This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/0716df-341b-4a08-a451-596225031ee3/1/zyJMhK66hZuQyJNsumFn7kxE7Oc.mft File: zyJMhK66hZuQyJNsumFn7kxE7Oc.mft (raw, json) Hash identifier: 7zFnjyKBeJEZ2zNExXlP18g3BobXdO0sE0KkT7uds4Y= Subject key identifier: EB:D9:B3:D4:6C:3A:E3:2E:7D:05:6E:23:A6:0B:34:07:1B:64:2F:C4 Authority key identifier: CF:22:4C:84:AE:BA:85:9B:90:C8:93:6C:BA:61:67:EE:4C:44:EC:E7 Certificate issuer: /CN=cf224c84aeba859b90c8936cba6167ee4c44ece7 Certificate serial: 019BF8765E000CF88F3BAF5B4BB6539352D0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zyJMhK66hZuQyJNsumFn7kxE7Oc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/0716df-341b-4a08-a451-596225031ee3/1/zyJMhK66hZuQyJNsumFn7kxE7Oc.mft Manifest number: 085D Signing time: Mon 26 Jan 2026 04:01:05 +0000 Manifest this update: Mon 26 Jan 2026 04:01:05 +0000 Manifest next update: Tue 27 Jan 2026 04:01:05 +0000 Files and hashes: 1: EeAR-0FuIgpREXK4CZj7bbiR324.roa (hash: nK35rOT9ZlV+vNlZLQE4MxQolHHOslBBZTHEZhrQ+LA=) 2: zyJMhK66hZuQyJNsumFn7kxE7Oc.crl (hash: Wmapvj99q+JwpzGZaRl2IjWA9mcUDt9cwZUL9IUvJwE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/0716df-341b-4a08-a451-596225031ee3/1/zyJMhK66hZuQyJNsumFn7kxE7Oc.crl rsync://rpki.ripe.net/repository/DEFAULT/5f/0716df-341b-4a08-a451-596225031ee3/1/zyJMhK66hZuQyJNsumFn7kxE7Oc.mft rsync://rpki.ripe.net/repository/DEFAULT/zyJMhK66hZuQyJNsumFn7kxE7Oc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f8:76:5e:00:0c:f8:8f:3b:af:5b:4b:b6:53:93:52:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cf224c84aeba859b90c8936cba6167ee4c44ece7 Validity Not Before: Jan 26 04:01:05 2026 GMT Not After : Jan 27 04:01:05 2026 GMT Subject: CN=ebd9b3d46c3ae32e7d056e23a60b34071b642fc4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:9e:40:bd:25:f6:d7:62:75:53:c9:10:54:77: 0f:63:4d:c2:8e:5f:4d:7e:0d:9a:ec:35:f8:15:45: 89:b3:96:1a:67:dd:2a:90:9f:63:81:03:98:2d:22: 07:dc:56:11:90:76:21:b8:ba:1e:10:e8:b2:28:db: 34:1a:03:40:72:0a:8c:9b:4b:e4:89:75:2b:49:4c: a1:da:df:84:05:1d:2c:bf:3d:b9:78:ae:6e:75:8a: 6f:c9:61:fd:60:8d:54:bc:56:7c:61:fb:ab:ab:26: 9d:cb:fc:c1:28:f3:1e:68:50:fe:c3:85:11:c4:79: fc:de:2d:1a:a5:8c:7e:13:ea:7f:67:b0:77:e4:fa: e0:43:dd:1f:c2:86:ff:de:d8:96:d7:9d:61:57:12: 8f:ef:56:78:70:cc:5c:4c:5e:f2:a6:d4:a7:c3:f5: 5a:5a:16:b3:92:ea:d9:89:1b:c8:87:2c:13:80:40: 9b:0e:48:68:1b:90:b6:b3:cc:45:88:c6:a3:68:e4: e0:75:0f:8d:1f:19:5e:df:69:51:83:a4:64:86:0b: d9:47:99:bd:ac:16:58:5f:59:6e:cd:f2:57:f0:e5: 02:ab:27:dc:9a:c7:64:3c:04:33:9b:41:d4:78:f1: 3e:f3:ab:13:85:be:df:23:7c:d4:8b:89:a9:e8:b9: 20:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:D9:B3:D4:6C:3A:E3:2E:7D:05:6E:23:A6:0B:34:07:1B:64:2F:C4 X509v3 Authority Key Identifier: keyid:CF:22:4C:84:AE:BA:85:9B:90:C8:93:6C:BA:61:67:EE:4C:44:EC:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zyJMhK66hZuQyJNsumFn7kxE7Oc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/0716df-341b-4a08-a451-596225031ee3/1/zyJMhK66hZuQyJNsumFn7kxE7Oc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/0716df-341b-4a08-a451-596225031ee3/1/zyJMhK66hZuQyJNsumFn7kxE7Oc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6d:a6:96:b5:f1:e7:ab:db:dc:e4:d3:e6:56:7a:23:6a:da:8b: 9b:06:e8:e0:53:5f:60:3e:db:97:83:0f:ad:63:dd:4a:44:cb: c9:92:d4:05:e7:cd:06:50:7c:08:c8:d0:8a:32:18:75:ce:66: bf:1e:32:fc:54:24:d2:94:11:2e:37:00:1f:8a:ee:65:1d:66: 59:f7:50:47:9a:4f:2f:fc:e6:b0:af:38:91:8e:12:27:f0:c4: 3f:94:08:31:3c:28:e2:8b:32:1b:5d:93:d7:82:3b:99:cb:47: ac:80:13:00:5f:63:42:c0:a4:a3:e5:a3:6b:39:86:f0:7b:97: 68:f9:f5:35:b9:c9:2b:17:32:75:03:b9:df:a6:76:72:39:13: a5:6d:95:c9:d2:84:0a:f6:5e:6d:27:b0:f6:55:e6:c4:86:35: 3d:36:c1:a4:b3:7a:1f:61:06:4a:44:be:cf:bb:41:e3:cc:ff: 59:c6:19:66:e3:6b:c5:f4:3d:cd:f5:1c:f1:06:fe:b7:04:74: 9a:60:be:aa:b6:32:93:ab:dc:f4:f0:ad:7d:0f:4c:0c:97:44: 1b:02:83:31:e1:09:77:e8:e6:42:ac:d4:5b:61:8a:59:4e:a7: a0:b3:e7:a0:1f:f8:80:70:58:41:6b:8e:53:37:0b:c9:d4:08: 1e:b3:79:ac -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv4dl4ADPiPO69bS7ZTk1LQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNmMjI0Yzg0YWViYTg1OWI5MGM4OTM2Y2JhNjE2N2VlNGM0 NGVjZTcwHhcNMjYwMTI2MDQwMTA1WhcNMjYwMTI3MDQwMTA1WjAzMTEwLwYDVQQD EyhlYmQ5YjNkNDZjM2FlMzJlN2QwNTZlMjNhNjBiMzQwNzFiNjQyZmM0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvZ5AvSX212J1U8kQVHcPY03Cjl9N fg2a7DX4FUWJs5YaZ90qkJ9jgQOYLSIH3FYRkHYhuLoeEOiyKNs0GgNAcgqMm0vk iXUrSUyh2t+EBR0svz25eK5udYpvyWH9YI1UvFZ8Yfurqyady/zBKPMeaFD+w4UR xHn83i0apYx+E+p/Z7B35PrgQ90fwob/3tiW151hVxKP71Z4cMxcTF7yptSnw/Va WhazkurZiRvIhywTgECbDkhoG5C2s8xFiMajaOTgdQ+NHxle32lRg6RkhgvZR5m9 rBZYX1luzfJX8OUCqyfcmsdkPAQzm0HUePE+86sThb7fI3zUi4mp6Lkg2QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOvZs9RsOuMufQVuI6YLNAcbZC/EMB8GA1UdIwQY MBaAFM8iTISuuoWbkMiTbLphZ+5MROznMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvenlKTWhLNjZoWnVReUpOc3VtRm43a3hFN09jLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi8wNzE2ZGYtMzQxYi00YTA4LWE0NTEt NTk2MjI1MDMxZWUzLzEvenlKTWhLNjZoWnVReUpOc3VtRm43a3hFN09jLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Zi8wNzE2ZGYtMzQxYi00YTA4LWE0NTEtNTk2MjI1MDMxZWUz LzEvenlKTWhLNjZoWnVReUpOc3VtRm43a3hFN09jLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbaaWtfHn q9vc5NPmVnojatqLmwbo4FNfYD7bl4MPrWPdSkTLyZLUBefNBlB8CMjQijIYdc5m vx4y/FQk0pQRLjcAH4ruZR1mWfdQR5pPL/zmsK84kY4SJ/DEP5QIMTwo4osyG12T 14I7mctHrIATAF9jQsCko+WjazmG8HuXaPn1NbnJKxcydQO536Z2cjkTpW2VydKE CvZebSew9lXmxIY1PTbBpLN6H2EGSkS+z7tB48z/WcYZZuNrxfQ9zfUc8Qb+twR0 mmC+qrYyk6vc9PCtfQ9MDJdEGwKDMeEJd+jmQqzUW2GKWU6noLPnoB/4gHBYQWuO UzcLydQIHrN5rA== -----END CERTIFICATE-----Generated at Mon Jan 26 09:02:49 2026 by rpki-client