This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.mft File: JY8HU8Azwa8JGGbQlCZFEmlspos.mft (raw, json) Hash identifier: nuThzEwz3bsz9zDW+ul1TilpNWY6ykjkkA2ZPlmW7CE= Subject key identifier: 52:08:40:C4:6A:26:4C:DA:87:1A:DC:0D:AA:05:E5:F9:C7:D5:43:CA Authority key identifier: 25:8F:07:53:C0:33:C1:AF:09:18:66:D0:94:26:45:12:69:6C:A6:8B Certificate issuer: /CN=258f0753c033c1af091866d094264512696ca68b Certificate serial: 019BFA2DDFB98326D8823ACA65F34FFE1BAF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JY8HU8Azwa8JGGbQlCZFEmlspos.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.mft Manifest number: 0B36 Signing time: Mon 26 Jan 2026 12:01:08 +0000 Manifest this update: Mon 26 Jan 2026 12:01:08 +0000 Manifest next update: Tue 27 Jan 2026 12:01:08 +0000 Files and hashes: 1: Cpe2_Ojc_FZLY2oGHgVbMwJjk9A.roa (hash: QYPBK9tLe2NLf5ToJsGlVRXUrRctKZptQZU1FwtQfmU=) 2: JY8HU8Azwa8JGGbQlCZFEmlspos.crl (hash: RZQFJQtLCCwMiMq4aZcDTTk06CRsiYWDAXjMWtKkxdM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.crl rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.mft rsync://rpki.ripe.net/repository/DEFAULT/JY8HU8Azwa8JGGbQlCZFEmlspos.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 10:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fa:2d:df:b9:83:26:d8:82:3a:ca:65:f3:4f:fe:1b:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=258f0753c033c1af091866d094264512696ca68b Validity Not Before: Jan 26 12:01:08 2026 GMT Not After : Jan 27 12:01:08 2026 GMT Subject: CN=520840c46a264cda871adc0daa05e5f9c7d543ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:e3:62:5b:3d:8f:83:c6:6e:2b:15:2d:31:cc: 11:6a:b3:0b:b8:c7:63:7c:9d:70:29:d6:32:f8:4d: 0a:9b:4e:cf:9c:d6:6e:1a:25:91:fc:87:aa:c3:40: 0e:cf:70:68:fc:3b:33:1d:f1:5b:57:38:f4:01:99: 6d:8e:4c:c2:60:09:18:20:67:79:8c:43:55:21:f5: 9a:32:2a:2b:61:5f:da:77:35:00:29:0c:f0:b5:d3: 7a:01:fe:cf:05:dc:ac:c5:23:72:f1:fe:cb:4e:25: 88:2b:d6:4f:a8:7d:57:fa:51:ec:c7:da:7a:e1:26: 3d:17:d5:87:97:33:3d:48:f0:54:0e:72:a3:3e:df: 1f:df:bf:1b:4f:d3:b8:ce:3f:72:78:5d:71:a1:ff: b4:e0:ba:3d:2d:86:aa:ef:f8:b9:1e:46:2f:4d:ae: 59:c9:2a:79:5e:cb:9b:cf:03:80:a5:e0:6d:db:80: 7c:b6:6a:f5:a2:af:bc:69:c6:88:06:21:d2:2c:1e: d6:1d:72:b8:2d:a5:68:2d:8a:7f:d7:35:7d:99:87: ff:5f:38:69:cd:47:c9:6d:e8:f1:13:4f:75:34:cc: d4:bc:dd:78:15:8a:86:4f:01:4c:99:f7:bc:11:8b: b3:67:49:84:ef:3d:42:b4:b4:67:56:0e:d7:56:3c: 88:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:08:40:C4:6A:26:4C:DA:87:1A:DC:0D:AA:05:E5:F9:C7:D5:43:CA X509v3 Authority Key Identifier: keyid:25:8F:07:53:C0:33:C1:AF:09:18:66:D0:94:26:45:12:69:6C:A6:8B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JY8HU8Azwa8JGGbQlCZFEmlspos.