This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/a9d79e-b282-43c1-8b8a-388b81c0c90c/1/0YHQxAlRpPkA5NndnCDkhWNQkg4.mft File: 0YHQxAlRpPkA5NndnCDkhWNQkg4.mft (raw, json) Hash identifier: MyrdnYpDjbdpb70Us4KlutCu7wbaUJ7B+Lhfe9AzmCg= Subject key identifier: C8:A5:7D:4E:D3:B1:52:2D:04:77:EE:E2:81:78:EA:39:F2:71:CB:FF Authority key identifier: D1:81:D0:C4:09:51:A4:F9:00:E4:D9:DD:9C:20:E4:85:63:50:92:0E Certificate issuer: /CN=d181d0c40951a4f900e4d9dd9c20e4856350920e Certificate serial: 019BFA9BFF270EB99015BC2C37C1CEB76805 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0YHQxAlRpPkA5NndnCDkhWNQkg4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/a9d79e-b282-43c1-8b8a-388b81c0c90c/1/0YHQxAlRpPkA5NndnCDkhWNQkg4.mft Manifest number: 17F0 Signing time: Mon 26 Jan 2026 14:01:25 +0000 Manifest this update: Mon 26 Jan 2026 14:01:25 +0000 Manifest next update: Tue 27 Jan 2026 14:01:25 +0000 Files and hashes: 1: 0YHQxAlRpPkA5NndnCDkhWNQkg4.crl (hash: nE9gEnDwEUGf70IB+dTlrGQF17PaAKdixMkK8M/Ja9U=) 2: 6twj1FNGbSdC6GwrHJCaAlK97kQ.roa (hash: ZXy5hFs9BRqqonUgm00rE7vHIrD50csuYB7WxmR/ZMA=) 3: BfkIMDedHvkhA2THdLsjdvt92Lg.roa (hash: ltzWWyb9KbJKCS0qvZNQB+aDHpJjbdvCT6eRcpViW3Y=) 4: coJoVPwD-NPH-ETwi5cG_7WPcf8.roa (hash: GKRZPbLDmw4jESIu5RvOoK1/PXU2kw57mn7Q0tZcbW8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/a9d79e-b282-43c1-8b8a-388b81c0c90c/1/0YHQxAlRpPkA5NndnCDkhWNQkg4.crl rsync://rpki.ripe.net/repository/DEFAULT/ab/a9d79e-b282-43c1-8b8a-388b81c0c90c/1/0YHQxAlRpPkA5NndnCDkhWNQkg4.mft rsync://rpki.ripe.net/repository/DEFAULT/0YHQxAlRpPkA5NndnCDkhWNQkg4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 14:01:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fa:9b:ff:27:0e:b9:90:15:bc:2c:37:c1:ce:b7:68:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d181d0c40951a4f900e4d9dd9c20e4856350920e Validity Not Before: Jan 26 14:01:25 2026 GMT Not After : Jan 27 14:01:25 2026 GMT Subject: CN=c8a57d4ed3b1522d0477eee28178ea39f271cbff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:58:4f:f5:78:77:7c:2a:2c:0f:e3:54:f3:98: 4e:32:bc:e1:a4:ea:ea:f3:92:b8:ea:ae:e8:76:b5: 1e:03:9c:40:36:7c:82:59:33:ee:d5:d9:d9:0c:7b: ab:8a:f4:d0:d8:46:7e:7c:69:62:21:03:76:af:12: 6a:0a:5d:a5:c2:2f:d1:4f:5f:d3:d0:45:ba:ab:81: 55:a9:30:1c:a3:07:d7:7f:8c:8d:f5:cc:96:89:ac: 55:90:10:4c:96:4b:e2:c7:c9:d7:17:59:a2:f6:05: 83:7f:25:63:f4:e5:2f:4b:15:b9:f7:66:a2:69:73: e2:f6:9d:95:b1:31:35:5b:ed:b9:9d:9c:c2:3f:b3: e7:63:86:de:e8:be:4f:92:b8:31:23:f7:76:cf:0d: e6:2d:02:f5:78:51:78:2f:01:b4:3f:a0:58:c4:da: 65:a4:fc:45:db:88:d9:35:e3:e3:1b:ae:89:65:59: c0:64:a7:39:c4:ff:b9:33:89:e7:ae:0e:05:5e:5e: 32:77:50:cf:9a:71:06:58:c6:bd:18:ab:a3:06:ca: 75:7c:81:ec:15:88:a7:a7:f2:05:c7:8a:9d:b5:05: 12:f6:74:be:55:9a:df:1e:2d:64:ef:f7:2f:69:2e: d8:2d:e5:5e:2d:10:6b:a6:f7:d1:2f:a6:f8:92:86: d1:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:A5:7D:4E:D3:B1:52:2D:04:77:EE:E2:81:78:EA:39:F2:71:CB:FF X509v3 