This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/d25015-7d24-4ad5-a2c1-ac4e28c2c5b6/1/yoFg7-OfGjB3_dL68ipkgEtUE4I.mft File: yoFg7-OfGjB3_dL68ipkgEtUE4I.mft (raw, json) Hash identifier: TSEA4tcttpG1LQ4iRojjD7G9jEsZzcNDVfXOXLbMsKA= Subject key identifier: CC:6E:3B:69:C0:3F:AA:D7:1D:61:0A:F4:08:7D:95:94:96:B6:8A:D8 Authority key identifier: CA:81:60:EF:E3:9F:1A:30:77:FD:D2:FA:F2:2A:64:80:4B:54:13:82 Certificate issuer: /CN=ca8160efe39f1a3077fdd2faf22a64804b541382 Certificate serial: 019BF6BEB6A8D69282D5E34C2A72384C79D3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yoFg7-OfGjB3_dL68ipkgEtUE4I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/d25015-7d24-4ad5-a2c1-ac4e28c2c5b6/1/yoFg7-OfGjB3_dL68ipkgEtUE4I.mft Manifest number: 1489 Signing time: Sun 25 Jan 2026 20:00:52 +0000 Manifest this update: Sun 25 Jan 2026 20:00:52 +0000 Manifest next update: Mon 26 Jan 2026 20:00:52 +0000 Files and hashes: 1: c09YJVIz1gAeeersG-N_XV14zPo.roa (hash: A4WIJzWdDctFX+Ynr5FMyCdWVozIwFvvlX52iKZ/Phw=) 2: yoFg7-OfGjB3_dL68ipkgEtUE4I.crl (hash: U+PMQR9utXJ9ThXEg3nCMygre3Vfs4NFiAvp/aInvpY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/d25015-7d24-4ad5-a2c1-ac4e28c2c5b6/1/yoFg7-OfGjB3_dL68ipkgEtUE4I.crl rsync://rpki.ripe.net/repository/DEFAULT/9a/d25015-7d24-4ad5-a2c1-ac4e28c2c5b6/1/yoFg7-OfGjB3_dL68ipkgEtUE4I.mft rsync://rpki.ripe.net/repository/DEFAULT/yoFg7-OfGjB3_dL68ipkgEtUE4I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 20:00:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f6:be:b6:a8:d6:92:82:d5:e3:4c:2a:72:38:4c:79:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ca8160efe39f1a3077fdd2faf22a64804b541382 Validity Not Before: Jan 25 20:00:52 2026 GMT Not After : Jan 26 20:00:52 2026 GMT Subject: CN=cc6e3b69c03faad71d610af4087d959496b68ad8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:f5:23:76:f0:91:44:6e:c0:88:ca:c5:34:f9: df:32:ae:13:fc:30:ba:bb:0a:25:fb:41:9d:24:8b: 09:73:c9:44:aa:18:69:0d:dd:86:ff:15:7a:4b:21: b0:0d:71:dd:82:ab:17:7e:9b:f1:2e:37:b8:1b:6b: da:fc:9f:57:77:14:58:22:7f:76:75:e1:27:78:ab: b5:84:c2:24:ec:c5:d9:67:05:15:8a:b8:1c:4d:7c: 45:6d:d6:b5:7a:e3:22:01:bc:1b:ec:11:21:cd:04: 91:2a:47:a7:b6:bd:80:1b:1b:7d:b5:13:df:a4:ea: 1b:07:09:35:e9:50:32:6b:3a:73:4c:9c:11:e5:62: 07:db:ea:9c:43:44:41:82:77:24:44:f2:d4:fa:3a: 66:9f:c4:28:f3:7a:d7:43:df:4a:31:fb:e4:f7:0c: 7d:33:0e:cc:12:7b:f2:1c:42:f7:c7:0d:2f:d9:ae: 7d:a8:64:4e:08:37:ff:9d:19:24:f7:70:75:ea:d2: 62:7c:8c:fd:76:3e:7d:5a:c6:75:c0:bd:e9:97:57: a5:5f:7a:8b:63:7c:97:f4:86:75:01:4c:42:7a:29: b7:90:ef:93:b4:c4:f7:b1:76:04:91:b5:38:55:ae: 37:04:56:39:84:80:42:4a:e7:41:2a:e0:ab:06:50: 21:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:6E:3B:69:C0:3F:AA:D7:1D:61:0A:F4:08:7D:95:94:96:B6:8A:D8 X509v3 Authority Key Identifier: keyid:CA:81:60:EF:E3:9F:1A:30:77:FD:D2:FA:F2:2A:64:80:4B:54:13:82 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yoFg7-OfGjB3_dL68ipkgEtUE4I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/d25015-7d24-4ad5-a2c1-ac4e28c2c5b6/1/yoFg7-OfGjB3_dL68ipkgEtUE4I.