This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/951c8e-4a86-4c8e-9986-0bfbad4849cd/1/HYYmdJy_hLz0Lrsphbht7oMOXBQ.mft File: HYYmdJy_hLz0Lrsphbht7oMOXBQ.mft (raw, json) Hash identifier: BWqtpABBIwINgTWJiCJEMQ3aW5PingJe2fylj8itGGk= Subject key identifier: B6:64:A1:8F:C0:A9:E7:CF:94:D8:A2:7B:49:89:C9:DC:D2:68:EF:9B Authority key identifier: 1D:86:26:74:9C:BF:84:BC:F4:2E:BB:29:85:B8:6D:EE:83:0E:5C:14 Certificate issuer: /CN=1d8626749cbf84bcf42ebb2985b86dee830e5c14 Certificate serial: 019BF9BFBB3CAC13C77AF220BCC1E26BB00E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HYYmdJy_hLz0Lrsphbht7oMOXBQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/951c8e-4a86-4c8e-9986-0bfbad4849cd/1/HYYmdJy_hLz0Lrsphbht7oMOXBQ.mft Manifest number: 17F2 Signing time: Mon 26 Jan 2026 10:00:50 +0000 Manifest this update: Mon 26 Jan 2026 10:00:50 +0000 Manifest next update: Tue 27 Jan 2026 10:00:50 +0000 Files and hashes: 1: CTIK34W0gV9x3uv1-r0HDqxk6oI.roa (hash: yVsgO2IBgHOLaRgSGBJBDT5TTrMQD1SCcScxIYhY8XY=) 2: HYYmdJy_hLz0Lrsphbht7oMOXBQ.crl (hash: xdfJRNa2/bSre0mNecp8CtVItMTSC/uRPAz0575oCfY=) 3: LegPI0LcRAcrLBTlGUY6DuF5bPU.roa (hash: NBAPRKnIYd+TgJ5/R1gZLE8ial4CZdJAp6oEz5nJrso=) 4: dZcFXy59OBgCvb8-LnAFu481H80.roa (hash: S71mkWocgYTtJLOJGQFJaSGFLZadtvbJJdWNegtQAMs=) 5: nffOhSPbCiWPAgtugzjWRyuC30E.roa (hash: ozFheVA8KcSrBcCrb3RelsPEg0hh8qk70m83xq3pSAo=) 6: sUCFmwpJav81ZSRKsG-SSJaCaxg.roa (hash: 9KxlfWrLv7YnnCH1Vf26DGRif8A8TjjKojTT9mB5Eaw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/951c8e-4a86-4c8e-9986-0bfbad4849cd/1/HYYmdJy_hLz0Lrsphbht7oMOXBQ.crl rsync://rpki.ripe.net/repository/DEFAULT/77/951c8e-4a86-4c8e-9986-0bfbad4849cd/1/HYYmdJy_hLz0Lrsphbht7oMOXBQ.mft rsync://rpki.ripe.net/repository/DEFAULT/HYYmdJy_hLz0Lrsphbht7oMOXBQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 10:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f9:bf:bb:3c:ac:13:c7:7a:f2:20:bc:c1:e2:6b:b0:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1d8626749cbf84bcf42ebb2985b86dee830e5c14 Validity Not Before: Jan 26 10:00:50 2026 GMT Not After : Jan 27 10:00:50 2026 GMT Subject: CN=b664a18fc0a9e7cf94d8a27b4989c9dcd268ef9b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:68:dd:af:15:45:fc:48:89:77:a9:98:44:ac: 1a:8f:eb:4a:40:cf:9e:29:a7:b1:91:e0:ae:2e:80: df:b2:0d:80:d9:5e:4e:69:6b:ba:e3:ab:a7:cc:b7: d7:9d:33:16:5c:eb:f1:f6:a1:3e:a7:6c:7a:f4:21: 2c:31:f4:68:8d:af:49:1e:7c:4e:d9:cb:52:83:08: fc:52:d2:b8:dc:85:f1:0e:29:11:33:ef:79:38:a7: bd:98:7d:9c:70:be:ad:d1:7e:c8:b5:aa:75:65:11: f2:46:64:d6:a4:2a:9b:19:da:3d:3d:d8:45:e6:cc: d7:2e:f4:44:63:de:97:e3:0f:8e:b3:7b:ca:7c:18: a4:1a:4b:07:53:87:22:97:0a:de:2c:db:60:11:fb: a8:f9:ea:fd:2f:8b:46:5a:62:0f:fd:c8:01:cd:bd: 73:98:3e:63:c5:5b:f8:e1:93:44:00:fc:d0:1d:ec: 94:21:0d:8a:bd:54:6b:20:9f:da:29:49:b6:20:da: bd:de:eb:43:74:5b:c9:f3:2f:f0:45:87:89:9c:a7: a6:3f:6c:0f:ce:90:6c:7c:77:ed:e5:6c:ae:90:24: b9:37:ba:e9:52:aa:1c:a8:d3:fb:c5:1b:b5:2e:d9: 2e:de:f0:76:f8:b7:40:c6:f5:a0:93:45:03:df:d8: f8:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:64:A1:8F:C0:A9:E7:CF:94:D8:A2:7B:49:89:C9:DC:D2:68:EF:9B X509v3 Authority Key Identifier: keyid:1D:86:26:74:9C:BF:84:BC:F4:2E:BB:29:85:B8:6D:EE:83:0E:5C:14 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HYYmdJy_hLz0Lrsphbht7oMOXBQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/951c8e-4a86-4c8e-9986-0bfbad4849cd/1/HYYmdJy_hLz0Lrsphbht7oMOXBQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/77/951c8e-4a86-4c8e-9986-0bfbad4849cd/1/HYYmdJy_hLz0Lrsphbht7oMOXBQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 51:e8:f7:48:9e:34:74:ea:e9:8f:b2:17:bc:1c:12:29:d5:07: d7:be:1a:4f:49:45:8d:d8:42:8e:45:ae:66:13:10:50:4b:09: 7a:aa:bc:e3:d3:24:1e:25:b8:09:ac:d5:27:79:e9:97:54:e9: f9:53:0b:e6:05:ef:27:8f:2d:f1:5b:3c:89:01:c5:a2:1b:7c: af:40:c4:ae:68:d1:12:99:dc:37:bc:18:b3:b6:f6:46:ac:35: 64:2f:69:be:e9:4d:ff:89:b2:86:d3:cc:66:d8:c4:63:ac:dd: b5:06:bc:55:62:4b:9d:51:c5:31:95:33:f1:bf:52:ae:33:ae: bf:3f:72:e0:b1:5a:b6:a3:bd:37:b1:eb:ac:f7:1e:9c:7e:69: 13:d3:ee:01:5c:76:13:21:81:15:92:76:53:77:bc:4c:d7:49: af:09:c2:38:32:c1:80:45:b8:a1:0b:83:dd:4d:60:30:1c:66: 48:1c:c2:b5:f6:25:78:f1:47:c6:8a:4b:72:c6:5c:f0:a4:f0: 27:8a:4e:d4:75:0b:09:47:32:cb:85:f4:d8:41:b1:91:a8:8e: 02:03:1f:ea:60:ea:15:2f:49:23:8b:e4:58:2d:87:6e:db:48: 4c:69:16:f8:5a:17:a3:a6:38:a1:a1:f3:58:94:08:6c:58:5f: 5b:64:d8:81 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv5v7s8rBPHevIgvMHia7AOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFkODYyNjc0OWNiZjg0YmNmNDJlYmIyOTg1Yjg2ZGVlODMw ZTVjMTQwHhcNMjYwMTI2MTAwMDUwWhcNMjYwMTI3MTAwMDUwWjAzMTEwLwYDVQQD EyhiNjY0YTE4ZmMwYTllN2NmOTRkOGEyN2I0OTg5YzlkY2QyNjhlZjliMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzWjdrxVF/EiJd6mYRKwaj+tKQM+e KaexkeCuLoDfsg2A2V5OaWu646unzLfXnTMWXOvx9qE+p2x69CEsMfRoja9JHnxO 2ctSgwj8UtK43IXxDikRM+95OKe9mH2ccL6t0X7Itap1ZRHyRmTWpCqbGdo9PdhF 5szXLvREY96X4w+Os3vKfBikGksHU4cilwreLNtgEfuo+er9L4tGWmIP/cgBzb1z mD5jxVv44ZNEAPzQHeyUIQ2KvVRrIJ/aKUm2INq93utDdFvJ8y/wRYeJnKemP2wP zpBsfHft5WyukCS5N7rpUqocqNP7xRu1Ltku3vB2+LdAxvWgk0UD39j4iQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLZkoY/AqefPlNiie0mJydzSaO+bMB8GA1UdIwQY MBaAFB2GJnScv4S89C67KYW4be6DDlwUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSFlZbWRKeV9oTHowTHJzcGhiaHQ3b01PWEJRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ny85NTFjOGUtNGE4Ni00YzhlLTk5ODYt MGJmYmFkNDg0OWNkLzEvSFlZbWRKeV9oTHowTHJzcGhiaHQ3b01PWEJRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Ny85NTFjOGUtNGE4Ni00YzhlLTk5ODYtMGJmYmFkNDg0OWNk LzEvSFlZbWRKeV9oTHowTHJzcGhiaHQ3b01PWEJRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUej3SJ40 dOrpj7IXvBwSKdUH174aT0lFjdhCjkWuZhMQUEsJeqq849MkHiW4CazVJ3npl1Tp +VML5gXvJ48t8Vs8iQHFoht8r0DErmjREpncN7wYs7b2Rqw1ZC9pvulN/4myhtPM ZtjEY6zdtQa8VWJLnVHFMZUz8b9SrjOuvz9y4LFatqO9N7HrrPcenH5pE9PuAVx2 EyGBFZJ2U3e8TNdJrwnCODLBgEW4oQuD3U1gMBxmSBzCtfYlePFHxopLcsZc8KTw J4pO1HULCUcyy4X02EGxkaiOAgMf6mDqFS9JI4vkWC2HbttITGkW+FoXo6Y4oaHz WJQIbFhfW2TYgQ== -----END CERTIFICATE-----Generated at Mon Jan 26 18:58:11 2026 by rpki-client