This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/214c9a-0950-40d9-a586-e35db52567f0/1/y9f8E-GDbDlsyiF4lwSrOf2eW2Q.mft File: y9f8E-GDbDlsyiF4lwSrOf2eW2Q.mft (raw, json) Hash identifier: 5jqILiubFRd0o1uBJ2jeeTwEtoG4ACEJUpY+mAXMUtY= Subject key identifier: 59:E3:C8:51:BF:28:9A:8B:36:0D:16:A2:F6:4A:AE:01:12:83:8D:A7 Authority key identifier: CB:D7:FC:13:E1:83:6C:39:6C:CA:21:78:97:04:AB:39:FD:9E:5B:64 Certificate issuer: /CN=cbd7fc13e1836c396cca21789704ab39fd9e5b64 Certificate serial: 019BFC52C5B6A40CEC17D63298CAD5BB04E6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y9f8E-GDbDlsyiF4lwSrOf2eW2Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/214c9a-0950-40d9-a586-e35db52567f0/1/y9f8E-GDbDlsyiF4lwSrOf2eW2Q.mft Manifest number: 039F Signing time: Mon 26 Jan 2026 22:00:41 +0000 Manifest this update: Mon 26 Jan 2026 22:00:41 +0000 Manifest next update: Tue 27 Jan 2026 22:00:41 +0000 Files and hashes: 1: ILxA1XEGj58DPvCJ70R3V0QUW0o.roa (hash: 2pgTad0+RDSMUqb1cSCzcPHq0QPOVvclokToC+rjLTI=) 2: y9f8E-GDbDlsyiF4lwSrOf2eW2Q.crl (hash: 3DQ0NzH8SphKZBcXOjB81HWKZNaYnOkA/tr2fXk3SZk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/214c9a-0950-40d9-a586-e35db52567f0/1/y9f8E-GDbDlsyiF4lwSrOf2eW2Q.crl rsync://rpki.ripe.net/repository/DEFAULT/24/214c9a-0950-40d9-a586-e35db52567f0/1/y9f8E-GDbDlsyiF4lwSrOf2eW2Q.mft rsync://rpki.ripe.net/repository/DEFAULT/y9f8E-GDbDlsyiF4lwSrOf2eW2Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fc:52:c5:b6:a4:0c:ec:17:d6:32:98:ca:d5:bb:04:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cbd7fc13e1836c396cca21789704ab39fd9e5b64 Validity Not Before: Jan 26 22:00:41 2026 GMT Not After : Jan 27 22:00:41 2026 GMT Subject: CN=59e3c851bf289a8b360d16a2f64aae0112838da7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:d4:09:7e:51:bb:bf:b5:f5:63:9f:eb:d4:78: 4c:fe:52:f6:99:39:d0:0d:0d:2a:67:17:f7:53:51: e5:a7:1c:cf:78:83:8b:e1:17:c1:c1:04:bb:5d:08: a4:13:3d:32:f3:d0:a8:1d:3f:2c:05:03:7e:e4:d0: 6b:ff:f6:1c:ce:68:48:93:ab:49:ce:c3:cd:bd:7e: f5:0a:ff:f9:8c:e4:6d:5d:e8:a9:f7:fc:a7:be:b1: 5d:17:9e:86:3a:fb:f2:e9:91:1b:2d:c5:76:61:c8: 3c:27:0c:d7:95:45:e9:27:76:46:85:30:1c:98:51: 5e:3f:29:91:08:3b:3b:a1:a1:2e:97:df:ba:38:ef: 11:1e:cd:15:1e:ab:0b:05:17:c0:8b:90:ae:3a:33: d8:be:31:e8:37:91:3b:ef:c4:52:67:e7:f4:ed:32: 66:5a:88:84:15:11:56:b8:02:d7:ae:56:31:0f:fa: 09:5f:67:aa:e9:95:35:de:03:57:23:9f:e4:b6:ff: b6:10:04:48:bb:d1:c2:87:e9:e4:5f:3a:19:7a:d1: 84:a2:49:ef:19:f5:7d:ce:b3:74:0c:90:15:9c:22: 37:54:26:ba:45:3f:54:0b:60:e6:42:9b:4e:63:e9: db:ce:aa:07:c4:03:17:25:cb:1f:10:08:82:5e:aa: 9f:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:E3:C8:51:BF:28:9A:8B:36:0D:16:A2:F6:4A:AE:01:12:83:8D:A7 X509v3 Authority Key Identifier: keyid:CB:D7:FC:13:E1:83:6C:39:6C:CA:21:78:97:04:AB:39:FD:9E:5B:64 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y9f8E-GDbDlsyiF4lwSrOf2eW2Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/214c9a-0950-40d9-a586-e35db52567f0/1/y9f8E-GDbDlsyiF4lwSrOf2eW2Q.