This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/fe82d1-1575-47c1-9f22-c7e2520c4cea/1/yohtVYfshfcSQs1XztQJVEUoFo0.mft File: yohtVYfshfcSQs1XztQJVEUoFo0.mft (raw, json) Hash identifier: K2vBPn1ehQKSrfekozWR99VVE6zEN6D4gA+F9Ub7n60= Subject key identifier: AA:A9:E2:57:7D:4E:3A:13:42:F8:74:55:48:94:CF:4D:52:C3:73:8E Authority key identifier: CA:88:6D:55:87:EC:85:F7:12:42:CD:57:CE:D4:09:54:45:28:16:8D Certificate issuer: /CN=ca886d5587ec85f71242cd57ced409544528168d Certificate serial: 019BDE7FC81C7A84D20C5CA7B3DAC83DAB35 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yohtVYfshfcSQs1XztQJVEUoFo0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/fe82d1-1575-47c1-9f22-c7e2520c4cea/1/yohtVYfshfcSQs1XztQJVEUoFo0.mft Manifest number: 0590 Signing time: Wed 21 Jan 2026 03:01:14 +0000 Manifest this update: Wed 21 Jan 2026 03:01:14 +0000 Manifest next update: Thu 22 Jan 2026 03:01:14 +0000 Files and hashes: 1: I2kHiqxmSF3p6V9W7eV_eTfDN3k.roa (hash: fCpVVld0L94vFLqVKGMCfHN/hOXwKxcQlDEoGOWDUFo=) 2: XExavfpXuaZ3MydZbyDnyFn5ni0.roa (hash: WQdTsTZhStmdezt2VotpAadyLft0mMYrZPTmmKNNRro=) 3: yohtVYfshfcSQs1XztQJVEUoFo0.crl (hash: yxrD+/Icec42oDf4jNSxqU6TO3v8I9JDUYcMRnlCPOs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fc/fe82d1-1575-47c1-9f22-c7e2520c4cea/1/yohtVYfshfcSQs1XztQJVEUoFo0.crl rsync://rpki.ripe.net/repository/DEFAULT/fc/fe82d1-1575-47c1-9f22-c7e2520c4cea/1/yohtVYfshfcSQs1XztQJVEUoFo0.mft rsync://rpki.ripe.net/repository/DEFAULT/yohtVYfshfcSQs1XztQJVEUoFo0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 00:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:de:7f:c8:1c:7a:84:d2:0c:5c:a7:b3:da:c8:3d:ab:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ca886d5587ec85f71242cd57ced409544528168d Validity Not Before: Jan 21 03:01:14 2026 GMT Not After : Jan 22 03:01:14 2026 GMT Subject: CN=aaa9e2577d4e3a1342f874554894cf4d52c3738e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:ac:d4:ab:83:43:d6:ee:4e:ff:50:6a:0b:98: b0:7e:d5:06:60:40:76:69:b2:e5:b2:c3:75:66:7b: 0b:56:97:21:2c:55:00:48:8c:18:49:75:87:46:20: 86:86:c5:fe:4a:d3:13:40:86:17:80:ac:c7:45:a9: e8:8d:7c:61:d2:9c:a3:20:13:b7:18:8b:22:b1:d5: 9a:29:ab:9f:e7:55:2b:6f:1e:86:68:a5:9d:38:ea: 78:ce:91:b6:7b:c3:0c:a3:cd:ea:29:65:e7:83:92: 18:ae:40:68:8b:22:1c:32:ad:4c:01:7f:0a:3d:77: 13:71:d0:d6:65:91:02:8e:67:24:3c:d4:88:2d:bd: 29:6c:ae:9d:c5:08:33:2c:98:16:83:de:dc:b8:e7: 44:aa:f1:c2:41:de:02:f9:97:fb:b5:28:84:04:23: be:19:e0:a9:20:e1:08:b3:80:ff:4f:15:11:f3:d3: 92:ce:bf:a6:f1:b2:9b:c9:91:a5:9b:12:c1:73:22: 30:77:8a:e6:47:f3:e5:ef:7b:0c:aa:66:f1:9b:aa: ea:33:7b:94:8f:0b:03:d1:ae:14:78:97:36:0a:7c: 6e:f1:39:99:60:37:b2:dd:a0:38:36:e2:f6:cc:49: 75:34:ef:6e:6d:76:16:64:fe:61:23:3f:98:67:41: ea:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:A9:E2:57:7D:4E:3A:13:42:F8:74:55:48:94:CF:4D:52:C3:73:8E X509v3 Authority Key Identifier: keyid:CA:88:6D:55:87:EC:85:F7:12:42:CD:57:CE:D4:09:54:45:28:16:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yohtVYfshfcSQs1XztQJVEUoFo0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/fe82d1-1575-47c1-9f22-c7e2520c4cea/1/yohtVYfshfcSQs1XztQJVEUoFo0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/fe82d1-1575-47c1-9f22-c7e2520c4cea/1/yohtVYfshfcSQs1XztQJVEUoFo0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8a:07:e6:6a:51:db:1d:e1:7b:c8:d9:8a:4c:e7:de:ea:c4:6b: aa:10:2d:9e:7c:d7:2e:db:68:bd:59:04:17:db:87:62:ba:c5: 41:91:6a:83:00:43:65:21:c6:ed:f0:ed:50:06:bc:39:9c:5e: e9:91:08:8f:26:cf:9c:fa:4c:a7:dd:66:c8:a5:dc:82:83:ad: de:9e:56:be:aa:ae:f9:0c:f8:99:88:ee:e2:6f:c9:40:bb:66: a9:ab:f4:28:37:d8:93:47:00:dd:c8:9b:c7:48:dc:27:6b:7e: 5f:86:d8:9f:cf:71:17:d6:da:53:2a:4c:9b:82:6a:f6:db:24: f1:72:85:b5:cc:d1:54:d2:f1:fe:4d:5f:1b:2e:99:e9:e3:42: 20:cb:84:bb:fa:0a:f5:32:3f:ad:ba:47:9d:c4:44:d5:5d:eb: 86:8f:a1:70:68:52:ab:ce:c2:29:9c:4b:3e:e1:d6:8a:33:31: ef:1a:c3:5c:3e:b3:55:98:e0:89:c6:a7:9a:a6:cd:8e:9f:96: 25:d6:8d:00:54:12:3e:7e:a4:69:1f:0f:b2:72:0b:5e:76:eb: 36:f7:6f:95:16:52:1a:25:27:0b:ff:00:fd:74:21:42:78:2a: 9a:3c:c0:2b:5f:f5:14:58:47:06:b2:f2:c6:33:d2:da:83:00: 20:29:f5:5a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZvef8gceoTSDFyns9rIPas1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNhODg2ZDU1ODdlYzg1ZjcxMjQyY2Q1N2NlZDQwOTU0NDUy ODE2OGQwHhcNMjYwMTIxMDMwMTE0WhcNMjYwMTIyMDMwMTE0WjAzMTEwLwYDVQQD EyhhYWE5ZTI1NzdkNGUzYTEzNDJmODc0NTU0ODk0Y2Y0ZDUyYzM3MzhlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn6zUq4ND1u5O/1BqC5iwftUGYEB2 abLlssN1ZnsLVpchLFUASIwYSXWHRiCGhsX+StMTQIYXgKzHRanojXxh0pyjIBO3 GIsisdWaKauf51Urbx6GaKWdOOp4zpG2e8MMo83qKWXng5IYrkBoiyIcMq1MAX8K PXcTcdDWZZECjmckPNSILb0pbK6dxQgzLJgWg97cuOdEqvHCQd4C+Zf7tSiEBCO+ GeCpIOEIs4D/TxUR89OSzr+m8bKbyZGlmxLBcyIwd4rmR/Pl73sMqmbxm6rqM3uU jwsD0a4UeJc2Cnxu8TmZYDey3aA4NuL2zEl1NO9ubXYWZP5hIz+YZ0HqXwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKqp4ld9TjoTQvh0VUiUz01Sw3OOMB8GA1UdIwQY MBaAFMqIbVWH7IX3EkLNV87UCVRFKBaNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveW9odFZZZnNoZmNTUXMxWHp0UUpWRVVvRm8wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYy9mZTgyZDEtMTU3NS00N2MxLTlmMjIt YzdlMjUyMGM0Y2VhLzEveW9odFZZZnNoZmNTUXMxWHp0UUpWRVVvRm8wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mYy9mZTgyZDEtMTU3NS00N2MxLTlmMjItYzdlMjUyMGM0Y2Vh LzEveW9odFZZZnNoZmNTUXMxWHp0UUpWRVVvRm8wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAigfmalHb HeF7yNmKTOfe6sRrqhAtnnzXLttovVkEF9uHYrrFQZFqgwBDZSHG7fDtUAa8OZxe 6ZEIjybPnPpMp91myKXcgoOt3p5Wvqqu+Qz4mYju4m/JQLtmqav0KDfYk0cA3cib x0jcJ2t+X4bYn89xF9baUypMm4Jq9tsk8XKFtczRVNLx/k1fGy6Z6eNCIMuEu/oK 9TI/rbpHncRE1V3rho+hcGhSq87CKZxLPuHWijMx7xrDXD6zVZjgicanmqbNjp+W JdaNAFQSPn6kaR8PsnILXnbrNvdvlRZSGiUnC/8A/XQhQngqmjzAK1/1FFhHBrLy xjPS2oMAICn1Wg== -----END CERTIFICATE-----Generated at Wed Jan 21 05:21:45 2026 by rpki-client