This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/8d9bb5-b4e5-4344-891b-0807f96ca4a2/1/yyDpqru2GRVGEQI1z3bEg4S0UdA.mft File: yyDpqru2GRVGEQI1z3bEg4S0UdA.mft (raw, json) Hash identifier: zIA4YGcKts81tE7jH8+wepscIpU1EjUSXLFfQ4EWrwg= Subject key identifier: CF:53:28:56:FA:50:BF:67:7A:73:27:2A:A5:A8:90:06:4A:2C:41:F6 Authority key identifier: CB:20:E9:AA:BB:B6:19:15:46:11:02:35:CF:76:C4:83:84:B4:51:D0 Certificate issuer: /CN=cb20e9aabbb6191546110235cf76c48384b451d0 Certificate serial: 019BAE6F3D96C16365CC283E143225419D8A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yyDpqru2GRVGEQI1z3bEg4S0UdA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/8d9bb5-b4e5-4344-891b-0807f96ca4a2/1/yyDpqru2GRVGEQI1z3bEg4S0UdA.mft Manifest number: 0710 Signing time: Sun 11 Jan 2026 19:01:24 +0000 Manifest this update: Sun 11 Jan 2026 19:01:24 +0000 Manifest next update: Mon 12 Jan 2026 19:01:24 +0000 Files and hashes: 1: yyDpqru2GRVGEQI1z3bEg4S0UdA.crl (hash: M7jFQPbbItS2E9347vinM/1gO89lXXfa/hN7lLOUY5E=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/8d9bb5-b4e5-4344-891b-0807f96ca4a2/1/yyDpqru2GRVGEQI1z3bEg4S0UdA.crl rsync://rpki.ripe.net/repository/DEFAULT/6f/8d9bb5-b4e5-4344-891b-0807f96ca4a2/1/yyDpqru2GRVGEQI1z3bEg4S0UdA.mft rsync://rpki.ripe.net/repository/DEFAULT/yyDpqru2GRVGEQI1z3bEg4S0UdA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 18:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:ae:6f:3d:96:c1:63:65:cc:28:3e:14:32:25:41:9d:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cb20e9aabbb6191546110235cf76c48384b451d0 Validity Not Before: Jan 11 19:01:24 2026 GMT Not After : Jan 12 19:01:24 2026 GMT Subject: CN=cf532856fa50bf677a73272aa5a890064a2c41f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:73:37:e1:1c:93:29:97:83:ca:73:a0:f0:07: 86:69:8e:6f:51:27:1c:9c:01:f4:ee:6d:c3:03:1c: f6:53:81:cb:e9:ff:da:59:53:0c:1b:e2:d1:47:1c: 97:e8:38:33:56:6b:14:42:ff:a2:b7:2c:62:d7:23: fd:a1:73:e9:81:5d:2c:34:34:48:e1:8f:be:7f:9f: 06:f0:e2:de:77:e7:65:17:4b:8c:b4:63:2d:de:aa: da:29:82:26:d7:64:9a:88:66:9c:57:11:40:43:09: 77:fe:31:34:59:5c:e2:49:05:d9:81:c6:2b:2d:ca: 32:a7:08:bc:7c:3a:54:fe:58:1d:1a:ec:58:9a:2e: bc:b2:8f:f7:be:64:32:2e:09:e8:4a:c4:69:4e:73: 4b:f9:4b:53:9a:9b:00:68:9c:0d:3d:2e:6d:23:5f: 8e:11:de:1b:65:d2:5d:a5:14:79:67:ae:25:96:b2: e3:b1:c4:e8:f2:6b:43:34:f6:a5:41:aa:5e:34:39: b4:bb:0b:16:cb:44:f2:cc:ae:92:a1:12:3b:3d:eb: e3:b6:6b:58:77:9a:f0:48:0c:29:0b:d2:00:e8:0b: d4:53:d8:e3:80:62:53:67:f1:d4:71:15:08:92:ff: 07:65:9a:0f:3b:76:cd:f6:0c:b9:17:0f:ed:b0:fc: 0c:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:53:28:56:FA:50:BF:67:7A:73:27:2A:A5:A8:90:06:4A:2C:41:F6 X509v3 Authority Key Identifier: