This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/3dae71-1acf-4196-9608-9531d24e0610/1/yjuG5lRw-ZTfptb-6OJk22LiSvk.mft File: yjuG5lRw-ZTfptb-6OJk22LiSvk.mft (raw, json) Hash identifier: uJwL2eNXwcyzxk+s3I/usKOj5gE5riWh0YcpBhLC78s= Subject key identifier: 5D:87:97:9E:DF:A6:A7:A1:04:A9:AE:9E:97:DC:D2:FC:F8:53:64:5C Authority key identifier: CA:3B:86:E6:54:70:F9:94:DF:A6:D6:FE:E8:E2:64:DB:62:E2:4A:F9 Certificate issuer: /CN=ca3b86e65470f994dfa6d6fee8e264db62e24af9 Certificate serial: 019BFA64C2405D7394CD0946E440FE646F27 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yjuG5lRw-ZTfptb-6OJk22LiSvk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/3dae71-1acf-4196-9608-9531d24e0610/1/yjuG5lRw-ZTfptb-6OJk22LiSvk.mft Manifest number: 17F3 Signing time: Mon 26 Jan 2026 13:01:05 +0000 Manifest this update: Mon 26 Jan 2026 13:01:05 +0000 Manifest next update: Tue 27 Jan 2026 13:01:05 +0000 Files and hashes: 1: 3Ogv-65T1Kg_Y0PwX3iWSALH4hk.roa (hash: Zkr3qlEk5NZQXDe7nwoX/wyvk4zh4il5FQTwuh5WfIw=) 2: cpTfXtYH4v1rSjqKtu9ZqpUx3xM.roa (hash: ovwDXS3yKtACozUh0/9y9dib/PgNmZTku682Xe84kxM=) 3: yCVmIRzNa3tIF_MU4qrOr7DResw.roa (hash: obCtvPuMFr0+7aVoRxpK/YudJ9U9WEay72ENhR3GLLg=) 4: yjuG5lRw-ZTfptb-6OJk22LiSvk.crl (hash: cDpUYzkBqaJJ4NLqt/rOtCI80K/Y4cjNdTOtqCYPLos=) 5: yzMl80kUPFPXCVyuhTRWq2l6-PU.roa (hash: 10HhilhYAwZngg7Yfm2XzCkVn++CZDGvggSHZV4Fd0w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/3dae71-1acf-4196-9608-9531d24e0610/1/yjuG5lRw-ZTfptb-6OJk22LiSvk.crl rsync://rpki.ripe.net/repository/DEFAULT/86/3dae71-1acf-4196-9608-9531d24e0610/1/yjuG5lRw-ZTfptb-6OJk22LiSvk.mft rsync://rpki.ripe.net/repository/DEFAULT/yjuG5lRw-ZTfptb-6OJk22LiSvk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 13:01:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fa:64:c2:40:5d:73:94:cd:09:46:e4:40:fe:64:6f:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ca3b86e65470f994dfa6d6fee8e264db62e24af9 Validity Not Before: Jan 26 13:01:05 2026 GMT Not After : Jan 27 13:01:05 2026 GMT Subject: CN=5d87979edfa6a7a104a9ae9e97dcd2fcf853645c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:29:1c:6e:65:cd:76:50:00:bf:6b:87:89:cd: 9f:e1:7b:47:f3:72:d3:9f:4b:ce:d0:5f:86:b1:5d: 33:9c:d4:1d:73:4d:25:f0:74:5e:48:b5:69:6e:46: 75:cf:33:66:50:0b:b7:20:6c:f3:3f:ac:c3:a9:bf: 8a:31:2c:8b:90:7a:fa:d9:8b:07:7d:8d:f8:2a:63: 52:ec:8a:e7:e7:39:5a:12:95:c6:af:7f:05:6a:c7: 31:22:6e:46:45:f7:b5:42:13:98:e4:c5:07:9a:14: 90:41:4a:99:f6:04:24:c1:72:7c:9b:0c:93:21:8d: 6f:57:33:76:64:e0:07:4a:44:80:94:91:80:a0:bb: a7:c3:a4:d6:3e:78:af:71:d2:3c:00:83:da:a8:70: a7:ec:f3:4b:e3:8a:1a:fc:83:08:b6:48:67:bc:90: 91:9a:39:6e:9c:f6:57:b1:ad:8f:53:6f:57:7c:fa: 84:28:97:b2:92:5f:be:88:24:15:96:a9:06:53:b3: a9:39:65:8c:74:73:66:6a:13:00:92:36:ee:6d:8d: 80:7a:7a:05:fc:93:cf:59:7b:e8:a1:f2:61:1b:e8: 56:34:bf:93:91:5d:ad:2a:20:b4:52:f8:48:f1:6c: 46:4d:cb:c5:f3:7e:38:38:ae:da:76:ff:3c:b4:c0: 00:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:87:97:9E:DF:A6:A7:A1:04:A9:AE:9E:97:DC:D2:FC:F8:53:64:5C