This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/36bd40-4a48-4c04-9710-5e763d3a4d1d/1/ygBGolNBzREDtgzOC5nqN1S6XEE.mft File: ygBGolNBzREDtgzOC5nqN1S6XEE.mft (raw, json) Hash identifier: p08jaUhJDbnpqoNKHxclXWFQb4hn97FnFnR52+gi6ug= Subject key identifier: C6:D0:59:40:6B:6F:12:97:BD:02:08:05:6C:1A:21:69:37:59:93:00 Authority key identifier: CA:00:46:A2:53:41:CD:11:03:B6:0C:CE:0B:99:EA:37:54:BA:5C:41 Certificate issuer: /CN=ca0046a25341cd1103b60cce0b99ea3754ba5c41 Certificate serial: 019BF8AD55E67035F8766E182D54DC65B89D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ygBGolNBzREDtgzOC5nqN1S6XEE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/36bd40-4a48-4c04-9710-5e763d3a4d1d/1/ygBGolNBzREDtgzOC5nqN1S6XEE.mft Manifest number: 04E3 Signing time: Mon 26 Jan 2026 05:01:07 +0000 Manifest this update: Mon 26 Jan 2026 05:01:07 +0000 Manifest next update: Tue 27 Jan 2026 05:01:07 +0000 Files and hashes: 1: stNqzIw6qQRyW22hrj_jya1vgPM.roa (hash: R7iZW3oZGdaZLmvsasGhYvRkXeTvpYwH54Of8otwpTw=) 2: ygBGolNBzREDtgzOC5nqN1S6XEE.crl (hash: 2iwIltRH0qaPuil99rnDYcjGxAcO1KHdM9Z81Vs1+Js=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/36bd40-4a48-4c04-9710-5e763d3a4d1d/1/ygBGolNBzREDtgzOC5nqN1S6XEE.crl rsync://rpki.ripe.net/repository/DEFAULT/18/36bd40-4a48-4c04-9710-5e763d3a4d1d/1/ygBGolNBzREDtgzOC5nqN1S6XEE.mft rsync://rpki.ripe.net/repository/DEFAULT/ygBGolNBzREDtgzOC5nqN1S6XEE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f8:ad:55:e6:70:35:f8:76:6e:18:2d:54:dc:65:b8:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ca0046a25341cd1103b60cce0b99ea3754ba5c41 Validity Not Before: Jan 26 05:01:07 2026 GMT Not After : Jan 27 05:01:07 2026 GMT Subject: CN=c6d059406b6f1297bd0208056c1a216937599300 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:09:2d:3c:f0:4e:0a:7f:ef:8b:d3:c8:f5:7c: bd:19:8c:cb:ac:b6:12:6a:32:e1:d3:72:9f:9c:0f: 19:b4:a7:13:13:e1:43:63:b5:f2:7d:64:c5:91:95: 0e:7e:f3:71:da:3c:b6:4c:a1:cf:f4:1d:26:93:fa: ed:11:07:14:81:4b:88:d5:6f:e6:61:ad:eb:0f:cd: dc:11:6d:e9:2b:87:07:87:74:7d:60:d4:e3:39:7a: 4a:25:23:d9:d9:50:2a:97:43:3c:f3:1d:82:46:e1: f9:19:21:fe:57:ba:c2:a6:4d:b5:fb:39:53:4a:64: ea:cc:56:7c:27:ac:d2:82:8c:0e:cc:35:7d:1b:7c: 8d:24:94:32:1b:91:7b:f3:25:18:3f:df:16:0e:6f: 7f:6d:ab:2e:40:5d:f8:56:9e:07:20:50:a6:cd:96: f3:14:7e:88:c0:fe:9b:62:3a:94:c9:ec:de:37:05: 72:6b:7c:ff:16:7c:e2:b1:a0:fc:b3:d4:2e:1b:23: 29:65:06:1b:23:74:71:ba:de:1b:2c:47:72:1d:f0: eb:58:8f:b2:13:75:fa:99:13:57:ca:78:91:84:ce: 5c:ab:79:a9:63:0d:0a:39:f9:db:fc:49:20:79:50: 98:3d:8a:7b:de:b9:b9:b4:8e:6b:90:d4:80:51:76: 45:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:D0:59:40:6B:6F:12:97:BD:02:08:05:6C:1A:21:69:37:59:93:00 X509v3 Authority Key Identifier: keyid:CA:00:46:A2:53:41:CD:11:03:B6:0C:CE:0B:99:EA:37:54:BA:5C:41 