This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.mft File: YhoTCpDLA344A_6gv0ZaoIL-NJg.mft (raw, json) Hash identifier: N+tORLP/IbBAbjGRhHf/k8WWquH6tgfy4zOcRKY5a7Y= Subject key identifier: 76:28:9B:F2:BC:C8:EE:D1:72:4D:57:31:92:1A:36:32:5A:C4:5A:EA Authority key identifier: 62:1A:13:0A:90:CB:03:7E:38:03:FE:A0:BF:46:5A:A0:82:FE:34:98 Certificate issuer: /CN=621a130a90cb037e3803fea0bf465aa082fe3498 Certificate serial: 019AF208FD39110B39C2FB5E77BA08F115BA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YhoTCpDLA344A_6gv0ZaoIL-NJg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.mft Manifest number: 0589 Signing time: Sat 06 Dec 2025 05:01:06 +0000 Manifest this update: Sat 06 Dec 2025 05:01:06 +0000 Manifest next update: Sun 07 Dec 2025 05:01:06 +0000 Files and hashes: 1: 8tq6vUxikXVafkdQNOumeQjFfpc.roa (hash: UpmsMokgr2OHdk8MVVsUZdaiVZYh5g21JKYfdCc4ZA8=) 2: YhoTCpDLA344A_6gv0ZaoIL-NJg.crl (hash: pMZONvvKNa+m555aU+yJJSF4oiW4LGxbfpxIA8jibks=) 3: j89ASOslTb0sA8qPaNCnvdarbHI.roa (hash: pTH6+0WVaBMdNBqgh83yrPXmlHTEaPDbAotvSzt0CT4=) 4: vSrVfCiFhwuThaFge_HlQGTrHjk.roa (hash: Bc63krCzWLaf7LOD/k916HgQOiH2H7M6asbeefYBGos=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.crl rsync://rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.mft rsync://rpki.ripe.net/repository/DEFAULT/YhoTCpDLA344A_6gv0ZaoIL-NJg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:08:fd:39:11:0b:39:c2:fb:5e:77:ba:08:f1:15:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=621a130a90cb037e3803fea0bf465aa082fe3498 Validity Not Before: Dec 6 05:01:06 2025 GMT Not After : Dec 7 05:01:06 2025 GMT Subject: CN=76289bf2bcc8eed1724d5731921a36325ac45aea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:53:38:54:96:11:03:73:ce:68:c6:ee:64:2c: 30:b6:c4:14:79:26:c3:58:3e:c9:93:06:db:08:f7: ca:f7:5d:e7:ac:3a:80:81:3c:2e:ac:b3:6f:16:84: cc:a4:04:d0:09:06:77:7e:9e:d2:e2:1b:5b:4d:a2: 75:7c:9c:23:3d:94:f1:56:3b:55:b7:9c:9f:0e:0d: b7:a9:43:1d:11:25:17:71:3e:26:ba:c6:63:63:f3: 32:d9:ed:c9:34:ae:73:63:5a:76:7a:56:69:3a:ee: ef:fe:94:3b:8c:c7:51:87:fb:c9:00:07:6f:4b:ab: da:f7:b5:89:fe:8f:58:b3:2b:78:32:7b:76:36:41: c9:7a:25:b4:f0:84:a5:64:a3:7f:a6:ae:73:9b:a2: 91:73:30:15:8e:53:82:03:0c:e1:66:f6:1a:ea:56: d4:43:c2:20:4a:3e:26:7b:7d:14:33:36:40:72:d2: 50:57:4a:f8:c9:0c:c3:99:fa:12:19:0f:0c:2c:59: 5f:8f:0b:25:a3:8c:66:ba:44:56:28:a0:81:3b:72: 14:1d:0f:90:40:81:07:0d:1b:d1:88:44:26:23:d1: 63:af:16:b9:88:82:3a:31:9f:c8:ce:99:d6:8a:e6: be:9b:a7:57:26:ef:3e:f3:0d:8c:89:5c:37:b2:a6: e4:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:28:9B:F2:BC:C8:EE:D1:72:4D:57:31:92:1A:36:32:5A:C4:5A:EA X509v3 Authority Key Identifier: