This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/d7fb6d-ebbe-43a2-b119-393c45742259/1/tyDzzrDmtZejgUXFp0M2nH9JZuA.mft File: tyDzzrDmtZejgUXFp0M2nH9JZuA.mft (raw, json) Hash identifier: hFv5kQbyOmc8K4MH5O+/va1E7daloIhsPHu7sgfidWI= Subject key identifier: 89:93:0D:CE:07:CE:08:FF:BE:7F:9A:F0:AF:5A:8F:C9:40:21:B4:BE Authority key identifier: B7:20:F3:CE:B0:E6:B5:97:A3:81:45:C5:A7:43:36:9C:7F:49:66:E0 Certificate issuer: /CN=b720f3ceb0e6b597a38145c5a743369c7f4966e0 Certificate serial: 019BF61A33A493BDEAC49D2B3FF3C5690012 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tyDzzrDmtZejgUXFp0M2nH9JZuA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/d7fb6d-ebbe-43a2-b119-393c45742259/1/tyDzzrDmtZejgUXFp0M2nH9JZuA.mft Manifest number: 1224 Signing time: Sun 25 Jan 2026 17:01:10 +0000 Manifest this update: Sun 25 Jan 2026 17:01:10 +0000 Manifest next update: Mon 26 Jan 2026 17:01:10 +0000 Files and hashes: 1: 5S5p1A69IpQT_81jOo3SJqobCIE.roa (hash: 1vieN4Wv6S8/BM0aKo61+XBIoswJKgLdB3MXca2J5eM=) 2: tyDzzrDmtZejgUXFp0M2nH9JZuA.crl (hash: ufzZCaubQHEmgW8176Fcv2qM6JX3UFjvc4/vQ81xBZ0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/d7fb6d-ebbe-43a2-b119-393c45742259/1/tyDzzrDmtZejgUXFp0M2nH9JZuA.crl rsync://rpki.ripe.net/repository/DEFAULT/6f/d7fb6d-ebbe-43a2-b119-393c45742259/1/tyDzzrDmtZejgUXFp0M2nH9JZuA.mft rsync://rpki.ripe.net/repository/DEFAULT/tyDzzrDmtZejgUXFp0M2nH9JZuA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f6:1a:33:a4:93:bd:ea:c4:9d:2b:3f:f3:c5:69:00:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b720f3ceb0e6b597a38145c5a743369c7f4966e0 Validity Not Before: Jan 25 17:01:10 2026 GMT Not After : Jan 26 17:01:10 2026 GMT Subject: CN=89930dce07ce08ffbe7f9af0af5a8fc94021b4be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:5f:aa:2b:2c:e5:cd:82:f5:d1:bf:c1:9e:be: df:16:92:8d:9f:98:50:98:d8:15:6f:49:5d:09:f4: 3d:10:21:5d:e5:31:c9:ff:10:79:91:d1:68:2f:c6: e7:1c:fb:90:b0:8b:ac:65:f8:96:5b:43:36:07:d9: d9:37:d5:6b:34:57:29:91:18:e1:f3:6a:62:81:d9: f3:e0:1b:97:47:96:fa:a6:1d:e2:a9:d8:66:88:bb: a9:4f:f6:73:9e:c6:32:bc:d5:00:91:52:aa:2b:9c: eb:32:27:a0:be:b8:45:18:2a:3f:1d:7c:cb:a8:88: af:1d:aa:57:24:b9:21:67:57:54:4d:39:b0:9b:bb: 8f:f1:50:bb:e6:63:ef:29:09:6e:4b:1f:bf:1b:a7: 49:04:7b:bd:a4:26:f3:33:e9:e0:0c:b9:3b:37:be: 07:53:6b:c0:9c:42:73:f4:3c:8f:05:54:fe:09:99: 99:8c:6f:ce:8e:d4:ff:19:9e:a8:15:93:32:b1:2a: 47:fd:c7:11:2b:94:95:1b:4b:9b:16:b0:b1:cd:99: 90:f2:47:e6:3b:96:98:f9:ab:b0:f1:1e:3b:f9:98: 01:94:34:49:b1:7f:d4:d5:d4:ee:c9:8d:43:bf:6b: cd:c8:9e:6c:53:41:55:fb:b8:1a:f7:1d:ed:cf:cc: 3a:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:93:0D:CE:07:CE:08:FF:BE:7F:9A:F0:AF:5A:8F:C9:40:21:B4:BE X509v3 Authority Key Identifier: keyid:B7:20:F3:CE:B0:E6:B5:97:A3:81:45:C5:A7:43:36:9C:7F:49:66:E0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tyDzzrDmtZejgUXFp0M2nH9JZuA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/d7fb6d-ebbe-43a2-b119-393c45742259/1/tyDzzrDmtZejgUXFp0M2nH9JZuA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/d7fb6d-ebbe-43a2-b119-393c45742259/1/tyDzzrDmtZejgUXFp0M2nH9JZuA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 77:21:5a:8b:a8:db:19:2f:4f:c7:bb:0e:77:37:0f:65:9b:89: 7d:7b:8f:ed:3c:3b:a3:27:42:7e:8f:25:c4:12:2f:7b:24:4a: 1d:15:ef:35:39:fa:50:8f:d1:8d:4f:3e:42:4a:a4:e9:f6:81: 00:0d:32:36:01:89:ea:bf:a4:3d:f3:6a:d7:6c:9f:56:ac:1e: 64:03:4a:13:06:7c:f7:18:7b:f3:e9:74:68:44:99:83:9a:3d: b0:cb:df:ca:eb:51:31:3d:a0:f2:e8:d7:f8:83:6a:00:6a:70: b8:04:d0:2c:fc:af:c6:aa:2e:69:36:ed:99:ca:a3:05:21:02: 94:de:33:b8:01:8a:1a:08:1c:d1:d7:23:cb:d5:cb:1a:5c:42: 4f:72:f2:e2:b2:a4:6e:0c:c1:ad:3e:27:46:cd:fb:ff:1d:db: 79:46:16:31:21:c6:ba:97:72:3d:b0:ed:d3:0c:4f:7c:7d:5a: 33:04:50:ce:36:52:ca:54:c0:4a:d2:60:df:6d:2f:fc:2e:1b: 8e:6e:b6:ea:f7:90:5b:16:76:20:fd:8f:b5:12:bc:aa:92:f1: 2f:8c:85:fb:53:b7:e0:fe:f5:b6:d9:29:fa:80:b3:fd:4c:1c: 53:a3:d5:3f:80:14:cf:89:ee:ec:3d:aa:6e:82:f3:7c:33:8a: b9:3c:98:35 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv2GjOkk73qxJ0rP/PFaQASMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI3MjBmM2NlYjBlNmI1OTdhMzgxNDVjNWE3NDMzNjljN2Y0 OTY2ZTAwHhcNMjYwMTI1MTcwMTEwWhcNMjYwMTI2MTcwMTEwWjAzMTEwLwYDVQQD Eyg4OTkzMGRjZTA3Y2UwOGZmYmU3ZjlhZjBhZjVhOGZjOTQwMjFiNGJlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm1+qKyzlzYL10b/Bnr7fFpKNn5hQ mNgVb0ldCfQ9ECFd5THJ/xB5kdFoL8bnHPuQsIusZfiWW0M2B9nZN9VrNFcpkRjh 82pigdnz4BuXR5b6ph3iqdhmiLupT/ZznsYyvNUAkVKqK5zrMiegvrhFGCo/HXzL qIivHapXJLkhZ1dUTTmwm7uP8VC75mPvKQluSx+/G6dJBHu9pCbzM+ngDLk7N74H U2vAnEJz9DyPBVT+CZmZjG/OjtT/GZ6oFZMysSpH/ccRK5SVG0ubFrCxzZmQ8kfm O5aY+auw8R47+ZgBlDRJsX/U1dTuyY1Dv2vNyJ5sU0FV+7ga9x3tz8w6HQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFImTDc4Hzgj/vn+a8K9aj8lAIbS+MB8GA1UdIwQY MBaAFLcg886w5rWXo4FFxadDNpx/SWbgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdHlEenpyRG10WmVqZ1VYRnAwTTJuSDlKWnVBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Zi9kN2ZiNmQtZWJiZS00M2EyLWIxMTkt MzkzYzQ1NzQyMjU5LzEvdHlEenpyRG10WmVqZ1VYRnAwTTJuSDlKWnVBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Zi9kN2ZiNmQtZWJiZS00M2EyLWIxMTktMzkzYzQ1NzQyMjU5 LzEvdHlEenpyRG10WmVqZ1VYRnAwTTJuSDlKWnVBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdyFai6jb GS9Px7sOdzcPZZuJfXuP7Tw7oydCfo8lxBIveyRKHRXvNTn6UI/RjU8+Qkqk6faB AA0yNgGJ6r+kPfNq12yfVqweZANKEwZ89xh78+l0aESZg5o9sMvfyutRMT2g8ujX +INqAGpwuATQLPyvxqouaTbtmcqjBSEClN4zuAGKGggc0dcjy9XLGlxCT3Ly4rKk bgzBrT4nRs37/x3beUYWMSHGupdyPbDt0wxPfH1aMwRQzjZSylTAStJg320v/C4b jm626veQWxZ2IP2PtRK8qpLxL4yF+1O34P71ttkp+oCz/UwcU6PVP4AUz4nu7D2q boLzfDOKuTyYNQ== -----END CERTIFICATE-----Generated at Sun Jan 25 20:32:42 2026 by rpki-client