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/24/214c9a-0950-40d9-a586-e35db52567f0/1/y9f8E-GDbDlsyiF4lwSrOf2eW2Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption df:d9:05:b4:00:d2:04:ac:8b:cb:ef:19:7f:0a:bf:a2:c4:61: 5c:cc:df:6d:da:ff:1d:14:a5:33:cf:19:9c:b2:be:43:5f:08: 95:b2:85:b5:ab:6f:82:8c:8e:d9:9d:9f:42:6c:60:7b:d1:d3: 93:f7:03:14:d4:a5:c3:7b:7d:4a:63:09:17:d3:76:3b:de:6b: d8:0c:21:79:9b:38:3b:f9:2f:a2:d1:30:ac:c5:e0:f9:28:99: c3:eb:66:73:83:29:22:cd:31:bb:e5:2b:72:75:32:de:86:fa: 47:98:17:5a:f2:fa:50:d8:c2:fe:92:e8:50:7c:4a:91:ff:06: b3:0a:59:7a:91:46:9c:ce:b2:98:78:f0:eb:b9:ac:a1:a2:77: be:74:dc:34:e4:e0:f5:9d:b5:1c:a7:a6:e2:d6:81:d5:ce:67: 8f:09:2f:db:aa:bb:8e:81:df:89:f2:67:d4:19:59:e5:a6:42: 10:8f:78:e2:85:19:48:f9:11:92:27:f0:bf:90:d8:a6:84:aa: 30:cd:51:84:9b:ce:37:ce:ed:18:2e:bc:6d:1a:98:36:4b:1c: e5:e7:b9:b9:c2:5d:1f:bf:6b:33:a4:c4:16:07:f0:6b:af:b7: 2d:ac:60:a7:53:e2:ef:11:4f:6e:c4:03:68:1f:05:03:13:97: 08:70:1c:39 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv8UsW2pAzsF9YymMrVuwTmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNiZDdmYzEzZTE4MzZjMzk2Y2NhMjE3ODk3MDRhYjM5ZmQ5 ZTViNjQwHhcNMjYwMTI2MjIwMDQxWhcNMjYwMTI3MjIwMDQxWjAzMTEwLwYDVQQD Eyg1OWUzYzg1MWJmMjg5YThiMzYwZDE2YTJmNjRhYWUwMTEyODM4ZGE3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0NQJflG7v7X1Y5/r1HhM/lL2mTnQ DQ0qZxf3U1HlpxzPeIOL4RfBwQS7XQikEz0y89CoHT8sBQN+5NBr//YczmhIk6tJ zsPNvX71Cv/5jORtXeip9/ynvrFdF56GOvvy6ZEbLcV2Ycg8JwzXlUXpJ3ZGhTAc mFFePymRCDs7oaEul9+6OO8RHs0VHqsLBRfAi5CuOjPYvjHoN5E778RSZ+f07TJm WoiEFRFWuALXrlYxD/oJX2eq6ZU13gNXI5/ktv+2EARIu9HCh+nkXzoZetGEoknv GfV9zrN0DJAVnCI3VCa6RT9UC2DmQptOY+nbzqoHxAMXJcsfEAiCXqqfawIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFnjyFG/KJqLNg0WovZKrgESg42nMB8GA1UdIwQY MBaAFMvX/BPhg2w5bMoheJcEqzn9nltkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveTlmOEUtR0RiRGxzeWlGNGx3U3JPZjJlVzJRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC8yMTRjOWEtMDk1MC00MGQ5LWE1ODYt ZTM1ZGI1MjU2N2YwLzEveTlmOEUtR0RiRGxzeWlGNGx3U3JPZjJlVzJRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNC8yMTRjOWEtMDk1MC00MGQ5LWE1ODYtZTM1ZGI1MjU2N2Yw LzEveTlmOEUtR0RiRGxzeWlGNGx3U3JPZjJlVzJRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA39kFtADS BKyLy+8Zfwq/osRhXMzfbdr/HRSlM88ZnLK+Q18IlbKFtatvgoyO2Z2fQmxge9HT k/cDFNSlw3t9SmMJF9N2O95r2AwheZs4O/kvotEwrMXg+SiZw+tmc4MpIs0xu+Ur cnUy3ob6R5gXWvL6UNjC/pLoUHxKkf8GswpZepFGnM6ymHjw67msoaJ3vnTcNOTg 9Z21HKem4taB1c5njwkv26q7joHfifJn1BlZ5aZCEI944oUZSPkRkifwv5DYpoSq MM1RhJvON87tGC68bRqYNksc5ee5ucJdH79rM6TEFgfwa6+3Laxgp1Pi7xFPbsQD aB8FAxOXCHAcOQ== -----END CERTIFICATE-----Generated at Tue Jan 27 01:18:35 2026 by rpki-client