This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/f3fef4-45da-4b43-98c2-4df8840efb17/1/KYXMQ9gGohtjMwIZ62OLsbpJroA.mft File: KYXMQ9gGohtjMwIZ62OLsbpJroA.mft (raw, json) Hash identifier: rm097L3tt/Tphv3ATHSo4DEQQAqC564ISKjP88hTQxI= Subject key identifier: 2A:AA:BE:60:BD:56:D8:25:B2:FF:80:33:09:3D:3B:00:6D:E0:25:4C Authority key identifier: 29:85:CC:43:D8:06:A2:1B:63:33:02:19:EB:63:8B:B1:BA:49:AE:80 Certificate issuer: /CN=2985cc43d806a21b63330219eb638bb1ba49ae80 Certificate serial: 019BF9519A19A9D6D46A3C29B696B94D8FA1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KYXMQ9gGohtjMwIZ62OLsbpJroA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/f3fef4-45da-4b43-98c2-4df8840efb17/1/KYXMQ9gGohtjMwIZ62OLsbpJroA.mft Manifest number: 05D4 Signing time: Mon 26 Jan 2026 08:00:33 +0000 Manifest this update: Mon 26 Jan 2026 08:00:33 +0000 Manifest next update: Tue 27 Jan 2026 08:00:33 +0000 Files and hashes: 1: KYXMQ9gGohtjMwIZ62OLsbpJroA.crl (hash: I9UhJOb2i7yGvNNujZBUd+XepaSb8x+UX72VgN2sCjM=) 2: ZS3grquCf_l1OKXIoqEGRKP0J6M.roa (hash: 2PBPag/zPM22x9IohJ6q0TulDZRbeQTFCvgCnuCjnz0=) 3: vUdfXnwcRDPW7e3X7ofFMJYqkDk.roa (hash: 4hcskGjMuomfYGEOrtlmJrd0tV2p1HAsJ5FOV+HnCFs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/f3fef4-45da-4b43-98c2-4df8840efb17/1/KYXMQ9gGohtjMwIZ62OLsbpJroA.crl rsync://rpki.ripe.net/repository/DEFAULT/57/f3fef4-45da-4b43-98c2-4df8840efb17/1/KYXMQ9gGohtjMwIZ62OLsbpJroA.mft rsync://rpki.ripe.net/repository/DEFAULT/KYXMQ9gGohtjMwIZ62OLsbpJroA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f9:51:9a:19:a9:d6:d4:6a:3c:29:b6:96:b9:4d:8f:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2985cc43d806a21b63330219eb638bb1ba49ae80 Validity Not Before: Jan 26 08:00:33 2026 GMT Not After : Jan 27 08:00:33 2026 GMT Subject: CN=2aaabe60bd56d825b2ff8033093d3b006de0254c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:90:bb:76:7b:e5:4c:ad:01:9f:f6:8e:f8:ff: 33:33:41:3a:00:26:da:1b:c0:fc:4d:c1:be:36:6d: aa:64:32:51:71:f7:84:88:d1:83:cb:c0:b0:69:b8: f6:ab:ad:f4:63:57:65:83:cb:71:13:93:de:f1:79: 70:c4:0e:53:10:84:45:69:2e:47:24:d7:8e:a4:31: f3:1e:6e:18:a8:84:3e:13:93:c1:69:25:63:d3:e0: 5a:f3:c9:3a:81:2a:32:de:2c:ac:c0:f3:2c:ab:fa: 7e:9c:db:22:05:0a:2c:83:e1:3e:8d:52:16:aa:11: a3:8b:58:76:bf:59:3c:0d:db:b3:bc:ec:f3:55:86: b5:16:d9:09:df:88:6a:9d:6f:5d:8b:bb:14:4c:95: 9d:d8:95:c9:bf:6d:d9:bc:82:57:09:b6:8d:20:43: 8f:d0:a7:5d:d5:e8:00:70:ac:9e:28:73:cc:60:8a: 68:05:01:64:9f:cb:17:a5:00:3d:71:44:cf:6e:64: c9:74:37:ef:3d:15:59:33:bd:51:aa:b4:89:57:1e: 38:7d:d6:49:a6:91:6d:8b:b5:e6:80:26:11:b3:ba: 6b:f0:41:62:9c:9a:7f:50:8d:94:c7:04:67:30:47: c3:ad:44:86:d0:58:89:08:b7:88:c7:39:33:b6:d6: fe:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:AA:BE:60:BD:56:D8:25:B2:FF:80:33:09:3D:3B:00:6D:E0:25:4C X509v3 Authority Key Identifier: keyid:29:85:CC:43:D8:06:A2:1B:63:33:02:19:EB:63:8B:B1:BA:49:AE:80 