This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/ac3276-50ad-4ebc-a2a6-9808545933c9/1/YDgxphvIqPTLhYhwIvtvhjlzRdw.mft File: YDgxphvIqPTLhYhwIvtvhjlzRdw.mft (raw, json) Hash identifier: PkjJ/C4+h4SgH1/MMSVzIr957LwuULK+YyWvTtXFyVI= Subject key identifier: CF:B5:F0:C7:31:EA:64:F5:A8:42:B4:F2:7A:56:45:66:E6:CA:F8:D2 Authority key identifier: 60:38:31:A6:1B:C8:A8:F4:CB:85:88:70:22:FB:6F:86:39:73:45:DC Certificate issuer: /CN=603831a61bc8a8f4cb85887022fb6f86397345dc Certificate serial: 019BA2A22CEE08CA95DA777C15DCC954396A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YDgxphvIqPTLhYhwIvtvhjlzRdw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/ac3276-50ad-4ebc-a2a6-9808545933c9/1/YDgxphvIqPTLhYhwIvtvhjlzRdw.mft Manifest number: 0ED0 Signing time: Fri 09 Jan 2026 12:01:35 +0000 Manifest this update: Fri 09 Jan 2026 12:01:35 +0000 Manifest next update: Sat 10 Jan 2026 12:01:35 +0000 Files and hashes: 1: PItnMttIkdeuTPXavmvPG7wEEmg.roa (hash: g8vhWp9yKKoH5MZ8w1k35uUTgUFMBWzylaX6sR0nuqk=) 2: Y5fNbXlu-919bEGmzzCTqLKe4UE.roa (hash: Xsn3mIF6IxJP4Pj8lk0nwBSrm5qnIHW3nv1qCBDI+Z4=) 3: YDgxphvIqPTLhYhwIvtvhjlzRdw.crl (hash: 1TZburSVymAlpOmANv2J3esodUo4tzBshjAbOLCg420=) 4: iReKhZ_-E04pzg8ir_i-KAVJTug.roa (hash: JcLEmoPP4jSyDJ+Og5UHxUBX28l4cJMP5KxpG/1AnsE=) 5: nUQG3vVMD7WFpDWiG0W1IymBVlU.roa (hash: EHlmhx+RyBOq9teHa0Af8FNOADjMaSQN2EK+hlsZ4oQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/ac3276-50ad-4ebc-a2a6-9808545933c9/1/YDgxphvIqPTLhYhwIvtvhjlzRdw.crl rsync://rpki.ripe.net/repository/DEFAULT/b3/ac3276-50ad-4ebc-a2a6-9808545933c9/1/YDgxphvIqPTLhYhwIvtvhjlzRdw.mft rsync://rpki.ripe.net/repository/DEFAULT/YDgxphvIqPTLhYhwIvtvhjlzRdw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 Jan 2026 12:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:a2:a2:2c:ee:08:ca:95:da:77:7c:15:dc:c9:54:39:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=603831a61bc8a8f4cb85887022fb6f86397345dc Validity Not Before: Jan 9 12:01:35 2026 GMT Not After : Jan 10 12:01:35 2026 GMT Subject: CN=cfb5f0c731ea64f5a842b4f27a564566e6caf8d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:3b:ac:6d:30:fc:52:d6:98:02:33:2e:d4:37: d5:3b:e3:57:2e:18:a9:ce:1e:4b:80:59:34:0a:34: d5:68:52:37:5d:19:25:7d:de:90:2e:ce:3e:90:6e: 14:1e:59:b3:2b:41:bf:45:4e:fa:22:c8:11:ef:f7: 73:f5:91:4a:2a:ab:af:1f:53:52:70:60:3b:68:fa: b8:3b:71:b0:a1:2e:bc:5c:39:bb:d8:31:b7:f8:3f: 87:19:57:43:16:3d:9c:6f:20:18:c1:73:0e:28:89: ea:6a:cb:1a:b8:27:95:26:f3:dd:8d:df:3a:be:c6: 6d:87:1b:cc:0a:d9:98:d5:71:a1:82:c0:ac:1d:08: 3a:c1:ab:80:85:2e:2d:ac:12:8e:2d:4b:15:7a:42: 6c:6d:07:52:9f:8e:19:44:9f:99:84:14:bf:21:a1: 4a:b3:a0:8d:16:92:55:cc:9f:d1:67:fd:74:ca:89: cb:08:ce:52:0a:89:be:d1:cc:a2:c5:a6:20:02:e6: 67:91:82:e1:44:5a:10:cd:67:3e:67:88:1c:b4:36: 62:65:8b:26:a1:83:29:63:9b:09:4f:a2:3d:75:d2: de:a6:9c:8d:5a:11:a9:14:b6:da:a4:c7:7f:52:dd: 3c:e1:ef:9f:14:64:dc:d6:1a:3d:86:3c:f2:31:88: 38:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:B5:F0:C7:31:EA:64:F5:A8:42:B4:F2:7A:56:45:66:E6:CA:F8:D2 