This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.mft File: KZkwB8fJLfYXjny0MYP9f1KlJtg.mft (raw, json) Hash identifier: OnaYFzaFjXrWvFQmRzCrwWGNhrVPXgD9aQDXahjs5p4= Subject key identifier: 36:78:E4:EB:20:6C:17:89:E9:02:80:3E:8E:61:A9:2F:E2:FE:34:99 Authority key identifier: 29:99:30:07:C7:C9:2D:F6:17:8E:7C:B4:31:83:FD:7F:52:A5:26:D8 Certificate issuer: /CN=29993007c7c92df6178e7cb43183fd7f52a526d8 Certificate serial: 019BF5E3D42E0764F6BCE99260E45FDE1F2B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KZkwB8fJLfYXjny0MYP9f1KlJtg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.mft Manifest number: 0597 Signing time: Sun 25 Jan 2026 16:01:47 +0000 Manifest this update: Sun 25 Jan 2026 16:01:47 +0000 Manifest next update: Mon 26 Jan 2026 16:01:47 +0000 Files and hashes: 1: 7f4UvQlMdpfAbI5t8bFTk5iRj8k.roa (hash: /N2n+SGiRBz3V3eyWEIptUhy7tOM9oDQMEZwfy867yE=) 2: CGspQAEXscYtnhUkcO43B4rOMYI.roa (hash: ZmpcN0BqbrZBIrGn5PsZ/DSc38P9usOvQmrKlG150S0=) 3: JdmDASsiVF3OIVzqa3C7Cim1k98.roa (hash: nFwnLYcc5xw59Kim5t3Ysus4IUlGUDLjCzJ6lO8Sg5o=) 4: KZkwB8fJLfYXjny0MYP9f1KlJtg.crl (hash: gOv0/qdG641cg9SYOb/fLgCOTgfBxdc/vmfkJDZzBzw=) 5: c_SCSSOMfndQeyUkFaC27pfW1mU.roa (hash: uAY189SdMJyDwdqEHdr62YdMVXHkgzdNjAsXqKard7o=) 6: zq_9_kcYqu3vefIRsvfC8bPWQ-g.roa (hash: QDKMvUQqB0HqtMyuZtPJ5BCeeeIwdd+NrKPpEKtzi6U=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.crl rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.mft rsync://rpki.ripe.net/repository/DEFAULT/KZkwB8fJLfYXjny0MYP9f1KlJtg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f5:e3:d4:2e:07:64:f6:bc:e9:92:60:e4:5f:de:1f:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29993007c7c92df6178e7cb43183fd7f52a526d8 Validity Not Before: Jan 25 16:01:47 2026 GMT Not After : Jan 26 16:01:47 2026 GMT Subject: CN=3678e4eb206c1789e902803e8e61a92fe2fe3499 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:ac:67:3e:fd:83:3c:3f:41:e4:77:eb:72:b3: e0:df:24:25:50:4a:3b:0b:09:66:21:08:53:41:e3: 3b:02:19:75:fc:f7:8e:96:6e:f6:06:d0:ef:60:e4: 97:7d:68:81:96:8e:a7:13:6d:c1:d8:38:a1:49:aa: 1b:54:b5:c6:c1:20:27:e5:e2:43:49:12:c1:1a:59: e0:ac:3c:bc:e4:5a:b9:11:3a:79:77:35:b1:46:f2: 70:d2:45:d9:5b:3f:d0:50:ba:e4:4f:3d:de:01:ef: 6a:08:0c:9d:2b:d6:0a:91:1a:6f:b2:5b:24:1a:60: e9:80:3f:41:28:61:ac:30:d6:b5:1a:ab:e3:3e:91: f9:d3:5a:ac:c2:d9:ce:f3:5d:30:1f:28:61:e3:16: 89:8c:1c:03:cb:63:be:74:0b:7f:9d:54:cc:3f:e5: d0:5a:42:e1:80:2d:8b:92:48:86:2e:eb:35:02:81: 2a:99:e6:a6:26:a0:31:c0:ee:c8:4b:60:b8:5e:ec: e7:d8:4c:81:3c:1d:b1:7e:67:9e:0c:75:e0:26:36: 3d:61:29:ff:e9:8e:23:4a:70:84:69:ea:ea:64:92: 34:9e:5e:80:a2:20:4b:3a:99:5a:be:a9:fe:6a:d3: 00:9f:6a:f6:2d:33:dc:f7:82:52:ab:a7:ce:f9:4d: 1c:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:78:E4:EB:20:6C:17:89:E9:02:80:3E:8E:61:A9:2F:E2:FE:34:99 