This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/7207a9-27f4-44ec-bf78-a207c7a19ed2/1/YSrvTHv-fgcvYtLdUFq1fjfqOF4.mft File: YSrvTHv-fgcvYtLdUFq1fjfqOF4.mft (raw, json) Hash identifier: SEaTiJQsqS2dIeAWtH9Yrgq4aBfm1s8dszO0yPY5fjE= Subject key identifier: A9:EB:B1:E1:88:1A:7D:13:8F:CE:85:83:2D:A8:64:92:85:DB:3F:8B Authority key identifier: 61:2A:EF:4C:7B:FE:7E:07:2F:62:D2:DD:50:5A:B5:7E:37:EA:38:5E Certificate issuer: /CN=612aef4c7bfe7e072f62d2dd505ab57e37ea385e Certificate serial: 019BF76360CADF9EBF023EFAFBBD8C8771EF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YSrvTHv-fgcvYtLdUFq1fjfqOF4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/7207a9-27f4-44ec-bf78-a207c7a19ed2/1/YSrvTHv-fgcvYtLdUFq1fjfqOF4.mft Manifest number: 17E9 Signing time: Sun 25 Jan 2026 23:00:43 +0000 Manifest this update: Sun 25 Jan 2026 23:00:43 +0000 Manifest next update: Mon 26 Jan 2026 23:00:43 +0000 Files and hashes: 1: X_VAzsonJf2-Y0J7PUgtiVvr18s.roa (hash: omFujTcefEd3WWyYkvlLAE/INtwxFEvZh0pqgOeoURc=) 2: YSrvTHv-fgcvYtLdUFq1fjfqOF4.crl (hash: FjhT3xkBCn6lUPj24QgN+2amq0QAYmVGqCXcW/LNXa8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/7207a9-27f4-44ec-bf78-a207c7a19ed2/1/YSrvTHv-fgcvYtLdUFq1fjfqOF4.crl rsync://rpki.ripe.net/repository/DEFAULT/f4/7207a9-27f4-44ec-bf78-a207c7a19ed2/1/YSrvTHv-fgcvYtLdUFq1fjfqOF4.mft rsync://rpki.ripe.net/repository/DEFAULT/YSrvTHv-fgcvYtLdUFq1fjfqOF4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f7:63:60:ca:df:9e:bf:02:3e:fa:fb:bd:8c:87:71:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=612aef4c7bfe7e072f62d2dd505ab57e37ea385e Validity Not Before: Jan 25 23:00:43 2026 GMT Not After : Jan 26 23:00:43 2026 GMT Subject: CN=a9ebb1e1881a7d138fce85832da8649285db3f8b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:55:6a:f6:10:b2:4a:99:02:a7:ad:7d:d7:35: 97:84:38:7e:23:01:6c:89:a6:b6:e2:db:8f:ef:5a: 4c:0f:16:6a:8a:6e:5e:e2:98:c4:c1:8d:7e:27:95: 02:84:44:f3:9a:ee:e0:26:31:13:4e:06:79:11:0c: 54:ea:28:6b:f1:aa:4a:ff:56:90:b9:dd:55:a6:35: bd:f3:cc:45:79:17:59:5b:60:93:31:89:d8:4b:45: 67:25:fd:8c:c2:bc:e1:82:46:92:ff:f6:4c:1b:45: c4:de:82:12:20:9a:57:5d:85:57:2b:eb:e9:25:53: 86:8c:d3:54:c4:83:15:2e:b0:29:bb:b7:37:59:12: 24:aa:5f:e7:33:14:3e:a2:72:e6:04:dd:68:d4:ed: cb:81:07:cd:2f:f4:13:2a:e6:10:6f:24:49:e4:68: 28:37:11:7f:8a:b8:19:0e:ad:22:0d:0f:4e:7a:9a: a9:65:78:36:5b:d8:46:66:f5:22:fd:bb:29:5f:aa: 8c:63:30:2f:5f:ac:f2:42:fd:38:0c:1f:72:a3:78: 5e:7b:7a:d9:d4:95:1e:4b:16:54:74:6f:ae:1d:83: 15:a1:58:a3:16:cd:14:0f:73:27:58:e7:d5:aa:e6: 3d:3c:d7:55:bf:a9:cc:f4:4a:0a:48:63:54:cc:c6: 67:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:EB:B1:E1:88:1A:7D:13:8F:CE:85:83:2D:A8:64:92:85:DB:3F:8B X509v3 Authority Key Identifier: