This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/063b1b-7bde-48cc-b1ac-fad707d9c4f6/1/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.mft File: U7-Y1TUiqpVwgf3sKLFyCEOU8RI.mft (raw, json) Hash identifier: VEj/98WtudBcmE+KDMxJHeG4HxNw+7le00gO9+c6WK0= Subject key identifier: A9:07:0B:46:77:44:4A:0D:86:35:6E:B1:0B:D7:F7:2F:06:34:8B:5B Authority key identifier: 53:BF:98:D5:35:22:AA:95:70:81:FD:EC:28:B1:72:08:43:94:F1:12 Certificate issuer: /CN=53bf98d53522aa957081fdec28b172084394f112 Certificate serial: 019BAA931844C2752174C9EEE592BA28442D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/063b1b-7bde-48cc-b1ac-fad707d9c4f6/1/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.mft Manifest number: 0FD7 Signing time: Sun 11 Jan 2026 01:02:05 +0000 Manifest this update: Sun 11 Jan 2026 01:02:05 +0000 Manifest next update: Mon 12 Jan 2026 01:02:05 +0000 Files and hashes: 1: U7-Y1TUiqpVwgf3sKLFyCEOU8RI.crl (hash: Cydb3FYs+n5z1LaKVBgszQV9JgluvCNsBtaUtTUP1MI=) 2: mK9jBg2iFuywF6JUAww3mxKLxCU.roa (hash: lk8hbAdLVuILHrw42c6HMnMUPa/ZOyLXrol4InQSdq8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/063b1b-7bde-48cc-b1ac-fad707d9c4f6/1/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.crl rsync://rpki.ripe.net/repository/DEFAULT/36/063b1b-7bde-48cc-b1ac-fad707d9c4f6/1/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.mft rsync://rpki.ripe.net/repository/DEFAULT/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 00:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:aa:93:18:44:c2:75:21:74:c9:ee:e5:92:ba:28:44:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=53bf98d53522aa957081fdec28b172084394f112 Validity Not Before: Jan 11 01:02:05 2026 GMT Not After : Jan 12 01:02:05 2026 GMT Subject: CN=a9070b4677444a0d86356eb10bd7f72f06348b5b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:88:9b:92:75:de:0d:1a:da:a7:3b:b5:51:de: 38:54:3b:15:9d:7b:87:1b:22:7b:ac:39:73:9d:2c: 5d:6e:1a:69:3b:15:eb:02:ce:6d:a5:19:bb:8b:22: 00:a5:30:05:66:f3:e1:dc:6f:8f:4e:b9:cf:56:76: 00:8d:05:dc:15:0f:cd:c3:23:64:40:2a:a6:7c:c2: 7b:ff:bf:2f:7b:01:1e:b7:9e:54:80:d3:0d:9b:c4: 93:5b:25:0f:e6:c4:96:96:d3:71:98:55:96:72:f4: 1e:b9:00:f4:c1:7a:77:77:61:85:6c:25:23:c4:f5: 87:b6:66:ba:0b:00:2d:ba:33:bb:c5:4f:f6:63:03: 17:b7:ca:28:4a:38:56:f7:83:1e:40:62:06:74:86: c1:36:21:f9:5d:e8:4f:48:33:0b:fc:c5:c2:29:b0: 44:67:02:80:2c:73:60:4f:33:55:ae:39:bf:0b:58: 7e:cc:96:3d:4b:10:33:30:08:e0:a2:90:22:8a:6a: d1:bc:a4:23:c8:8e:e3:2f:84:38:72:c4:0f:7e:9d: 2f:18:f7:f6:9d:89:b6:99:92:dc:c9:1a:01:ae:54: 39:fc:b5:d0:07:de:17:01:f0:8b:5a:3f:e5:ff:46: 9f:db:50:16:c2:06:7a:56:4e:86:ef:81:0b:f8:73: 10:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:07:0B:46:77:44:4A:0D:86:35:6E:B1:0B:D7:F7:2F:06:34:8B:5B X509v3 Authority Key Identifier: keyid:53:BF:98:D5:35:22:AA:95:70:81:FD:EC:28:B1:72:08:43:94:F1:12 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/063b1b-7bde-48cc-b1ac-fad707d9c4f6/1/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/36/063b1b-7bde-48cc-b1ac-fad707d9c4f6/1/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6f:0b:f1:03:71:8a:6c:8a:ca:de:7a:77:71:37:7a:47:54:36: 4d:ad:db:3b:9a:ce:65:b7:fe:38:86:34:7b:96:18:12:17:fd: 0b:55:e2:44:23:d0:52:85:e3:7b:f1:44:5a:05:05:72:4f:5d: 9b:e8:57:6c:65:13:7e:76:3e:17:23:58:76:54:2e:f2:53:02: e1:87:bc:41:9b:3b:da:8c:f5:53:98:e8:6f:0c:74:de:b8:88: 95:ae:e8:0f:c5:35:ba:84:3a:dd:c7:26:6f:13:c8:d4:5d:1d: 0b:68:62:87:03:be:a6:45:b0:18:3b:b7:59:4d:53:fe:c4:7f: e1:f3:9a:0b:70:c2:ca:f9:a1:24:32:ba:23:12:07:c7:b6:9f: 38:da:9c:ce:c2:38:cc:98:b0:39:61:e0:66:f2:32:96:51:cc: ab:26:11:86:ab:b4:43:5d:8f:8a:26:bf:8c:89:b4:38:6e:92: a1:e1:fd:f8:c8:4f:ac:ad:6c:7d:20:a5:df:ad:0b:31:c6:4c: 52:ab:a2:40:8b:00:59:22:10:61:c5:99:de:04:f2:ce:20:b4: ed:1e:34:3f:00:68:05:0f:1e:81:9f:34:1c:9b:f1:f8:45:4e: 5a:ae:4c:2d:d3:d4:84:3f:dc:8e:bc:41:66:48:05:17:62:0a: ac:a1:97:dc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZuqkxhEwnUhdMnu5ZK6KEQtMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUzYmY5OGQ1MzUyMmFhOTU3MDgxZmRlYzI4YjE3MjA4NDM5 NGYxMTIwHhcNMjYwMTExMDEwMjA1WhcNMjYwMTEyMDEwMjA1WjAzMTEwLwYDVQQD EyhhOTA3MGI0Njc3NDQ0YTBkODYzNTZlYjEwYmQ3ZjcyZjA2MzQ4YjViMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy4ibknXeDRrapzu1Ud44VDsVnXuH GyJ7rDlznSxdbhppOxXrAs5tpRm7iyIApTAFZvPh3G+PTrnPVnYAjQXcFQ/NwyNk QCqmfMJ7/78vewEet55UgNMNm8STWyUP5sSWltNxmFWWcvQeuQD0wXp3d2GFbCUj xPWHtma6CwAtujO7xU/2YwMXt8ooSjhW94MeQGIGdIbBNiH5XehPSDML/MXCKbBE ZwKALHNgTzNVrjm/C1h+zJY9SxAzMAjgopAiimrRvKQjyI7jL4Q4csQPfp0vGPf2 nYm2mZLcyRoBrlQ5/LXQB94XAfCLWj/l/0af21AWwgZ6Vk6G74EL+HMQAQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKkHC0Z3REoNhjVusQvX9y8GNItbMB8GA1UdIwQY MBaAFFO/mNU1IqqVcIH97CixcghDlPESMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVTctWTFUVWlxcFZ3Z2Yzc0tMRnlDRU9VOFJJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi8wNjNiMWItN2JkZS00OGNjLWIxYWMt ZmFkNzA3ZDljNGY2LzEvVTctWTFUVWlxcFZ3Z2Yzc0tMRnlDRU9VOFJJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNi8wNjNiMWItN2JkZS00OGNjLWIxYWMtZmFkNzA3ZDljNGY2 LzEvVTctWTFUVWlxcFZ3Z2Yzc0tMRnlDRU9VOFJJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbwvxA3GK bIrK3np3cTd6R1Q2Ta3bO5rOZbf+OIY0e5YYEhf9C1XiRCPQUoXje/FEWgUFck9d m+hXbGUTfnY+FyNYdlQu8lMC4Ye8QZs72oz1U5jobwx03riIla7oD8U1uoQ63ccm bxPI1F0dC2hihwO+pkWwGDu3WU1T/sR/4fOaC3DCyvmhJDK6IxIHx7afONqczsI4 zJiwOWHgZvIyllHMqyYRhqu0Q12Piia/jIm0OG6SoeH9+MhPrK1sfSCl360LMcZM UquiQIsAWSIQYcWZ3gTyziC07R40PwBoBQ8egZ80HJvx+EVOWq5MLdPUhD/cjrxB ZkgFF2IKrKGX3A== -----END CERTIFICATE-----Generated at Sun Jan 11 08:34:52 2026 by rpki-client