This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/23dc61-7e9d-40b3-91b6-46bd7d794fb6/1/cLGQ1viaQ0zOXLjA1LOKFmne-1k.mft File: cLGQ1viaQ0zOXLjA1LOKFmne-1k.mft (raw, json) Hash identifier: IjXmCFa2tN3LsEr+RiRs0VzSzx6a8eEeytWu7zUL290= Subject key identifier: 3B:68:0F:3A:47:BF:F6:B4:58:76:54:83:54:1F:4C:0F:F0:2B:F1:C9 Authority key identifier: 70:B1:90:D6:F8:9A:43:4C:CE:5C:B8:C0:D4:B3:8A:16:69:DE:FB:59 Certificate issuer: /CN=70b190d6f89a434cce5cb8c0d4b38a1669defb59 Certificate serial: 019BF4D0B523C982089832922AA491AFD306 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cLGQ1viaQ0zOXLjA1LOKFmne-1k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/23dc61-7e9d-40b3-91b6-46bd7d794fb6/1/cLGQ1viaQ0zOXLjA1LOKFmne-1k.mft Manifest number: 1431 Signing time: Sun 25 Jan 2026 11:01:17 +0000 Manifest this update: Sun 25 Jan 2026 11:01:17 +0000 Manifest next update: Mon 26 Jan 2026 11:01:17 +0000 Files and hashes: 1: cLGQ1viaQ0zOXLjA1LOKFmne-1k.crl (hash: oXQNXWQPhKK2l+J+U8slX/mO8wp32ppQ8Aw9EhX2ls0=) 2: fb3NlfyiI12-2naS91KzEXDuLcM.roa (hash: xFi8qis3wYM7XGFa9w0jwhmsTCg5KkrRoqZqwdJaBxs=) 3: lbi2EEOv7Zrhga3le8zAYXKzasA.roa (hash: cxSzMHs1P7K5DFoalN/ZGFsw0iciyI3MRqOB+G9rhGs=) 4: rroLiEQZHgTeW99j0qiBIrwu5EA.roa (hash: VmsVwoTJ6PHL/2Ntb43rkgeOI/CytWooyIbWbTn6sKE=) 5: ugJS22ubb1YAQxxSrPhzSyT4d4g.roa (hash: SMm0KdkJcDZcOqPotbm0PXIQqsivUC/ILvOz2gqm9+o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/23dc61-7e9d-40b3-91b6-46bd7d794fb6/1/cLGQ1viaQ0zOXLjA1LOKFmne-1k.crl rsync://rpki.ripe.net/repository/DEFAULT/0d/23dc61-7e9d-40b3-91b6-46bd7d794fb6/1/cLGQ1viaQ0zOXLjA1LOKFmne-1k.mft rsync://rpki.ripe.net/repository/DEFAULT/cLGQ1viaQ0zOXLjA1LOKFmne-1k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 11:01:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f4:d0:b5:23:c9:82:08:98:32:92:2a:a4:91:af:d3:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=70b190d6f89a434cce5cb8c0d4b38a1669defb59 Validity Not Before: Jan 25 11:01:17 2026 GMT Not After : Jan 26 11:01:17 2026 GMT Subject: CN=3b680f3a47bff6b458765483541f4c0ff02bf1c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:e8:6a:81:64:c8:67:f6:82:5a:ca:30:c3:8b: ec:a2:5a:b0:cf:89:46:f7:8a:b3:5c:fc:a1:54:2a: 5c:c3:d8:75:44:34:1b:fd:80:ff:f2:e2:00:6f:42: 7b:b2:00:d8:e9:64:59:98:87:ac:f7:30:f1:dd:8a: a2:c9:fe:3a:44:ba:45:45:a4:aa:7b:7d:ac:94:bf: 00:1e:f8:0d:91:0d:f8:02:4a:ac:1b:02:cf:57:7c: fd:26:f3:47:ea:fd:3c:ee:eb:89:98:01:81:ea:2f: 3d:8c:9f:1e:60:5e:a9:b5:7c:a6:8f:2a:1c:e2:49: 77:0d:6c:8c:f8:60:9b:83:7e:01:9a:0e:1c:e7:96: d2:76:e3:b3:52:a5:b1:0a:65:5a:3c:bc:50:3e:3a: 9f:da:d0:a5:2f:14:96:a5:d6:b9:dc:4b:fd:74:bb: 29:8a:a1:30:99:46:74:96:17:78:36:68:6d:77:e7: 5d:bb:1f:55:dc:56:a2:d5:71:d6:01:c6:a7:56:8b: a1:7c:a8:79:ca:8f:aa:a8:6a:7a:30:08:4e:fe:0a: f4:1d:72:0b:e7:47:e5:2f:03:ac:d7:64:a1:32:de: 43:2a:6e:42:11:ce:d6:ff:ad:b9:af:b3:f6:4d:1c: e3:3e:b8:fb:28:cb:6c:c3:65:44:af:fe:83:88:5a: d5:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:68:0F:3A:47:BF:F6:B4:58:76:54:83:54:1F:4C:0F:F0:2B:F1:C9 X509v3 Authority Key Identifier: keyid:70:B1:90:D6:F8:9A:43:4C:CE:5C:B8:C0:D4:B3:8A:16:69:DE:FB:59 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cLGQ1viaQ0zOXLjA1LOKFmne-1k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/23dc61-7e9d-40b3-91b6-46bd7d794fb6/1/cLGQ1viaQ0zOXLjA1LOKFmne-1k.