This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.mft File: dy9wNcKJOyjNBP0amzys0kKMjf0.mft (raw, json) Hash identifier: 5Iyn8aw8CpyB5d4X2gIEVnKaTdkBJl8gH7T7PGumpm4= Subject key identifier: BC:34:11:2D:33:F9:7E:C1:25:E4:C7:8C:20:85:8A:05:12:04:6D:57 Authority key identifier: 77:2F:70:35:C2:89:3B:28:CD:04:FD:1A:9B:3C:AC:D2:42:8C:8D:FD Certificate issuer: /CN=772f7035c2893b28cd04fd1a9b3cacd2428c8dfd Certificate serial: 019B9F33500F4E6C6954CE5F7DC2166A9EBF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dy9wNcKJOyjNBP0amzys0kKMjf0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.mft Manifest number: 04D7 Signing time: Thu 08 Jan 2026 20:01:38 +0000 Manifest this update: Thu 08 Jan 2026 20:01:38 +0000 Manifest next update: Fri 09 Jan 2026 20:01:38 +0000 Files and hashes: 1: 8Qo74UQPSqvugCWFfb9DBf7wKqE.roa (hash: M/pOvg/hdX2EdZ83UmfDv3mPILFnj+u5MLVly1CyGXs=) 2: dy9wNcKJOyjNBP0amzys0kKMjf0.crl (hash: LBpIgH2tVitz53GqCo0OqCQrPQaokGgGMOd+JquelP8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.crl rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.mft rsync://rpki.ripe.net/repository/DEFAULT/dy9wNcKJOyjNBP0amzys0kKMjf0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 09 Jan 2026 18:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:9f:33:50:0f:4e:6c:69:54:ce:5f:7d:c2:16:6a:9e:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=772f7035c2893b28cd04fd1a9b3cacd2428c8dfd Validity Not Before: Jan 8 20:01:38 2026 GMT Not After : Jan 9 20:01:38 2026 GMT Subject: CN=bc34112d33f97ec125e4c78c20858a0512046d57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:08:b4:2f:04:a3:d1:d0:0a:4c:08:67:ea:a8: 5b:1d:82:31:32:82:d8:b4:ac:a0:05:37:37:4d:dc: 96:95:3c:65:3d:2d:0b:d1:d0:6b:f4:09:2c:30:16: 87:32:6d:ad:a8:15:3e:e9:06:21:b3:66:2e:a6:c7: e4:c4:dc:9f:43:ba:14:f9:c2:c8:be:f5:12:76:4e: 07:2a:33:17:2e:33:73:ae:96:59:58:1c:d0:0a:f5: 3a:aa:8d:e0:ac:ab:66:97:da:9b:9f:4f:3e:d9:ab: 6b:2a:b9:b7:8b:03:cb:f1:28:8c:e7:90:a6:a4:aa: f8:4f:6c:2e:76:63:01:bd:a4:65:19:1c:51:37:ed: bd:27:02:63:6e:e7:6e:8a:20:0e:fe:06:f4:c9:b2: 02:04:ec:58:3e:a6:38:08:94:c9:b4:61:8c:83:30: f9:6c:d6:1c:f4:10:a2:67:21:03:49:d3:72:df:30: c8:44:82:61:34:cc:ff:f0:89:07:6f:f0:da:56:43: 59:5b:63:33:26:aa:25:bb:75:6e:7f:3d:2c:3b:c3: ff:13:64:cb:0e:f2:4e:f2:45:1d:bf:24:8c:ef:d1: 14:85:7d:1e:83:f8:18:e6:82:e2:cb:75:77:82:ff: 9c:71:e5:34:55:91:ac:a8:25:95:fc:2c:b4:bf:32: 3f:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:34:11:2D:33:F9:7E:C1:25:E4:C7:8C:20:85:8A:05:12:04:6D:57 X509v3 Authority Key Identifier: keyid:77:2F:70:35:C2:89:3B:28:CD:04:FD:1A:9B:3C:AC:D2:42:8C:8D:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dy9wNcKJOyjNBP0amzys0kKMjf0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/36/41eae0-6b72-4624-9c24-83035afe4a37/1/dy9wNcKJOyjNBP0amzys0kKMjf0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b8:a4:73:de:df:d4:de:fc:1f:3f:dd:ef:06:ab:95:b9:8e:be: b9:e2:b0:a6:a2:88:aa:85:5d:ae:12:a8:09:18:f1:71:fd:d0: 79:77:73:8f:08:4b:03:96:14:e4:9a:65:82:81:46:9d:1d:a1: c5:a7:26:fd:5e:ca:ae:33:16:ab:6f:ff:48:a7:8e:fe:1c:97: a4:29:d5:fc:52:79:20:59:1f:bf:a0:ed:2c:e0:06:cd:52:1a: 56:c4:e6:e7:0d:ee:49:f5:83:e2:f5:a2:f6:84:3f:58:5c:a0: 3e:19:79:85:e9:b7:bc:34:7f:d9:73:7e:04:07:f1:fc:ef:16: 15:ef:a1:d4:fc:d0:0f:3d:fe:7b:df:37:2a:de:6d:d5:f5:75: 8a:4b:25:27:92:1c:7e:79:a0:de:b9:a1:9c:3f:e6:9d:31:de: 32:1f:49:8b:30:bf:e3:d0:04:7f:bd:96:49:a5:c1:7e:76:06: 6c:46:6a:75:03:a8:3f:8a:47:70:3a:f1:a1:e3:2c:52:10:69: e4:39:ce:e7:89:f7:ab:05:f6:3e:7d:80:4a:57:ad:50:0a:02: 72:b1:39:a3:fa:75:b0:e4:84:d7:11:56:f9:c3:7d:cf:a1:d9: 5d:2b:64:4c:ad:8b:c6:fb:bc:40:b3:dc:2a:59:6a:de:b8:8b: da:9e:00:ea -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZufM1APTmxpVM5ffcIWap6/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc3MmY3MDM1YzI4OTNiMjhjZDA0ZmQxYTliM2NhY2QyNDI4 YzhkZmQwHhcNMjYwMTA4MjAwMTM4WhcNMjYwMTA5MjAwMTM4WjAzMTEwLwYDVQQD EyhiYzM0MTEyZDMzZjk3ZWMxMjVlNGM3OGMyMDg1OGEwNTEyMDQ2ZDU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAswi0LwSj0dAKTAhn6qhbHYIxMoLY tKygBTc3TdyWlTxlPS0L0dBr9AksMBaHMm2tqBU+6QYhs2YupsfkxNyfQ7oU+cLI vvUSdk4HKjMXLjNzrpZZWBzQCvU6qo3grKtml9qbn08+2atrKrm3iwPL8SiM55Cm pKr4T2wudmMBvaRlGRxRN+29JwJjbuduiiAO/gb0ybICBOxYPqY4CJTJtGGMgzD5 bNYc9BCiZyEDSdNy3zDIRIJhNMz/8IkHb/DaVkNZW2MzJqolu3Vufz0sO8P/E2TL DvJO8kUdvySM79EUhX0eg/gY5oLiy3V3gv+cceU0VZGsqCWV/Cy0vzI/QQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLw0ES0z+X7BJeTHjCCFigUSBG1XMB8GA1UdIwQY MBaAFHcvcDXCiTsozQT9Gps8rNJCjI39MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZHk5d05jS0pPeWpOQlAwYW16eXMwa0tNamYwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi80MWVhZTAtNmI3Mi00NjI0LTljMjQt ODMwMzVhZmU0YTM3LzEvZHk5d05jS0pPeWpOQlAwYW16eXMwa0tNamYwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNi80MWVhZTAtNmI3Mi00NjI0LTljMjQtODMwMzVhZmU0YTM3 LzEvZHk5d05jS0pPeWpOQlAwYW16eXMwa0tNamYwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAuKRz3t/U 3vwfP93vBquVuY6+ueKwpqKIqoVdrhKoCRjxcf3QeXdzjwhLA5YU5JplgoFGnR2h xacm/V7KrjMWq2//SKeO/hyXpCnV/FJ5IFkfv6DtLOAGzVIaVsTm5w3uSfWD4vWi 9oQ/WFygPhl5hem3vDR/2XN+BAfx/O8WFe+h1PzQDz3+e983Kt5t1fV1ikslJ5Ic fnmg3rmhnD/mnTHeMh9JizC/49AEf72WSaXBfnYGbEZqdQOoP4pHcDrxoeMsUhBp 5DnO54n3qwX2Pn2ASletUAoCcrE5o/p1sOSE1xFW+cN9z6HZXStkTK2Lxvu8QLPc Kllq3riL2p4A6g== -----END CERTIFICATE-----Generated at Fri Jan 9 00:14:07 2026 by rpki-client