This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/ee5e47-4e29-4603-b962-0e0046c8a87b/1/yjNIUNrzcSIFIBmSKevekO8osBg.mft File: yjNIUNrzcSIFIBmSKevekO8osBg.mft (raw, json) Hash identifier: ll4et+cI3iRk2G2kC2ZB4QIhDbrRulU3UN8Lc6GCQxU= Subject key identifier: 1D:7E:DF:57:50:E7:86:AE:9B:5B:1F:86:56:D4:A2:21:A7:10:4C:23 Authority key identifier: CA:33:48:50:DA:F3:71:22:05:20:19:92:29:EB:DE:90:EF:28:B0:18 Certificate issuer: /CN=ca334850daf371220520199229ebde90ef28b018 Certificate serial: 019BCE9E53409F777BEF1ACD34B179AA20D7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yjNIUNrzcSIFIBmSKevekO8osBg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/ee5e47-4e29-4603-b962-0e0046c8a87b/1/yjNIUNrzcSIFIBmSKevekO8osBg.mft Manifest number: 0851 Signing time: Sun 18 Jan 2026 01:00:41 +0000 Manifest this update: Sun 18 Jan 2026 01:00:41 +0000 Manifest next update: Mon 19 Jan 2026 01:00:41 +0000 Files and hashes: 1: XQZYtmJX7BpNzPu03srU_4VYUsc.roa (hash: Bjg0iayeOq8sVWJ1lC2MT+jpchRq5ORWkMqvwpb8VDY=) 2: yjNIUNrzcSIFIBmSKevekO8osBg.crl (hash: QbuaD3I56KC36FVdfWAbZ2EpbGWNTxjZJ9aOejcKYhw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/ee5e47-4e29-4603-b962-0e0046c8a87b/1/yjNIUNrzcSIFIBmSKevekO8osBg.crl rsync://rpki.ripe.net/repository/DEFAULT/3c/ee5e47-4e29-4603-b962-0e0046c8a87b/1/yjNIUNrzcSIFIBmSKevekO8osBg.mft rsync://rpki.ripe.net/repository/DEFAULT/yjNIUNrzcSIFIBmSKevekO8osBg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 01:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:ce:9e:53:40:9f:77:7b:ef:1a:cd:34:b1:79:aa:20:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ca334850daf371220520199229ebde90ef28b018 Validity Not Before: Jan 18 01:00:41 2026 GMT Not After : Jan 19 01:00:41 2026 GMT Subject: CN=1d7edf5750e786ae9b5b1f8656d4a221a7104c23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:66:30:90:bd:2c:f7:89:f6:39:28:68:3f:0e: 9c:ad:5d:b6:64:65:97:cd:d6:7b:7d:1a:02:b0:92: 71:c5:6d:51:59:9d:5c:23:b2:86:6f:57:18:58:0b: 42:fc:24:26:90:c7:d5:8b:6d:82:f4:e5:df:05:ed: 21:07:a7:1a:52:a6:ca:74:3e:8c:38:6f:d0:02:ab: e7:be:d1:1b:a0:47:b8:8d:94:30:80:1f:c3:4b:9d: 15:49:99:3b:e4:87:14:c7:52:19:f8:1c:41:02:8d: 0d:96:27:d2:db:30:ab:82:25:67:79:fb:d0:66:2b: 23:d8:76:f9:c8:59:ae:39:1e:79:1e:8a:a8:59:7a: 2a:08:ae:e5:ee:33:81:8c:1d:72:71:c8:c0:e1:b6: 29:49:d2:c1:a3:da:7a:ff:c2:52:d7:48:19:b4:66: 57:36:e2:fb:22:0e:4e:54:53:54:40:49:26:18:0c: e2:54:2d:13:68:33:77:73:74:d4:df:d2:50:9f:b1: 6f:69:91:47:42:71:c6:5a:9d:c3:f5:0b:1d:8c:5d: d0:fe:67:8f:45:c4:91:08:3d:1e:8b:c9:41:20:e2: 73:53:7d:cb:67:cb:c4:e0:55:cc:a5:8e:bc:b8:38: 19:08:1b:4b:ea:f0:06:fa:91:b1:be:92:4a:6c:a1: b9:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:7E:DF:57:50:E7:86:AE:9B:5B:1F:86:56:D4:A2:21:A7:10:4C:23 X509v3 Authority Key Identifier: keyid:CA:33:48:50:DA:F3:71:22:05:20:19:92:29:EB:DE:90:EF:28:B0:18 