This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/82491b-8caf-481b-b146-601a58f63393/1/YMZLBPqPX-5oZvXHn499zqUBJRU.mft File: YMZLBPqPX-5oZvXHn499zqUBJRU.mft (raw, json) Hash identifier: oByTxFUp4ukGyqJpLB0mpLimBBYebFMOjyRyBxd5f+M= Subject key identifier: 51:27:82:69:DC:D6:E7:02:0E:3E:23:6B:D7:AE:D2:78:E9:69:EC:AA Authority key identifier: 60:C6:4B:04:FA:8F:5F:EE:68:66:F5:C7:9F:8F:7D:CE:A5:01:25:15 Certificate issuer: /CN=60c64b04fa8f5fee6866f5c79f8f7dcea5012515 Certificate serial: 019B7937E27E5097633AF03BB74875C74AA7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YMZLBPqPX-5oZvXHn499zqUBJRU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/82491b-8caf-481b-b146-601a58f63393/1/YMZLBPqPX-5oZvXHn499zqUBJRU.mft Manifest number: 1397 Signing time: Thu 01 Jan 2026 11:01:04 +0000 Manifest this update: Thu 01 Jan 2026 11:01:04 +0000 Manifest next update: Fri 02 Jan 2026 11:01:04 +0000 Files and hashes: 1: Q9vdhvNHwOEEPnjfpoIoeq4pq_E.roa (hash: AjW64DrutKx53AvwTAQKpO/FJMGHUcE1ZDsQqqfuNRE=) 2: YMZLBPqPX-5oZvXHn499zqUBJRU.crl (hash: 1OLe7AkiVm0r3W1Wg/VRXcBtAIJCqTLwvCV4Uz4dEgw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/82491b-8caf-481b-b146-601a58f63393/1/YMZLBPqPX-5oZvXHn499zqUBJRU.crl rsync://rpki.ripe.net/repository/DEFAULT/36/82491b-8caf-481b-b146-601a58f63393/1/YMZLBPqPX-5oZvXHn499zqUBJRU.mft rsync://rpki.ripe.net/repository/DEFAULT/YMZLBPqPX-5oZvXHn499zqUBJRU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 02 Jan 2026 09:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:37:e2:7e:50:97:63:3a:f0:3b:b7:48:75:c7:4a:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=60c64b04fa8f5fee6866f5c79f8f7dcea5012515 Validity Not Before: Jan 1 11:01:04 2026 GMT Not After : Jan 2 11:01:04 2026 GMT Subject: CN=51278269dcd6e7020e3e236bd7aed278e969ecaa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:81:78:a6:22:d0:bd:bb:d7:70:8b:1b:a7:e8: c2:09:ac:e0:e8:65:f0:1a:b8:8c:32:3a:98:48:7e: ca:51:cc:1d:80:49:6a:03:be:24:e9:b5:ef:e1:1c: ec:26:21:6f:4d:eb:79:aa:59:99:1a:b2:b5:fb:35: 2f:e9:2b:11:ae:ae:ee:8f:2a:af:0b:ea:ce:39:70: e5:0e:02:b0:61:d8:f9:c5:8b:38:1f:c3:96:10:5d: cb:24:0c:ab:69:72:c0:4b:2d:2a:5e:b7:3b:42:1b: 37:2e:5d:1c:a1:0e:27:38:17:7b:24:81:7e:b8:8a: 87:6a:14:1d:10:04:a4:47:98:83:72:95:eb:ef:b4: 62:d0:46:14:a2:46:df:5d:21:1e:b1:3c:b3:7c:ff: 35:f8:e7:b1:31:c2:51:6e:af:07:e0:48:b4:05:f4: 64:65:a5:75:6c:d6:99:5e:68:7a:cb:1b:8c:7a:89: ae:ce:4d:d1:15:87:4e:56:90:cf:8e:42:ef:9d:7a: 48:61:1d:07:52:73:3e:9f:c6:15:0f:4b:45:08:4d: 99:95:e4:dc:86:6b:4d:08:95:7f:33:f5:3f:37:73: 6c:00:98:be:b5:73:82:62:29:9c:38:16:45:58:b2: bb:12:7b:51:11:28:b0:ff:5d:97:49:23:e4:65:cc: cf:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:27:82:69:DC:D6:E7:02:0E:3E:23:6B:D7:AE:D2:78:E9:69:EC:AA X509v3 Authority Key Identifier: keyid:60:C6:4B:04:FA:8F:5F:EE:68:66:F5:C7:9F:8F:7D:CE:A5:01:25:15 