This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.mft File: Lf7yuDmtB3hoM7G-3KiwsZID4RE.mft (raw, json) Hash identifier: n6BiHTpwZ+mk2SmuXxknDv2okJ2CqQoNhaXpr3rz6Kk= Subject key identifier: 4C:87:0B:55:7A:7D:76:AA:69:57:5A:66:30:7E:81:EC:BB:10:5F:71 Authority key identifier: 2D:FE:F2:B8:39:AD:07:78:68:33:B1:BE:DC:A8:B0:B1:92:03:E1:11 Certificate issuer: /CN=2dfef2b839ad07786833b1bedca8b0b19203e111 Certificate serial: 019BF1CF7ED04AA7056EEC303811FAC37764 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Lf7yuDmtB3hoM7G-3KiwsZID4RE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.mft Manifest number: 0455 Signing time: Sat 24 Jan 2026 21:01:05 +0000 Manifest this update: Sat 24 Jan 2026 21:01:05 +0000 Manifest next update: Sun 25 Jan 2026 21:01:05 +0000 Files and hashes: 1: 349FQFd5GuBNHJ1XSdLWCNh7MgE.roa (hash: X07/rOHAvRnDnhTDeHpviTIJqNY8MhsZ5tUjK1kXVRQ=) 2: Lf7yuDmtB3hoM7G-3KiwsZID4RE.crl (hash: BBTHo0svgM6LE7LJ20Dsy6HHqmjC0LZ2NgCAnYJKhPg=) 3: Ro9U9BJ6f0_Ri9pStBmjPzC3PAI.roa (hash: OME7cIqz4TyEQ9tHIazsSceKPyDQCFfwvggAogmMI2I=) 4: iRueGgNSFlYLf9RROG0f0rTAc00.roa (hash: S/n0OWxnW1sYVn1zOvkt5rV/05+3yi0pPUNZuVoiUaI=) 5: o8OOXMpbaFk_8-RmJyQxncgLVFQ.roa (hash: jB/RtTqOu46GTbqyk/NL/0jshQ8FkOf7LHzIj9jHQHo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.crl rsync://rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.mft rsync://rpki.ripe.net/repository/DEFAULT/Lf7yuDmtB3hoM7G-3KiwsZID4RE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 21:01:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f1:cf:7e:d0:4a:a7:05:6e:ec:30:38:11:fa:c3:77:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2dfef2b839ad07786833b1bedca8b0b19203e111 Validity Not Before: Jan 24 21:01:05 2026 GMT Not After : Jan 25 21:01:05 2026 GMT Subject: CN=4c870b557a7d76aa69575a66307e81ecbb105f71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:62:44:e1:9b:07:f6:3e:8e:cc:da:31:9d:5f: 08:e1:c4:8f:c8:cb:ac:ac:e2:d9:18:e5:4c:bd:2f: bc:12:d2:d2:aa:51:b9:42:3c:15:d8:09:62:a0:54: bc:76:49:22:80:e5:f5:6e:a1:a0:73:88:e0:6c:95: 99:b2:bd:a9:77:7d:96:d2:5e:0e:5e:ba:e6:e6:00: 67:ee:ef:99:77:a3:6c:85:bb:af:01:c7:6b:0f:2f: ba:fe:9d:27:19:72:19:5c:2f:2b:e4:e5:55:69:11: 8f:e3:6e:30:f2:18:3c:ff:67:ed:58:82:46:71:d5: b9:34:70:48:c9:04:b2:b9:76:98:87:da:21:e4:93: 3d:bf:9b:c2:94:60:d6:d3:b5:c0:98:fe:71:a0:66: 98:87:11:ea:70:b6:1c:c9:c0:5b:27:f7:6d:38:3b: bb:c5:7a:62:ba:fb:a3:26:a2:5e:19:0c:03:67:4a: 84:90:99:76:ee:c2:bc:36:4d:56:99:f3:ff:82:af: 8a:8b:51:70:c6:b3:b7:26:83:95:67:e7:dc:a7:55: 04:89:3b:19:d8:24:69:a5:d2:53:c4:a2:82:57:4b: d1:f2:44:07:f4:f9:a2:4f:c4:aa:46:a9:13:a6:6f: b3:09:48:ea:63:17:47:05:ed:74:69:7d:05:72:63: fe:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:87:0B:55:7A:7D:76:AA:69:57:5A:66:30:7E:81:EC:BB:10:5F:71 X509v3 Authority Key