This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/ea7121-5414-4484-9185-eec14c971c4d/1/yRggtQAH5BxT3WAps3lU01cvTCk.mft File: yRggtQAH5BxT3WAps3lU01cvTCk.mft (raw, json) Hash identifier: MDrf7OvyN/ZB6i9zdluzcusilWVpXGimikbhwG1OMHA= Subject key identifier: D9:97:99:97:1E:9A:71:86:B4:3B:51:A0:EA:96:16:9C:5F:E6:EE:5C Authority key identifier: C9:18:20:B5:00:07:E4:1C:53:DD:60:29:B3:79:54:D3:57:2F:4C:29 Certificate issuer: /CN=c91820b50007e41c53dd6029b37954d3572f4c29 Certificate serial: 019BF6BE8430D8477A94D88A3E0DEFAA9FAF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yRggtQAH5BxT3WAps3lU01cvTCk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/ea7121-5414-4484-9185-eec14c971c4d/1/yRggtQAH5BxT3WAps3lU01cvTCk.mft Manifest number: 132D Signing time: Sun 25 Jan 2026 20:00:39 +0000 Manifest this update: Sun 25 Jan 2026 20:00:39 +0000 Manifest next update: Mon 26 Jan 2026 20:00:39 +0000 Files and hashes: 1: hOC_g0aFFJDt5mJXYMKufHdXY_Y.roa (hash: /1Qaua2qcuy21kP73vJzs1KKO/Ht1pr5AntmjkyRFoc=) 2: yRggtQAH5BxT3WAps3lU01cvTCk.crl (hash: rEbIDD/lubKVjNAYq6mLz4OkXpl+EveMnhhhtP8vWjI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/ea7121-5414-4484-9185-eec14c971c4d/1/yRggtQAH5BxT3WAps3lU01cvTCk.crl rsync://rpki.ripe.net/repository/DEFAULT/e1/ea7121-5414-4484-9185-eec14c971c4d/1/yRggtQAH5BxT3WAps3lU01cvTCk.mft rsync://rpki.ripe.net/repository/DEFAULT/yRggtQAH5BxT3WAps3lU01cvTCk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 20:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f6:be:84:30:d8:47:7a:94:d8:8a:3e:0d:ef:aa:9f:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c91820b50007e41c53dd6029b37954d3572f4c29 Validity Not Before: Jan 25 20:00:39 2026 GMT Not After : Jan 26 20:00:39 2026 GMT Subject: CN=d99799971e9a7186b43b51a0ea96169c5fe6ee5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:e2:61:48:4d:7d:25:b1:cb:bc:73:db:3a:56: ad:0f:89:1d:dd:c0:1d:a0:80:82:53:8a:56:ff:b9: cb:77:f4:0b:3d:81:13:d8:13:81:6d:ae:f6:39:01: 00:22:4c:cf:ee:bc:b4:40:cf:ba:a5:e1:9f:d8:90: 55:b0:33:98:f2:90:cf:b7:c6:96:bf:d8:53:15:e4: b9:5a:12:86:9b:5e:9f:32:e3:f1:de:79:1e:74:d7: 7c:09:96:35:4f:92:32:c1:8f:73:d8:1e:75:8d:b2: 3d:7c:8d:f1:ff:15:85:99:5b:e6:17:71:bc:5f:e0: c0:88:3b:37:5d:43:a9:eb:41:2c:9a:cc:92:d2:1a: c1:c5:2b:2c:2a:48:8b:e0:e2:86:a7:27:b8:ca:1b: 15:18:bc:07:8c:c9:77:06:8e:d2:af:d3:1e:b6:e7: 61:bd:47:e5:18:dd:c4:c7:7b:64:2a:53:92:5c:e0: a6:53:79:75:70:e4:28:d2:d8:42:71:67:89:d6:14: bb:85:5f:92:50:d4:f5:ff:03:8e:5b:d5:a9:7a:ea: d5:2b:b4:38:30:f5:3f:7c:59:0b:3c:d5:17:8b:fd: 05:68:ec:c5:91:e2:f5:92:53:d3:bd:cd:85:74:49: 5d:3e:56:31:b9:51:64:ff:f1:f1:54:44:b1:fd:6b: aa:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:97:99:97:1E:9A:71:86:B4:3B:51:A0:EA:96:16:9C:5F:E6:EE:5C X509v3 Authority Key Identifier: keyid:C9:18:20:B5:00:07:E4:1C:53:DD:60:29:B3:79:54:D3:57:2F:4C:29 