This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/a3735a-eccc-41d7-b723-e01237b5fc10/1/UFzWGp9t6drMDTySFwbffVCvvW8.mft File: UFzWGp9t6drMDTySFwbffVCvvW8.mft (raw, json) Hash identifier: PK+1pgN9c2uy0K59uH0IcAtQWCuE4Ug+QgsgneZJQwY= Subject key identifier: 2F:64:FC:0E:7C:6F:6C:14:3E:47:04:0D:D0:A7:F8:DC:0E:1A:4E:6B Authority key identifier: 50:5C:D6:1A:9F:6D:E9:DA:CC:0D:3C:92:17:06:DF:7D:50:AF:BD:6F Certificate issuer: /CN=505cd61a9f6de9dacc0d3c921706df7d50afbd6f Certificate serial: 019BF79A9F7E6AF953FE2368B6563F86DCB4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UFzWGp9t6drMDTySFwbffVCvvW8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/a3735a-eccc-41d7-b723-e01237b5fc10/1/UFzWGp9t6drMDTySFwbffVCvvW8.mft Manifest number: 0E3D Signing time: Mon 26 Jan 2026 00:01:04 +0000 Manifest this update: Mon 26 Jan 2026 00:01:04 +0000 Manifest next update: Tue 27 Jan 2026 00:01:04 +0000 Files and hashes: 1: KYZm_9MuL_c9ERWs0Td3tSLq0RM.roa (hash: fei8OCGwkyhg3dv3nNRDFJMFMNR03cAB020hgr7s0HQ=) 2: UFzWGp9t6drMDTySFwbffVCvvW8.crl (hash: tFZFx25OGSrfzFlFQ3JNKrY2/EvYQ9rQa/vZHa70iZY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/a3735a-eccc-41d7-b723-e01237b5fc10/1/UFzWGp9t6drMDTySFwbffVCvvW8.crl rsync://rpki.ripe.net/repository/DEFAULT/0b/a3735a-eccc-41d7-b723-e01237b5fc10/1/UFzWGp9t6drMDTySFwbffVCvvW8.mft rsync://rpki.ripe.net/repository/DEFAULT/UFzWGp9t6drMDTySFwbffVCvvW8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f7:9a:9f:7e:6a:f9:53:fe:23:68:b6:56:3f:86:dc:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=505cd61a9f6de9dacc0d3c921706df7d50afbd6f Validity Not Before: Jan 26 00:01:04 2026 GMT Not After : Jan 27 00:01:04 2026 GMT Subject: CN=2f64fc0e7c6f6c143e47040dd0a7f8dc0e1a4e6b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:ea:05:6b:64:01:04:0e:28:be:6c:58:9d:5d: 73:4b:ec:5b:d6:d1:ef:f0:c5:64:37:8c:b8:71:8d: 31:a5:5c:2a:24:70:b8:04:44:e9:52:44:39:9d:a0: 24:13:35:7f:0d:18:b5:aa:60:24:08:4b:8b:04:a2: 26:d6:9f:89:67:ec:b9:4b:cf:6f:ba:3d:a5:28:cd: 90:34:66:67:be:34:f0:8d:35:52:9d:3a:1a:b9:94: 05:2d:8a:d7:23:fb:89:36:00:57:08:4a:2c:26:c0: e7:2a:ce:50:11:a4:ac:86:81:5b:4f:ae:aa:9e:85: 14:63:92:17:ce:fd:0f:86:2b:04:b6:72:ee:0b:a1: b2:a8:5a:d1:85:a8:3a:75:81:41:c9:9d:45:61:70: 02:09:d9:62:4c:bb:cd:dc:5e:89:8d:3e:e6:8a:fa: 5b:f0:a5:56:66:88:bc:b5:80:64:b1:b0:38:c5:5d: 7a:1e:ac:9e:a7:97:c2:a2:0f:a3:ee:30:50:ed:83: 4f:ed:21:98:6f:6c:3b:10:34:3a:f4:99:b4:f6:9a: a7:63:70:53:37:e4:75:de:11:a9:9b:bf:2b:01:a1: 86:62:e1:e7:e9:34:43:a9:c2:ff:85:d9:fb:35:6c: 77:e6:76:90:2b:27:8c:18:35:c6:dd:38:8b:16:8f: 16:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:64:FC:0E:7C:6F:6C:14:3E:47:04:0D:D0:A7:F8:DC:0E:1A:4E:6B X509v3 Authority Key Identifier: keyid:50:5C:D6:1A:9F:6D:E9:DA:CC:0D:3C:92:17:06:DF:7D:50:AF:BD:6F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UFzWGp9t6drMDTySFwbffVCvvW8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/a3735a-eccc-41d7-b723-e01237b5fc10/1/UFzWGp9t6drMDTySFwbffVCvvW8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/a3735a-eccc-41d7-b723-e01237b5fc10/1/UFzWGp9t6drMDTySFwbffVCvvW8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1a:6c:43:35:9a:e1:3a:48:4c:67:c8:de:d7:52:f6:b4:80:12: 20:ae:65:75:9d:74:87:a9:1c:3e:f0:b9:24:2e:fe:40:f0:1c: 2a:3a:46:77:a8:ae:d4:de:1c:f3:99:83:18:72:63:10:13:cd: c6:23:4e:80:a1:75:5d:a9:5f:40:82:4e:d7:e1:bc:f9:e8:e2: 17:27:69:29:f4:22:9a:32:8a:20:ea:c8:a3:0a:83:ff:7a:be: 2e:96:3e:0a:78:b8:45:86:9f:66:bf:c0:91:09:c0:41:79:95: e9:7f:a3:55:8d:4f:9e:c7:2c:0d:1e:fb:99:ec:d2:4d:78:02: b6:61:25:5e:00:34:d4:eb:b6:8c:3e:76:84:0b:f2:af:04:80: 0c:ed:95:1f:fe:be:28:19:39:1f:69:20:33:19:67:2e:13:bd: 33:af:4d:fe:a4:61:bc:c8:24:21:73:25:75:56:92:53:4c:28: ac:b2:f3:0b:9b:08:c7:3e:d4:02:c6:9a:22:d1:2a:b3:13:25: 26:eb:d2:57:fc:04:f3:fb:92:f2:dc:b8:a8:10:b9:da:ed:55: 77:c9:68:dc:f9:cc:cc:fb:29:67:6e:ea:fa:ed:0c:66:05:d3: 1c:9e:98:2c:69:f8:3d:3b:57:3f:da:00:9e:f9:33:ff:ee:92: c9:32:8d:1d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv3mp9+avlT/iNotlY/hty0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUwNWNkNjFhOWY2ZGU5ZGFjYzBkM2M5MjE3MDZkZjdkNTBh ZmJkNmYwHhcNMjYwMTI2MDAwMTA0WhcNMjYwMTI3MDAwMTA0WjAzMTEwLwYDVQQD EygyZjY0ZmMwZTdjNmY2YzE0M2U0NzA0MGRkMGE3ZjhkYzBlMWE0ZTZiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw+oFa2QBBA4ovmxYnV1zS+xb1tHv 8MVkN4y4cY0xpVwqJHC4BETpUkQ5naAkEzV/DRi1qmAkCEuLBKIm1p+JZ+y5S89v uj2lKM2QNGZnvjTwjTVSnToauZQFLYrXI/uJNgBXCEosJsDnKs5QEaSshoFbT66q noUUY5IXzv0PhisEtnLuC6GyqFrRhag6dYFByZ1FYXACCdliTLvN3F6JjT7mivpb 8KVWZoi8tYBksbA4xV16Hqyep5fCog+j7jBQ7YNP7SGYb2w7EDQ69Jm09pqnY3BT N+R13hGpm78rAaGGYuHn6TRDqcL/hdn7NWx35naQKyeMGDXG3TiLFo8WswIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFC9k/A58b2wUPkcEDdCn+NwOGk5rMB8GA1UdIwQY MBaAFFBc1hqfbenazA08khcG331Qr71vMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVUZ6V0dwOXQ2ZHJNRFR5U0Z3YmZmVkN2dlc4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi9hMzczNWEtZWNjYy00MWQ3LWI3MjMt ZTAxMjM3YjVmYzEwLzEvVUZ6V0dwOXQ2ZHJNRFR5U0Z3YmZmVkN2dlc4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYi9hMzczNWEtZWNjYy00MWQ3LWI3MjMtZTAxMjM3YjVmYzEw LzEvVUZ6V0dwOXQ2ZHJNRFR5U0Z3YmZmVkN2dlc4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGmxDNZrh OkhMZ8je11L2tIASIK5ldZ10h6kcPvC5JC7+QPAcKjpGd6iu1N4c85mDGHJjEBPN xiNOgKF1XalfQIJO1+G8+ejiFydpKfQimjKKIOrIowqD/3q+LpY+Cni4RYafZr/A kQnAQXmV6X+jVY1PnscsDR77mezSTXgCtmElXgA01Ou2jD52hAvyrwSADO2VH/6+ KBk5H2kgMxlnLhO9M69N/qRhvMgkIXMldVaSU0worLLzC5sIxz7UAsaaItEqsxMl JuvSV/wE8/uS8ty4qBC52u1Vd8lo3PnMzPspZ27q+u0MZgXTHJ6YLGn4PTtXP9oA nvkz/+6SyTKNHQ== -----END CERTIFICATE-----Generated at Mon Jan 26 07:11:41 2026 by rpki-client