This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/82491b-8caf-481b-b146-601a58f63393/1/YMZLBPqPX-5oZvXHn499zqUBJRU.mft File: YMZLBPqPX-5oZvXHn499zqUBJRU.mft (raw, json) Hash identifier: LHXOUKJNZwFIp+yW2QElj70DHsvENuKnrk7auBQiORI= Subject key identifier: 07:FF:38:63:8F:49:75:6B:47:B5:1F:46:4C:EE:A5:24:2D:A8:7C:A0 Authority key identifier: 60:C6:4B:04:FA:8F:5F:EE:68:66:F5:C7:9F:8F:7D:CE:A5:01:25:15 Certificate issuer: /CN=60c64b04fa8f5fee6866f5c79f8f7dcea5012515 Certificate serial: 019BAF81F8531AE1EAF7B6C625A1E6604659 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YMZLBPqPX-5oZvXHn499zqUBJRU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/82491b-8caf-481b-b146-601a58f63393/1/YMZLBPqPX-5oZvXHn499zqUBJRU.mft Manifest number: 13B4 Signing time: Mon 12 Jan 2026 00:01:29 +0000 Manifest this update: Mon 12 Jan 2026 00:01:29 +0000 Manifest next update: Tue 13 Jan 2026 00:01:29 +0000 Files and hashes: 1: 5eILOK-1-Suo2fVqfn_W0lL0-TQ.roa (hash: NzVDzsu+Kq+X+04Ws4gqYwLVPdBaLiyudai4ILZxsxg=) 2: YMZLBPqPX-5oZvXHn499zqUBJRU.crl (hash: syfq7oohh2oIJDsaI0cRIAIfFHheTPLaneR/+EuYQz0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/82491b-8caf-481b-b146-601a58f63393/1/YMZLBPqPX-5oZvXHn499zqUBJRU.crl rsync://rpki.ripe.net/repository/DEFAULT/36/82491b-8caf-481b-b146-601a58f63393/1/YMZLBPqPX-5oZvXHn499zqUBJRU.mft rsync://rpki.ripe.net/repository/DEFAULT/YMZLBPqPX-5oZvXHn499zqUBJRU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 18:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:af:81:f8:53:1a:e1:ea:f7:b6:c6:25:a1:e6:60:46:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=60c64b04fa8f5fee6866f5c79f8f7dcea5012515 Validity Not Before: Jan 12 00:01:29 2026 GMT Not After : Jan 13 00:01:29 2026 GMT Subject: CN=07ff38638f49756b47b51f464ceea5242da87ca0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:b6:33:88:31:b3:11:57:9d:b1:18:7b:a3:b6: 30:b6:b2:bd:b1:09:09:28:f8:ed:cb:f3:ab:ae:6d: 83:43:74:35:b3:75:9d:ca:d7:67:9b:2e:55:e9:d0: ff:44:97:30:80:21:e7:58:ba:2d:ef:c7:d1:54:ea: 3e:fc:0c:3f:db:7e:21:84:b6:99:ae:02:6f:47:ad: 7b:ae:55:98:cd:69:80:16:b2:8d:0d:65:6b:08:da: 4f:43:70:33:3f:d5:98:b4:0b:ae:7f:9d:d4:5f:45: a3:98:4c:11:e2:b3:33:a6:d2:44:0d:f9:3f:73:76: a6:ca:fd:f1:f5:55:b9:60:8b:95:5e:a0:1d:b2:7c: 21:d2:56:d8:3d:4b:01:3c:8b:ef:2f:b0:a4:8d:ce: 0f:c8:ed:ff:71:07:63:97:be:82:bb:17:e6:ba:3d: 19:b1:ea:c4:53:ef:f5:f0:e7:ff:45:2a:f2:6c:ae: 43:73:d6:4a:4c:e2:c1:bd:27:43:7a:13:3f:ac:3d: 76:8e:8c:01:38:2f:c3:ef:ab:9d:52:f0:d3:e2:99: bf:dc:d8:24:70:79:23:73:43:66:57:5a:f6:e3:77: ef:c8:f5:b0:ca:1c:1f:58:3b:57:9c:68:4b:69:85: f0:7d:4d:aa:32:c8:7a:76:1a:ab:04:a3:a3:d1:3e: d1:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:FF:38:63:8F:49:75:6B:47:B5:1F:46:4C:EE:A5:24:2D:A8:7C:A0 X509v3 Authority Key Identifier: keyid:60:C6:4B:04:FA:8F:5F:EE:68:66:F5:C7:9F:8F:7D:CE:A5:01:25:15 