This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/a58803-24e7-46cf-b244-9da7887f6a2f/1/zE4rrFHZy3KbGnVijua0ycHp_8g.mft File: zE4rrFHZy3KbGnVijua0ycHp_8g.mft (raw, json) Hash identifier: Jfbm554CnmM2gs3+4b6F4UdnUoM7TzHZbuzLgobnU0g= Subject key identifier: C3:20:86:82:DF:39:2E:B3:68:5A:4E:23:9E:9D:1D:76:33:53:17:8F Authority key identifier: CC:4E:2B:AC:51:D9:CB:72:9B:1A:75:62:8E:E6:B4:C9:C1:E9:FF:C8 Certificate issuer: /CN=cc4e2bac51d9cb729b1a75628ee6b4c9c1e9ffc8 Certificate serial: 019BF7D26D0BD1D52C8D701C74F212F9D32A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zE4rrFHZy3KbGnVijua0ycHp_8g.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/a58803-24e7-46cf-b244-9da7887f6a2f/1/zE4rrFHZy3KbGnVijua0ycHp_8g.mft Manifest number: 0394 Signing time: Mon 26 Jan 2026 01:02:01 +0000 Manifest this update: Mon 26 Jan 2026 01:02:01 +0000 Manifest next update: Tue 27 Jan 2026 01:02:01 +0000 Files and hashes: 1: CVwCEsbzumpXgEnKDDCCAaIDrYM.roa (hash: lxu8mh9bo97HPFI+56oJ6vzMl5ukNpSkTrJqrOGog30=) 2: zE4rrFHZy3KbGnVijua0ycHp_8g.crl (hash: azRBbblsGYzF069iYakDtVgtwgGXPz2iO/Qsz88Fbc4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/a58803-24e7-46cf-b244-9da7887f6a2f/1/zE4rrFHZy3KbGnVijua0ycHp_8g.crl rsync://rpki.ripe.net/repository/DEFAULT/14/a58803-24e7-46cf-b244-9da7887f6a2f/1/zE4rrFHZy3KbGnVijua0ycHp_8g.mft rsync://rpki.ripe.net/repository/DEFAULT/zE4rrFHZy3KbGnVijua0ycHp_8g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f7:d2:6d:0b:d1:d5:2c:8d:70:1c:74:f2:12:f9:d3:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cc4e2bac51d9cb729b1a75628ee6b4c9c1e9ffc8 Validity Not Before: Jan 26 01:02:01 2026 GMT Not After : Jan 27 01:02:01 2026 GMT Subject: CN=c3208682df392eb3685a4e239e9d1d763353178f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:08:62:48:a8:9e:5b:66:fb:f0:38:eb:8f:8f: 28:ce:22:c1:14:72:80:56:c0:45:b0:f4:ed:e0:41: 07:ff:c1:65:2b:f8:74:b3:6b:fa:28:dd:23:87:82: f0:07:95:ac:da:27:21:4f:08:27:bc:05:e1:69:43: e3:26:2a:e4:8c:ab:6b:b5:43:17:f0:80:79:6f:e9: c3:01:8f:33:23:57:ab:40:c4:c4:12:76:63:b6:94: 5d:d0:96:f3:fb:5c:05:7c:f4:68:a4:08:14:a8:fe: bb:ec:a2:e0:ee:7a:4d:bc:72:af:14:99:08:ff:c6: 6b:f2:0a:61:84:84:fd:f3:13:75:d1:aa:47:ce:91: 56:d3:07:e7:85:97:01:04:59:7b:bd:d9:1d:5a:92: fb:3d:3b:a5:d4:45:c2:f7:6d:49:87:83:85:a2:fb: ae:cc:3d:2c:7d:64:d3:54:57:be:ea:7d:cf:26:b4: fa:ba:9a:68:ce:9e:d4:cb:93:2c:68:ee:e3:de:1d: f3:31:4b:42:1d:8d:41:2e:98:67:3b:fb:28:ed:6c: 5a:7b:7a:43:b7:49:71:e9:9f:77:f4:29:ee:4a:8f: a3:4b:af:ac:a7:d3:3d:96:99:ac:52:64:f8:ef:ea: d6:c3:40:05:94:6e:9d:0c:1a:f7:d7:a3:d0:d4:2e: 1c:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:20:86:82:DF:39:2E:B3:68:5A:4E:23:9E:9D:1D:76:33:53:17:8F X509v3 Authority Key Identifier: keyid:CC:4E:2B:AC:51:D9:CB:72:9B:1A:75:62:8E:E6:B4:C9:C1:E9:FF:C8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zE4rrFHZy3KbGnVijua0ycHp_8g.