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YMZLBPqPX-5oZvXHn499zqUBJRU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/82491b-8caf-481b-b146-601a58f63393/1/YMZLBPqPX-5oZvXHn499zqUBJRU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/36/82491b-8caf-481b-b146-601a58f63393/1/YMZLBPqPX-5oZvXHn499zqUBJRU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9c:ad:01:29:65:02:0f:29:af:ef:50:86:9d:6a:1f:5e:ab:95: 9c:41:c7:34:83:a8:ce:b4:28:3b:d4:2b:4e:59:65:52:98:d5: eb:96:d8:51:a1:62:04:ea:5e:fe:5e:24:da:26:16:ff:5c:ca: 64:4c:38:e0:65:5d:6a:27:d1:ea:c6:ef:9d:55:3b:70:4c:a7: f7:62:fe:67:fc:e5:93:6a:a7:e5:48:60:05:9c:02:dd:6f:35: 3c:94:f4:a2:cb:a2:b2:5e:74:98:49:bf:c8:b9:11:ac:2c:3b: 37:b8:5a:4f:f8:9c:e6:0a:fb:d3:33:36:c1:1c:5e:3a:f1:29: e0:7b:a0:2c:52:7b:fb:35:d0:38:3e:1f:b6:ec:65:ac:3b:b0: b6:89:c3:46:39:76:3b:e1:b5:ab:fd:25:6d:0f:77:ae:8d:f9: ce:06:f4:b4:b3:89:f1:6a:d3:d2:ad:9b:44:ed:9b:6b:25:22: e4:65:44:e9:3e:e0:81:49:53:70:a5:97:81:6a:01:f8:ac:33: 5d:c2:19:59:fd:32:8b:5a:74:79:b5:88:6c:9d:03:fe:b9:34: 91:9f:1f:a8:73:cd:5c:bc:4a:32:5c:4f:9a:14:dc:5d:18:6a: 46:e4:bf:41:18:ac:63:7d:ec:35:63:67:58:55:ba:ce:1b:51: c3:80:03:67 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZt5N+J+UJdjOvA7t0h1x0qnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwYzY0YjA0ZmE4ZjVmZWU2ODY2ZjVjNzlmOGY3ZGNlYTUw MTI1MTUwHhcNMjYwMTAxMTEwMTA0WhcNMjYwMTAyMTEwMTA0WjAzMTEwLwYDVQQD Eyg1MTI3ODI2OWRjZDZlNzAyMGUzZTIzNmJkN2FlZDI3OGU5NjllY2FhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt4F4piLQvbvXcIsbp+jCCazg6GXw GriMMjqYSH7KUcwdgElqA74k6bXv4RzsJiFvTet5qlmZGrK1+zUv6SsRrq7ujyqv C+rOOXDlDgKwYdj5xYs4H8OWEF3LJAyraXLASy0qXrc7Qhs3Ll0coQ4nOBd7JIF+ uIqHahQdEASkR5iDcpXr77Ri0EYUokbfXSEesTyzfP81+OexMcJRbq8H4Ei0BfRk ZaV1bNaZXmh6yxuMeomuzk3RFYdOVpDPjkLvnXpIYR0HUnM+n8YVD0tFCE2ZleTc hmtNCJV/M/U/N3NsAJi+tXOCYimcOBZFWLK7EntRESiw/12XSSPkZczP1wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFEngmnc1ucCDj4ja9eu0njpaeyqMB8GA1UdIwQY MBaAFGDGSwT6j1/uaGb1x5+Pfc6lASUVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWU1aTEJQcVBYLTVvWnZYSG40OTl6cVVCSlJVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi84MjQ5MWItOGNhZi00ODFiLWIxNDYt NjAxYTU4ZjYzMzkzLzEvWU1aTEJQcVBYLTVvWnZYSG40OTl6cVVCSlJVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNi84MjQ5MWItOGNhZi00ODFiLWIxNDYtNjAxYTU4ZjYzMzkz LzEvWU1aTEJQcVBYLTVvWnZYSG40OTl6cVVCSlJVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnK0BKWUC Dymv71CGnWofXquVnEHHNIOozrQoO9QrTlllUpjV65bYUaFiBOpe/l4k2iYW/1zK ZEw44GVdaifR6sbvnVU7cEyn92L+Z/zlk2qn5UhgBZwC3W81PJT0osuisl50mEm/ yLkRrCw7N7haT/ic5gr70zM2wRxeOvEp4HugLFJ7+zXQOD4ftuxlrDuwtonDRjl2 O+G1q/0lbQ93ro35zgb0tLOJ8WrT0q2bRO2bayUi5GVE6T7ggUlTcKWXgWoB+Kwz XcIZWf0yi1p0ebWIbJ0D/rk0kZ8fqHPNXLxKMlxPmhTcXRhqRuS/QRisY33sNWNn WFW6zhtRw4ADZw== -----END CERTIFICATE-----Generated at Thu Jan 1 14:27:55 2026 by rpki-client