This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.mft File: tYaoZDYz6YdBEai881GKCQXyhgk.mft (raw, json) Hash identifier: Y9R0Hf0T5lBVsWf9zsJCS+XHggyzwdqa/TgXG9HNk/U= Subject key identifier: 16:FC:31:B0:C0:E6:FD:0C:CF:43:C4:7F:F1:67:44:BD:AE:B3:C5:15 Authority key identifier: B5:86:A8:64:36:33:E9:87:41:11:A8:BC:F3:51:8A:09:05:F2:86:09 Certificate issuer: /CN=b586a8643633e9874111a8bcf3518a0905f28609 Certificate serial: 019C05FAA8CB5B0400ABB074224DE0FD52F0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tYaoZDYz6YdBEai881GKCQXyhgk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.mft Manifest number: 139A Signing time: Wed 28 Jan 2026 19:00:38 +0000 Manifest this update: Wed 28 Jan 2026 19:00:38 +0000 Manifest next update: Thu 29 Jan 2026 19:00:38 +0000 Files and hashes: 1: R_zL9EhetPG627p64jnL_1AQk_k.roa (hash: /ASm15I9YtFuL/r1IrLrMNiCv/23kZabo3hMsyygvPM=) 2: Zx2Ej29t4Sy3ugAdSAEr8wgh-eI.roa (hash: 6qePl3E6/9bWQI3GzNjE+NBTWrA6JE82fp1zkkf+j8o=) 3: gPytstS2H2DCx0G35K4nAVksneE.roa (hash: I34ZNFgqBn6ft829pIhUL9qJ7ZwAtJssKpKV0YYtJmI=) 4: hL4U-26oJ-d8CY7a6r3Udux4pFM.roa (hash: 8nT0Nid1k0WCSq4dufjGbFyrf1TbKzMQQr3veAEfmRs=) 5: jJ74mpm8B1pyvT1MNhCtSe0cxRk.roa (hash: OKs2X6l4NJ7txPZTz3RUzDrNyB2I3km6f/sNQFkFGUQ=) 6: tYaoZDYz6YdBEai881GKCQXyhgk.crl (hash: b4kJZogaKunTJDyaUk09vSBDfrmR8L8nOBgkaJlIb+g=) 7: v_CzW-gEtbdZtpCnpKHVty7BP7s.roa (hash: FK1HiNTHGuvdh1/S7hYfIVoOC1e1CT6RxRS6KDmNYRQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.crl rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.mft rsync://rpki.ripe.net/repository/DEFAULT/tYaoZDYz6YdBEai881GKCQXyhgk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 29 Jan 2026 18:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:05:fa:a8:cb:5b:04:00:ab:b0:74:22:4d:e0:fd:52:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b586a8643633e9874111a8bcf3518a0905f28609 Validity Not Before: Jan 28 19:00:38 2026 GMT Not After : Jan 29 19:00:38 2026 GMT Subject: CN=16fc31b0c0e6fd0ccf43c47ff16744bdaeb3c515 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:89:16:18:04:33:24:cf:35:3a:5f:34:63:dd: 34:50:a5:01:ff:df:b9:09:43:21:e2:df:69:f2:f2: 50:0c:52:14:d0:90:3d:73:ec:aa:e1:38:10:b4:73: 7d:f6:bc:dc:41:da:71:88:39:cd:90:0e:45:93:f2: 1d:18:67:4a:96:40:12:c1:68:d8:b6:ad:f8:34:36: f7:6f:32:a2:30:6f:af:48:d4:59:37:f7:17:24:5c: 2f:01:c3:63:eb:6e:95:6c:e9:9e:bd:b1:54:ca:64: 75:40:5c:ac:39:4f:fb:e4:cd:ea:61:dd:c4:6b:11: 92:02:ea:e5:0e:9e:88:b6:78:9c:c3:30:cb:da:0b: 62:00:e3:1c:ed:a3:3f:d9:27:c2:2a:91:26:3e:f5: 23:91:a9:4a:27:8e:2a:c5:f4:dc:3c:ca:5d:68:d5: 8c:48:18:39:3f:f7:a9:95:d2:22:8f:26:b5:bf:5d: 24:c2:79:12:ca:17:e3:c7:84:91:3f:64:38:b2:8e: ea:e9:d7:4e:8e:fe:e8:41:a6:41:ee:66:24:18:fe: f2:48:84:c9:9a:7f:03:fa:a9:42:64:95:93:7c:74: 7d:c1:16:65:f1:09:8c:51:56:92:86:83:59:ff:a2: f3:c2:6a:76:fc:d3:b5:d5:9d:54:48:6e:ae:dd:10: 