This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/62641c-3444-4425-bf51-6d05c0d0da6f/1/YcaCaHQ-gj4OHIcAYMChQiPxUes.mft File: YcaCaHQ-gj4OHIcAYMChQiPxUes.mft (raw, json) Hash identifier: C1izNtvp+PFcy48fSqiUdYiSJYhMNXIGjDDqJab3PtU= Subject key identifier: D7:20:85:70:75:52:0A:36:2E:88:A0:04:EE:74:4C:75:AC:73:EA:CF Authority key identifier: 61:C6:82:68:74:3E:82:3E:0E:1C:87:00:60:C0:A1:42:23:F1:51:EB Certificate issuer: /CN=61c68268743e823e0e1c870060c0a14223f151eb Certificate serial: 019BAEDD32A416509BFCCBDDC76511A9B67E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YcaCaHQ-gj4OHIcAYMChQiPxUes.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/62641c-3444-4425-bf51-6d05c0d0da6f/1/YcaCaHQ-gj4OHIcAYMChQiPxUes.mft Manifest number: 17C3 Signing time: Sun 11 Jan 2026 21:01:30 +0000 Manifest this update: Sun 11 Jan 2026 21:01:30 +0000 Manifest next update: Mon 12 Jan 2026 21:01:30 +0000 Files and hashes: 1: YcaCaHQ-gj4OHIcAYMChQiPxUes.crl (hash: qnaSsO7INNBxEQMyc7auFmbCrvNPyQgZPP5UclNgslE=) 2: b8CCvMj6XsXWpjo1kqL4lHdDIeI.roa (hash: ORCFwxYaf4vPg6tOj10K2FmfsSRr15XuWRZrPrnhk3A=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/62641c-3444-4425-bf51-6d05c0d0da6f/1/YcaCaHQ-gj4OHIcAYMChQiPxUes.crl rsync://rpki.ripe.net/repository/DEFAULT/af/62641c-3444-4425-bf51-6d05c0d0da6f/1/YcaCaHQ-gj4OHIcAYMChQiPxUes.mft rsync://rpki.ripe.net/repository/DEFAULT/YcaCaHQ-gj4OHIcAYMChQiPxUes.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 18:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:ae:dd:32:a4:16:50:9b:fc:cb:dd:c7:65:11:a9:b6:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=61c68268743e823e0e1c870060c0a14223f151eb Validity Not Before: Jan 11 21:01:30 2026 GMT Not After : Jan 12 21:01:30 2026 GMT Subject: CN=d720857075520a362e88a004ee744c75ac73eacf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:23:2f:5e:e2:c9:b9:d1:6e:4e:bb:1b:b4:27: d3:88:87:83:ff:73:3e:03:22:0c:22:e3:d4:c2:33: d2:35:8f:39:5c:76:e6:b4:ce:7a:68:bd:07:03:5d: f6:69:93:2f:84:b0:07:45:4f:32:fb:05:85:99:6b: ca:fb:7a:35:71:55:0f:7b:17:d1:52:d2:23:bf:57: fb:bc:0f:9c:48:6f:b7:28:f4:76:0b:80:4a:87:6f: 6c:68:44:c2:d3:8a:be:1e:6a:26:42:6e:cb:ea:42: 56:cf:8a:36:2e:40:87:24:29:99:04:40:c0:3c:8a: 5a:ed:59:34:b2:ee:32:f7:a8:26:b1:4a:35:65:d5: 00:17:e7:d3:eb:28:4e:90:61:a8:fa:1a:aa:64:35: 6b:30:4b:fc:fd:04:98:60:4e:ed:9d:0a:ab:79:14: 10:58:41:c1:67:d2:a8:71:3c:ce:f9:23:70:52:ca: 05:a4:b5:26:c2:6c:ca:39:23:0f:62:16:d6:1c:0a: 73:b9:cc:df:2b:d5:27:f7:7e:ee:b0:3c:b1:b8:2b: 66:f8:ca:d0:8d:d9:8f:24:14:f2:e9:40:07:d4:d4: 10:63:bc:4c:b0:92:0e:4c:a3:a0:27:a3:90:61:cf: 4e:6b:55:1a:8e:fe:31:37:57:9f:95:0d:aa:80:a6: 9a:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:20:85:70:75:52:0A:36:2E:88:A0:04:EE:74:4C:75:AC:73:EA:CF X509v3 Authority Key Identifier: keyid:61:C6:82:68:74:3E:82:3E:0E:1C:87:00:60:C0:A1:42:23:F1:51:EB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YcaCaHQ-gj4OHIcAYMChQiPxUes.