This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/951c8e-4a86-4c8e-9986-0bfbad4849cd/1/HYYmdJy_hLz0Lrsphbht7oMOXBQ.mft File: HYYmdJy_hLz0Lrsphbht7oMOXBQ.mft (raw, json) Hash identifier: DSYYER0DwT2vTbV1aENBqFkFMmcUgus/9SpV49wrb+s= Subject key identifier: A1:0B:01:9F:92:B4:65:A3:A7:DF:BF:5B:42:93:99:43:2D:AA:2B:BC Authority key identifier: 1D:86:26:74:9C:BF:84:BC:F4:2E:BB:29:85:B8:6D:EE:83:0E:5C:14 Certificate issuer: /CN=1d8626749cbf84bcf42ebb2985b86dee830e5c14 Certificate serial: 019BF5E340324AB5A8DD9FB8A891A6C536DF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HYYmdJy_hLz0Lrsphbht7oMOXBQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/951c8e-4a86-4c8e-9986-0bfbad4849cd/1/HYYmdJy_hLz0Lrsphbht7oMOXBQ.mft Manifest number: 17F0 Signing time: Sun 25 Jan 2026 16:01:09 +0000 Manifest this update: Sun 25 Jan 2026 16:01:09 +0000 Manifest next update: Mon 26 Jan 2026 16:01:09 +0000 Files and hashes: 1: CTIK34W0gV9x3uv1-r0HDqxk6oI.roa (hash: yVsgO2IBgHOLaRgSGBJBDT5TTrMQD1SCcScxIYhY8XY=) 2: HYYmdJy_hLz0Lrsphbht7oMOXBQ.crl (hash: dzVKVFh3b3w6ckMld/a64vmNsK0L6tAfHEDa7iwpM5M=) 3: LegPI0LcRAcrLBTlGUY6DuF5bPU.roa (hash: NBAPRKnIYd+TgJ5/R1gZLE8ial4CZdJAp6oEz5nJrso=) 4: dZcFXy59OBgCvb8-LnAFu481H80.roa (hash: S71mkWocgYTtJLOJGQFJaSGFLZadtvbJJdWNegtQAMs=) 5: nffOhSPbCiWPAgtugzjWRyuC30E.roa (hash: ozFheVA8KcSrBcCrb3RelsPEg0hh8qk70m83xq3pSAo=) 6: sUCFmwpJav81ZSRKsG-SSJaCaxg.roa (hash: 9KxlfWrLv7YnnCH1Vf26DGRif8A8TjjKojTT9mB5Eaw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/951c8e-4a86-4c8e-9986-0bfbad4849cd/1/HYYmdJy_hLz0Lrsphbht7oMOXBQ.crl rsync://rpki.ripe.net/repository/DEFAULT/77/951c8e-4a86-4c8e-9986-0bfbad4849cd/1/HYYmdJy_hLz0Lrsphbht7oMOXBQ.mft rsync://rpki.ripe.net/repository/DEFAULT/HYYmdJy_hLz0Lrsphbht7oMOXBQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f5:e3:40:32:4a:b5:a8:dd:9f:b8:a8:91:a6:c5:36:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1d8626749cbf84bcf42ebb2985b86dee830e5c14 Validity Not Before: Jan 25 16:01:09 2026 GMT Not After : Jan 26 16:01:09 2026 GMT Subject: CN=a10b019f92b465a3a7dfbf5b429399432daa2bbc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:70:50:5d:d1:1f:5c:54:6d:2d:ae:e7:5d:16: bf:0d:d6:ba:31:a9:a3:b8:f0:d8:3a:53:eb:ee:de: 0a:40:d0:34:76:92:f1:e8:dd:28:0c:67:f8:90:c4: 0e:72:7d:dc:10:f9:93:3b:1e:17:87:79:05:50:50: d3:df:45:2b:e5:e7:10:64:77:5a:9e:90:4e:f3:df: 39:47:a0:bb:6b:d4:68:a3:41:02:e9:23:9d:b2:bb: a1:ef:4a:dc:ea:d9:04:02:24:e4:a8:dd:af:07:cb: 1a:bc:b8:2d:12:2b:ab:2d:68:05:9f:d5:51:91:a4: a3:bc:c8:a5:c9:15:45:00:f6:69:43:3c:7a:23:c1: c5:21:05:00:82:93:6b:20:78:41:5a:30:92:cb:57: 7d:c3:fe:31:78:26:17:c3:e2:92:36:14:fe:50:ab: 06:d5:42:f0:ec:94:5b:1e:64:1e:8c:e0:0a:93:3e: d2:1c:42:b5:0d:0b:7a:37:9e:09:10:1e:e2:ec:6d: 6d:f2:80:57:e4:c7:ac:84:b9:85:04:e1:03:62:42: af:54:38:f2:25:66:25:76:68:8f:fb:02:be:aa:d5: cd:3b:ad:f9:90:97:0e:e0:0c:95:91:01:7d:92:d4: 47:9d:d0:33:5c:96:ee:64:c1:5e:8c:e7:62:a2:41: 5f:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:0B:01:9F:92:B4:65:A3:A7:DF:BF:5B:42:93:99:43:2D:AA:2B:BC