 2025 10:00:46 +0000 Manifest this update: Tue 16 Dec 2025 10:00:46 +0000 Manifest next update: Wed 17 Dec 2025 10:00:46 +0000 Files and hashes: 1: YZp5QeDCyGEyL4Me0G8H-3CFo7s.crl (hash: 1xNT35R0iWmkMzlqsi/nzMd1ES+wmNkf/5LFOXfSsuQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ee/b09fec-d85d-4b64-a612-11eeca266d6c/1/YZp5QeDCyGEyL4Me0G8H-3CFo7s.crl rsync://rpki.ripe.net/repository/DEFAULT/ee/b09fec-d85d-4b64-a612-11eeca266d6c/1/YZp5QeDCyGEyL4Me0G8H-3CFo7s.mft rsync://rpki.ripe.net/repository/DEFAULT/YZp5QeDCyGEyL4Me0G8H-3CFo7s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 10:00:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:26:9a:ee:fa:1c:8c:ab:d2:e9:2a:23:8d:54:60:13:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=619a7941e0c2c861322f831ed06f07fb7085a3bb Validity Not Before: Dec 16 10:00:46 2025 GMT Not After : Dec 17 10:00:46 2025 GMT Subject: CN=1d78d7e96573d8af4e88f78f6762d15d4e9a5f72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:da:b9:95:4f:42:7d:79:45:0d:ee:9f:f3:f5: 40:e9:3a:a7:7a:d7:5b:99:e8:0d:db:00:70:c2:90: e7:38:dc:cb:b9:3e:77:e3:80:1c:75:8f:67:4b:cf: 4b:fa:9c:30:95:45:f5:97:43:c6:96:c7:9c:f1:3b: b1:79:9b:42:31:72:2d:ae:93:9c:57:50:ac:30:1c: 66:7e:e6:46:0e:79:0d:0a:31:a3:c8:f8:bb:11:10: c2:ec:1a:91:22:97:26:74:3a:c7:f1:73:2d:00:c5: be:ef:58:e0:27:aa:08:80:13:93:9f:22:b3:5f:d8: 53:9a:ce:63:c1:b2:b3:38:8d:79:26:1f:19:bf:2c: 1d:2e:8d:2b:ae:05:60:28:3b:5e:b6:8d:48:e4:fa: 7d:a7:b2:de:01:93:72:a5:81:a8:25:e7:da:63:95: 2c:18:08:cd:7d:3e:5f:90:19:69:cf:60:f9:4e:96: c6:8e:6e:7d:f3:09:66:5f:40:38:cc:29:77:ac:22: 24:b2:fc:b4:55:f1:49:a8:47:66:65:39:61:11:1a: c7:57:f2:b1:1f:57:78:81:56:d9:bc:6e:30:59:68: c2:e6:64:46:26:f3:cf:f1:9b:ed:0a:a0:15:b3:a7: 10:73:a4:1a:7d:77:19:d0:18:9f:08:f9:74:a1:3c: 48:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:78:D7:E9:65:73:D8:AF:4E:88:F7:8F:67:62:D1:5D:4E:9A:5F:72 X509v3 Authority Key Identifier: keyid:61:9A:79:41:E0:C2:C8:61:32:2F:83:1E:D0:6F:07:FB:70:85:A3:BB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YZp5QeDCyGEyL4Me0G8H-3CFo7s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/b09fec-d85d-4b64-a612-11eeca266d6c/1/YZp5QeDCyGEyL4Me0G8H-3CFo7s.