This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/f07fbc-4c32-4d87-a429-86ea19d29163/1/hdycVeFZfohWTa9WflpGZZeMe4U.mft File: hdycVeFZfohWTa9WflpGZZeMe4U.mft (raw, json) Hash identifier: GGycKWnyviEkooJoKCGJIt+xYMXZT1/u0vnD0TMfmF0= Subject key identifier: AE:A0:0C:DF:12:AB:27:A8:6B:3B:B0:99:05:D1:6F:E6:AF:BF:52:AB Authority key identifier: 85:DC:9C:55:E1:59:7E:88:56:4D:AF:56:7E:5A:46:65:97:8C:7B:85 Certificate issuer: /CN=85dc9c55e1597e88564daf567e5a4665978c7b85 Certificate serial: 019BD80F76733227CC6547E74BDE6EC378CF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hdycVeFZfohWTa9WflpGZZeMe4U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/f07fbc-4c32-4d87-a429-86ea19d29163/1/hdycVeFZfohWTa9WflpGZZeMe4U.mft Manifest number: 121B Signing time: Mon 19 Jan 2026 21:00:50 +0000 Manifest this update: Mon 19 Jan 2026 21:00:50 +0000 Manifest next update: Tue 20 Jan 2026 21:00:50 +0000 Files and hashes: 1: 41gdFH-JudL678u_D6BB_y7EfU0.roa (hash: VnQDTpZib3x3twc60ulDPL39Qe1IesXf9+CLXJ4WNxw=) 2: Mpj_3kOIb_YBREm4CDGbZoT8R1s.roa (hash: WSgFrdqhjjGW3gBXPEw9RNID+Xo3I/t20meQJF7GgZg=) 3: X0C-jW-JvrYRehOUZc1q8qR_Alg.roa (hash: kkuwe92elfxQBb6MWA1wN1ame7fs+u6hfUmN0ZMLiZQ=) 4: a-1eulbURZwYdTXjQHmSQrhkepg.roa (hash: dU6/8b7jh8wXrhRwwYJ+BZWPnCRt/iCI6b/zuZGMbbY=) 5: bR0NHkHbblmEtwb2_nY_6Q1NAmE.roa (hash: KrJc5AmVNKuLrZUthurXLuq1KgVncKQfKVwT8ndsj4c=) 6: hdycVeFZfohWTa9WflpGZZeMe4U.crl (hash: ao9la7qGF72msD8eWt6FSxdug/fmcq2o3EznujGwU8M=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/f07fbc-4c32-4d87-a429-86ea19d29163/1/hdycVeFZfohWTa9WflpGZZeMe4U.crl rsync://rpki.ripe.net/repository/DEFAULT/df/f07fbc-4c32-4d87-a429-86ea19d29163/1/hdycVeFZfohWTa9WflpGZZeMe4U.mft rsync://rpki.ripe.net/repository/DEFAULT/hdycVeFZfohWTa9WflpGZZeMe4U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:d8:0f:76:73:32:27:cc:65:47:e7:4b:de:6e:c3:78:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85dc9c55e1597e88564daf567e5a4665978c7b85 Validity Not Before: Jan 19 21:00:50 2026 GMT Not After : Jan 20 21:00:50 2026 GMT Subject: CN=aea00cdf12ab27a86b3bb09905d16fe6afbf52ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:fb:1c:c3:91:d8:df:1a:f7:53:eb:c6:d4:5a: b0:b5:f3:3f:0f:bb:7e:30:f9:a1:c1:32:7e:35:77: f5:cb:18:e8:5f:2c:b2:d1:dd:31:e4:a5:9b:00:26: 74:25:32:17:a8:44:17:83:4e:3b:06:2d:c8:6c:9b: bd:75:d7:5c:e7:83:79:aa:ac:ff:70:29:75:cf:40: 1a:07:c4:8d:d5:c1:71:2d:03:c0:89:e8:6b:2c:47: bc:40:fc:15:1f:55:38:59:4b:7c:31:6e:16:e5:2a: 90:d6:51:40:2d:98:3a:cc:94:ba:d5:92:12:d4:12: 7d:81:8a:56:b4:26:71:72:d9:d0:b1:9d:07:ff:af: a7:bb:35:4d:ce:f4:af:5f:4b:59:47:bb:86:3c:e7: 0a:4d:3e:15:69:ac:cc:81:10:5c:0a:5b:1f:e0:02: 1b:b1:fe:f9:c2:f8:a2:5e:7b:88:5e:79:bc:10:36: 34:1b:cf:a6:f5:21:f0:63:9e:23:f2:0c:b9:b9:9f: 19:0d:48:19:6a:dd:e9:0b:0c:bc:ff:63:90:5c:08: 67:db:93:55:2a:49:9b:62:94:88:4e:f2:c1:29:36: 5d:54:c6:95:e4:6e:2a:34:9a:82:52:ac:39:6e:cb: 7b:c2:3f:14:df:0b:fa:88:9e:7f:36:d2:9d:de:95: 6f:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:A0:0C:DF:12:AB:27:A8:6B:3B:B0:99:05:D1:6F:E6:AF:BF:52:AB X509v3 Authority Key Identifier: keyid:85:DC:9C:55:E1:59:7E:88:56:4D:AF:56:7E:5A:46:65:97:8C:7B:85 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hdycVeFZfohWTa9WflpGZZeMe4U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/f07fbc-4c32-4d87-a429-86ea19d29163/1/hdycVeFZfohWTa9WflpGZZeMe4U.