This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.mft File: Y2O7ZYlfOlSksyShDHmsmO_ioco.mft (raw, json) Hash identifier: zaPCoD5om6cAGkbsr7WYOXNfpeLmYpHADOHjdXJ+LmA= Subject key identifier: 46:CB:72:5A:E2:60:96:9E:07:80:55:A1:AF:93:D0:8A:A6:44:2E:B3 Authority key identifier: 63:63:BB:65:89:5F:3A:54:A4:B3:24:A1:0C:79:AC:98:EF:E2:A1:CA Certificate issuer: /CN=6363bb65895f3a54a4b324a10c79ac98efe2a1ca Certificate serial: 019BF4D057268D0595270B09AB408021C872 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.mft Manifest number: 1147 Signing time: Sun 25 Jan 2026 11:00:53 +0000 Manifest this update: Sun 25 Jan 2026 11:00:53 +0000 Manifest next update: Mon 26 Jan 2026 11:00:53 +0000 Files and hashes: 1: 0qcRgVORJ6l9UlTI2CKPLzjbfog.roa (hash: wvJhHDw0n2QTgzGbPUH8xt0FfoOscXlBHhG0tJvFt98=) 2: 2EkuPAqVHEWEKp6ASw2K5zmACQk.roa (hash: n72y5YkbbuFUJAYmxmxnzR7f3ZsUZLnhTxeGIE67Cko=) 3: LKqcV__iHBkuJmHBTgVTMKe7jfs.roa (hash: LzRNG01pbqOOrg9Ke+0IrSjljXKIcSklaBxsB5gc1AU=) 4: PxxNVNL5BOB3QrAZZvS5ahJKLOQ.roa (hash: tFLry/v07lnhSlHBjf2oO0BxwozcI2XhOgOvdmFzcjY=) 5: SsMemxNz7WwrgOi2t4J5keskOjc.roa (hash: 8tN8540PpdeEqrMWMweCLc0iyV0lekQaB3DsFO3PEyM=) 6: U74ViGODTud33ngPAmj4w73NK6o.roa (hash: 8g7ud1guSPB+L+sklXn8DfQQ/RtzcbmpgZcJ8hWX/2M=) 7: Y2O7ZYlfOlSksyShDHmsmO_ioco.crl (hash: U2+XdY0vdAbFOgO3qBOEKQD3XhDRHj41LnBiPsdl16k=) 8: ajUdjtPuTYK4cJ-GDNgzwU_V7QU.roa (hash: zq0p6TTpyxJr1rlBswAzuDS0To2T7g83akxmSzfwXWY=) 9: esQiMgPaySQVW0k54pO3jc5Zyuc.roa (hash: 2aftWcOZmt2bVeY6qt170y22emZnUo4u4rs+oiqH7rU=) 10: n9NpVtjQ4CgC347DPdZBbkrl1rk.roa (hash: F/VcD/rkVFmMD8EIR8zYpeskYz8L7PTmG19l/6//DPo=) 11: qzDK1lhCM39SxM8PACxbyKkom_M.roa (hash: nfWxgyb2gt4+A8mM3hL0XhTI+0dXdf9+3PuS2IdhMMY=) 12: uDzu64m1ZPD4co3ETwziJWE95lo.roa (hash: xvTvJ4HerqZfilmLig7DuXnycU4OZ2peduUMg7vJfqg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.crl rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.mft rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 11:00:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f4:d0:57:26:8d:05:95:27:0b:09:ab:40:80:21:c8:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6363bb65895f3a54a4b324a10c79ac98efe2a1ca Validity Not Before: Jan 25 11:00:53 2026 GMT Not After : Jan 26 11:00:53 2026 GMT Subject: CN=46cb725ae260969e078055a1af93d08aa6442eb3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:0b:a1:fa:33:7b:66:66:7e:15:2b:d8:30:03: 47:cd:d2:f1:8f:b3:f0:54:39:e7:9f:4d:f9:6c:2b: 52:b8:86:b3:c9:0f:16:ee:16:cc:8c:ef:70:60:d6: 29:cc:d1:36:b4:8a:84:5f:53:4a:09:90:56:59:e6: 63:a8:48:6e:af:1d:12:f0:00:a4:76:34:cc:51:b4: 48:80:40:9c:be:1d:ce:f9:91:aa:bb:9e:ac:5b:f4: 68:ce:08:f8:4f:ab:8f:02:88:03:91:f3:cb:ac:cf: bf:df:58:46:2f:ab:c7:71:b6:0a:c0:55:94:b6:5b: a0:6d:e0:f0:c3:27:9d:ab:f6:9c:48:ce:10:ff:9e: f9:9d:e3:89:69:fe:af:6d:d0:70:e1:a2:2a:bf:48: 56:26:43:c0:e9:52:49:b6:69:b5:20:3d:e7:f7:cd: 7d:0f:18:91:1e:eb:03:65:ab:12:89:99:19:b4:fc: fd:34:0e:0a:26:aa:e6:e6:e6:4f:78:e0:a6:29:9e: 