This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/7a7ef6-372a-4b74-92f2-41b468f3aab0/1/hyd386vnZf-Is-jm24PSfDxiYTg.mft File: hyd386vnZf-Is-jm24PSfDxiYTg.mft (raw, json) Hash identifier: O36W8rsotfFOX3Z0hl2YYAiU+lrIQZRdWTWIdM85R94= Subject key identifier: 95:97:41:D8:09:4E:39:CD:CB:22:E1:73:A1:F6:06:BF:3E:38:DC:D0 Authority key identifier: 87:27:77:F3:AB:E7:65:FF:88:B3:E8:E6:DB:83:D2:7C:3C:62:61:38 Certificate issuer: /CN=872777f3abe765ff88b3e8e6db83d27c3c626138 Certificate serial: 019BF6510E1EABC94F2ACAE5AFCE5A6442F4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hyd386vnZf-Is-jm24PSfDxiYTg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/7a7ef6-372a-4b74-92f2-41b468f3aab0/1/hyd386vnZf-Is-jm24PSfDxiYTg.mft Manifest number: 040B Signing time: Sun 25 Jan 2026 18:01:05 +0000 Manifest this update: Sun 25 Jan 2026 18:01:05 +0000 Manifest next update: Mon 26 Jan 2026 18:01:05 +0000 Files and hashes: 1: 1-viZKzZcs2hL671huJpZke8oCa8.roa (hash: +mu7L8sH0WKwCKuSeMKrM/p/c/OlxP69D6YYgy4YRII=) 2: hyd386vnZf-Is-jm24PSfDxiYTg.crl (hash: n4v87Ax8zfC6hKk28VjYggRjXJcQYrqCmViTeE/L3Zo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/7a7ef6-372a-4b74-92f2-41b468f3aab0/1/hyd386vnZf-Is-jm24PSfDxiYTg.crl rsync://rpki.ripe.net/repository/DEFAULT/2d/7a7ef6-372a-4b74-92f2-41b468f3aab0/1/hyd386vnZf-Is-jm24PSfDxiYTg.mft rsync://rpki.ripe.net/repository/DEFAULT/hyd386vnZf-Is-jm24PSfDxiYTg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 18:01:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f6:51:0e:1e:ab:c9:4f:2a:ca:e5:af:ce:5a:64:42:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=872777f3abe765ff88b3e8e6db83d27c3c626138 Validity Not Before: Jan 25 18:01:05 2026 GMT Not After : Jan 26 18:01:05 2026 GMT Subject: CN=959741d8094e39cdcb22e173a1f606bf3e38dcd0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:ef:1e:cd:98:5c:6e:e9:fd:74:7e:e4:e7:0c: 91:ce:5c:3e:16:80:cd:56:44:6a:ce:44:60:16:15: 52:6e:f6:4e:81:21:e0:4b:b3:e4:fa:74:87:db:a3: be:42:d2:25:b5:35:4e:b2:d1:2d:1d:f1:fe:4d:a3: dc:f3:dd:b0:fc:ad:3c:45:03:af:28:97:f2:31:8d: fa:a6:90:e4:d9:8d:39:ea:ba:7b:cb:d0:1f:65:5d: ae:51:8e:18:87:45:81:d5:0c:d1:82:73:71:9b:a1: 9a:3f:81:d6:af:8a:e3:39:27:a6:d8:89:60:32:87: 8d:f2:83:5d:32:b1:46:a4:f2:51:a2:f9:27:a8:f5: 6c:c9:c0:13:6a:04:9c:4f:36:32:71:93:dd:9b:f8: 81:46:97:dc:21:f5:5b:2c:7d:61:ac:95:24:06:87: f0:f0:4d:04:e3:52:1d:cd:24:f3:e6:23:ec:7e:c9: a4:14:99:03:af:5f:01:cf:de:3c:f5:de:1d:c7:a1: 3a:09:2c:7d:40:b6:eb:ad:e4:dd:c4:5d:54:8c:e9: ad:83:3d:ab:92:49:99:22:09:40:b6:e6:75:af:92: 3c:98:7d:93:22:12:00:e5:9b:4f:7b:f8:49:af:3d: e5:6e:43:b2:a3:6d:3b:79:ed:21:4b:08:6a:92:81: ba:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:97:41:D8:09:4E:39:CD:CB:22:E1:73:A1:F6:06:BF:3E:38:DC:D0 X509v3 Authority Key Identifier: keyid:87:27:77:F3:AB:E7:65:FF:88:B3:E8:E6:DB:83:D2:7C:3C:62:61:38 