This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/2f67b9-490b-43ef-b088-4ab3973502fb/1/YC8n-tkkUqJUswoGDtODsTx1jtY.mft File: YC8n-tkkUqJUswoGDtODsTx1jtY.mft (raw, json) Hash identifier: hbVlay6sIwxN9UHA2l0YjCtF9yDnos6ay6gpPVyXtnI= Subject key identifier: 53:BB:C4:67:05:8A:CC:CE:96:FA:57:6C:E3:E3:CB:EB:60:11:B0:AB Authority key identifier: 60:2F:27:FA:D9:24:52:A2:54:B3:0A:06:0E:D3:83:B1:3C:75:8E:D6 Certificate issuer: /CN=602f27fad92452a254b30a060ed383b13c758ed6 Certificate serial: 019BF8766FA8AFEDF48BD5B691EC2D3BF28A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YC8n-tkkUqJUswoGDtODsTx1jtY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/2f67b9-490b-43ef-b088-4ab3973502fb/1/YC8n-tkkUqJUswoGDtODsTx1jtY.mft Manifest number: 0A4E Signing time: Mon 26 Jan 2026 04:01:09 +0000 Manifest this update: Mon 26 Jan 2026 04:01:09 +0000 Manifest next update: Tue 27 Jan 2026 04:01:09 +0000 Files and hashes: 1: YC8n-tkkUqJUswoGDtODsTx1jtY.crl (hash: k+RJozO3Zbr5HJXyiQ3VqAaKzh7+1ngIMIBPIKNSdMo=) 2: yjdYp8YMAtj2_Dytxy6NEaoV14M.roa (hash: /wldluyAt2xqR07lomlO0CgTxaAUVhzs9ZM3VW1cPGU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/2f67b9-490b-43ef-b088-4ab3973502fb/1/YC8n-tkkUqJUswoGDtODsTx1jtY.crl rsync://rpki.ripe.net/repository/DEFAULT/d1/2f67b9-490b-43ef-b088-4ab3973502fb/1/YC8n-tkkUqJUswoGDtODsTx1jtY.mft rsync://rpki.ripe.net/repository/DEFAULT/YC8n-tkkUqJUswoGDtODsTx1jtY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 04:01:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f8:76:6f:a8:af:ed:f4:8b:d5:b6:91:ec:2d:3b:f2:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=602f27fad92452a254b30a060ed383b13c758ed6 Validity Not Before: Jan 26 04:01:09 2026 GMT Not After : Jan 27 04:01:09 2026 GMT Subject: CN=53bbc467058accce96fa576ce3e3cbeb6011b0ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:4e:4d:3c:a8:fa:24:b0:6c:4d:17:81:8e:09: 85:db:33:c3:96:b6:fe:20:5d:02:7b:6b:8a:c9:95: e3:1d:26:b7:8f:78:e2:91:48:48:60:bc:fc:49:fc: 77:a2:e2:e6:15:1d:d8:f5:e0:02:51:68:50:fb:02: c1:26:2f:75:d9:c8:bc:23:00:24:ff:c4:10:31:13: 26:4c:cf:8c:90:55:ec:c0:c5:84:fa:c4:1b:5a:8c: 97:b2:45:c9:3f:2f:62:36:c1:16:dd:f5:7e:44:00: 25:46:8e:1a:a2:72:9e:eb:42:60:3d:1e:09:ac:24: d9:a7:c8:4d:67:00:2d:05:cf:5f:00:b5:65:ab:f4: 49:ce:ad:52:3c:ad:17:74:8b:49:57:fd:cc:0f:9f: a0:01:ca:96:06:c0:66:57:ea:34:eb:d0:3c:e7:c3: 99:f3:f4:57:08:8a:27:02:67:c9:7e:d8:e8:1f:ed: ae:91:eb:73:10:ae:2e:92:14:50:f9:d5:11:2c:31: 6a:05:97:66:dd:f3:64:b6:d4:28:a0:15:a7:94:d1: 6b:99:0a:08:b8:c3:af:d0:a0:dc:d5:33:5e:68:a3: cb:ec:d5:22:51:2d:e6:4a:19:31:db:3d:b8:8c:41: 93:88:7b:b3:3b:c1:f8:b9:6b:4d:69:12:d7:52:9f: 62:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:BB:C4:67:05:8A:CC:CE:96:FA:57:6C:E3:E3:CB:EB:60:11:B0:AB X509v3 Authority Key Identifier: keyid:60:2F:27:FA:D9:24:52:A2:54:B3:0A:06:0E:D3:83:B1:3C:75:8E:D6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YC8n-tkkUqJUswoGDtODsTx1jtY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/2f67b9-490b-43ef-b088-4ab3973502fb/1/YC8n-tkkUqJUswoGDtODsTx1jtY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/2f67b9-490b-43ef-b088-4ab3973502fb/1/YC8n-tkkUqJUswoGDtODsTx1jtY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9f:ee:82:c9:c9:39:2a:82:1d:be:90:6f:f6:ff:f7:c2:3d:49: 72:27:fc:8b:4e:ac:3c:56:6f:b4:c9:7c:d9:7c:18:07:02:a4: 18:b1:04:36:6b:f2:b6:a3:d9:d9:b7:32:79:99:54:c1:64:ef: a9:6d:19:5a:02:32:41:77:43:e2:42:b1:01:3f:50:e4:1c:b6: ba:01:85:cf:d7:74:c7:51:9f:93:fd:11:d8:79:eb:ad:59:6f: b6:14:44:6b:26:8f:3f:88:51:fd:75:1a:2b:2d:04:22:67:76: 4a:12:7a:8b:fc:13:95:24:ea:21:18:08:d0:1a:af:54:44:39: 25:91:a3:e4:56:8d:5e:1a:f6:86:2c:2c:23:0a:e5:0f:e9:17: 8f:1a:75:29:98:5d:4a:75:e3:d7:f5:00:13:4c:cf:1f:d7:7d: 2a:28:88:4b:45:18:7b:1e:b8:c9:08:d2:bd:0f:1b:f1:09:e9: d6:16:ad:40:a2:59:fa:45:76:b0:e6:77:00:77:e2:b3:37:1d: bc:64:49:a5:9b:1f:b0:c0:70:89:00:37:5b:7b:31:99:17:89: f6:a4:48:01:c4:1f:67:a7:75:30:c8:32:a9:ef:f7:2e:96:71: 39:e9:28:99:c4:50:7c:b5:9d:29:a9:69:1c:93:e2:84:18:25: 08:3c:ee:a2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv4dm+or+30i9W2kewtO/KKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwMmYyN2ZhZDkyNDUyYTI1NGIzMGEwNjBlZDM4M2IxM2M3 NThlZDYwHhcNMjYwMTI2MDQwMTA5WhcNMjYwMTI3MDQwMTA5WjAzMTEwLwYDVQQD Eyg1M2JiYzQ2NzA1OGFjY2NlOTZmYTU3NmNlM2UzY2JlYjYwMTFiMGFiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtE5NPKj6JLBsTReBjgmF2zPDlrb+ IF0Ce2uKyZXjHSa3j3jikUhIYLz8Sfx3ouLmFR3Y9eACUWhQ+wLBJi912ci8IwAk /8QQMRMmTM+MkFXswMWE+sQbWoyXskXJPy9iNsEW3fV+RAAlRo4aonKe60JgPR4J rCTZp8hNZwAtBc9fALVlq/RJzq1SPK0XdItJV/3MD5+gAcqWBsBmV+o069A858OZ 8/RXCIonAmfJftjoH+2uketzEK4ukhRQ+dURLDFqBZdm3fNkttQooBWnlNFrmQoI uMOv0KDc1TNeaKPL7NUiUS3mShkx2z24jEGTiHuzO8H4uWtNaRLXUp9i0wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFO7xGcFiszOlvpXbOPjy+tgEbCrMB8GA1UdIwQY MBaAFGAvJ/rZJFKiVLMKBg7Tg7E8dY7WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWUM4bi10a2tVcUpVc3dvR0R0T0RzVHgxanRZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMS8yZjY3YjktNDkwYi00M2VmLWIwODgt NGFiMzk3MzUwMmZiLzEvWUM4bi10a2tVcUpVc3dvR0R0T0RzVHgxanRZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMS8yZjY3YjktNDkwYi00M2VmLWIwODgtNGFiMzk3MzUwMmZi LzEvWUM4bi10a2tVcUpVc3dvR0R0T0RzVHgxanRZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAn+6Cyck5 KoIdvpBv9v/3wj1Jcif8i06sPFZvtMl82XwYBwKkGLEENmvytqPZ2bcyeZlUwWTv qW0ZWgIyQXdD4kKxAT9Q5By2ugGFz9d0x1Gfk/0R2HnrrVlvthREayaPP4hR/XUa Ky0EImd2ShJ6i/wTlSTqIRgI0BqvVEQ5JZGj5FaNXhr2hiwsIwrlD+kXjxp1KZhd SnXj1/UAE0zPH9d9KiiIS0UYex64yQjSvQ8b8Qnp1hatQKJZ+kV2sOZ3AHfiszcd vGRJpZsfsMBwiQA3W3sxmReJ9qRIAcQfZ6d1MMgyqe/3LpZxOekomcRQfLWdKalp HJPihBglCDzuog== -----END CERTIFICATE-----Generated at Mon Jan 26 11:48:29 2026 by rpki-client