This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/227b53-473d-46af-8201-98e879ea3726/1/jbK0TyPcypwGBL7WkPKKatkBeZk.mft File: jbK0TyPcypwGBL7WkPKKatkBeZk.mft (raw, json) Hash identifier: klimrWqm+SGkDVgzfwt3LPevPZPPAOb4P38vI87NSCk= Subject key identifier: 32:D2:64:E4:DF:13:A4:77:C2:19:A4:25:A7:BD:D1:67:FA:52:53:9F Authority key identifier: 8D:B2:B4:4F:23:DC:CA:9C:06:04:BE:D6:90:F2:8A:6A:D9:01:79:99 Certificate issuer: /CN=8db2b44f23dcca9c0604bed690f28a6ad9017999 Certificate serial: 019BF6515E7503F3BAC76386AF2A393BCA23 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jbK0TyPcypwGBL7WkPKKatkBeZk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/227b53-473d-46af-8201-98e879ea3726/1/jbK0TyPcypwGBL7WkPKKatkBeZk.mft Manifest number: C9 Signing time: Sun 25 Jan 2026 18:01:26 +0000 Manifest this update: Sun 25 Jan 2026 18:01:26 +0000 Manifest next update: Mon 26 Jan 2026 18:01:26 +0000 Files and hashes: 1: H60TaHzgzIDq5bEuHBb2yyowYNw.roa (hash: MUV9kznaIpAsdXMNwJm4Ji4yLC8b4zqE7vuFtiUPGnQ=) 2: jbK0TyPcypwGBL7WkPKKatkBeZk.crl (hash: qFofeBBSPKXq4JVnG9GBdXWA6ke8/FNzlS71/HD5v5I=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/227b53-473d-46af-8201-98e879ea3726/1/jbK0TyPcypwGBL7WkPKKatkBeZk.crl rsync://rpki.ripe.net/repository/DEFAULT/19/227b53-473d-46af-8201-98e879ea3726/1/jbK0TyPcypwGBL7WkPKKatkBeZk.mft rsync://rpki.ripe.net/repository/DEFAULT/jbK0TyPcypwGBL7WkPKKatkBeZk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f6:51:5e:75:03:f3:ba:c7:63:86:af:2a:39:3b:ca:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8db2b44f23dcca9c0604bed690f28a6ad9017999 Validity Not Before: Jan 25 18:01:26 2026 GMT Not After : Jan 26 18:01:26 2026 GMT Subject: CN=32d264e4df13a477c219a425a7bdd167fa52539f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:da:6e:60:ca:b5:18:aa:78:e7:ee:8f:f6:48: 88:de:d2:d4:b5:01:ea:97:bb:cb:40:4b:58:41:ab: ee:fa:66:98:94:7f:0a:27:21:e9:69:d8:ca:5f:58: 21:55:46:8d:ab:4f:fd:e4:93:b8:b4:91:c9:9f:8f: f7:81:2e:c6:b5:d5:f1:85:af:da:51:60:0a:5d:e2: f9:cd:84:e0:80:8a:11:09:30:ec:63:74:b7:18:c6: b9:fe:11:e9:93:6a:d3:3f:3e:97:27:2d:8a:a3:fe: 07:48:f0:4f:e4:15:2f:9c:a2:07:62:a7:f4:de:ed: d0:ec:c4:51:e3:87:75:4f:92:2a:a0:e5:ea:48:77: 5d:4d:d6:9d:f9:cb:6c:b9:de:31:6c:bc:b1:a4:64: b7:16:c6:e7:1e:1c:65:4f:89:cc:02:f3:d3:e9:b7: 49:97:ee:1f:bc:83:3b:7a:dd:19:a6:93:67:1e:fa: 02:6b:24:fe:1e:04:79:32:39:76:9a:e5:5b:af:ff: ac:54:35:fb:13:74:c7:66:4a:44:47:4f:29:56:20: 84:e4:c1:a7:34:3c:8e:c0:e8:9e:8e:d9:ec:25:fe: bb:cc:1c:16:02:64:65:79:81:db:ed:26:64:72:54: 7d:1e:49:0a:82:ad:77:18:1c:ef:7a:22:a7:7a:fd: ce:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:D2:64:E4:DF:13:A4:77:C2:19:A4:25:A7:BD:D1:67:FA:52:53:9F