This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/068231-7cfc-4068-86b5-9ab4ad8b4ff4/1/Kbh1W8U-8XdGvSlu8oupAM2Y--A.mft File: Kbh1W8U-8XdGvSlu8oupAM2Y--A.mft (raw, json) Hash identifier: p7a6IDjiy12xN+fLTpsdUx+VpEm+2pLB7d9aUlNeHvA= Subject key identifier: 07:B7:E6:30:34:DD:23:B9:CB:CD:35:2A:3D:41:D2:CD:26:65:E2:2B Authority key identifier: 29:B8:75:5B:C5:3E:F1:77:46:BD:29:6E:F2:8B:A9:00:CD:98:FB:E0 Certificate issuer: /CN=29b8755bc53ef17746bd296ef28ba900cd98fbe0 Certificate serial: 019BF53E093E5D4DDA4651804E662CB1B67B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Kbh1W8U-8XdGvSlu8oupAM2Y--A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/068231-7cfc-4068-86b5-9ab4ad8b4ff4/1/Kbh1W8U-8XdGvSlu8oupAM2Y--A.mft Manifest number: 013A Signing time: Sun 25 Jan 2026 13:00:42 +0000 Manifest this update: Sun 25 Jan 2026 13:00:42 +0000 Manifest next update: Mon 26 Jan 2026 13:00:42 +0000 Files and hashes: 1: 6DNwF30LCDUKZspUSvniSglbK78.asa (hash: ct9NJHmgg+w+Ve0ZATSvPFBlaRSn0jlVfWPGuCu05Cw=) 2: Kbh1W8U-8XdGvSlu8oupAM2Y--A.crl (hash: pekoN8leOOsiB75cbaElGWmigsfWf8/wTMCKdIvPF/o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/068231-7cfc-4068-86b5-9ab4ad8b4ff4/1/Kbh1W8U-8XdGvSlu8oupAM2Y--A.crl rsync://rpki.ripe.net/repository/DEFAULT/0c/068231-7cfc-4068-86b5-9ab4ad8b4ff4/1/Kbh1W8U-8XdGvSlu8oupAM2Y--A.mft rsync://rpki.ripe.net/repository/DEFAULT/Kbh1W8U-8XdGvSlu8oupAM2Y--A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f5:3e:09:3e:5d:4d:da:46:51:80:4e:66:2c:b1:b6:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29b8755bc53ef17746bd296ef28ba900cd98fbe0 Validity Not Before: Jan 25 13:00:42 2026 GMT Not After : Jan 26 13:00:42 2026 GMT Subject: CN=07b7e63034dd23b9cbcd352a3d41d2cd2665e22b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:7a:85:cf:55:3c:18:f6:82:53:5d:aa:93:ad: ee:21:65:27:7d:b0:b8:33:c2:82:82:87:9b:3c:cf: a3:bd:b4:93:c4:79:0d:30:0c:00:b8:5e:2e:e4:33: e1:a2:7e:11:51:3b:4f:ee:7a:b3:a1:2d:18:b1:41: a3:78:b0:18:99:bd:21:d9:02:81:bb:4c:98:1d:07: 77:80:87:b6:dd:92:27:a3:e8:66:e7:4d:72:8a:fe: 9a:16:52:4e:13:d7:5d:bf:ac:21:4c:28:fa:ad:09: 74:02:60:a2:9b:b3:2d:82:35:aa:95:bf:8f:f2:5b: b6:92:da:e6:b4:22:31:00:46:f3:c4:7f:81:26:9a: 51:8b:1d:5a:3e:2c:dc:68:00:ec:f3:ee:b5:4b:48: 12:c4:0b:1c:f7:09:1b:77:8d:c2:79:fa:5d:f8:f4: 54:8f:ee:b0:d8:3a:74:e7:d9:4e:45:29:9a:8c:ea: 7c:c8:ed:16:88:ad:ef:55:cd:7e:ab:8a:fe:5e:97: eb:6a:94:dc:7a:be:fb:d3:34:5e:b4:4f:26:6d:c0: 95:22:77:16:cd:ad:62:83:91:77:b8:51:20:a7:09: d7:6c:c5:9c:fb:28:ac:d0:0a:09:bc:bb:0b:2d:67: 0a:92:af:62:0b:08:8e:cb:22:c8:e9:b9:6e:d5:59: 21:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:B7:E6:30:34:DD:23:B9:CB:CD:35:2A:3D:41:D2:CD:26:65:E2:2B X509v3 Authority Key Identifier: keyid:29:B8:75:5B:C5:3E:F1:77:46:BD:29:6E:F2:8B:A9:00:CD:98:FB:E0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Kbh1W8U-8XdGvSlu8oupAM2Y--A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/068231-7cfc-4068-86b5-9ab4ad8b4ff4/1/Kbh1W8U-8XdGvSlu8oupAM2Y--A.