This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/54213d-c3ed-4d67-b9bf-7ba136f51ef9/1/YhuOSG7srmEk3hBJT9OROe1KN8s.mft File: YhuOSG7srmEk3hBJT9OROe1KN8s.mft (raw, json) Hash identifier: eOkoJESPKlVOusI+V5CbWDEGOwKaQ9NCtQqKuf1lcuA= Subject key identifier: AC:5B:94:BD:EE:24:6E:F5:5C:74:06:10:6B:64:13:6B:7B:3B:83:5B Authority key identifier: 62:1B:8E:48:6E:EC:AE:61:24:DE:10:49:4F:D3:91:39:ED:4A:37:CB Certificate issuer: /CN=621b8e486eecae6124de10494fd39139ed4a37cb Certificate serial: 019BF5074B3E556E5188223C0A3BC4D89B04 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YhuOSG7srmEk3hBJT9OROe1KN8s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/54213d-c3ed-4d67-b9bf-7ba136f51ef9/1/YhuOSG7srmEk3hBJT9OROe1KN8s.mft Manifest number: 17E8 Signing time: Sun 25 Jan 2026 12:00:54 +0000 Manifest this update: Sun 25 Jan 2026 12:00:54 +0000 Manifest next update: Mon 26 Jan 2026 12:00:54 +0000 Files and hashes: 1: BwYYOmhJLJqapgE9lvV3d7BEWAU.roa (hash: ME1eFTl4ynavuH8tL0n87NqGZ4of85as6TbMREzi3Ig=) 2: YhuOSG7srmEk3hBJT9OROe1KN8s.crl (hash: mmIYaHre8iFdV0neJ/8pJMrD1b//USRj+zSGavYDHkI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/54213d-c3ed-4d67-b9bf-7ba136f51ef9/1/YhuOSG7srmEk3hBJT9OROe1KN8s.crl rsync://rpki.ripe.net/repository/DEFAULT/98/54213d-c3ed-4d67-b9bf-7ba136f51ef9/1/YhuOSG7srmEk3hBJT9OROe1KN8s.mft rsync://rpki.ripe.net/repository/DEFAULT/YhuOSG7srmEk3hBJT9OROe1KN8s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 12:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f5:07:4b:3e:55:6e:51:88:22:3c:0a:3b:c4:d8:9b:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=621b8e486eecae6124de10494fd39139ed4a37cb Validity Not Before: Jan 25 12:00:54 2026 GMT Not After : Jan 26 12:00:54 2026 GMT Subject: CN=ac5b94bdee246ef55c7406106b64136b7b3b835b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:58:39:ba:df:96:c4:4d:9e:60:fb:3b:f6:a7: 73:2b:56:f1:85:5c:2e:37:02:82:6c:62:47:22:37: 14:cb:4a:e9:c9:7d:8f:72:5e:02:30:c5:39:48:be: a7:ea:e6:ed:d6:ce:0f:2a:8b:94:8d:57:83:b2:40: 76:30:ff:f0:c2:5a:cb:9c:6e:87:8e:ac:90:97:29: 2d:96:76:53:d9:b9:77:41:cb:c3:ad:06:2d:11:ef: 99:9a:51:31:04:37:dd:36:d7:33:5b:bb:7c:24:29: 7e:c3:81:78:2a:43:fb:43:2f:8b:8c:43:26:1b:54: ce:6c:8d:16:c0:b1:f9:2b:76:a8:8a:7d:0b:31:74: 69:ca:cd:27:9c:df:ce:03:55:51:16:23:d3:04:f0: 00:29:b4:df:b0:80:f1:83:f9:aa:a7:bf:54:56:7c: b0:df:da:87:42:3e:6e:0c:3c:39:49:d5:8c:76:bd: 6f:6a:8e:cf:2a:20:a0:ec:f3:7e:f5:ef:b3:5d:2f: 33:c4:0a:0d:7f:16:a5:c0:17:c3:1b:2d:75:64:a3: b7:87:cc:5b:bb:be:7f:62:68:f8:51:b5:a5:da:42: 4d:c3:3e:24:3f:90:aa:30:8c:6e:88:06:d5:d0:14: bc:f2:76:b0:7d:4a:13:7b:f8:1d:b5:05:b5:7b:46: 10:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:5B:94:BD:EE:24:6E:F5:5C:74:06:10:6B:64:13:6B:7B:3B:83:5B X509v3 Authority Key Identifier: keyid:62:1B:8E:48:6E:EC:AE:61:24:DE:10:49:4F:D3:91:39:ED:4A:37:CB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YhuOSG7srmEk3hBJT9OROe1KN8s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/54213d-c3ed-4d67-b9bf-7ba136f51ef9/1/YhuOSG7srmEk3hBJT9OROe1KN8s.