This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/zYMT5B5kagnNAeLm9HOdO9I2xP8.mft File: zYMT5B5kagnNAeLm9HOdO9I2xP8.mft (raw, json) Hash identifier: lTjaboKS/n3Etyzp53Pw5uNnlxMQamqpEQAYup29JuA= Subject key identifier: 5D:56:C9:BB:99:9E:E7:B6:CD:E7:89:23:B3:4A:38:17:82:7B:96:21 Authority key identifier: CD:83:13:E4:1E:64:6A:09:CD:01:E2:E6:F4:73:9D:3B:D2:36:C4:FF Certificate issuer: /CN=cd8313e41e646a09cd01e2e6f4739d3bd236c4ff Certificate serial: 019BFB0A102148B290549AF3D00382E46436 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zYMT5B5kagnNAeLm9HOdO9I2xP8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/zYMT5B5kagnNAeLm9HOdO9I2xP8.mft Manifest number: 17FA Signing time: Mon 26 Jan 2026 16:01:39 +0000 Manifest this update: Mon 26 Jan 2026 16:01:39 +0000 Manifest next update: Tue 27 Jan 2026 16:01:39 +0000 Files and hashes: 1: 9FhDVq2bIcKPVT4-LNeLhleMtsU.roa (hash: 9KYuP3D+C7cw6iLbwhFcurqEz58uGe5Kg9G2sCqyt6U=) 2: DOxf14855Ag2AnO7jsSUueM5c-o.roa (hash: zgUJGFH5ZEpoQ9vBA8CvM2rtyQHfUvV/kzB3FtSEmYc=) 3: GGlyShlisJFPILLShUxi5K1FZvI.roa (hash: 8pEqvT44UHyALFkAUNaY4Zmjw5paANUkCryLrc0xDp0=) 4: GfgJL-lqR4cMbYOXW8gqE4t7HG4.roa (hash: kNPKoBDHTv7uxrRwNWkfM9yLpH77LlGXaUe+iObPj+0=) 5: GokcGb-P0NB7nLtMvW5A8ngZQgE.roa (hash: ZnAqIOIHh01hnkaJVPAholM5RdM/M+SxoO9A/Xev0yk=) 6: LFRJzkmgIAiGnpUGS9-bXzuIMLs.roa (hash: 46deT7TNnqX9MlHzhsUcZQAr19c/pEqoQrpaQ/72qGo=) 7: Lq44h0G4q1e-UoLFf16nF4HM2xg.roa (hash: 8njI491vVK+Ep2tlJdykehE2iLFit02Dsa4DLuRuC40=) 8: NbGRLoG_Gu4CVHGU2oYeQquSVC4.roa (hash: UI6Whsfm0XLotsIB2pUQkPKCVhCu0FIJUxPDYs/HA7Q=) 9: OhSGFuxiOE6u1yxeHuxozU-P634.roa (hash: 6Mmr2aFRyJOyiCmrE7LHa7GVo3hy9dAsRMv8rAlCtH8=) 10: PvCNmMuHcK2-0lwoP1YXz8fG1-4.roa (hash: ZcKVkYaVisIZB6lNJ9Oj7RdZ3ktv/iO+kT0iuJRn4G8=) 11: S7VSB8bMnzHem9-PYRKs7CJpYpg.roa (hash: Xkmt3ivNtM5U/VoznrjL63MFyqBi5WkWlVP9ktx+/Dc=) 12: SMW63T_0136aeLowZZQWjjrfsXk.roa (hash: 3ilHXV2UYPUXB+nKjinPtba67c0zOMGagZjCJHP3jcE=) 13: SbsNPH1Ntij3qyUVffsCiIKkGeE.roa (hash: hjAPDCld8Xta1vPhgXAeIRi+/mILiMGsU19jsuHqOac=) 14: Tcb9LIMv15mBq9nuN_lyx7EDWvI.roa (hash: AVbi90aopaltK4BW7qKfcZ+tcE+N0R+vLT2QnDiHoBo=) 15: WbuHsYRVEwtxjohFVduo42yY0BA.roa (hash: XRpJ203bgOZcZmoeOkpQMh/toy8YP0Drzt5W89I939s=) 16: bnK4p1zEjjMpHGYBWVHlrBkLh7g.roa (hash: FTLJfN5i2b+RptkaFlN3Il1kzjhjI+oXWg1vZs6H4k0=) 17: cE7jgFPedRUF8ap_cKImzYVddl8.roa (hash: zb4n0pfJOMFHA1alvI9W5X6cLuKCPOK3ES0MN3ZZTkE=) 18: enntkJ9MJgt_xpOfkD8kOLdtBJU.roa (hash: JIM8qg9/iO+d/Qq84yLmkyLF8sGbWGM70xRqLp4QZrk=) 19: