This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/7207a9-27f4-44ec-bf78-a207c7a19ed2/1/YSrvTHv-fgcvYtLdUFq1fjfqOF4.mft File: YSrvTHv-fgcvYtLdUFq1fjfqOF4.mft (raw, json) Hash identifier: zp5RK7r+LPhS12lMkj3AJQDpJO2bU622Tfk7jBH5i04= Subject key identifier: 0B:6F:23:91:03:7D:BF:B3:FF:00:D1:99:33:53:23:96:0F:97:91:0C Authority key identifier: 61:2A:EF:4C:7B:FE:7E:07:2F:62:D2:DD:50:5A:B5:7E:37:EA:38:5E Certificate issuer: /CN=612aef4c7bfe7e072f62d2dd505ab57e37ea385e Certificate serial: 019AF209779C5797A619F54DC30C56806A16 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YSrvTHv-fgcvYtLdUFq1fjfqOF4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/7207a9-27f4-44ec-bf78-a207c7a19ed2/1/YSrvTHv-fgcvYtLdUFq1fjfqOF4.mft Manifest number: 1761 Signing time: Sat 06 Dec 2025 05:01:37 +0000 Manifest this update: Sat 06 Dec 2025 05:01:37 +0000 Manifest next update: Sun 07 Dec 2025 05:01:37 +0000 Files and hashes: 1: YSrvTHv-fgcvYtLdUFq1fjfqOF4.crl (hash: t02hy3Tz0/DQfGF6yupnCjzOA7mfzf2eep6le3U/hnA=) 2: lpQpCVUUyuieF-my1hQ69F4PEZk.roa (hash: WA4/OyJVwgJx0ERp2sKecmZzmYmPwtki2xCkuF+SczM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/7207a9-27f4-44ec-bf78-a207c7a19ed2/1/YSrvTHv-fgcvYtLdUFq1fjfqOF4.crl rsync://rpki.ripe.net/repository/DEFAULT/f4/7207a9-27f4-44ec-bf78-a207c7a19ed2/1/YSrvTHv-fgcvYtLdUFq1fjfqOF4.mft rsync://rpki.ripe.net/repository/DEFAULT/YSrvTHv-fgcvYtLdUFq1fjfqOF4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:09:77:9c:57:97:a6:19:f5:4d:c3:0c:56:80:6a:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=612aef4c7bfe7e072f62d2dd505ab57e37ea385e Validity Not Before: Dec 6 05:01:37 2025 GMT Not After : Dec 7 05:01:37 2025 GMT Subject: CN=0b6f2391037dbfb3ff00d199335323960f97910c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:11:24:c7:50:f4:6a:ad:d4:ed:62:7c:de:a8: 90:60:01:15:f6:db:7b:8f:d3:53:b0:ed:e4:4f:f7: 94:4c:63:55:9f:ba:03:d7:d0:d6:0a:4c:8d:c4:8c: 48:26:15:e2:a8:02:d8:e3:96:47:76:ad:2c:ab:2e: 03:c2:93:a2:fe:3d:f7:91:60:5d:8f:db:7c:b8:9b: 0f:06:a0:bb:a8:31:f1:3d:52:0a:48:31:fa:a7:24: b0:43:37:84:c8:70:96:c1:c0:d1:dd:e4:dd:fa:cd: da:0b:62:5d:59:5f:ce:da:da:5f:02:33:d8:b5:b7: ec:64:e4:6f:8b:0e:0c:a5:60:53:f4:0d:33:a1:ce: 47:3e:d1:2b:6a:87:60:46:74:38:a2:02:f9:cc:4a: 3b:b6:cc:53:74:78:cb:c1:66:48:e7:8e:98:a0:23: 55:05:3e:bc:a1:06:62:29:10:a3:de:f3:a4:03:69: 64:4d:01:7a:07:2b:25:44:7c:81:f4:b7:5d:49:7b: 96:11:1a:bf:61:34:11:5a:7b:9a:a4:f1:e6:33:f5: 7e:eb:de:ef:db:7f:e3:5c:14:4a:e6:7c:15:93:00: da:22:1b:0e:91:ca:90:e5:c7:09:22:41:62:4c:6c: 25:b3:23:25:c8:12:e2:95:47:15:c8:54:8a:f4:89: 39:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:6F:23:91:03:7D:BF:B3:FF:00:D1:99:33:53:23:96:0F:97:91:0C X509v3 Authority Key Identifier: keyid:61:2A:EF:4C:7B:FE:7E:07:2F:62:D2:DD:50:5A:B5:7E:37:EA:38:5E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YSrvTHv-fgcvYtLdUFq1fjfqOF4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/7207a9-27f4-44ec-bf78-a207c7a19ed2/1/YSrvTHv-fgcvYtLdUFq1fjfqOF4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/7207a9-27f4-44ec-bf78-a207c7a19ed2/1/YSrvTHv-fgcvYtLdUFq1fjfqOF4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 31:4e:0a:f5:c2:5b:52:0f:01:ed:52:b5:9b:4e:15:17:41:ef: 9d:07:a2:f5:8f:f4:2c:65:4b:b0:0d:63:ab:cf:67:78:14:70: 7c:04:ee:36:64:e1:d2:6b:ed:d7:a1:50:7c:1d:f6:82:e6:da: e0:76:81:e5:f8:13:bf:dc:44:fc:2d:0f:ab:51:77:8a:f0:df: 87:99:91:52:69:79:fa:8e:3c:a7:3d:c7:7d:d5:0d:67:3c:86: f4:d0:d1:9d:f7:ab:42:15:73:a9:f7:f7:52:af:2b:7b:de:4b: af:41:6d:7c:f1:b0:83:45:25:7b:2a:95:f0:2d:fb:c3:c6:5f: 89:23:17:59:f7:63:60:5c:f7:4d:59:c0:19:97:4d:d8:d6:a7: 88:94:02:6b:11:42:6d:ef:a1:a7:79:83:f2:87:af:8d:d8:29: 42:88:d0:17:d0:d8:47:bc:16:87:53:5d:2d:97:cb:ae:72:c8: 79:f0:e4:5f:7e:20:b3:ea:a6:eb:3c:d0:50:55:0f:f1:cd:76: 3e:31:4a:3b:90:06:22:7f:06:5c:b0:4f:bf:57:c2:fb:92:96: 15:21:a7:32:3d:58:13:d3:d0:a5:71:8a:34:f0:d8:c3:09:a2: 47:e9:90:86:0f:2d:c3:28:0f:b5:d8:39:1b:52:d0:bd:ae:fd: 3a:c3:bc:c8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCXecV5emGfVNwwxWgGoWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYxMmFlZjRjN2JmZTdlMDcyZjYyZDJkZDUwNWFiNTdlMzdl YTM4NWUwHhcNMjUxMjA2MDUwMTM3WhcNMjUxMjA3MDUwMTM3WjAzMTEwLwYDVQQD EygwYjZmMjM5MTAzN2RiZmIzZmYwMGQxOTkzMzUzMjM5NjBmOTc5MTBjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3REkx1D0aq3U7WJ83qiQYAEV9tt7 j9NTsO3kT/eUTGNVn7oD19DWCkyNxIxIJhXiqALY45ZHdq0sqy4DwpOi/j33kWBd j9t8uJsPBqC7qDHxPVIKSDH6pySwQzeEyHCWwcDR3eTd+s3aC2JdWV/O2tpfAjPY tbfsZORviw4MpWBT9A0zoc5HPtEraodgRnQ4ogL5zEo7tsxTdHjLwWZI546YoCNV BT68oQZiKRCj3vOkA2lkTQF6ByslRHyB9LddSXuWERq/YTQRWnuapPHmM/V+697v 23/jXBRK5nwVkwDaIhsOkcqQ5ccJIkFiTGwlsyMlyBLilUcVyFSK9Ik52QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAtvI5EDfb+z/wDRmTNTI5YPl5EMMB8GA1UdIwQY MBaAFGEq70x7/n4HL2LS3VBatX436jheMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWVNydlRIdi1mZ2N2WXRMZFVGcTFmamZxT0Y0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNC83MjA3YTktMjdmNC00NGVjLWJmNzgt YTIwN2M3YTE5ZWQyLzEvWVNydlRIdi1mZ2N2WXRMZFVGcTFmamZxT0Y0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNC83MjA3YTktMjdmNC00NGVjLWJmNzgtYTIwN2M3YTE5ZWQy LzEvWVNydlRIdi1mZ2N2WXRMZFVGcTFmamZxT0Y0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMU4K9cJb Ug8B7VK1m04VF0HvnQei9Y/0LGVLsA1jq89neBRwfATuNmTh0mvt16FQfB32guba 4HaB5fgTv9xE/C0Pq1F3ivDfh5mRUml5+o48pz3HfdUNZzyG9NDRnferQhVzqff3 Uq8re95Lr0FtfPGwg0UleyqV8C37w8ZfiSMXWfdjYFz3TVnAGZdN2NaniJQCaxFC be+hp3mD8oevjdgpQojQF9DYR7wWh1NdLZfLrnLIefDkX34gs+qm6zzQUFUP8c12 PjFKO5AGIn8GXLBPv1fC+5KWFSGnMj1YE9PQpXGKNPDYwwmiR+mQhg8twygPtdg5 G1LQva79OsO8yA== -----END CERTIFICATE-----Generated at Sat Dec 6 09:58:15 2025 by rpki-client