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KYXMQ9gGohtjMwIZ62OLsbpJroA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/f3fef4-45da-4b43-98c2-4df8840efb17/1/KYXMQ9gGohtjMwIZ62OLsbpJroA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/57/f3fef4-45da-4b43-98c2-4df8840efb17/1/KYXMQ9gGohtjMwIZ62OLsbpJroA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 85:ff:6c:b1:68:e2:95:9d:e1:20:53:d8:4f:7a:31:31:a5:33: 40:7e:0e:4f:0e:0a:03:c9:b3:09:7a:aa:a8:1b:0b:d4:44:da: 04:cb:ec:3f:0a:0d:48:a4:13:fb:ae:ec:ca:ce:78:ff:92:41: 22:dd:41:04:55:9b:5c:c1:de:7e:9e:8d:bb:6e:e5:a3:24:24: 38:7e:87:b9:6e:a8:51:72:a7:3c:56:ec:20:33:f2:93:54:a8: 9c:51:cd:18:b4:0a:66:93:00:2a:ff:10:85:17:27:b3:fb:e3: 4e:2a:36:c5:be:14:d0:4a:62:67:8a:a5:ac:f1:50:0f:7d:f3: 69:56:77:7e:67:80:29:a3:10:f5:28:36:fc:e7:d8:26:1b:d9: bf:eb:2d:a2:fc:31:9a:20:db:64:52:74:53:a1:31:b7:77:9d: ee:8e:8e:98:1a:cc:28:d8:b0:23:41:df:61:ce:66:95:7c:f7: fa:e1:48:1c:85:52:0d:a9:81:bc:b3:e4:35:19:43:56:74:f0: ef:e4:18:0c:f4:7d:b6:21:b6:f6:ab:8d:c0:61:a6:d7:b0:d6: d2:c9:c9:ac:7a:a8:9a:90:01:97:1b:4a:28:3f:3e:b1:eb:c6: 6d:a1:8c:dc:f1:2e:38:a5:7f:30:ab:22:39:a2:96:04:1b:1e: 6b:f3:38:9b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv5UZoZqdbUajwptpa5TY+hMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5ODVjYzQzZDgwNmEyMWI2MzMzMDIxOWViNjM4YmIxYmE0 OWFlODAwHhcNMjYwMTI2MDgwMDMzWhcNMjYwMTI3MDgwMDMzWjAzMTEwLwYDVQQD EygyYWFhYmU2MGJkNTZkODI1YjJmZjgwMzMwOTNkM2IwMDZkZTAyNTRjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvpC7dnvlTK0Bn/aO+P8zM0E6ACba G8D8TcG+Nm2qZDJRcfeEiNGDy8Cwabj2q630Y1dlg8txE5Pe8XlwxA5TEIRFaS5H JNeOpDHzHm4YqIQ+E5PBaSVj0+Ba88k6gSoy3iyswPMsq/p+nNsiBQosg+E+jVIW qhGji1h2v1k8DduzvOzzVYa1FtkJ34hqnW9di7sUTJWd2JXJv23ZvIJXCbaNIEOP 0Kdd1egAcKyeKHPMYIpoBQFkn8sXpQA9cUTPbmTJdDfvPRVZM71RqrSJVx44fdZJ ppFti7XmgCYRs7pr8EFinJp/UI2UxwRnMEfDrUSG0FiJCLeIxzkzttb+8wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCqqvmC9Vtglsv+AMwk9OwBt4CVMMB8GA1UdIwQY MBaAFCmFzEPYBqIbYzMCGetji7G6Sa6AMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS1lYTVE5Z0dvaHRqTXdJWjYyT0xzYnBKcm9BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ny9mM2ZlZjQtNDVkYS00YjQzLTk4YzIt NGRmODg0MGVmYjE3LzEvS1lYTVE5Z0dvaHRqTXdJWjYyT0xzYnBKcm9BLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Ny9mM2ZlZjQtNDVkYS00YjQzLTk4YzItNGRmODg0MGVmYjE3 LzEvS1lYTVE5Z0dvaHRqTXdJWjYyT0xzYnBKcm9BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhf9ssWji lZ3hIFPYT3oxMaUzQH4OTw4KA8mzCXqqqBsL1ETaBMvsPwoNSKQT+67sys54/5JB It1BBFWbXMHefp6Nu27loyQkOH6HuW6oUXKnPFbsIDPyk1SonFHNGLQKZpMAKv8Q hRcns/vjTio2xb4U0EpiZ4qlrPFQD33zaVZ3fmeAKaMQ9Sg2/OfYJhvZv+stovwx miDbZFJ0U6Ext3ed7o6OmBrMKNiwI0HfYc5mlXz3+uFIHIVSDamBvLPkNRlDVnTw 7+QYDPR9tiG29quNwGGm17DW0snJrHqompABlxtKKD8+sevGbaGM3PEuOKV/MKsi OaKWBBsea/M4mw== -----END CERTIFICATE-----Generated at Mon Jan 26 10:51:51 2026 by rpki-client