This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.mft File: JY8HU8Azwa8JGGbQlCZFEmlspos.mft (raw, json) Hash identifier: FrFSNptkdgox2zYM8E0a/jkQyAkDYcihp+NiYT3T4dU= Subject key identifier: 49:74:C0:D9:3B:D0:7E:05:A6:A1:26:ED:4C:1A:33:43:6F:9A:51:4E Authority key identifier: 25:8F:07:53:C0:33:C1:AF:09:18:66:D0:94:26:45:12:69:6C:A6:8B Certificate issuer: /CN=258f0753c033c1af091866d094264512696ca68b Certificate serial: 019BF83F19D433A80BCD8C9D396DC694ADDB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JY8HU8Azwa8JGGbQlCZFEmlspos.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.mft Manifest number: 0B35 Signing time: Mon 26 Jan 2026 03:00:43 +0000 Manifest this update: Mon 26 Jan 2026 03:00:43 +0000 Manifest next update: Tue 27 Jan 2026 03:00:43 +0000 Files and hashes: 1: Cpe2_Ojc_FZLY2oGHgVbMwJjk9A.roa (hash: QYPBK9tLe2NLf5ToJsGlVRXUrRctKZptQZU1FwtQfmU=) 2: JY8HU8Azwa8JGGbQlCZFEmlspos.crl (hash: p5nLNcU/1XZS5/BQi5v0iw07UhEyQyC/UyfOYCEHx0A=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.crl rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.mft rsync://rpki.ripe.net/repository/DEFAULT/JY8HU8Azwa8JGGbQlCZFEmlspos.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 03:00:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f8:3f:19:d4:33:a8:0b:cd:8c:9d:39:6d:c6:94:ad:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=258f0753c033c1af091866d094264512696ca68b Validity Not Before: Jan 26 03:00:43 2026 GMT Not After : Jan 27 03:00:43 2026 GMT Subject: CN=4974c0d93bd07e05a6a126ed4c1a33436f9a514e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:d9:01:cc:9d:4d:42:0f:8b:cb:4f:94:ca:bb: 1e:c5:b5:6f:98:56:06:b8:1f:b0:a2:ed:fa:cc:64: 48:80:ae:95:d7:40:c8:39:ad:c1:38:12:ba:3d:d2: f0:25:6b:66:23:0d:98:8e:88:bd:82:4f:f7:51:7a: dc:c3:7b:e0:ca:6f:b6:9b:ef:22:32:ac:3b:ba:57: d6:82:3f:0d:3b:67:80:ed:c2:29:8d:be:8b:a1:bb: 6d:16:2d:0e:fb:80:b0:75:80:55:ac:2c:84:fb:ad: be:5b:56:44:97:d9:4f:24:da:bc:06:5d:7e:de:1f: bd:51:3b:9e:97:77:84:ba:f4:c0:10:a2:ea:b8:d5: d9:50:b0:ab:12:2b:07:bc:75:63:2f:f8:0c:63:a8: 86:0f:47:f4:06:3b:f2:e8:8f:c3:ac:c3:7c:6b:9a: 49:1a:d3:72:4e:16:cc:8e:31:fc:85:06:7a:96:55: 09:ca:b6:7b:c5:79:fa:45:1a:38:b0:44:60:56:e4: a6:46:cd:e4:69:47:98:fe:54:07:16:c5:9e:f5:6f: ee:36:12:4e:99:7f:44:2f:eb:bf:b4:64:ff:9d:cc: 4b:25:bb:ab:00:33:0b:ca:89:76:98:89:b0:21:cc: 12:b8:ed:00:e4:76:df:ec:ef:66:48:e2:06:ea:27: f9:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:74:C0:D9:3B:D0:7E:05:A6:A1:26:ED:4C:1A:33:43:6F:9A:51:4E X509v3 Authority Key Identifier: keyid:25:8F:07:53:C0:33:C1:AF:09:18:66:D0:94:26:45:12:69:6C:A6:8B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JY8HU8Azwa8JGGbQlCZFEmlspos.