This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/ee714a-21ac-4386-82f5-e8176102c5ff/1/_YmzSchPx7NBKlLWX_Jg0swomrk.mft File: _YmzSchPx7NBKlLWX_Jg0swomrk.mft (raw, json) Hash identifier: xiKMjNpb88VDsWKVNnr/lBUt5OdF8J4Gq1avuCfC2xw= Subject key identifier: 2E:8F:34:47:0F:0F:AC:C5:E2:22:0D:44:1B:55:86:05:F9:37:FE:68 Authority key identifier: FD:89:B3:49:C8:4F:C7:B3:41:2A:52:D6:5F:F2:60:D2:CC:28:9A:B9 Certificate issuer: /CN=fd89b349c84fc7b3412a52d65ff260d2cc289ab9 Certificate serial: 019BF6F5C336851EF2BDB30EA7AC014DC082 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_YmzSchPx7NBKlLWX_Jg0swomrk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/ee714a-21ac-4386-82f5-e8176102c5ff/1/_YmzSchPx7NBKlLWX_Jg0swomrk.mft Manifest number: 0E79 Signing time: Sun 25 Jan 2026 21:01:00 +0000 Manifest this update: Sun 25 Jan 2026 21:01:00 +0000 Manifest next update: Mon 26 Jan 2026 21:01:00 +0000 Files and hashes: 1: 7B9W0clLzsK4p1pr53bEH61EQBg.roa (hash: g9Qq+800T4dGI74x3Nt1LLvxWvY9mzvmzZ74GSFdjw0=) 2: _YmzSchPx7NBKlLWX_Jg0swomrk.crl (hash: JUjemwrVBT8YTFjXrcBvfxDhXXG82iFXfF3KXv7s8O8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/ee714a-21ac-4386-82f5-e8176102c5ff/1/_YmzSchPx7NBKlLWX_Jg0swomrk.crl rsync://rpki.ripe.net/repository/DEFAULT/89/ee714a-21ac-4386-82f5-e8176102c5ff/1/_YmzSchPx7NBKlLWX_Jg0swomrk.mft rsync://rpki.ripe.net/repository/DEFAULT/_YmzSchPx7NBKlLWX_Jg0swomrk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 21:01:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f6:f5:c3:36:85:1e:f2:bd:b3:0e:a7:ac:01:4d:c0:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fd89b349c84fc7b3412a52d65ff260d2cc289ab9 Validity Not Before: Jan 25 21:01:00 2026 GMT Not After : Jan 26 21:01:00 2026 GMT Subject: CN=2e8f34470f0facc5e2220d441b558605f937fe68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:f7:d5:0f:2c:10:73:2c:ac:76:32:80:99:63: 7b:9b:65:56:53:0c:41:f4:a5:75:fa:6a:c9:06:15: ae:77:6d:b0:7b:ce:03:de:af:03:be:73:bc:e0:01: e1:2f:78:8f:ca:81:fb:8d:fd:85:a6:58:98:c2:60: cd:c8:b4:60:ea:ab:e5:2d:1d:fe:5a:c2:f9:86:d9: d3:86:6c:f3:e5:0e:89:37:98:0f:bd:1f:be:c8:20: ca:0a:b3:17:9c:82:ec:af:71:ae:61:8a:dc:1f:a9: 12:a9:a0:5d:4e:a3:5c:24:81:90:89:55:5d:95:de: cd:f5:53:1b:ce:c2:03:86:90:72:56:dc:2b:86:b0: 6c:37:dd:03:eb:84:77:ed:b9:03:55:52:55:ed:c6: 3c:cf:6b:96:9e:80:89:3d:78:d6:c0:4b:03:3a:7c: 97:7c:f1:08:53:d4:fa:61:18:62:a1:55:6f:ee:ab: 9e:5f:a2:f2:96:5a:ea:27:9a:a7:fb:bc:0b:b1:79: 76:df:6a:2d:5e:42:04:5f:e9:7c:50:47:51:8c:61: 9b:0d:16:f8:53:af:f4:2f:31:53:12:3d:1c:5e:9c: 0e:01:d9:20:ef:6c:99:a2:d8:00:df:a1:5c:ec:c9: b1:7e:4a:91:40:a6:09:86:cd:48:5b:76:34:c1:76: 6c:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:8F:34:47:0F:0F:AC:C5:E2:22:0D:44:1B:55:86:05:F9:37:FE:68 X509v3 Authority Key Identifier: