This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/04ef71-f122-47ce-8a40-cc0f9707140e/1/h94IWXXeZYjgf-0TVROqOKztt2M.mft File: h94IWXXeZYjgf-0TVROqOKztt2M.mft (raw, json) Hash identifier: uqw1iJKsPa7f9dy+DdXDE6rgEQnWVykWVT9+pxJnRBM= Subject key identifier: 51:A1:EC:0A:A0:F9:C3:58:5F:56:4A:AF:43:77:E1:52:8E:83:1C:A7 Authority key identifier: 87:DE:08:59:75:DE:65:88:E0:7F:ED:13:55:13:AA:38:AC:ED:B7:63 Certificate issuer: /CN=87de085975de6588e07fed135513aa38acedb763 Certificate serial: 019BF8AD8874C799776D8E92A1F018A7A0C8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h94IWXXeZYjgf-0TVROqOKztt2M.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/04ef71-f122-47ce-8a40-cc0f9707140e/1/h94IWXXeZYjgf-0TVROqOKztt2M.mft Manifest number: 0BD2 Signing time: Mon 26 Jan 2026 05:01:20 +0000 Manifest this update: Mon 26 Jan 2026 05:01:20 +0000 Manifest next update: Tue 27 Jan 2026 05:01:20 +0000 Files and hashes: 1: h94IWXXeZYjgf-0TVROqOKztt2M.crl (hash: d3ZRXpnkAmvsDDk527E++TmflgzduE7bCphzNjqN4bQ=) 2: kGQeneiJZNT_BjB_XoReSyXguQ8.roa (hash: yt9dzzQfHrZsnLkuZ9r3U4v8elv0IkIyoER8sIW2HPM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/04ef71-f122-47ce-8a40-cc0f9707140e/1/h94IWXXeZYjgf-0TVROqOKztt2M.crl rsync://rpki.ripe.net/repository/DEFAULT/12/04ef71-f122-47ce-8a40-cc0f9707140e/1/h94IWXXeZYjgf-0TVROqOKztt2M.mft rsync://rpki.ripe.net/repository/DEFAULT/h94IWXXeZYjgf-0TVROqOKztt2M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f8:ad:88:74:c7:99:77:6d:8e:92:a1:f0:18:a7:a0:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=87de085975de6588e07fed135513aa38acedb763 Validity Not Before: Jan 26 05:01:20 2026 GMT Not After : Jan 27 05:01:20 2026 GMT Subject: CN=51a1ec0aa0f9c3585f564aaf4377e1528e831ca7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:f2:53:7e:ad:6b:20:da:0a:b0:5c:0b:b2:60: b6:a8:e0:ee:5e:a8:b1:f2:90:d6:9d:84:4c:44:4f: 9b:b1:61:48:7e:72:ea:9e:10:d5:e1:f0:49:82:79: 2f:70:a5:f4:25:b0:9a:71:5e:19:fa:8e:6d:cd:64: 99:54:58:e0:67:0f:01:36:f5:2d:b1:a4:30:19:5d: 4a:10:dc:3a:8f:aa:56:15:d9:fc:44:c0:72:15:16: 3d:09:fd:b4:73:2e:5d:c0:2d:34:0a:d8:f7:ef:0f: c5:2d:3b:e4:94:67:46:9c:42:c0:ae:ef:9e:57:db: 7e:c3:fe:ca:4e:71:04:86:b8:9b:17:60:96:f4:81: 51:04:95:04:68:2f:72:20:5e:23:3a:f0:b0:5c:7e: 68:50:8b:10:2a:0d:92:9b:61:e7:6d:3f:74:80:7b: 8a:e2:21:11:c0:d4:f8:c3:ca:eb:33:f9:4a:1f:38: 2f:24:df:3a:76:c1:61:e0:8d:53:0c:67:84:47:9e: e9:0a:83:03:43:5c:1c:69:79:2c:f5:c8:38:96:23: 47:70:ea:be:57:f9:1d:17:85:f6:18:22:ff:cd:55: a5:5c:1f:c0:80:3f:f6:11:01:5a:00:ae:20:26:7c: b4:94:80:92:77:02:4d:ae:41:ef:94:cc:b0:58:da: b8:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:A1:EC:0A:A0:F9:C3:58:5F:56:4A:AF:43:77:E1:52:8E:83:1C:A7 X509v3 Authority Key Identifier: keyid:87:DE:08:59:75:DE:65:88:E0:7F:ED:13:55:13:AA:38:AC:ED:B7:63 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h94IWXXeZYjgf-0TVROqOKztt2M.