X509v3 Authority Key Identifier: keyid:CA:3B:86:E6:54:70:F9:94:DF:A6:D6:FE:E8:E2:64:DB:62:E2:4A:F9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yjuG5lRw-ZTfptb-6OJk22LiSvk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/3dae71-1acf-4196-9608-9531d24e0610/1/yjuG5lRw-ZTfptb-6OJk22LiSvk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/86/3dae71-1acf-4196-9608-9531d24e0610/1/yjuG5lRw-ZTfptb-6OJk22LiSvk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4e:6a:59:72:b6:a4:be:98:96:ee:59:84:c4:dd:62:ed:da:5f: 73:36:32:e2:ee:b2:32:78:c3:4d:1c:32:07:38:30:1c:df:f4: f9:8c:c7:b3:c4:08:16:a6:dd:94:7a:b9:46:e0:f2:67:2f:8b: 18:fb:80:ed:96:0c:1b:a5:e2:80:b8:6d:8e:31:f0:4a:76:de: 41:6c:24:f6:59:93:b7:e8:f3:64:47:c2:02:f6:d9:04:3f:fe: 2a:3f:3b:36:46:c4:c2:0b:af:1a:6d:39:4c:f1:dc:0d:1a:3f: cc:56:06:4b:cd:35:d8:60:c8:6e:35:a1:f8:2e:53:da:77:eb: bb:25:3b:4e:48:b5:bd:57:d2:3b:9e:5f:06:10:3e:0a:b4:9c: 4a:d6:48:bf:c6:df:38:59:7f:ed:c8:f5:ce:4b:88:80:6e:49: 89:42:bd:65:ef:4e:4e:e9:ba:bc:f0:66:b0:ea:f3:e5:0c:66: 4b:82:81:a3:a6:3b:09:7b:03:f6:8a:47:f4:58:be:fc:7c:17: 70:74:4f:b6:1f:23:cb:92:96:46:b3:b4:60:9b:39:15:be:db: c7:eb:a2:c8:3c:fc:73:9f:4b:b9:56:02:30:2c:c2:00:0d:93: ce:f9:f4:8e:dc:82:a4:0c:fc:62:96:a9:cd:43:86:43:21:5a: bf:e2:33:23 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv6ZMJAXXOUzQlG5ED+ZG8nMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNhM2I4NmU2NTQ3MGY5OTRkZmE2ZDZmZWU4ZTI2NGRiNjJl MjRhZjkwHhcNMjYwMTI2MTMwMTA1WhcNMjYwMTI3MTMwMTA1WjAzMTEwLwYDVQQD Eyg1ZDg3OTc5ZWRmYTZhN2ExMDRhOWFlOWU5N2RjZDJmY2Y4NTM2NDVjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4SkcbmXNdlAAv2uHic2f4XtH83LT n0vO0F+GsV0znNQdc00l8HReSLVpbkZ1zzNmUAu3IGzzP6zDqb+KMSyLkHr62YsH fY34KmNS7Irn5zlaEpXGr38FascxIm5GRfe1QhOY5MUHmhSQQUqZ9gQkwXJ8mwyT IY1vVzN2ZOAHSkSAlJGAoLunw6TWPnivcdI8AIPaqHCn7PNL44oa/IMItkhnvJCR mjlunPZXsa2PU29XfPqEKJeykl++iCQVlqkGU7OpOWWMdHNmahMAkjbubY2AenoF /JPPWXvoofJhG+hWNL+TkV2tKiC0UvhI8WxGTcvF8344OK7adv88tMAAkQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFF2Hl57fpqehBKmunpfc0vz4U2RcMB8GA1UdIwQY MBaAFMo7huZUcPmU36bW/ujiZNti4kr5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveWp1RzVsUnctWlRmcHRiLTZPSmsyMkxpU3ZrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni8zZGFlNzEtMWFjZi00MTk2LTk2MDgt OTUzMWQyNGUwNjEwLzEveWp1RzVsUnctWlRmcHRiLTZPSmsyMkxpU3ZrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Ni8zZGFlNzEtMWFjZi00MTk2LTk2MDgtOTUzMWQyNGUwNjEw LzEveWp1RzVsUnctWlRmcHRiLTZPSmsyMkxpU3ZrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATmpZcrak vpiW7lmExN1i7dpfczYy4u6yMnjDTRwyBzgwHN/0+YzHs8QIFqbdlHq5RuDyZy+L GPuA7ZYMG6XigLhtjjHwSnbeQWwk9lmTt+jzZEfCAvbZBD/+Kj87NkbEwguvGm05 TPHcDRo/zFYGS8012GDIbjWh+C5T2nfruyU7Tki1vVfSO55fBhA+CrScStZIv8bf OFl/7cj1zkuIgG5JiUK9Ze9OTum6vPBmsOrz5QxmS4KBo6Y7CXsD9opH9Fi+/HwX cHRPth8jy5KWRrO0YJs5Fb7bx+uiyDz8c59LuVYCMCzCAA2Tzvn0jtyCpAz8Ypap zUOGQyFav+IzIw== -----END CERTIFICATE-----Generated at Mon Jan 26 18:47:01 2026 by rpki-client