This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft File: ylF4miMTWsImjCKihWAKX5sFN3A.mft (raw, json) Hash identifier: Wni2/XwHuzB11cjOTKHwhNjjeRUbH8YRoM0JgsQWASA= Subject key identifier: 92:B3:82:46:13:C5:F6:E9:B8:15:B5:A8:05:AF:A4:2D:DE:64:C9:52 Authority key identifier: CA:51:78:9A:23:13:5A:C2:26:8C:22:A2:85:60:0A:5F:9B:05:37:70 Certificate issuer: /CN=ca51789a23135ac2268c22a285600a5f9b053770 Certificate serial: 019BDEB713241E6E5274C74EE117139941ED Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ylF4miMTWsImjCKihWAKX5sFN3A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft Manifest number: 1344 Signing time: Wed 21 Jan 2026 04:01:38 +0000 Manifest this update: Wed 21 Jan 2026 04:01:38 +0000 Manifest next update: Thu 22 Jan 2026 04:01:38 +0000 Files and hashes: 1: sr2F0zsExdSQr-zgnrk17i9FhUg.roa (hash: hKUfnAYzGISD3itupUfCkChJsvs636FejLl9Oqr8aQA=) 2: ylF4miMTWsImjCKihWAKX5sFN3A.crl (hash: zGxYsCscgGm6FkePTVZG6f3H1XVPup+bqfgk1x//F5o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.crl rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft rsync://rpki.ripe.net/repository/DEFAULT/ylF4miMTWsImjCKihWAKX5sFN3A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 04:01:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:de:b7:13:24:1e:6e:52:74:c7:4e:e1:17:13:99:41:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ca51789a23135ac2268c22a285600a5f9b053770 Validity Not Before: Jan 21 04:01:38 2026 GMT Not After : Jan 22 04:01:38 2026 GMT Subject: CN=92b3824613c5f6e9b815b5a805afa42dde64c952 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:07:32:b1:81:dd:ac:99:c5:2d:cd:31:37:2d: bf:11:8c:cc:fe:b0:6b:fe:8d:3f:35:aa:76:6e:46: d7:6e:81:10:c7:6c:4a:ad:fe:ff:35:ec:9d:2b:b3: 96:fd:ed:ea:cc:9d:88:f3:4c:cf:be:9b:34:c1:84: 51:1b:d3:3a:a1:04:f6:67:9c:98:9e:03:3f:bb:16: 06:95:bb:a5:d3:b4:86:c4:fe:9b:72:b6:6f:2f:8f: 38:b8:9b:07:2e:b4:f2:61:0f:4e:8b:7f:75:1a:c7: 01:8d:9a:04:d7:d9:82:69:f9:71:e7:cc:15:2d:ce: f9:3c:63:fe:3a:58:a0:d0:fd:2f:e9:11:1b:d0:1c: 56:77:33:b1:bf:2c:8d:af:6a:3a:3d:97:c5:16:3e: ea:dc:9f:87:dc:8c:44:65:c7:51:f3:70:f0:8a:13: 9e:1a:da:b2:6c:ea:49:12:8f:c7:9e:4f:c7:f5:49: cf:f6:cb:f8:cd:4b:0c:96:50:89:d7:0e:21:eb:e6: cd:ee:cc:e2:8b:92:4f:16:e4:0b:ce:a8:cb:a4:48: 9f:c8:fe:d0:42:27:c1:1a:37:c4:9a:e0:a3:1d:d6: 4d:37:c8:c4:4d:55:08:a4:1e:f9:06:6d:2d:a9:26: 84:22:86:31:a6:1f:72:bc:bf:b7:bb:fd:38:9d:63: c8:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:B3:82:46:13:C5:F6:E9:B8:15:B5:A8:05:AF:A4:2D:DE:64:C9:52 X509v3 Authority Key Identifier: keyid:CA:51:78:9A:23:13:5A:C2:26:8C:22:A2:85:60:0A:5F:9B:05:37:70 