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/04ef71-f122-47ce-8a40-cc0f9707140e/1/h94IWXXeZYjgf-0TVROqOKztt2M.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/04ef71-f122-47ce-8a40-cc0f9707140e/1/h94IWXXeZYjgf-0TVROqOKztt2M.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 19:33:f4:96:b5:48:49:d5:73:1a:62:92:3e:91:0c:33:37:07: db:a8:04:db:09:74:46:ae:ab:51:c6:8e:2f:21:5d:ff:1c:a2: 1c:63:73:86:94:5e:2f:10:bc:19:68:1e:73:63:35:6a:47:a6: a0:66:d9:69:ba:b0:c8:03:c7:e0:45:65:b5:dd:89:70:1a:6a: 81:8c:75:3e:08:8e:78:2d:84:ce:fb:ab:bd:b9:59:2d:51:2e: 93:c8:77:d2:41:21:6a:f7:19:37:5e:70:1e:f8:48:89:d4:87: 3d:3e:7f:71:16:95:fd:18:51:a8:ab:00:4a:0b:d2:5a:f3:c5: 2b:d9:86:7f:31:8c:6a:a1:b9:de:95:fb:20:45:5b:a7:61:2e: 63:d2:19:9d:d9:d6:5a:94:2b:41:73:67:57:f4:f8:dd:5f:b6: 6a:a7:1b:1b:5a:84:c7:c3:0f:e5:ad:3d:6b:ac:5a:8f:b4:95: 91:23:88:1d:8e:1e:ad:6e:1c:dc:29:53:ad:6d:b3:3e:e9:30: 44:36:27:09:56:51:31:ac:6b:ba:42:bd:55:8c:5d:a5:a0:14: 11:7c:12:bb:c5:5e:48:fc:21:c8:88:5c:e6:0f:4e:64:f3:05: 34:b4:9c:a0:ea:68:e0:0e:02:80:44:34:05:ca:79:4f:1c:91: a5:e7:04:54 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv4rYh0x5l3bY6SofAYp6DIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg3ZGUwODU5NzVkZTY1ODhlMDdmZWQxMzU1MTNhYTM4YWNl ZGI3NjMwHhcNMjYwMTI2MDUwMTIwWhcNMjYwMTI3MDUwMTIwWjAzMTEwLwYDVQQD Eyg1MWExZWMwYWEwZjljMzU4NWY1NjRhYWY0Mzc3ZTE1MjhlODMxY2E3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwvJTfq1rINoKsFwLsmC2qODuXqix 8pDWnYRMRE+bsWFIfnLqnhDV4fBJgnkvcKX0JbCacV4Z+o5tzWSZVFjgZw8BNvUt saQwGV1KENw6j6pWFdn8RMByFRY9Cf20cy5dwC00Ctj37w/FLTvklGdGnELAru+e V9t+w/7KTnEEhribF2CW9IFRBJUEaC9yIF4jOvCwXH5oUIsQKg2Sm2HnbT90gHuK 4iERwNT4w8rrM/lKHzgvJN86dsFh4I1TDGeER57pCoMDQ1wcaXks9cg4liNHcOq+ V/kdF4X2GCL/zVWlXB/AgD/2EQFaAK4gJny0lICSdwJNrkHvlMywWNq4jQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFGh7Aqg+cNYX1ZKr0N34VKOgxynMB8GA1UdIwQY MBaAFIfeCFl13mWI4H/tE1UTqjis7bdjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaDk0SVdYWGVaWWpnZi0wVFZST3FPS3p0dDJNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi8wNGVmNzEtZjEyMi00N2NlLThhNDAt Y2MwZjk3MDcxNDBlLzEvaDk0SVdYWGVaWWpnZi0wVFZST3FPS3p0dDJNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi8wNGVmNzEtZjEyMi00N2NlLThhNDAtY2MwZjk3MDcxNDBl LzEvaDk0SVdYWGVaWWpnZi0wVFZST3FPS3p0dDJNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGTP0lrVI SdVzGmKSPpEMMzcH26gE2wl0Rq6rUcaOLyFd/xyiHGNzhpReLxC8GWgec2M1akem oGbZabqwyAPH4EVltd2JcBpqgYx1PgiOeC2EzvurvblZLVEuk8h30kEhavcZN15w HvhIidSHPT5/cRaV/RhRqKsASgvSWvPFK9mGfzGMaqG53pX7IEVbp2EuY9IZndnW WpQrQXNnV/T43V+2aqcbG1qEx8MP5a09a6xaj7SVkSOIHY4erW4c3ClTrW2zPukw RDYnCVZRMaxrukK9VYxdpaAUEXwSu8VeSPwhyIhc5g9OZPMFNLScoOpo4A4CgEQ0 Bcp5TxyRpecEVA== -----END CERTIFICATE-----Generated at Mon Jan 26 06:40:53 2026 by rpki-client