This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft File: HY6N9cAxEHEY2mHymrT0GdKdWoo.mft (raw, json) Hash identifier: wZZ/pV+wia8t2WvQVpwh4KQpeafztZzLRvl0VRiiKAY= Subject key identifier: A1:1E:58:8A:C9:A6:17:FD:E0:DA:EF:79:F6:D4:F8:B3:56:54:96:A1 Authority key identifier: 1D:8E:8D:F5:C0:31:10:71:18:DA:61:F2:9A:B4:F4:19:D2:9D:5A:8A Certificate issuer: /CN=1d8e8df5c031107118da61f29ab4f419d29d5a8a Certificate serial: 019BF808317970367C3E02C202950D2D7C2D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HY6N9cAxEHEY2mHymrT0GdKdWoo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft Manifest number: 03FF Signing time: Mon 26 Jan 2026 02:00:45 +0000 Manifest this update: Mon 26 Jan 2026 02:00:45 +0000 Manifest next update: Tue 27 Jan 2026 02:00:45 +0000 Files and hashes: 1: HY6N9cAxEHEY2mHymrT0GdKdWoo.crl (hash: /i0B3SfvOe4dGSE/bQonRw8we5UlNuFAAgggFurMhRo=) 2: XvJvaUc4gaJUToQ76MM1kHVGNGU.roa (hash: NE/4IfdQ6s0w4LuquGmioWt3Qf9HyX4cZ81awfNlomU=) 3: m9orr3_HDB2VIxsnO3nw4fOWGlA.roa (hash: IDz4lKOdFmT1RLfeCHLt7gBIXRdFVo8h3QOhQHPZfWE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.crl rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft rsync://rpki.ripe.net/repository/DEFAULT/HY6N9cAxEHEY2mHymrT0GdKdWoo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f8:08:31:79:70:36:7c:3e:02:c2:02:95:0d:2d:7c:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1d8e8df5c031107118da61f29ab4f419d29d5a8a Validity Not Before: Jan 26 02:00:45 2026 GMT Not After : Jan 27 02:00:45 2026 GMT Subject: CN=a11e588ac9a617fde0daef79f6d4f8b3565496a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:aa:a1:82:f0:e5:bd:cb:16:a4:4f:56:63:23: 10:fa:a8:55:75:29:58:da:07:04:8a:6c:d2:51:24: 2d:20:c6:2b:70:e0:37:a3:27:c6:40:2d:b9:e2:ea: 58:93:68:18:26:41:a0:85:c5:84:93:76:35:1b:83: ba:48:3a:19:15:0d:ba:5b:fe:44:58:7a:68:96:54: 3d:47:16:b8:2f:50:fa:c8:95:6e:1b:dd:40:45:ad: e1:d2:61:8b:2f:29:35:32:bf:a0:e1:ca:37:fa:2f: d3:1e:30:20:a9:da:25:65:fb:37:9d:5d:6a:75:c8: ab:d4:ef:b4:e0:2c:e0:2f:8f:e2:af:e8:63:07:50: 83:6b:1f:12:a4:6c:d7:a7:44:30:20:89:87:1a:ef: 35:f0:51:86:dd:d6:9a:00:c7:16:35:5c:56:97:b8: de:5b:19:60:4b:55:44:44:9b:6e:84:af:2f:2d:b0: 1b:90:bf:d4:9e:1a:71:bb:14:6a:04:7e:53:41:ea: 10:ba:f5:04:27:38:11:39:dd:f6:51:ad:c7:2f:49: 85:67:cd:7b:2e:53:93:ee:15:de:3f:fd:9a:50:11: 5a:92:dc:c4:8d:f9:f1:64:0d:4e:75:1c:67:51:13: e0:fd:77:75:36:3e:be:f2:cf:aa:f5:82:b4:77:f5: 3e:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:1E:58:8A:C9:A6:17:FD:E0:DA:EF:79:F6:D4:F8:B3:56:54:96:A1 X509v3 Authority Key Identifier: keyid:1D:8E:8D:F5:C0:31:10:71:18:DA:61:F2:9A:B4:F4:19:D2:9D:5A:8A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HY6N9cAxEHEY2mHymrT0GdKdWoo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/55ac67-9c76-4893-89a5-b1d38b13fda9/1/HY6N9cAxEHEY2mHymrT0GdKdWoo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0c:11:41:37:f9:b3:fd:94:6b:cc:e4:ae:4d:05:4d:97:f8:50: 79:06:b4:40:f3:3d:52:53:ec:c9:cb:7b:ef:f0:de:b7:c3:e7: b7:6e:b7:c9:ac:45:72:1d:21:11:fa:db:f3:a5:53:e7:b1:41: 5a:52:58:57:5f:4c:0a:57:39:3c:b5:4d:35:5d:c4:cf:cb:35: 26:bc:c7:17:fb:7b:10:d2:05:37:8d:fa:8f:be:bd:10:c1:2b: ee:55:09:54:7a:d4:dc:19:e7:e4:3f:cd:e6:a5:bc:08:8b:14: 45:c9:43:b4:4c:36:ac:8a:0d:02:5d:c6:c2:4b:c4:ac:ba:2d: 71:f7:45:41:01:3c:22:98:69:7a:e7:80:5b:df:8a:47:2a:ba: a4:d3:ec:fe:92:83:c9:52:03:ac:5c:64:3a:92:d1:06:28:9e: 14:de:6c:32:a1:3c:5d:3c:45:0c:3d:0a:5e:94:60:e2:6b:ef: 98:15:e1:a1:89:55:24:de:9d:d0:54:73:89:1e:25:fb:43:9f: 16:52:0d:b9:18:95:03:65:8f:c4:76:62:1b:32:2e:a2:d0:78: dc:92:32:cb:b4:81:b8:b8:e0:62:cf:c1:83:a5:f0:68:b1:a2: 5a:df:1b:ea:be:80:28:1d:69:f3:36:7e:a8:d5:ce:2b:55:a6: ba:11:9e:d5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv4CDF5cDZ8PgLCApUNLXwtMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFkOGU4ZGY1YzAzMTEwNzExOGRhNjFmMjlhYjRmNDE5ZDI5 ZDVhOGEwHhcNMjYwMTI2MDIwMDQ1WhcNMjYwMTI3MDIwMDQ1WjAzMTEwLwYDVQQD EyhhMTFlNTg4YWM5YTYxN2ZkZTBkYWVmNzlmNmQ0ZjhiMzU2NTQ5NmExMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq6qhgvDlvcsWpE9WYyMQ+qhVdSlY 2gcEimzSUSQtIMYrcOA3oyfGQC254upYk2gYJkGghcWEk3Y1G4O6SDoZFQ26W/5E WHpollQ9Rxa4L1D6yJVuG91ARa3h0mGLLyk1Mr+g4co3+i/THjAgqdolZfs3nV1q dcir1O+04CzgL4/ir+hjB1CDax8SpGzXp0QwIImHGu818FGG3daaAMcWNVxWl7je WxlgS1VERJtuhK8vLbAbkL/UnhpxuxRqBH5TQeoQuvUEJzgROd32Ua3HL0mFZ817 LlOT7hXeP/2aUBFaktzEjfnxZA1OdRxnURPg/Xd1Nj6+8s+q9YK0d/U+ZQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKEeWIrJphf94NrvefbU+LNWVJahMB8GA1UdIwQY MBaAFB2OjfXAMRBxGNph8pq09BnSnVqKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSFk2TjljQXhFSEVZMm1IeW1yVDBHZEtkV29vLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS81NWFjNjctOWM3Ni00ODkzLTg5YTUt YjFkMzhiMTNmZGE5LzEvSFk2TjljQXhFSEVZMm1IeW1yVDBHZEtkV29vLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYS81NWFjNjctOWM3Ni00ODkzLTg5YTUtYjFkMzhiMTNmZGE5 LzEvSFk2TjljQXhFSEVZMm1IeW1yVDBHZEtkV29vLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADBFBN/mz /ZRrzOSuTQVNl/hQeQa0QPM9UlPsyct77/Det8Pnt263yaxFch0hEfrb86VT57FB WlJYV19MClc5PLVNNV3Ez8s1JrzHF/t7ENIFN436j769EMEr7lUJVHrU3Bnn5D/N 5qW8CIsURclDtEw2rIoNAl3GwkvErLotcfdFQQE8IphpeueAW9+KRyq6pNPs/pKD yVIDrFxkOpLRBiieFN5sMqE8XTxFDD0KXpRg4mvvmBXhoYlVJN6d0FRziR4l+0Of FlINuRiVA2WPxHZiGzIuotB43JIyy7SBuLjgYs/Bg6XwaLGiWt8b6r6AKB1p8zZ+ qNXOK1WmuhGe1Q== -----END CERTIFICATE-----Generated at Mon Jan 26 03:59:53 2026 by rpki-client