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8b:53:68:ba:36:e3:d4:2f:48:ad:8d:99:dc:c5:9e:68:f8:66: 91:2d:f3:09:01:5a:73:d1:a6:6e:a1:db:d0:94:f7:5a:34:61: 10:2a:77:5a:e9:5c:d5:5e:c2:4f:a3:21:3c:08:f9:ff:bd:84: 5d:8d:6d:4a:71:b3:4e:f9:df:89:90:f5:5e:55:46:0a:5f:df: a7:62:ba:95:92:a1:3d:b1:f6:be:56:34:fe:73:f7:27:3f:33: 80:6a:f9:40:aa:23:71:1d:6e:29:92:42:f8:37:13:30:94:61: 35:d8:7a:97:a1:92:f8:22:4a:7e:16:74:87:da:b9:4d:ae:ef: 02:7a:31:22:e5:78:16:07:9b:6a:5f:18:0d:c4:47:1d:3b:56: 90:60:50:15:d7:ea:c2:a9:35:5f:8c:ee:18:0f:24:27:40:f0: 07:e9:8e:7a:9e:1d:bb:46:72:4e:71:e4:a6:ad:b3:40:ce:be: 2e:a0:7e:2c:a5:ca:03:54:4c:28:0b:66:cd:52:e2:f1:cd:95: 7b:72:74:0f:87:34:fe:83:f4:41:4b:b6:67:c3:33:9f:c2:97: 2b:41:97:6d:73:a3:b8:15:ab:a3:05:ec:13:b8:af:b1:1d:98: e0:a1:4b:f7:61:ff:bc:65:16:4f:74:0e:6e:b1:c8:1c:73:41: c0:2b:96:7c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv6Ld+5gybYgjrKZfNP/huvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI1OGYwNzUzYzAzM2MxYWYwOTE4NjZkMDk0MjY0NTEyNjk2 Y2E2OGIwHhcNMjYwMTI2MTIwMTA4WhcNMjYwMTI3MTIwMTA4WjAzMTEwLwYDVQQD Eyg1MjA4NDBjNDZhMjY0Y2RhODcxYWRjMGRhYTA1ZTVmOWM3ZDU0M2NhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw+NiWz2Pg8ZuKxUtMcwRarMLuMdj fJ1wKdYy+E0Km07PnNZuGiWR/Ieqw0AOz3Bo/DszHfFbVzj0AZltjkzCYAkYIGd5 jENVIfWaMiorYV/adzUAKQzwtdN6Af7PBdysxSNy8f7LTiWIK9ZPqH1X+lHsx9p6 4SY9F9WHlzM9SPBUDnKjPt8f378bT9O4zj9yeF1xof+04Lo9LYaq7/i5HkYvTa5Z ySp5XsubzwOApeBt24B8tmr1oq+8acaIBiHSLB7WHXK4LaVoLYp/1zV9mYf/Xzhp zUfJbejxE091NMzUvN14FYqGTwFMmfe8EYuzZ0mE7z1CtLRnVg7XVjyIhQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFIIQMRqJkzahxrcDaoF5fnH1UPKMB8GA1UdIwQY MBaAFCWPB1PAM8GvCRhm0JQmRRJpbKaLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSlk4SFU4QXp3YThKR0diUWxDWkZFbWxzcG9zLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZC8zYmFlODctODJlYi00NTFmLTgwNDQt MmMyZjBkMjRmOTM2LzEvSlk4SFU4QXp3YThKR0diUWxDWkZFbWxzcG9zLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZC8zYmFlODctODJlYi00NTFmLTgwNDQtMmMyZjBkMjRmOTM2 LzEvSlk4SFU4QXp3YThKR0diUWxDWkZFbWxzcG9zLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAi1Noujbj 1C9IrY2Z3MWeaPhmkS3zCQFac9GmbqHb0JT3WjRhECp3Wulc1V7CT6MhPAj5/72E XY1tSnGzTvnfiZD1XlVGCl/fp2K6lZKhPbH2vlY0/nP3Jz8zgGr5QKojcR1uKZJC +DcTMJRhNdh6l6GS+CJKfhZ0h9q5Ta7vAnoxIuV4Fgebal8YDcRHHTtWkGBQFdfq wqk1X4zuGA8kJ0DwB+mOep4du0ZyTnHkpq2zQM6+LqB+LKXKA1RMKAtmzVLi8c2V e3J0D4c0/oP0QUu2Z8Mzn8KXK0GXbXOjuBWrowXsE7ivsR2Y4KFL92H/vGUWT3QO brHIHHNBwCuWfA== -----END CERTIFICATE-----Generated at Mon Jan 26 14:25:37 2026 by rpki-client