This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.mft File: YhoTCpDLA344A_6gv0ZaoIL-NJg.mft (raw, json) Hash identifier: hTxvh/TiOHs7xgw3PK5wHHq9OL1jPaZdUOWpc4lToak= Subject key identifier: B2:58:35:BC:68:20:A7:45:14:FC:AC:8E:CB:A6:0F:9A:A9:A7:C5:CD Authority key identifier: 62:1A:13:0A:90:CB:03:7E:38:03:FE:A0:BF:46:5A:A0:82:FE:34:98 Certificate issuer: /CN=621a130a90cb037e3803fea0bf465aa082fe3498 Certificate serial: 019BF6F607CF80F21CE85FDC804F0A8F8A54 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YhoTCpDLA344A_6gv0ZaoIL-NJg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.mft Manifest number: 0611 Signing time: Sun 25 Jan 2026 21:01:17 +0000 Manifest this update: Sun 25 Jan 2026 21:01:17 +0000 Manifest next update: Mon 26 Jan 2026 21:01:17 +0000 Files and hashes: 1: Rmbqki6sfeVONmSCUKVbSwnLV2w.roa (hash: m02OGs1ERDq2Tep5VBBDirUwK9M85zv/SGcl5/T9Gng=) 2: YhoTCpDLA344A_6gv0ZaoIL-NJg.crl (hash: AIOpC44WRb2Z4LPhYlKRmwgRiHCV93MDJy9A55DUAmM=) 3: YrjDjaI3_Q6KPQ90f8RoYBEvTqI.roa (hash: VmD17BnA3G7W1dMkZraFPy0h1sdRJ/jQerJj3HVgUI8=) 4: mEMBpqCiAZX-66IM2v28OLBYmaU.roa (hash: D0q/tQQJTMQWefAkqZBJ1Tlw8AdCPKqxL86ZtoZ1fgo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.crl rsync://rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.mft rsync://rpki.ripe.net/repository/DEFAULT/YhoTCpDLA344A_6gv0ZaoIL-NJg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 21:01:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f6:f6:07:cf:80:f2:1c:e8:5f:dc:80:4f:0a:8f:8a:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=621a130a90cb037e3803fea0bf465aa082fe3498 Validity Not Before: Jan 25 21:01:17 2026 GMT Not After : Jan 26 21:01:17 2026 GMT Subject: CN=b25835bc6820a74514fcac8ecba60f9aa9a7c5cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:07:57:18:51:6e:af:8f:59:b3:e0:e5:2c:18: 12:ca:e9:6b:a8:80:a2:08:9e:8a:6d:0f:29:03:52: 24:6e:32:53:1d:60:70:4d:72:8e:67:8c:bd:25:21: 90:5e:a7:42:e1:38:c5:db:6e:3a:71:51:00:fd:95: 3f:72:f7:ee:c0:3f:eb:c7:f0:2d:3c:05:2a:c4:e8: 82:66:c6:58:52:ef:2b:2d:56:a1:da:7e:28:26:67: 88:8b:cb:c5:86:d9:e5:ca:bc:89:bf:8b:81:bd:a2: d5:a8:64:7c:5d:d8:bd:5e:98:20:81:bb:94:12:b2: af:59:1d:f1:f4:5c:f2:86:72:71:14:f7:2f:e6:4b: ae:6c:89:de:b6:2f:b0:ef:f7:60:29:1d:fd:e6:8d: 04:fe:46:ff:b5:8a:13:d5:ed:b8:6e:71:95:d6:fe: 77:5a:87:50:da:6d:9c:a3:54:7c:e7:d6:16:8d:c4: f0:98:58:18:89:48:05:4d:86:65:93:4d:03:a0:d5: 20:3f:7d:b3:ec:29:6d:2f:a2:5f:16:07:7b:bf:4b: 09:94:bc:68:57:83:c7:75:d6:20:74:95:6b:d6:6e: 68:f4:00:6d:22:76:4e:cb:33:d4:13:20:de:80:da: 96:27:38:80:8e:8c:51:c1:4d:a8:b6:00:d1:bc:bc: b5:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:58:35:BC:68:20:A7:45:14:FC:AC:8E:CB:A6:0F:9A:A9:A7:C5:CD X509v3 