This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/f6969c-3a6e-4bec-9742-ece87c6a0318/1/ypAPHhHi0l0LIxatbgEmhIOayB4.mft File: ypAPHhHi0l0LIxatbgEmhIOayB4.mft (raw, json) Hash identifier: +kB2Na1azMP8U9Qiv9z0wkh2GhnDB0sG/foraQKikdE= Subject key identifier: EC:AB:A9:B5:B9:D7:01:5D:60:7E:18:FC:0E:1B:80:53:50:E6:82:25 Authority key identifier: CA:90:0F:1E:11:E2:D2:5D:0B:23:16:AD:6E:01:26:84:83:9A:C8:1E Certificate issuer: /CN=ca900f1e11e2d25d0b2316ad6e012684839ac81e Certificate serial: 019BF808A01BB5B78DA0307AD65D43B19C7B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ypAPHhHi0l0LIxatbgEmhIOayB4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/f6969c-3a6e-4bec-9742-ece87c6a0318/1/ypAPHhHi0l0LIxatbgEmhIOayB4.mft Manifest number: 17EA Signing time: Mon 26 Jan 2026 02:01:13 +0000 Manifest this update: Mon 26 Jan 2026 02:01:13 +0000 Manifest next update: Tue 27 Jan 2026 02:01:13 +0000 Files and hashes: 1: K2muBRhSzEeWwEOKyiaVJYw5K3c.roa (hash: 9FMIKD8yGkaykJTy68XJ8mxhdE87R0V7qtYcMc3oayY=) 2: ypAPHhHi0l0LIxatbgEmhIOayB4.crl (hash: ZLr9Z97FErWUWEh8G73QIkV9bSN1UnTBkaaxIUkATvs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/f6969c-3a6e-4bec-9742-ece87c6a0318/1/ypAPHhHi0l0LIxatbgEmhIOayB4.crl rsync://rpki.ripe.net/repository/DEFAULT/ce/f6969c-3a6e-4bec-9742-ece87c6a0318/1/ypAPHhHi0l0LIxatbgEmhIOayB4.mft rsync://rpki.ripe.net/repository/DEFAULT/ypAPHhHi0l0LIxatbgEmhIOayB4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f8:08:a0:1b:b5:b7:8d:a0:30:7a:d6:5d:43:b1:9c:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ca900f1e11e2d25d0b2316ad6e012684839ac81e Validity Not Before: Jan 26 02:01:13 2026 GMT Not After : Jan 27 02:01:13 2026 GMT Subject: CN=ecaba9b5b9d7015d607e18fc0e1b805350e68225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:03:2c:23:5d:ba:0a:73:21:c1:88:53:d0:73: b0:88:2b:8c:4b:8c:9a:4d:73:8e:e2:fa:60:ce:6a: d6:c5:32:f5:51:3d:7f:83:b7:5b:1d:6d:4a:b2:29: 3c:87:dd:ac:1f:f8:fb:0d:91:9a:c1:c0:1c:a4:68: 7e:2b:45:f6:d0:bc:90:9d:18:ff:11:eb:37:93:18: cd:20:de:11:43:93:84:53:6b:04:5e:e9:ee:fd:f9: 92:0a:7d:86:c8:03:a7:95:1e:94:06:e0:3e:1b:e3: f9:0e:4a:a3:80:c8:21:67:4d:b3:66:ca:0d:d2:90: dc:bb:a4:94:b7:2e:fc:3f:c4:14:cd:61:30:98:64: 25:a8:7d:d2:ac:98:3b:a9:be:cb:18:2b:cd:71:99: 44:17:8e:2f:1c:0f:dc:6f:63:f7:67:7c:cb:bb:14: 65:61:87:e0:a6:6c:c0:36:90:4a:fa:fa:32:f1:5d: c6:d7:75:0c:30:42:12:9d:b3:6c:16:19:e0:38:71: 6b:ad:e9:c3:01:20:b1:2d:7a:fc:bb:c0:e7:6d:02: cf:d8:33:d7:0b:13:da:68:29:fb:f5:02:72:73:94: 27:d8:6d:90:9e:f6:b2:10:64:54:14:dc:e1:8f:4c: ab:6b:d7:6e:8a:b6:23:35:58:90:6d:72:a2:84:25: 2b:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:AB:A9:B5:B9:D7:01:5D:60:7E:18:FC:0E:1B:80:53:50:E6:82:25 X509v3 Authority Key Identifier: keyid:CA:90:0F:1E:11:E2:D2:5D:0B:23:16:AD:6E:01:26:84:83:9A:C8:1E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ypAPHhHi0l0LIxatbgEmhIOayB4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/f6969c-3a6e-4bec-9742-ece87c6a0318/1/ypAPHhHi0l0LIxatbgEmhIOayB4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/f6969c-3a6e-4bec-9742-ece87c6a0318/1/ypAPHhHi0l0LIxatbgEmhIOayB4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption be:31:13:9e:4a:98:34:6d:25:80:33:5f:3a:50:e4:9c:7c:b8: e6:57:01:cf:5b:59:13:d3:ab:a9:05:39:af:b3:3b:a3:e7:9b: 61:75:84:36:a7:b6:bc:7e:56:d6:ef:9b:16:de:0d:e2:2f:9a: cf:a4:a2:27:f5:9a:82:09:38:64:f2:2c:9f:58:68:e6:c2:72: 54:1b:b0:7b:52:43:e3:ac:bf:c6:b0:11:fc:1d:ae:c9:6f:20: 6c:21:aa:fe:f7:79:45:e3:ec:f3:90:ec:dc:6e:9d:17:6f:04: 5c:95:5a:2f:c8:7d:0f:dc:e4:8c:c5:f0:71:d9:1d:6f:41:3c: 64:1d:7b:00:df:42:ed:f3:bb:f3:c7:de:13:09:11:f7:40:d6: f2:83:fd:5b:e7:e2:29:81:f9:68:d8:19:f8:23:07:06:4f:09: 50:4c:6d:7d:c9:d0:68:de:aa:93:3c:81:ed:f9:88:f8:57:29: e9:8e:36:4e:ff:50:79:58:f7:07:09:f1:f4:aa:cc:63:73:74: 28:03:23:d5:fa:95:95:14:3b:ab:4d:9a:06:be:a3:fb:fc:a8: df:1d:5a:47:2e:bc:2f:34:69:40:60:af:34:f4:90:d1:40:92: e6:0e:2f:8b:da:d5:c9:c8:56:97:13:60:34:43:91:86:b0:8a: 6c:67:54:c0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv4CKAbtbeNoDB61l1DsZx7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNhOTAwZjFlMTFlMmQyNWQwYjIzMTZhZDZlMDEyNjg0ODM5 YWM4MWUwHhcNMjYwMTI2MDIwMTEzWhcNMjYwMTI3MDIwMTEzWjAzMTEwLwYDVQQD EyhlY2FiYTliNWI5ZDcwMTVkNjA3ZTE4ZmMwZTFiODA1MzUwZTY4MjI1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxgMsI126CnMhwYhT0HOwiCuMS4ya TXOO4vpgzmrWxTL1UT1/g7dbHW1Ksik8h92sH/j7DZGawcAcpGh+K0X20LyQnRj/ Ees3kxjNIN4RQ5OEU2sEXunu/fmSCn2GyAOnlR6UBuA+G+P5DkqjgMghZ02zZsoN 0pDcu6SUty78P8QUzWEwmGQlqH3SrJg7qb7LGCvNcZlEF44vHA/cb2P3Z3zLuxRl YYfgpmzANpBK+voy8V3G13UMMEISnbNsFhngOHFrrenDASCxLXr8u8DnbQLP2DPX CxPaaCn79QJyc5Qn2G2QnvayEGRUFNzhj0yra9duirYjNViQbXKihCUrlQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOyrqbW51wFdYH4Y/A4bgFNQ5oIlMB8GA1UdIwQY MBaAFMqQDx4R4tJdCyMWrW4BJoSDmsgeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveXBBUEhoSGkwbDBMSXhhdGJnRW1oSU9heUI0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZS9mNjk2OWMtM2E2ZS00YmVjLTk3NDIt ZWNlODdjNmEwMzE4LzEveXBBUEhoSGkwbDBMSXhhdGJnRW1oSU9heUI0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jZS9mNjk2OWMtM2E2ZS00YmVjLTk3NDItZWNlODdjNmEwMzE4 LzEveXBBUEhoSGkwbDBMSXhhdGJnRW1oSU9heUI0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAvjETnkqY NG0lgDNfOlDknHy45lcBz1tZE9OrqQU5r7M7o+ebYXWENqe2vH5W1u+bFt4N4i+a z6SiJ/Waggk4ZPIsn1ho5sJyVBuwe1JD46y/xrAR/B2uyW8gbCGq/vd5RePs85Ds 3G6dF28EXJVaL8h9D9zkjMXwcdkdb0E8ZB17AN9C7fO788feEwkR90DW8oP9W+fi KYH5aNgZ+CMHBk8JUExtfcnQaN6qkzyB7fmI+Fcp6Y42Tv9QeVj3Bwnx9KrMY3N0 KAMj1fqVlRQ7q02aBr6j+/yo3x1aRy68LzRpQGCvNPSQ0UCS5g4vi9rVychWlxNg NEORhrCKbGdUwA== -----END CERTIFICATE-----Generated at Mon Jan 26 11:10:18 2026 by rpki-client