keyid:61:2A:EF:4C:7B:FE:7E:07:2F:62:D2:DD:50:5A:B5:7E:37:EA:38:5E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YSrvTHv-fgcvYtLdUFq1fjfqOF4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/7207a9-27f4-44ec-bf78-a207c7a19ed2/1/YSrvTHv-fgcvYtLdUFq1fjfqOF4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/7207a9-27f4-44ec-bf78-a207c7a19ed2/1/YSrvTHv-fgcvYtLdUFq1fjfqOF4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 23:a8:e4:a2:85:d9:9c:80:8c:f6:ea:3e:c9:43:55:7e:f0:28: 38:6b:7e:0f:20:68:44:49:45:15:8d:de:17:3a:b5:e7:c0:ff: 62:ce:9d:86:67:62:54:c5:ea:d0:e7:60:17:42:35:e2:cf:a1: 25:75:56:6d:0e:c6:c0:c0:15:46:a2:7e:8b:e0:85:87:a2:cb: 1f:79:03:ba:b4:d2:ab:d9:60:41:ea:3d:b5:7e:0f:48:0b:56: 61:e1:80:f2:e0:49:e2:e1:1b:c2:22:3e:c0:f3:86:4f:65:09: c9:d3:f2:ff:d1:b8:10:cb:d6:1f:a5:5d:55:fd:89:d6:5d:01: dd:97:ef:7a:48:ca:cb:86:ec:92:13:2d:75:61:ac:9b:c6:7d: 16:ed:f9:2a:71:3d:f6:ef:41:40:31:10:f1:b8:8f:fc:6c:4e: f9:37:64:7b:c1:48:b1:68:e3:b5:cb:fd:79:24:07:3c:02:74: 04:5a:1b:8b:74:e9:05:c6:cc:5d:b0:83:22:b0:e0:45:95:68: fa:41:81:79:be:a3:e3:61:e4:5b:09:0d:aa:5b:88:25:3a:63: af:c1:64:92:cb:2c:11:72:57:b8:fb:44:b5:47:ca:63:97:cf: a4:79:fe:f7:a7:10:b6:17:10:3d:96:54:7c:37:1b:a7:3e:b3: d1:97:80:5b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv3Y2DK356/Aj76+72Mh3HvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYxMmFlZjRjN2JmZTdlMDcyZjYyZDJkZDUwNWFiNTdlMzdl YTM4NWUwHhcNMjYwMTI1MjMwMDQzWhcNMjYwMTI2MjMwMDQzWjAzMTEwLwYDVQQD EyhhOWViYjFlMTg4MWE3ZDEzOGZjZTg1ODMyZGE4NjQ5Mjg1ZGIzZjhiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwlVq9hCySpkCp6191zWXhDh+IwFs iaa24tuP71pMDxZqim5e4pjEwY1+J5UChETzmu7gJjETTgZ5EQxU6ihr8apK/1aQ ud1VpjW988xFeRdZW2CTMYnYS0VnJf2MwrzhgkaS//ZMG0XE3oISIJpXXYVXK+vp JVOGjNNUxIMVLrApu7c3WRIkql/nMxQ+onLmBN1o1O3LgQfNL/QTKuYQbyRJ5Ggo NxF/irgZDq0iDQ9OepqpZXg2W9hGZvUi/bspX6qMYzAvX6zyQv04DB9yo3hee3rZ 1JUeSxZUdG+uHYMVoVijFs0UD3MnWOfVquY9PNdVv6nM9EoKSGNUzMZntQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKnrseGIGn0Tj86Fgy2oZJKF2z+LMB8GA1UdIwQY MBaAFGEq70x7/n4HL2LS3VBatX436jheMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWVNydlRIdi1mZ2N2WXRMZFVGcTFmamZxT0Y0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNC83MjA3YTktMjdmNC00NGVjLWJmNzgt YTIwN2M3YTE5ZWQyLzEvWVNydlRIdi1mZ2N2WXRMZFVGcTFmamZxT0Y0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNC83MjA3YTktMjdmNC00NGVjLWJmNzgtYTIwN2M3YTE5ZWQy LzEvWVNydlRIdi1mZ2N2WXRMZFVGcTFmamZxT0Y0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAI6jkooXZ nICM9uo+yUNVfvAoOGt+DyBoRElFFY3eFzq158D/Ys6dhmdiVMXq0OdgF0I14s+h JXVWbQ7GwMAVRqJ+i+CFh6LLH3kDurTSq9lgQeo9tX4PSAtWYeGA8uBJ4uEbwiI+ wPOGT2UJydPy/9G4EMvWH6VdVf2J1l0B3ZfvekjKy4bskhMtdWGsm8Z9Fu35KnE9 9u9BQDEQ8biP/GxO+Tdke8FIsWjjtcv9eSQHPAJ0BFobi3TpBcbMXbCDIrDgRZVo +kGBeb6j42HkWwkNqluIJTpjr8FkksssEXJXuPtEtUfKY5fPpHn+96cQthcQPZZU fDcbpz6z0ZeAWw== -----END CERTIFICATE-----Generated at Mon Jan 26 01:32:01 2026 by rpki-client