This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.mft
File: dy9wNcKJOyjNBP0amzys0kKMjf0.mft (raw, json)
Hash identifier: i0J581y0XD88KJ/4mIJ2pU7uIsZnRP9RoZTcJfwLIq4=
Subject key identifier: BD:48:6C:8F:E3:64:25:B2:C6:41:D7:87:98:4A:C9:D0:C3:4C:D7:0A
Authority key identifier: 77:2F:70:35:C2:89:3B:28:CD:04:FD:1A:9B:3C:AC:D2:42:8C:8D:FD
Certificate issuer: /CN=772f7035c2893b28cd04fd1a9b3cacd2428c8dfd
Certificate serial: 019BF198D05607026D802F84E7A6DF956D1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dy9wNcKJOyjNBP0amzys0kKMjf0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.mft
Manifest number: 0502
Signing time: Sat 24 Jan 2026 20:01:22 +0000
Manifest this update: Sat 24 Jan 2026 20:01:22 +0000
Manifest next update: Sun 25 Jan 2026 20:01:22 +0000
Files and hashes: 1: 0j0F9kmQvqg_Wqa6tZZ_ig5aPrY.roa (hash: /5aZUaFb1Ja/o4KmwSeu2OUe8eKw2Lkuk+p+cC8/zD4=)
2: 8Qo74UQPSqvugCWFfb9DBf7wKqE.roa (hash: M/pOvg/hdX2EdZ83UmfDv3mPILFnj+u5MLVly1CyGXs=)
3: dy9wNcKJOyjNBP0amzys0kKMjf0.crl (hash: iuoqAXX28NRbMIzq0qHiipP0q+u4ujgftuUtr0yCjLE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.mft
rsync://rpki.ripe.net/repository/DEFAULT/dy9wNcKJOyjNBP0amzys0kKMjf0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 25 Jan 2026 20:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9b:f1:98:d0:56:07:02:6d:80:2f:84:e7:a6:df:95:6d:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=772f7035c2893b28cd04fd1a9b3cacd2428c8dfd
Validity
Not Before: Jan 24 20:01:22 2026 GMT
Not After : Jan 25 20:01:22 2026 GMT
Subject: CN=bd486c8fe36425b2c641d787984ac9d0c34cd70a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:c9:e8:a7:ec:42:79:71:b7:4a:59:32:af:5d:
1c:aa:ea:ee:1a:3c:ef:a3:dd:03:7f:76:89:7a:23:
95:fe:16:ed:fb:87:1e:5a:bc:70:39:33:b4:ec:12:
25:67:5c:0f:9a:4d:8f:63:99:2d:88:49:53:28:fd:
9d:c1:b4:bf:e6:94:e2:fd:39:1e:db:0a:45:85:05:
b0:6b:84:96:52:b8:24:36:f4:f8:c2:a9:72:45:e1:
27:b4:df:b7:af:b0:69:1c:d1:79:82:87:48:f2:da:
e7:cf:ab:80:fb:28:b2:e4:20:a6:3e:b6:81:9e:fc:
ed:3f:7b:03:4a:f4:77:f6:13:04:92:c5:66:f7:f6:
b1:f1:86:59:db:36:ba:f5:09:e4:db:56:76:00:57:
49:c7:02:0f:2e:56:9c:8c:54:eb:9a:1d:d9:5f:a5:
e2:ad:55:1f:a4:7a:2c:2f:fb:c9:7b:cf:67:11:de:
f4:1e:41:9b:57:49:3b:ac:0e:d3:e0:55:e7:9d:36:
d3:8d:6f:a9:08:24:66:13:bc:41:13:07:b3:c9:43:
a7:57:07:c4:a5:eb:c9:df:c5:bf:45:d3:6b:06:c0:
53:76:31:67:26:3b:d1:d7:6d:03:d7:94:e1:67:f2:
8b:a1:f0:e8:04:04:a1:f7:69:2d:e5:1b:98:74:45:
70:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:48:6C:8F:E3:64:25:B2:C6:41:D7:87:98:4A:C9:D0:C3:4C:D7:0A
X509v3 Authority Key Identifier:
keyid:77:2F:70:35:C2:89:3B:28:CD:04:FD:1A:9B:3C:AC:D2:42:8C:8D:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dy9wNcKJOyjNBP0amzys0kKMjf0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:fa:ca:e3:10:10:87:9e:ae:ea:dd:4f:27:af:c3:df:a0:fb:
6e:d2:19:58:b8:2f:ff:3c:dd:6c:9c:1e:6a:ef:87:76:38:2d:
a3:e5:02:d5:08:b5:06:5a:ef:c1:b3:41:ef:b6:87:41:3b:5a:
dd:83:de:5d:6d:0b:1f:73:0f:a2:d1:b0:15:03:4a:3b:5b:49:
3e:bc:6d:9a:94:58:f9:75:3e:f9:2e:0c:fc:69:96:0e:65:fd:
49:ab:65:84:57:5e:37:84:98:fb:af:2d:6d:35:1c:1a:60:3a:
02:e3:79:05:74:21:0d:08:f4:e1:14:fe:92:25:24:34:07:45:
03:fd:fb:8d:c7:9b:02:9d:e2:4a:eb:58:4d:8e:c3:17:0d:84:
b3:53:a2:69:37:6d:59:a2:e8:e9:8b:cc:3d:75:93:88:fa:98:
4d:93:8a:6f:7d:0d:b9:e6:e9:ba:b7:f3:10:c3:d7:a1:46:d0:
d5:5b:9b:a7:96:5a:20:b3:e4:dc:6f:36:c4:69:34:7b:cb:a9:
e9:b8:91:f0:db:30:c5:16:a7:8f:42:00:93:e9:ba:05:cf:66:
8d:40:f3:93:10:9b:14:24:7d:f4:4d:b3:c4:08:d9:45:63:ef:
f2:6f:d3:8e:47:0a:74:23:14:21:90:7a:e1:65:10:80:95:f9:
f1:12:08:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jan 25 06:14:43 2026 by rpki-client