This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/463666-00e0-492e-a463-0128d97179e8/1/YnqZUJ7VHfk6M_Kk4v1mLRyNZgs.mft File: YnqZUJ7VHfk6M_Kk4v1mLRyNZgs.mft (raw, json) Hash identifier: RcrkmURfRIyll+rVnsh+EMBdAdN2aX65oEvpKrH4E6s= Subject key identifier: 97:FE:48:92:1D:58:4E:32:EB:3D:07:C0:93:B4:42:A8:D8:CD:8A:89 Authority key identifier: 62:7A:99:50:9E:D5:1D:F9:3A:33:F2:A4:E2:FD:66:2D:1C:8D:66:0B Certificate issuer: /CN=627a99509ed51df93a33f2a4e2fd662d1c8d660b Certificate serial: 019BF4622740F64A33F0D488598122C2048A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YnqZUJ7VHfk6M_Kk4v1mLRyNZgs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/463666-00e0-492e-a463-0128d97179e8/1/YnqZUJ7VHfk6M_Kk4v1mLRyNZgs.mft Manifest number: 03D5 Signing time: Sun 25 Jan 2026 09:00:31 +0000 Manifest this update: Sun 25 Jan 2026 09:00:31 +0000 Manifest next update: Mon 26 Jan 2026 09:00:31 +0000 Files and hashes: 1: EfXSoXJaCrM2oY0uZltd_MsMcGg.roa (hash: UdYFHNky4AHMOhO+Oudhljz1aWNykblXzASt3L7R1FM=) 2: YnqZUJ7VHfk6M_Kk4v1mLRyNZgs.crl (hash: Fcn+uA9RndRcCLflnoLSfh6PHxhrzvv1mcKnZjL1828=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/463666-00e0-492e-a463-0128d97179e8/1/YnqZUJ7VHfk6M_Kk4v1mLRyNZgs.crl rsync://rpki.ripe.net/repository/DEFAULT/5c/463666-00e0-492e-a463-0128d97179e8/1/YnqZUJ7VHfk6M_Kk4v1mLRyNZgs.mft rsync://rpki.ripe.net/repository/DEFAULT/YnqZUJ7VHfk6M_Kk4v1mLRyNZgs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 09:00:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f4:62:27:40:f6:4a:33:f0:d4:88:59:81:22:c2:04:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=627a99509ed51df93a33f2a4e2fd662d1c8d660b Validity Not Before: Jan 25 09:00:31 2026 GMT Not After : Jan 26 09:00:31 2026 GMT Subject: CN=97fe48921d584e32eb3d07c093b442a8d8cd8a89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:80:8f:7f:35:ae:6f:bd:b4:5a:b8:f9:0e:d9: 23:c8:17:e8:d9:3f:d0:6b:cd:cb:04:fb:1d:bb:c8: fd:18:40:c9:b9:33:5c:82:48:e6:28:49:5e:1e:e3: 28:39:ca:ae:be:2e:cc:ef:e8:6e:01:52:1f:11:b9: f7:eb:dd:a0:e6:b6:44:28:ec:35:bf:c7:e6:13:94: 2f:2c:5a:c5:49:f0:02:b0:dd:72:c0:16:96:62:ed: 35:ed:bf:7e:c2:01:d1:ac:5a:be:ce:ee:3e:c4:b8: 30:bd:f0:13:ca:b3:d6:bd:35:3b:bd:2c:18:54:42: 0b:c5:50:59:7f:ab:a9:29:06:3b:12:5d:32:d7:b7: be:f0:99:35:be:38:be:78:08:bd:fa:95:c2:c7:50: bd:6d:a6:bb:2d:8c:46:6b:c3:b3:3f:3c:f7:07:49: 26:cb:27:3e:26:c8:7d:02:16:ec:ca:5c:3d:73:cf: a4:dd:35:31:01:71:67:88:e3:a7:d0:dd:a6:77:41: ba:87:70:56:8e:3e:40:ea:c4:cf:d8:be:54:9e:46: ad:d5:33:ba:9e:e6:62:ee:30:7e:b0:26:fc:08:a2: eb:8b:47:1c:c3:c2:fc:2a:77:0f:9e:bf:e7:b8:92: c6:e3:67:62:cd:dc:7a:36:d2:48:90:a4:06:4e:08: 4e:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:FE:48:92:1D:58:4E:32:EB:3D:07:C0:93:B4:42:A8:D8:CD:8A:89 X509v3 Authority Key Identifier: keyid:62:7A:99:50:9E:D5:1D:F9:3A:33:F2:A4:E2:FD:66:2D:1C:8D:66:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YnqZUJ7VHfk6M_Kk4v1mLRyNZgs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/463666-00e0-492e-a463-0128d97179e8/1/YnqZUJ7VHfk6M_Kk4v1mLRyNZgs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/463666-00e0-492e-a463-0128d97179e8/1/YnqZUJ7VHfk6M_Kk4v1mLRyNZgs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0c:98:a4:a0:d9:53:a0:49:5d:7d:bd:67:99:f5:22:69:3f:0f: 84:0e:64:e1:13:7c:06:e8:ff:52:de:e5:c7:72:4e:dd:9d:27: 05:4f:73:3b:04:6a:78:6f:ff:80:8b:d9:b9:8c:4d:53:96:0f: 61:66:67:17:81:17:2f:aa:37:2b:95:96:da:15:8f:34:27:a3: 6e:ec:2a:df:21:38:6f:64:b5:de:48:f4:08:32:99:9d:72:a7: eb:8e:97:e7:50:2a:75:cc:d8:15:8c:db:ee:8c:50:62:93:04: 19:a0:c2:6d:b3:25:f4:20:bf:e7:18:46:02:0e:3c:dd:97:aa: 8c:c4:16:b6:7f:7b:c0:4b:57:ba:15:c4:ff:c0:eb:17:0f:56: 9e:c1:79:38:9b:74:27:35:38:8e:fa:af:e5:4b:33:1e:97:24: ab:da:5e:b0:7d:96:c5:a1:db:0c:ac:02:93:4c:d5:25:f7:bf: bf:46:99:74:07:4a:47:98:61:c2:4b:7c:64:ee:07:12:e0:c8: 3e:42:91:05:ab:d8:6a:ae:ee:11:6f:03:f0:c5:16:7f:c3:02: c3:55:c7:a6:a9:5c:01:a9:2a:e3:ed:ac:27:f7:ac:fe:09:bf: 45:60:87:5b:a3:c0:8e:8a:a0:11:a4:b0:f2:a2:12:fc:82:9f: bf:e7:46:fd -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv0YidA9koz8NSIWYEiwgSKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYyN2E5OTUwOWVkNTFkZjkzYTMzZjJhNGUyZmQ2NjJkMWM4 ZDY2MGIwHhcNMjYwMTI1MDkwMDMxWhcNMjYwMTI2MDkwMDMxWjAzMTEwLwYDVQQD Eyg5N2ZlNDg5MjFkNTg0ZTMyZWIzZDA3YzA5M2I0NDJhOGQ4Y2Q4YTg5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv4CPfzWub720Wrj5DtkjyBfo2T/Q a83LBPsdu8j9GEDJuTNcgkjmKEleHuMoOcquvi7M7+huAVIfEbn3692g5rZEKOw1 v8fmE5QvLFrFSfACsN1ywBaWYu017b9+wgHRrFq+zu4+xLgwvfATyrPWvTU7vSwY VEILxVBZf6upKQY7El0y17e+8Jk1vji+eAi9+pXCx1C9baa7LYxGa8OzPzz3B0km yyc+Jsh9Ahbsylw9c8+k3TUxAXFniOOn0N2md0G6h3BWjj5A6sTP2L5Unkat1TO6 nuZi7jB+sCb8CKLri0ccw8L8KncPnr/nuJLG42dizdx6NtJIkKQGTghOcwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJf+SJIdWE4y6z0HwJO0QqjYzYqJMB8GA1UdIwQY MBaAFGJ6mVCe1R35OjPypOL9Zi0cjWYLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWW5xWlVKN1ZIZms2TV9LazR2MW1MUnlOWmdzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yy80NjM2NjYtMDBlMC00OTJlLWE0NjMt MDEyOGQ5NzE3OWU4LzEvWW5xWlVKN1ZIZms2TV9LazR2MW1MUnlOWmdzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yy80NjM2NjYtMDBlMC00OTJlLWE0NjMtMDEyOGQ5NzE3OWU4 LzEvWW5xWlVKN1ZIZms2TV9LazR2MW1MUnlOWmdzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADJikoNlT oEldfb1nmfUiaT8PhA5k4RN8Buj/Ut7lx3JO3Z0nBU9zOwRqeG//gIvZuYxNU5YP YWZnF4EXL6o3K5WW2hWPNCejbuwq3yE4b2S13kj0CDKZnXKn646X51AqdczYFYzb 7oxQYpMEGaDCbbMl9CC/5xhGAg483ZeqjMQWtn97wEtXuhXE/8DrFw9WnsF5OJt0 JzU4jvqv5UszHpckq9pesH2WxaHbDKwCk0zVJfe/v0aZdAdKR5hhwkt8ZO4HEuDI PkKRBavYaq7uEW8D8MUWf8MCw1XHpqlcAakq4+2sJ/es/gm/RWCHW6PAjoqgEaSw 8qIS/IKfv+dG/Q== -----END CERTIFICATE-----Generated at Sun Jan 25 19:00:47 2026 by rpki-client