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/23dc61-7e9d-40b3-91b6-46bd7d794fb6/1/cLGQ1viaQ0zOXLjA1LOKFmne-1k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8f:4e:e5:32:45:e9:b1:6e:2b:d8:8d:6b:db:8d:58:b7:dc:d1: 0a:8d:9d:57:d4:5a:db:c8:17:da:11:5c:31:cb:4f:2a:c3:0c: 83:c2:78:e5:9e:2f:9c:80:a4:28:7e:bc:af:39:21:25:f0:9d: 33:84:63:dc:2a:7c:73:96:cf:67:ae:45:8c:6d:dd:77:a6:8e: 66:dc:c0:d4:7c:ee:b2:3c:06:ea:fc:b5:46:3a:47:68:82:09: d2:6a:90:be:51:0e:b2:eb:76:57:27:ef:9b:ba:74:c1:20:5a: cc:ed:c2:3f:2e:d9:06:ea:b9:45:5b:ce:a8:37:f2:c1:e2:ca: 71:57:22:58:67:e3:ad:e8:ea:38:69:02:1d:b8:62:bd:4e:58: 55:69:e9:d1:40:de:a6:aa:52:be:d2:29:9e:40:d5:62:29:50: 42:a0:e2:ea:b1:bc:72:27:37:5b:f3:d1:76:e7:b6:a8:e3:45: ce:1d:1e:3e:ef:30:bc:09:c6:6d:09:97:9b:47:c5:fe:f9:d2: 52:2f:75:10:31:05:3e:c9:62:d9:8c:9d:0b:78:a1:64:cb:d3: 7d:97:99:f2:86:97:ab:68:cb:34:1a:9c:99:60:e5:10:60:16: 44:9c:8f:59:e8:ae:c6:1c:5e:97:eb:99:7b:30:a6:de:d9:0b: 34:bb:f2:80 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv00LUjyYIImDKSKqSRr9MGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcwYjE5MGQ2Zjg5YTQzNGNjZTVjYjhjMGQ0YjM4YTE2Njlk ZWZiNTkwHhcNMjYwMTI1MTEwMTE3WhcNMjYwMTI2MTEwMTE3WjAzMTEwLwYDVQQD EygzYjY4MGYzYTQ3YmZmNmI0NTg3NjU0ODM1NDFmNGMwZmYwMmJmMWM5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzehqgWTIZ/aCWsoww4vsolqwz4lG 94qzXPyhVCpcw9h1RDQb/YD/8uIAb0J7sgDY6WRZmIes9zDx3Yqiyf46RLpFRaSq e32slL8AHvgNkQ34AkqsGwLPV3z9JvNH6v087uuJmAGB6i89jJ8eYF6ptXymjyoc 4kl3DWyM+GCbg34Bmg4c55bSduOzUqWxCmVaPLxQPjqf2tClLxSWpda53Ev9dLsp iqEwmUZ0lhd4Nmhtd+ddux9V3Fai1XHWAcanVouhfKh5yo+qqGp6MAhO/gr0HXIL 50flLwOs12ShMt5DKm5CEc7W/625r7P2TRzjPrj7KMtsw2VEr/6DiFrVUwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDtoDzpHv/a0WHZUg1QfTA/wK/HJMB8GA1UdIwQY MBaAFHCxkNb4mkNMzly4wNSzihZp3vtZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY0xHUTF2aWFRMHpPWExqQTFMT0tGbW5lLTFrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC8yM2RjNjEtN2U5ZC00MGIzLTkxYjYt NDZiZDdkNzk0ZmI2LzEvY0xHUTF2aWFRMHpPWExqQTFMT0tGbW5lLTFrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZC8yM2RjNjEtN2U5ZC00MGIzLTkxYjYtNDZiZDdkNzk0ZmI2 LzEvY0xHUTF2aWFRMHpPWExqQTFMT0tGbW5lLTFrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAj07lMkXp sW4r2I1r241Yt9zRCo2dV9Ra28gX2hFcMctPKsMMg8J45Z4vnICkKH68rzkhJfCd M4Rj3Cp8c5bPZ65FjG3dd6aOZtzA1HzusjwG6vy1RjpHaIIJ0mqQvlEOsut2Vyfv m7p0wSBazO3CPy7ZBuq5RVvOqDfyweLKcVciWGfjrejqOGkCHbhivU5YVWnp0UDe pqpSvtIpnkDVYilQQqDi6rG8cic3W/PRdue2qONFzh0ePu8wvAnGbQmXm0fF/vnS Ui91EDEFPsli2YydC3ihZMvTfZeZ8oaXq2jLNBqcmWDlEGAWRJyPWeiuxhxel+uZ ezCm3tkLNLvygA== -----END CERTIFICATE-----Generated at Sun Jan 25 21:09:40 2026 by rpki-client