This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/031047-8c74-4aee-b065-482862de730e/1/ykH9t-AW2WDv4pwLSJS4c6pNIeI.mft File: ykH9t-AW2WDv4pwLSJS4c6pNIeI.mft (raw, json) Hash identifier: JkkqFrxzz1AeNtgCMq0stUxkAH9VpV7FbJkdu2wSZcQ= Subject key identifier: BD:AD:55:34:01:6D:25:E9:3C:32:54:9D:24:1F:00:C4:8C:E1:92:D9 Authority key identifier: CA:41:FD:B7:E0:16:D9:60:EF:E2:9C:0B:48:94:B8:73:AA:4D:21:E2 Certificate issuer: /CN=ca41fdb7e016d960efe29c0b4894b873aa4d21e2 Certificate serial: 019AF19B7C8E0E0B4BC9F0E5C2E33F47D4E9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ykH9t-AW2WDv4pwLSJS4c6pNIeI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/031047-8c74-4aee-b065-482862de730e/1/ykH9t-AW2WDv4pwLSJS4c6pNIeI.mft Manifest number: 0319 Signing time: Sat 06 Dec 2025 03:01:30 +0000 Manifest this update: Sat 06 Dec 2025 03:01:30 +0000 Manifest next update: Sun 07 Dec 2025 03:01:30 +0000 Files and hashes: 1: knggMszGXslbbJ2_Oh2Jaifz1gc.roa (hash: 1NY+pqUYlKwDvhTu3JTqY8SDs7jlakZ17fJjnTdwI9Y=) 2: ykH9t-AW2WDv4pwLSJS4c6pNIeI.crl (hash: 1jlIuxVxawDYNmkBz4ukmqG68v1+xyzXtCmnuieEeKA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/031047-8c74-4aee-b065-482862de730e/1/ykH9t-AW2WDv4pwLSJS4c6pNIeI.crl rsync://rpki.ripe.net/repository/DEFAULT/ef/031047-8c74-4aee-b065-482862de730e/1/ykH9t-AW2WDv4pwLSJS4c6pNIeI.mft rsync://rpki.ripe.net/repository/DEFAULT/ykH9t-AW2WDv4pwLSJS4c6pNIeI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 03:01:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:9b:7c:8e:0e:0b:4b:c9:f0:e5:c2:e3:3f:47:d4:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ca41fdb7e016d960efe29c0b4894b873aa4d21e2 Validity Not Before: Dec 6 03:01:30 2025 GMT Not After : Dec 7 03:01:30 2025 GMT Subject: CN=bdad5534016d25e93c32549d241f00c48ce192d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:04:af:49:d0:08:3f:1d:f6:87:5a:97:fa:fb: 38:57:43:bd:d7:12:8b:60:b7:7a:5c:58:3a:68:22: 85:ba:c0:08:56:62:e2:e6:af:95:83:08:2c:1d:eb: 1b:c0:b9:6d:78:e0:73:e6:91:a7:55:a0:02:f9:49: 35:5c:10:30:32:47:c4:76:1a:6d:33:25:47:cc:1d: b2:ed:26:84:57:c3:27:db:90:b3:61:64:56:35:45: 79:ad:ea:87:c9:8d:77:b6:e3:e0:c4:f8:9a:e1:df: 1a:d8:ea:d3:71:88:35:b5:c3:61:9c:44:67:4a:b5: b4:5f:01:25:21:ed:8a:75:84:da:6a:d4:ef:9e:79: 23:ae:9b:e9:f0:01:8c:1b:64:94:da:96:61:74:a7: bd:a0:49:52:7f:d9:15:ab:50:2d:d0:66:95:8c:8c: 70:0a:e8:d8:fa:96:c9:e2:81:58:c0:55:00:af:0f: 3f:a9:32:b4:21:a1:7d:78:f6:26:7e:ed:e3:e5:a5: c4:86:c1:20:a4:ca:df:56:1f:d9:e1:40:f2:7e:c4: 78:db:25:b0:96:51:af:1c:c9:1a:eb:a8:e1:e3:21: 1f:f5:e4:56:07:9f:07:82:9f:98:c1:3e:b2:48:aa: 68:e9:01:04:f2:bd:13:04:ec:fb:06:14:ba:4e:f1: 25:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:AD:55:34:01:6D:25:E9:3C:32:54:9D:24:1F:00:C4:8C:E1:92:D9 X509v3 Authority Key Identifier: keyid:CA:41:FD:B7:E0:16:D9:60:EF:E2:9C:0B:48:94:B8:73:AA:4D:21:E2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ykH9t-AW2WDv4pwLSJS4c6pNIeI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/031047-8c74-4aee-b065-482862de730e/1/ykH9t-AW2WDv4pwLSJS4c6pNIeI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/031047-8c74-4aee-b065-482862de730e/1/ykH9t-AW2WDv4pwLSJS4c6pNIeI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c4:da:03:79:7d:f1:a2:3c:24:4b:0b:81:ed:55:d2:da:fa:ad: d3:a8:2d:c7:b9:f5:79:52:e9:1c:81:de:2c:ec:9b:67:66:9e: 41:00:76:27:61:36:92:33:9f:64:b8:18:dc:df:a2:af:50:09: ba:99:d2:e4:a1:d5:b2:14:6d:73:a0:2d:ad:c4:39:00:ad:8b: 2b:93:90:da:a2:28:2e:20:d5:c2:81:29:fe:e8:c5:2b:5b:87: 85:d8:6c:8f:dd:13:dd:f7:96:05:c1:3b:b3:b4:4c:95:56:7a: 11:3f:6b:d3:ca:9f:9b:61:d4:41:4c:38:35:9b:8b:59:4d:10: 44:2a:b2:e8:d3:e1:6c:36:66:af:e3:bd:27:25:50:5c:41:da: 43:ba:11:4e:8b:57:55:f8:19:c9:fc:e2:09:1d:dd:8c:8e:2c: de:21:86:72:98:67:fe:cc:6d:d8:0b:c6:4e:3e:a6:6d:81:f8: ec:fe:cb:fa:bb:59:7b:15:9b:05:e3:de:ab:51:57:40:8a:76: 3a:4c:5c:f3:93:f8:22:da:41:d1:93:d7:8e:60:06:69:c1:ac: a8:5e:90:8f:f4:7a:da:cd:75:20:ed:ea:ac:ec:c1:7c:4b:13: b8:4a:6c:54:85:04:8c:60:f7:17:13:40:fe:19:9b:43:c8:be: 4d:7d:e5:94 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxm3yODgtLyfDlwuM/R9TpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNhNDFmZGI3ZTAxNmQ5NjBlZmUyOWMwYjQ4OTRiODczYWE0 ZDIxZTIwHhcNMjUxMjA2MDMwMTMwWhcNMjUxMjA3MDMwMTMwWjAzMTEwLwYDVQQD EyhiZGFkNTUzNDAxNmQyNWU5M2MzMjU0OWQyNDFmMDBjNDhjZTE5MmQ5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArASvSdAIPx32h1qX+vs4V0O91xKL YLd6XFg6aCKFusAIVmLi5q+VgwgsHesbwLlteOBz5pGnVaAC+Uk1XBAwMkfEdhpt MyVHzB2y7SaEV8Mn25CzYWRWNUV5reqHyY13tuPgxPia4d8a2OrTcYg1tcNhnERn SrW0XwElIe2KdYTaatTvnnkjrpvp8AGMG2SU2pZhdKe9oElSf9kVq1At0GaVjIxw CujY+pbJ4oFYwFUArw8/qTK0IaF9ePYmfu3j5aXEhsEgpMrfVh/Z4UDyfsR42yWw llGvHMka66jh4yEf9eRWB58Hgp+YwT6ySKpo6QEE8r0TBOz7BhS6TvEltQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFL2tVTQBbSXpPDJUnSQfAMSM4ZLZMB8GA1UdIwQY MBaAFMpB/bfgFtlg7+KcC0iUuHOqTSHiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveWtIOXQtQVcyV0R2NHB3TFNKUzRjNnBOSWVJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZi8wMzEwNDctOGM3NC00YWVlLWIwNjUt NDgyODYyZGU3MzBlLzEveWtIOXQtQVcyV0R2NHB3TFNKUzRjNnBOSWVJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZi8wMzEwNDctOGM3NC00YWVlLWIwNjUtNDgyODYyZGU3MzBl LzEveWtIOXQtQVcyV0R2NHB3TFNKUzRjNnBOSWVJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAxNoDeX3x ojwkSwuB7VXS2vqt06gtx7n1eVLpHIHeLOybZ2aeQQB2J2E2kjOfZLgY3N+ir1AJ upnS5KHVshRtc6AtrcQ5AK2LK5OQ2qIoLiDVwoEp/ujFK1uHhdhsj90T3feWBcE7 s7RMlVZ6ET9r08qfm2HUQUw4NZuLWU0QRCqy6NPhbDZmr+O9JyVQXEHaQ7oRTotX VfgZyfziCR3djI4s3iGGcphn/sxt2AvGTj6mbYH47P7L+rtZexWbBePeq1FXQIp2 Okxc85P4ItpB0ZPXjmAGacGsqF6Qj/R62s11IO3qrOzBfEsTuEpsVIUEjGD3FxNA /hmbQ8i+TX3llA== -----END CERTIFICATE-----Generated at Sat Dec 6 11:58:27 2025 by rpki-client