This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft File: ylF4miMTWsImjCKihWAKX5sFN3A.mft (raw, json) Hash identifier: CIGHCQQ9584LOXp0iJW6kDs50t1qa13HOo4W6DtVNP8= Subject key identifier: 5F:93:5E:6F:C4:EE:CB:95:7E:B1:3D:F5:16:37:C9:DA:6D:B2:50:6A Authority key identifier: CA:51:78:9A:23:13:5A:C2:26:8C:22:A2:85:60:0A:5F:9B:05:37:70 Certificate issuer: /CN=ca51789a23135ac2268c22a285600a5f9b053770 Certificate serial: 019BF5E345A250196BC80B1B5A54DA0A83B2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ylF4miMTWsImjCKihWAKX5sFN3A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft Manifest number: 1350 Signing time: Sun 25 Jan 2026 16:01:10 +0000 Manifest this update: Sun 25 Jan 2026 16:01:10 +0000 Manifest next update: Mon 26 Jan 2026 16:01:10 +0000 Files and hashes: 1: sr2F0zsExdSQr-zgnrk17i9FhUg.roa (hash: hKUfnAYzGISD3itupUfCkChJsvs636FejLl9Oqr8aQA=) 2: ylF4miMTWsImjCKihWAKX5sFN3A.crl (hash: LFuFUvZKVDKRtbe5V4egXtBnN1SVqUSuagCMVMyMBdQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.crl rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft rsync://rpki.ripe.net/repository/DEFAULT/ylF4miMTWsImjCKihWAKX5sFN3A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f5:e3:45:a2:50:19:6b:c8:0b:1b:5a:54:da:0a:83:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ca51789a23135ac2268c22a285600a5f9b053770 Validity Not Before: Jan 25 16:01:10 2026 GMT Not After : Jan 26 16:01:10 2026 GMT Subject: CN=5f935e6fc4eecb957eb13df51637c9da6db2506a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:96:03:b8:49:bf:74:39:10:89:9f:30:90:f7: c0:a9:1e:b6:e9:cb:84:67:72:88:ad:49:78:1c:c2: 41:a8:2f:69:8f:c8:e7:fc:5e:10:3b:3a:d1:dd:c6: 82:43:0a:16:b5:6b:ab:6b:52:e3:74:ee:b8:90:b1: 32:57:fb:40:43:d3:20:52:60:f5:e8:93:e1:e4:39: 24:aa:55:3e:7b:bf:5e:b0:c6:af:a9:c1:0c:fc:b5: 71:1c:d5:a7:b7:ef:a0:20:d4:b2:55:28:b7:d0:58: 3e:b4:27:f4:13:6e:66:3b:b1:c9:c2:00:eb:a6:0d: 92:7d:2f:65:84:6d:be:41:b2:e1:e9:0f:cf:9e:a4: ac:af:0d:6e:8b:0d:d8:8b:89:25:ae:34:25:fc:90: 78:ea:8c:4e:97:12:c1:ec:84:5b:11:57:21:cf:b7: 75:a0:56:b8:b2:14:eb:c3:ca:46:b5:16:8f:de:c3: 6d:23:39:03:0f:81:84:49:64:7b:22:a1:ad:fb:cc: d1:e8:0e:ee:d5:98:2f:6a:2d:58:ff:2d:6a:fa:bc: 33:43:26:62:ad:c9:e8:d1:f5:d4:d0:4e:69:c0:22: 01:25:b1:94:a7:32:80:7e:dd:c9:a5:b7:62:9a:c3: d5:2e:b4:ab:96:15:d1:ad:76:04:18:6d:46:e3:8a: b9:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:93:5E:6F:C4:EE:CB:95:7E:B1:3D:F5:16:37:C9:DA:6D:B2:50:6A X509v3 Authority Key Identifier: keyid:CA:51:78:9A:23:13:5A:C2:26:8C:22:A2:85:60:0A:5F:9B:05:37:70 