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/d25015-7d24-4ad5-a2c1-ac4e28c2c5b6/1/yoFg7-OfGjB3_dL68ipkgEtUE4I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8c:41:54:a1:56:19:c6:d6:e1:af:a3:49:5e:55:28:f5:1e:92: 2e:ce:5a:1d:24:d1:bf:d5:41:bb:30:dc:c5:66:d2:ce:27:3f: 6c:5f:1e:1b:7c:e8:99:50:30:0c:68:f9:cd:aa:20:59:c8:8e: ea:e0:e0:a1:8f:5b:77:ae:f9:de:00:cb:d2:7a:35:71:a1:38: d9:e7:0c:9b:31:c6:b8:38:48:2e:0a:21:d1:aa:90:8e:f3:47: 88:e0:e6:d2:95:8a:a6:59:2b:33:27:85:fe:90:60:1f:2f:e3: a5:de:7d:83:2a:4b:1d:58:d7:80:9a:bd:83:8e:94:83:5b:55: 31:4d:b5:63:eb:60:f9:2a:91:63:0c:50:12:03:a8:c2:a9:d4: 7a:48:17:bd:59:58:3b:58:17:69:2e:a3:17:71:f9:76:3b:36: b6:be:a4:bb:fe:76:94:e8:d8:55:da:7b:f3:35:e3:0f:7d:6b: 65:50:ad:cb:fe:d9:75:07:76:64:59:5b:82:15:8f:c2:db:c0: da:03:57:d5:8a:db:fa:bc:51:2e:ef:18:97:34:7c:f8:0b:e2: d9:48:31:e6:4f:68:5a:c1:71:96:d0:96:32:68:58:2c:65:06: e4:f2:3e:f4:6a:c5:dc:15:23:14:6a:36:19:f6:92:21:31:e0: 37:3d:cd:23 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv2vrao1pKC1eNMKnI4THnTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNhODE2MGVmZTM5ZjFhMzA3N2ZkZDJmYWYyMmE2NDgwNGI1 NDEzODIwHhcNMjYwMTI1MjAwMDUyWhcNMjYwMTI2MjAwMDUyWjAzMTEwLwYDVQQD EyhjYzZlM2I2OWMwM2ZhYWQ3MWQ2MTBhZjQwODdkOTU5NDk2YjY4YWQ4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5vUjdvCRRG7AiMrFNPnfMq4T/DC6 uwol+0GdJIsJc8lEqhhpDd2G/xV6SyGwDXHdgqsXfpvxLje4G2va/J9XdxRYIn92 deEneKu1hMIk7MXZZwUVirgcTXxFbda1euMiAbwb7BEhzQSRKkentr2AGxt9tRPf pOobBwk16VAyazpzTJwR5WIH2+qcQ0RBgnckRPLU+jpmn8Qo83rXQ99KMfvk9wx9 Mw7MEnvyHEL3xw0v2a59qGROCDf/nRkk93B16tJifIz9dj59WsZ1wL3pl1elX3qL Y3yX9IZ1AUxCeim3kO+TtMT3sXYEkbU4Va43BFY5hIBCSudBKuCrBlAhvQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMxuO2nAP6rXHWEK9Ah9lZSWtorYMB8GA1UdIwQY MBaAFMqBYO/jnxowd/3S+vIqZIBLVBOCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveW9GZzctT2ZHakIzX2RMNjhpcGtnRXRVRTRJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85YS9kMjUwMTUtN2QyNC00YWQ1LWEyYzEt YWM0ZTI4YzJjNWI2LzEveW9GZzctT2ZHakIzX2RMNjhpcGtnRXRVRTRJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85YS9kMjUwMTUtN2QyNC00YWQ1LWEyYzEtYWM0ZTI4YzJjNWI2 LzEveW9GZzctT2ZHakIzX2RMNjhpcGtnRXRVRTRJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjEFUoVYZ xtbhr6NJXlUo9R6SLs5aHSTRv9VBuzDcxWbSzic/bF8eG3zomVAwDGj5zaogWciO 6uDgoY9bd6753gDL0no1caE42ecMmzHGuDhILgoh0aqQjvNHiODm0pWKplkrMyeF /pBgHy/jpd59gypLHVjXgJq9g46Ug1tVMU21Y+tg+SqRYwxQEgOowqnUekgXvVlY O1gXaS6jF3H5djs2tr6ku/52lOjYVdp78zXjD31rZVCty/7ZdQd2ZFlbghWPwtvA 2gNX1Yrb+rxRLu8YlzR8+Avi2Ugx5k9oWsFxltCWMmhYLGUG5PI+9GrF3BUjFGo2 GfaSITHgNz3NIw== -----END CERTIFICATE-----Generated at Mon Jan 26 05:57:08 2026 by rpki-client