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2b:ca:87:ea:2c:68:01:47:59:89:70:60:93:08:d8:0f:f4:c8: 6f:c1:d7:98:82:97:f3:17:bf:c3:a8:55:f4:f1:42:19:2e:5e: ed:f2:8c:5a:76:eb:f3:14:09:37:91:f5:ac:0b:db:d9:19:60: a6:54:16:78:54:81:4b:fd:da:8c:fa:63:8e:1c:cf:39:c6:f1: b4:4f:1e:c8:af:7d:6b:4b:9c:5c:c9:26:27:62:08:79:88:e5: c6:2f:ae:dd:e3:71:2c:0f:a9:f0:4f:32:10:4c:60:b0:24:9f: 56:23:e9:76:c0:a4:bb:70:b8:2d:63:a4:10:e6:52:95:1d:64: 4e:d8:60:45:b0:57:d9:2b:ca:20:de:b1:f4:73:a0:16:46:c8: 80:40:c0:47:58:5c:7d:f3:cc:2c:d0:fa:a6:1b:e1:8a:c8:dc: 84:42:fa:fe:79:fe:88:16:b5:4e:d2:df:10:75:a0:9e:51:7c: 18:9f:4c:b4:be:96:a1:4c:90:a5:7e:e6:04:01:f5:0e:4d:c9: c6:ff:a3:6b:80:ed:0c:90:df:04:b7:3b:ff:db:da:f5:14:93: 68:36:5b:2e:7d:bb:4e:66:55:4f:16:cf:44:7e:0d:88:b2:00: fe:6c:58:7a:a1:6c:2a:90:57:5a:b5:b6:fb:b4:63:cd:6e:f8: c8:80:63:00 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv4PxnUM6gLzYydOW3GlK3bMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI1OGYwNzUzYzAzM2MxYWYwOTE4NjZkMDk0MjY0NTEyNjk2 Y2E2OGIwHhcNMjYwMTI2MDMwMDQzWhcNMjYwMTI3MDMwMDQzWjAzMTEwLwYDVQQD Eyg0OTc0YzBkOTNiZDA3ZTA1YTZhMTI2ZWQ0YzFhMzM0MzZmOWE1MTRlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0dkBzJ1NQg+Ly0+UyrsexbVvmFYG uB+wou36zGRIgK6V10DIOa3BOBK6PdLwJWtmIw2Yjoi9gk/3UXrcw3vgym+2m+8i Mqw7ulfWgj8NO2eA7cIpjb6LobttFi0O+4CwdYBVrCyE+62+W1ZEl9lPJNq8Bl1+ 3h+9UTuel3eEuvTAEKLquNXZULCrEisHvHVjL/gMY6iGD0f0Bjvy6I/DrMN8a5pJ GtNyThbMjjH8hQZ6llUJyrZ7xXn6RRo4sERgVuSmRs3kaUeY/lQHFsWe9W/uNhJO mX9EL+u/tGT/ncxLJburADMLyol2mImwIcwSuO0A5Hbf7O9mSOIG6if5jQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEl0wNk70H4FpqEm7UwaM0NvmlFOMB8GA1UdIwQY MBaAFCWPB1PAM8GvCRhm0JQmRRJpbKaLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSlk4SFU4QXp3YThKR0diUWxDWkZFbWxzcG9zLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZC8zYmFlODctODJlYi00NTFmLTgwNDQt MmMyZjBkMjRmOTM2LzEvSlk4SFU4QXp3YThKR0diUWxDWkZFbWxzcG9zLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZC8zYmFlODctODJlYi00NTFmLTgwNDQtMmMyZjBkMjRmOTM2 LzEvSlk4SFU4QXp3YThKR0diUWxDWkZFbWxzcG9zLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAK8qH6ixo AUdZiXBgkwjYD/TIb8HXmIKX8xe/w6hV9PFCGS5e7fKMWnbr8xQJN5H1rAvb2Rlg plQWeFSBS/3ajPpjjhzPOcbxtE8eyK99a0ucXMkmJ2IIeYjlxi+u3eNxLA+p8E8y EExgsCSfViPpdsCku3C4LWOkEOZSlR1kTthgRbBX2SvKIN6x9HOgFkbIgEDAR1hc ffPMLND6phvhisjchEL6/nn+iBa1TtLfEHWgnlF8GJ9MtL6WoUyQpX7mBAH1Dk3J xv+ja4DtDJDfBLc7/9va9RSTaDZbLn27TmZVTxbPRH4NiLIA/mxYeqFsKpBXWrW2 +7RjzW74yIBjAA== -----END CERTIFICATE-----Generated at Mon Jan 26 13:05:25 2026 by rpki-client