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ylF4miMTWsImjCKihWAKX5sFN3A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1d:16:43:e9:de:00:e4:39:23:cc:5e:79:5d:c6:85:ac:3c:14: f6:6d:d1:ab:c4:88:e5:77:fe:57:cb:53:14:9f:db:73:21:c5: 1a:d4:63:ed:5b:75:51:28:8b:0a:e7:c3:d1:7c:45:01:ec:c3: 92:cc:b5:46:11:99:5b:94:3f:b6:9c:1a:be:7a:75:5c:29:72: 0f:c5:7a:28:dd:a4:81:35:4f:e5:90:9a:d6:ae:f9:00:56:93: b9:04:34:ee:20:ca:40:d8:ac:dc:66:3d:c9:c3:56:62:e0:40: aa:47:5e:8e:be:74:c2:e0:90:33:61:e3:63:07:95:cc:5d:18: 06:d0:7a:67:d4:3b:f0:b6:4a:6e:c5:2a:7d:a7:5f:0a:59:15: 52:10:b4:6d:8b:67:e8:d0:7c:06:0c:53:a4:53:31:95:7f:44: 09:e6:40:6a:c7:29:c6:13:b3:ee:55:57:f9:0c:4c:31:89:a0: ee:16:8a:24:e4:de:90:64:f7:85:24:1c:f8:bd:bc:64:98:20: 7a:9d:df:70:8e:c8:9a:22:44:07:14:fc:fb:b1:69:51:cc:75: e5:fe:75:41:a2:a3:47:cf:f6:57:8b:c5:a0:ed:f7:05:77:fc: 31:9d:d8:2e:96:53:a8:38:fb:80:a6:d2:b1:9c:67:6b:91:da: 60:bd:90:7f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv140WiUBlryAsbWlTaCoOyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNhNTE3ODlhMjMxMzVhYzIyNjhjMjJhMjg1NjAwYTVmOWIw NTM3NzAwHhcNMjYwMTI1MTYwMTEwWhcNMjYwMTI2MTYwMTEwWjAzMTEwLwYDVQQD Eyg1ZjkzNWU2ZmM0ZWVjYjk1N2ViMTNkZjUxNjM3YzlkYTZkYjI1MDZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoJYDuEm/dDkQiZ8wkPfAqR626cuE Z3KIrUl4HMJBqC9pj8jn/F4QOzrR3caCQwoWtWura1LjdO64kLEyV/tAQ9MgUmD1 6JPh5DkkqlU+e79esMavqcEM/LVxHNWnt++gINSyVSi30Fg+tCf0E25mO7HJwgDr pg2SfS9lhG2+QbLh6Q/PnqSsrw1uiw3Yi4klrjQl/JB46oxOlxLB7IRbEVchz7d1 oFa4shTrw8pGtRaP3sNtIzkDD4GESWR7IqGt+8zR6A7u1Zgvai1Y/y1q+rwzQyZi rcno0fXU0E5pwCIBJbGUpzKAft3JpbdimsPVLrSrlhXRrXYEGG1G44q5GwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFF+TXm/E7suVfrE99RY3ydptslBqMB8GA1UdIwQY MBaAFMpReJojE1rCJowiooVgCl+bBTdwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveWxGNG1pTVRXc0ltakNLaWhXQUtYNXNGTjNBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni9iNGJmNjAtZDU5My00MGQyLTk3ODMt MWUxOTE2OGY1ZDczLzEveWxGNG1pTVRXc0ltakNLaWhXQUtYNXNGTjNBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ni9iNGJmNjAtZDU5My00MGQyLTk3ODMtMWUxOTE2OGY1ZDcz LzEveWxGNG1pTVRXc0ltakNLaWhXQUtYNXNGTjNBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHRZD6d4A 5DkjzF55XcaFrDwU9m3Rq8SI5Xf+V8tTFJ/bcyHFGtRj7Vt1USiLCufD0XxFAezD ksy1RhGZW5Q/tpwavnp1XClyD8V6KN2kgTVP5ZCa1q75AFaTuQQ07iDKQNis3GY9 ycNWYuBAqkdejr50wuCQM2HjYweVzF0YBtB6Z9Q78LZKbsUqfadfClkVUhC0bYtn 6NB8BgxTpFMxlX9ECeZAascpxhOz7lVX+QxMMYmg7haKJOTekGT3hSQc+L28ZJgg ep3fcI7ImiJEBxT8+7FpUcx15f51QaKjR8/2V4vFoO33BXf8MZ3YLpZTqDj7gKbS sZxna5HaYL2Qfw== -----END CERTIFICATE-----Generated at Sun Jan 25 22:34:35 2026 by rpki-client