This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/317635-a90a-4704-9672-15f62c890af8/1/0LYdHx2czatrbY4UUMLJNtOX5nA.mft File: 0LYdHx2czatrbY4UUMLJNtOX5nA.mft (raw, json) Hash identifier: /8qu9vp75TjOyOhtDEG91jXP9dynz1b2LRqpzl9nIjc= Subject key identifier: 8E:9F:F9:79:76:68:C6:5A:25:AE:FB:98:A4:D5:5F:93:73:7F:29:DB Authority key identifier: D0:B6:1D:1F:1D:9C:CD:AB:6B:6D:8E:14:50:C2:C9:36:D3:97:E6:70 Certificate issuer: /CN=d0b61d1f1d9ccdab6b6d8e1450c2c936d397e670 Certificate serial: 019BF31915C358BA0EC0993916D69BDDCE20 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0LYdHx2czatrbY4UUMLJNtOX5nA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/317635-a90a-4704-9672-15f62c890af8/1/0LYdHx2czatrbY4UUMLJNtOX5nA.mft Manifest number: 04D0 Signing time: Sun 25 Jan 2026 03:01:05 +0000 Manifest this update: Sun 25 Jan 2026 03:01:05 +0000 Manifest next update: Mon 26 Jan 2026 03:01:05 +0000 Files and hashes: 1: 0LYdHx2czatrbY4UUMLJNtOX5nA.crl (hash: Z5YmM+q8fdTCkhn75bO/ASUQLSokDUey/a3qCPeWN2Q=) 2: gsxO8hOiEkXCM1i9eWWVi_EIP-w.roa (hash: 0vewDMjbmpcQ0vYHjmQUTrmmCvscuwGpqx8flzvaHZ8=) 3: xCGczuPkOcOWIT1JIe1RYVcQGjI.roa (hash: 7YvkyIU5UcVg1yEPICNWA5XUte8Vhs4MketRLoQiuYM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/46/317635-a90a-4704-9672-15f62c890af8/1/0LYdHx2czatrbY4UUMLJNtOX5nA.crl rsync://rpki.ripe.net/repository/DEFAULT/46/317635-a90a-4704-9672-15f62c890af8/1/0LYdHx2czatrbY4UUMLJNtOX5nA.mft rsync://rpki.ripe.net/repository/DEFAULT/0LYdHx2czatrbY4UUMLJNtOX5nA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 03:01:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f3:19:15:c3:58:ba:0e:c0:99:39:16:d6:9b:dd:ce:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d0b61d1f1d9ccdab6b6d8e1450c2c936d397e670 Validity Not Before: Jan 25 03:01:05 2026 GMT Not After : Jan 26 03:01:05 2026 GMT Subject: CN=8e9ff9797668c65a25aefb98a4d55f93737f29db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:fa:37:cd:01:e4:d3:22:cd:4c:a4:a5:5b:6f: f0:87:ae:9d:c4:20:ff:d1:d2:f1:b3:23:89:73:78: 53:4c:62:4f:92:30:d0:81:23:50:3e:79:4a:b7:3d: d1:ab:98:70:40:19:ea:91:2b:ae:51:70:a2:ff:9a: 53:d8:33:6e:79:7b:65:1f:d2:64:40:b9:a9:51:36: c3:68:85:ed:c3:42:f7:fa:81:10:99:df:26:94:d4: 4c:ed:78:37:3c:9c:08:89:78:33:23:d7:9a:36:27: 02:26:94:79:d5:1d:f4:5b:1a:7b:fe:ee:70:b5:c8: ba:c7:af:ae:99:36:57:b5:1b:d1:79:5b:d7:60:66: 82:ae:53:9d:a9:60:6c:17:d2:b9:4e:4c:db:81:e9: bc:bb:cc:66:df:dd:f9:23:05:2b:19:dd:c6:c8:d5: 75:85:7f:7e:ef:ce:c1:a0:6a:59:02:5e:d1:d6:77: d8:2f:51:13:2a:a5:7a:b4:c9:2b:65:e7:1f:9b:be: b0:b8:93:0c:24:67:cf:8b:f2:7c:cf:a3:3e:7c:05: e0:a6:8b:5a:08:f4:3f:31:5a:07:73:ff:d3:b6:f1: 8f:7c:83:a5:bd:fb:b9:8f:87:4b:e4:f5:14:06:26: c9:62:11:0c:26:7d:4e:6b:f3:cd:ab:27:d1:a3:29: 2b:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:9F:F9:79:76:68:C6:5A:25:AE:FB:98:A4:D5:5F:93:73:7F:29:DB X509v3 Authority Key Identifier: keyid:D0:B6:1D:1F:1D:9C:CD:AB:6B:6D:8E:14:50:C2:C9:36:D3:97:E6:70 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0LYdHx2czatrbY4UUMLJNtOX5nA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/317635-a90a-4704-9672-15f62c890af8/1/0LYdHx2czatrbY4UUMLJNtOX5nA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/46/317635-a90a-4704-9672-15f62c890af8/1/0LYdHx2czatrbY4UUMLJNtOX5nA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 08:30:5c:77:7e:8a:b9:fc:08:59:74:b5:76:a1:de:32:b0:35: 6a:61:4d:a6:57:0f:94:54:f2:35:b0:ce:d0:ca:8e:43:8e:3d: 34:92:06:67:db:01:60:fb:11:71:b4:24:3a:e6:ce:1b:f6:cf: 47:39:e2:e6:e9:36:21:e3:d2:fe:e2:37:92:19:0f:2d:7d:d9: 01:67:7e:b5:44:68:b1:6d:b8:98:0f:78:1a:06:a5:ad:0a:1d: 6c:a1:d7:6d:70:f6:fd:10:f9:f4:ab:b3:07:5b:33:a4:65:9c: 40:0a:cc:4f:ef:da:10:07:cf:51:69:92:06:84:30:2a:ee:ed: 6c:f1:52:ab:5b:bb:0e:52:95:ca:a0:81:30:3b:8a:cb:e1:b6: bc:fe:4b:9b:4d:a1:82:05:d5:e4:d5:d8:a0:12:1a:0e:d5:cb: 1d:a1:db:72:2b:e5:54:16:c7:03:dc:43:18:91:8a:8a:6b:11: 78:21:f7:33:32:eb:a0:63:cd:14:78:18:7a:13:5a:ab:6e:81: b5:a2:58:d3:54:79:37:e5:1f:fa:b9:43:d1:7c:77:02:8d:b1: a9:7d:7e:ee:57:65:92:17:9b:c0:d5:eb:0b:f4:3c:13:e6:8e: 24:ab:5b:3e:88:a9:c3:df:13:13:0c:d0:a9:38:96:06:a1:24: 89:16:31:23 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZvzGRXDWLoOwJk5Ftab3c4gMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQwYjYxZDFmMWQ5Y2NkYWI2YjZkOGUxNDUwYzJjOTM2ZDM5 N2U2NzAwHhcNMjYwMTI1MDMwMTA1WhcNMjYwMTI2MDMwMTA1WjAzMTEwLwYDVQQD Eyg4ZTlmZjk3OTc2NjhjNjVhMjVhZWZiOThhNGQ1NWY5MzczN2YyOWRiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6fo3zQHk0yLNTKSlW2/wh66dxCD/ 0dLxsyOJc3hTTGJPkjDQgSNQPnlKtz3Rq5hwQBnqkSuuUXCi/5pT2DNueXtlH9Jk QLmpUTbDaIXtw0L3+oEQmd8mlNRM7Xg3PJwIiXgzI9eaNicCJpR51R30Wxp7/u5w tci6x6+umTZXtRvReVvXYGaCrlOdqWBsF9K5Tkzbgem8u8xm3935IwUrGd3GyNV1 hX9+787BoGpZAl7R1nfYL1ETKqV6tMkrZecfm76wuJMMJGfPi/J8z6M+fAXgpota CPQ/MVoHc//TtvGPfIOlvfu5j4dL5PUUBibJYhEMJn1Oa/PNqyfRoykrZQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFI6f+Xl2aMZaJa77mKTVX5NzfynbMB8GA1UdIwQY MBaAFNC2HR8dnM2ra22OFFDCyTbTl+ZwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMExZZEh4MmN6YXRyYlk0VVVNTEpOdE9YNW5BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ni8zMTc2MzUtYTkwYS00NzA0LTk2NzIt MTVmNjJjODkwYWY4LzEvMExZZEh4MmN6YXRyYlk0VVVNTEpOdE9YNW5BLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Ni8zMTc2MzUtYTkwYS00NzA0LTk2NzItMTVmNjJjODkwYWY4 LzEvMExZZEh4MmN6YXRyYlk0VVVNTEpOdE9YNW5BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACDBcd36K ufwIWXS1dqHeMrA1amFNplcPlFTyNbDO0MqOQ449NJIGZ9sBYPsRcbQkOubOG/bP Rzni5uk2IePS/uI3khkPLX3ZAWd+tURosW24mA94GgalrQodbKHXbXD2/RD59Kuz B1szpGWcQArMT+/aEAfPUWmSBoQwKu7tbPFSq1u7DlKVyqCBMDuKy+G2vP5Lm02h ggXV5NXYoBIaDtXLHaHbcivlVBbHA9xDGJGKimsReCH3MzLroGPNFHgYehNaq26B taJY01R5N+Uf+rlD0Xx3Ao2xqX1+7ldlkhebwNXrC/Q8E+aOJKtbPoipw98TEwzQ qTiWBqEkiRYxIw== -----END CERTIFICATE-----Generated at Sun Jan 25 11:49:59 2026 by rpki-client