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hyd386vnZf-Is-jm24PSfDxiYTg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/7a7ef6-372a-4b74-92f2-41b468f3aab0/1/hyd386vnZf-Is-jm24PSfDxiYTg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/7a7ef6-372a-4b74-92f2-41b468f3aab0/1/hyd386vnZf-Is-jm24PSfDxiYTg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5a:5c:6c:c1:63:3f:2b:4f:06:36:06:70:04:8d:a9:39:a1:79: bd:ae:28:63:17:b1:da:30:cf:68:2e:8b:1f:3c:90:7c:11:8b: 30:3f:68:2c:d8:d4:85:c8:6c:80:91:36:c6:12:0d:38:fd:3a: 2e:03:5c:f2:17:78:b9:64:83:c9:9a:56:b6:2e:7f:52:2c:1c: 0f:d6:ce:2e:74:1f:39:a5:03:dc:0b:c7:21:14:7c:c0:79:91: e1:d5:85:f1:3e:97:d0:78:25:2c:ae:5c:70:22:45:02:23:73: 48:5e:bd:1f:df:76:4f:a5:66:25:7e:04:bb:21:5f:13:d2:39: 0a:f3:63:82:06:8c:9f:ec:3c:82:da:5a:99:2f:b1:6f:d5:40: ec:4c:6d:e7:20:d9:57:21:a4:76:80:63:61:87:71:c9:a1:fc: dc:4f:66:2c:de:1b:30:3c:f3:ea:45:f3:d7:8a:6f:81:e0:db: 9b:a2:e8:cc:a9:4e:3e:47:0c:23:54:f0:95:47:4c:a4:9d:a6: 11:07:39:37:32:1a:9b:e8:84:12:96:0d:55:04:0e:f6:cf:b0: 16:ba:4b:c6:dc:a6:78:a1:0d:c1:46:bd:52:91:2a:48:89:c8: 83:66:3c:85:e4:37:8b:78:0d:e2:1b:28:4f:5c:d2:1d:6b:00: 84:23:37:be -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv2UQ4eq8lPKsrlr85aZEL0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg3Mjc3N2YzYWJlNzY1ZmY4OGIzZThlNmRiODNkMjdjM2M2 MjYxMzgwHhcNMjYwMTI1MTgwMTA1WhcNMjYwMTI2MTgwMTA1WjAzMTEwLwYDVQQD Eyg5NTk3NDFkODA5NGUzOWNkY2IyMmUxNzNhMWY2MDZiZjNlMzhkY2QwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsO8ezZhcbun9dH7k5wyRzlw+FoDN VkRqzkRgFhVSbvZOgSHgS7Pk+nSH26O+QtIltTVOstEtHfH+TaPc892w/K08RQOv KJfyMY36ppDk2Y056rp7y9AfZV2uUY4Yh0WB1QzRgnNxm6GaP4HWr4rjOSem2Ilg MoeN8oNdMrFGpPJRovknqPVsycATagScTzYycZPdm/iBRpfcIfVbLH1hrJUkBofw 8E0E41IdzSTz5iPsfsmkFJkDr18Bz9489d4dx6E6CSx9QLbrreTdxF1UjOmtgz2r kkmZIglAtuZ1r5I8mH2TIhIA5ZtPe/hJrz3lbkOyo207ee0hSwhqkoG6NQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJWXQdgJTjnNyyLhc6H2Br8+ONzQMB8GA1UdIwQY MBaAFIcnd/Or52X/iLPo5tuD0nw8YmE4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaHlkMzg2dm5aZi1Jcy1qbTI0UFNmRHhpWVRnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZC83YTdlZjYtMzcyYS00Yjc0LTkyZjIt NDFiNDY4ZjNhYWIwLzEvaHlkMzg2dm5aZi1Jcy1qbTI0UFNmRHhpWVRnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZC83YTdlZjYtMzcyYS00Yjc0LTkyZjItNDFiNDY4ZjNhYWIw LzEvaHlkMzg2dm5aZi1Jcy1qbTI0UFNmRHhpWVRnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWlxswWM/ K08GNgZwBI2pOaF5va4oYxex2jDPaC6LHzyQfBGLMD9oLNjUhchsgJE2xhINOP06 LgNc8hd4uWSDyZpWti5/UiwcD9bOLnQfOaUD3AvHIRR8wHmR4dWF8T6X0HglLK5c cCJFAiNzSF69H992T6VmJX4EuyFfE9I5CvNjggaMn+w8gtpamS+xb9VA7Ext5yDZ VyGkdoBjYYdxyaH83E9mLN4bMDzz6kXz14pvgeDbm6LozKlOPkcMI1TwlUdMpJ2m EQc5NzIam+iEEpYNVQQO9s+wFrpLxtymeKENwUa9UpEqSInIg2Y8heQ3i3gN4hso T1zSHWsAhCM3vg== -----END CERTIFICATE-----Generated at Mon Jan 26 04:00:16 2026 by rpki-client