This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/627e60-00a6-4d26-b93a-ef73b7b4ca3c/1/ubNQoK4y5z5mDEFsPxQG7dNhX4I.mft File: ubNQoK4y5z5mDEFsPxQG7dNhX4I.mft (raw, json) Hash identifier: b4nhwgANsnqm/Y1XnQKTGV+HZVqW2LfbUShAPUn6bpo= Subject key identifier: 67:D6:B1:AC:54:67:5F:B3:42:5F:1C:32:5E:DB:92:C2:FE:89:C6:2F Authority key identifier: B9:B3:50:A0:AE:32:E7:3E:66:0C:41:6C:3F:14:06:ED:D3:61:5F:82 Certificate issuer: /CN=b9b350a0ae32e73e660c416c3f1406edd3615f82 Certificate serial: 019BF53EA3E89392945F1DE724010BE1EAB3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ubNQoK4y5z5mDEFsPxQG7dNhX4I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/627e60-00a6-4d26-b93a-ef73b7b4ca3c/1/ubNQoK4y5z5mDEFsPxQG7dNhX4I.mft Manifest number: 17EA Signing time: Sun 25 Jan 2026 13:01:21 +0000 Manifest this update: Sun 25 Jan 2026 13:01:21 +0000 Manifest next update: Mon 26 Jan 2026 13:01:21 +0000 Files and hashes: 1: 0Td6CpG-ym_-K5b4WeUNjXePjUc.roa (hash: 8r4ggp6PxqO1ZrZZe1PjZkrnXadGZdj4c8IAkyVPoI8=) 2: UV5sC4K1_1F-z4dW9PMgPKHi4iw.roa (hash: 1nK47WRZwAvKB9ouMkN1V/iLxMpccr6CTRWd93nbh9I=) 3: VI02z2FHl_uy1YfJADZkMaattiI.roa (hash: iGaV6V98vbELrIXxsPeIiB2rSTsDaubi3a7rszzR+rI=) 4: kq1xYxFloxajo4ocaHFVoXWbLDY.roa (hash: 5lt2etlP+aPgpUw9DddCPVJWXAZYWqwLCkqKVkNEao4=) 5: rnJIlbs2iVDtWflxRJ2ZBYeF__I.roa (hash: YKlhZLI+VkzsmAVmF0CZzBKBT9NCGEV+DX5m19LqsF4=) 6: ubNQoK4y5z5mDEFsPxQG7dNhX4I.crl (hash: 0W919aoA6A1ct8AiwmyrCHpRnhydA5LzFZl21qx+0cg=) 7: xywtwPVtKI2c3GfGQ6zEtHEmcuk.roa (hash: rjSOo1Wse8hlTDW23Au03BF12xwjNXnRbuXo4liko2I=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/627e60-00a6-4d26-b93a-ef73b7b4ca3c/1/ubNQoK4y5z5mDEFsPxQG7dNhX4I.crl rsync://rpki.ripe.net/repository/DEFAULT/01/627e60-00a6-4d26-b93a-ef73b7b4ca3c/1/ubNQoK4y5z5mDEFsPxQG7dNhX4I.mft rsync://rpki.ripe.net/repository/DEFAULT/ubNQoK4y5z5mDEFsPxQG7dNhX4I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f5:3e:a3:e8:93:92:94:5f:1d:e7:24:01:0b:e1:ea:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b9b350a0ae32e73e660c416c3f1406edd3615f82 Validity Not Before: Jan 25 13:01:21 2026 GMT Not After : Jan 26 13:01:21 2026 GMT Subject: CN=67d6b1ac54675fb3425f1c325edb92c2fe89c62f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:78:c7:29:fe:a5:ed:7e:2b:e6:7a:16:5b:24: 11:c8:fb:30:7e:d6:26:09:a7:fe:19:af:8f:fb:3e: df:f0:6d:d9:73:3e:1d:ac:a6:d5:2b:c3:d5:fc:2f: 9f:29:fb:6e:af:93:89:f4:ff:ca:39:c9:9f:19:81: 91:8b:8f:d9:98:e5:65:52:c1:38:34:95:7a:f3:a0: 02:86:d1:01:55:f0:3e:ca:c9:f9:ea:0c:eb:90:eb: 7a:a7:3f:fb:db:8e:30:7c:a2:d9:c4:b2:f6:34:a7: 0a:91:75:95:a6:9e:16:ed:31:64:f9:39:f2:0a:26: 97:07:9d:11:8b:5d:ac:62:ab:20:7d:51:1b:17:b2: d4:b6:d5:21:f5:44:a2:01:c5:7c:2e:af:7f:4f:1e: bb:b9:67:c7:b8:6f:dd:67:4c:66:cb:93:2c:12:54: 9c:9b:dd:ec:b0:8c:ac:56:4c:dd:cc:dd:fe:58:60: 51:ce:e7:0f:f4:5a:84:f6:30:bd:19:7c:60:3c:5f: c6:ee:de:6f:d5:72:ce:45:2a:71:5d:d7:b6:09:39: 43:19:31:4b:d7:7d:1a:ee:17:04:01:4c:d2:af:95: 60:e2:e0:29:f0:d0:a9:ce:7a:31:96:0a:a1:81:a5: d0:8c:8d:cd:9b:6d:bc:ca:be:23:4b:09:1f:a7:ad: e5:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:D6:B1:AC:54:67:5F:B3:42:5F:1C:32:5E:DB:92:C2:FE:89:C6:2F X509v3 Authority Key Identifier: keyid:B9:B3:50:A0:AE:32:E7:3E:66:0C:41:6C:3F:14:06:ED:D3:61:5F:82 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ubNQoK4y5z5mDEFsPxQG7dNhX4I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/627e60-00a6-4d26-b93a-ef73b7b4ca3c/1/ubNQoK4y5z5mDEFsPxQG7dNhX4I.