This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.mft File: tYaoZDYz6YdBEai881GKCQXyhgk.mft (raw, json) Hash identifier: IIcfFuufRIHbIUGzOfDOaA3UBUNehfuD8remBYSLocg= Subject key identifier: A2:9E:4B:F9:6B:DC:6A:18:3F:F3:C2:E8:B5:C7:A2:B4:E4:44:C1:7E Authority key identifier: B5:86:A8:64:36:33:E9:87:41:11:A8:BC:F3:51:8A:09:05:F2:86:09 Certificate issuer: /CN=b586a8643633e9874111a8bcf3518a0905f28609 Certificate serial: 019BF68782B7043CD040CF21626A929FEC56 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tYaoZDYz6YdBEai881GKCQXyhgk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.mft Manifest number: 1392 Signing time: Sun 25 Jan 2026 19:00:34 +0000 Manifest this update: Sun 25 Jan 2026 19:00:34 +0000 Manifest next update: Mon 26 Jan 2026 19:00:34 +0000 Files and hashes: 1: R_zL9EhetPG627p64jnL_1AQk_k.roa (hash: /ASm15I9YtFuL/r1IrLrMNiCv/23kZabo3hMsyygvPM=) 2: Zx2Ej29t4Sy3ugAdSAEr8wgh-eI.roa (hash: 6qePl3E6/9bWQI3GzNjE+NBTWrA6JE82fp1zkkf+j8o=) 3: gPytstS2H2DCx0G35K4nAVksneE.roa (hash: I34ZNFgqBn6ft829pIhUL9qJ7ZwAtJssKpKV0YYtJmI=) 4: hL4U-26oJ-d8CY7a6r3Udux4pFM.roa (hash: 8nT0Nid1k0WCSq4dufjGbFyrf1TbKzMQQr3veAEfmRs=) 5: jJ74mpm8B1pyvT1MNhCtSe0cxRk.roa (hash: OKs2X6l4NJ7txPZTz3RUzDrNyB2I3km6f/sNQFkFGUQ=) 6: tYaoZDYz6YdBEai881GKCQXyhgk.crl (hash: uu8o/XqkY2d24cS0dpWpR+66fzgAXBDx4LVsECz81bY=) 7: v_CzW-gEtbdZtpCnpKHVty7BP7s.roa (hash: FK1HiNTHGuvdh1/S7hYfIVoOC1e1CT6RxRS6KDmNYRQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.crl rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.mft rsync://rpki.ripe.net/repository/DEFAULT/tYaoZDYz6YdBEai881GKCQXyhgk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f6:87:82:b7:04:3c:d0:40:cf:21:62:6a:92:9f:ec:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b586a8643633e9874111a8bcf3518a0905f28609 Validity Not Before: Jan 25 19:00:34 2026 GMT Not After : Jan 26 19:00:34 2026 GMT Subject: CN=a29e4bf96bdc6a183ff3c2e8b5c7a2b4e444c17e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:86:53:05:0b:be:d6:a7:4c:cd:6b:ef:29:c6: 5e:c6:85:24:0c:9b:d9:50:4d:8f:cd:30:aa:b6:95: 45:40:b7:5d:c9:20:54:0d:b3:08:cc:57:5d:26:2a: a9:73:c3:b4:88:55:63:b7:32:ea:fd:49:21:be:8c: f7:18:19:49:41:42:64:5f:a3:60:ae:37:8e:5a:3e: 56:bf:61:a2:eb:49:b9:f4:4f:10:20:d0:81:80:93: d7:bc:56:f0:2a:1d:6a:0d:c3:80:ad:a9:21:46:a4: 0c:50:52:a8:d5:91:ed:cf:bf:69:fe:56:26:55:18: 1a:07:a9:d2:26:2b:cd:f7:1a:0d:73:e0:66:8b:9b: 76:58:f5:67:50:8b:7d:69:6b:5c:0f:a4:64:76:f4: 27:45:2a:38:05:2f:d4:a2:98:e2:12:ac:1f:b2:8a: 9e:4a:9f:14:48:89:10:ae:24:2f:65:a6:48:79:9e: a7:7e:ba:16:8e:68:90:10:4e:db:70:8e:1a:08:3c: 1d:48:22:62:4d:5f:d0:52:52:d4:78:3a:f4:a9:ff: 30:28:cf:6c:3e:06:ef:11:b7:0a:56:7b:16:3d:4f: f0:64:a0:2e:54:fb:4a:a8:75:c2:f1:14:eb:90:6d: ce:e2:9b:9d:20:ad:cb:d4:c2:73:46:c0:36:8e:7b: 