Authority Key Identifier: keyid:62:1A:13:0A:90:CB:03:7E:38:03:FE:A0:BF:46:5A:A0:82:FE:34:98 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YhoTCpDLA344A_6gv0ZaoIL-NJg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a9:76:7a:0b:fc:01:13:63:09:d6:40:ca:59:c9:1c:9d:de:a2: 71:ca:bb:c5:37:a0:70:1b:b3:41:a3:4c:d4:6c:9f:a1:ba:8b: fe:13:07:e7:33:a5:be:0b:69:f4:ee:f1:01:d2:e2:ad:53:c8: da:d1:07:d7:28:d7:f5:a1:9c:40:42:95:da:02:d0:f5:e0:69: c7:9a:bb:f0:87:1e:1c:96:31:0f:51:51:3e:33:7b:ec:64:e2: a2:20:83:97:c9:0e:33:14:d6:89:b0:ef:c1:36:1e:ff:e9:b5: fd:86:c5:bb:fb:0d:05:cc:02:5c:e1:43:58:7f:01:c2:84:d1: 3b:09:f6:6f:7e:a8:48:69:1d:7c:fa:53:81:2e:e9:5e:b0:d1: 97:66:a1:32:b8:ce:fc:ee:bc:6a:2e:99:d4:1f:b9:8e:f0:ba: ff:99:54:ab:92:5e:bf:ee:ec:5c:ca:31:be:f8:7f:91:27:9f: 59:4d:6f:96:5b:67:0d:5a:f0:91:75:07:9a:06:39:74:73:e3: 70:78:ea:27:c3:d8:af:7b:ff:05:5c:6b:d1:54:7a:25:95:d0: 9a:ed:7a:24:37:f8:fb:36:c6:73:ac:1e:1f:e4:c1:7d:aa:22: b9:5e:bf:62:e0:65:79:a5:93:be:71:57:19:82:02:c2:98:ac: 99:90:a6:cb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv29gfPgPIc6F/cgE8Kj4pUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYyMWExMzBhOTBjYjAzN2UzODAzZmVhMGJmNDY1YWEwODJm ZTM0OTgwHhcNMjYwMTI1MjEwMTE3WhcNMjYwMTI2MjEwMTE3WjAzMTEwLwYDVQQD EyhiMjU4MzViYzY4MjBhNzQ1MTRmY2FjOGVjYmE2MGY5YWE5YTdjNWNkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0gdXGFFur49Zs+DlLBgSyulrqICi CJ6KbQ8pA1IkbjJTHWBwTXKOZ4y9JSGQXqdC4TjF2246cVEA/ZU/cvfuwD/rx/At PAUqxOiCZsZYUu8rLVah2n4oJmeIi8vFhtnlyryJv4uBvaLVqGR8Xdi9XpgggbuU ErKvWR3x9FzyhnJxFPcv5kuubIneti+w7/dgKR395o0E/kb/tYoT1e24bnGV1v53 WodQ2m2co1R859YWjcTwmFgYiUgFTYZlk00DoNUgP32z7CltL6JfFgd7v0sJlLxo V4PHddYgdJVr1m5o9ABtInZOyzPUEyDegNqWJziAjoxRwU2otgDRvLy1KQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLJYNbxoIKdFFPysjsumD5qpp8XNMB8GA1UdIwQY MBaAFGIaEwqQywN+OAP+oL9GWqCC/jSYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWWhvVENwRExBMzQ0QV82Z3YwWmFvSUwtTkpnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOC8yMTQ5MmYtMTY2My00MDlkLWJmYjIt NmEwNDUxYzQ5ZDRkLzEvWWhvVENwRExBMzQ0QV82Z3YwWmFvSUwtTkpnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mOC8yMTQ5MmYtMTY2My00MDlkLWJmYjItNmEwNDUxYzQ5ZDRk LzEvWWhvVENwRExBMzQ0QV82Z3YwWmFvSUwtTkpnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqXZ6C/wB E2MJ1kDKWckcnd6iccq7xTegcBuzQaNM1GyfobqL/hMH5zOlvgtp9O7xAdLirVPI 2tEH1yjX9aGcQEKV2gLQ9eBpx5q78IceHJYxD1FRPjN77GTioiCDl8kOMxTWibDv wTYe/+m1/YbFu/sNBcwCXOFDWH8BwoTROwn2b36oSGkdfPpTgS7pXrDRl2ahMrjO /O68ai6Z1B+5jvC6/5lUq5Jev+7sXMoxvvh/kSefWU1vlltnDVrwkXUHmgY5dHPj cHjqJ8PYr3v/BVxr0VR6JZXQmu16JDf4+zbGc6weH+TBfaoiuV6/YuBleaWTvnFX GYICwpismZCmyw== -----END CERTIFICATE-----Generated at Mon Jan 26 04:52:31 2026 by rpki-client