This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/f5794a-b191-4646-a842-f49fea545e78/1/YNCwIHYDvkPYSS6YUTeLi08JWU8.mft File: YNCwIHYDvkPYSS6YUTeLi08JWU8.mft (raw, json) Hash identifier: OE5fybpgpVyEdmPCJH9vOsHtIDAC8FCUTB0bI8d1Zp8= Subject key identifier: 4D:C3:6B:90:EE:15:43:25:E4:20:A8:25:85:38:C3:4A:2A:D3:9E:B4 Authority key identifier: 60:D0:B0:20:76:03:BE:43:D8:49:2E:98:51:37:8B:8B:4F:09:59:4F Certificate issuer: /CN=60d0b0207603be43d8492e9851378b8b4f09594f Certificate serial: 019BAE3898723A0E838EEC3E2E6C0889BBC5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YNCwIHYDvkPYSS6YUTeLi08JWU8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/f5794a-b191-4646-a842-f49fea545e78/1/YNCwIHYDvkPYSS6YUTeLi08JWU8.mft Manifest number: 1756 Signing time: Sun 11 Jan 2026 18:01:43 +0000 Manifest this update: Sun 11 Jan 2026 18:01:43 +0000 Manifest next update: Mon 12 Jan 2026 18:01:43 +0000 Files and hashes: 1: Lft1TVXiYVdikjn_A01iU-k02DE.roa (hash: AUhYpOdbzarhMkv1M+Fv4hjTQh+rQF7twSf3TVX7HXM=) 2: PejTwsBdKH5-f3Vp_HDi2lV40HI.roa (hash: sQMSKyXDXZzbEaxAsB9c8v4n+R0LYVRrVo36SmpYF40=) 3: YNCwIHYDvkPYSS6YUTeLi08JWU8.crl (hash: 2q1HnHd59duOS0ZOGCGxxBwoh8IPUmDzfOmYO5fFjEw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/f5794a-b191-4646-a842-f49fea545e78/1/YNCwIHYDvkPYSS6YUTeLi08JWU8.crl rsync://rpki.ripe.net/repository/DEFAULT/67/f5794a-b191-4646-a842-f49fea545e78/1/YNCwIHYDvkPYSS6YUTeLi08JWU8.mft rsync://rpki.ripe.net/repository/DEFAULT/YNCwIHYDvkPYSS6YUTeLi08JWU8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 18:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:ae:38:98:72:3a:0e:83:8e:ec:3e:2e:6c:08:89:bb:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=60d0b0207603be43d8492e9851378b8b4f09594f Validity Not Before: Jan 11 18:01:43 2026 GMT Not After : Jan 12 18:01:43 2026 GMT Subject: CN=4dc36b90ee154325e420a8258538c34a2ad39eb4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:9a:0f:14:c2:48:d0:c1:8a:6d:59:d3:c0:1b: 4d:ac:59:76:0c:ca:6b:6b:0d:0c:f9:31:69:2a:9b: a8:40:8a:fc:60:d2:db:4c:3a:dc:85:d0:78:2b:7c: d5:21:f8:a0:88:d1:eb:1e:9f:dc:8a:ea:24:91:e5: 71:e6:55:e5:84:b6:f4:fa:41:73:29:e8:08:ed:a3: 0b:18:43:e6:37:b2:8a:7d:81:3e:90:9e:2c:d1:ee: a6:53:b3:dc:96:87:8c:fb:b7:b0:f5:20:94:7b:e2: 1e:58:6b:0f:d6:f9:65:53:0c:72:81:94:9d:9f:67: 43:76:4f:0b:9a:65:a2:33:db:7f:32:fb:0d:04:38: 0c:e7:a9:fa:0b:e2:6c:3a:14:7e:c3:71:28:10:8b: 67:41:d8:99:4a:cf:43:43:37:b0:76:f4:13:92:24: f2:19:5d:a3:1e:d5:b8:71:bd:4d:3f:1f:08:f1:13: 8d:b0:65:3a:5d:14:cf:a7:2c:51:d6:1f:d4:79:bc: a2:e3:7d:04:49:8f:35:86:2f:72:09:d2:d1:e2:e9: c7:b4:c3:04:d8:f9:77:9f:50:51:05:f8:c1:a7:62: 9f:d6:ab:28:89:81:fc:04:3d:8c:09:44:a7:dd:be: 9d:eb:2d:90:6c:33:f3:28:ee:76:70:a0:f4:5e:84: e9:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:C3:6B:90:EE:15:43:25:E4:20:A8:25:85:38:C3:4A:2A:D3:9E:B4 X509v3 Authority Key Identifier: