This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.mft File: yIYjh23RrY5iSiPdUossZMgKhSE.mft (raw, json) Hash identifier: TLTcvY/qRzqX39UYPHUkfanX5ulOYBdSs6jqg9Gy+4I= Subject key identifier: 19:DE:DD:D1:7A:CE:DC:60:8C:58:AF:71:7C:E7:DA:FC:AA:10:56:6B Authority key identifier: C8:86:23:87:6D:D1:AD:8E:62:4A:23:DD:52:8B:2C:64:C8:0A:85:21 Certificate issuer: /CN=c88623876dd1ad8e624a23dd528b2c64c80a8521 Certificate serial: 019BF651130EC51F2A8A10891F4B40AB7B90 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yIYjh23RrY5iSiPdUossZMgKhSE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.mft Manifest number: 070A Signing time: Sun 25 Jan 2026 18:01:06 +0000 Manifest this update: Sun 25 Jan 2026 18:01:06 +0000 Manifest next update: Mon 26 Jan 2026 18:01:06 +0000 Files and hashes: 1: h1IcZRGY_rRXRhpZWTLbtpzh9tM.roa (hash: L8O1+G2QnBwVNFEY7LCl7zf6sGt3HNSfVfaE38wa8Uo=) 2: yIYjh23RrY5iSiPdUossZMgKhSE.crl (hash: 0uFLOX3+y6OVwkpfIYFAvnSOCIIwkpEaqWZ/VAswyTY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.crl rsync://rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.mft rsync://rpki.ripe.net/repository/DEFAULT/yIYjh23RrY5iSiPdUossZMgKhSE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 18:01:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f6:51:13:0e:c5:1f:2a:8a:10:89:1f:4b:40:ab:7b:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c88623876dd1ad8e624a23dd528b2c64c80a8521 Validity Not Before: Jan 25 18:01:06 2026 GMT Not After : Jan 26 18:01:06 2026 GMT Subject: CN=19deddd17acedc608c58af717ce7dafcaa10566b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:be:f9:90:43:5a:3a:e1:c6:bd:4e:b1:32:e5: 66:bd:e5:cb:98:c2:40:b9:6d:17:35:32:67:0d:c8: 27:1f:b8:7d:8b:c6:b6:00:5a:3d:1f:5b:f4:80:cc: 5e:d3:bd:83:f5:03:36:f5:03:68:f1:f6:ea:8d:2f: e1:82:a7:03:2e:63:f2:1d:af:1f:cf:c5:0c:48:59: bf:3a:3c:86:c9:da:fa:be:ca:1f:24:2e:48:9e:68: 5f:fa:7c:f5:85:dd:c3:dd:f2:d8:5c:fb:5f:19:21: 5c:21:d0:73:9c:f9:0f:41:16:a5:e3:98:f6:cb:ec: 85:cc:59:13:b4:7a:ef:a8:4f:31:58:4d:f7:0c:9e: c8:82:5f:69:53:e9:76:a5:55:dc:84:82:78:fa:22: f2:55:95:76:a3:b9:c1:99:2b:b9:2d:00:3c:d1:39: ab:ee:40:4b:8b:39:e5:f1:0b:d1:28:6d:ca:c0:da: b3:8d:d6:94:e4:ef:09:b9:d5:d3:d6:bb:77:74:0d: 90:43:79:c3:27:53:2a:9e:51:0b:c2:4c:e0:e1:05: 60:4e:d2:21:22:59:c8:41:86:cb:90:d0:d5:34:9e: d3:55:9a:b2:5a:eb:3f:db:78:31:2a:25:f5:b7:36: d7:67:6c:62:3e:7c:31:c2:f7:8e:49:e6:32:d3:ed: 6b:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:DE:DD:D1:7A:CE:DC:60:8C:58:AF:71:7C:E7:DA:FC:AA:10:56:6B X509v3 Authority Key Identifier: keyid:C8:86:23:87:6D:D1:AD:8E:62:4A:23:DD:52:8B:2C:64:C8:0A:85:21 