This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/f377bd-8e42-4875-a124-3abfafe74aa9/1/YKzX2WuVbeXbA2c80dHjo3uN2d0.mft File: YKzX2WuVbeXbA2c80dHjo3uN2d0.mft (raw, json) Hash identifier: OZ03NEJfzmEMbJdnzNnuayK9JSqOzR1PiDL0oVapfrY= Subject key identifier: 7D:66:F9:BC:C4:4C:B3:FE:66:32:00:DF:F5:91:31:D6:F1:C9:3B:E7 Authority key identifier: 60:AC:D7:D9:6B:95:6D:E5:DB:03:67:3C:D1:D1:E3:A3:7B:8D:D9:DD Certificate issuer: /CN=60acd7d96b956de5db03673cd1d1e3a37b8dd9dd Certificate serial: 019BF687C5EECFBF0AA5CD9012EC61CDA262 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YKzX2WuVbeXbA2c80dHjo3uN2d0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/f377bd-8e42-4875-a124-3abfafe74aa9/1/YKzX2WuVbeXbA2c80dHjo3uN2d0.mft Manifest number: 073C Signing time: Sun 25 Jan 2026 19:00:51 +0000 Manifest this update: Sun 25 Jan 2026 19:00:51 +0000 Manifest next update: Mon 26 Jan 2026 19:00:51 +0000 Files and hashes: 1: Ewfu9z930MhyPX8313muaLXe2oM.roa (hash: xaNiT68XuLXKua+vW1yOiyZ2EeD/WOwvk5iab3yyEqE=) 2: YKzX2WuVbeXbA2c80dHjo3uN2d0.crl (hash: OARHF8ZRRjHopipM+H2PeXqtLIYQa+LnPpxoUegNnhM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/f377bd-8e42-4875-a124-3abfafe74aa9/1/YKzX2WuVbeXbA2c80dHjo3uN2d0.crl rsync://rpki.ripe.net/repository/DEFAULT/bd/f377bd-8e42-4875-a124-3abfafe74aa9/1/YKzX2WuVbeXbA2c80dHjo3uN2d0.mft rsync://rpki.ripe.net/repository/DEFAULT/YKzX2WuVbeXbA2c80dHjo3uN2d0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f6:87:c5:ee:cf:bf:0a:a5:cd:90:12:ec:61:cd:a2:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=60acd7d96b956de5db03673cd1d1e3a37b8dd9dd Validity Not Before: Jan 25 19:00:51 2026 GMT Not After : Jan 26 19:00:51 2026 GMT Subject: CN=7d66f9bcc44cb3fe663200dff59131d6f1c93be7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:20:8a:84:ba:af:ab:35:23:64:7c:6c:4c:93: bb:7d:95:89:fe:ba:f9:4b:ba:fb:25:f8:34:ab:bc: 14:d4:85:10:82:7a:49:f6:66:a9:47:dc:5d:31:37: 67:00:68:bb:6f:41:91:6c:db:4f:e6:ac:ad:9e:86: 9a:de:b2:96:30:c6:27:c4:69:cc:9e:8f:c3:cc:90: 7b:2d:d9:5e:ed:09:a4:fe:08:51:5c:80:a7:be:9e: be:17:94:f4:8a:cb:0b:c0:f7:22:33:23:02:c8:79: e4:a4:b9:3b:a1:e0:d1:d1:b0:d2:58:d4:6a:b0:45: 09:55:cd:45:31:b9:5e:ce:60:94:db:ae:8b:3d:78: 9d:2f:9f:1d:4a:4d:16:d7:b2:16:3e:f3:da:73:07: c0:63:37:db:cd:31:4d:bf:74:ab:90:aa:ab:ed:19: 3e:06:37:6e:ce:95:f6:a0:44:49:6c:72:76:53:52: 2a:68:6e:32:ca:da:6d:da:24:b9:af:e9:37:9f:5a: 22:ed:04:33:33:1c:2f:0c:b1:10:c1:9c:90:a3:5c: 79:74:48:dc:0d:0d:11:de:0d:3c:0b:71:4c:50:56: e9:62:5d:84:b0:ff:21:3a:3a:a8:9f:dd:7e:56:08: 6c:a9:79:10:33:74:79:6d:4c:65:b9:45:8b:27:af: 77:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:66:F9:BC:C4:4C:B3:FE:66:32:00:DF:F5:91:31:D6:F1:C9:3B:E7 X509v3 Authority Key Identifier: keyid:60:AC:D7:D9:6B:95:6D:E5:DB:03:67:3C:D1:D1:E3:A3:7B:8D:D9:DD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YKzX2WuVbeXbA2c80dHjo3uN2d0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/f377bd-8e42-4875-a124-3abfafe74aa9/1/YKzX2WuVbeXbA2c80dHjo3uN2d0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/f377bd-8e42-4875-a124-3abfafe74aa9/1/YKzX2WuVbeXbA2c80dHjo3uN2d0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 43:6f:85:17:40:8b:ef:ac:07:17:18:4c:77:c1:37:58:9b:41: 39:70:7b:6a:41:d8:8d:22:a3:c7:70:7e:26:54:cf:b8:49:95: 2b:60:ac:c4:23:33:89:5a:58:c2:6a:1a:40:8e:9b:e0:2d:c7: 2a:6c:33:cb:7f:40:74:6b:3b:e5:a8:e7:fd:91:8f:97:77:e8: db:4a:b6:8f:52:50:25:56:90:26:a2:67:7b:9a:38:9c:4c:7f: 94:e9:c0:e8:06:45:14:01:ac:57:06:f1:a8:ab:29:6f:58:2c: 28:a8:c0:09:53:0a:fc:2b:b3:2f:25:13:8f:3a:29:59:83:47: a9:23:55:a5:36:1d:b6:a6:37:72:73:d8:95:64:3d:3c:fd:06: 3e:08:55:f0:3e:d0:a5:8d:23:99:76:5e:e1:a1:63:e9:6a:61: 22:fd:a9:16:4f:bf:97:8e:ba:fb:95:41:17:85:9a:65:18:43: fd:44:6d:4f:6f:b1:12:68:c5:b1:a6:88:79:88:7a:70:fa:bf: a3:bf:7a:e5:f7:81:ae:8f:27:8d:8d:01:b1:4a:c2:ad:a8:30: 71:6f:3c:93:77:92:8f:6b:c5:46:3c:24:ae:53:f0:19:a8:74: 54:c5:ab:b2:9d:c7:fa:68:31:3f:6a:5e:77:32:56:bd:fc:e2: e8:ac:64:1f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv2h8Xuz78Kpc2QEuxhzaJiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwYWNkN2Q5NmI5NTZkZTVkYjAzNjczY2QxZDFlM2EzN2I4 ZGQ5ZGQwHhcNMjYwMTI1MTkwMDUxWhcNMjYwMTI2MTkwMDUxWjAzMTEwLwYDVQQD Eyg3ZDY2ZjliY2M0NGNiM2ZlNjYzMjAwZGZmNTkxMzFkNmYxYzkzYmU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmCCKhLqvqzUjZHxsTJO7fZWJ/rr5 S7r7Jfg0q7wU1IUQgnpJ9mapR9xdMTdnAGi7b0GRbNtP5qytnoaa3rKWMMYnxGnM no/DzJB7Ldle7Qmk/ghRXICnvp6+F5T0issLwPciMyMCyHnkpLk7oeDR0bDSWNRq sEUJVc1FMblezmCU266LPXidL58dSk0W17IWPvPacwfAYzfbzTFNv3SrkKqr7Rk+ BjduzpX2oERJbHJ2U1IqaG4yytpt2iS5r+k3n1oi7QQzMxwvDLEQwZyQo1x5dEjc DQ0R3g08C3FMUFbpYl2EsP8hOjqon91+VghsqXkQM3R5bUxluUWLJ693PQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFH1m+bzETLP+ZjIA3/WRMdbxyTvnMB8GA1UdIwQY MBaAFGCs19lrlW3l2wNnPNHR46N7jdndMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWUt6WDJXdVZiZVhiQTJjODBkSGpvM3VOMmQwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC9mMzc3YmQtOGU0Mi00ODc1LWExMjQt M2FiZmFmZTc0YWE5LzEvWUt6WDJXdVZiZVhiQTJjODBkSGpvM3VOMmQwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZC9mMzc3YmQtOGU0Mi00ODc1LWExMjQtM2FiZmFmZTc0YWE5 LzEvWUt6WDJXdVZiZVhiQTJjODBkSGpvM3VOMmQwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQ2+FF0CL 76wHFxhMd8E3WJtBOXB7akHYjSKjx3B+JlTPuEmVK2CsxCMziVpYwmoaQI6b4C3H Kmwzy39AdGs75ajn/ZGPl3fo20q2j1JQJVaQJqJne5o4nEx/lOnA6AZFFAGsVwbx qKspb1gsKKjACVMK/CuzLyUTjzopWYNHqSNVpTYdtqY3cnPYlWQ9PP0GPghV8D7Q pY0jmXZe4aFj6WphIv2pFk+/l466+5VBF4WaZRhD/URtT2+xEmjFsaaIeYh6cPq/ o7965feBro8njY0BsUrCragwcW88k3eSj2vFRjwkrlPwGah0VMWrsp3H+mgxP2pe dzJWvfzi6KxkHw== -----END CERTIFICATE-----Generated at Sun Jan 25 22:34:59 2026 by rpki-client