This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/59d555-20bd-4c42-84ba-72ce95ba9afa/1/GtYaUvEILs9Ml7USK0YRIlBzRRs.mft File: GtYaUvEILs9Ml7USK0YRIlBzRRs.mft (raw, json) Hash identifier: ynzvE1yaNA6YaNi3NTcjJ5lMJkmDiouL8gNb+r6rF0E= Subject key identifier: C0:D5:CF:CB:14:F3:CB:F2:5A:56:E1:34:D5:08:19:9D:25:8F:2A:67 Authority key identifier: 1A:D6:1A:52:F1:08:2E:CF:4C:97:B5:12:2B:46:11:22:50:73:45:1B Certificate issuer: /CN=1ad61a52f1082ecf4c97b5122b4611225073451b Certificate serial: 019BF72D1F734063B5C08EBF45344D2AAD2A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GtYaUvEILs9Ml7USK0YRIlBzRRs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/59d555-20bd-4c42-84ba-72ce95ba9afa/1/GtYaUvEILs9Ml7USK0YRIlBzRRs.mft Manifest number: 17E9 Signing time: Sun 25 Jan 2026 22:01:28 +0000 Manifest this update: Sun 25 Jan 2026 22:01:28 +0000 Manifest next update: Mon 26 Jan 2026 22:01:28 +0000 Files and hashes: 1: GtYaUvEILs9Ml7USK0YRIlBzRRs.crl (hash: 47C0MoQMeY008W42+p/jd5TSrLScMz8EZVOwm85GokE=) 2: H00Omd7RPitereQtVkcKdJ7rvQE.roa (hash: P3INZZ+wxZ5iAVG5bG8aZrx0nXJci1wMPc5cl04gndw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/59d555-20bd-4c42-84ba-72ce95ba9afa/1/GtYaUvEILs9Ml7USK0YRIlBzRRs.crl rsync://rpki.ripe.net/repository/DEFAULT/dd/59d555-20bd-4c42-84ba-72ce95ba9afa/1/GtYaUvEILs9Ml7USK0YRIlBzRRs.mft rsync://rpki.ripe.net/repository/DEFAULT/GtYaUvEILs9Ml7USK0YRIlBzRRs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f7:2d:1f:73:40:63:b5:c0:8e:bf:45:34:4d:2a:ad:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1ad61a52f1082ecf4c97b5122b4611225073451b Validity Not Before: Jan 25 22:01:28 2026 GMT Not After : Jan 26 22:01:28 2026 GMT Subject: CN=c0d5cfcb14f3cbf25a56e134d508199d258f2a67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:91:dc:39:9d:8a:9d:13:5b:ab:f3:d4:b8:4f: 50:21:03:97:ec:d9:3c:21:15:3a:ce:8e:3e:d4:16: 53:9f:f3:74:5c:15:ea:bc:86:8a:19:78:4a:76:d9: ba:e0:b0:35:1d:37:41:d0:17:59:52:8f:e5:c4:0a: eb:e1:b0:8e:85:d4:8e:ee:97:42:d2:33:c8:a1:7a: a9:69:9a:1a:09:ec:ef:f7:ce:82:4b:28:8b:86:04: 8c:c7:72:fd:02:be:11:38:98:19:98:51:92:1b:9f: 2f:ec:2c:c0:76:e5:2f:9e:79:08:1d:54:6e:ed:72: 0e:c9:2e:17:2b:c8:00:02:51:e2:ce:30:a0:19:82: ee:2c:06:68:56:1e:3a:b3:09:68:f1:0b:3e:3b:5f: 62:6f:72:6f:c9:13:20:b6:9b:50:99:23:85:96:3f: ab:67:37:0b:22:10:b7:00:a4:7a:b8:a0:68:a2:da: e3:a1:82:8c:d3:78:09:62:8e:0f:a6:f2:88:20:41: 5a:d7:b2:5d:dc:de:da:cf:73:4d:14:08:9e:a2:26: 23:66:75:8a:6b:7d:fe:3d:ee:a2:70:70:40:f1:00: b1:5f:ee:ca:b4:f9:b0:1c:c3:0a:39:03:51:22:43: a7:5b:e9:a4:fd:87:71:e4:1d:78:83:56:2c:bc:e2: 77:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:D5:CF:CB:14:F3:CB:F2:5A:56:E1:34:D5:08:19:9D:25:8F:2A:67 X509v3 Authority Key Identifier: keyid:1A:D6:1A:52:F1:08:2E:CF:4C:97:B5:12:2B:46:11:22:50:73:45:1B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GtYaUvEILs9Ml7USK0YRIlBzRRs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/59d555-20bd-4c42-84ba-72ce95ba9afa/1/GtYaUvEILs9Ml7USK0YRIlBzRRs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/59d555-20bd-4c42-84ba-72ce95ba9afa/1/GtYaUvEILs9Ml7USK0YRIlBzRRs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8c:e4:04:e3:c7:f2:47:81:7e:7f:da:aa:52:96:90:a9:87:2a: 9a:c0:38:78:6f:ae:48:6c:18:6b:a3:ba:14:4e:95:72:86:26: 55:4b:cb:42:d8:d9:72:ca:a9:94:6d:56:78:e7:a7:2d:bf:85: 29:ba:f3:f4:e0:a7:90:39:4c:67:42:02:c6:73:c0:0f:19:6f: f3:5f:e0:b6:6e:60:1e:3d:30:da:57:72:65:9a:15:f9:f7:91: 62:58:1c:81:c1:68:cd:51:70:06:bd:7b:b7:7b:6f:b2:21:ba: 10:e1:20:08:4a:0b:14:19:5f:d0:6b:60:a4:91:24:7b:8c:57: 4f:8c:9a:28:bf:79:21:4c:3f:cf:e6:87:99:09:8f:15:2a:03: 8d:d9:5d:c4:c0:99:a9:dd:3d:28:cf:34:f6:42:e2:dd:1b:7d: f9:a9:3c:c1:ed:ec:d8:7e:b3:78:99:5f:ce:09:dc:bc:87:9a: 54:da:f0:43:29:e9:c0:c5:4c:86:fb:46:a5:ea:f9:b2:dd:55: b0:2e:c6:5a:01:cf:e7:c0:4b:3a:78:e0:6f:e3:92:68:78:ce: b9:a1:55:06:e6:dc:3d:6c:49:bb:da:28:10:4b:70:45:a2:81: a8:48:ab:88:b8:42:3b:39:22:84:50:f2:d3:ba:ba:10:bf:97: 85:14:0f:5d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv3LR9zQGO1wI6/RTRNKq0qMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhZDYxYTUyZjEwODJlY2Y0Yzk3YjUxMjJiNDYxMTIyNTA3 MzQ1MWIwHhcNMjYwMTI1MjIwMTI4WhcNMjYwMTI2MjIwMTI4WjAzMTEwLwYDVQQD EyhjMGQ1Y2ZjYjE0ZjNjYmYyNWE1NmUxMzRkNTA4MTk5ZDI1OGYyYTY3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9pHcOZ2KnRNbq/PUuE9QIQOX7Nk8 IRU6zo4+1BZTn/N0XBXqvIaKGXhKdtm64LA1HTdB0BdZUo/lxArr4bCOhdSO7pdC 0jPIoXqpaZoaCezv986CSyiLhgSMx3L9Ar4ROJgZmFGSG58v7CzAduUvnnkIHVRu 7XIOyS4XK8gAAlHizjCgGYLuLAZoVh46swlo8Qs+O19ib3JvyRMgtptQmSOFlj+r ZzcLIhC3AKR6uKBootrjoYKM03gJYo4PpvKIIEFa17Jd3N7az3NNFAieoiYjZnWK a33+Pe6icHBA8QCxX+7KtPmwHMMKOQNRIkOnW+mk/Ydx5B14g1YsvOJ36QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMDVz8sU88vyWlbhNNUIGZ0ljypnMB8GA1UdIwQY MBaAFBrWGlLxCC7PTJe1EitGESJQc0UbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR3RZYVV2RUlMczlNbDdVU0swWVJJbEJ6UlJzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC81OWQ1NTUtMjBiZC00YzQyLTg0YmEt NzJjZTk1YmE5YWZhLzEvR3RZYVV2RUlMczlNbDdVU0swWVJJbEJ6UlJzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZC81OWQ1NTUtMjBiZC00YzQyLTg0YmEtNzJjZTk1YmE5YWZh LzEvR3RZYVV2RUlMczlNbDdVU0swWVJJbEJ6UlJzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjOQE48fy R4F+f9qqUpaQqYcqmsA4eG+uSGwYa6O6FE6VcoYmVUvLQtjZcsqplG1WeOenLb+F Kbrz9OCnkDlMZ0ICxnPADxlv81/gtm5gHj0w2ldyZZoV+feRYlgcgcFozVFwBr17 t3tvsiG6EOEgCEoLFBlf0GtgpJEke4xXT4yaKL95IUw/z+aHmQmPFSoDjdldxMCZ qd09KM809kLi3Rt9+ak8we3s2H6zeJlfzgncvIeaVNrwQynpwMVMhvtGper5st1V sC7GWgHP58BLOnjgb+OSaHjOuaFVBubcPWxJu9ooEEtwRaKBqEiriLhCOzkihFDy 07q6EL+XhRQPXQ== -----END CERTIFICATE-----Generated at Mon Jan 26 06:24:10 2026 by rpki-client