keyid:FD:89:B3:49:C8:4F:C7:B3:41:2A:52:D6:5F:F2:60:D2:CC:28:9A:B9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_YmzSchPx7NBKlLWX_Jg0swomrk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/ee714a-21ac-4386-82f5-e8176102c5ff/1/_YmzSchPx7NBKlLWX_Jg0swomrk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/89/ee714a-21ac-4386-82f5-e8176102c5ff/1/_YmzSchPx7NBKlLWX_Jg0swomrk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 25:cc:4f:0c:95:9b:43:ad:81:c7:b0:69:08:bb:5b:da:1f:4f: 25:77:7e:17:86:e3:21:f9:cd:d3:4f:ad:f9:14:ae:d1:8f:3a: 8f:05:3f:b6:fc:4c:23:5a:cc:b0:25:f1:c5:3c:07:56:d6:b6: 2a:23:8f:a2:7f:76:b7:6e:0d:12:e8:6e:21:4d:a3:d2:1e:fa: 08:18:9c:f0:31:ca:2a:cd:41:e2:a3:0e:a6:47:96:70:5f:b5: da:93:1f:2a:46:c0:a9:ba:57:85:aa:5a:be:6e:30:de:72:dc: f8:91:a2:b5:55:5d:e3:3f:b4:b8:61:fa:ce:15:91:ec:fe:56: b2:9a:2c:6c:21:d8:96:60:86:1a:8b:90:6f:a7:5e:e8:df:ec: 59:c4:5c:54:dc:a1:f0:1f:03:c1:2a:ef:ce:5c:f8:6d:a0:52: 21:8f:34:6d:d4:81:c4:4f:5c:38:ea:ac:e0:48:20:6c:f3:83: fc:a5:5b:72:5e:5e:43:c3:5a:66:b7:8c:83:40:ae:d1:bc:0b: 1a:50:eb:80:38:be:47:82:60:1b:9e:17:5d:3c:bc:7c:eb:c2: ef:65:cb:61:bb:1d:45:bf:03:8f:e2:79:2a:3e:50:3d:03:e1: 05:c5:a7:1c:6b:6e:a8:5d:d1:94:ab:0e:87:a0:a6:52:f7:1f: 88:22:67:70 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv29cM2hR7yvbMOp6wBTcCCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZkODliMzQ5Yzg0ZmM3YjM0MTJhNTJkNjVmZjI2MGQyY2My ODlhYjkwHhcNMjYwMTI1MjEwMTAwWhcNMjYwMTI2MjEwMTAwWjAzMTEwLwYDVQQD EygyZThmMzQ0NzBmMGZhY2M1ZTIyMjBkNDQxYjU1ODYwNWY5MzdmZTY4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuvfVDywQcyysdjKAmWN7m2VWUwxB 9KV1+mrJBhWud22we84D3q8DvnO84AHhL3iPyoH7jf2FpliYwmDNyLRg6qvlLR3+ WsL5htnThmzz5Q6JN5gPvR++yCDKCrMXnILsr3GuYYrcH6kSqaBdTqNcJIGQiVVd ld7N9VMbzsIDhpByVtwrhrBsN90D64R37bkDVVJV7cY8z2uWnoCJPXjWwEsDOnyX fPEIU9T6YRhioVVv7queX6LyllrqJ5qn+7wLsXl232otXkIEX+l8UEdRjGGbDRb4 U6/0LzFTEj0cXpwOAdkg72yZotgA36Fc7MmxfkqRQKYJhs1IW3Y0wXZs/wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFC6PNEcPD6zF4iINRBtVhgX5N/5oMB8GA1UdIwQY MBaAFP2Js0nIT8ezQSpS1l/yYNLMKJq5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvX1ltelNjaFB4N05CS2xMV1hfSmcwc3dvbXJrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OS9lZTcxNGEtMjFhYy00Mzg2LTgyZjUt ZTgxNzYxMDJjNWZmLzEvX1ltelNjaFB4N05CS2xMV1hfSmcwc3dvbXJrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84OS9lZTcxNGEtMjFhYy00Mzg2LTgyZjUtZTgxNzYxMDJjNWZm LzEvX1ltelNjaFB4N05CS2xMV1hfSmcwc3dvbXJrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJcxPDJWb Q62Bx7BpCLtb2h9PJXd+F4bjIfnN00+t+RSu0Y86jwU/tvxMI1rMsCXxxTwHVta2 KiOPon92t24NEuhuIU2j0h76CBic8DHKKs1B4qMOpkeWcF+12pMfKkbAqbpXhapa vm4w3nLc+JGitVVd4z+0uGH6zhWR7P5WsposbCHYlmCGGouQb6de6N/sWcRcVNyh 8B8DwSrvzlz4baBSIY80bdSBxE9cOOqs4EggbPOD/KVbcl5eQ8NaZreMg0Cu0bwL GlDrgDi+R4JgG54XXTy8fOvC72XLYbsdRb8Dj+J5Kj5QPQPhBcWnHGtuqF3RlKsO h6CmUvcfiCJncA== -----END CERTIFICATE-----Generated at Mon Jan 26 07:12:36 2026 by rpki-client