This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/3719f3-22e1-4344-9a39-458a2736157a/1/JY9ajila0de0ih4RlYeQBStXolM.mft File: JY9ajila0de0ih4RlYeQBStXolM.mft (raw, json) Hash identifier: UiWjEdNzmctdKM8PY7D0KqlnfwEuSz/a6KxMtfLkOCQ= Subject key identifier: 8B:ED:BD:2A:F9:1A:D8:C9:14:F8:92:78:8B:A1:B2:25:17:06:CE:6C Authority key identifier: 25:8F:5A:8E:29:5A:D1:D7:B4:8A:1E:11:95:87:90:05:2B:57:A2:53 Certificate issuer: /CN=258f5a8e295ad1d7b48a1e11958790052b57a253 Certificate serial: 019BF34FB67D40310023531875DC02039E47 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JY9ajila0de0ih4RlYeQBStXolM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/3719f3-22e1-4344-9a39-458a2736157a/1/JY9ajila0de0ih4RlYeQBStXolM.mft Manifest number: 173E Signing time: Sun 25 Jan 2026 04:00:45 +0000 Manifest this update: Sun 25 Jan 2026 04:00:45 +0000 Manifest next update: Mon 26 Jan 2026 04:00:45 +0000 Files and hashes: 1: JY9ajila0de0ih4RlYeQBStXolM.crl (hash: IQf+akKx6nWZt3zdp+pnmfXav9jfpbukIROu5r31AuI=) 2: XsoOkS5cVinDKGylaIEe4V2iJiI.roa (hash: yUEIW+aXADdubfFegT02HQm/MXVHfJjhRJSJMZb2fr0=) 3: d9SsK9JFe4erW3mFTzDPmAS0ODY.roa (hash: eDnr+btVqcRjIrpyGoGoaGlmtxJe33quRXxSlU0qhfA=) 4: lcmCUf_CgzeIR8L7taeEF8YZZn4.roa (hash: WXtKI31hDy0GKZrnRRKtBFDImlVMPaG1/eg9VugOcII=) 5: lhg5zVYrNMLRf5rtCyfanPHKWCo.roa (hash: tJ2WDHFTAECq/EoCtDCOE9Vj8E1Ebzh5Ex98VPbUM4A=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/3719f3-22e1-4344-9a39-458a2736157a/1/JY9ajila0de0ih4RlYeQBStXolM.crl rsync://rpki.ripe.net/repository/DEFAULT/3b/3719f3-22e1-4344-9a39-458a2736157a/1/JY9ajila0de0ih4RlYeQBStXolM.mft rsync://rpki.ripe.net/repository/DEFAULT/JY9ajila0de0ih4RlYeQBStXolM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 23:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f3:4f:b6:7d:40:31:00:23:53:18:75:dc:02:03:9e:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=258f5a8e295ad1d7b48a1e11958790052b57a253 Validity Not Before: Jan 25 04:00:45 2026 GMT Not After : Jan 26 04:00:45 2026 GMT Subject: CN=8bedbd2af91ad8c914f892788ba1b2251706ce6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:0d:10:8d:e8:0c:05:4d:58:14:8d:a3:13:e1: 8c:f9:8e:99:56:ce:c4:bd:93:4c:4d:7c:2a:46:11: c6:a2:df:13:3f:10:f6:77:20:23:02:8f:24:dc:5e: a2:33:4e:a5:2e:77:32:63:ab:b6:07:f2:8f:63:45: 35:cd:cd:80:5e:5a:1c:e5:14:17:85:83:76:81:0b: 7b:41:47:8c:8e:69:e1:63:47:57:db:21:dc:d2:5a: 49:29:87:fe:73:29:b6:b0:3d:21:dd:2c:52:c9:d4: 4b:b8:3b:c4:94:e3:d2:f0:be:a8:ae:96:65:25:ab: b8:06:20:d1:f0:7f:16:21:80:c8:87:65:e7:0d:d1: 7b:33:92:6b:f2:d0:d3:c1:a3:8e:0c:3c:ba:b6:de: aa:26:1e:ab:3b:94:b4:72:ea:0b:2f:2d:ec:23:da: d9:98:da:d4:08:09:30:ac:c2:1c:bf:60:4b:9d:43: b0:0c:f1:e3:c0:72:74:5e:de:95:48:8d:7a:df:c0: a0:e6:43:0d:ac:a6:b4:cb:d9:4d:1b:82:1e:e9:76: 2d:41:84:e4:b6:f1:8c:c0:27:f0:42:e0:a9:97:c8: 48:ec:a3:6b:fe:00:0a:bd:a1:4f:34:1a:7c:ff:88: dc:2c:9f:cb:bc:ed:d0:9f:be:e2:9f:a1:14:e7:96: 06:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:ED:BD:2A:F9:1A:D8:C9:14:F8:92:78:8B:A1:B2:25:17:06:CE:6C