This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.mft File: dy9wNcKJOyjNBP0amzys0kKMjf0.mft (raw, json) Hash identifier: i0J581y0XD88KJ/4mIJ2pU7uIsZnRP9RoZTcJfwLIq4= Subject key identifier: BD:48:6C:8F:E3:64:25:B2:C6:41:D7:87:98:4A:C9:D0:C3:4C:D7:0A Authority key identifier: 77:2F:70:35:C2:89:3B:28:CD:04:FD:1A:9B:3C:AC:D2:42:8C:8D:FD Certificate issuer: /CN=772f7035c2893b28cd04fd1a9b3cacd2428c8dfd Certificate serial: 019BF198D05607026D802F84E7A6DF956D1B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dy9wNcKJOyjNBP0amzys0kKMjf0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.mft Manifest number: 0502 Signing time: Sat 24 Jan 2026 20:01:22 +0000 Manifest this update: Sat 24 Jan 2026 20:01:22 +0000 Manifest next update: Sun 25 Jan 2026 20:01:22 +0000 Files and hashes: 1: 0j0F9kmQvqg_Wqa6tZZ_ig5aPrY.roa (hash: /5aZUaFb1Ja/o4KmwSeu2OUe8eKw2Lkuk+p+cC8/zD4=) 2: 8Qo74UQPSqvugCWFfb9DBf7wKqE.roa (hash: M/pOvg/hdX2EdZ83UmfDv3mPILFnj+u5MLVly1CyGXs=) 3: dy9wNcKJOyjNBP0amzys0kKMjf0.crl (hash: iuoqAXX28NRbMIzq0qHiipP0q+u4ujgftuUtr0yCjLE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.crl rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.mft rsync://rpki.ripe.net/repository/DEFAULT/dy9wNcKJOyjNBP0amzys0kKMjf0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 20:01:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f1:98:d0:56:07:02:6d:80:2f:84:e7:a6:df:95:6d:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=772f7035c2893b28cd04fd1a9b3cacd2428c8dfd Validity Not Before: Jan 24 20:01:22 2026 GMT Not After : Jan 25 20:01:22 2026 GMT Subject: CN=bd486c8fe36425b2c641d787984ac9d0c34cd70a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:c9:e8:a7:ec:42:79:71:b7:4a:59:32:af:5d: 1c:aa:ea:ee:1a:3c:ef:a3:dd:03:7f:76:89:7a:23: 95:fe:16:ed:fb:87:1e:5a:bc:70:39:33:b4:ec:12: 25:67:5c:0f:9a:4d:8f:63:99:2d:88:49:53:28:fd: 9d:c1:b4:bf:e6:94:e2:fd:39:1e:db:0a:45:85:05: b0:6b:84:96:52:b8:24:36:f4:f8:c2:a9:72:45:e1: 27:b4:df:b7:af:b0:69:1c:d1:79:82:87:48:f2:da: e7:cf:ab:80:fb:28:b2:e4:20:a6:3e:b6:81:9e:fc: ed:3f:7b:03:4a:f4:77:f6:13:04:92:c5:66:f7:f6: b1:f1:86:59:db:36:ba:f5:09:e4:db:56:76:00:57: 49:c7:02:0f:2e:56:9c:8c:54:eb:9a:1d:d9:5f:a5: e2:ad:55:1f:a4:7a:2c:2f:fb:c9:7b:cf:67:11:de: f4:1e:41:9b:57:49:3b:ac:0e:d3:e0:55:e7:9d:36: d3:8d:6f:a9:08:24:66:13:bc:41:13:07:b3:c9:43: a7:57:07:c4:a5:eb:c9:df:c5:bf:45:d3:6b:06:c0: 53:76:31:67:26:3b:d1:d7:6d:03:d7:94:e1:67:f2: 8b:a1:f0:e8:04:04:a1:f7:69:2d:e5:1b:98:74:45: 70:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:48:6C:8F:E3:64:25:B2:C6:41:D7:87:98:4A:C9:D0:C3:4C:D7:0A X509v3 Authority Key Identifier: keyid:77:2F:70:35:C2:89:3B:28:CD:04:FD:1A:9B:3C:AC:D2:42:8C:8D:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dy9wNcKJOyjNBP0amzys0kKMjf0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ab:fa:ca:e3:10:10:87:9e:ae:ea:dd:4f:27:af:c3:df:a0:fb: 6e:d2:19:58:b8:2f:ff:3c:dd:6c:9c:1e:6a:ef:87:76:38:2d: a3:e5:02:d5:08:b5:06:5a:ef:c1:b3:41:ef:b6:87:41:3b:5a: dd:83:de:5d:6d:0b:1f:73:0f:a2:d1:b0:15:03:4a:3b:5b:49: 3e:bc:6d:9a:94:58:f9:75:3e:f9:2e:0c:fc:69:96:0e:65:fd: 49:ab:65:84:57:5e:37:84:98:fb:af:2d:6d:35:1c:1a:60:3a: 02:e3:79:05:74:21:0d:08:f4:e1:14:fe:92:25:24:34:07:45: 03:fd:fb:8d:c7:9b:02:9d:e2:4a:eb:58:4d:8e:c3:17:0d:84: b3:53:a2:69:37:6d:59:a2:e8:e9:8b:cc:3d:75:93:88:fa:98: 4d:93:8a:6f:7d:0d:b9:e6:e9:ba:b7:f3:10:c3:d7:a1:46:d0: d5:5b:9b:a7:96:5a:20:b3:e4:dc:6f:36:c4:69:34:7b:cb:a9: e9:b8:91:f0:db:30:c5:16:a7:8f:42:00:93:e9:ba:05:cf:66: 8d:40:f3:93:10:9b:14:24:7d:f4:4d:b3:c4:08:d9:45:63:ef: f2:6f:d3:8e:47:0a:74:23:14:21:90:7a:e1:65:10:80:95:f9: f1:12:08:fc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZvxmNBWBwJtgC+E56bflW0bMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc3MmY3MDM1YzI4OTNiMjhjZDA0ZmQxYTliM2NhY2QyNDI4 YzhkZmQwHhcNMjYwMTI0MjAwMTIyWhcNMjYwMTI1MjAwMTIyWjAzMTEwLwYDVQQD EyhiZDQ4NmM4ZmUzNjQyNWIyYzY0MWQ3ODc5ODRhYzlkMGMzNGNkNzBhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl8nop+xCeXG3Slkyr10cquruGjzv o90Df3aJeiOV/hbt+4ceWrxwOTO07BIlZ1wPmk2PY5ktiElTKP2dwbS/5pTi/Tke 2wpFhQWwa4SWUrgkNvT4wqlyReEntN+3r7BpHNF5godI8trnz6uA+yiy5CCmPraB nvztP3sDSvR39hMEksVm9/ax8YZZ2za69Qnk21Z2AFdJxwIPLlacjFTrmh3ZX6Xi rVUfpHosL/vJe89nEd70HkGbV0k7rA7T4FXnnTbTjW+pCCRmE7xBEwezyUOnVwfE pevJ38W/RdNrBsBTdjFnJjvR120D15ThZ/KLofDoBASh92kt5RuYdEVwqQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFL1IbI/jZCWyxkHXh5hKydDDTNcKMB8GA1UdIwQY MBaAFHcvcDXCiTsozQT9Gps8rNJCjI39MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZHk5d05jS0pPeWpOQlAwYW16eXMwa0tNamYwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi80MWVhZTAtNmI3Mi00NjI0LTljMjQt ODMwMzVhZmU0YTM3LzEvZHk5d05jS0pPeWpOQlAwYW16eXMwa0tNamYwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNi80MWVhZTAtNmI3Mi00NjI0LTljMjQtODMwMzVhZmU0YTM3 LzEvZHk5d05jS0pPeWpOQlAwYW16eXMwa0tNamYwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAq/rK4xAQ h56u6t1PJ6/D36D7btIZWLgv/zzdbJweau+Hdjgto+UC1Qi1BlrvwbNB77aHQTta 3YPeXW0LH3MPotGwFQNKO1tJPrxtmpRY+XU++S4M/GmWDmX9SatlhFdeN4SY+68t bTUcGmA6AuN5BXQhDQj04RT+kiUkNAdFA/37jcebAp3iSutYTY7DFw2Es1OiaTdt WaLo6YvMPXWTiPqYTZOKb30NuebpurfzEMPXoUbQ1Vubp5ZaILPk3G82xGk0e8up 6biR8NswxRanj0IAk+m6Bc9mjUDzkxCbFCR99E2zxAjZRWPv8m/TjkcKdCMUIZB6 4WUQgJX58RII/A== -----END CERTIFICATE-----Generated at Sun Jan 25 06:14:43 2026 by rpki-client