This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.mft
File: JY8HU8Azwa8JGGbQlCZFEmlspos.mft (raw, json)
Hash identifier: nuThzEwz3bsz9zDW+ul1TilpNWY6ykjkkA2ZPlmW7CE=
Subject key identifier: 52:08:40:C4:6A:26:4C:DA:87:1A:DC:0D:AA:05:E5:F9:C7:D5:43:CA
Authority key identifier: 25:8F:07:53:C0:33:C1:AF:09:18:66:D0:94:26:45:12:69:6C:A6:8B
Certificate issuer: /CN=258f0753c033c1af091866d094264512696ca68b
Certificate serial: 019BFA2DDFB98326D8823ACA65F34FFE1BAF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JY8HU8Azwa8JGGbQlCZFEmlspos.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.mft
Manifest number: 0B36
Signing time: Mon 26 Jan 2026 12:01:08 +0000
Manifest this update: Mon 26 Jan 2026 12:01:08 +0000
Manifest next update: Tue 27 Jan 2026 12:01:08 +0000
Files and hashes: 1: Cpe2_Ojc_FZLY2oGHgVbMwJjk9A.roa (hash: QYPBK9tLe2NLf5ToJsGlVRXUrRctKZptQZU1FwtQfmU=)
2: JY8HU8Azwa8JGGbQlCZFEmlspos.crl (hash: RZQFJQtLCCwMiMq4aZcDTTk06CRsiYWDAXjMWtKkxdM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.mft
rsync://rpki.ripe.net/repository/DEFAULT/JY8HU8Azwa8JGGbQlCZFEmlspos.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 27 Jan 2026 10:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9b:fa:2d:df:b9:83:26:d8:82:3a:ca:65:f3:4f:fe:1b:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=258f0753c033c1af091866d094264512696ca68b
Validity
Not Before: Jan 26 12:01:08 2026 GMT
Not After : Jan 27 12:01:08 2026 GMT
Subject: CN=520840c46a264cda871adc0daa05e5f9c7d543ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:e3:62:5b:3d:8f:83:c6:6e:2b:15:2d:31:cc:
11:6a:b3:0b:b8:c7:63:7c:9d:70:29:d6:32:f8:4d:
0a:9b:4e:cf:9c:d6:6e:1a:25:91:fc:87:aa:c3:40:
0e:cf:70:68:fc:3b:33:1d:f1:5b:57:38:f4:01:99:
6d:8e:4c:c2:60:09:18:20:67:79:8c:43:55:21:f5:
9a:32:2a:2b:61:5f:da:77:35:00:29:0c:f0:b5:d3:
7a:01:fe:cf:05:dc:ac:c5:23:72:f1:fe:cb:4e:25:
88:2b:d6:4f:a8:7d:57:fa:51:ec:c7:da:7a:e1:26:
3d:17:d5:87:97:33:3d:48:f0:54:0e:72:a3:3e:df:
1f:df:bf:1b:4f:d3:b8:ce:3f:72:78:5d:71:a1:ff:
b4:e0:ba:3d:2d:86:aa:ef:f8:b9:1e:46:2f:4d:ae:
59:c9:2a:79:5e:cb:9b:cf:03:80:a5:e0:6d:db:80:
7c:b6:6a:f5:a2:af:bc:69:c6:88:06:21:d2:2c:1e:
d6:1d:72:b8:2d:a5:68:2d:8a:7f:d7:35:7d:99:87:
ff:5f:38:69:cd:47:c9:6d:e8:f1:13:4f:75:34:cc:
d4:bc:dd:78:15:8a:86:4f:01:4c:99:f7:bc:11:8b:
b3:67:49:84:ef:3d:42:b4:b4:67:56:0e:d7:56:3c:
88:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:08:40:C4:6A:26:4C:DA:87:1A:DC:0D:AA:05:E5:F9:C7:D5:43:CA
X509v3 Authority Key Identifier:
keyid:25:8F:07:53:C0:33:C1:AF:09:18:66:D0:94:26:45:12:69:6C:A6:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JY8HU8Azwa8JGGbQlCZFEmlspos.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:53:68:ba:36:e3:d4:2f:48:ad:8d:99:dc:c5:9e:68:f8:66:
91:2d:f3:09:01:5a:73:d1:a6:6e:a1:db:d0:94:f7:5a:34:61:
10:2a:77:5a:e9:5c:d5:5e:c2:4f:a3:21:3c:08:f9:ff:bd:84:
5d:8d:6d:4a:71:b3:4e:f9:df:89:90:f5:5e:55:46:0a:5f:df:
a7:62:ba:95:92:a1:3d:b1:f6:be:56:34:fe:73:f7:27:3f:33:
80:6a:f9:40:aa:23:71:1d:6e:29:92:42:f8:37:13:30:94:61:
35:d8:7a:97:a1:92:f8:22:4a:7e:16:74:87:da:b9:4d:ae:ef:
02:7a:31:22:e5:78:16:07:9b:6a:5f:18:0d:c4:47:1d:3b:56:
90:60:50:15:d7:ea:c2:a9:35:5f:8c:ee:18:0f:24:27:40:f0:
07:e9:8e:7a:9e:1d:bb:46:72:4e:71:e4:a6:ad:b3:40:ce:be:
2e:a0:7e:2c:a5:ca:03:54:4c:28:0b:66:cd:52:e2:f1:cd:95:
7b:72:74:0f:87:34:fe:83:f4:41:4b:b6:67:c3:33:9f:c2:97:
2b:41:97:6d:73:a3:b8:15:ab:a3:05:ec:13:b8:af:b1:1d:98:
e0:a1:4b:f7:61:ff:bc:65:16:4f:74:0e:6e:b1:c8:1c:73:41:
c0:2b:96:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 26 14:25:37 2026 by rpki-client