This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/decde3-277a-4956-bf92-f0a8123e70f9/1/YL83NiAUbm8piugtLIqDccrLexs.mft File: YL83NiAUbm8piugtLIqDccrLexs.mft (raw, json) Hash identifier: GnHCzzMq26llDx2NgNOzVvXfjhuhh+OOIpxWfJ6eEFM= Subject key identifier: EC:C9:2B:5E:AD:80:52:F0:94:2E:F7:78:DB:6A:3F:87:48:C3:E6:50 Authority key identifier: 60:BF:37:36:20:14:6E:6F:29:8A:E8:2D:2C:8A:83:71:CA:CB:7B:1B Certificate issuer: /CN=60bf373620146e6f298ae82d2c8a8371cacb7b1b Certificate serial: 019BF91BBCE1CCAFB7D8680471B03473C136 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YL83NiAUbm8piugtLIqDccrLexs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/decde3-277a-4956-bf92-f0a8123e70f9/1/YL83NiAUbm8piugtLIqDccrLexs.mft Manifest number: 17EA Signing time: Mon 26 Jan 2026 07:01:43 +0000 Manifest this update: Mon 26 Jan 2026 07:01:43 +0000 Manifest next update: Tue 27 Jan 2026 07:01:43 +0000 Files and hashes: 1: X2IqazocGBh2TzPpbjgU543EV3k.roa (hash: bpCuK7CG9CoRNnFqOKdhYMABq2l/U8E9Zuo+llQrjU0=) 2: YL83NiAUbm8piugtLIqDccrLexs.crl (hash: ghYN5uLB059PFMLv5JiD4EYi+FYiIBt7ip/RsHEcaw4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/decde3-277a-4956-bf92-f0a8123e70f9/1/YL83NiAUbm8piugtLIqDccrLexs.crl rsync://rpki.ripe.net/repository/DEFAULT/5b/decde3-277a-4956-bf92-f0a8123e70f9/1/YL83NiAUbm8piugtLIqDccrLexs.mft rsync://rpki.ripe.net/repository/DEFAULT/YL83NiAUbm8piugtLIqDccrLexs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 07:01:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f9:1b:bc:e1:cc:af:b7:d8:68:04:71:b0:34:73:c1:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=60bf373620146e6f298ae82d2c8a8371cacb7b1b Validity Not Before: Jan 26 07:01:43 2026 GMT Not After : Jan 27 07:01:43 2026 GMT Subject: CN=ecc92b5ead8052f0942ef778db6a3f8748c3e650 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:a7:b5:ef:3f:f8:8c:2b:55:83:55:9b:42:c9: b1:ee:8c:b9:ab:e0:c0:c1:ea:eb:15:d9:99:fa:21: 44:c0:6d:58:f8:c4:f8:a3:59:5e:40:14:5d:49:b0: f3:f5:91:f0:10:d5:99:23:dc:a5:9e:1d:59:7b:96: 66:b6:cb:bb:40:61:c3:47:f6:9e:ca:6b:e0:1a:5d: a5:0c:96:df:eb:dd:2b:3b:02:c5:61:10:15:a1:c6: fb:fb:e3:c5:6a:d2:6a:2a:e2:8e:08:14:b8:50:71: 13:ce:00:56:60:cc:cb:3c:fd:fd:b5:4b:13:2c:9b: f9:e4:ce:28:96:a7:94:50:a4:f3:19:0f:59:18:1c: 6e:d2:19:e8:9c:1d:eb:de:37:97:ec:e8:25:aa:12: 15:71:5a:54:d4:84:a2:9c:d1:25:0a:e9:bf:37:7b: 5a:77:c5:b4:a1:9d:ff:f8:09:8e:58:41:76:71:8b: b5:53:8f:42:b7:a6:db:75:f7:ba:2f:56:56:3a:3e: 10:aa:4f:db:78:c3:8f:71:ea:3c:52:0f:37:2a:06: 01:98:d0:31:cc:8f:61:c2:c8:99:80:b8:fd:de:16: f2:22:bd:86:7d:48:52:5c:f6:64:c7:e1:ed:a3:d1: 70:80:5b:be:f6:c4:a9:c5:d0:50:75:e3:06:9f:ac: 8d:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:C9:2B:5E:AD:80:52:F0:94:2E:F7:78:DB:6A:3F:87:48:C3:E6:50 X509v3 Authority Key Identifier: keyid:60:BF:37:36:20:14:6E:6F:29:8A:E8:2D:2C:8A:83:71:CA:CB:7B:1B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YL83NiAUbm8piugtLIqDccrLexs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/decde3-277a-4956-bf92-f0a8123e70f9/1/YL83NiAUbm8piugtLIqDccrLexs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/decde3-277a-4956-bf92-f0a8123e70f9/1/YL83NiAUbm8piugtLIqDccrLexs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6e:16:08:ea:56:b4:f6:58:21:3d:b4:59:ea:a7:64:3a:d3:65: fb:de:e6:ea:dc:e0:24:8b:bd:0c:24:f9:91:95:59:f3:bd:d6: a4:10:9a:04:5f:0d:c7:04:63:a3:5b:7a:7e:3c:b8:c9:eb:63: 33:16:40:77:f5:e0:74:18:ee:2d:0a:31:97:d0:1d:ed:3b:cf: ed:7c:d9:7d:97:10:5a:be:7d:3e:39:c2:d9:0a:90:48:a1:ef: 0a:c2:7c:e8:69:c4:45:2e:5b:78:9d:dc:c0:c7:1f:48:de:81: ae:27:e3:fe:54:02:a7:3d:46:42:c6:83:12:ef:36:48:ff:96: 3c:a9:a1:b6:b2:e2:37:40:dc:f3:cf:04:15:d9:02:19:e1:23: fa:1e:07:0e:63:d1:34:a3:2c:89:9d:59:ed:c8:2d:32:6e:31: c0:e6:8e:f3:e8:81:2c:5b:69:da:dc:fc:65:35:cc:be:1d:07: 9c:33:67:c1:4c:83:80:94:07:54:7b:8a:d8:6c:62:2b:eb:db: 8d:a2:e8:29:d0:8b:fe:45:7f:e2:7a:f3:14:51:94:c8:c3:1b: 32:43:30:ce:10:15:2a:43:62:64:4c:12:5d:82:85:5b:e6:8b: 17:03:e1:0b:b5:0a:bb:75:1c:76:03:a5:20:2a:74:1a:c7:42: f6:f9:fc:2c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv5G7zhzK+32GgEcbA0c8E2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwYmYzNzM2MjAxNDZlNmYyOThhZTgyZDJjOGE4MzcxY2Fj YjdiMWIwHhcNMjYwMTI2MDcwMTQzWhcNMjYwMTI3MDcwMTQzWjAzMTEwLwYDVQQD EyhlY2M5MmI1ZWFkODA1MmYwOTQyZWY3NzhkYjZhM2Y4NzQ4YzNlNjUwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2ae17z/4jCtVg1WbQsmx7oy5q+DA werrFdmZ+iFEwG1Y+MT4o1leQBRdSbDz9ZHwENWZI9ylnh1Ze5Zmtsu7QGHDR/ae ymvgGl2lDJbf690rOwLFYRAVocb7++PFatJqKuKOCBS4UHETzgBWYMzLPP39tUsT LJv55M4olqeUUKTzGQ9ZGBxu0hnonB3r3jeX7OglqhIVcVpU1ISinNElCum/N3ta d8W0oZ3/+AmOWEF2cYu1U49Ct6bbdfe6L1ZWOj4Qqk/beMOPceo8Ug83KgYBmNAx zI9hwsiZgLj93hbyIr2GfUhSXPZkx+Hto9FwgFu+9sSpxdBQdeMGn6yNrQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOzJK16tgFLwlC73eNtqP4dIw+ZQMB8GA1UdIwQY MBaAFGC/NzYgFG5vKYroLSyKg3HKy3sbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWUw4M05pQVVibThwaXVndExJcURjY3JMZXhzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi9kZWNkZTMtMjc3YS00OTU2LWJmOTIt ZjBhODEyM2U3MGY5LzEvWUw4M05pQVVibThwaXVndExJcURjY3JMZXhzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yi9kZWNkZTMtMjc3YS00OTU2LWJmOTItZjBhODEyM2U3MGY5 LzEvWUw4M05pQVVibThwaXVndExJcURjY3JMZXhzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbhYI6la0 9lghPbRZ6qdkOtNl+97m6tzgJIu9DCT5kZVZ873WpBCaBF8NxwRjo1t6fjy4yetj MxZAd/XgdBjuLQoxl9Ad7TvP7XzZfZcQWr59PjnC2QqQSKHvCsJ86GnERS5beJ3c wMcfSN6Brifj/lQCpz1GQsaDEu82SP+WPKmhtrLiN0Dc888EFdkCGeEj+h4HDmPR NKMsiZ1Z7cgtMm4xwOaO8+iBLFtp2tz8ZTXMvh0HnDNnwUyDgJQHVHuK2GxiK+vb jaLoKdCL/kV/4nrzFFGUyMMbMkMwzhAVKkNiZEwSXYKFW+aLFwPhC7UKu3UcdgOl ICp0GsdC9vn8LA== -----END CERTIFICATE-----Generated at Mon Jan 26 13:48:51 2026 by rpki-client