This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/068a6c-921b-4e0b-ba7e-3a6de99ede47/1/LTw5h-fDSzZqoPCcQOpMgL_tDgE.mft File: LTw5h-fDSzZqoPCcQOpMgL_tDgE.mft (raw, json) Hash identifier: EVnqavC7M+di0aTMLs1w2ktWx2GJOh++5yWCjgOdDYk= Subject key identifier: 75:C1:5F:87:65:F8:B5:F7:13:1C:2F:11:DB:07:68:17:9B:43:FC:D0 Authority key identifier: 2D:3C:39:87:E7:C3:4B:36:6A:A0:F0:9C:40:EA:4C:80:BF:ED:0E:01 Certificate issuer: /CN=2d3c3987e7c34b366aa0f09c40ea4c80bfed0e01 Certificate serial: 019BF49967A6D349C16EDA8A805567C2CBEE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LTw5h-fDSzZqoPCcQOpMgL_tDgE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/068a6c-921b-4e0b-ba7e-3a6de99ede47/1/LTw5h-fDSzZqoPCcQOpMgL_tDgE.mft Manifest number: 011D Signing time: Sun 25 Jan 2026 10:00:52 +0000 Manifest this update: Sun 25 Jan 2026 10:00:52 +0000 Manifest next update: Mon 26 Jan 2026 10:00:52 +0000 Files and hashes: 1: DQVqjzC5rdONHq62ZKGqNPJyrRw.roa (hash: dDYajOCYrao79EK9Kj5vMqOndXhk7A3V1BOKDwNdvCc=) 2: LTw5h-fDSzZqoPCcQOpMgL_tDgE.crl (hash: 2kCchx3gl0F9Wq8c1PR4r3x3j78khy2DCA2I78JHddE=) 3: NE7mP6LXofTtetMrz0bZ4gVjQZQ.roa (hash: OKq/sE5vI4Tp87JPYnyleJOP67qF4AH8+fsvJkq27uQ=) 4: fE9cNRDKHoumM1hRkT3ZAa2rwPs.roa (hash: Zy3HM17iHdXxNk/UVoAmsPQwfcZdi0N5Gh6yWp44W4o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/068a6c-921b-4e0b-ba7e-3a6de99ede47/1/LTw5h-fDSzZqoPCcQOpMgL_tDgE.crl rsync://rpki.ripe.net/repository/DEFAULT/12/068a6c-921b-4e0b-ba7e-3a6de99ede47/1/LTw5h-fDSzZqoPCcQOpMgL_tDgE.mft rsync://rpki.ripe.net/repository/DEFAULT/LTw5h-fDSzZqoPCcQOpMgL_tDgE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f4:99:67:a6:d3:49:c1:6e:da:8a:80:55:67:c2:cb:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2d3c3987e7c34b366aa0f09c40ea4c80bfed0e01 Validity Not Before: Jan 25 10:00:52 2026 GMT Not After : Jan 26 10:00:52 2026 GMT Subject: CN=75c15f8765f8b5f7131c2f11db0768179b43fcd0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:46:cb:f7:34:a8:c3:0f:e2:3d:7e:83:d5:bd: e3:6e:70:e9:c9:13:82:3d:9b:f7:62:73:18:67:4f: c6:46:ae:d2:f9:3a:3c:d3:c4:be:de:66:a2:48:e0: 53:30:c3:be:f7:52:ad:48:d6:07:a3:80:ad:0a:cc: 77:ed:29:a0:6e:7e:15:cc:f1:04:97:07:34:45:e7: e1:1f:18:ff:3a:2e:6d:87:3c:eb:98:67:1a:11:eb: 16:71:d2:c1:97:d7:fa:ed:c2:56:59:b6:94:92:18: 69:60:4a:81:26:7d:76:ca:bf:3e:98:a6:e6:2e:36: 48:ee:57:6d:5c:f8:e7:c2:57:c5:3b:a3:2f:47:13: 11:d4:96:8b:67:53:7c:fa:5b:65:56:4e:57:cb:87: a9:92:af:a6:e6:9c:73:70:59:ee:fc:1d:de:72:34: 37:c3:0d:b4:ce:71:8c:99:71:ac:c1:16:01:74:58: e7:58:c0:d9:71:d9:e8:05:0e:bd:42:8b:a2:0f:8d: 76:6d:78:fd:46:5b:4f:30:62:49:46:ba:b4:a1:62: 68:fa:62:d2:b0:ee:85:e6:0a:7e:e0:ab:6e:48:05: 40:4d:66:93:65:54:0c:94:2b:c8:1c:f8:a2:dc:6b: 8b:3f:ad:fb:4a:1b:40:fa:81:b8:3e:6b:fc:79:af: 7e:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:C1:5F:87:65:F8:B5:F7:13:1C:2F:11:DB:07:68:17:9B:43:FC:D0 X509v3 Authority Key Identifier: keyid:2D:3C:39:87:E7:C3:4B:36:6A:A0:F0:9C:40:EA:4C:80:BF:ED:0E:01 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LTw5h-fDSzZqoPCcQOpMgL_tDgE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/068a6c-921b-4e0b-ba7e-3a6de99ede47/1/LTw5h-fDSzZqoPCcQOpMgL_tDgE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/068a6c-921b-4e0b-ba7e-3a6de99ede47/1/LTw5h-fDSzZqoPCcQOpMgL_tDgE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 97:7a:a3:f9:76:0a:94:2e:6a:be:8b:9a:09:60:de:cb:0f:8d: e0:56:06:ff:c5:7b:6b:c0:32:5d:14:87:d4:ef:d2:d6:a0:d5: a0:93:aa:e5:d2:7d:a0:6e:35:a5:e9:d5:d7:b1:54:35:06:3d: 48:40:c6:15:91:5d:b0:c8:8b:f7:28:51:d6:d4:b6:63:5b:c7: ae:e3:fe:e6:6e:c3:da:91:1e:be:61:38:3a:b7:7e:d9:93:6c: 4c:f4:f0:77:52:1d:d8:dd:ce:28:a2:d0:93:b8:86:9b:dd:3d: 20:6f:a2:01:b7:8b:40:13:00:dc:a9:f8:75:5b:a0:b1:e9:e2: 15:19:8b:c5:18:c3:a7:d3:04:d5:af:58:fb:7a:47:9d:43:5f: f4:45:e9:7c:a1:7f:56:78:73:ae:31:3a:6e:08:be:bb:14:58: db:28:6e:59:51:95:c6:8f:25:da:de:73:9e:c0:a4:62:ca:1b: 83:4d:a0:f6:a7:c3:13:21:eb:64:dd:48:79:d4:ad:8e:c1:7b: f0:fc:20:4c:85:c6:3a:21:27:eb:59:a0:9c:ed:94:70:c0:ca: 9d:79:48:8a:8b:e7:d6:ee:1a:38:97:60:30:a8:c6:55:8a:47: db:f1:db:85:dc:d7:5e:27:b4:74:55:b0:ff:e0:11:00:b5:19: 4a:51:ac:b7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv0mWem00nBbtqKgFVnwsvuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJkM2MzOTg3ZTdjMzRiMzY2YWEwZjA5YzQwZWE0YzgwYmZl ZDBlMDEwHhcNMjYwMTI1MTAwMDUyWhcNMjYwMTI2MTAwMDUyWjAzMTEwLwYDVQQD Eyg3NWMxNWY4NzY1ZjhiNWY3MTMxYzJmMTFkYjA3NjgxNzliNDNmY2QwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmUbL9zSoww/iPX6D1b3jbnDpyROC PZv3YnMYZ0/GRq7S+To808S+3maiSOBTMMO+91KtSNYHo4CtCsx37Smgbn4VzPEE lwc0RefhHxj/Oi5thzzrmGcaEesWcdLBl9f67cJWWbaUkhhpYEqBJn12yr8+mKbm LjZI7ldtXPjnwlfFO6MvRxMR1JaLZ1N8+ltlVk5Xy4epkq+m5pxzcFnu/B3ecjQ3 ww20znGMmXGswRYBdFjnWMDZcdnoBQ69QouiD412bXj9RltPMGJJRrq0oWJo+mLS sO6F5gp+4KtuSAVATWaTZVQMlCvIHPii3GuLP637ShtA+oG4Pmv8ea9+9wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHXBX4dl+LX3ExwvEdsHaBebQ/zQMB8GA1UdIwQY MBaAFC08OYfnw0s2aqDwnEDqTIC/7Q4BMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTFR3NWgtZkRTelpxb1BDY1FPcE1nTF90RGdFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi8wNjhhNmMtOTIxYi00ZTBiLWJhN2Ut M2E2ZGU5OWVkZTQ3LzEvTFR3NWgtZkRTelpxb1BDY1FPcE1nTF90RGdFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi8wNjhhNmMtOTIxYi00ZTBiLWJhN2UtM2E2ZGU5OWVkZTQ3 LzEvTFR3NWgtZkRTelpxb1BDY1FPcE1nTF90RGdFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAl3qj+XYK lC5qvouaCWDeyw+N4FYG/8V7a8AyXRSH1O/S1qDVoJOq5dJ9oG41penV17FUNQY9 SEDGFZFdsMiL9yhR1tS2Y1vHruP+5m7D2pEevmE4Ord+2ZNsTPTwd1Id2N3OKKLQ k7iGm909IG+iAbeLQBMA3Kn4dVugseniFRmLxRjDp9ME1a9Y+3pHnUNf9EXpfKF/ VnhzrjE6bgi+uxRY2yhuWVGVxo8l2t5znsCkYsobg02g9qfDEyHrZN1IedStjsF7 8PwgTIXGOiEn61mgnO2UcMDKnXlIiovn1u4aOJdgMKjGVYpH2/HbhdzXXie0dFWw /+ARALUZSlGstw== -----END CERTIFICATE-----Generated at Sun Jan 25 16:28:50 2026 by rpki-client