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yIYjh23RrY5iSiPdUossZMgKhSE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 06:c6:e5:ea:ef:4c:96:eb:e1:1e:aa:e3:5e:2f:46:0c:dc:df: 38:c2:70:be:6b:6d:5e:23:42:7f:71:43:54:f3:4a:41:a3:5f: ea:d4:eb:63:b8:d2:ac:6d:3a:cd:1f:e2:33:ae:44:df:f6:37: 40:87:db:ee:a8:57:24:2c:a9:6f:79:db:e5:07:ac:5b:c4:27: 27:5e:c7:40:3c:00:12:2d:9c:f5:d1:9e:92:16:48:f5:9e:9a: 82:d4:73:7d:ea:2c:00:e7:08:0f:ee:ab:ae:a4:31:83:bf:f4: 2b:77:a8:4e:77:c6:50:9b:65:d5:38:ba:7b:89:17:35:55:da: ec:b6:86:0f:ef:ac:c9:bd:e6:30:82:92:4e:b6:e9:0c:62:4f: 06:bd:e1:e3:93:62:e2:43:72:9b:40:56:5f:f7:03:5d:d0:b6: 04:55:19:b8:72:c0:00:0b:b4:2a:78:40:e0:70:3c:72:f8:7c: 5e:24:59:8f:fb:c8:52:77:f6:46:ce:2d:ef:d7:02:d7:50:ad: ec:9d:78:3a:fe:d1:19:73:6b:19:0f:d7:95:5f:c8:16:fa:5f: cd:ba:ba:54:b4:8b:33:55:71:5b:32:00:ba:1c:69:39:b9:cd: 4c:45:08:ae:66:51:ad:ec:63:f3:7f:ea:d6:eb:4e:4b:03:e8: 3f:dd:4a:3e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv2URMOxR8qihCJH0tAq3uQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM4ODYyMzg3NmRkMWFkOGU2MjRhMjNkZDUyOGIyYzY0Yzgw YTg1MjEwHhcNMjYwMTI1MTgwMTA2WhcNMjYwMTI2MTgwMTA2WjAzMTEwLwYDVQQD EygxOWRlZGRkMTdhY2VkYzYwOGM1OGFmNzE3Y2U3ZGFmY2FhMTA1NjZiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs775kENaOuHGvU6xMuVmveXLmMJA uW0XNTJnDcgnH7h9i8a2AFo9H1v0gMxe072D9QM29QNo8fbqjS/hgqcDLmPyHa8f z8UMSFm/OjyGydr6vsofJC5Inmhf+nz1hd3D3fLYXPtfGSFcIdBznPkPQRal45j2 y+yFzFkTtHrvqE8xWE33DJ7Igl9pU+l2pVXchIJ4+iLyVZV2o7nBmSu5LQA80Tmr 7kBLiznl8QvRKG3KwNqzjdaU5O8JudXT1rt3dA2QQ3nDJ1MqnlELwkzg4QVgTtIh IlnIQYbLkNDVNJ7TVZqyWus/23gxKiX1tzbXZ2xiPnwxwveOSeYy0+1rjQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBne3dF6ztxgjFivcXzn2vyqEFZrMB8GA1UdIwQY MBaAFMiGI4dt0a2OYkoj3VKLLGTICoUhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveUlZamgyM1JyWTVpU2lQZFVvc3NaTWdLaFNFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Zi8xODI1ZDEtN2MwMS00OTE1LWE0NDQt MmViNTEyNjFkZGJhLzEveUlZamgyM1JyWTVpU2lQZFVvc3NaTWdLaFNFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Zi8xODI1ZDEtN2MwMS00OTE1LWE0NDQtMmViNTEyNjFkZGJh LzEveUlZamgyM1JyWTVpU2lQZFVvc3NaTWdLaFNFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABsbl6u9M luvhHqrjXi9GDNzfOMJwvmttXiNCf3FDVPNKQaNf6tTrY7jSrG06zR/iM65E3/Y3 QIfb7qhXJCypb3nb5QesW8QnJ17HQDwAEi2c9dGekhZI9Z6agtRzfeosAOcID+6r rqQxg7/0K3eoTnfGUJtl1Ti6e4kXNVXa7LaGD++syb3mMIKSTrbpDGJPBr3h45Ni 4kNym0BWX/cDXdC2BFUZuHLAAAu0KnhA4HA8cvh8XiRZj/vIUnf2Rs4t79cC11Ct 7J14Ov7RGXNrGQ/XlV/IFvpfzbq6VLSLM1VxWzIAuhxpObnNTEUIrmZRrexj83/q 1utOSwPoP91KPg== -----END CERTIFICATE-----Generated at Mon Jan 26 04:28:44 2026 by rpki-client