This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/75dede-5449-4d47-9b51-9b5df85c1140/1/sxk4vHICgkRLq9OyazSStFats5c.mft File: sxk4vHICgkRLq9OyazSStFats5c.mft (raw, json) Hash identifier: zCl7V56ewJPBzNT8wqEVZ6M4iNG8sHuwH7Gssvut7Rs= Subject key identifier: 6C:CF:75:71:E5:4A:D2:40:2A:89:E4:9E:75:90:DB:90:62:25:E0:35 Authority key identifier: B3:19:38:BC:72:02:82:44:4B:AB:D3:B2:6B:34:92:B4:56:AD:B3:97 Certificate issuer: /CN=b31938bc720282444babd3b26b3492b456adb397 Certificate serial: 019BF79AA27EE222E877600CE55768794764 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sxk4vHICgkRLq9OyazSStFats5c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/75dede-5449-4d47-9b51-9b5df85c1140/1/sxk4vHICgkRLq9OyazSStFats5c.mft Manifest number: 0B08 Signing time: Mon 26 Jan 2026 00:01:04 +0000 Manifest this update: Mon 26 Jan 2026 00:01:04 +0000 Manifest next update: Tue 27 Jan 2026 00:01:04 +0000 Files and hashes: 1: eaw_KDLii_O0OZBia4ceyJvvRgg.roa (hash: 785x1F9Iz8gQQoHICXoHX9Lh+Vh5PnxM3BQ0Ya5+hPc=) 2: sxk4vHICgkRLq9OyazSStFats5c.crl (hash: pDJwZU4S3srtr9PSS2y8FjC3HsmpHzvGR9W2ZjsbdmA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/75dede-5449-4d47-9b51-9b5df85c1140/1/sxk4vHICgkRLq9OyazSStFats5c.crl rsync://rpki.ripe.net/repository/DEFAULT/08/75dede-5449-4d47-9b51-9b5df85c1140/1/sxk4vHICgkRLq9OyazSStFats5c.mft rsync://rpki.ripe.net/repository/DEFAULT/sxk4vHICgkRLq9OyazSStFats5c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f7:9a:a2:7e:e2:22:e8:77:60:0c:e5:57:68:79:47:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b31938bc720282444babd3b26b3492b456adb397 Validity Not Before: Jan 26 00:01:04 2026 GMT Not After : Jan 27 00:01:04 2026 GMT Subject: CN=6ccf7571e54ad2402a89e49e7590db906225e035 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:07:a6:f0:be:98:bd:e2:62:17:be:40:32:1d: 4b:eb:82:32:5e:de:83:f4:06:06:1c:22:5f:07:15: b1:79:f0:31:66:0e:45:cc:42:38:e8:aa:5e:dc:25: 56:80:88:ea:67:46:d9:33:22:2f:15:f6:f3:a6:c7: b7:c9:80:52:e2:8f:9f:60:41:96:57:37:43:6a:92: 87:b6:bb:5b:00:bc:30:11:f6:b2:3d:d0:95:1e:56: b3:25:63:8a:d1:21:c9:bc:37:84:10:e0:88:6a:6e: 67:91:46:c0:f4:1e:f6:91:7f:da:26:81:3c:76:74: db:47:08:c6:80:98:e7:fd:43:d2:84:50:f9:8e:c8: 22:46:82:ef:f0:38:1b:de:b9:5d:15:08:4f:7d:74: 20:17:61:f9:86:68:52:ba:ca:bb:a6:65:33:9f:07: 13:bd:d7:8f:34:23:26:a1:8b:93:9d:9b:24:5e:fe: c1:80:44:02:a0:77:06:12:84:d9:53:e3:b8:1b:ee: da:3b:01:eb:53:38:81:94:b1:e4:14:45:97:21:23: 2e:e5:3a:18:a8:c8:e0:d1:00:5a:4d:d0:79:bc:01: a8:98:a5:a9:cc:2b:da:23:43:dd:0b:04:6e:87:8d: a8:5f:22:b2:d4:6e:4a:dc:24:17:ef:5e:19:76:b0: ad:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:CF:75:71:E5:4A:D2:40:2A:89:E4:9E:75:90:DB:90:62:25:E0:35 X509v3 Authority Key Identifier: keyid:B3:19:38:BC:72:02:82:44:4B:AB:D3:B2:6B:34:92:B4:56:AD:B3:97 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sxk4vHICgkRLq9OyazSStFats5c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/75dede-5449-4d47-9b51-9b5df85c1140/1/sxk4vHICgkRLq9OyazSStFats5c.