X509v3 Authority Key Identifier: keyid:1D:86:26:74:9C:BF:84:BC:F4:2E:BB:29:85:B8:6D:EE:83:0E:5C:14 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HYYmdJy_hLz0Lrsphbht7oMOXBQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/951c8e-4a86-4c8e-9986-0bfbad4849cd/1/HYYmdJy_hLz0Lrsphbht7oMOXBQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/77/951c8e-4a86-4c8e-9986-0bfbad4849cd/1/HYYmdJy_hLz0Lrsphbht7oMOXBQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 43:67:0a:d6:f4:4d:c5:87:d7:d0:01:65:b9:cb:c2:69:80:b6: f3:f9:fa:db:95:af:0d:db:32:3c:a1:fa:0c:bd:7e:33:b1:4a: 5a:1e:7b:c0:07:ad:42:21:f3:3c:95:19:3b:74:0b:0c:ee:71: 5d:2e:17:8c:e0:88:8d:24:36:76:2f:1a:e7:83:4d:a7:b6:eb: 80:2c:87:cb:1c:17:48:a3:b7:48:1d:92:8e:33:a8:6f:6b:84: 7a:af:dd:e6:da:46:26:fc:2d:42:ae:2b:1f:3c:10:96:3e:c8: 47:93:71:c0:d7:94:61:74:ce:c4:97:1c:c6:cf:cc:99:2d:92: 92:1b:99:b6:92:90:5e:12:35:3b:7d:ea:ab:85:8b:50:aa:ed: 20:9c:a7:99:b0:9b:eb:44:3d:d7:db:dd:e2:6a:27:a6:9e:70: d5:8f:44:1c:ae:b7:38:61:02:f1:90:fe:a8:87:d2:aa:ec:34: 6c:e2:df:a8:b0:5a:b9:2e:4a:94:59:0d:95:c3:46:8e:c9:45: 48:b8:64:ef:5b:98:25:8c:ac:aa:af:14:3f:3a:55:68:72:53: 55:3f:75:39:6b:77:47:63:d2:b1:75:e8:e0:a9:c9:1b:a3:f9: 00:18:61:4b:d3:69:2b:69:fb:6e:f3:75:0f:5b:45:07:e5:9a: 1d:e7:06:1e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv140AySrWo3Z+4qJGmxTbfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFkODYyNjc0OWNiZjg0YmNmNDJlYmIyOTg1Yjg2ZGVlODMw ZTVjMTQwHhcNMjYwMTI1MTYwMTA5WhcNMjYwMTI2MTYwMTA5WjAzMTEwLwYDVQQD EyhhMTBiMDE5ZjkyYjQ2NWEzYTdkZmJmNWI0MjkzOTk0MzJkYWEyYmJjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkHBQXdEfXFRtLa7nXRa/Dda6Mamj uPDYOlPr7t4KQNA0dpLx6N0oDGf4kMQOcn3cEPmTOx4Xh3kFUFDT30Ur5ecQZHda npBO8985R6C7a9Roo0EC6SOdsruh70rc6tkEAiTkqN2vB8savLgtEiurLWgFn9VR kaSjvMilyRVFAPZpQzx6I8HFIQUAgpNrIHhBWjCSy1d9w/4xeCYXw+KSNhT+UKsG 1ULw7JRbHmQejOAKkz7SHEK1DQt6N54JEB7i7G1t8oBX5MeshLmFBOEDYkKvVDjy JWYldmiP+wK+qtXNO635kJcO4AyVkQF9ktRHndAzXJbuZMFejOdiokFfqwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKELAZ+StGWjp9+/W0KTmUMtqiu8MB8GA1UdIwQY MBaAFB2GJnScv4S89C67KYW4be6DDlwUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSFlZbWRKeV9oTHowTHJzcGhiaHQ3b01PWEJRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ny85NTFjOGUtNGE4Ni00YzhlLTk5ODYt MGJmYmFkNDg0OWNkLzEvSFlZbWRKeV9oTHowTHJzcGhiaHQ3b01PWEJRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Ny85NTFjOGUtNGE4Ni00YzhlLTk5ODYtMGJmYmFkNDg0OWNk LzEvSFlZbWRKeV9oTHowTHJzcGhiaHQ3b01PWEJRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQ2cK1vRN xYfX0AFlucvCaYC28/n625WvDdsyPKH6DL1+M7FKWh57wAetQiHzPJUZO3QLDO5x XS4XjOCIjSQ2di8a54NNp7brgCyHyxwXSKO3SB2SjjOob2uEeq/d5tpGJvwtQq4r HzwQlj7IR5NxwNeUYXTOxJccxs/MmS2SkhuZtpKQXhI1O33qq4WLUKrtIJynmbCb 60Q919vd4monpp5w1Y9EHK63OGEC8ZD+qIfSquw0bOLfqLBauS5KlFkNlcNGjslF SLhk71uYJYysqq8UPzpVaHJTVT91OWt3R2PSsXXo4KnJG6P5ABhhS9NpK2n7bvN1 D1tFB+WaHecGHg== -----END CERTIFICATE-----Generated at Sun Jan 25 23:54:40 2026 by rpki-client