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/62641c-3444-4425-bf51-6d05c0d0da6f/1/YcaCaHQ-gj4OHIcAYMChQiPxUes.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/af/62641c-3444-4425-bf51-6d05c0d0da6f/1/YcaCaHQ-gj4OHIcAYMChQiPxUes.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 96:70:19:f6:80:02:bc:a1:6d:59:19:aa:de:a1:b3:76:e7:09: 25:90:ed:ae:c4:53:f5:1a:7c:fa:6d:f1:ce:4f:54:3b:e5:b8: a2:72:4c:85:cd:43:00:57:13:0c:6a:07:19:68:76:01:0e:42: a4:71:a3:7b:3f:a5:40:5c:05:33:39:2c:a5:2d:a4:20:71:18: 11:92:cc:78:ec:da:5d:10:4c:d5:f1:52:ae:b3:b9:7f:fb:54: b8:c6:ab:20:61:00:9a:af:ef:a2:34:cb:8f:37:08:01:0d:1a: 9a:97:60:bf:1d:e5:bd:86:e0:18:c3:1d:20:0c:73:11:93:e0: 44:d1:9c:9d:ee:11:f7:19:4b:73:8f:a5:4b:02:d2:18:ce:dc: 6b:02:54:78:b9:fe:40:9b:a1:9a:61:10:60:21:eb:23:90:d3: 9b:d8:29:a8:49:b0:c7:46:42:7d:53:cb:a3:dc:82:07:47:8e: 26:f4:14:a0:98:7d:18:03:74:dc:6c:d9:e0:ed:ba:0e:7b:86: 3e:59:f7:c7:37:e8:c2:2b:31:a2:50:58:cc:17:38:c9:cd:93: 97:e0:88:c4:bb:ba:70:d5:16:c1:aa:7f:e0:2f:f2:2e:95:f2: 47:83:62:94:97:74:f9:4f:5e:e7:5e:b7:b7:e3:40:cb:42:f3: 58:5e:1f:6a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZuu3TKkFlCb/Mvdx2URqbZ+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYxYzY4MjY4NzQzZTgyM2UwZTFjODcwMDYwYzBhMTQyMjNm MTUxZWIwHhcNMjYwMTExMjEwMTMwWhcNMjYwMTEyMjEwMTMwWjAzMTEwLwYDVQQD EyhkNzIwODU3MDc1NTIwYTM2MmU4OGEwMDRlZTc0NGM3NWFjNzNlYWNmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvyMvXuLJudFuTrsbtCfTiIeD/3M+ AyIMIuPUwjPSNY85XHbmtM56aL0HA132aZMvhLAHRU8y+wWFmWvK+3o1cVUPexfR UtIjv1f7vA+cSG+3KPR2C4BKh29saETC04q+HmomQm7L6kJWz4o2LkCHJCmZBEDA PIpa7Vk0su4y96gmsUo1ZdUAF+fT6yhOkGGo+hqqZDVrMEv8/QSYYE7tnQqreRQQ WEHBZ9KocTzO+SNwUsoFpLUmwmzKOSMPYhbWHApzuczfK9Un937usDyxuCtm+MrQ jdmPJBTy6UAH1NQQY7xMsJIOTKOgJ6OQYc9Oa1Uajv4xN1eflQ2qgKaaIwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNcghXB1Ugo2LoigBO50THWsc+rPMB8GA1UdIwQY MBaAFGHGgmh0PoI+DhyHAGDAoUIj8VHrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWWNhQ2FIUS1najRPSEljQVlNQ2hRaVB4VWVzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi82MjY0MWMtMzQ0NC00NDI1LWJmNTEt NmQwNWMwZDBkYTZmLzEvWWNhQ2FIUS1najRPSEljQVlNQ2hRaVB4VWVzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZi82MjY0MWMtMzQ0NC00NDI1LWJmNTEtNmQwNWMwZDBkYTZm LzEvWWNhQ2FIUS1najRPSEljQVlNQ2hRaVB4VWVzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlnAZ9oAC vKFtWRmq3qGzducJJZDtrsRT9Rp8+m3xzk9UO+W4onJMhc1DAFcTDGoHGWh2AQ5C pHGjez+lQFwFMzkspS2kIHEYEZLMeOzaXRBM1fFSrrO5f/tUuMarIGEAmq/vojTL jzcIAQ0ampdgvx3lvYbgGMMdIAxzEZPgRNGcne4R9xlLc4+lSwLSGM7cawJUeLn+ QJuhmmEQYCHrI5DTm9gpqEmwx0ZCfVPLo9yCB0eOJvQUoJh9GAN03GzZ4O26DnuG Pln3xzfowisxolBYzBc4yc2Tl+CIxLu6cNUWwap/4C/yLpXyR4NilJd0+U9e5163 t+NAy0LzWF4fag== -----END CERTIFICATE-----Generated at Sun Jan 11 23:57:31 2026 by rpki-client