keyid:CB:20:E9:AA:BB:B6:19:15:46:11:02:35:CF:76:C4:83:84:B4:51:D0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yyDpqru2GRVGEQI1z3bEg4S0UdA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/8d9bb5-b4e5-4344-891b-0807f96ca4a2/1/yyDpqru2GRVGEQI1z3bEg4S0UdA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/8d9bb5-b4e5-4344-891b-0807f96ca4a2/1/yyDpqru2GRVGEQI1z3bEg4S0UdA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b3:77:d7:a2:4a:c1:d6:9b:7c:00:68:cc:c1:7e:35:04:f0:7d: b4:16:cd:09:cd:d8:25:0b:f1:90:b5:89:c8:bf:b1:b5:e4:a6: 9a:22:c4:2f:53:53:4b:e9:85:fd:67:9d:52:68:0c:ec:c5:76: c9:8c:d1:b3:1e:36:fa:0c:14:c1:4b:cf:05:0f:1a:24:aa:6d: e1:f1:04:0f:5e:c9:22:33:c5:8f:1f:70:f8:98:7d:bc:92:cc: d5:db:88:cc:b7:0d:6b:e5:20:e8:c0:1a:2b:13:fe:43:7a:99: 15:51:6a:00:4d:56:92:70:35:74:60:8b:5d:c1:4e:b6:8a:20: 98:08:d8:26:c2:41:f6:02:76:ad:35:ff:06:06:5f:19:e8:4c: e1:98:44:6a:eb:db:87:77:d5:6c:f9:0b:51:aa:22:8b:33:bb: d4:0a:63:4f:5b:91:9d:03:1f:69:26:0f:8a:13:99:37:1d:7f: a0:5f:3a:cc:ff:fd:43:e0:3d:f5:a2:b6:d0:bd:6f:26:98:4e: 92:37:47:aa:62:3c:84:70:99:51:6b:8e:54:28:1e:e4:93:01: 50:b6:6b:ca:b5:94:e9:21:49:4b:b0:1c:68:2b:95:26:dd:c5: 31:ed:a6:d5:e1:24:cf:1c:e9:d7:c4:ad:0f:53:77:8d:01:ef: bf:bb:0d:f7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZuubz2WwWNlzCg+FDIlQZ2KMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNiMjBlOWFhYmJiNjE5MTU0NjExMDIzNWNmNzZjNDgzODRi NDUxZDAwHhcNMjYwMTExMTkwMTI0WhcNMjYwMTEyMTkwMTI0WjAzMTEwLwYDVQQD EyhjZjUzMjg1NmZhNTBiZjY3N2E3MzI3MmFhNWE4OTAwNjRhMmM0MWY2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyHM34RyTKZeDynOg8AeGaY5vUScc nAH07m3DAxz2U4HL6f/aWVMMG+LRRxyX6DgzVmsUQv+ityxi1yP9oXPpgV0sNDRI 4Y++f58G8OLed+dlF0uMtGMt3qraKYIm12SaiGacVxFAQwl3/jE0WVziSQXZgcYr Lcoypwi8fDpU/lgdGuxYmi68so/3vmQyLgnoSsRpTnNL+UtTmpsAaJwNPS5tI1+O Ed4bZdJdpRR5Z64llrLjscTo8mtDNPalQapeNDm0uwsWy0TyzK6SoRI7PevjtmtY d5rwSAwpC9IA6AvUU9jjgGJTZ/HUcRUIkv8HZZoPO3bN9gy5Fw/tsPwM5wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFM9TKFb6UL9nenMnKqWokAZKLEH2MB8GA1UdIwQY MBaAFMsg6aq7thkVRhECNc92xIOEtFHQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveXlEcHFydTJHUlZHRVFJMXozYkVnNFMwVWRBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Zi84ZDliYjUtYjRlNS00MzQ0LTg5MWIt MDgwN2Y5NmNhNGEyLzEveXlEcHFydTJHUlZHRVFJMXozYkVnNFMwVWRBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Zi84ZDliYjUtYjRlNS00MzQ0LTg5MWItMDgwN2Y5NmNhNGEy LzEveXlEcHFydTJHUlZHRVFJMXozYkVnNFMwVWRBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAs3fXokrB 1pt8AGjMwX41BPB9tBbNCc3YJQvxkLWJyL+xteSmmiLEL1NTS+mF/WedUmgM7MV2 yYzRsx42+gwUwUvPBQ8aJKpt4fEED17JIjPFjx9w+Jh9vJLM1duIzLcNa+Ug6MAa KxP+Q3qZFVFqAE1WknA1dGCLXcFOtoogmAjYJsJB9gJ2rTX/BgZfGehM4ZhEauvb h3fVbPkLUaoiizO71ApjT1uRnQMfaSYPihOZNx1/oF86zP/9Q+A99aK20L1vJphO kjdHqmI8hHCZUWuOVCge5JMBULZryrWU6SFJS7AcaCuVJt3FMe2m1eEkzxzp18St D1N3jQHvv7sN9w== -----END CERTIFICATE-----Generated at Mon Jan 12 00:35:23 2026 by rpki-client