X509v3 Authority Key Identifier: keyid:29:99:30:07:C7:C9:2D:F6:17:8E:7C:B4:31:83:FD:7F:52:A5:26:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KZkwB8fJLfYXjny0MYP9f1KlJtg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4e:ff:6e:78:be:13:81:65:eb:46:fe:71:e6:1b:cd:6b:24:30: e6:4c:e1:d8:4f:68:04:e9:6a:d4:c1:b0:b2:ac:b3:d2:69:39: a3:a6:2a:bb:d2:46:72:fd:ed:a6:a1:69:88:d8:27:11:a1:71: 8c:30:30:7e:b2:8f:95:63:94:1c:00:b2:76:ee:7a:a3:c7:05: 68:cd:e7:ad:82:6f:01:8f:3e:42:eb:ac:6b:31:da:f6:75:6a: 51:04:f1:1f:8e:f4:7c:97:bc:6b:ba:62:c2:c0:cd:04:e1:f8: b5:32:1d:b2:71:a1:40:1f:56:08:1c:fc:a7:e5:18:ad:6d:eb: 35:f7:05:6c:a4:90:aa:57:9e:90:13:ab:86:4d:d4:13:77:89: 49:e5:98:12:30:1b:93:d7:33:a9:5e:0d:72:ef:21:6b:8a:68: df:c0:58:6d:b8:85:64:c5:ef:9c:b1:b8:3a:22:f7:0e:bd:1e: fb:a3:2b:c2:51:35:d5:5e:7d:13:87:aa:77:0d:95:6c:2c:5e: ef:5e:2c:e2:68:19:31:8c:1a:2f:51:54:d4:cf:01:eb:4e:ed: 57:03:a8:c3:1e:0b:20:a2:ce:8a:e6:55:fd:23:69:cc:36:f3: dc:37:01:36:76:82:37:61:e7:68:e9:34:72:d5:08:f3:ab:81: 7f:84:c1:15 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv149QuB2T2vOmSYORf3h8rMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5OTkzMDA3YzdjOTJkZjYxNzhlN2NiNDMxODNmZDdmNTJh NTI2ZDgwHhcNMjYwMTI1MTYwMTQ3WhcNMjYwMTI2MTYwMTQ3WjAzMTEwLwYDVQQD EygzNjc4ZTRlYjIwNmMxNzg5ZTkwMjgwM2U4ZTYxYTkyZmUyZmUzNDk5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA26xnPv2DPD9B5HfrcrPg3yQlUEo7 CwlmIQhTQeM7Ahl1/PeOlm72BtDvYOSXfWiBlo6nE23B2DihSaobVLXGwSAn5eJD SRLBGlngrDy85Fq5ETp5dzWxRvJw0kXZWz/QULrkTz3eAe9qCAydK9YKkRpvslsk GmDpgD9BKGGsMNa1GqvjPpH501qswtnO810wHyhh4xaJjBwDy2O+dAt/nVTMP+XQ WkLhgC2LkkiGLus1AoEqmeamJqAxwO7IS2C4Xuzn2EyBPB2xfmeeDHXgJjY9YSn/ 6Y4jSnCEaerqZJI0nl6AoiBLOplavqn+atMAn2r2LTPc94JSq6fO+U0ctQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDZ45OsgbBeJ6QKAPo5hqS/i/jSZMB8GA1UdIwQY MBaAFCmZMAfHyS32F458tDGD/X9SpSbYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS1prd0I4ZkpMZllYam55ME1ZUDlmMUtsSnRnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS9kYzliNmYtM2E2ZC00NDlmLThiODkt MWU4MjlmZmExYzNhLzEvS1prd0I4ZkpMZllYam55ME1ZUDlmMUtsSnRnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wOS9kYzliNmYtM2E2ZC00NDlmLThiODktMWU4MjlmZmExYzNh LzEvS1prd0I4ZkpMZllYam55ME1ZUDlmMUtsSnRnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATv9ueL4T gWXrRv5x5hvNayQw5kzh2E9oBOlq1MGwsqyz0mk5o6Yqu9JGcv3tpqFpiNgnEaFx jDAwfrKPlWOUHACydu56o8cFaM3nrYJvAY8+QuusazHa9nVqUQTxH470fJe8a7pi wsDNBOH4tTIdsnGhQB9WCBz8p+UYrW3rNfcFbKSQqleekBOrhk3UE3eJSeWYEjAb k9czqV4Ncu8ha4po38BYbbiFZMXvnLG4OiL3Dr0e+6MrwlE11V59E4eqdw2VbCxe 714s4mgZMYwaL1FU1M8B607tVwOowx4LIKLOiuZV/SNpzDbz3DcBNnaCN2HnaOk0 ctUI86uBf4TBFQ== -----END CERTIFICATE-----Generated at Sun Jan 25 19:15:05 2026 by rpki-client