This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/82491b-8caf-481b-b146-601a58f63393/1/YMZLBPqPX-5oZvXHn499zqUBJRU.mft File: YMZLBPqPX-5oZvXHn499zqUBJRU.mft (raw, json) Hash identifier: XtzHsg03oiDYmiHTmlzEJJ7W1p7iO+jOnzmYSglP4bE= Subject key identifier: 8C:BC:0C:52:1C:42:B1:B9:10:D7:B4:DB:3E:65:91:42:44:23:BD:29 Authority key identifier: 60:C6:4B:04:FA:8F:5F:EE:68:66:F5:C7:9F:8F:7D:CE:A5:01:25:15 Certificate issuer: /CN=60c64b04fa8f5fee6866f5c79f8f7dcea5012515 Certificate serial: 019BF6F581DC379BAEC75642A8D25B45ED6A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YMZLBPqPX-5oZvXHn499zqUBJRU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/82491b-8caf-481b-b146-601a58f63393/1/YMZLBPqPX-5oZvXHn499zqUBJRU.mft Manifest number: 13D9 Signing time: Sun 25 Jan 2026 21:00:43 +0000 Manifest this update: Sun 25 Jan 2026 21:00:43 +0000 Manifest next update: Mon 26 Jan 2026 21:00:43 +0000 Files and hashes: 1: 5eILOK-1-Suo2fVqfn_W0lL0-TQ.roa (hash: NzVDzsu+Kq+X+04Ws4gqYwLVPdBaLiyudai4ILZxsxg=) 2: YMZLBPqPX-5oZvXHn499zqUBJRU.crl (hash: di6fmPOoT+uSUIE7RroJNjAibj4ulzYSLnvkrPpZwxI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/82491b-8caf-481b-b146-601a58f63393/1/YMZLBPqPX-5oZvXHn499zqUBJRU.crl rsync://rpki.ripe.net/repository/DEFAULT/36/82491b-8caf-481b-b146-601a58f63393/1/YMZLBPqPX-5oZvXHn499zqUBJRU.mft rsync://rpki.ripe.net/repository/DEFAULT/YMZLBPqPX-5oZvXHn499zqUBJRU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 21:00:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f6:f5:81:dc:37:9b:ae:c7:56:42:a8:d2:5b:45:ed:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=60c64b04fa8f5fee6866f5c79f8f7dcea5012515 Validity Not Before: Jan 25 21:00:43 2026 GMT Not After : Jan 26 21:00:43 2026 GMT Subject: CN=8cbc0c521c42b1b910d7b4db3e6591424423bd29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:b9:40:ee:57:f5:a3:c5:5e:4b:0a:52:48:26: 0e:8b:d2:29:f3:ca:38:1a:af:cc:33:15:ac:20:30: a4:45:ae:c8:dc:fa:63:32:f7:41:c7:ed:08:2f:50: 00:03:2c:6c:96:ef:76:23:07:91:e4:98:eb:e5:3f: d9:03:b7:7b:e1:7a:d0:0e:7d:ad:bf:66:63:3e:32: cc:83:48:bf:22:b6:8d:25:21:49:54:bb:44:68:98: 21:89:58:97:85:3d:d6:c3:dd:85:31:34:10:14:7c: bf:6f:70:25:a3:2d:24:01:25:41:de:4f:82:88:5d: e7:b9:05:61:79:74:2b:d0:71:7b:4a:08:54:40:9e: af:07:0c:f3:e1:c9:51:ef:93:40:43:28:c5:bd:5f: 43:5d:83:86:6f:71:9f:58:2b:25:4a:34:53:68:a0: 1e:a4:57:7b:85:eb:b1:f2:6f:fa:87:e1:61:62:4e: d6:64:27:eb:4a:5a:5b:04:14:98:b0:f2:cd:d6:20: 09:26:de:c4:8d:47:3f:a7:98:6e:5d:3c:6b:eb:49: 85:25:ab:00:a6:34:1f:09:6c:e8:a2:de:2d:fc:09: 28:3b:b2:d5:6c:43:3e:67:d6:f4:a8:af:b8:e7:49: 54:70:2b:a9:0d:81:e5:51:6f:58:ef:bb:91:16:39: da:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:BC:0C:52:1C:42:B1:B9:10:D7:B4:DB:3E:65:91:42:44:23:BD:29 X509v3 Authority Key Identifier: keyid:60:C6:4B:04:FA:8F:5F:EE:68:66:F5:C7:9F:8F:7D:CE:A5:01:25:15 