This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/f7c9d1-0f5b-42f5-931d-1dc0b84a1c7e/1/YUeZxnwIVH2AuzXQLa5QXVpl3Fs.mft File: YUeZxnwIVH2AuzXQLa5QXVpl3Fs.mft (raw, json) Hash identifier: xNHFd8S3GUmbar/KXewCOjQNGrFah3m6h65v/gFWwRU= Subject key identifier: E5:3F:54:83:C5:67:28:90:C1:DD:D3:D0:B0:98:18:07:1B:E2:6C:7A Authority key identifier: 61:47:99:C6:7C:08:54:7D:80:BB:35:D0:2D:AE:50:5D:5A:65:DC:5B Certificate issuer: /CN=614799c67c08547d80bb35d02dae505d5a65dc5b Certificate serial: 019BF8AD19E9A5E581E88F6E9C821934C606 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YUeZxnwIVH2AuzXQLa5QXVpl3Fs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/f7c9d1-0f5b-42f5-931d-1dc0b84a1c7e/1/YUeZxnwIVH2AuzXQLa5QXVpl3Fs.mft Manifest number: 09F8 Signing time: Mon 26 Jan 2026 05:00:52 +0000 Manifest this update: Mon 26 Jan 2026 05:00:52 +0000 Manifest next update: Tue 27 Jan 2026 05:00:52 +0000 Files and hashes: 1: B-jtVqVW9M43hbMxN6j_v-hrwB4.roa (hash: xV6nCB7rwxI+22ZkCjSqm8Ae38pQziS4ET9GFX+UA2o=) 2: YUeZxnwIVH2AuzXQLa5QXVpl3Fs.crl (hash: CzoFe49Qh2oaAMNxSHdNJrRfGhe4fslX+AltNTky+58=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/f7c9d1-0f5b-42f5-931d-1dc0b84a1c7e/1/YUeZxnwIVH2AuzXQLa5QXVpl3Fs.crl rsync://rpki.ripe.net/repository/DEFAULT/2f/f7c9d1-0f5b-42f5-931d-1dc0b84a1c7e/1/YUeZxnwIVH2AuzXQLa5QXVpl3Fs.mft rsync://rpki.ripe.net/repository/DEFAULT/YUeZxnwIVH2AuzXQLa5QXVpl3Fs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f8:ad:19:e9:a5:e5:81:e8:8f:6e:9c:82:19:34:c6:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=614799c67c08547d80bb35d02dae505d5a65dc5b Validity Not Before: Jan 26 05:00:52 2026 GMT Not After : Jan 27 05:00:52 2026 GMT Subject: CN=e53f5483c5672890c1ddd3d0b09818071be26c7a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:12:06:43:30:e6:aa:b1:20:15:41:0a:48:4d: 98:c2:d0:b4:8e:6a:7e:f9:66:26:e4:05:8d:dd:08: 93:20:83:53:47:81:da:dc:30:6f:27:17:02:5b:96: af:56:71:98:99:c5:fa:d7:b7:f0:0b:f6:4d:ca:13: 5d:41:d4:12:f5:d7:28:c0:4a:24:a7:70:b6:9f:6f: 17:66:85:00:50:c0:d5:70:e7:61:5c:38:c1:cb:d2: ec:17:ae:7b:f5:3e:b9:55:22:35:4c:d6:3b:64:7a: 8a:3c:68:be:a2:1a:46:6b:25:b8:79:5d:34:d6:2c: 54:8f:dd:e6:9b:ec:2d:62:9d:d7:5a:22:21:39:a5: e6:fd:c3:3c:32:e1:b1:ed:a4:c5:12:75:f8:19:17: 29:81:ba:38:37:af:1c:da:d6:86:d7:a6:50:90:9e: 2e:2e:53:f4:0e:04:ff:dc:31:08:3f:a0:02:2b:41: 92:9f:73:b8:d0:5a:f0:ce:34:17:5c:94:88:06:c9: 36:24:4b:03:43:5f:97:3a:96:09:fe:d5:21:60:16: 99:bd:13:fc:32:1b:6c:8c:61:fd:66:ce:19:9d:a2: 6a:97:ce:16:44:16:3d:34:75:96:e0:f5:6c:39:3f: d1:3e:92:f1:6b:32:70:98:29:75:d6:d6:ed:eb:74: be:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:3F:54:83:C5:67:28:90:C1:DD:D3:D0:B0:98:18:07:1B:E2:6C:7A X509v3 Authority Key Identifier: keyid:61:47:99:C6:7C:08:54:7D:80:BB:35:D0:2D:AE:50:5D:5A:65:DC:5B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YUeZxnwIVH2AuzXQLa5QXVpl3Fs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/f7c9d1-0f5b-42f5-931d-1dc0b84a1c7e/1/YUeZxnwIVH2AuzXQLa5QXVpl3Fs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/f7c9d1-0f5b-42f5-931d-1dc0b84a1c7e/1/YUeZxnwIVH2AuzXQLa5QXVpl3Fs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 13:23:6e:23:80:c7:25:59:f9:f8:b9:7c:ce:8f:fe:36:6f:93: a7:f0:dd:a6:d6:e7:19:20:19:28:e1:cf:e9:1f:29:d9:fb:ec: bf:91:27:44:ab:d0:86:e6:96:ec:10:87:75:7a:31:9d:ae:49: c4:ff:f3:c0:59:d7:37:ff:2a:96:72:5c:c8:95:bd:8f:be:2c: e2:b7:f2:02:e7:55:13:8e:c9:23:a6:7b:6a:e5:f0:54:69:5f: c1:61:2d:9a:66:3d:29:98:56:53:5c:90:9f:7d:ff:56:5f:de: 6f:77:8a:bd:b1:4f:c9:2a:30:d5:27:ea:2f:e0:1f:96:82:5d: 3c:40:0c:b0:b7:76:b5:9e:5d:53:44:f8:cb:9a:80:b6:86:74: 52:b1:b7:c4:69:21:f2:e8:e8:8b:d3:e6:37:db:e3:ee:6e:e1: bd:2e:05:1d:f7:d3:9f:09:a6:11:09:2c:8f:71:8d:c0:a7:66: b1:64:51:f6:1e:07:77:ab:96:28:54:68:14:10:db:22:24:0c: 4b:67:a0:15:71:eb:00:fc:75:77:72:3f:5e:e0:a3:21:d1:c8: 0c:60:df:e0:03:9e:33:86:52:e7:fd:81:f0:a6:37:f0:1f:8b: d3:d2:6a:1e:49:8b:b1:75:69:8c:20:19:b7:b0:d3:ad:18:3b: 0d:85:2d:8a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv4rRnppeWB6I9unIIZNMYGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYxNDc5OWM2N2MwODU0N2Q4MGJiMzVkMDJkYWU1MDVkNWE2 NWRjNWIwHhcNMjYwMTI2MDUwMDUyWhcNMjYwMTI3MDUwMDUyWjAzMTEwLwYDVQQD EyhlNTNmNTQ4M2M1NjcyODkwYzFkZGQzZDBiMDk4MTgwNzFiZTI2YzdhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvBIGQzDmqrEgFUEKSE2YwtC0jmp+ +WYm5AWN3QiTIINTR4Ha3DBvJxcCW5avVnGYmcX617fwC/ZNyhNdQdQS9dcowEok p3C2n28XZoUAUMDVcOdhXDjBy9LsF6579T65VSI1TNY7ZHqKPGi+ohpGayW4eV00 1ixUj93mm+wtYp3XWiIhOaXm/cM8MuGx7aTFEnX4GRcpgbo4N68c2taG16ZQkJ4u LlP0DgT/3DEIP6ACK0GSn3O40FrwzjQXXJSIBsk2JEsDQ1+XOpYJ/tUhYBaZvRP8 MhtsjGH9Zs4ZnaJql84WRBY9NHWW4PVsOT/RPpLxazJwmCl11tbt63S+fwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOU/VIPFZyiQwd3T0LCYGAcb4mx6MB8GA1UdIwQY MBaAFGFHmcZ8CFR9gLs10C2uUF1aZdxbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWVVlWnhud0lWSDJBdXpYUUxhNVFYVnBsM0ZzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi9mN2M5ZDEtMGY1Yi00MmY1LTkzMWQt MWRjMGI4NGExYzdlLzEvWVVlWnhud0lWSDJBdXpYUUxhNVFYVnBsM0ZzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZi9mN2M5ZDEtMGY1Yi00MmY1LTkzMWQtMWRjMGI4NGExYzdl LzEvWVVlWnhud0lWSDJBdXpYUUxhNVFYVnBsM0ZzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEyNuI4DH JVn5+Ll8zo/+Nm+Tp/DdptbnGSAZKOHP6R8p2fvsv5EnRKvQhuaW7BCHdXoxna5J xP/zwFnXN/8qlnJcyJW9j74s4rfyAudVE47JI6Z7auXwVGlfwWEtmmY9KZhWU1yQ n33/Vl/eb3eKvbFPySow1SfqL+AfloJdPEAMsLd2tZ5dU0T4y5qAtoZ0UrG3xGkh 8ujoi9PmN9vj7m7hvS4FHffTnwmmEQksj3GNwKdmsWRR9h4Hd6uWKFRoFBDbIiQM S2egFXHrAPx1d3I/XuCjIdHIDGDf4AOeM4ZS5/2B8KY38B+L09JqHkmLsXVpjCAZ t7DTrRg7DYUtig== -----END CERTIFICATE-----Generated at Mon Jan 26 11:10:00 2026 by rpki-client