7c:14:dc:54:ae:d2:60:93:d9:a2:f7:b6:77:4d:14: 07:0a:90:f2:c7:63:83:80:40:87:cb:0a:d9:e0:87: 41:44:ea:1e:54:13:22:c5:4b:cc:72:34:da:ae:b1: 61:ed:d5:d3:67:ad:fa:17:06:80:c2:43:4c:b8:09: a6:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:CB:72:5A:E2:60:96:9E:07:80:55:A1:AF:93:D0:8A:A6:44:2E:B3 X509v3 Authority Key Identifier: keyid:63:63:BB:65:89:5F:3A:54:A4:B3:24:A1:0C:79:AC:98:EF:E2:A1:CA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6e:a9:8b:06:cf:7b:01:e7:fe:bf:92:e2:fd:86:91:f3:e7:f3: 8b:dc:bc:61:09:7b:34:01:42:a7:dc:bc:e1:2e:80:ef:31:12: dd:b9:28:95:57:2e:a5:3a:ed:8e:16:64:10:d6:4e:76:59:db: bb:b2:b9:e9:31:eb:c3:88:f8:8d:49:6e:d3:dc:8e:b9:34:69: 91:ca:6b:af:45:4e:5c:4e:95:69:19:16:7d:7c:a0:b7:66:e8: a7:5f:8e:9d:8e:26:b0:9a:59:3a:91:05:f7:92:52:55:37:59: c2:5d:db:82:a8:81:76:cd:48:81:cb:12:8a:a5:4e:22:69:b3: 67:c4:48:95:d5:68:ad:7a:78:49:ce:95:aa:8c:7d:f4:66:69: 0c:ea:68:01:79:05:57:0a:6e:05:f6:15:54:42:ad:b6:6b:8d: f6:7f:ea:9d:7f:a9:9a:47:74:79:b8:fd:a9:0a:92:9c:f9:5b: 87:a3:19:9a:e9:dc:ba:07:5e:2f:ec:63:9e:1b:05:fa:04:e9: 65:d1:fd:51:7f:64:41:25:99:81:a7:53:8a:ab:0d:19:b7:03: 94:30:40:6a:b8:0d:b6:3b:c7:a2:ea:60:31:00:92:a0:c9:a5: 81:b4:49:3d:ce:84:cb:05:f4:d4:ee:f8:b8:65:76:d6:ba:dd: e7:ec:a6:8c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv00FcmjQWVJwsJq0CAIchyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYzNjNiYjY1ODk1ZjNhNTRhNGIzMjRhMTBjNzlhYzk4ZWZl MmExY2EwHhcNMjYwMTI1MTEwMDUzWhcNMjYwMTI2MTEwMDUzWjAzMTEwLwYDVQQD Eyg0NmNiNzI1YWUyNjA5NjllMDc4MDU1YTFhZjkzZDA4YWE2NDQyZWIzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxwuh+jN7ZmZ+FSvYMANHzdLxj7Pw VDnnn035bCtSuIazyQ8W7hbMjO9wYNYpzNE2tIqEX1NKCZBWWeZjqEhurx0S8ACk djTMUbRIgECcvh3O+ZGqu56sW/Rozgj4T6uPAogDkfPLrM+/31hGL6vHcbYKwFWU tlugbeDwwyedq/acSM4Q/575neOJaf6vbdBw4aIqv0hWJkPA6VJJtmm1ID3n9819 DxiRHusDZasSiZkZtPz9NA4KJqrm5uZPeOCmKZ58FNxUrtJgk9mi97Z3TRQHCpDy x2ODgECHywrZ4IdBROoeVBMixUvMcjTarrFh7dXTZ636FwaAwkNMuAmmeQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEbLclriYJaeB4BVoa+T0IqmRC6zMB8GA1UdIwQY MBaAFGNju2WJXzpUpLMkoQx5rJjv4qHKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWTJPN1pZbGZPbFNrc3lTaERIbXNtT19pb2NvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy9kYjliZjEtZTAxOS00NWE0LTg2NjMt YTZjYTQ1NGRiMmQ3LzEvWTJPN1pZbGZPbFNrc3lTaERIbXNtT19pb2NvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNy9kYjliZjEtZTAxOS00NWE0LTg2NjMtYTZjYTQ1NGRiMmQ3 LzEvWTJPN1pZbGZPbFNrc3lTaERIbXNtT19pb2NvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbqmLBs97 Aef+v5Li/YaR8+fzi9y8YQl7NAFCp9y84S6A7zES3bkolVcupTrtjhZkENZOdlnb u7K56THrw4j4jUlu09yOuTRpkcprr0VOXE6VaRkWfXygt2bop1+OnY4msJpZOpEF 95JSVTdZwl3bgqiBds1IgcsSiqVOImmzZ8RIldVorXp4Sc6Vqox99GZpDOpoAXkF VwpuBfYVVEKttmuN9n/qnX+pmkd0ebj9qQqSnPlbh6MZmuncugdeL+xjnhsF+gTp ZdH9UX9kQSWZgadTiqsNGbcDlDBAargNtjvHoupgMQCSoMmlgbRJPc6EywX01O74 uGV21rrd5+ymjA== -----END CERTIFICATE-----Generated at Sun Jan 25 21:17:25 2026 by rpki-client