This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.mft File: kniPTrt0HAw2mg_TBZTNAQHcdHY.mft (raw, json) Hash identifier: 6Id793wIb4phP651F7BAtNQLbeSDPXC1wFQwzWVDxiU= Subject key identifier: 56:2B:1C:CC:C3:9B:3F:67:1A:59:A7:F2:B7:92:9D:64:7A:F9:AC:D2 Authority key identifier: 92:78:8F:4E:BB:74:1C:0C:36:9A:0F:D3:05:94:CD:01:01:DC:74:76 Certificate issuer: /CN=92788f4ebb741c0c369a0fd30594cd0101dc7476 Certificate serial: 019BFA2E4CF81EC6333C799AC66402B5E301 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kniPTrt0HAw2mg_TBZTNAQHcdHY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.mft Manifest number: 17EB Signing time: Mon 26 Jan 2026 12:01:36 +0000 Manifest this update: Mon 26 Jan 2026 12:01:36 +0000 Manifest next update: Tue 27 Jan 2026 12:01:36 +0000 Files and hashes: 1: b3JxtrhKDsDTqBI6cQvHONYRjVU.roa (hash: C950hko8WTv3REmoomJ1yY7S0AF8GUGo8sOTvPlJ2Dg=) 2: kniPTrt0HAw2mg_TBZTNAQHcdHY.crl (hash: xs1f+B5defRVptum/kKcZfukNOJSVYJ3HYxO5cgvrk4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.crl rsync://rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.mft rsync://rpki.ripe.net/repository/DEFAULT/kniPTrt0HAw2mg_TBZTNAQHcdHY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 12:01:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fa:2e:4c:f8:1e:c6:33:3c:79:9a:c6:64:02:b5:e3:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=92788f4ebb741c0c369a0fd30594cd0101dc7476 Validity Not Before: Jan 26 12:01:36 2026 GMT Not After : Jan 27 12:01:36 2026 GMT Subject: CN=562b1cccc39b3f671a59a7f2b7929d647af9acd2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:08:e3:22:23:59:d3:5b:b3:e8:4b:57:ed:44: a4:ef:68:8f:4c:a3:44:11:96:d9:00:66:00:64:e8: 39:3d:3b:a4:af:1b:67:36:0f:fa:16:6b:62:83:b9: d0:36:5b:dd:14:24:e4:d7:69:ef:1c:76:e4:b1:af: 08:34:29:37:e2:e8:ac:b5:1b:b7:e5:c1:ce:f2:05: b2:0b:51:1c:a1:70:ca:d3:d2:0e:b0:ff:43:ba:e9: f3:16:ac:3c:13:ed:5d:e5:58:8f:3b:56:6f:47:c0: 24:28:4f:8e:4a:a4:af:58:05:03:9d:1f:da:21:d5: b6:3e:7b:8e:df:40:b6:22:e7:bb:44:87:7a:18:ac: 88:cd:5b:b9:d1:1b:01:da:59:16:0d:00:67:b4:4b: c2:34:bb:2c:12:9f:f6:f1:24:7b:d7:20:49:d0:21: 45:3a:40:a4:35:7c:a6:e7:a5:6a:89:12:b1:e7:51: 1f:b0:86:67:1e:ec:e8:8b:d7:54:0b:09:c5:9d:d2: df:75:93:9b:0f:92:e9:08:e3:6a:a3:67:ee:9c:df: 35:35:9e:19:f0:9f:51:d4:05:05:fa:a1:a6:0b:b8: 40:ac:6f:27:56:d4:5a:9c:e4:9e:b0:f2:b9:6d:bd: 36:90:5e:88:89:ee:a7:af:e9:70:f0:60:02:bd:46: 16:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:2B:1C:CC:C3:9B:3F:67:1A:59:A7:F2:B7:92:9D:64:7A:F9:AC:D2 X509v3 Authority Key Identifier: keyid:92:78:8F:4E:BB:74:1C:0C:36:9A:0F:D3:05:94:CD:01:01:DC:74:76 