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YMZLBPqPX-5oZvXHn499zqUBJRU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/82491b-8caf-481b-b146-601a58f63393/1/YMZLBPqPX-5oZvXHn499zqUBJRU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/36/82491b-8caf-481b-b146-601a58f63393/1/YMZLBPqPX-5oZvXHn499zqUBJRU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 94:ca:1f:ab:e6:73:7b:ef:0e:2c:16:05:a4:e3:b7:4b:49:04: 9d:5b:c9:5b:8b:ea:06:d5:5d:25:84:12:e3:a2:7d:e5:1b:c8: ef:1c:26:e8:ac:58:5b:62:6e:f2:09:6e:5f:f0:40:b9:6d:ab: 19:6e:b6:93:ee:63:c8:28:58:8c:92:a7:79:0a:2b:e0:9b:2b: 4d:68:e3:8c:dd:ab:74:ab:3f:f4:78:72:e6:94:7e:9c:3a:f9: 26:63:7b:7a:a3:02:65:38:d7:ac:15:21:34:22:75:63:4f:b8: 72:61:6c:9e:eb:db:17:ac:b2:a5:60:24:be:fd:ce:2d:03:42: b4:63:d7:86:02:03:19:a4:7a:c6:d2:59:9c:33:a2:1c:06:6d: dd:5a:96:4c:53:ec:f2:65:7d:af:1a:5a:fa:0c:1d:0c:51:7d: 22:11:a1:cb:d2:3b:27:a5:1f:b0:85:db:da:f1:95:c7:e2:fb: 29:22:7b:2e:c4:d9:77:16:db:6d:5a:72:b5:78:2e:2e:b1:53: 6b:19:18:a5:f8:d3:7f:86:15:f4:d4:fd:57:17:30:a2:96:8e: c5:e3:9c:1d:34:a2:a3:13:e8:46:ac:dc:47:de:e1:5e:b2:b9: 23:e3:b3:f3:14:e4:80:58:bf:c0:ca:63:77:80:ca:ee:ff:b0: c0:83:04:94 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZuvgfhTGuHq97bGJaHmYEZZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwYzY0YjA0ZmE4ZjVmZWU2ODY2ZjVjNzlmOGY3ZGNlYTUw MTI1MTUwHhcNMjYwMTEyMDAwMTI5WhcNMjYwMTEzMDAwMTI5WjAzMTEwLwYDVQQD EygwN2ZmMzg2MzhmNDk3NTZiNDdiNTFmNDY0Y2VlYTUyNDJkYTg3Y2EwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2bYziDGzEVedsRh7o7YwtrK9sQkJ KPjty/Orrm2DQ3Q1s3Wdytdnmy5V6dD/RJcwgCHnWLot78fRVOo+/Aw/234hhLaZ rgJvR617rlWYzWmAFrKNDWVrCNpPQ3AzP9WYtAuuf53UX0WjmEwR4rMzptJEDfk/ c3amyv3x9VW5YIuVXqAdsnwh0lbYPUsBPIvvL7Ckjc4PyO3/cQdjl76Cuxfmuj0Z serEU+/18Of/RSrybK5Dc9ZKTOLBvSdDehM/rD12jowBOC/D76udUvDT4pm/3Ngk cHkjc0NmV1r243fvyPWwyhwfWDtXnGhLaYXwfU2qMsh6dhqrBKOj0T7R1wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAf/OGOPSXVrR7UfRkzupSQtqHygMB8GA1UdIwQY MBaAFGDGSwT6j1/uaGb1x5+Pfc6lASUVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWU1aTEJQcVBYLTVvWnZYSG40OTl6cVVCSlJVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi84MjQ5MWItOGNhZi00ODFiLWIxNDYt NjAxYTU4ZjYzMzkzLzEvWU1aTEJQcVBYLTVvWnZYSG40OTl6cVVCSlJVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNi84MjQ5MWItOGNhZi00ODFiLWIxNDYtNjAxYTU4ZjYzMzkz LzEvWU1aTEJQcVBYLTVvWnZYSG40OTl6cVVCSlJVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlMofq+Zz e+8OLBYFpOO3S0kEnVvJW4vqBtVdJYQS46J95RvI7xwm6KxYW2Ju8gluX/BAuW2r GW62k+5jyChYjJKneQor4JsrTWjjjN2rdKs/9Hhy5pR+nDr5JmN7eqMCZTjXrBUh NCJ1Y0+4cmFsnuvbF6yypWAkvv3OLQNCtGPXhgIDGaR6xtJZnDOiHAZt3VqWTFPs 8mV9rxpa+gwdDFF9IhGhy9I7J6UfsIXb2vGVx+L7KSJ7LsTZdxbbbVpytXguLrFT axkYpfjTf4YV9NT9VxcwopaOxeOcHTSioxPoRqzcR97hXrK5I+Oz8xTkgFi/wMpj d4DK7v+wwIMElA== -----END CERTIFICATE-----Generated at Mon Jan 12 02:36:03 2026 by rpki-client