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yRggtQAH5BxT3WAps3lU01cvTCk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/ea7121-5414-4484-9185-eec14c971c4d/1/yRggtQAH5BxT3WAps3lU01cvTCk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/ea7121-5414-4484-9185-eec14c971c4d/1/yRggtQAH5BxT3WAps3lU01cvTCk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1f:37:4a:f6:11:6b:65:c0:76:6a:f9:a5:55:78:cb:66:30:2f: 69:da:37:f6:7e:9a:2b:4f:20:64:a9:1e:39:62:72:9b:16:db: 61:0e:de:d0:03:11:e1:2d:50:58:dd:29:a1:dc:74:b0:98:7d: 38:7e:8a:c6:6a:56:7f:04:d3:3e:c5:6a:b9:b8:6f:00:0b:b3: fe:95:68:08:b4:9e:16:c4:a6:2d:03:5c:b9:1e:e4:60:5c:b4: 1a:e6:fc:e0:66:ce:9a:d6:81:64:e2:20:6d:7e:72:6b:ea:21: 1d:b0:29:83:35:8f:5e:fc:4b:3b:52:5c:63:71:4d:4b:dd:69: 61:5e:13:f7:b6:75:7b:5d:db:93:18:54:b5:5e:2c:a2:14:85: 82:02:14:9f:58:5c:45:be:26:50:81:b6:b2:e7:84:77:eb:39: 3c:ea:17:f7:0e:ba:06:54:4b:6d:14:22:82:70:24:b4:1d:bf: f2:b7:b8:e5:f4:99:a0:48:fc:77:9b:29:c3:f4:4c:31:c2:2e: 9b:8d:38:13:7c:7c:dd:5c:25:ca:ef:e1:01:a8:55:b4:57:63: 60:97:65:42:ab:5e:de:9a:6a:fc:21:09:dc:81:73:b2:4f:d4: 14:3c:78:b5:ec:37:da:71:27:c7:e4:4b:ef:e2:06:38:c9:be: fa:73:65:1e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv2voQw2Ed6lNiKPg3vqp+vMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM5MTgyMGI1MDAwN2U0MWM1M2RkNjAyOWIzNzk1NGQzNTcy ZjRjMjkwHhcNMjYwMTI1MjAwMDM5WhcNMjYwMTI2MjAwMDM5WjAzMTEwLwYDVQQD EyhkOTk3OTk5NzFlOWE3MTg2YjQzYjUxYTBlYTk2MTY5YzVmZTZlZTVjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqOJhSE19JbHLvHPbOlatD4kd3cAd oICCU4pW/7nLd/QLPYET2BOBba72OQEAIkzP7ry0QM+6peGf2JBVsDOY8pDPt8aW v9hTFeS5WhKGm16fMuPx3nkedNd8CZY1T5IywY9z2B51jbI9fI3x/xWFmVvmF3G8 X+DAiDs3XUOp60EsmsyS0hrBxSssKkiL4OKGpye4yhsVGLwHjMl3Bo7Sr9Metudh vUflGN3Ex3tkKlOSXOCmU3l1cOQo0thCcWeJ1hS7hV+SUNT1/wOOW9WpeurVK7Q4 MPU/fFkLPNUXi/0FaOzFkeL1klPTvc2FdEldPlYxuVFk//HxVESx/WuqlwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNmXmZcemnGGtDtRoOqWFpxf5u5cMB8GA1UdIwQY MBaAFMkYILUAB+QcU91gKbN5VNNXL0wpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveVJnZ3RRQUg1QnhUM1dBcHMzbFUwMWN2VENrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMS9lYTcxMjEtNTQxNC00NDg0LTkxODUt ZWVjMTRjOTcxYzRkLzEveVJnZ3RRQUg1QnhUM1dBcHMzbFUwMWN2VENrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMS9lYTcxMjEtNTQxNC00NDg0LTkxODUtZWVjMTRjOTcxYzRk LzEveVJnZ3RRQUg1QnhUM1dBcHMzbFUwMWN2VENrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHzdK9hFr ZcB2avmlVXjLZjAvado39n6aK08gZKkeOWJymxbbYQ7e0AMR4S1QWN0podx0sJh9 OH6KxmpWfwTTPsVqubhvAAuz/pVoCLSeFsSmLQNcuR7kYFy0Gub84GbOmtaBZOIg bX5ya+ohHbApgzWPXvxLO1JcY3FNS91pYV4T97Z1e13bkxhUtV4sohSFggIUn1hc Rb4mUIG2sueEd+s5POoX9w66BlRLbRQignAktB2/8re45fSZoEj8d5spw/RMMcIu m404E3x83Vwlyu/hAahVtFdjYJdlQqte3ppq/CEJ3IFzsk/UFDx4tew32nEnx+RL 7+IGOMm++nNlHg== -----END CERTIFICATE-----Generated at Mon Jan 26 03:12:10 2026 by rpki-client