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kniPTrt0HAw2mg_TBZTNAQHcdHY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0e:f9:82:18:c1:29:0e:ab:1d:df:bc:31:26:07:67:39:3f:d1: f3:cf:36:c4:66:d2:2f:94:ec:88:71:43:ad:d9:60:78:42:1f: 82:ab:02:a8:04:a5:bd:a7:11:68:d4:d8:10:75:5a:fa:77:e3: 33:ed:11:b1:c8:15:e6:b5:06:5a:eb:39:b6:61:9e:98:e2:47: c8:a3:2f:1e:86:75:6d:12:03:e2:64:0b:12:71:11:a0:ec:d5: 07:bd:bc:3a:dd:7e:6f:7d:3c:2f:8b:e8:f1:2d:bd:91:6e:48: a0:ef:9d:34:5e:f8:52:af:aa:2c:1e:cf:0a:c3:10:04:2d:a7: 3b:a4:ed:05:26:0e:34:87:47:b9:d2:73:c3:56:4f:4c:b7:e9: e3:ef:ee:1a:68:0a:47:e6:83:79:ba:2c:2d:3c:8a:b3:6b:92: 95:52:1a:4a:a6:bf:40:18:13:53:b8:45:1b:fd:9c:b5:11:26: 44:96:a2:7a:fe:1c:29:90:95:3f:b5:df:e7:0c:21:b6:9d:36: e0:3f:1e:04:c7:08:08:52:d0:db:f9:3b:c8:e1:fb:fb:d0:65: 95:23:3e:05:d3:a6:67:c7:10:dc:f1:a4:46:18:6e:4e:69:c3: 9a:9f:e4:6b:be:36:59:13:4a:21:de:74:8e:6a:61:ce:20:27: eb:68:db:a2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv6Lkz4HsYzPHmaxmQCteMBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkyNzg4ZjRlYmI3NDFjMGMzNjlhMGZkMzA1OTRjZDAxMDFk Yzc0NzYwHhcNMjYwMTI2MTIwMTM2WhcNMjYwMTI3MTIwMTM2WjAzMTEwLwYDVQQD Eyg1NjJiMWNjY2MzOWIzZjY3MWE1OWE3ZjJiNzkyOWQ2NDdhZjlhY2QyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArgjjIiNZ01uz6EtX7USk72iPTKNE EZbZAGYAZOg5PTukrxtnNg/6Fmtig7nQNlvdFCTk12nvHHbksa8INCk34uistRu3 5cHO8gWyC1EcoXDK09IOsP9DuunzFqw8E+1d5ViPO1ZvR8AkKE+OSqSvWAUDnR/a IdW2PnuO30C2Iue7RId6GKyIzVu50RsB2lkWDQBntEvCNLssEp/28SR71yBJ0CFF OkCkNXym56VqiRKx51EfsIZnHuzoi9dUCwnFndLfdZObD5LpCONqo2funN81NZ4Z 8J9R1AUF+qGmC7hArG8nVtRanOSesPK5bb02kF6Iie6nr+lw8GACvUYWkwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFYrHMzDmz9nGlmn8reSnWR6+azSMB8GA1UdIwQY MBaAFJJ4j067dBwMNpoP0wWUzQEB3HR2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva25pUFRydDBIQXcybWdfVEJaVE5BUUhjZEhZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS83NzFlNzctYzY0OS00N2YzLTk5YTgt ZGJmYWMwMGZiMGVmLzEva25pUFRydDBIQXcybWdfVEJaVE5BUUhjZEhZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNS83NzFlNzctYzY0OS00N2YzLTk5YTgtZGJmYWMwMGZiMGVm LzEva25pUFRydDBIQXcybWdfVEJaVE5BUUhjZEhZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADvmCGMEp Dqsd37wxJgdnOT/R8882xGbSL5TsiHFDrdlgeEIfgqsCqASlvacRaNTYEHVa+nfj M+0RscgV5rUGWus5tmGemOJHyKMvHoZ1bRID4mQLEnERoOzVB728Ot1+b308L4vo 8S29kW5IoO+dNF74Uq+qLB7PCsMQBC2nO6TtBSYONIdHudJzw1ZPTLfp4+/uGmgK R+aDebosLTyKs2uSlVIaSqa/QBgTU7hFG/2ctREmRJaiev4cKZCVP7Xf5wwhtp02 4D8eBMcICFLQ2/k7yOH7+9BllSM+BdOmZ8cQ3PGkRhhuTmnDmp/ka742WRNKId50 jmphziAn62jbog== -----END CERTIFICATE-----Generated at Mon Jan 26 18:18:07 2026 by rpki-client