This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/ea6f61-a9d2-4c6b-b717-1db4ed131bc3/1/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.mft File: lRu0kOCd8UZ-TuxD2PIEhM7oOf4.mft (raw, json) Hash identifier: TmciL3olWLnruFelUWqFKUdMqzuM5XqIfHmMsLScd3E= Subject key identifier: 80:89:5F:34:C4:1B:B0:AB:07:35:A2:22:4B:B0:E9:09:F2:FF:49:17 Authority key identifier: 95:1B:B4:90:E0:9D:F1:46:7E:4E:EC:43:D8:F2:04:84:CE:E8:39:FE Certificate issuer: /CN=951bb490e09df1467e4eec43d8f20484cee839fe Certificate serial: 019BF3BE117350D523A01749F4BA5FBCF48E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/ea6f61-a9d2-4c6b-b717-1db4ed131bc3/1/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.mft Manifest number: 0C69 Signing time: Sun 25 Jan 2026 06:01:18 +0000 Manifest this update: Sun 25 Jan 2026 06:01:18 +0000 Manifest next update: Mon 26 Jan 2026 06:01:18 +0000 Files and hashes: 1: kE66fhDE4xBKZgP00aDSZ5wUo8Q.roa (hash: Xz3m7rpESDDSay6iugLcdgSAsdxY3IOPYIq5I7x/X5M=) 2: lRu0kOCd8UZ-TuxD2PIEhM7oOf4.crl (hash: OsqhZsSb0eyF04oLHWgPa7sv/78eWF1IcrK5oBDmXeQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/ea6f61-a9d2-4c6b-b717-1db4ed131bc3/1/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.crl rsync://rpki.ripe.net/repository/DEFAULT/09/ea6f61-a9d2-4c6b-b717-1db4ed131bc3/1/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.mft rsync://rpki.ripe.net/repository/DEFAULT/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 23:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f3:be:11:73:50:d5:23:a0:17:49:f4:ba:5f:bc:f4:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=951bb490e09df1467e4eec43d8f20484cee839fe Validity Not Before: Jan 25 06:01:18 2026 GMT Not After : Jan 26 06:01:18 2026 GMT Subject: CN=80895f34c41bb0ab0735a2224bb0e909f2ff4917 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:86:ad:39:7f:e1:c8:d3:59:4c:10:5f:af:b5: 31:0b:03:4e:08:e5:35:b8:7d:d9:fe:2f:ac:97:4b: 75:dc:3f:76:a7:d2:7a:84:a7:c9:43:d3:10:31:6a: ae:5b:6a:53:94:cb:a9:53:34:15:b3:eb:8d:f8:75: df:8c:0c:b4:1f:b5:be:c0:79:92:9c:34:7b:e1:39: b3:b6:7d:d0:fd:f0:3f:2c:63:ed:ed:a0:5b:b9:35: fc:21:2a:71:01:07:da:8e:ae:1d:82:b6:f6:02:34: f0:5f:9f:15:7b:06:a6:8b:6c:94:b1:5f:64:52:bf: 86:7a:13:79:80:80:14:35:d7:cb:e1:1b:60:51:ac: 66:c3:a2:65:0a:0a:e5:78:db:d3:f2:f4:ed:b0:b8: e3:6f:0b:cf:15:36:3f:86:db:9a:74:e4:5f:e9:04: ce:f0:e9:f0:89:f4:c7:66:c2:d2:d3:6d:f2:9a:a3: 88:11:c4:01:07:da:ac:e2:e2:48:8c:21:fb:98:8b: 4c:4f:a6:c8:bc:2a:15:ea:90:74:e1:8b:d8:a1:d1: 8b:15:2d:18:68:3a:14:ec:16:e7:a1:40:8f:b5:2d: b6:63:64:fc:31:81:1f:1e:63:24:f7:c9:57:88:03: 22:c0:a2:63:b6:33:8b:6e:91:b8:05:83:97:97:cc: d9:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:89:5F:34:C4:1B:B0:AB:07:35:A2:22:4B:B0:E9:09:F2:FF:49:17 X509v3 Authority Key Identifier: keyid:95:1B:B4:90:E0:9D:F1:46:7E:4E:EC:43:D8:F2:04:84:CE:E8:39:FE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/ea6f61-a9d2-4c6b-b717-1db4ed131bc3/1/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/09/ea6f61-a9d2-4c6b-b717-1db4ed131bc3/1/lRu0kOCd8UZ-TuxD2PIEhM7oOf4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6a:34:a5:e3:78:44:5f:6a:4c:8e:e2:f6:d1:20:ee:91:ae:ee: d9:35:79:5b:89:dd:a4:ed:44:ea:8e:1b:24:97:9c:13:e5:b5: ba:08:c7:d5:f3:83:8f:8b:e6:76:bd:3e:16:37:fd:97:7b:75: 3e:6a:a0:59:86:32:80:1a:d5:62:ef:6d:bb:b8:ff:ba:9d:af: a2:62:db:6e:4a:66:8e:7c:f5:d2:5f:b7:70:55:66:32:91:e5: 78:49:49:8b:f7:f4:40:35:7a:b4:1d:f2:04:56:02:11:9c:97: 1a:7b:44:90:4e:36:b1:2e:57:e1:a4:7e:59:7a:f7:f5:54:5d: 07:e5:4b:79:a4:b0:74:c6:53:06:3e:d3:80:e6:4d:3f:fc:59: ea:6f:6c:da:26:6c:f2:c0:42:55:42:e0:52:59:df:64:9f:55: b8:55:fd:c2:0f:6c:c2:19:f7:c7:df:f6:dc:dc:5b:d9:09:50: 16:5b:36:a6:82:39:76:cd:ef:11:23:a1:5a:ae:10:02:e7:f5: 73:c2:f1:6e:7e:70:7c:80:e4:54:fc:41:46:51:03:26:b9:00: 23:92:59:a2:f9:3e:68:f8:36:1f:34:36:03:a3:89:04:d7:ee: 31:7b:f2:67:7b:83:6e:c7:33:c0:d2:e8:bb:55:9f:f8:07:3f: 23:18:c3:c5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZvzvhFzUNUjoBdJ9LpfvPSOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk1MWJiNDkwZTA5ZGYxNDY3ZTRlZWM0M2Q4ZjIwNDg0Y2Vl ODM5ZmUwHhcNMjYwMTI1MDYwMTE4WhcNMjYwMTI2MDYwMTE4WjAzMTEwLwYDVQQD Eyg4MDg5NWYzNGM0MWJiMGFiMDczNWEyMjI0YmIwZTkwOWYyZmY0OTE3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz4atOX/hyNNZTBBfr7UxCwNOCOU1 uH3Z/i+sl0t13D92p9J6hKfJQ9MQMWquW2pTlMupUzQVs+uN+HXfjAy0H7W+wHmS nDR74Tmztn3Q/fA/LGPt7aBbuTX8ISpxAQfajq4dgrb2AjTwX58Vewami2yUsV9k Ur+GehN5gIAUNdfL4RtgUaxmw6JlCgrleNvT8vTtsLjjbwvPFTY/htuadORf6QTO 8OnwifTHZsLS023ymqOIEcQBB9qs4uJIjCH7mItMT6bIvCoV6pB04YvYodGLFS0Y aDoU7BbnoUCPtS22Y2T8MYEfHmMk98lXiAMiwKJjtjOLbpG4BYOXl8zZgwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFICJXzTEG7CrBzWiIkuw6Qny/0kXMB8GA1UdIwQY MBaAFJUbtJDgnfFGfk7sQ9jyBITO6Dn+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbFJ1MGtPQ2Q4VVotVHV4RDJQSUVoTTdvT2Y0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS9lYTZmNjEtYTlkMi00YzZiLWI3MTct MWRiNGVkMTMxYmMzLzEvbFJ1MGtPQ2Q4VVotVHV4RDJQSUVoTTdvT2Y0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wOS9lYTZmNjEtYTlkMi00YzZiLWI3MTctMWRiNGVkMTMxYmMz LzEvbFJ1MGtPQ2Q4VVotVHV4RDJQSUVoTTdvT2Y0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAajSl43hE X2pMjuL20SDuka7u2TV5W4ndpO1E6o4bJJecE+W1ugjH1fODj4vmdr0+Fjf9l3t1 PmqgWYYygBrVYu9tu7j/up2vomLbbkpmjnz10l+3cFVmMpHleElJi/f0QDV6tB3y BFYCEZyXGntEkE42sS5X4aR+WXr39VRdB+VLeaSwdMZTBj7TgOZNP/xZ6m9s2iZs 8sBCVULgUlnfZJ9VuFX9wg9swhn3x9/23Nxb2QlQFls2poI5ds3vESOhWq4QAuf1 c8Lxbn5wfIDkVPxBRlEDJrkAI5JZovk+aPg2HzQ2A6OJBNfuMXvyZ3uDbsczwNLo u1Wf+Ac/IxjDxQ== -----END CERTIFICATE-----Generated at Sun Jan 25 10:44:48 2026 by rpki-client