This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/1a7be5-3cf2-40c5-ba67-854182f09ef5/1/y78j_5hnaDYlSUYv4JLGMV6sykA.mft File: y78j_5hnaDYlSUYv4JLGMV6sykA.mft (raw, json) Hash identifier: 6p4s2L1LF9MBQWQO2YPoH5re17V+0QD22B15ubuBNDw= Subject key identifier: 2B:51:8D:D9:E6:E9:10:9B:F1:36:83:EC:68:57:EF:0A:DB:C9:61:B0 Authority key identifier: CB:BF:23:FF:98:67:68:36:25:49:46:2F:E0:92:C6:31:5E:AC:CA:40 Certificate issuer: /CN=cbbf23ff986768362549462fe092c6315eacca40 Certificate serial: 019BAD5D04A38A1EED8FB20063C756189BBA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y78j_5hnaDYlSUYv4JLGMV6sykA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/1a7be5-3cf2-40c5-ba67-854182f09ef5/1/y78j_5hnaDYlSUYv4JLGMV6sykA.mft Manifest number: 17C2 Signing time: Sun 11 Jan 2026 14:01:52 +0000 Manifest this update: Sun 11 Jan 2026 14:01:52 +0000 Manifest next update: Mon 12 Jan 2026 14:01:52 +0000 Files and hashes: 1: 1-eZ3i0dxANHC7WiRV9EvIipS61A.roa (hash: Ak1nuU6x8cZ4QdQ6COojFaQA6BvDEXKIeiGaihwMfjI=) 2: y78j_5hnaDYlSUYv4JLGMV6sykA.crl (hash: LJfjyHbssdr5uEm2nVmWWWwtiU5H4leT/6Z0aS4Ys6s=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/1a7be5-3cf2-40c5-ba67-854182f09ef5/1/y78j_5hnaDYlSUYv4JLGMV6sykA.crl rsync://rpki.ripe.net/repository/DEFAULT/23/1a7be5-3cf2-40c5-ba67-854182f09ef5/1/y78j_5hnaDYlSUYv4JLGMV6sykA.mft rsync://rpki.ripe.net/repository/DEFAULT/y78j_5hnaDYlSUYv4JLGMV6sykA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 14:01:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:ad:5d:04:a3:8a:1e:ed:8f:b2:00:63:c7:56:18:9b:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cbbf23ff986768362549462fe092c6315eacca40 Validity Not Before: Jan 11 14:01:52 2026 GMT Not After : Jan 12 14:01:52 2026 GMT Subject: CN=2b518dd9e6e9109bf13683ec6857ef0adbc961b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:c9:8b:ad:37:58:a1:72:7d:ba:bd:59:32:9e: 49:7b:87:63:d6:0d:fb:8a:83:89:74:bd:a4:8d:94: f7:f5:06:92:2d:8a:6d:8e:57:76:da:c0:b5:8f:ac: 3d:43:10:12:fd:19:9d:8a:3c:80:8b:59:29:ed:4c: fc:c4:9e:15:28:4b:5d:f1:84:5c:76:d0:1c:80:c9: 67:6f:8a:e2:a9:d8:52:4e:56:7b:83:b8:1a:3b:11: 88:1b:50:3a:c0:24:b2:b8:e9:58:a5:ea:5c:e1:bd: 20:15:3f:e7:e5:83:dd:6d:c8:27:9a:85:39:8a:75: 65:4d:3f:21:31:b4:87:e8:71:7e:08:0a:49:d4:7c: 25:59:98:1b:f1:b9:db:a3:25:3e:e9:32:9b:ff:d0: 1b:1e:a2:71:18:cc:48:4e:d2:84:5c:b0:51:1f:4b: c5:de:f4:e8:4f:ee:84:3f:ab:da:73:a9:ab:f0:c1: 9e:22:0b:96:39:6d:0e:72:4b:66:39:9b:d4:1a:ec: b7:a0:0b:01:1f:9a:2c:bd:7f:4b:5c:de:79:36:69: 2f:ea:33:71:a1:77:07:d4:27:28:77:23:c3:0c:7a: 9b:fc:4a:f9:2f:b6:f4:05:43:66:a9:4e:a1:1d:4d: b8:d1:d1:0a:9e:d1:f7:26:14:0a:47:f9:88:e4:e5: 28:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:51:8D:D9:E6:E9:10:9B:F1:36:83:EC:68:57:EF:0A:DB:C9:61:B0 X509v3 Authority Key Identifier: keyid:CB:BF:23:FF:98:67:68:36:25:49:46:2F:E0:92:C6:31:5E:AC:CA:40 