Identifier: keyid:2D:FE:F2:B8:39:AD:07:78:68:33:B1:BE:DC:A8:B0:B1:92:03:E1:11 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Lf7yuDmtB3hoM7G-3KiwsZID4RE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/0357e8-3ea0-4968-9ef9-7d70519b76da/1/Lf7yuDmtB3hoM7G-3KiwsZID4RE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 23:3d:66:5e:09:88:ad:38:97:5b:54:c2:dd:c4:9a:3c:93:d8: 55:d2:33:14:37:a0:93:a8:c9:ab:5f:cc:ec:a3:2d:d7:91:d4: 1f:e2:a2:f2:4e:cd:ae:5e:62:2e:a0:d6:94:1a:e1:e4:7d:3b: f1:5d:ad:a4:9b:58:31:e6:a3:60:ae:e9:ea:ee:2e:8f:52:4c: 76:2d:9d:4e:81:d3:0f:51:12:1b:e7:ac:56:97:e2:9c:f9:52: 96:61:50:bc:07:f4:11:67:3e:31:f7:a2:3f:1a:a1:fb:09:09: a9:21:3f:25:42:07:d7:e8:dd:66:29:44:dd:64:d3:aa:79:50: 39:58:b7:65:34:1b:0c:48:52:0b:b0:15:64:78:eb:d2:f7:72: fb:8b:93:73:15:58:3e:50:b2:2a:20:b2:40:65:76:c0:3b:c2: fa:31:e5:9d:d1:c4:e5:fe:e3:67:05:b3:72:a6:de:5d:2e:15: ee:27:8e:24:5c:78:91:2d:d8:e4:fe:14:16:f1:35:a8:79:e7: 51:41:8b:d8:f6:de:f7:21:c7:a5:d8:62:c7:e8:ed:46:ee:c4: 2d:49:fa:a5:32:90:b5:8d:7b:1d:91:9e:67:bf:3a:a9:a2:ad: af:ac:22:cf:28:bf:1f:0c:a2:bc:92:01:0c:e0:f4:7b:99:5e: 13:4c:31:a4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZvxz37QSqcFbuwwOBH6w3dkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJkZmVmMmI4MzlhZDA3Nzg2ODMzYjFiZWRjYThiMGIxOTIw M2UxMTEwHhcNMjYwMTI0MjEwMTA1WhcNMjYwMTI1MjEwMTA1WjAzMTEwLwYDVQQD Eyg0Yzg3MGI1NTdhN2Q3NmFhNjk1NzVhNjYzMDdlODFlY2JiMTA1ZjcxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqmJE4ZsH9j6OzNoxnV8I4cSPyMus rOLZGOVMvS+8EtLSqlG5QjwV2AlioFS8dkkigOX1bqGgc4jgbJWZsr2pd32W0l4O Xrrm5gBn7u+Zd6NshbuvAcdrDy+6/p0nGXIZXC8r5OVVaRGP424w8hg8/2ftWIJG cdW5NHBIyQSyuXaYh9oh5JM9v5vClGDW07XAmP5xoGaYhxHqcLYcycBbJ/dtODu7 xXpiuvujJqJeGQwDZ0qEkJl27sK8Nk1WmfP/gq+Ki1FwxrO3JoOVZ+fcp1UEiTsZ 2CRppdJTxKKCV0vR8kQH9PmiT8SqRqkTpm+zCUjqYxdHBe10aX0FcmP+KwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEyHC1V6fXaqaVdaZjB+gey7EF9xMB8GA1UdIwQY MBaAFC3+8rg5rQd4aDOxvtyosLGSA+ERMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTGY3eXVEbXRCM2hvTTdHLTNLaXdzWklENFJFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC8wMzU3ZTgtM2VhMC00OTY4LTllZjkt N2Q3MDUxOWI3NmRhLzEvTGY3eXVEbXRCM2hvTTdHLTNLaXdzWklENFJFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZC8wMzU3ZTgtM2VhMC00OTY4LTllZjktN2Q3MDUxOWI3NmRh LzEvTGY3eXVEbXRCM2hvTTdHLTNLaXdzWklENFJFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIz1mXgmI rTiXW1TC3cSaPJPYVdIzFDegk6jJq1/M7KMt15HUH+Ki8k7Nrl5iLqDWlBrh5H07 8V2tpJtYMeajYK7p6u4uj1JMdi2dToHTD1ESG+esVpfinPlSlmFQvAf0EWc+Mfei Pxqh+wkJqSE/JUIH1+jdZilE3WTTqnlQOVi3ZTQbDEhSC7AVZHjr0vdy+4uTcxVY PlCyKiCyQGV2wDvC+jHlndHE5f7jZwWzcqbeXS4V7ieOJFx4kS3Y5P4UFvE1qHnn UUGL2Pbe9yHHpdhix+jtRu7ELUn6pTKQtY17HZGeZ786qaKtr6wizyi/HwyivJIB DOD0e5leE0wxpA== -----END CERTIFICATE-----Generated at Sun Jan 25 05:40:14 2026 by rpki-client