This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/9c4a77-0c7e-494c-a231-bf1e99c0cf3f/1/PYLx_OAIvMcl3bvnBnRR3YIFkwc.mft File: PYLx_OAIvMcl3bvnBnRR3YIFkwc.mft (raw, json) Hash identifier: s2O48vJ4vQtFRk97hYf4Yv5wY3SPpVzqIRCH4IGWtIM= Subject key identifier: 7F:81:D3:49:62:8B:58:9D:18:3D:59:93:C4:28:17:61:3F:EF:47:E2 Authority key identifier: 3D:82:F1:FC:E0:08:BC:C7:25:DD:BB:E7:06:74:51:DD:82:05:93:07 Certificate issuer: /CN=3d82f1fce008bcc725ddbbe7067451dd82059307 Certificate serial: 019BF5E37346A702B3D8AED6BEAE27AB4D69 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PYLx_OAIvMcl3bvnBnRR3YIFkwc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/9c4a77-0c7e-494c-a231-bf1e99c0cf3f/1/PYLx_OAIvMcl3bvnBnRR3YIFkwc.mft Manifest number: 023B Signing time: Sun 25 Jan 2026 16:01:22 +0000 Manifest this update: Sun 25 Jan 2026 16:01:22 +0000 Manifest next update: Mon 26 Jan 2026 16:01:22 +0000 Files and hashes: 1: PYLx_OAIvMcl3bvnBnRR3YIFkwc.crl (hash: F18SAyOTCjifTG6O11fgzqyXpuZkZ40PZA8RxprUSJQ=) 2: j0XYpT3fQfPhqOVaGf1qoZYJiUY.roa (hash: p96sB0NTL/aNTTxP4wqEBEwGR5tjmR72wLuv/hfrJqw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/9c4a77-0c7e-494c-a231-bf1e99c0cf3f/1/PYLx_OAIvMcl3bvnBnRR3YIFkwc.crl rsync://rpki.ripe.net/repository/DEFAULT/1f/9c4a77-0c7e-494c-a231-bf1e99c0cf3f/1/PYLx_OAIvMcl3bvnBnRR3YIFkwc.mft rsync://rpki.ripe.net/repository/DEFAULT/PYLx_OAIvMcl3bvnBnRR3YIFkwc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f5:e3:73:46:a7:02:b3:d8:ae:d6:be:ae:27:ab:4d:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3d82f1fce008bcc725ddbbe7067451dd82059307 Validity Not Before: Jan 25 16:01:22 2026 GMT Not After : Jan 26 16:01:22 2026 GMT Subject: CN=7f81d349628b589d183d5993c42817613fef47e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:3a:83:66:a2:65:bd:bc:67:70:88:1a:0c:4f: 45:26:1f:10:7f:18:47:54:ab:94:e2:76:29:57:e0: b5:c4:e1:b1:da:c8:ed:8f:99:53:39:62:d4:69:d3: e4:0d:a1:de:da:70:3f:38:d4:48:bb:0e:67:1e:3b: 54:03:e5:7e:67:ea:7f:55:79:d8:c0:e4:4d:2e:39: 34:6a:12:a9:ba:ac:94:36:00:35:24:8f:0e:49:82: ad:47:01:30:0f:34:b3:b6:57:65:a8:1d:39:d1:97: 7d:59:78:c2:75:1a:88:28:68:81:b3:5d:db:6f:07: 3a:2a:70:dd:86:e3:d1:84:57:f4:76:3e:4e:ef:cf: bc:71:0d:4b:f9:a9:c0:fc:6b:83:0c:36:be:e8:e1: 99:e6:35:b5:56:87:82:3f:7a:86:5f:9b:10:9f:db: f6:a1:78:c2:f5:4f:76:fc:d6:1b:9f:e4:2f:59:44: b4:94:b5:b5:e4:56:45:1f:03:95:93:77:6d:d9:7d: a5:56:e7:a9:42:56:06:73:9e:7e:ac:a9:48:a4:cc: 38:09:d2:22:69:6f:29:93:30:65:19:31:f6:d5:cf: 99:94:b2:25:63:8a:2c:28:fe:3f:b0:2b:25:70:cb: 37:b2:c0:30:d4:f6:d0:38:ec:32:12:a3:58:41:22: 9b:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:81:D3:49:62:8B:58:9D:18:3D:59:93:C4:28:17:61:3F:EF:47:E2 X509v3 Authority Key Identifier: keyid:3D:82:F1:FC:E0:08:BC:C7:25:DD:BB:E7:06:74:51:DD:82:05:93:07 