This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/d43085-d94e-469d-9778-3b8ec1a65880/1/cYsTi6k1I08RyhAl1mfxM_B9Vf0.mft File: cYsTi6k1I08RyhAl1mfxM_B9Vf0.mft (raw, json) Hash identifier: LDIZbEvlJvoam8+42InfBgDR9ksKiUmInplzoA/TGT0= Subject key identifier: 9C:22:40:4B:5E:6D:6D:2D:6E:C1:71:9F:11:67:E7:0C:65:6D:64:20 Authority key identifier: 71:8B:13:8B:A9:35:23:4F:11:CA:10:25:D6:67:F1:33:F0:7D:55:FD Certificate issuer: /CN=718b138ba935234f11ca1025d667f133f07d55fd Certificate serial: 019BF7D1AD0C1D89B7F94EDE15FAD4084CBF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cYsTi6k1I08RyhAl1mfxM_B9Vf0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/d43085-d94e-469d-9778-3b8ec1a65880/1/cYsTi6k1I08RyhAl1mfxM_B9Vf0.mft Manifest number: 17EA Signing time: Mon 26 Jan 2026 01:01:12 +0000 Manifest this update: Mon 26 Jan 2026 01:01:12 +0000 Manifest next update: Tue 27 Jan 2026 01:01:12 +0000 Files and hashes: 1: 9GyPy5VxmA8Grjp6KPGlBXEzQEs.roa (hash: cZRk0f4ULOIcvr4Kq3jJj23UFievd5ZXiHt0/5E2LwY=) 2: cYsTi6k1I08RyhAl1mfxM_B9Vf0.crl (hash: rJZQSdCpliSMULT8cbEjOijLZVrw/e7034h2Zk11Kg8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/d43085-d94e-469d-9778-3b8ec1a65880/1/cYsTi6k1I08RyhAl1mfxM_B9Vf0.crl rsync://rpki.ripe.net/repository/DEFAULT/22/d43085-d94e-469d-9778-3b8ec1a65880/1/cYsTi6k1I08RyhAl1mfxM_B9Vf0.mft rsync://rpki.ripe.net/repository/DEFAULT/cYsTi6k1I08RyhAl1mfxM_B9Vf0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f7:d1:ad:0c:1d:89:b7:f9:4e:de:15:fa:d4:08:4c:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=718b138ba935234f11ca1025d667f133f07d55fd Validity Not Before: Jan 26 01:01:12 2026 GMT Not After : Jan 27 01:01:12 2026 GMT Subject: CN=9c22404b5e6d6d2d6ec1719f1167e70c656d6420 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:b1:79:7c:a3:d4:f4:53:99:64:ab:c2:2f:d9: 36:62:d8:fd:18:ab:ec:56:d5:57:b1:6d:89:f9:0c: 71:87:d9:70:9d:0b:8c:e8:d6:6d:e8:92:0f:d7:bc: d6:c9:98:54:c0:de:67:5f:39:4d:48:30:50:c6:01: e7:d4:21:91:ae:4e:fb:da:a0:45:1f:66:ea:7b:f1: 92:00:9d:a8:0f:40:b8:a8:eb:a1:c1:99:95:cf:c7: 53:62:bf:3c:2c:1e:1d:20:3a:fb:bf:7a:4e:f7:40: 4d:8e:87:2a:f3:90:bc:c9:fd:a2:ca:ef:5f:e8:dc: ff:f3:06:84:13:a6:ac:79:9d:28:a1:59:e8:47:78: 25:e0:89:6c:0f:af:a0:16:b7:8a:3b:65:aa:a4:a2: 30:2e:d9:25:a5:b5:e6:53:09:63:6b:ce:d2:05:1d: b3:e0:5a:df:84:ed:78:2b:ff:28:5a:4d:2c:e8:a0: 3a:fe:4f:1c:64:7b:13:e8:5c:5e:6e:cc:21:a7:a3: a5:1a:86:bd:16:1c:e9:c1:04:c7:f2:66:42:25:d3: 01:1a:b5:10:48:28:26:da:83:5d:c4:6d:cc:17:10: 01:f7:03:65:10:f2:e5:fe:0f:1c:bf:e7:2c:ca:4b: e1:fe:1e:5c:48:e0:aa:a5:73:c5:cd:ab:cc:53:7b: aa:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:22:40:4B:5E:6D:6D:2D:6E:C1:71:9F:11:67:E7:0C:65:6D:64:20 X509v3 Authority Key Identifier: keyid:71:8B:13:8B:A9:35:23:4F:11:CA:10:25:D6:67:F1:33:F0:7D:55:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cYsTi6k1I08RyhAl1mfxM_B9Vf0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/d43085-d94e-469d-9778-3b8ec1a65880/1/cYsTi6k1I08RyhAl1mfxM_B9Vf0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/22/d43085-d94e-469d-9778-3b8ec1a65880/1/cYsTi6k1I08RyhAl1mfxM_B9Vf0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7c:50:dd:cf:b9:e7:d8:c6:78:1d:01:e2:26:75:73:37:0d:ea: 0b:23:6d:e2:25:46:b7:6c:16:56:61:c0:c3:42:30:d0:fd:64: 01:cc:fa:21:a9:52:d9:69:7b:e0:ff:b1:6c:24:01:0b:c6:11: 23:f9:28:b1:06:98:ba:0e:36:90:52:3b:80:ee:2a:ab:fe:a4: 18:b8:b5:68:f5:88:8d:37:63:b0:30:c3:a5:2d:1c:29:63:81: 47:7d:ab:e1:2b:1e:79:ea:46:52:14:b7:81:1d:6a:05:a7:ca: 55:95:8f:73:d6:49:67:8b:65:dd:98:fb:14:be:c7:1f:1a:e6: 3c:69:5e:31:5b:a4:ce:37:32:1f:fe:0b:37:e0:a6:83:8d:86: 14:46:0d:a3:6a:c1:9a:c2:dc:46:eb:37:d1:4c:ee:95:ad:ce: 43:67:a2:86:82:91:7b:f4:f5:d2:61:00:31:10:30:4d:5e:ce: 61:87:a4:d4:94:57:76:74:88:b9:3a:e6:37:16:b4:1c:bf:c6: 7d:75:bb:67:aa:25:b1:28:56:dd:7b:13:4a:fd:cc:99:08:61: 9e:aa:b2:a1:08:ce:58:de:7f:3b:e8:c4:c6:a8:84:5f:5a:ef: 31:8a:89:9e:b1:39:be:55:8e:06:55:67:ad:ea:9b:0d:de:59: 15:5e:a7:9b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv30a0MHYm3+U7eFfrUCEy/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcxOGIxMzhiYTkzNTIzNGYxMWNhMTAyNWQ2NjdmMTMzZjA3 ZDU1ZmQwHhcNMjYwMTI2MDEwMTEyWhcNMjYwMTI3MDEwMTEyWjAzMTEwLwYDVQQD Eyg5YzIyNDA0YjVlNmQ2ZDJkNmVjMTcxOWYxMTY3ZTcwYzY1NmQ2NDIwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs7F5fKPU9FOZZKvCL9k2Ytj9GKvs VtVXsW2J+Qxxh9lwnQuM6NZt6JIP17zWyZhUwN5nXzlNSDBQxgHn1CGRrk772qBF H2bqe/GSAJ2oD0C4qOuhwZmVz8dTYr88LB4dIDr7v3pO90BNjocq85C8yf2iyu9f 6Nz/8waEE6aseZ0ooVnoR3gl4IlsD6+gFreKO2WqpKIwLtklpbXmUwlja87SBR2z 4FrfhO14K/8oWk0s6KA6/k8cZHsT6Fxebswhp6OlGoa9FhzpwQTH8mZCJdMBGrUQ SCgm2oNdxG3MFxAB9wNlEPLl/g8cv+csykvh/h5cSOCqpXPFzavMU3uqfwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJwiQEtebW0tbsFxnxFn5wxlbWQgMB8GA1UdIwQY MBaAFHGLE4upNSNPEcoQJdZn8TPwfVX9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY1lzVGk2azFJMDhSeWhBbDFtZnhNX0I5VmYwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi9kNDMwODUtZDk0ZS00NjlkLTk3Nzgt M2I4ZWMxYTY1ODgwLzEvY1lzVGk2azFJMDhSeWhBbDFtZnhNX0I5VmYwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMi9kNDMwODUtZDk0ZS00NjlkLTk3NzgtM2I4ZWMxYTY1ODgw LzEvY1lzVGk2azFJMDhSeWhBbDFtZnhNX0I5VmYwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfFDdz7nn 2MZ4HQHiJnVzNw3qCyNt4iVGt2wWVmHAw0Iw0P1kAcz6IalS2Wl74P+xbCQBC8YR I/kosQaYug42kFI7gO4qq/6kGLi1aPWIjTdjsDDDpS0cKWOBR32r4SseeepGUhS3 gR1qBafKVZWPc9ZJZ4tl3Zj7FL7HHxrmPGleMVukzjcyH/4LN+Cmg42GFEYNo2rB msLcRus30Uzula3OQ2eihoKRe/T10mEAMRAwTV7OYYek1JRXdnSIuTrmNxa0HL/G fXW7Z6olsShW3XsTSv3MmQhhnqqyoQjOWN5/O+jExqiEX1rvMYqJnrE5vlWOBlVn reqbDd5ZFV6nmw== -----END CERTIFICATE-----Generated at Mon Jan 26 05:13:27 2026 by rpki-client