fFA6Tc1793n-r3BnGi87lZEg-eE.roa (hash: yKcGEOfvNP+8jvQZLXGNhmpwiIIwq6NoShkHAH7kres=) 20: rXmLdpESy3JXHba6GMZpxFBce7Y.roa (hash: eJTs9WPxSlrRs5HsS9oqFD3SzVRLHXq/UsVoUjviM0A=) 21: rtiE1g00ygxdO1tTtGobMSI8MfQ.roa (hash: 1+qhvfyyWdOjy7p4VdnyDBwRoLGDkk0RvotZmYLEvbM=) 22: sUa1qZfE6YDq3QMgLH1F6vdwxUU.roa (hash: fTQiV/tRslTYxHykfit6SFwjZkI2ltHIm9g/9F6nVW0=) 23: tk19XDIbs2abJC_w7m3eyvCxcz0.roa (hash: NU3TfhMXPP24pf7R4GaRkyWoD5b0T4TNRSVTKMLyWEo=) 24: zYMT5B5kagnNAeLm9HOdO9I2xP8.crl (hash: Fj0yU39N0/ovCrR0Kw32LRf24b2cEOsc7F79j9/3nuA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/zYMT5B5kagnNAeLm9HOdO9I2xP8.crl rsync://rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/zYMT5B5kagnNAeLm9HOdO9I2xP8.mft rsync://rpki.ripe.net/repository/DEFAULT/zYMT5B5kagnNAeLm9HOdO9I2xP8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fb:0a:10:21:48:b2:90:54:9a:f3:d0:03:82:e4:64:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cd8313e41e646a09cd01e2e6f4739d3bd236c4ff Validity Not Before: Jan 26 16:01:39 2026 GMT Not After : Jan 27 16:01:39 2026 GMT Subject: CN=5d56c9bb999ee7b6cde78923b34a3817827b9621 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:ec:de:44:b0:94:21:a2:85:ab:45:64:22:df: d2:80:53:5f:56:78:ce:02:3b:ca:59:a9:18:f7:46: 77:61:65:13:f1:a2:92:26:f5:c2:de:f0:38:79:c6: dc:d0:70:f9:84:8e:13:4a:7d:9e:0a:60:6c:e9:d1: 10:21:8a:db:02:c8:6f:e4:ad:c3:bf:95:28:d1:8f: 14:93:c2:23:77:5d:3c:53:9e:a7:b6:c6:3c:b2:11: bc:91:d3:ae:e5:57:44:77:35:f8:7d:5c:2a:1f:83: f7:26:53:d6:7f:5c:ea:a2:6a:61:d4:02:06:1f:48: ad:59:d5:58:83:2e:9d:cb:b0:df:3f:a6:1c:0d:25: 3e:f1:cd:2e:d6:7a:07:87:9e:7c:31:3a:d1:99:db: 4c:74:d6:7d:00:b9:eb:91:09:97:75:ff:58:b4:45: 25:97:29:6f:41:e1:f9:cc:f1:fd:8b:61:c5:63:8f: f0:c2:07:41:77:ed:e0:a4:e6:33:f9:4b:87:a9:a0: c2:56:45:9f:ce:59:c7:5b:5f:6c:2e:3f:a3:b6:01: 52:bf:f0:b4:9f:62:7b:53:15:3e:97:bf:d7:f3:ad: ae:68:f7:55:0e:ed:0c:b8:52:02:5c:81:f2:81:4a: a1:9e:02:19:af:ab:66:83:b4:6a:a7:af:eb:a5:55: 10:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:56:C9:BB:99:9E:E7:B6:CD:E7:89:23:B3:4A:38:17:82:7B:96:21 X509v3 Authority Key Identifier: keyid:CD:83:13:E4:1E:64:6A:09:CD:01:E2:E6:F4:73:9D:3B:D2:36:C4:FF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zYMT5B5kagnNAeLm9HOdO9I2xP8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/zYMT5B5kagnNAeLm9HOdO9I2xP8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/zYMT5B5kagnNAeLm9HOdO9I2xP8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 