This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/bd7209-44e9-423e-84a4-b89dc4fd6ee0/1/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.mft File: y7Ul4mOpWxZSBkvf-JZNS_YrUz0.mft (raw, json) Hash identifier: GdXWl0w1/4YKrSWCvv6WORE9n+MykEhf9d79p5ZiV9s= Subject key identifier: 5D:6F:40:DE:DF:C7:99:EB:BE:41:F5:F7:ED:5C:A0:3B:D8:E3:9B:54 Authority key identifier: CB:B5:25:E2:63:A9:5B:16:52:06:4B:DF:F8:96:4D:4B:F6:2B:53:3D Certificate issuer: /CN=cbb525e263a95b1652064bdff8964d4bf62b533d Certificate serial: 019BF5AC0615997F57684253BA6D64480661 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/bd7209-44e9-423e-84a4-b89dc4fd6ee0/1/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.mft Manifest number: 049C Signing time: Sun 25 Jan 2026 15:00:50 +0000 Manifest this update: Sun 25 Jan 2026 15:00:50 +0000 Manifest next update: Mon 26 Jan 2026 15:00:50 +0000 Files and hashes: 1: mQ0ACAyJhS24Ge7JfejryYjhrr4.roa (hash: vb4PW+qjvJj8W9hO5gMvw1SrDAuFxyDok45TJihaRuk=) 2: y7Ul4mOpWxZSBkvf-JZNS_YrUz0.crl (hash: lvOWfz3ODaIfRaXiZIXwIlnI8XBtMIB5pf1US8s1K0g=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/bd7209-44e9-423e-84a4-b89dc4fd6ee0/1/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.crl rsync://rpki.ripe.net/repository/DEFAULT/2d/bd7209-44e9-423e-84a4-b89dc4fd6ee0/1/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.mft rsync://rpki.ripe.net/repository/DEFAULT/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 15:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f5:ac:06:15:99:7f:57:68:42:53:ba:6d:64:48:06:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cbb525e263a95b1652064bdff8964d4bf62b533d Validity Not Before: Jan 25 15:00:50 2026 GMT Not After : Jan 26 15:00:50 2026 GMT Subject: CN=5d6f40dedfc799ebbe41f5f7ed5ca03bd8e39b54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:0b:53:dd:44:eb:78:eb:f1:97:69:cb:87:ca: d3:a3:80:70:6a:59:b1:18:82:e3:f8:e2:54:9b:09: 01:7c:f8:08:06:91:36:cf:08:24:9c:ad:cc:35:05: b9:d6:da:ac:65:d8:6f:d7:6b:6f:34:01:ad:af:c5: b9:9d:c2:65:e6:35:9c:60:db:6f:88:11:81:0b:71: 40:5d:bd:6b:a3:21:2d:d1:b9:68:2d:f6:4e:3f:89: 50:b4:2c:7e:a6:3c:dc:7c:60:f7:08:dd:19:ab:00: 77:36:d6:4e:74:f3:c0:52:53:34:b4:f3:2f:73:46: b4:ac:42:fa:64:e6:58:20:22:d4:27:6b:0a:fa:85: 44:9b:b5:ce:45:55:c8:c2:2e:86:98:fe:85:09:77: 40:45:40:84:f5:4f:f9:c4:95:c4:fc:6e:0e:48:c3: e0:5c:df:49:56:46:a2:f9:26:4b:93:bc:28:62:0e: c6:5f:d2:63:1a:90:3e:77:6b:75:db:5c:ab:4a:0d: f9:f6:93:b7:97:60:7d:b2:22:59:85:6e:33:53:36: 4b:1d:0b:29:1d:74:67:0c:c2:5c:6d:6e:6c:84:ba: 5f:f7:ed:b6:fb:7a:f4:61:81:30:9e:17:0c:33:03: 81:ea:bc:24:5b:a4:9f:99:69:25:9f:cc:fe:89:d5: 33:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:6F:40:DE:DF:C7:99:EB:BE:41:F5:F7:ED:5C:A0:3B:D8:E3:9B:54 X509v3 Authority Key Identifier: keyid:CB:B5:25:E2:63:A9:5B:16:52:06:4B:DF:F8:96:4D:4B:F6:2B:53:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/bd7209-44e9-423e-84a4-b89dc4fd6ee0/1/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/bd7209-44e9-423e-84a4-b89dc4fd6ee0/1/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 45:7e:83:1d:57:ad:a5:90:07:cc:f9:01:dd:b8:b6:02:48:97: b8:74:c6:62:76:93:fa:35:ac:49:9b:2f:85:26:80:07:e3:de: cc:2c:b5:01:03:a5:cb:c4:de:f8:1b:bb:6e:d9:ff:7f:e5:72: ea:59:3e:13:88:3c:a5:f0:20:62:e1:dd:40:16:4f:b1:4f:d6: 97:f3:18:2f:40:0c:c3:74:db:ab:d5:6b:55:f2:00:5c:6c:3d: 4b:46:ec:8d:4f:3d:4e:66:76:1c:73:5e:7e:a7:bb:06:9c:62: 7b:d8:c0:08:da:4b:4b:d9:12:81:3d:1d:e0:7d:f8:8d:28:c4: b6:0b:4b:66:ce:02:a5:75:5e:19:55:c0:d9:17:d1:8b:c8:41: e1:c0:fb:17:41:be:1e:42:b3:d4:23:88:7a:7b:a0:f5:45:e3: 43:26:d8:bd:ac:df:dd:32:08:37:83:e8:2b:00:24:c5:0b:42: b0:a8:ff:a9:76:77:3b:75:4f:ba:48:f1:1e:36:13:92:bf:a2: e8:1e:01:e9:0c:db:36:d8:ce:6c:6f:37:72:82:44:0d:1b:05: 03:e1:97:7e:4c:89:1e:ef:80:2b:50:5e:f2:42:50:b2:5d:a4: 5a:13:d1:5d:0d:3a:eb:45:55:31:d8:e3:73:76:0a:93:22:2b: a8:6d:b4:36 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv1rAYVmX9XaEJTum1kSAZhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNiYjUyNWUyNjNhOTViMTY1MjA2NGJkZmY4OTY0ZDRiZjYy YjUzM2QwHhcNMjYwMTI1MTUwMDUwWhcNMjYwMTI2MTUwMDUwWjAzMTEwLwYDVQQD Eyg1ZDZmNDBkZWRmYzc5OWViYmU0MWY1ZjdlZDVjYTAzYmQ4ZTM5YjU0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApwtT3UTreOvxl2nLh8rTo4Bwalmx GILj+OJUmwkBfPgIBpE2zwgknK3MNQW51tqsZdhv12tvNAGtr8W5ncJl5jWcYNtv iBGBC3FAXb1royEt0bloLfZOP4lQtCx+pjzcfGD3CN0ZqwB3NtZOdPPAUlM0tPMv c0a0rEL6ZOZYICLUJ2sK+oVEm7XORVXIwi6GmP6FCXdARUCE9U/5xJXE/G4OSMPg XN9JVkai+SZLk7woYg7GX9JjGpA+d2t121yrSg359pO3l2B9siJZhW4zUzZLHQsp HXRnDMJcbW5shLpf9+22+3r0YYEwnhcMMwOB6rwkW6SfmWkln8z+idUzHwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFF1vQN7fx5nrvkH19+1coDvY45tUMB8GA1UdIwQY MBaAFMu1JeJjqVsWUgZL3/iWTUv2K1M9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveTdVbDRtT3BXeFpTQmt2Zi1KWk5TX1lyVXowLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZC9iZDcyMDktNDRlOS00MjNlLTg0YTQt Yjg5ZGM0ZmQ2ZWUwLzEveTdVbDRtT3BXeFpTQmt2Zi1KWk5TX1lyVXowLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZC9iZDcyMDktNDRlOS00MjNlLTg0YTQtYjg5ZGM0ZmQ2ZWUw LzEveTdVbDRtT3BXeFpTQmt2Zi1KWk5TX1lyVXowLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARX6DHVet pZAHzPkB3bi2AkiXuHTGYnaT+jWsSZsvhSaAB+PezCy1AQOly8Te+Bu7btn/f+Vy 6lk+E4g8pfAgYuHdQBZPsU/Wl/MYL0AMw3Tbq9VrVfIAXGw9S0bsjU89TmZ2HHNe fqe7Bpxie9jACNpLS9kSgT0d4H34jSjEtgtLZs4CpXVeGVXA2RfRi8hB4cD7F0G+ HkKz1COIenug9UXjQybYvazf3TIIN4PoKwAkxQtCsKj/qXZ3O3VPukjxHjYTkr+i 6B4B6QzbNtjObG83coJEDRsFA+GXfkyJHu+AK1Be8kJQsl2kWhPRXQ0660VVMdjj c3YKkyIrqG20Ng== -----END CERTIFICATE-----Generated at Mon Jan 26 01:22:57 2026 by rpki-client