Authority Key Identifier: keyid:D1:81:D0:C4:09:51:A4:F9:00:E4:D9:DD:9C:20:E4:85:63:50:92:0E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0YHQxAlRpPkA5NndnCDkhWNQkg4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/a9d79e-b282-43c1-8b8a-388b81c0c90c/1/0YHQxAlRpPkA5NndnCDkhWNQkg4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/a9d79e-b282-43c1-8b8a-388b81c0c90c/1/0YHQxAlRpPkA5NndnCDkhWNQkg4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3f:d7:30:2e:08:52:f2:24:2f:08:3a:1f:4b:22:41:14:d6:65: eb:6d:75:a3:86:4a:fb:86:8e:b0:64:8e:70:5d:f9:98:5e:a3: 6f:39:f1:a2:02:4f:bc:7b:4e:ca:99:53:66:3d:21:0c:30:7b: 27:d5:76:ac:2b:c2:e3:eb:33:fc:f3:2f:79:c3:7a:e5:03:c0: 4b:88:85:8e:c9:c8:20:df:5b:0e:f0:13:0e:c8:d0:b9:d1:49: a5:53:6e:db:9a:58:06:9a:cd:80:71:ee:b5:51:75:87:00:62: f7:f1:3e:52:ee:84:65:18:23:33:d7:44:af:47:94:08:48:fd: 5d:9e:2c:c0:0a:0f:e2:e3:b8:7c:91:91:ea:23:dd:93:25:da: 67:76:cc:94:66:4d:47:e9:ed:c3:fa:a6:f1:3e:eb:a1:ea:07: a3:c1:25:b2:47:84:7d:a9:2f:ad:72:b0:be:9d:b4:b0:62:3c: 8d:5a:ba:bf:89:1b:cf:e3:cd:8c:32:bf:7e:9e:ac:90:1a:3e: 9c:52:2a:54:df:a6:43:42:06:5d:02:a7:b1:49:85:d7:b0:34: d4:1d:67:e9:89:d5:3a:4d:ee:2c:0b:4e:fa:53:50:04:24:83: b0:5c:69:05:7f:b1:ca:bb:88:30:2a:6d:0a:b5:3a:42:84:6c: 01:24:9d:1e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv6m/8nDrmQFbwsN8HOt2gFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQxODFkMGM0MDk1MWE0ZjkwMGU0ZDlkZDljMjBlNDg1NjM1 MDkyMGUwHhcNMjYwMTI2MTQwMTI1WhcNMjYwMTI3MTQwMTI1WjAzMTEwLwYDVQQD EyhjOGE1N2Q0ZWQzYjE1MjJkMDQ3N2VlZTI4MTc4ZWEzOWYyNzFjYmZmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAplhP9Xh3fCosD+NU85hOMrzhpOrq 85K46q7odrUeA5xANnyCWTPu1dnZDHurivTQ2EZ+fGliIQN2rxJqCl2lwi/RT1/T 0EW6q4FVqTAcowfXf4yN9cyWiaxVkBBMlkvix8nXF1mi9gWDfyVj9OUvSxW592ai aXPi9p2VsTE1W+25nZzCP7PnY4be6L5PkrgxI/d2zw3mLQL1eFF4LwG0P6BYxNpl pPxF24jZNePjG66JZVnAZKc5xP+5M4nnrg4FXl4yd1DPmnEGWMa9GKujBsp1fIHs FYinp/IFx4qdtQUS9nS+VZrfHi1k7/cvaS7YLeVeLRBrpvfRL6b4kobRNwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMilfU7TsVItBHfu4oF46jnyccv/MB8GA1UdIwQY MBaAFNGB0MQJUaT5AOTZ3Zwg5IVjUJIOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMFlIUXhBbFJwUGtBNU5uZG5DRGtoV05Ra2c0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYi9hOWQ3OWUtYjI4Mi00M2MxLThiOGEt Mzg4YjgxYzBjOTBjLzEvMFlIUXhBbFJwUGtBNU5uZG5DRGtoV05Ra2c0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYi9hOWQ3OWUtYjI4Mi00M2MxLThiOGEtMzg4YjgxYzBjOTBj LzEvMFlIUXhBbFJwUGtBNU5uZG5DRGtoV05Ra2c0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAP9cwLghS 8iQvCDofSyJBFNZl6211o4ZK+4aOsGSOcF35mF6jbznxogJPvHtOyplTZj0hDDB7 J9V2rCvC4+sz/PMvecN65QPAS4iFjsnIIN9bDvATDsjQudFJpVNu25pYBprNgHHu tVF1hwBi9/E+Uu6EZRgjM9dEr0eUCEj9XZ4swAoP4uO4fJGR6iPdkyXaZ3bMlGZN R+ntw/qm8T7roeoHo8ElskeEfakvrXKwvp20sGI8jVq6v4kbz+PNjDK/fp6skBo+ nFIqVN+mQ0IGXQKnsUmF17A01B1n6YnVOk3uLAtO+lNQBCSDsFxpBX+xyruIMCpt CrU6QoRsASSdHg== -----END CERTIFICATE-----Generated at Mon Jan 26 19:18:29 2026 by rpki-client