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PYLx_OAIvMcl3bvnBnRR3YIFkwc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/9c4a77-0c7e-494c-a231-bf1e99c0cf3f/1/PYLx_OAIvMcl3bvnBnRR3YIFkwc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/9c4a77-0c7e-494c-a231-bf1e99c0cf3f/1/PYLx_OAIvMcl3bvnBnRR3YIFkwc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 63:35:59:90:a3:45:76:3a:8b:5e:79:ad:02:f8:3b:a6:66:3e: 0a:37:7e:c6:9e:ce:27:aa:56:37:73:51:2b:88:39:df:c2:37: 54:16:d2:79:1f:db:06:9e:44:0d:a1:91:1d:3d:86:2b:3c:62: 6c:67:9f:a2:59:64:36:7a:ec:d2:23:9f:1b:f6:b9:1f:3e:1d: aa:85:48:5f:38:dd:e8:11:c0:af:6d:36:f7:61:3d:70:1c:1b: c5:9f:ce:51:20:26:ce:b1:fc:8d:65:87:60:2d:1b:e3:38:28: e4:72:81:29:b1:5b:3a:a2:43:60:c3:e3:d2:38:13:39:5e:83: d7:72:12:42:26:46:82:97:2e:8b:81:9a:4d:17:20:bc:d0:f3: 05:78:c7:09:2c:e3:dc:71:28:4f:c4:6c:14:08:7f:c1:dc:d8: 97:f8:3a:a7:35:2a:a0:b2:72:93:7a:8b:0c:f6:d4:37:66:e7: b3:c9:9e:24:cc:f4:50:c6:c8:8f:99:5d:ec:36:68:12:c9:0e: f0:20:e6:92:16:16:35:bc:8d:b3:a6:7f:4d:63:ee:ff:66:0f: d5:9a:f5:27:79:7f:24:ef:10:4a:e1:12:ac:fd:1b:5d:a1:e9: e2:75:a1:59:4c:78:ba:1f:a4:26:b1:e7:c0:15:95:c5:ed:9b: 56:c4:e7:e1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv143NGpwKz2K7Wvq4nq01pMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNkODJmMWZjZTAwOGJjYzcyNWRkYmJlNzA2NzQ1MWRkODIw NTkzMDcwHhcNMjYwMTI1MTYwMTIyWhcNMjYwMTI2MTYwMTIyWjAzMTEwLwYDVQQD Eyg3ZjgxZDM0OTYyOGI1ODlkMTgzZDU5OTNjNDI4MTc2MTNmZWY0N2UyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzjqDZqJlvbxncIgaDE9FJh8QfxhH VKuU4nYpV+C1xOGx2sjtj5lTOWLUadPkDaHe2nA/ONRIuw5nHjtUA+V+Z+p/VXnY wORNLjk0ahKpuqyUNgA1JI8OSYKtRwEwDzSztldlqB050Zd9WXjCdRqIKGiBs13b bwc6KnDdhuPRhFf0dj5O78+8cQ1L+anA/GuDDDa+6OGZ5jW1VoeCP3qGX5sQn9v2 oXjC9U92/NYbn+QvWUS0lLW15FZFHwOVk3dt2X2lVuepQlYGc55+rKlIpMw4CdIi aW8pkzBlGTH21c+ZlLIlY4osKP4/sCslcMs3ssAw1PbQOOwyEqNYQSKbWwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFH+B00lii1idGD1Zk8QoF2E/70fiMB8GA1UdIwQY MBaAFD2C8fzgCLzHJd275wZ0Ud2CBZMHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUFlMeF9PQUl2TWNsM2J2bkJuUlIzWUlGa3djLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZi85YzRhNzctMGM3ZS00OTRjLWEyMzEt YmYxZTk5YzBjZjNmLzEvUFlMeF9PQUl2TWNsM2J2bkJuUlIzWUlGa3djLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZi85YzRhNzctMGM3ZS00OTRjLWEyMzEtYmYxZTk5YzBjZjNm LzEvUFlMeF9PQUl2TWNsM2J2bkJuUlIzWUlGa3djLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYzVZkKNF djqLXnmtAvg7pmY+Cjd+xp7OJ6pWN3NRK4g538I3VBbSeR/bBp5EDaGRHT2GKzxi bGefollkNnrs0iOfG/a5Hz4dqoVIXzjd6BHAr20292E9cBwbxZ/OUSAmzrH8jWWH YC0b4zgo5HKBKbFbOqJDYMPj0jgTOV6D13ISQiZGgpcui4GaTRcgvNDzBXjHCSzj 3HEoT8RsFAh/wdzYl/g6pzUqoLJyk3qLDPbUN2bns8meJMz0UMbIj5ld7DZoEskO 8CDmkhYWNbyNs6Z/TWPu/2YP1Zr1J3l/JO8QSuESrP0bXaHp4nWhWUx4uh+kJrHn wBWVxe2bVsTn4Q== -----END CERTIFICATE-----Generated at Sun Jan 25 22:01:06 2026 by rpki-client