This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/252761-019a-4de5-957d-c320e50a3c79/1/KvXkhmugmCASSm5REQT8QfpUGZU.mft File: KvXkhmugmCASSm5REQT8QfpUGZU.mft (raw, json) Hash identifier: GWb2be6a4bwmrFM2g1lxI8OZL4jB43BrrWkfLdLMy60= Subject key identifier: 2C:33:D6:E4:C1:19:88:02:FB:B1:14:97:ED:0F:C7:CE:C0:F5:6A:C7 Authority key identifier: 2A:F5:E4:86:6B:A0:98:20:12:4A:6E:51:11:04:FC:41:FA:54:19:95 Certificate issuer: /CN=2af5e4866ba09820124a6e511104fc41fa541995 Certificate serial: 019BF6511ED82BD35D6D6C09CFDEB5645CC6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KvXkhmugmCASSm5REQT8QfpUGZU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/252761-019a-4de5-957d-c320e50a3c79/1/KvXkhmugmCASSm5REQT8QfpUGZU.mft Manifest number: 1528 Signing time: Sun 25 Jan 2026 18:01:09 +0000 Manifest this update: Sun 25 Jan 2026 18:01:09 +0000 Manifest next update: Mon 26 Jan 2026 18:01:09 +0000 Files and hashes: 1: 1-z20vDfkn7oH-6wUhtZ7pUOpXYs.roa (hash: 4MFRLpbPJz7onF3ec6CHT+GVAOztKot1i4cNl9/RUGQ=) 2: KvXkhmugmCASSm5REQT8QfpUGZU.crl (hash: as68DxlJmdQ/YkCZXwPqBdz9FDgFRbGKQkYjWEObv/M=) 3: O21Shcq_z6RKIQVhghQ8x3iEUgo.roa (hash: PftCITy+sH9MILDPnvPA0rgTafRE24Enke6NGZ2wU40=) 4: kip9OEz8XKCqejVGiyHb4UeVJqw.roa (hash: 2JQk1BgdQDCMPFy2Bnpli4/vgD3QHxPKM4wyX0aSciw=) 5: qFN4BBxdmHy_3BcnNOupfLTZLMo.roa (hash: BnnmcXeCam4+KhT/CdouCX5HwDOQfbwphY/d8ikHz1E=) 6: uak-SP6C0SdGYf4Tcy5QLvzCEvQ.roa (hash: 5hi2l5GuzQIHHEKLjg//xukNKdrAlFGmuJKbjmJZ2aY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/252761-019a-4de5-957d-c320e50a3c79/1/KvXkhmugmCASSm5REQT8QfpUGZU.crl rsync://rpki.ripe.net/repository/DEFAULT/0b/252761-019a-4de5-957d-c320e50a3c79/1/KvXkhmugmCASSm5REQT8QfpUGZU.mft rsync://rpki.ripe.net/repository/DEFAULT/KvXkhmugmCASSm5REQT8QfpUGZU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 18:01:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f6:51:1e:d8:2b:d3:5d:6d:6c:09:cf:de:b5:64:5c:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2af5e4866ba09820124a6e511104fc41fa541995 Validity Not Before: Jan 25 18:01:09 2026 GMT Not After : Jan 26 18:01:09 2026 GMT Subject: CN=2c33d6e4c1198802fbb11497ed0fc7cec0f56ac7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:da:62:bc:e8:73:bd:df:21:ef:53:0d:b9:d5: a0:ef:c3:e5:7d:08:09:b3:08:02:bc:a9:3c:76:45: e7:c6:0c:ab:2a:1b:db:dd:ce:18:6e:f8:ff:d6:22: 8c:1e:43:9b:b1:40:a7:62:7b:4f:65:0b:ca:46:cf: 53:36:7f:39:f0:3c:07:0d:74:1e:92:3b:a6:d9:cc: 71:ef:ad:1c:eb:d3:20:40:66:fc:b6:41:31:db:30: 2c:c9:a4:d0:0d:6a:07:82:9f:42:25:2f:90:03:fd: 11:37:d8:1b:51:48:d1:43:51:3f:ea:f6:13:24:cf: 9b:6b:68:70:b7:e8:82:1b:ca:e2:e8:1a:ea:7b:4e: de:f7:a5:8f:97:3f:51:c4:72:f9:fa:9f:9c:73:09: 74:05:0a:58:aa:e6:be:d0:79:cf:97:aa:02:af:d6: a9:86:6c:27:c8:fb:88:51:04:36:05:ff:0a:13:5e: 10:28:e6:6a:4b:06:20:b8:f4:85:ee:0b:64:61:47: 51:64:b7:8f:b9:87:83:61:c2:a4:5f:f8:29:ae:40: 46:69:3a:95:39:28:b0:7c:02:bb:b5:3d:8d:ff:0c: 34:09:c7:be:47:63:4f:08:73:c5:9a:ea:e6:c0:8c: 90:d8:4f:3d:36:d8:73:26:04:1b:f1:c5:88:cc:b1: 93:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:33:D6:E4:C1:19:88:02:FB:B1:14:97:ED:0F:C7:CE:C0:F5:6A:C7 X509v3 Authority Key Identifier: keyid:2A:F5:E4:86:6B:A0:98:20:12:4A:6E:51:11:04:FC:41:FA:54:19:95 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KvXkhmugmCASSm5REQT8QfpUGZU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/252761-019a-4de5-957d-c320e50a3c79/1/KvXkhmugmCASSm5REQT8QfpUGZU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/252761-019a-4de5-957d-c320e50a3c79/1/KvXkhmugmCASSm5REQT8QfpUGZU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 61:8d:d9:5b:75:cd:7d:74:64:d1:5c:08:34:0e:3c:29:f4:39: 14:1e:a8:59:34:89:cf:df:97:6e:6c:e2:8c:84:70:e9:85:e8: f8:7b:d0:01:24:38:b4:91:63:a0:57:0d:4a:ed:ab:fe:db:7d: b3:bb:c8:20:d8:cd:4f:76:41:f1:37:6c:cf:ee:05:35:a7:ad: b1:91:5b:9d:50:bc:9a:92:c7:c3:c2:77:a8:f6:ff:b3:82:37: 3a:2f:50:bd:09:45:7a:bb:ad:0d:bd:eb:52:58:de:91:27:4e: b9:7d:39:a7:7d:a2:e1:48:86:fb:fd:ae:54:54:bd:da:70:1d: ac:0f:b0:05:09:97:3e:7b:bb:b3:4d:9d:86:70:f2:0a:60:d7: 14:62:21:e3:b0:08:1a:29:55:0c:d4:fc:c9:df:5e:5e:aa:9e: 72:24:0e:d2:95:ff:15:b4:a6:7d:b6:13:6f:59:d9:f5:f3:ac: 25:8e:90:dc:14:9f:40:7e:a5:6d:5e:f4:55:be:df:7e:b1:07: c4:de:05:b8:9a:c4:68:f7:1e:1a:6f:3d:a4:f6:e9:06:a5:54: cb:cf:a2:a3:b1:2a:a5:d4:4d:62:83:bb:c2:b5:d9:0e:ae:52: 0d:83:e5:b8:b9:67:d2:4f:2d:ea:c7:76:7c:a7:c2:d9:b2:ea: 51:f1:b5:e4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv2UR7YK9NdbWwJz961ZFzGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhZjVlNDg2NmJhMDk4MjAxMjRhNmU1MTExMDRmYzQxZmE1 NDE5OTUwHhcNMjYwMTI1MTgwMTA5WhcNMjYwMTI2MTgwMTA5WjAzMTEwLwYDVQQD EygyYzMzZDZlNGMxMTk4ODAyZmJiMTE0OTdlZDBmYzdjZWMwZjU2YWM3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlNpivOhzvd8h71MNudWg78PlfQgJ swgCvKk8dkXnxgyrKhvb3c4Ybvj/1iKMHkObsUCnYntPZQvKRs9TNn858DwHDXQe kjum2cxx760c69MgQGb8tkEx2zAsyaTQDWoHgp9CJS+QA/0RN9gbUUjRQ1E/6vYT JM+ba2hwt+iCG8ri6Brqe07e96WPlz9RxHL5+p+ccwl0BQpYqua+0HnPl6oCr9ap hmwnyPuIUQQ2Bf8KE14QKOZqSwYguPSF7gtkYUdRZLePuYeDYcKkX/gprkBGaTqV OSiwfAK7tT2N/ww0Cce+R2NPCHPFmurmwIyQ2E89NthzJgQb8cWIzLGTPwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCwz1uTBGYgC+7EUl+0Px87A9WrHMB8GA1UdIwQY MBaAFCr15IZroJggEkpuUREE/EH6VBmVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS3ZYa2htdWdtQ0FTU201UkVRVDhRZnBVR1pVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi8yNTI3NjEtMDE5YS00ZGU1LTk1N2Qt YzMyMGU1MGEzYzc5LzEvS3ZYa2htdWdtQ0FTU201UkVRVDhRZnBVR1pVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYi8yNTI3NjEtMDE5YS00ZGU1LTk1N2QtYzMyMGU1MGEzYzc5 LzEvS3ZYa2htdWdtQ0FTU201UkVRVDhRZnBVR1pVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYY3ZW3XN fXRk0VwINA48KfQ5FB6oWTSJz9+XbmzijIRw6YXo+HvQASQ4tJFjoFcNSu2r/tt9 s7vIINjNT3ZB8Tdsz+4FNaetsZFbnVC8mpLHw8J3qPb/s4I3Oi9QvQlFerutDb3r UljekSdOuX05p32i4UiG+/2uVFS92nAdrA+wBQmXPnu7s02dhnDyCmDXFGIh47AI GilVDNT8yd9eXqqeciQO0pX/FbSmfbYTb1nZ9fOsJY6Q3BSfQH6lbV70Vb7ffrEH xN4FuJrEaPceGm89pPbpBqVUy8+io7EqpdRNYoO7wrXZDq5SDYPluLln0k8t6sd2 fKfC2bLqUfG15A== -----END CERTIFICATE-----Generated at Mon Jan 26 03:59:53 2026 by rpki-client