This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/279b66-38f1-41a5-90e2-946da5f5efbb/1/ymFHjk1lm-zoIDxei6jo-C8EcNc.mft File: ymFHjk1lm-zoIDxei6jo-C8EcNc.mft (raw, json) Hash identifier: s13onScmV+jTtV1kdyPqKn19kSN1umyR98cDPN8c0bE= Subject key identifier: 48:D5:45:ED:BD:06:52:8D:52:16:FE:E0:C0:30:76:50:5A:9F:B4:FE Authority key identifier: CA:61:47:8E:4D:65:9B:EC:E8:20:3C:5E:8B:A8:E8:F8:2F:04:70:D7 Certificate issuer: /CN=ca61478e4d659bece8203c5e8ba8e8f82f0470d7 Certificate serial: 019BF688316662AF46EDC0C10C5427E8EF7C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ymFHjk1lm-zoIDxei6jo-C8EcNc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/279b66-38f1-41a5-90e2-946da5f5efbb/1/ymFHjk1lm-zoIDxei6jo-C8EcNc.mft Manifest number: 020C Signing time: Sun 25 Jan 2026 19:01:19 +0000 Manifest this update: Sun 25 Jan 2026 19:01:19 +0000 Manifest next update: Mon 26 Jan 2026 19:01:19 +0000 Files and hashes: 1: 3R94WklWoDzTrhrmU_kQg0rAh_s.roa (hash: gIGAQuYQfwFYDAsfeepLJauyv10gQ+eFdMWmBxs5dkA=) 2: ymFHjk1lm-zoIDxei6jo-C8EcNc.crl (hash: ancC++XdOHtGCuQ0cbbqPJSH83Ii53yJOiX6GOZ4tEQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/279b66-38f1-41a5-90e2-946da5f5efbb/1/ymFHjk1lm-zoIDxei6jo-C8EcNc.crl rsync://rpki.ripe.net/repository/DEFAULT/68/279b66-38f1-41a5-90e2-946da5f5efbb/1/ymFHjk1lm-zoIDxei6jo-C8EcNc.mft rsync://rpki.ripe.net/repository/DEFAULT/ymFHjk1lm-zoIDxei6jo-C8EcNc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f6:88:31:66:62:af:46:ed:c0:c1:0c:54:27:e8:ef:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ca61478e4d659bece8203c5e8ba8e8f82f0470d7 Validity Not Before: Jan 25 19:01:19 2026 GMT Not After : Jan 26 19:01:19 2026 GMT Subject: CN=48d545edbd06528d5216fee0c03076505a9fb4fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:da:9c:2c:a3:16:24:61:7e:aa:1c:c0:a3:bc: 7f:42:ab:ff:47:eb:bf:4f:b5:37:d1:22:2e:85:f4: 9c:1f:93:96:81:83:f8:65:6a:50:8e:7d:2d:2b:c9: 8d:0b:b1:15:5d:fc:c2:ae:6c:ca:cd:78:85:63:9c: fb:02:0b:42:0b:40:43:6f:c9:e8:89:f6:1b:e9:30: fd:d2:eb:e3:66:6f:99:7d:7f:23:37:1f:46:a1:3e: d2:a0:5e:3a:b0:fc:15:7c:c6:0b:b7:d7:c9:21:c8: 78:33:69:39:72:a6:d5:12:de:af:c4:26:d2:0c:56: c0:da:a2:5f:c4:30:09:23:d7:7b:7e:14:df:72:ef: e8:54:a5:d5:93:7a:d0:0c:bf:3e:c9:64:b3:0b:cd: 12:b5:08:67:51:89:c7:20:53:6f:b4:c3:dc:41:26: 10:ac:6f:d4:40:19:88:68:ad:32:09:9f:3f:bd:61: f3:6c:8c:b2:18:5e:7a:38:9c:1e:b5:d5:d9:a8:8c: b9:10:1d:2f:05:6f:ee:74:5a:ae:8b:5a:e8:01:80: 4f:67:62:84:46:68:0a:cc:8c:d3:11:cb:fd:36:e4: 1d:b9:da:ea:59:62:3e:ca:5e:20:25:e5:7e:7a:e1: 9a:97:49:60:01:f5:b4:9d:4b:25:f5:c8:4a:50:85: 36:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:D5:45:ED:BD:06:52:8D:52:16:FE:E0:C0:30:76:50:5A:9F:B4:FE X509v3 Authority Key Identifier: keyid:CA:61:47:8E:4D:65:9B:EC:E8:20:3C:5E:8B:A8:E8:F8:2F:04:70:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ymFHjk1lm-zoIDxei6jo-C8EcNc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/279b66-38f1-41a5-90e2-946da5f5efbb/1/ymFHjk1lm-zoIDxei6jo-C8EcNc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/68/279b66-38f1-41a5-90e2-946da5f5efbb/1/ymFHjk1lm-zoIDxei6jo-C8EcNc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 25:eb:a3:3a:3d:7b:3c:c8:94:17:b1:87:b0:14:11:a1:86:07: 27:2c:46:c7:ee:a3:7f:b2:e7:20:ba:53:00:41:2c:a1:01:53: 1b:fc:6c:72:e3:9f:7a:c8:4c:8c:9b:bb:11:af:57:50:d3:65: 5e:73:fa:e7:42:12:65:d3:20:2b:3a:a5:6f:34:9f:18:cb:2b: 2a:bf:ea:73:8d:45:dc:e1:d9:0a:32:c9:18:95:6e:e1:e8:33: f1:3e:e0:a5:d7:1e:12:99:7b:88:06:8c:f8:9b:7f:c3:b9:7c: cc:93:6f:6c:4f:9e:a7:f4:0f:5c:31:5f:8d:99:9b:eb:d8:80: cf:e0:c4:32:10:e4:c8:da:d0:b5:de:b0:4b:a8:90:0a:d2:dd: 0d:f0:41:7a:34:1a:6b:1e:7c:64:ef:1c:7a:6d:f6:9f:ff:a9: 83:77:60:d2:d2:fe:c3:a9:a7:a2:aa:30:67:1c:d6:5c:da:88: b8:c1:04:06:81:68:b6:01:29:f6:3b:e7:8f:2a:dd:c0:6c:02: 2d:5d:28:2a:68:40:82:83:d7:9f:76:fe:a4:0b:59:86:50:0d: d6:ec:a0:31:b7:3f:a4:51:96:24:46:ed:fb:2a:c9:ad:d2:2e: f7:42:1d:8d:01:24:a2:b5:f5:bc:81:eb:f6:4b:bf:66:0f:2c: ea:9b:f1:b4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv2iDFmYq9G7cDBDFQn6O98MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNhNjE0NzhlNGQ2NTliZWNlODIwM2M1ZThiYThlOGY4MmYw NDcwZDcwHhcNMjYwMTI1MTkwMTE5WhcNMjYwMTI2MTkwMTE5WjAzMTEwLwYDVQQD Eyg0OGQ1NDVlZGJkMDY1MjhkNTIxNmZlZTBjMDMwNzY1MDVhOWZiNGZlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAitqcLKMWJGF+qhzAo7x/Qqv/R+u/ T7U30SIuhfScH5OWgYP4ZWpQjn0tK8mNC7EVXfzCrmzKzXiFY5z7AgtCC0BDb8no ifYb6TD90uvjZm+ZfX8jNx9GoT7SoF46sPwVfMYLt9fJIch4M2k5cqbVEt6vxCbS DFbA2qJfxDAJI9d7fhTfcu/oVKXVk3rQDL8+yWSzC80StQhnUYnHIFNvtMPcQSYQ rG/UQBmIaK0yCZ8/vWHzbIyyGF56OJwetdXZqIy5EB0vBW/udFqui1roAYBPZ2KE RmgKzIzTEcv9NuQdudrqWWI+yl4gJeV+euGal0lgAfW0nUsl9chKUIU2iQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEjVRe29BlKNUhb+4MAwdlBan7T+MB8GA1UdIwQY MBaAFMphR45NZZvs6CA8Xouo6PgvBHDXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveW1GSGprMWxtLXpvSUR4ZWk2am8tQzhFY05jLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OC8yNzliNjYtMzhmMS00MWE1LTkwZTIt OTQ2ZGE1ZjVlZmJiLzEveW1GSGprMWxtLXpvSUR4ZWk2am8tQzhFY05jLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82OC8yNzliNjYtMzhmMS00MWE1LTkwZTItOTQ2ZGE1ZjVlZmJi LzEveW1GSGprMWxtLXpvSUR4ZWk2am8tQzhFY05jLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJeujOj17 PMiUF7GHsBQRoYYHJyxGx+6jf7LnILpTAEEsoQFTG/xscuOfeshMjJu7Ea9XUNNl XnP650ISZdMgKzqlbzSfGMsrKr/qc41F3OHZCjLJGJVu4egz8T7gpdceEpl7iAaM +Jt/w7l8zJNvbE+ep/QPXDFfjZmb69iAz+DEMhDkyNrQtd6wS6iQCtLdDfBBejQa ax58ZO8cem32n/+pg3dg0tL+w6mnoqowZxzWXNqIuMEEBoFotgEp9jvnjyrdwGwC LV0oKmhAgoPXn3b+pAtZhlAN1uygMbc/pFGWJEbt+yrJrdIu90IdjQEkorX1vIHr 9ku/Zg8s6pvxtA== -----END CERTIFICATE-----Generated at Mon Jan 26 02:25:46 2026 by rpki-client