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ylF4miMTWsImjCKihWAKX5sFN3A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 29:ae:14:79:fb:dc:98:a7:c7:15:6c:81:d9:6b:82:3e:e0:97: 46:bf:f4:e3:4b:c4:08:d6:86:31:b4:2c:9c:3a:ea:92:10:c8: 7d:10:4d:21:80:a9:a4:7c:3f:75:1b:da:40:95:69:67:26:69: 4c:9e:d8:84:14:12:25:b6:25:cd:db:7f:08:0f:e8:63:6c:99: ae:b2:fd:da:38:f0:dd:c7:81:3e:d4:6d:5e:fd:62:9f:11:75: 9a:4a:7c:51:b6:93:5c:01:6e:c4:ed:6d:ce:a6:78:ad:07:24: 83:6a:5d:66:be:f7:1a:e1:ff:9e:0b:d6:ae:d5:b3:5d:92:54: c8:21:90:6d:9b:47:1b:db:7b:9c:78:69:54:e0:d7:aa:58:49: 37:17:3a:d1:12:a2:e9:86:2f:28:ac:09:09:f5:a8:23:e8:92: 4d:62:b0:78:9a:15:09:39:21:6b:cf:11:ba:2a:d2:ca:a2:ba: 83:e0:d4:60:5d:36:03:59:fd:0f:b3:c2:a3:76:4c:3e:4b:82: 4d:58:d6:de:0c:99:4c:28:d5:67:22:a0:ec:fc:90:42:95:ae: af:1d:c7:6f:dd:3e:7e:6a:50:a7:f1:b7:ae:ed:2d:a7:d1:96: 77:08:12:33:08:ec:9a:c1:6e:8a:f1:97:7e:e4:24:66:03:88: 8f:47:31:88 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZvetxMkHm5SdMdO4RcTmUHtMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNhNTE3ODlhMjMxMzVhYzIyNjhjMjJhMjg1NjAwYTVmOWIw NTM3NzAwHhcNMjYwMTIxMDQwMTM4WhcNMjYwMTIyMDQwMTM4WjAzMTEwLwYDVQQD Eyg5MmIzODI0NjEzYzVmNmU5YjgxNWI1YTgwNWFmYTQyZGRlNjRjOTUyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtgcysYHdrJnFLc0xNy2/EYzM/rBr /o0/Nap2bkbXboEQx2xKrf7/NeydK7OW/e3qzJ2I80zPvps0wYRRG9M6oQT2Z5yY ngM/uxYGlbul07SGxP6bcrZvL484uJsHLrTyYQ9Oi391GscBjZoE19mCaflx58wV Lc75PGP+Olig0P0v6REb0BxWdzOxvyyNr2o6PZfFFj7q3J+H3IxEZcdR83DwihOe GtqybOpJEo/Hnk/H9UnP9sv4zUsMllCJ1w4h6+bN7szii5JPFuQLzqjLpEifyP7Q QifBGjfEmuCjHdZNN8jETVUIpB75Bm0tqSaEIoYxph9yvL+3u/04nWPI6wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJKzgkYTxfbpuBW1qAWvpC3eZMlSMB8GA1UdIwQY MBaAFMpReJojE1rCJowiooVgCl+bBTdwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveWxGNG1pTVRXc0ltakNLaWhXQUtYNXNGTjNBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni9iNGJmNjAtZDU5My00MGQyLTk3ODMt MWUxOTE2OGY1ZDczLzEveWxGNG1pTVRXc0ltakNLaWhXQUtYNXNGTjNBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ni9iNGJmNjAtZDU5My00MGQyLTk3ODMtMWUxOTE2OGY1ZDcz LzEveWxGNG1pTVRXc0ltakNLaWhXQUtYNXNGTjNBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKa4Uefvc mKfHFWyB2WuCPuCXRr/040vECNaGMbQsnDrqkhDIfRBNIYCppHw/dRvaQJVpZyZp TJ7YhBQSJbYlzdt/CA/oY2yZrrL92jjw3ceBPtRtXv1inxF1mkp8UbaTXAFuxO1t zqZ4rQckg2pdZr73GuH/ngvWrtWzXZJUyCGQbZtHG9t7nHhpVODXqlhJNxc60RKi 6YYvKKwJCfWoI+iSTWKweJoVCTkha88RuirSyqK6g+DUYF02A1n9D7PCo3ZMPkuC TVjW3gyZTCjVZyKg7PyQQpWurx3Hb90+fmpQp/G3ru0tp9GWdwgSMwjsmsFuivGX fuQkZgOIj0cxiA== -----END CERTIFICATE-----Generated at Wed Jan 21 14:44:14 2026 by rpki-client