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/df/f07fbc-4c32-4d87-a429-86ea19d29163/1/hdycVeFZfohWTa9WflpGZZeMe4U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 35:bb:c0:35:eb:cf:98:8e:3d:47:fb:48:d6:22:00:ae:b1:e7: c2:0a:57:16:20:2e:28:c6:d9:95:27:68:36:40:aa:5c:92:53: 91:c4:cd:8f:47:05:e1:ba:44:91:1b:84:b1:95:cb:72:af:22: e2:74:9d:3f:49:68:70:2f:bb:43:14:ea:bb:f3:93:bf:22:16: 7e:7b:ef:eb:c1:eb:5c:be:7f:c4:a4:33:4a:67:e8:44:f3:0e: 0b:06:06:e5:d1:d6:3a:1a:38:97:73:50:9c:78:3f:0c:84:9c: ab:c6:91:43:6f:97:38:46:60:4a:86:d8:b4:44:3e:c6:e9:87: d3:39:73:7d:09:ba:e5:c7:5a:b4:8e:6f:8a:73:2d:70:22:03: 80:0e:6d:d4:d8:f6:27:69:83:80:3f:54:64:9b:88:bb:d4:7f: 24:8e:1c:0b:51:2d:a4:58:b0:e0:29:99:9e:8c:42:5b:58:2a: ab:b9:20:1c:0f:5d:80:94:54:08:ae:9d:bf:76:d6:c8:1b:23: a9:c0:c9:06:63:18:11:1d:e5:38:69:e3:9d:3f:3b:16:1b:87: 6c:71:92:01:9f:11:6d:30:19:9d:16:06:1c:49:80:35:71:78: da:fc:a2:d0:7a:a3:7e:21:a9:8d:83:59:da:d4:4c:4b:f9:f4: c8:d8:ca:84 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZvYD3ZzMifMZUfnS95uw3jPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg1ZGM5YzU1ZTE1OTdlODg1NjRkYWY1NjdlNWE0NjY1OTc4 YzdiODUwHhcNMjYwMTE5MjEwMDUwWhcNMjYwMTIwMjEwMDUwWjAzMTEwLwYDVQQD EyhhZWEwMGNkZjEyYWIyN2E4NmIzYmIwOTkwNWQxNmZlNmFmYmY1MmFiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtPscw5HY3xr3U+vG1FqwtfM/D7t+ MPmhwTJ+NXf1yxjoXyyy0d0x5KWbACZ0JTIXqEQXg047Bi3IbJu9dddc54N5qqz/ cCl1z0AaB8SN1cFxLQPAiehrLEe8QPwVH1U4WUt8MW4W5SqQ1lFALZg6zJS61ZIS 1BJ9gYpWtCZxctnQsZ0H/6+nuzVNzvSvX0tZR7uGPOcKTT4VaazMgRBcClsf4AIb sf75wviiXnuIXnm8EDY0G8+m9SHwY54j8gy5uZ8ZDUgZat3pCwy8/2OQXAhn25NV KkmbYpSITvLBKTZdVMaV5G4qNJqCUqw5bst7wj8U3wv6iJ5/NtKd3pVvwwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFK6gDN8SqyeoazuwmQXRb+avv1KrMB8GA1UdIwQY MBaAFIXcnFXhWX6IVk2vVn5aRmWXjHuFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaGR5Y1ZlRlpmb2hXVGE5V2ZscEdaWmVNZTRVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi9mMDdmYmMtNGMzMi00ZDg3LWE0Mjkt ODZlYTE5ZDI5MTYzLzEvaGR5Y1ZlRlpmb2hXVGE5V2ZscEdaWmVNZTRVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZi9mMDdmYmMtNGMzMi00ZDg3LWE0MjktODZlYTE5ZDI5MTYz LzEvaGR5Y1ZlRlpmb2hXVGE5V2ZscEdaWmVNZTRVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANbvANevP mI49R/tI1iIArrHnwgpXFiAuKMbZlSdoNkCqXJJTkcTNj0cF4bpEkRuEsZXLcq8i 4nSdP0locC+7QxTqu/OTvyIWfnvv68HrXL5/xKQzSmfoRPMOCwYG5dHWOho4l3NQ nHg/DIScq8aRQ2+XOEZgSobYtEQ+xumH0zlzfQm65cdatI5vinMtcCIDgA5t1Nj2 J2mDgD9UZJuIu9R/JI4cC1EtpFiw4CmZnoxCW1gqq7kgHA9dgJRUCK6dv3bWyBsj qcDJBmMYER3lOGnjnT87FhuHbHGSAZ8RbTAZnRYGHEmANXF42vyi0HqjfiGpjYNZ 2tRMS/n0yNjKhA== -----END CERTIFICATE-----Generated at Tue Jan 20 01:38:21 2026 by rpki-client