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/b09fec-d85d-4b64-a612-11eeca266d6c/1/YZp5QeDCyGEyL4Me0G8H-3CFo7s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9a:8b:08:57:af:df:7b:22:a1:eb:ef:e7:d8:0c:3b:82:59:46: 74:05:d9:4b:c0:ab:d2:77:d2:19:90:61:b7:57:3e:ea:74:65: be:60:65:c8:dd:22:12:ff:b0:58:25:60:91:c0:76:2d:d9:9f: 07:13:5b:ee:37:d4:bd:ca:83:33:71:3c:2f:5c:b1:49:e8:0a: cc:fa:f1:48:cd:50:5f:dc:e7:92:b3:68:74:26:a3:02:f3:b3: de:9f:0c:6d:6a:7d:fc:9b:ea:46:38:d7:50:c5:67:0f:87:60: 2e:91:dc:b1:d5:a4:11:20:2d:7e:3f:33:a8:6c:83:18:93:4d: 5c:08:59:ca:0c:36:9d:df:42:0f:38:27:16:35:7f:c0:e8:ca: d3:e4:2f:e4:00:ca:e7:a0:af:46:24:23:d8:18:a5:94:6b:c5: f6:a0:ac:6f:6f:9c:19:2b:33:7f:47:f8:92:54:1b:eb:a4:56: 3f:ef:ec:f8:fc:77:08:ba:db:e0:c5:7b:80:32:25:6b:82:1d: 97:9e:0d:cb:6c:4e:30:8f:19:2b:12:3b:97:4c:19:1e:36:86: ce:79:58:da:9d:d1:b2:1b:fe:44:94:af:73:ed:9d:c0:62:c1: cb:4c:b1:26:34:a9:1d:10:1c:f7:00:c8:ce:72:be:50:12:f0: 16:15:ad:f9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsmmu76HIyr0ukqI41UYBMKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYxOWE3OTQxZTBjMmM4NjEzMjJmODMxZWQwNmYwN2ZiNzA4 NWEzYmIwHhcNMjUxMjE2MTAwMDQ2WhcNMjUxMjE3MTAwMDQ2WjAzMTEwLwYDVQQD EygxZDc4ZDdlOTY1NzNkOGFmNGU4OGY3OGY2NzYyZDE1ZDRlOWE1ZjcyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu9q5lU9CfXlFDe6f8/VA6Tqnetdb megN2wBwwpDnONzLuT5344AcdY9nS89L+pwwlUX1l0PGlsec8TuxeZtCMXItrpOc V1CsMBxmfuZGDnkNCjGjyPi7ERDC7BqRIpcmdDrH8XMtAMW+71jgJ6oIgBOTnyKz X9hTms5jwbKzOI15Jh8ZvywdLo0rrgVgKDteto1I5Pp9p7LeAZNypYGoJefaY5Us GAjNfT5fkBlpz2D5TpbGjm598wlmX0A4zCl3rCIksvy0VfFJqEdmZTlhERrHV/Kx H1d4gVbZvG4wWWjC5mRGJvPP8ZvtCqAVs6cQc6QafXcZ0BifCPl0oTxIHwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFB141+llc9ivToj3j2di0V1Oml9yMB8GA1UdIwQY MBaAFGGaeUHgwshhMi+DHtBvB/twhaO7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWVpwNVFlREN5R0V5TDRNZTBHOEgtM0NGbzdzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZS9iMDlmZWMtZDg1ZC00YjY0LWE2MTIt MTFlZWNhMjY2ZDZjLzEvWVpwNVFlREN5R0V5TDRNZTBHOEgtM0NGbzdzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZS9iMDlmZWMtZDg1ZC00YjY0LWE2MTItMTFlZWNhMjY2ZDZj LzEvWVpwNVFlREN5R0V5TDRNZTBHOEgtM0NGbzdzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmosIV6/f eyKh6+/n2Aw7gllGdAXZS8Cr0nfSGZBht1c+6nRlvmBlyN0iEv+wWCVgkcB2Ldmf BxNb7jfUvcqDM3E8L1yxSegKzPrxSM1QX9znkrNodCajAvOz3p8MbWp9/JvqRjjX UMVnD4dgLpHcsdWkESAtfj8zqGyDGJNNXAhZygw2nd9CDzgnFjV/wOjK0+Qv5ADK 56CvRiQj2BillGvF9qCsb2+cGSszf0f4klQb66RWP+/s+Px3CLrb4MV7gDIla4Id l54Ny2xOMI8ZKxI7l0wZHjaGznlY2p3Rshv+RJSvc+2dwGLBy0yxJjSpHRAc9wDI znK+UBLwFhWt+Q== -----END CERTIFICATE-----Generated at Tue Dec 16 19:31:15 2025 by rpki-client