08:7b:d3:0c:2a:88:27:42:bf:3a:c9:17:90:e4:f3:42:18:45: c2:b6:55:34:c8:70:f2:31:ce:f2:52:16:6a:27:ad:eb:ab:56: cb:10:c0:15:ad:21:2a:de:79:98:cc:f3:40:cb:8d:2d:11:56: 7c:66:9b:59:69:2b:bd:9c:e0:1d:dd:c7:48:74:2d:1a:68:d7: a9:e9:76:bd:87:bc:1f:31:47:db:ef:0f:26:f9:66:06:a6:90: 4c:5b:9c:4f:ec:45:56:cf:be:40:4b:c4:90:5c:1f:9b:4b:6e: 0d:97:3e:ed:c1:6a:81:30:06:8e:30:f5:6a:8b:c5:30:2c:86: a3:dd:04:36:c2:ea:14:bb:bd:82:c9:fa:3c:7f:62:5b:9f:95: 33:81:5b:e7:4e:b7:74:d4:5a:57:62:1f:68:6e:a9:ec:9f:9b: c4:2c:53:73:ef:5e:5c:3e:a1:5f:52:52:48:7b:d2:08:41:d6: e6:59:1b:65:97:1c:d0:75:59:29:82:33:79:55:00:2e:4a:46: 66:c1:eb:94:31:2d:cf:db:28:9b:53:7f:f0:5a:02:a3:db:c6: a8:30:37:d3:3b:ba:a8:59:41:8f:c8:ff:42:81:ad:44:59:28: 13:8b:08:cf:8a:57:66:05:ba:9d:f4:03:24:4a:71:e4:45:1f: 74:5b:6d:b4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv7ChAhSLKQVJrz0AOC5GQ2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNkODMxM2U0MWU2NDZhMDljZDAxZTJlNmY0NzM5ZDNiZDIz NmM0ZmYwHhcNMjYwMTI2MTYwMTM5WhcNMjYwMTI3MTYwMTM5WjAzMTEwLwYDVQQD Eyg1ZDU2YzliYjk5OWVlN2I2Y2RlNzg5MjNiMzRhMzgxNzgyN2I5NjIxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApezeRLCUIaKFq0VkIt/SgFNfVnjO AjvKWakY90Z3YWUT8aKSJvXC3vA4ecbc0HD5hI4TSn2eCmBs6dEQIYrbAshv5K3D v5Uo0Y8Uk8Ijd108U56ntsY8shG8kdOu5VdEdzX4fVwqH4P3JlPWf1zqomph1AIG H0itWdVYgy6dy7DfP6YcDSU+8c0u1noHh558MTrRmdtMdNZ9ALnrkQmXdf9YtEUl lylvQeH5zPH9i2HFY4/wwgdBd+3gpOYz+UuHqaDCVkWfzlnHW19sLj+jtgFSv/C0 n2J7UxU+l7/X862uaPdVDu0MuFICXIHygUqhngIZr6tmg7Rqp6/rpVUQ2QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFF1WybuZnue2zeeJI7NKOBeCe5YhMB8GA1UdIwQY MBaAFM2DE+QeZGoJzQHi5vRznTvSNsT/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvellNVDVCNWthZ25OQWVMbTlIT2RPOUkyeFA4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZS8zNDY1ZjMtMDNjMi00ZWFhLWE2NzQt ODg2MmI1MTczMTdjLzEvellNVDVCNWthZ25OQWVMbTlIT2RPOUkyeFA4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZS8zNDY1ZjMtMDNjMi00ZWFhLWE2NzQtODg2MmI1MTczMTdj LzEvellNVDVCNWthZ25OQWVMbTlIT2RPOUkyeFA4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACHvTDCqI J0K/OskXkOTzQhhFwrZVNMhw8jHO8lIWaiet66tWyxDAFa0hKt55mMzzQMuNLRFW fGabWWkrvZzgHd3HSHQtGmjXqel2vYe8HzFH2+8PJvlmBqaQTFucT+xFVs++QEvE kFwfm0tuDZc+7cFqgTAGjjD1aovFMCyGo90ENsLqFLu9gsn6PH9iW5+VM4Fb5063 dNRaV2IfaG6p7J+bxCxTc+9eXD6hX1JSSHvSCEHW5lkbZZcc0HVZKYIzeVUALkpG ZsHrlDEtz9som1N/8FoCo9vGqDA30zu6qFlBj8j/QoGtRFkoE4sIz4pXZgW6nfQD JEpx5EUfdFtttA== -----END CERTIFICATE-----Generated at Mon Jan 26 19:10:56 2026 by rpki-client