keyid:60:D0:B0:20:76:03:BE:43:D8:49:2E:98:51:37:8B:8B:4F:09:59:4F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YNCwIHYDvkPYSS6YUTeLi08JWU8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/f5794a-b191-4646-a842-f49fea545e78/1/YNCwIHYDvkPYSS6YUTeLi08JWU8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/67/f5794a-b191-4646-a842-f49fea545e78/1/YNCwIHYDvkPYSS6YUTeLi08JWU8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 56:14:fa:0b:0d:ac:d2:9a:5d:69:03:1a:4a:3e:40:00:fe:f2: 4f:8e:c1:b7:02:16:7d:bc:f5:9d:3a:92:f0:df:bb:28:53:5f: 33:ea:58:1a:43:d6:e7:0d:74:ad:32:59:5c:2c:1f:c0:b5:75: aa:7a:e8:5a:1f:03:25:6c:27:6c:da:8d:78:4c:c3:d5:3c:4c: 7f:43:8b:0a:a9:0d:78:37:1d:2f:0a:63:1a:aa:87:81:b0:73: 6b:ba:76:b4:2b:ed:25:b0:6e:78:42:8c:76:0c:1b:5c:81:c5: ed:79:93:00:9c:64:57:ba:f5:90:86:0f:ea:e7:4a:72:69:a4: 43:16:c8:7f:27:b5:53:e5:06:65:55:a2:32:b0:22:25:97:96: b2:f0:6f:8e:f1:7a:ed:c3:e4:66:4a:90:72:3e:4e:5e:d0:8a: 7e:47:2e:10:19:3f:be:4c:c9:81:6a:db:0b:3c:d4:a6:b9:e4: b1:35:06:8e:d8:3d:d6:2c:fd:81:2c:08:a5:d6:43:ab:76:fb: a3:75:ff:64:b5:0b:2c:b7:46:d4:57:c3:d3:29:d5:e1:13:b9: 69:af:b5:31:6d:05:e9:a7:db:7e:d6:e5:71:3e:56:9f:12:34: 67:69:32:f6:cc:90:87:55:7f:fd:d8:3b:c8:a4:0a:92:1a:7c: e8:d2:00:4d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZuuOJhyOg6Djuw+LmwIibvFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwZDBiMDIwNzYwM2JlNDNkODQ5MmU5ODUxMzc4YjhiNGYw OTU5NGYwHhcNMjYwMTExMTgwMTQzWhcNMjYwMTEyMTgwMTQzWjAzMTEwLwYDVQQD Eyg0ZGMzNmI5MGVlMTU0MzI1ZTQyMGE4MjU4NTM4YzM0YTJhZDM5ZWI0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmJoPFMJI0MGKbVnTwBtNrFl2DMpr aw0M+TFpKpuoQIr8YNLbTDrchdB4K3zVIfigiNHrHp/ciuokkeVx5lXlhLb0+kFz KegI7aMLGEPmN7KKfYE+kJ4s0e6mU7PcloeM+7ew9SCUe+IeWGsP1vllUwxygZSd n2dDdk8LmmWiM9t/MvsNBDgM56n6C+JsOhR+w3EoEItnQdiZSs9DQzewdvQTkiTy GV2jHtW4cb1NPx8I8RONsGU6XRTPpyxR1h/Uebyi430ESY81hi9yCdLR4unHtMME 2Pl3n1BRBfjBp2Kf1qsoiYH8BD2MCUSn3b6d6y2QbDPzKO52cKD0XoTpdwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFE3Da5DuFUMl5CCoJYU4w0oq0560MB8GA1UdIwQY MBaAFGDQsCB2A75D2EkumFE3i4tPCVlPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWU5Dd0lIWUR2a1BZU1M2WVVUZUxpMDhKV1U4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ny9mNTc5NGEtYjE5MS00NjQ2LWE4NDIt ZjQ5ZmVhNTQ1ZTc4LzEvWU5Dd0lIWUR2a1BZU1M2WVVUZUxpMDhKV1U4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ny9mNTc5NGEtYjE5MS00NjQ2LWE4NDItZjQ5ZmVhNTQ1ZTc4 LzEvWU5Dd0lIWUR2a1BZU1M2WVVUZUxpMDhKV1U4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVhT6Cw2s 0ppdaQMaSj5AAP7yT47BtwIWfbz1nTqS8N+7KFNfM+pYGkPW5w10rTJZXCwfwLV1 qnroWh8DJWwnbNqNeEzD1TxMf0OLCqkNeDcdLwpjGqqHgbBza7p2tCvtJbBueEKM dgwbXIHF7XmTAJxkV7r1kIYP6udKcmmkQxbIfye1U+UGZVWiMrAiJZeWsvBvjvF6 7cPkZkqQcj5OXtCKfkcuEBk/vkzJgWrbCzzUprnksTUGjtg91iz9gSwIpdZDq3b7 o3X/ZLULLLdG1FfD0ynV4RO5aa+1MW0F6afbftblcT5WnxI0Z2ky9syQh1V//dg7 yKQKkhp86NIATQ== -----END CERTIFICATE-----Generated at Sun Jan 11 23:47:57 2026 by rpki-client