X509v3 Authority Key Identifier: keyid:25:8F:5A:8E:29:5A:D1:D7:B4:8A:1E:11:95:87:90:05:2B:57:A2:53 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JY9ajila0de0ih4RlYeQBStXolM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/3719f3-22e1-4344-9a39-458a2736157a/1/JY9ajila0de0ih4RlYeQBStXolM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/3719f3-22e1-4344-9a39-458a2736157a/1/JY9ajila0de0ih4RlYeQBStXolM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1a:e3:32:3e:4f:91:df:7e:e0:2f:d5:7b:19:51:84:71:bb:53: 88:35:1f:31:e2:5a:f2:54:97:c5:3f:3a:e0:ff:34:71:36:dd: 93:8b:55:6f:d9:22:01:98:47:c4:62:76:04:79:f0:e9:3f:0f: ac:c7:28:f3:d7:6e:a4:56:ca:bc:e9:47:43:d7:10:0c:9d:db: 99:1c:b5:ed:3b:ce:1d:cf:f2:6d:f2:45:1b:14:f8:06:69:77: f5:81:97:ce:50:6e:58:8a:1f:b8:17:30:72:e8:0f:7a:2d:d9: 25:3f:3f:be:f5:5a:4a:6e:1a:78:2c:35:87:8f:74:cc:3c:b6: 68:78:17:1f:2e:07:cc:a5:ed:98:ca:e2:c5:62:71:62:7d:80: 3d:fe:4d:82:ba:59:02:86:7d:78:e1:0b:d4:8f:5d:3c:66:80: 4d:e3:1e:c6:15:40:79:8d:75:de:29:bf:0a:0e:b5:aa:07:fa: d4:85:57:32:dc:fc:9f:34:9f:55:5d:3b:dd:fc:03:f8:e4:f0: 31:4f:bc:cf:0f:07:d7:0b:6a:e0:20:9b:03:2e:82:b7:4b:f7: f4:29:e5:73:17:19:99:82:c1:dd:28:87:c5:21:88:f1:40:3f: d4:f6:3f:da:ed:71:cf:0b:82:b0:2b:f4:d0:fe:c5:d2:d0:75: 65:a9:0f:ad -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZvzT7Z9QDEAI1MYddwCA55HMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI1OGY1YThlMjk1YWQxZDdiNDhhMWUxMTk1ODc5MDA1MmI1 N2EyNTMwHhcNMjYwMTI1MDQwMDQ1WhcNMjYwMTI2MDQwMDQ1WjAzMTEwLwYDVQQD Eyg4YmVkYmQyYWY5MWFkOGM5MTRmODkyNzg4YmExYjIyNTE3MDZjZTZjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjw0QjegMBU1YFI2jE+GM+Y6ZVs7E vZNMTXwqRhHGot8TPxD2dyAjAo8k3F6iM06lLncyY6u2B/KPY0U1zc2AXloc5RQX hYN2gQt7QUeMjmnhY0dX2yHc0lpJKYf+cym2sD0h3SxSydRLuDvElOPS8L6orpZl Jau4BiDR8H8WIYDIh2XnDdF7M5Jr8tDTwaOODDy6tt6qJh6rO5S0cuoLLy3sI9rZ mNrUCAkwrMIcv2BLnUOwDPHjwHJ0Xt6VSI1638Cg5kMNrKa0y9lNG4Ie6XYtQYTk tvGMwCfwQuCpl8hI7KNr/gAKvaFPNBp8/4jcLJ/LvO3Qn77in6EU55YGFQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIvtvSr5GtjJFPiSeIuhsiUXBs5sMB8GA1UdIwQY MBaAFCWPWo4pWtHXtIoeEZWHkAUrV6JTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSlk5YWppbGEwZGUwaWg0UmxZZVFCU3RYb2xNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYi8zNzE5ZjMtMjJlMS00MzQ0LTlhMzkt NDU4YTI3MzYxNTdhLzEvSlk5YWppbGEwZGUwaWg0UmxZZVFCU3RYb2xNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYi8zNzE5ZjMtMjJlMS00MzQ0LTlhMzktNDU4YTI3MzYxNTdh LzEvSlk5YWppbGEwZGUwaWg0UmxZZVFCU3RYb2xNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGuMyPk+R 337gL9V7GVGEcbtTiDUfMeJa8lSXxT864P80cTbdk4tVb9kiAZhHxGJ2BHnw6T8P rMco89dupFbKvOlHQ9cQDJ3bmRy17TvOHc/ybfJFGxT4Bml39YGXzlBuWIofuBcw cugPei3ZJT8/vvVaSm4aeCw1h490zDy2aHgXHy4HzKXtmMrixWJxYn2APf5NgrpZ AoZ9eOEL1I9dPGaATeMexhVAeY113im/Cg61qgf61IVXMtz8nzSfVV073fwD+OTw MU+8zw8H1wtq4CCbAy6Ct0v39CnlcxcZmYLB3SiHxSGI8UA/1PY/2u1xzwuCsCv0 0P7F0tB1ZakPrQ== -----END CERTIFICATE-----Generated at Sun Jan 25 09:43:24 2026 by rpki-client