X509v3 Authority Key Identifier: keyid:60:38:31:A6:1B:C8:A8:F4:CB:85:88:70:22:FB:6F:86:39:73:45:DC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YDgxphvIqPTLhYhwIvtvhjlzRdw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/ac3276-50ad-4ebc-a2a6-9808545933c9/1/YDgxphvIqPTLhYhwIvtvhjlzRdw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/ac3276-50ad-4ebc-a2a6-9808545933c9/1/YDgxphvIqPTLhYhwIvtvhjlzRdw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a0:d7:ac:b6:61:58:f6:d2:75:4e:97:4d:86:58:30:4f:3b:ac: 4d:77:66:ed:4c:c4:f0:c3:cc:db:33:fc:23:87:b4:00:70:15: e8:82:a4:6b:25:04:22:ab:b2:6c:61:f5:40:ba:54:ff:cc:8b: da:93:1a:2d:38:37:d8:47:60:14:81:05:48:19:37:70:39:a4: f9:80:80:7d:7a:91:14:aa:3c:81:e8:1f:88:22:b9:32:cc:0e: f2:50:7b:cb:e7:2f:c0:da:ce:8f:01:94:02:3e:c8:90:d5:0f: 3a:8a:4f:c7:8e:61:56:2b:0a:7d:1c:af:6a:92:3c:21:16:7a: 61:7f:49:5b:ec:7c:52:33:47:35:dc:91:27:69:4d:d7:0c:a3: a7:0d:6a:01:65:91:21:e1:8a:36:17:67:93:6e:0d:43:56:36: 91:80:5c:54:f3:9e:68:d1:af:c7:7c:cf:3c:22:2e:58:3f:dc: 8b:7b:06:ef:96:db:ae:b9:2e:30:5b:74:1f:7b:39:57:8b:d1: 81:f0:67:b1:ff:2a:95:e2:71:9d:71:58:34:bf:c0:cd:27:13: 32:05:e3:d2:e7:3b:92:4d:c8:15:5c:a7:4e:3d:59:ea:79:5b: a2:a4:76:71:31:38:22:8f:9f:44:f4:24:d6:c7:fe:e3:52:10: e5:94:fb:04 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZuioizuCMqV2nd8FdzJVDlqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwMzgzMWE2MWJjOGE4ZjRjYjg1ODg3MDIyZmI2Zjg2Mzk3 MzQ1ZGMwHhcNMjYwMTA5MTIwMTM1WhcNMjYwMTEwMTIwMTM1WjAzMTEwLwYDVQQD EyhjZmI1ZjBjNzMxZWE2NGY1YTg0MmI0ZjI3YTU2NDU2NmU2Y2FmOGQyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApjusbTD8UtaYAjMu1DfVO+NXLhip zh5LgFk0CjTVaFI3XRklfd6QLs4+kG4UHlmzK0G/RU76IsgR7/dz9ZFKKquvH1NS cGA7aPq4O3GwoS68XDm72DG3+D+HGVdDFj2cbyAYwXMOKInqassauCeVJvPdjd86 vsZthxvMCtmY1XGhgsCsHQg6wauAhS4trBKOLUsVekJsbQdSn44ZRJ+ZhBS/IaFK s6CNFpJVzJ/RZ/10yonLCM5SCom+0cyixaYgAuZnkYLhRFoQzWc+Z4gctDZiZYsm oYMpY5sJT6I9ddLeppyNWhGpFLbapMd/Ut084e+fFGTc1ho9hjzyMYg4tQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFM+18Mcx6mT1qEK08npWRWbmyvjSMB8GA1UdIwQY MBaAFGA4MaYbyKj0y4WIcCL7b4Y5c0XcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWURneHBodklxUFRMaFlod0l2dHZoamx6UmR3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMy9hYzMyNzYtNTBhZC00ZWJjLWEyYTYt OTgwODU0NTkzM2M5LzEvWURneHBodklxUFRMaFlod0l2dHZoamx6UmR3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMy9hYzMyNzYtNTBhZC00ZWJjLWEyYTYtOTgwODU0NTkzM2M5 LzEvWURneHBodklxUFRMaFlod0l2dHZoamx6UmR3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoNestmFY 9tJ1TpdNhlgwTzusTXdm7UzE8MPM2zP8I4e0AHAV6IKkayUEIquybGH1QLpU/8yL 2pMaLTg32EdgFIEFSBk3cDmk+YCAfXqRFKo8gegfiCK5MswO8lB7y+cvwNrOjwGU Aj7IkNUPOopPx45hVisKfRyvapI8IRZ6YX9JW+x8UjNHNdyRJ2lN1wyjpw1qAWWR IeGKNhdnk24NQ1Y2kYBcVPOeaNGvx3zPPCIuWD/ci3sG75bbrrkuMFt0H3s5V4vR gfBnsf8qleJxnXFYNL/AzScTMgXj0uc7kk3IFVynTj1Z6nlboqR2cTE4Io+fRPQk 1sf+41IQ5ZT7BA== -----END CERTIFICATE-----Generated at Fri Jan 9 16:30:54 2026 by rpki-client