This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/89fe5b-4fda-4d04-99b4-f49764ff48ea/1/JLyY3e79tWGqaeynNJBg2EBZ4ZI.mft File: JLyY3e79tWGqaeynNJBg2EBZ4ZI.mft (raw, json) Hash identifier: Uvk+ujPCHemWlrZ4fJlRh27Q2r1L3iszHP62ZQ8LayY= Subject key identifier: 8E:88:F0:40:E9:42:B0:32:6E:CF:96:F6:61:65:83:78:59:8D:EA:48 Authority key identifier: 24:BC:98:DD:EE:FD:B5:61:AA:69:EC:A7:34:90:60:D8:40:59:E1:92 Certificate issuer: /CN=24bc98ddeefdb561aa69eca7349060d84059e192 Certificate serial: 019BF4996741ED959784F11AA06719B1AEB0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JLyY3e79tWGqaeynNJBg2EBZ4ZI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/89fe5b-4fda-4d04-99b4-f49764ff48ea/1/JLyY3e79tWGqaeynNJBg2EBZ4ZI.mft Manifest number: 0676 Signing time: Sun 25 Jan 2026 10:00:52 +0000 Manifest this update: Sun 25 Jan 2026 10:00:52 +0000 Manifest next update: Mon 26 Jan 2026 10:00:52 +0000 Files and hashes: 1: JLyY3e79tWGqaeynNJBg2EBZ4ZI.crl (hash: aP7p1GFpYh8QT7fh9V4gH221amxKntTw9U/6lsUcmYY=) 2: pCSMBqmn-2xkRzGOrRbDhgjt1ZQ.roa (hash: qEIf3vrVO3maTFTQZWMGFxBk+5hFDaz1/E5BMr9cl+o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/89fe5b-4fda-4d04-99b4-f49764ff48ea/1/JLyY3e79tWGqaeynNJBg2EBZ4ZI.crl rsync://rpki.ripe.net/repository/DEFAULT/99/89fe5b-4fda-4d04-99b4-f49764ff48ea/1/JLyY3e79tWGqaeynNJBg2EBZ4ZI.mft rsync://rpki.ripe.net/repository/DEFAULT/JLyY3e79tWGqaeynNJBg2EBZ4ZI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f4:99:67:41:ed:95:97:84:f1:1a:a0:67:19:b1:ae:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=24bc98ddeefdb561aa69eca7349060d84059e192 Validity Not Before: Jan 25 10:00:52 2026 GMT Not After : Jan 26 10:00:52 2026 GMT Subject: CN=8e88f040e942b0326ecf96f661658378598dea48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fd:e4:b5:67:81:2f:4f:e0:ac:0a:f1:61:42:8b: 2c:b7:cd:73:63:09:eb:6d:c5:96:91:55:47:1d:55: 68:dd:d7:45:39:83:5e:b8:37:e8:90:f8:3b:0c:04: a9:66:59:d7:31:da:5f:1b:ed:6a:1f:b3:6e:79:2a: 60:4d:c9:76:0a:37:62:8c:98:41:77:47:fa:32:75: f9:0a:4c:ed:77:21:90:2c:ae:c1:4b:3a:6c:58:66: d2:4f:86:ce:90:b5:44:3f:72:bd:fc:cc:b8:96:73: 2c:6f:7b:4f:6c:fd:67:a4:51:44:d5:88:8e:34:13: 37:ef:43:db:f9:d0:9b:4d:1d:d9:93:e1:88:d2:6c: 6d:38:81:41:64:05:31:5b:2e:c7:12:eb:5b:e0:ca: 0b:10:a5:ce:51:af:75:b2:3d:81:98:9a:b4:a4:0f: db:3d:a3:77:ad:9b:f9:4f:fb:60:6c:b2:35:25:5f: d0:2c:54:25:96:20:55:32:bb:f8:6c:28:40:e3:f7: fd:53:93:fd:a4:96:e2:05:f5:7a:0d:9b:17:4d:64: 3b:b2:77:e7:86:9a:6e:ac:7a:5f:3f:e6:6b:07:aa: 2d:89:42:ab:28:ed:41:99:92:39:ec:46:b6:ec:0b: db:6d:43:53:35:4c:cd:39:85:0a:17:3c:04:25:22: 98:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:88:F0:40:E9:42:B0:32:6E:CF:96:F6:61:65:83:78:59:8D:EA:48 X509v3 Authority Key Identifier: keyid:24:BC:98:DD:EE:FD:B5:61:AA:69:EC:A7:34:90:60:D8:40:59:E1:92 