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YMZLBPqPX-5oZvXHn499zqUBJRU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/82491b-8caf-481b-b146-601a58f63393/1/YMZLBPqPX-5oZvXHn499zqUBJRU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/36/82491b-8caf-481b-b146-601a58f63393/1/YMZLBPqPX-5oZvXHn499zqUBJRU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6e:2e:91:13:d6:fe:00:8f:4a:20:4c:d0:8a:39:f5:58:1a:c1: da:95:4a:1a:d3:20:82:09:c1:4b:f6:e5:71:9f:d1:7c:1a:ff: 71:9a:43:63:e9:55:5b:6e:b3:37:27:03:c4:20:19:a3:b9:33: ca:b8:86:ac:4b:b6:49:b8:16:e8:6a:03:e6:fa:31:59:54:5e: ca:2f:70:da:b8:50:92:6d:53:86:39:69:0e:38:2a:38:fa:1b: a7:78:70:66:34:67:3e:ce:98:3e:66:96:f6:c1:ea:75:db:7f: e1:c7:35:b0:10:95:16:53:6f:f0:e7:3e:94:ca:65:7a:dc:c9: 11:91:7e:2b:11:8e:6d:de:9f:60:c9:3e:7b:3c:09:bd:74:a9: 2d:e4:d7:8f:24:27:66:04:30:21:d0:e3:c7:f3:2f:0b:5c:79: ed:2e:fa:d3:4c:c6:26:ca:78:f9:c5:5b:2f:f0:90:68:03:7d: ac:e9:48:aa:ea:d5:4b:b5:42:1b:4f:56:80:82:42:7e:f3:db: 08:64:5c:c0:7c:8b:5f:b6:d4:4a:4d:03:40:c4:93:ac:b0:2a: d7:d2:ee:02:ec:57:ac:7d:bb:42:cb:3e:f4:a9:b0:9c:e8:c7: c7:18:d4:d3:46:e8:c1:22:a6:a5:8a:cf:2c:9b:be:1c:15:77: 1d:c6:9e:83 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv29YHcN5uux1ZCqNJbRe1qMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwYzY0YjA0ZmE4ZjVmZWU2ODY2ZjVjNzlmOGY3ZGNlYTUw MTI1MTUwHhcNMjYwMTI1MjEwMDQzWhcNMjYwMTI2MjEwMDQzWjAzMTEwLwYDVQQD Eyg4Y2JjMGM1MjFjNDJiMWI5MTBkN2I0ZGIzZTY1OTE0MjQ0MjNiZDI5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3rlA7lf1o8VeSwpSSCYOi9Ip88o4 Gq/MMxWsIDCkRa7I3PpjMvdBx+0IL1AAAyxslu92IweR5Jjr5T/ZA7d74XrQDn2t v2ZjPjLMg0i/IraNJSFJVLtEaJghiViXhT3Ww92FMTQQFHy/b3Aloy0kASVB3k+C iF3nuQVheXQr0HF7SghUQJ6vBwzz4clR75NAQyjFvV9DXYOGb3GfWCslSjRTaKAe pFd7heux8m/6h+FhYk7WZCfrSlpbBBSYsPLN1iAJJt7EjUc/p5huXTxr60mFJasA pjQfCWzoot4t/AkoO7LVbEM+Z9b0qK+450lUcCupDYHlUW9Y77uRFjnaOwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIy8DFIcQrG5ENe02z5lkUJEI70pMB8GA1UdIwQY MBaAFGDGSwT6j1/uaGb1x5+Pfc6lASUVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWU1aTEJQcVBYLTVvWnZYSG40OTl6cVVCSlJVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi84MjQ5MWItOGNhZi00ODFiLWIxNDYt NjAxYTU4ZjYzMzkzLzEvWU1aTEJQcVBYLTVvWnZYSG40OTl6cVVCSlJVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNi84MjQ5MWItOGNhZi00ODFiLWIxNDYtNjAxYTU4ZjYzMzkz LzEvWU1aTEJQcVBYLTVvWnZYSG40OTl6cVVCSlJVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbi6RE9b+ AI9KIEzQijn1WBrB2pVKGtMgggnBS/blcZ/RfBr/cZpDY+lVW26zNycDxCAZo7kz yriGrEu2SbgW6GoD5voxWVReyi9w2rhQkm1ThjlpDjgqOPobp3hwZjRnPs6YPmaW 9sHqddt/4cc1sBCVFlNv8Oc+lMpletzJEZF+KxGObd6fYMk+ezwJvXSpLeTXjyQn ZgQwIdDjx/MvC1x57S7600zGJsp4+cVbL/CQaAN9rOlIqurVS7VCG09WgIJCfvPb CGRcwHyLX7bUSk0DQMSTrLAq19LuAuxXrH27Qss+9KmwnOjHxxjU00bowSKmpYrP LJu+HBV3Hcaegw== -----END CERTIFICATE-----Generated at Mon Jan 26 06:41:31 2026 by rpki-client