5f:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:9E:4B:F9:6B:DC:6A:18:3F:F3:C2:E8:B5:C7:A2:B4:E4:44:C1:7E X509v3 Authority Key Identifier: keyid:B5:86:A8:64:36:33:E9:87:41:11:A8:BC:F3:51:8A:09:05:F2:86:09 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tYaoZDYz6YdBEai881GKCQXyhgk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 46:b1:3a:c8:25:3a:84:fa:3f:f5:30:47:c9:44:1e:2a:5f:23: 5f:62:4c:1a:fe:55:cc:a3:ba:01:e8:1f:8a:75:9b:c8:ac:84: 7c:a2:e1:18:c1:39:b8:8c:e2:66:7e:e7:e9:fd:68:f4:f7:ce: 0e:72:da:29:da:75:17:d9:81:c0:44:8d:46:b1:ca:c5:df:37: 43:e7:79:57:12:31:7e:3d:68:9a:fa:10:17:f7:71:e5:ea:0a: 1a:37:7b:42:ce:ec:9e:8b:1c:65:bd:0c:00:3b:eb:6b:0e:bc: d9:08:60:84:9d:ca:af:b2:5c:76:d6:fa:62:f3:f4:c6:9f:f0: a5:c4:d6:9e:f1:81:44:77:15:a3:8f:48:62:4a:b3:fa:7a:7e: 6e:24:9e:5f:47:44:a2:0c:a7:d5:80:96:87:26:70:67:a9:12: e8:14:6a:ca:e0:80:79:4c:82:6d:2d:dc:9e:63:85:01:39:8d: b0:f0:f5:15:3e:1b:59:ce:eb:ed:45:74:29:92:3b:6e:be:46: df:e5:8f:ac:c8:56:8d:4d:ab:62:b6:f0:3d:e7:53:81:6c:ee: 6c:16:80:b3:5f:59:dc:55:e5:3e:7d:ac:7d:d5:b8:d5:30:18: 71:f3:ac:f5:3b:a9:81:ab:d7:2e:7c:c5:8c:a7:96:ba:68:e2: d2:c9:ec:5c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv2h4K3BDzQQM8hYmqSn+xWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI1ODZhODY0MzYzM2U5ODc0MTExYThiY2YzNTE4YTA5MDVm Mjg2MDkwHhcNMjYwMTI1MTkwMDM0WhcNMjYwMTI2MTkwMDM0WjAzMTEwLwYDVQQD EyhhMjllNGJmOTZiZGM2YTE4M2ZmM2MyZThiNWM3YTJiNGU0NDRjMTdlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo4ZTBQu+1qdMzWvvKcZexoUkDJvZ UE2PzTCqtpVFQLddySBUDbMIzFddJiqpc8O0iFVjtzLq/Ukhvoz3GBlJQUJkX6Ng rjeOWj5Wv2Gi60m59E8QINCBgJPXvFbwKh1qDcOArakhRqQMUFKo1ZHtz79p/lYm VRgaB6nSJivN9xoNc+Bmi5t2WPVnUIt9aWtcD6RkdvQnRSo4BS/UopjiEqwfsoqe Sp8USIkQriQvZaZIeZ6nfroWjmiQEE7bcI4aCDwdSCJiTV/QUlLUeDr0qf8wKM9s PgbvEbcKVnsWPU/wZKAuVPtKqHXC8RTrkG3O4pudIK3L1MJzRsA2jntf2QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKKeS/lr3GoYP/PC6LXHorTkRMF+MB8GA1UdIwQY MBaAFLWGqGQ2M+mHQRGovPNRigkF8oYJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdFlhb1pEWXo2WWRCRWFpODgxR0tDUVh5aGdrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNi8yMGNjYWMtMzNlZS00NWRjLWJjOWMt NDQ5OWUzMjM5ZjFmLzEvdFlhb1pEWXo2WWRCRWFpODgxR0tDUVh5aGdrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNi8yMGNjYWMtMzNlZS00NWRjLWJjOWMtNDQ5OWUzMjM5ZjFm LzEvdFlhb1pEWXo2WWRCRWFpODgxR0tDUVh5aGdrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARrE6yCU6 hPo/9TBHyUQeKl8jX2JMGv5VzKO6AegfinWbyKyEfKLhGME5uIziZn7n6f1o9PfO DnLaKdp1F9mBwESNRrHKxd83Q+d5VxIxfj1omvoQF/dx5eoKGjd7Qs7snoscZb0M ADvraw682QhghJ3Kr7Jcdtb6YvP0xp/wpcTWnvGBRHcVo49IYkqz+np+biSeX0dE ogyn1YCWhyZwZ6kS6BRqyuCAeUyCbS3cnmOFATmNsPD1FT4bWc7r7UV0KZI7br5G 3+WPrMhWjU2rYrbwPedTgWzubBaAs19Z3FXlPn2sfdW41TAYcfOs9TupgavXLnzF jKeWumji0snsXA== -----END CERTIFICATE-----Generated at Sun Jan 25 22:22:31 2026 by rpki-client