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/01/627e60-00a6-4d26-b93a-ef73b7b4ca3c/1/ubNQoK4y5z5mDEFsPxQG7dNhX4I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 21:4a:63:f5:d7:50:3c:9a:5c:c6:16:f6:a8:2f:ab:c1:fe:05: 0b:79:21:98:d2:af:f0:05:de:ba:13:32:94:81:d7:da:6f:54: 0f:2a:77:ab:c0:9f:ca:26:a9:0f:26:25:15:a5:ea:4e:7c:a7: 30:c0:fc:1a:68:7f:72:3f:8c:ce:9b:2b:25:20:09:b7:81:0d: 88:66:cf:82:7a:1c:eb:a9:34:7a:06:d7:28:73:81:7d:12:f7: 29:a0:71:7b:37:25:74:54:58:f8:0a:fd:10:ad:46:56:87:c2: f3:fc:0d:18:69:4d:5f:01:a1:81:11:a4:f6:e0:ff:53:d1:fc: bf:5d:24:67:3d:56:58:1a:9c:6a:f6:9a:df:0f:49:c7:9f:c5: bc:9e:c9:3a:0b:b7:42:08:f4:98:0c:a6:53:17:af:4d:44:c1: 08:e6:0c:71:e9:c8:6b:d1:b1:02:d5:bb:37:77:96:53:74:d2: 58:a0:69:b6:5c:b8:ea:50:72:af:61:3f:34:22:42:5f:b3:a7: 26:cc:95:ef:81:b0:15:61:71:73:40:73:8f:a4:45:87:f5:75: 6b:b0:4f:29:a8:6b:b4:84:53:63:94:72:32:a0:89:05:4c:dc: a7:07:2f:69:04:81:16:4b:a2:f6:2d:87:73:68:bf:8e:81:c4: 99:81:b9:20 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv1PqPok5KUXx3nJAEL4eqzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI5YjM1MGEwYWUzMmU3M2U2NjBjNDE2YzNmMTQwNmVkZDM2 MTVmODIwHhcNMjYwMTI1MTMwMTIxWhcNMjYwMTI2MTMwMTIxWjAzMTEwLwYDVQQD Eyg2N2Q2YjFhYzU0Njc1ZmIzNDI1ZjFjMzI1ZWRiOTJjMmZlODljNjJmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArHjHKf6l7X4r5noWWyQRyPswftYm Caf+Ga+P+z7f8G3Zcz4drKbVK8PV/C+fKftur5OJ9P/KOcmfGYGRi4/ZmOVlUsE4 NJV686AChtEBVfA+ysn56gzrkOt6pz/7244wfKLZxLL2NKcKkXWVpp4W7TFk+Tny CiaXB50Ri12sYqsgfVEbF7LUttUh9USiAcV8Lq9/Tx67uWfHuG/dZ0xmy5MsElSc m93ssIysVkzdzN3+WGBRzucP9FqE9jC9GXxgPF/G7t5v1XLORSpxXde2CTlDGTFL 130a7hcEAUzSr5Vg4uAp8NCpznoxlgqhgaXQjI3Nm228yr4jSwkfp63lYQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGfWsaxUZ1+zQl8cMl7bksL+icYvMB8GA1UdIwQY MBaAFLmzUKCuMuc+ZgxBbD8UBu3TYV+CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdWJOUW9LNHk1ejVtREVGc1B4UUc3ZE5oWDRJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMS82MjdlNjAtMDBhNi00ZDI2LWI5M2Et ZWY3M2I3YjRjYTNjLzEvdWJOUW9LNHk1ejVtREVGc1B4UUc3ZE5oWDRJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMS82MjdlNjAtMDBhNi00ZDI2LWI5M2EtZWY3M2I3YjRjYTNj LzEvdWJOUW9LNHk1ejVtREVGc1B4UUc3ZE5oWDRJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIUpj9ddQ PJpcxhb2qC+rwf4FC3khmNKv8AXeuhMylIHX2m9UDyp3q8CfyiapDyYlFaXqTnyn MMD8Gmh/cj+MzpsrJSAJt4ENiGbPgnoc66k0egbXKHOBfRL3KaBxezcldFRY+Ar9 EK1GVofC8/wNGGlNXwGhgRGk9uD/U9H8v10kZz1WWBqcavaa3w9Jx5/FvJ7JOgu3 Qgj0mAymUxevTUTBCOYMcenIa9GxAtW7N3eWU3TSWKBptly46lByr2E/NCJCX7On JsyV74GwFWFxc0Bzj6RFh/V1a7BPKahrtIRTY5RyMqCJBUzcpwcvaQSBFkui9i2H c2i/joHEmYG5IA== -----END CERTIFICATE-----Generated at Sun Jan 25 17:36:45 2026 by rpki-client