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/98/54213d-c3ed-4d67-b9bf-7ba136f51ef9/1/YhuOSG7srmEk3hBJT9OROe1KN8s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0e:58:eb:d6:a8:44:94:de:75:ac:9d:18:7d:cc:ff:09:3e:34: 53:aa:18:ef:fd:56:64:af:94:1e:ab:90:04:4b:ec:85:77:65: 0c:a4:b1:23:c6:ce:d6:56:35:6e:ed:b9:29:dd:9b:0c:15:a6: 58:bc:c2:eb:f4:15:ee:d0:90:32:d3:dd:c3:1a:5f:b0:fd:26: 6a:67:07:19:58:74:5a:c2:c3:22:2e:94:52:bd:36:ee:0f:9c: 70:3f:4a:7c:44:be:14:d2:8b:14:59:e4:ef:e1:0e:c3:0a:b4: e8:dc:4f:bf:b3:6c:e9:ed:cb:fc:83:7e:72:62:cd:05:f3:59: 6a:c3:08:dd:ab:ad:be:26:df:74:63:4a:09:07:f9:46:9e:db: 3a:90:8a:d4:92:20:8f:90:d8:85:48:ec:8d:11:09:8b:94:dd: 1e:5a:19:7d:38:c9:47:ed:82:01:cb:1a:e3:74:9e:a2:c8:08: 2d:9b:4b:e0:49:0e:74:46:8b:b3:42:64:1d:e8:92:15:75:d0: 43:23:c5:98:71:18:bf:a3:d8:95:20:8b:16:ad:79:ff:53:2f: 1b:eb:6e:e4:b6:bc:c8:9d:2a:15:ee:2b:4c:7f:28:cd:ea:a9: 89:e1:eb:78:64:a1:f2:ea:3a:f8:1f:8b:d3:52:35:ab:cf:cd: d4:21:49:51 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv1B0s+VW5RiCI8CjvE2JsEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYyMWI4ZTQ4NmVlY2FlNjEyNGRlMTA0OTRmZDM5MTM5ZWQ0 YTM3Y2IwHhcNMjYwMTI1MTIwMDU0WhcNMjYwMTI2MTIwMDU0WjAzMTEwLwYDVQQD EyhhYzViOTRiZGVlMjQ2ZWY1NWM3NDA2MTA2YjY0MTM2YjdiM2I4MzViMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA31g5ut+WxE2eYPs79qdzK1bxhVwu NwKCbGJHIjcUy0rpyX2Pcl4CMMU5SL6n6ubt1s4PKouUjVeDskB2MP/wwlrLnG6H jqyQlyktlnZT2bl3QcvDrQYtEe+ZmlExBDfdNtczW7t8JCl+w4F4KkP7Qy+LjEMm G1TObI0WwLH5K3aoin0LMXRpys0nnN/OA1VRFiPTBPAAKbTfsIDxg/mqp79UVnyw 39qHQj5uDDw5SdWMdr1vao7PKiCg7PN+9e+zXS8zxAoNfxalwBfDGy11ZKO3h8xb u75/Ymj4UbWl2kJNwz4kP5CqMIxuiAbV0BS88nawfUoTe/gdtQW1e0YQ5wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKxblL3uJG71XHQGEGtkE2t7O4NbMB8GA1UdIwQY MBaAFGIbjkhu7K5hJN4QSU/TkTntSjfLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWWh1T1NHN3NybUVrM2hCSlQ5T1JPZTFLTjhzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OC81NDIxM2QtYzNlZC00ZDY3LWI5YmYt N2JhMTM2ZjUxZWY5LzEvWWh1T1NHN3NybUVrM2hCSlQ5T1JPZTFLTjhzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85OC81NDIxM2QtYzNlZC00ZDY3LWI5YmYtN2JhMTM2ZjUxZWY5 LzEvWWh1T1NHN3NybUVrM2hCSlQ5T1JPZTFLTjhzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADljr1qhE lN51rJ0Yfcz/CT40U6oY7/1WZK+UHquQBEvshXdlDKSxI8bO1lY1bu25Kd2bDBWm WLzC6/QV7tCQMtPdwxpfsP0mamcHGVh0WsLDIi6UUr027g+ccD9KfES+FNKLFFnk 7+EOwwq06NxPv7Ns6e3L/IN+cmLNBfNZasMI3autvibfdGNKCQf5Rp7bOpCK1JIg j5DYhUjsjREJi5TdHloZfTjJR+2CAcsa43SeosgILZtL4EkOdEaLs0JkHeiSFXXQ QyPFmHEYv6PYlSCLFq15/1MvG+tu5La8yJ0qFe4rTH8ozeqpieHreGSh8uo6+B+L 01I1q8/N1CFJUQ== -----END CERTIFICATE-----Generated at Sun Jan 25 20:39:05 2026 by rpki-client