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/08/75dede-5449-4d47-9b51-9b5df85c1140/1/sxk4vHICgkRLq9OyazSStFats5c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 11:0c:f5:a0:67:cd:9a:77:4c:a8:97:c8:c2:b1:6a:d2:05:4e: 81:38:a1:a0:75:c3:61:4c:8b:72:f6:03:f1:a6:88:fb:79:18: 57:3c:59:48:8a:26:00:d2:6e:19:b7:83:fa:6a:2c:cb:47:3c: fb:2c:ff:4f:00:3e:2b:44:e6:34:95:dd:9d:53:88:4c:4d:2b: 3d:48:58:2b:7f:bc:93:6c:6f:0e:33:15:9c:ba:61:b8:02:2b: a7:1c:81:06:84:23:33:04:6d:26:78:25:1e:19:9c:24:c9:9c: 8a:2f:22:11:59:67:49:f1:f3:e5:c5:79:26:a5:48:cf:24:17: b6:37:10:97:8f:49:68:99:9a:b5:3c:ee:25:8f:ad:d9:5b:37: 15:66:fd:d8:a2:18:f6:7b:70:a2:ee:f4:e2:b0:d6:ee:0a:50: 5e:c7:91:95:30:bb:b1:7c:1b:9c:8d:a3:9f:46:41:2a:c4:51: 80:99:b9:09:6e:23:6b:e7:b0:3a:0e:c8:c9:e8:01:11:28:f5: ab:6a:5c:aa:4e:3a:84:26:e5:66:82:0e:d2:d4:af:53:56:6a: ff:38:c3:19:1b:26:a5:c8:bd:f1:7b:2a:eb:7f:e7:81:80:be: 5e:bc:33:39:90:82:b6:67:8c:eb:0a:7b:49:0b:bc:c1:b6:a9: ca:b3:fb:58 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv3mqJ+4iLod2AM5VdoeUdkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIzMTkzOGJjNzIwMjgyNDQ0YmFiZDNiMjZiMzQ5MmI0NTZh ZGIzOTcwHhcNMjYwMTI2MDAwMTA0WhcNMjYwMTI3MDAwMTA0WjAzMTEwLwYDVQQD Eyg2Y2NmNzU3MWU1NGFkMjQwMmE4OWU0OWU3NTkwZGI5MDYyMjVlMDM1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0Qem8L6YveJiF75AMh1L64IyXt6D 9AYGHCJfBxWxefAxZg5FzEI46Kpe3CVWgIjqZ0bZMyIvFfbzpse3yYBS4o+fYEGW VzdDapKHtrtbALwwEfayPdCVHlazJWOK0SHJvDeEEOCIam5nkUbA9B72kX/aJoE8 dnTbRwjGgJjn/UPShFD5jsgiRoLv8Dgb3rldFQhPfXQgF2H5hmhSusq7pmUznwcT vdePNCMmoYuTnZskXv7BgEQCoHcGEoTZU+O4G+7aOwHrUziBlLHkFEWXISMu5ToY qMjg0QBaTdB5vAGomKWpzCvaI0PdCwRuh42oXyKy1G5K3CQX714ZdrCtFQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGzPdXHlStJAKonknnWQ25BiJeA1MB8GA1UdIwQY MBaAFLMZOLxyAoJES6vTsms0krRWrbOXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc3hrNHZISUNna1JMcTlPeWF6U1N0RmF0czVjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOC83NWRlZGUtNTQ0OS00ZDQ3LTliNTEt OWI1ZGY4NWMxMTQwLzEvc3hrNHZISUNna1JMcTlPeWF6U1N0RmF0czVjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wOC83NWRlZGUtNTQ0OS00ZDQ3LTliNTEtOWI1ZGY4NWMxMTQw LzEvc3hrNHZISUNna1JMcTlPeWF6U1N0RmF0czVjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEQz1oGfN mndMqJfIwrFq0gVOgTihoHXDYUyLcvYD8aaI+3kYVzxZSIomANJuGbeD+mosy0c8 +yz/TwA+K0TmNJXdnVOITE0rPUhYK3+8k2xvDjMVnLphuAIrpxyBBoQjMwRtJngl HhmcJMmcii8iEVlnSfHz5cV5JqVIzyQXtjcQl49JaJmatTzuJY+t2Vs3FWb92KIY 9ntwou704rDW7gpQXseRlTC7sXwbnI2jn0ZBKsRRgJm5CW4ja+ewOg7IyegBESj1 q2pcqk46hCblZoIO0tSvU1Zq/zjDGRsmpci98Xsq63/ngYC+XrwzOZCCtmeM6wp7 SQu8wbapyrP7WA== -----END CERTIFICATE-----Generated at Mon Jan 26 07:46:55 2026 by rpki-client