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JLyY3e79tWGqaeynNJBg2EBZ4ZI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/89fe5b-4fda-4d04-99b4-f49764ff48ea/1/JLyY3e79tWGqaeynNJBg2EBZ4ZI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/99/89fe5b-4fda-4d04-99b4-f49764ff48ea/1/JLyY3e79tWGqaeynNJBg2EBZ4ZI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 11:b0:b2:7c:72:74:19:70:90:bd:2b:8a:45:9d:07:a3:4a:c6: 15:78:52:89:3a:57:fa:74:dc:6e:4e:29:f8:3a:37:21:c2:dd: 91:8d:51:5e:d9:a3:93:0d:ef:8d:89:44:55:77:52:c4:13:62: 1e:c1:a5:9d:a5:2f:3a:e8:b4:58:8e:5f:5a:09:d7:92:e6:04: 5d:33:9d:90:bb:8f:a7:db:be:cc:cc:25:6a:bf:19:d8:e7:3e: c7:40:74:0a:6d:b1:90:8b:80:b7:9a:45:2f:12:37:ff:7d:cc: 9c:b9:13:1e:cf:01:7c:a3:b1:b4:40:87:49:7b:d3:f0:8a:b5: f1:7b:62:f6:4f:03:45:75:19:46:c5:db:8c:a1:77:e7:5b:5f: b3:95:f6:5b:f7:b5:cf:04:74:c1:73:f7:1c:fd:a3:03:49:22: 1f:9a:16:59:45:71:0f:55:9f:30:d4:c2:4f:b5:7a:99:1c:17: 92:d3:3a:c2:6f:49:a3:11:42:df:09:f8:3d:86:55:a1:cc:ab: 48:ab:ec:ad:45:50:db:2a:7d:2c:af:e3:13:80:c0:8f:a1:06: b1:fe:69:96:23:cd:c9:da:8c:0e:51:4f:75:48:9e:27:df:4f: 57:b3:fc:62:49:ee:50:f9:76:e9:d8:06:37:18:3e:86:15:6f: cc:cc:4a:c7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv0mWdB7ZWXhPEaoGcZsa6wMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI0YmM5OGRkZWVmZGI1NjFhYTY5ZWNhNzM0OTA2MGQ4NDA1 OWUxOTIwHhcNMjYwMTI1MTAwMDUyWhcNMjYwMTI2MTAwMDUyWjAzMTEwLwYDVQQD Eyg4ZTg4ZjA0MGU5NDJiMDMyNmVjZjk2ZjY2MTY1ODM3ODU5OGRlYTQ4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA/eS1Z4EvT+CsCvFhQosst81zYwnr bcWWkVVHHVVo3ddFOYNeuDfokPg7DASpZlnXMdpfG+1qH7NueSpgTcl2CjdijJhB d0f6MnX5CkztdyGQLK7BSzpsWGbST4bOkLVEP3K9/My4lnMsb3tPbP1npFFE1YiO NBM370Pb+dCbTR3Zk+GI0mxtOIFBZAUxWy7HEutb4MoLEKXOUa91sj2BmJq0pA/b PaN3rZv5T/tgbLI1JV/QLFQlliBVMrv4bChA4/f9U5P9pJbiBfV6DZsXTWQ7snfn hppurHpfP+ZrB6otiUKrKO1BmZI57Ea27AvbbUNTNUzNOYUKFzwEJSKYNQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFI6I8EDpQrAybs+W9mFlg3hZjepIMB8GA1UdIwQY MBaAFCS8mN3u/bVhqmnspzSQYNhAWeGSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSkx5WTNlNzl0V0dxYWV5bk5KQmcyRUJaNFpJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OS84OWZlNWItNGZkYS00ZDA0LTk5YjQt ZjQ5NzY0ZmY0OGVhLzEvSkx5WTNlNzl0V0dxYWV5bk5KQmcyRUJaNFpJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85OS84OWZlNWItNGZkYS00ZDA0LTk5YjQtZjQ5NzY0ZmY0OGVh LzEvSkx5WTNlNzl0V0dxYWV5bk5KQmcyRUJaNFpJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEbCyfHJ0 GXCQvSuKRZ0Ho0rGFXhSiTpX+nTcbk4p+Do3IcLdkY1RXtmjkw3vjYlEVXdSxBNi HsGlnaUvOui0WI5fWgnXkuYEXTOdkLuPp9u+zMwlar8Z2Oc+x0B0Cm2xkIuAt5pF LxI3/33MnLkTHs8BfKOxtECHSXvT8Iq18Xti9k8DRXUZRsXbjKF351tfs5X2W/e1 zwR0wXP3HP2jA0kiH5oWWUVxD1WfMNTCT7V6mRwXktM6wm9JoxFC3wn4PYZVocyr SKvsrUVQ2yp9LK/jE4DAj6EGsf5pliPNydqMDlFPdUieJ99PV7P8YknuUPl26dgG Nxg+hhVvzMxKxw== -----END CERTIFICATE-----Generated at Sun Jan 25 16:44:36 2026 by rpki-client