This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft File: PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft (raw, json) Hash identifier: oCayhaNcxg2lcEcV7oj8FBo5oeHC+/EKXeQmE1hY8bU= Subject key identifier: 3B:11:F7:E3:00:3D:7D:5C:E1:3A:3D:E0:9F:B7:0E:4A:54:DD:4C:92 Authority key identifier: 3D:8A:55:3E:05:F0:31:9B:F4:52:FA:20:6C:14:CC:DA:87:30:46:54 Certificate issuer: /CN=3d8a553e05f0319bf452fa206c14ccda87304654 Certificate serial: 019BF53E331DCB66D4D181C2117138676093 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PYpVPgXwMZv0UvogbBTM2ocwRlQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft Manifest number: 11F5 Signing time: Sun 25 Jan 2026 13:00:52 +0000 Manifest this update: Sun 25 Jan 2026 13:00:52 +0000 Manifest next update: Mon 26 Jan 2026 13:00:52 +0000 Files and hashes: 1: 7XPR057HTONIllGtY9NijiuY-tk.roa (hash: rKfjiDRkcr3HFT8PmmA3P0sCBQ3drFmQ5QDnLKCb/BE=) 2: PYpVPgXwMZv0UvogbBTM2ocwRlQ.crl (hash: PQqgsKnCMTgAMixlJLlPyj0RLkIhZPUlOWSm3IuZoqI=) 3: T4FApCxhFe83q9A7YZlC1nZYzIE.roa (hash: LjUt5usAgPWHNriSJWMg7OS8Oagi6w46/dUqLi/UEzA=) 4: Wn-ZLE8xGx2iUZq_8EgFIe3BY1M.roa (hash: SwGxPAdfidv7O5nNS+nKj4I72Qs5sJPeTh9qbwfsZWo=) 5: YuGYvjrFzLezHsgzIUZ0asWCqVk.roa (hash: aZLneGXD5YvsOe9tvMiGcrBxDYxxGmpY4vDCZwd72Z8=) 6: fLae4aR9HsO6ApeohQnbJHEsvgg.roa (hash: /b3Xi59hV2RbWadggK4I0wXvCWO8lTHkzV3V9hJ6K0Y=) 7: jccKxXf-KlBy0OODUdeGAP1Pln4.roa (hash: kXcgJH+D8EkeDblDPw+VtydCo7evj5I/OxvPnwmyUe8=) 8: r2cUyHBMaewNpNV3po9MOZwNcyU.roa (hash: SVkhtUySEPUVdVwXoSgDIclbqsQ0muf2pONZTDoO/YE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.crl rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft rsync://rpki.ripe.net/repository/DEFAULT/PYpVPgXwMZv0UvogbBTM2ocwRlQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f5:3e:33:1d:cb:66:d4:d1:81:c2:11:71:38:67:60:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3d8a553e05f0319bf452fa206c14ccda87304654 Validity Not Before: Jan 25 13:00:52 2026 GMT Not After : Jan 26 13:00:52 2026 GMT Subject: CN=3b11f7e3003d7d5ce13a3de09fb70e4a54dd4c92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:f7:58:6b:cc:e8:8d:25:3c:88:7c:82:b4:cd: e1:96:56:45:bc:58:96:a3:51:08:24:c3:46:24:91: 83:eb:f3:f0:2d:ee:9d:f6:0a:f5:b8:42:72:62:50: cb:34:72:bd:59:85:17:2e:43:7f:56:a5:d8:08:a3: c3:ee:fa:39:9e:16:ec:c0:af:de:15:fc:3d:29:a3: 51:96:83:47:60:b1:a0:f7:3c:a7:fd:c1:fd:30:4d: 13:94:54:40:f4:51:a8:b6:2a:aa:d7:f8:90:8e:11: 7d:7a:24:61:49:4d:4d:38:4e:38:5d:6c:e5:72:57: 3c:6f:a9:88:f6:3d:60:ef:f9:30:b1:78:f6:97:4b: da:a6:bc:6b:77:ba:5a:fd:dc:67:bd:da:a8:f6:ba: 3b:2f:b4:b2:b8:a8:d9:32:96:8f:16:22:0b:67:33: a8:b8:3f:ab:3f:3f:ef:2e:db:ad:37:83:c0:b2:7a: d3:70:54:1f:85:37:2c:d8:08:91:e3:1b:7e:53:fc: 36:b6:94:d1:c2:a9:2a:c9:ab:52:42:1f:a5:1d:a9: 1d:73:f8:ad:08:b3:c0:83:4a:30:7d:bf:69:ea:f3: a3:47:79:59:c2:68:d7:30:3e:b5:e3:4b:17:28:2b: 