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ygBGolNBzREDtgzOC5nqN1S6XEE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/36bd40-4a48-4c04-9710-5e763d3a4d1d/1/ygBGolNBzREDtgzOC5nqN1S6XEE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/18/36bd40-4a48-4c04-9710-5e763d3a4d1d/1/ygBGolNBzREDtgzOC5nqN1S6XEE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 14:b7:9f:01:19:34:65:c0:f1:94:8b:68:73:99:53:7d:31:82: 89:84:e8:61:64:6a:3e:68:32:5c:b0:53:7b:ee:99:82:89:46: 10:2f:c6:7c:3d:34:b9:ca:91:5d:20:ed:4d:53:ef:82:90:87: db:5a:ae:cc:07:d1:8f:70:3c:5f:b7:4c:03:c3:b1:eb:eb:1a: 30:0a:05:a8:dc:13:9f:8e:da:74:7e:b0:d5:58:00:6c:85:65: e8:0e:80:2e:e9:89:07:49:99:b0:d1:66:14:5b:e3:ca:ce:6e: 65:21:99:18:bd:ab:90:35:20:2f:c1:f6:d9:32:53:cb:26:5f: b8:e7:0c:9d:e1:df:3e:c0:e6:48:ee:22:df:c3:cb:4e:c8:66: bc:05:d0:30:44:f8:7d:13:37:3f:2f:2a:14:87:81:ae:91:29: 02:82:c3:f6:86:cb:8b:8b:72:8f:45:13:11:66:6a:a6:cf:4e: 8b:d9:cc:99:1f:2c:ac:24:f3:f4:f7:1c:1f:44:a1:51:a4:d1: 78:94:42:ee:2d:63:8d:c9:68:21:24:78:a9:c3:4b:fa:c2:a6: d6:b7:21:e0:29:4a:bf:bf:25:bc:dc:7c:6a:0b:5f:d1:fe:08: 6d:4d:4a:c5:f7:c0:e9:f4:d5:6c:0b:3a:e0:3e:ff:f6:df:6f: a5:bb:ee:dc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv4rVXmcDX4dm4YLVTcZbidMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNhMDA0NmEyNTM0MWNkMTEwM2I2MGNjZTBiOTllYTM3NTRi YTVjNDEwHhcNMjYwMTI2MDUwMTA3WhcNMjYwMTI3MDUwMTA3WjAzMTEwLwYDVQQD EyhjNmQwNTk0MDZiNmYxMjk3YmQwMjA4MDU2YzFhMjE2OTM3NTk5MzAwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzAktPPBOCn/vi9PI9Xy9GYzLrLYS ajLh03KfnA8ZtKcTE+FDY7XyfWTFkZUOfvNx2jy2TKHP9B0mk/rtEQcUgUuI1W/m Ya3rD83cEW3pK4cHh3R9YNTjOXpKJSPZ2VAql0M88x2CRuH5GSH+V7rCpk21+zlT SmTqzFZ8J6zSgowOzDV9G3yNJJQyG5F78yUYP98WDm9/basuQF34Vp4HIFCmzZbz FH6IwP6bYjqUyezeNwVya3z/FnzisaD8s9QuGyMpZQYbI3Rxut4bLEdyHfDrWI+y E3X6mRNXyniRhM5cq3mpYw0KOfnb/EkgeVCYPYp73rm5tI5rkNSAUXZF/wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMbQWUBrbxKXvQIIBWwaIWk3WZMAMB8GA1UdIwQY MBaAFMoARqJTQc0RA7YMzguZ6jdUulxBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveWdCR29sTkJ6UkVEdGd6T0M1bnFOMVM2WEVFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOC8zNmJkNDAtNGE0OC00YzA0LTk3MTAt NWU3NjNkM2E0ZDFkLzEveWdCR29sTkJ6UkVEdGd6T0M1bnFOMVM2WEVFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xOC8zNmJkNDAtNGE0OC00YzA0LTk3MTAtNWU3NjNkM2E0ZDFk LzEveWdCR29sTkJ6UkVEdGd6T0M1bnFOMVM2WEVFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFLefARk0 ZcDxlItoc5lTfTGCiYToYWRqPmgyXLBTe+6ZgolGEC/GfD00ucqRXSDtTVPvgpCH 21quzAfRj3A8X7dMA8Ox6+saMAoFqNwTn47adH6w1VgAbIVl6A6ALumJB0mZsNFm FFvjys5uZSGZGL2rkDUgL8H22TJTyyZfuOcMneHfPsDmSO4i38PLTshmvAXQMET4 fRM3Py8qFIeBrpEpAoLD9obLi4tyj0UTEWZqps9Oi9nMmR8srCTz9PccH0ShUaTR eJRC7i1jjcloISR4qcNL+sKm1rch4ClKv78lvNx8agtf0f4IbU1KxffA6fTVbAs6 4D7/9t9vpbvu3A== -----END CERTIFICATE-----Generated at Mon Jan 26 09:01:55 2026 by rpki-client