keyid:62:1A:13:0A:90:CB:03:7E:38:03:FE:A0:BF:46:5A:A0:82:FE:34:98 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YhoTCpDLA344A_6gv0ZaoIL-NJg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9a:9c:c3:8e:3b:bf:a8:e0:45:5d:d4:30:16:75:90:ee:a5:29: 4e:b6:39:83:61:70:35:7c:72:f8:f8:b9:dc:4f:9f:b9:1c:48: 77:b2:1a:7c:3b:c6:c3:42:9b:a1:2a:e7:5f:c6:cb:6c:2c:2f: 2c:5a:9d:4e:79:3d:aa:bd:c7:01:24:82:71:93:fa:3e:96:3d: 5b:c4:f7:03:c3:0d:49:7c:aa:0a:39:b5:fd:64:5c:5b:a2:35: 3d:bd:fe:cb:0c:3a:ee:c5:cb:2c:f9:33:fb:ca:6a:31:35:b9: e4:ea:79:00:be:69:eb:e0:65:11:9a:fe:f8:e9:1d:f9:61:f7: 4d:bf:28:b0:b4:6d:e6:c9:22:52:b0:ca:50:bc:84:f6:7f:94: 18:68:36:3f:e5:4d:12:16:b0:7e:32:ee:07:f4:f9:16:51:5b: b3:c2:6b:f1:26:d7:86:f6:d5:42:ca:3e:65:9e:4a:61:32:76: 7f:bf:63:e6:88:ad:0b:5d:bb:4f:87:33:d8:8b:06:b6:c6:a5: 23:0e:10:23:6d:ef:28:22:d8:c2:49:de:b4:69:ae:64:25:82: 65:5f:13:cb:4c:65:c6:3c:2f:dc:83:4a:14:21:92:29:6c:24: 51:0b:41:29:89:82:ca:33:5b:03:24:aa:be:c4:23:3c:57:06: 26:3f:54:55 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCP05EQs5wvted7oI8RW6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYyMWExMzBhOTBjYjAzN2UzODAzZmVhMGJmNDY1YWEwODJm ZTM0OTgwHhcNMjUxMjA2MDUwMTA2WhcNMjUxMjA3MDUwMTA2WjAzMTEwLwYDVQQD Eyg3NjI4OWJmMmJjYzhlZWQxNzI0ZDU3MzE5MjFhMzYzMjVhYzQ1YWVhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAklM4VJYRA3POaMbuZCwwtsQUeSbD WD7JkwbbCPfK913nrDqAgTwurLNvFoTMpATQCQZ3fp7S4htbTaJ1fJwjPZTxVjtV t5yfDg23qUMdESUXcT4musZjY/My2e3JNK5zY1p2elZpOu7v/pQ7jMdRh/vJAAdv S6va97WJ/o9Ysyt4Mnt2NkHJeiW08ISlZKN/pq5zm6KRczAVjlOCAwzhZvYa6lbU Q8IgSj4me30UMzZActJQV0r4yQzDmfoSGQ8MLFlfjwslo4xmukRWKKCBO3IUHQ+Q QIEHDRvRiEQmI9Fjrxa5iII6MZ/IzpnWiua+m6dXJu8+8w2MiVw3sqbk+wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHYom/K8yO7Rck1XMZIaNjJaxFrqMB8GA1UdIwQY MBaAFGIaEwqQywN+OAP+oL9GWqCC/jSYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWWhvVENwRExBMzQ0QV82Z3YwWmFvSUwtTkpnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOC8yMTQ5MmYtMTY2My00MDlkLWJmYjIt NmEwNDUxYzQ5ZDRkLzEvWWhvVENwRExBMzQ0QV82Z3YwWmFvSUwtTkpnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mOC8yMTQ5MmYtMTY2My00MDlkLWJmYjItNmEwNDUxYzQ5ZDRk LzEvWWhvVENwRExBMzQ0QV82Z3YwWmFvSUwtTkpnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmpzDjju/ qOBFXdQwFnWQ7qUpTrY5g2FwNXxy+Pi53E+fuRxId7IafDvGw0KboSrnX8bLbCwv LFqdTnk9qr3HASSCcZP6PpY9W8T3A8MNSXyqCjm1/WRcW6I1Pb3+yww67sXLLPkz +8pqMTW55Op5AL5p6+BlEZr++Okd+WH3Tb8osLRt5skiUrDKULyE9n+UGGg2P+VN EhawfjLuB/T5FlFbs8Jr8SbXhvbVQso+ZZ5KYTJ2f79j5oitC127T4cz2IsGtsal Iw4QI23vKCLYwknetGmuZCWCZV8Ty0xlxjwv3INKFCGSKWwkUQtBKYmCyjNbAySq vsQjPFcGJj9UVQ== -----END CERTIFICATE-----Generated at Sat Dec 6 07:10:36 2025 by rpki-client