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yjNIUNrzcSIFIBmSKevekO8osBg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/ee5e47-4e29-4603-b962-0e0046c8a87b/1/yjNIUNrzcSIFIBmSKevekO8osBg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/ee5e47-4e29-4603-b962-0e0046c8a87b/1/yjNIUNrzcSIFIBmSKevekO8osBg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 35:a5:1b:d3:5b:92:b5:a1:25:1d:74:1b:4d:8d:fe:6c:f5:46: b8:5b:cf:83:a3:90:f6:67:22:0d:00:ff:f8:7f:61:d4:bc:70: ad:df:50:f0:e4:02:3e:f3:76:cb:75:63:29:e9:5e:b5:5a:b3: cd:0b:5f:03:46:63:fd:43:e7:4f:c1:aa:f8:61:8c:d0:85:25: dd:55:39:fd:01:75:6b:f9:76:6c:86:4c:d0:47:2b:bf:b1:5b: 38:64:f4:2b:4d:77:b3:ea:7f:20:90:74:6c:7b:1c:ef:fb:50: ff:98:26:4c:b5:2b:49:e4:5f:f0:9f:e9:e7:f6:5e:0d:5e:fc: d4:68:44:cb:55:c8:26:24:e8:72:1a:6b:01:3b:45:a6:c6:22: bd:0a:5f:53:2a:9f:ae:cc:5d:9f:0e:25:07:dc:d9:59:08:c7: 5c:77:55:2f:05:32:54:8c:be:0e:bf:fb:5a:d3:fe:97:b1:72: 7a:57:4e:82:ba:49:3d:3a:87:c7:0c:53:82:b6:36:b3:cb:57: 04:06:1e:85:e0:50:7b:3d:54:50:08:83:a7:7f:d0:4c:7e:88: 4d:90:81:5c:aa:44:5d:f5:0b:df:be:0c:bb:ef:dc:0d:1f:40: d8:d5:fb:b7:1a:fc:46:0b:e6:00:8d:86:5a:6b:1c:d7:7b:49: 5d:fc:62:73 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZvOnlNAn3d77xrNNLF5qiDXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNhMzM0ODUwZGFmMzcxMjIwNTIwMTk5MjI5ZWJkZTkwZWYy OGIwMTgwHhcNMjYwMTE4MDEwMDQxWhcNMjYwMTE5MDEwMDQxWjAzMTEwLwYDVQQD EygxZDdlZGY1NzUwZTc4NmFlOWI1YjFmODY1NmQ0YTIyMWE3MTA0YzIzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvGYwkL0s94n2OShoPw6crV22ZGWX zdZ7fRoCsJJxxW1RWZ1cI7KGb1cYWAtC/CQmkMfVi22C9OXfBe0hB6caUqbKdD6M OG/QAqvnvtEboEe4jZQwgB/DS50VSZk75IcUx1IZ+BxBAo0NlifS2zCrgiVnefvQ Zisj2Hb5yFmuOR55HoqoWXoqCK7l7jOBjB1yccjA4bYpSdLBo9p6/8JS10gZtGZX NuL7Ig5OVFNUQEkmGAziVC0TaDN3c3TU39JQn7FvaZFHQnHGWp3D9QsdjF3Q/meP RcSRCD0ei8lBIOJzU33LZ8vE4FXMpY68uDgZCBtL6vAG+pGxvpJKbKG5nwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFB1+31dQ54aum1sfhlbUoiGnEEwjMB8GA1UdIwQY MBaAFMozSFDa83EiBSAZkinr3pDvKLAYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveWpOSVVOcnpjU0lGSUJtU0tldmVrTzhvc0JnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYy9lZTVlNDctNGUyOS00NjAzLWI5NjIt MGUwMDQ2YzhhODdiLzEveWpOSVVOcnpjU0lGSUJtU0tldmVrTzhvc0JnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYy9lZTVlNDctNGUyOS00NjAzLWI5NjItMGUwMDQ2YzhhODdi LzEveWpOSVVOcnpjU0lGSUJtU0tldmVrTzhvc0JnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANaUb01uS taElHXQbTY3+bPVGuFvPg6OQ9mciDQD/+H9h1Lxwrd9Q8OQCPvN2y3VjKeletVqz zQtfA0Zj/UPnT8Gq+GGM0IUl3VU5/QF1a/l2bIZM0Ecrv7FbOGT0K013s+p/IJB0 bHsc7/tQ/5gmTLUrSeRf8J/p5/ZeDV781GhEy1XIJiTochprATtFpsYivQpfUyqf rsxdnw4lB9zZWQjHXHdVLwUyVIy+Dr/7WtP+l7FyeldOgrpJPTqHxwxTgrY2s8tX BAYeheBQez1UUAiDp3/QTH6ITZCBXKpEXfUL374Mu+/cDR9A2NX7txr8RgvmAI2G Wmsc13tJXfxicw== -----END CERTIFICATE-----Generated at Sun Jan 18 11:13:32 2026 by rpki-client