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y78j_5hnaDYlSUYv4JLGMV6sykA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/1a7be5-3cf2-40c5-ba67-854182f09ef5/1/y78j_5hnaDYlSUYv4JLGMV6sykA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/23/1a7be5-3cf2-40c5-ba67-854182f09ef5/1/y78j_5hnaDYlSUYv4JLGMV6sykA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 32:cd:71:52:58:72:a1:9e:be:2a:70:9d:a4:ef:23:20:33:66: b6:ca:3b:76:07:c7:56:3f:b6:49:29:28:e8:b8:29:fa:15:3d: 4f:05:67:4d:52:5f:d4:55:c4:86:e2:2c:93:49:99:c5:79:24: 9f:9d:b8:43:d0:51:8f:63:75:fe:80:06:49:2d:f8:06:74:4d: de:7f:32:2b:f3:9e:25:f2:ab:e1:d3:04:56:86:cf:13:9e:8c: 2d:f7:01:0a:56:7b:c0:c9:f8:b4:5d:d5:09:7a:ed:91:5d:5b: 98:3d:80:ff:9f:ba:d7:31:ca:9b:46:82:a9:2a:96:bc:9a:08: ac:4e:ec:b5:28:55:bb:f8:a9:dd:72:33:91:56:b8:81:d7:73: 53:fe:88:e4:31:05:03:0c:bb:10:b5:32:d4:aa:15:c3:77:a8: c8:a3:d0:2d:84:68:64:10:78:46:54:d9:de:6b:cd:1c:dd:7e: 32:56:f1:0a:83:6a:21:d6:ea:6d:44:fe:a7:20:3a:72:f3:ae: fd:57:b7:3a:e3:15:75:f6:6d:be:f8:d9:d6:7e:42:5a:60:fa: 95:b7:b4:40:13:88:6c:5b:af:e9:d7:9d:cb:c6:a9:ff:57:a5: 89:12:16:62:2d:a6:79:d2:c5:e6:73:0f:27:72:44:b3:f2:98: 2e:aa:c7:dc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZutXQSjih7tj7IAY8dWGJu6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNiYmYyM2ZmOTg2NzY4MzYyNTQ5NDYyZmUwOTJjNjMxNWVh Y2NhNDAwHhcNMjYwMTExMTQwMTUyWhcNMjYwMTEyMTQwMTUyWjAzMTEwLwYDVQQD EygyYjUxOGRkOWU2ZTkxMDliZjEzNjgzZWM2ODU3ZWYwYWRiYzk2MWIwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAusmLrTdYoXJ9ur1ZMp5Je4dj1g37 ioOJdL2kjZT39QaSLYptjld22sC1j6w9QxAS/RmdijyAi1kp7Uz8xJ4VKEtd8YRc dtAcgMlnb4riqdhSTlZ7g7gaOxGIG1A6wCSyuOlYpepc4b0gFT/n5YPdbcgnmoU5 inVlTT8hMbSH6HF+CApJ1HwlWZgb8bnboyU+6TKb/9AbHqJxGMxITtKEXLBRH0vF 3vToT+6EP6vac6mr8MGeIguWOW0OcktmOZvUGuy3oAsBH5osvX9LXN55Nmkv6jNx oXcH1CcodyPDDHqb/Er5L7b0BUNmqU6hHU240dEKntH3JhQKR/mI5OUoDwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCtRjdnm6RCb8TaD7GhX7wrbyWGwMB8GA1UdIwQY MBaAFMu/I/+YZ2g2JUlGL+CSxjFerMpAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveTc4al81aG5hRFlsU1VZdjRKTEdNVjZzeWtBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMy8xYTdiZTUtM2NmMi00MGM1LWJhNjct ODU0MTgyZjA5ZWY1LzEveTc4al81aG5hRFlsU1VZdjRKTEdNVjZzeWtBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMy8xYTdiZTUtM2NmMi00MGM1LWJhNjctODU0MTgyZjA5ZWY1 LzEveTc4al81aG5hRFlsU1VZdjRKTEdNVjZzeWtBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMs1xUlhy oZ6+KnCdpO8jIDNmtso7dgfHVj+2SSko6Lgp+hU9TwVnTVJf1FXEhuIsk0mZxXkk n524Q9BRj2N1/oAGSS34BnRN3n8yK/OeJfKr4dMEVobPE56MLfcBClZ7wMn4tF3V CXrtkV1bmD2A/5+61zHKm0aCqSqWvJoIrE7stShVu/ip3XIzkVa4gddzU/6I5DEF Awy7ELUy1KoVw3eoyKPQLYRoZBB4RlTZ3mvNHN1+MlbxCoNqIdbqbUT+pyA6cvOu /Ve3OuMVdfZtvvjZ1n5CWmD6lbe0QBOIbFuv6dedy8ap/1eliRIWYi2medLF5nMP J3JEs/KYLqrH3A== -----END CERTIFICATE-----Generated at Sun Jan 11 23:28:07 2026 by rpki-client