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/068231-7cfc-4068-86b5-9ab4ad8b4ff4/1/Kbh1W8U-8XdGvSlu8oupAM2Y--A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 65:55:f0:dc:a9:8f:c3:f1:8b:44:5f:40:47:81:ae:db:26:58: 0f:f5:ce:a1:76:79:24:85:29:81:f3:94:95:1d:31:19:21:4e: 1d:5f:ca:0b:f0:4c:ae:d3:48:f1:86:68:bd:75:6d:26:45:8a: 0b:b9:eb:b2:cc:47:87:84:c8:68:ef:59:7a:1f:40:30:c9:f1: bb:fb:b8:15:eb:67:4b:54:e2:cc:9c:72:91:1c:36:f4:26:c6: cb:38:41:76:63:9e:ae:18:ea:de:f5:11:00:d1:8d:42:db:6f: 4c:d6:54:d3:47:95:c4:7e:77:4b:ba:c9:4e:f4:8e:f2:77:95: d0:c5:9c:62:38:8a:4c:00:25:84:04:00:f7:0e:4f:b5:93:18: db:43:eb:cc:10:50:9f:65:6d:2d:5e:85:0c:3a:22:dc:a5:f5: 5d:7d:21:25:62:5b:e7:00:bd:ea:3f:0c:8f:b7:cb:5c:a5:0b: 4e:74:87:9b:84:e9:c3:23:6c:04:c8:34:07:e0:71:10:4a:dd: ef:38:1e:95:fd:5b:43:db:09:57:87:d5:0c:88:a7:9b:01:5a: cb:61:e7:39:d8:6a:29:04:b7:7d:fa:4e:af:f8:57:8a:e1:aa: d8:83:74:f2:33:04:1c:71:e1:57:af:68:28:4d:e9:c4:b6:cb: 79:5c:1e:43 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv1Pgk+XU3aRlGATmYssbZ7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5Yjg3NTViYzUzZWYxNzc0NmJkMjk2ZWYyOGJhOTAwY2Q5 OGZiZTAwHhcNMjYwMTI1MTMwMDQyWhcNMjYwMTI2MTMwMDQyWjAzMTEwLwYDVQQD EygwN2I3ZTYzMDM0ZGQyM2I5Y2JjZDM1MmEzZDQxZDJjZDI2NjVlMjJiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw3qFz1U8GPaCU12qk63uIWUnfbC4 M8KCgoebPM+jvbSTxHkNMAwAuF4u5DPhon4RUTtP7nqzoS0YsUGjeLAYmb0h2QKB u0yYHQd3gIe23ZIno+hm501yiv6aFlJOE9ddv6whTCj6rQl0AmCim7MtgjWqlb+P 8lu2ktrmtCIxAEbzxH+BJppRix1aPizcaADs8+61S0gSxAsc9wkbd43Cefpd+PRU j+6w2Dp059lORSmajOp8yO0WiK3vVc1+q4r+XpfrapTcer770zRetE8mbcCVIncW za1ig5F3uFEgpwnXbMWc+yis0AoJvLsLLWcKkq9iCwiOyyLI6blu1VkhHwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAe35jA03SO5y801Kj1B0s0mZeIrMB8GA1UdIwQY MBaAFCm4dVvFPvF3Rr0pbvKLqQDNmPvgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS2JoMVc4VS04WGRHdlNsdThvdXBBTTJZLS1BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy8wNjgyMzEtN2NmYy00MDY4LTg2YjUt OWFiNGFkOGI0ZmY0LzEvS2JoMVc4VS04WGRHdlNsdThvdXBBTTJZLS1BLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYy8wNjgyMzEtN2NmYy00MDY4LTg2YjUtOWFiNGFkOGI0ZmY0 LzEvS2JoMVc4VS04WGRHdlNsdThvdXBBTTJZLS1BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZVXw3KmP w/GLRF9AR4Gu2yZYD/XOoXZ5JIUpgfOUlR0xGSFOHV/KC/BMrtNI8YZovXVtJkWK C7nrssxHh4TIaO9Zeh9AMMnxu/u4FetnS1TizJxykRw29CbGyzhBdmOerhjq3vUR ANGNQttvTNZU00eVxH53S7rJTvSO8neV0MWcYjiKTAAlhAQA9w5PtZMY20PrzBBQ n2VtLV6FDDoi3KX1XX0hJWJb5wC96j8Mj7fLXKULTnSHm4TpwyNsBMg0B+BxEErd 7zgelf1bQ9sJV4fVDIinmwFay2HnOdhqKQS3ffpOr/hXiuGq2IN08jMEHHHhV69o KE3pxLbLeVweQw== -----END CERTIFICATE-----Generated at Sun Jan 25 22:52:44 2026 by rpki-client