4c:12:a9:8b:8f:b7:3a:ba:ab:4b:fd:c6:88:49:b8: 00:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:11:F7:E3:00:3D:7D:5C:E1:3A:3D:E0:9F:B7:0E:4A:54:DD:4C:92 X509v3 Authority Key Identifier: keyid:3D:8A:55:3E:05:F0:31:9B:F4:52:FA:20:6C:14:CC:DA:87:30:46:54 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PYpVPgXwMZv0UvogbBTM2ocwRlQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 02:7a:13:43:90:4b:60:c0:7c:43:a9:18:69:5b:da:a7:6a:92: a8:92:6a:68:21:be:6a:7e:97:d9:74:62:d2:85:57:04:18:ec: 8f:5e:a7:7e:c8:16:79:e3:82:51:2e:09:02:10:35:63:93:98: 59:61:6c:e9:c5:19:eb:11:8d:b9:cd:1c:46:b7:64:4c:c1:c4: 35:21:b4:7e:e4:ec:b7:48:81:6c:af:35:53:29:7a:81:ca:cb: d6:96:f0:4d:c3:df:9e:de:f6:3e:0b:02:a0:6a:7b:ba:8e:20: b5:e3:e1:10:ac:a8:1d:26:94:5c:e4:c2:6a:1a:6b:3b:7a:4d: eb:f9:cc:e1:63:c0:4a:48:6b:4a:74:62:76:7d:a4:29:a8:08: c2:4b:e4:1d:25:72:74:b9:87:f1:f6:f6:a2:5a:db:e6:bd:ac: e6:f4:98:31:5c:57:a5:7d:d0:1e:a6:c3:13:5d:b4:b1:68:a8: 50:43:b4:0a:50:e5:d5:dd:a6:08:f3:b1:ed:32:41:78:29:87: e3:2b:1c:25:88:fe:fc:33:e0:03:e7:7e:77:a0:44:a9:39:7d: 10:80:b7:a5:3b:57:55:e9:a3:ef:b2:37:aa:43:6a:1e:0a:7a: 32:7c:ee:86:5a:89:fa:91:59:1a:b1:19:a5:cb:ba:dc:9a:1d: a5:88:bf:20 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv1PjMdy2bU0YHCEXE4Z2CTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNkOGE1NTNlMDVmMDMxOWJmNDUyZmEyMDZjMTRjY2RhODcz MDQ2NTQwHhcNMjYwMTI1MTMwMDUyWhcNMjYwMTI2MTMwMDUyWjAzMTEwLwYDVQQD EygzYjExZjdlMzAwM2Q3ZDVjZTEzYTNkZTA5ZmI3MGU0YTU0ZGQ0YzkyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq/dYa8zojSU8iHyCtM3hllZFvFiW o1EIJMNGJJGD6/PwLe6d9gr1uEJyYlDLNHK9WYUXLkN/VqXYCKPD7vo5nhbswK/e Ffw9KaNRloNHYLGg9zyn/cH9ME0TlFRA9FGotiqq1/iQjhF9eiRhSU1NOE44XWzl clc8b6mI9j1g7/kwsXj2l0vaprxrd7pa/dxnvdqo9ro7L7SyuKjZMpaPFiILZzOo uD+rPz/vLtutN4PAsnrTcFQfhTcs2AiR4xt+U/w2tpTRwqkqyatSQh+lHakdc/it CLPAg0owfb9p6vOjR3lZwmjXMD6140sXKCtMEqmLj7c6uqtL/caISbgAbQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDsR9+MAPX1c4To94J+3DkpU3UySMB8GA1UdIwQY MBaAFD2KVT4F8DGb9FL6IGwUzNqHMEZUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUFlwVlBnWHdNWnYwVXZvZ2JCVE0yb2N3UmxRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy81MmNlNTQtZTQ5Yy00MTFjLTg1Mjct MGZiNDgyM2Y1Yjg3LzEvUFlwVlBnWHdNWnYwVXZvZ2JCVE0yb2N3UmxRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNy81MmNlNTQtZTQ5Yy00MTFjLTg1MjctMGZiNDgyM2Y1Yjg3 LzEvUFlwVlBnWHdNWnYwVXZvZ2JCVE0yb2N3UmxRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAnoTQ5BL YMB8Q6kYaVvap2qSqJJqaCG+an6X2XRi0oVXBBjsj16nfsgWeeOCUS4JAhA1Y5OY WWFs6cUZ6xGNuc0cRrdkTMHENSG0fuTst0iBbK81Uyl6gcrL1pbwTcPfnt72PgsC oGp7uo4gtePhEKyoHSaUXOTCahprO3pN6/nM4WPASkhrSnRidn2kKagIwkvkHSVy dLmH8fb2olrb5r2s5vSYMVxXpX3QHqbDE120sWioUEO0ClDl1d2mCPOx7TJBeCmH 4yscJYj+/DPgA+d+d6BEqTl9EIC3pTtXVemj77I3qkNqHgp6MnzuhlqJ+pFZGrEZ pcu63JodpYi/IA== -----END CERTIFICATE-----Generated at Sun Jan 25 16:46:08 2026 by rpki-client