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/a58803-24e7-46cf-b244-9da7887f6a2f/1/zE4rrFHZy3KbGnVijua0ycHp_8g.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/14/a58803-24e7-46cf-b244-9da7887f6a2f/1/zE4rrFHZy3KbGnVijua0ycHp_8g.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 53:9d:b8:5d:4b:e3:97:21:ba:49:f9:02:56:79:21:c0:e9:a1: 25:11:16:0f:e8:89:b5:3e:7a:a4:80:e8:05:c0:2d:75:27:2d: 25:66:b2:df:44:88:83:47:bc:aa:52:ee:10:e4:96:41:e4:ed: 79:7c:d7:c2:3e:41:22:7f:0c:e2:35:a1:15:54:bd:6a:11:5c: cb:e3:44:29:ea:b4:02:c2:e5:c2:0a:57:4b:64:65:e6:ed:0d: 3a:ab:5d:6c:d4:92:5e:12:b2:07:b3:96:81:60:39:45:e8:fb: 11:44:db:47:72:d1:d9:29:48:26:dc:22:74:de:6a:a5:f9:96: 8f:e4:8f:6c:f7:65:5d:4f:a4:76:4d:52:a1:83:57:a6:12:b1: be:2b:23:50:1c:b0:e6:ad:6b:b9:4f:22:79:e7:18:9d:9f:3d: 5b:9a:16:d6:ec:8c:1e:2e:2a:db:f3:02:04:28:a5:55:ee:fb: 2d:9c:05:c8:10:bc:36:f9:0e:91:db:37:cd:65:d5:ec:2d:3f: db:d4:0d:ec:0f:02:89:1d:69:e2:ef:47:44:b1:f4:e4:65:33: 3f:6a:a1:8f:d5:4a:9e:e2:e7:fa:78:be:d5:81:6d:df:ee:f9: df:e5:85:d0:ea:e3:11:de:6a:8a:90:62:19:11:d8:b9:24:d8: f7:b9:fe:b4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv30m0L0dUsjXAcdPIS+dMqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNjNGUyYmFjNTFkOWNiNzI5YjFhNzU2MjhlZTZiNGM5YzFl OWZmYzgwHhcNMjYwMTI2MDEwMjAxWhcNMjYwMTI3MDEwMjAxWjAzMTEwLwYDVQQD EyhjMzIwODY4MmRmMzkyZWIzNjg1YTRlMjM5ZTlkMWQ3NjMzNTMxNzhmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmwhiSKieW2b78Djrj48oziLBFHKA VsBFsPTt4EEH/8FlK/h0s2v6KN0jh4LwB5Ws2ichTwgnvAXhaUPjJirkjKtrtUMX 8IB5b+nDAY8zI1erQMTEEnZjtpRd0Jbz+1wFfPRopAgUqP677KLg7npNvHKvFJkI /8Zr8gphhIT98xN10apHzpFW0wfnhZcBBFl7vdkdWpL7PTul1EXC921Jh4OFovuu zD0sfWTTVFe+6n3PJrT6uppozp7Uy5MsaO7j3h3zMUtCHY1BLphnO/so7Wxae3pD t0lx6Z939CnuSo+jS6+sp9M9lpmsUmT47+rWw0AFlG6dDBr316PQ1C4ccwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMMghoLfOS6zaFpOI56dHXYzUxePMB8GA1UdIwQY MBaAFMxOK6xR2ctymxp1Yo7mtMnB6f/IMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvekU0cnJGSFp5M0tiR25WaWp1YTB5Y0hwXzhnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC9hNTg4MDMtMjRlNy00NmNmLWIyNDQt OWRhNzg4N2Y2YTJmLzEvekU0cnJGSFp5M0tiR25WaWp1YTB5Y0hwXzhnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNC9hNTg4MDMtMjRlNy00NmNmLWIyNDQtOWRhNzg4N2Y2YTJm LzEvekU0cnJGSFp5M0tiR25WaWp1YTB5Y0hwXzhnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAU524XUvj lyG6SfkCVnkhwOmhJREWD+iJtT56pIDoBcAtdSctJWay30SIg0e8qlLuEOSWQeTt eXzXwj5BIn8M4jWhFVS9ahFcy+NEKeq0AsLlwgpXS2Rl5u0NOqtdbNSSXhKyB7OW gWA5Rej7EUTbR3LR2SlIJtwidN5qpfmWj+SPbPdlXU+kdk1SoYNXphKxvisjUByw 5q1ruU8ieecYnZ89W5oW1uyMHi4q2/MCBCilVe77LZwFyBC8NvkOkds3zWXV7C0/ 29QN7A8CiR1p4u9HRLH05GUzP2qhj9VKnuLn+ni+1YFt3+753+WF0OrjEd5qipBi GRHYuSTY97n+tA== -----END CERTIFICATE-----Generated at Mon Jan 26 06:40:58 2026 by rpki-client