2b:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:FC:31:B0:C0:E6:FD:0C:CF:43:C4:7F:F1:67:44:BD:AE:B3:C5:15 X509v3 Authority Key Identifier: keyid:B5:86:A8:64:36:33:E9:87:41:11:A8:BC:F3:51:8A:09:05:F2:86:09 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tYaoZDYz6YdBEai881GKCQXyhgk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b6:c1:dc:7b:92:ce:eb:cb:da:f2:fc:ce:a8:90:25:4c:5c:cf: 35:92:f9:97:a1:15:0e:a6:82:68:eb:6f:f9:48:f4:60:90:54: 03:7c:01:98:79:4d:7e:92:ff:ab:ce:ba:a4:1b:95:ec:48:6d: 1e:45:71:93:91:e5:21:d2:ac:da:1e:e2:ed:38:0b:da:e0:07: d9:ab:f9:3c:5f:87:1d:7a:33:22:73:06:97:19:aa:f9:5b:88: 70:ac:5a:5d:5b:38:e9:7a:79:83:43:ff:3c:6c:46:2a:c8:5c: 18:b4:8d:59:66:8d:08:c5:2b:f5:2f:71:ef:50:7e:06:c4:b5: 91:67:70:f8:66:4f:a2:a4:03:d2:d9:79:ae:52:6b:a2:82:f7: 3b:85:3d:87:56:0e:45:f1:40:e7:15:40:3c:d5:9f:ee:47:08: 09:66:14:f0:b0:da:1c:81:08:95:a5:02:dc:a0:0c:f9:19:f5: 3f:28:12:1e:e8:d3:a4:d3:14:6b:6b:26:6d:17:5d:e0:6e:7c: 53:c6:77:4a:7f:a0:73:23:5b:f4:d5:ae:1a:0b:f4:83:03:30: 04:06:0e:a7:bb:9d:63:31:55:6b:ef:53:7e:1d:ff:4d:23:91: 00:94:e7:b9:49:68:af:7b:86:89:c6:32:32:8a:c2:9a:f6:94: 8e:93:8a:46 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZwF+qjLWwQAq7B0Ik3g/VLwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI1ODZhODY0MzYzM2U5ODc0MTExYThiY2YzNTE4YTA5MDVm Mjg2MDkwHhcNMjYwMTI4MTkwMDM4WhcNMjYwMTI5MTkwMDM4WjAzMTEwLwYDVQQD EygxNmZjMzFiMGMwZTZmZDBjY2Y0M2M0N2ZmMTY3NDRiZGFlYjNjNTE1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5IkWGAQzJM81Ol80Y900UKUB/9+5 CUMh4t9p8vJQDFIU0JA9c+yq4TgQtHN99rzcQdpxiDnNkA5Fk/IdGGdKlkASwWjY tq34NDb3bzKiMG+vSNRZN/cXJFwvAcNj626VbOmevbFUymR1QFysOU/75M3qYd3E axGSAurlDp6ItnicwzDL2gtiAOMc7aM/2SfCKpEmPvUjkalKJ44qxfTcPMpdaNWM SBg5P/epldIijya1v10kwnkSyhfjx4SRP2Q4so7q6ddOjv7oQaZB7mYkGP7ySITJ mn8D+qlCZJWTfHR9wRZl8QmMUVaShoNZ/6Lzwmp2/NO11Z1USG6u3RArLQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBb8MbDA5v0Mz0PEf/FnRL2us8UVMB8GA1UdIwQY MBaAFLWGqGQ2M+mHQRGovPNRigkF8oYJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdFlhb1pEWXo2WWRCRWFpODgxR0tDUVh5aGdrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNi8yMGNjYWMtMzNlZS00NWRjLWJjOWMt NDQ5OWUzMjM5ZjFmLzEvdFlhb1pEWXo2WWRCRWFpODgxR0tDUVh5aGdrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNi8yMGNjYWMtMzNlZS00NWRjLWJjOWMtNDQ5OWUzMjM5ZjFm LzEvdFlhb1pEWXo2WWRCRWFpODgxR0tDUVh5aGdrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAtsHce5LO 68va8vzOqJAlTFzPNZL5l6EVDqaCaOtv+Uj0YJBUA3wBmHlNfpL/q866pBuV7Eht HkVxk5HlIdKs2h7i7TgL2uAH2av5PF+HHXozInMGlxmq+VuIcKxaXVs46Xp5g0P/ PGxGKshcGLSNWWaNCMUr9S9x71B+BsS1kWdw+GZPoqQD0tl5rlJrooL3O4U9h1YO RfFA5xVAPNWf7kcICWYU8LDaHIEIlaUC3KAM+Rn1PygSHujTpNMUa2smbRdd4G58 U8Z3Sn+gcyNb9NWuGgv0gwMwBAYOp7udYzFVa+9Tfh3/TSORAJTnuUlor3uGicYy MorCmvaUjpOKRg== -----END CERTIFICATE-----Generated at Thu Jan 29 01:23:09 2026 by rpki-client