X509v3 Authority Key Identifier: keyid:8D:B2:B4:4F:23:DC:CA:9C:06:04:BE:D6:90:F2:8A:6A:D9:01:79:99 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jbK0TyPcypwGBL7WkPKKatkBeZk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/227b53-473d-46af-8201-98e879ea3726/1/jbK0TyPcypwGBL7WkPKKatkBeZk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/19/227b53-473d-46af-8201-98e879ea3726/1/jbK0TyPcypwGBL7WkPKKatkBeZk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 36:c7:8b:ff:a7:e4:bc:03:ca:3f:e5:be:6a:20:c9:11:2f:99: eb:87:8c:c1:76:a3:9c:1d:5e:86:1b:e5:94:d1:65:af:42:06: 6c:7a:b5:82:79:1c:15:5f:54:ae:4d:35:2d:bb:5a:ee:d7:97: 27:a0:43:2e:42:b6:95:48:53:ad:dc:dc:a8:3f:d1:6d:ed:e3: c6:3c:14:3b:4a:46:dd:c6:55:86:94:46:b3:15:50:25:fb:30: 6f:5a:ff:af:a2:72:79:30:1c:77:7f:6b:c6:42:9b:4a:84:5e: 52:02:62:d9:ee:60:e9:c0:b4:fe:30:96:28:8f:ea:f7:f8:32: 1f:37:53:09:01:0b:81:94:01:bc:e8:cc:dc:1c:88:6e:13:79: cd:59:15:25:37:da:4d:9e:8a:ef:7e:ab:f6:c6:b3:e6:86:26: 4a:39:3e:28:2d:7b:2a:76:c8:57:47:8b:55:34:17:4e:f9:98: 8b:7e:f3:69:0d:be:3d:6f:1f:52:0f:f3:60:7e:96:5d:4d:53: 49:13:53:69:17:b5:dd:dc:cd:6e:2e:db:13:01:fe:c8:1c:2e: 71:5d:83:79:00:62:ba:53:a8:5c:6c:ed:d7:ed:98:c2:9e:ab: 32:c9:2c:5e:14:21:bc:05:1a:e8:da:09:46:35:c8:5d:6e:72: 88:d1:6e:0b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv2UV51A/O6x2OGryo5O8ojMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhkYjJiNDRmMjNkY2NhOWMwNjA0YmVkNjkwZjI4YTZhZDkw MTc5OTkwHhcNMjYwMTI1MTgwMTI2WhcNMjYwMTI2MTgwMTI2WjAzMTEwLwYDVQQD EygzMmQyNjRlNGRmMTNhNDc3YzIxOWE0MjVhN2JkZDE2N2ZhNTI1MzlmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAttpuYMq1GKp45+6P9kiI3tLUtQHq l7vLQEtYQavu+maYlH8KJyHpadjKX1ghVUaNq0/95JO4tJHJn4/3gS7GtdXxha/a UWAKXeL5zYTggIoRCTDsY3S3GMa5/hHpk2rTPz6XJy2Ko/4HSPBP5BUvnKIHYqf0 3u3Q7MRR44d1T5IqoOXqSHddTdad+ctsud4xbLyxpGS3FsbnHhxlT4nMAvPT6bdJ l+4fvIM7et0ZppNnHvoCayT+HgR5Mjl2muVbr/+sVDX7E3THZkpER08pViCE5MGn NDyOwOiejtnsJf67zBwWAmRleYHb7SZkclR9HkkKgq13GBzveiKnev3OZQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDLSZOTfE6R3whmkJae90Wf6UlOfMB8GA1UdIwQY MBaAFI2ytE8j3MqcBgS+1pDyimrZAXmZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvamJLMFR5UGN5cHdHQkw3V2tQS0thdGtCZVprLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOS8yMjdiNTMtNDczZC00NmFmLTgyMDEt OThlODc5ZWEzNzI2LzEvamJLMFR5UGN5cHdHQkw3V2tQS0thdGtCZVprLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xOS8yMjdiNTMtNDczZC00NmFmLTgyMDEtOThlODc5ZWEzNzI2 LzEvamJLMFR5UGN5cHdHQkw3V2tQS0thdGtCZVprLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANseL/6fk vAPKP+W+aiDJES+Z64eMwXajnB1ehhvllNFlr0IGbHq1gnkcFV9Urk01Lbta7teX J6BDLkK2lUhTrdzcqD/Rbe3jxjwUO0pG3cZVhpRGsxVQJfswb1r/r6JyeTAcd39r xkKbSoReUgJi2e5g6cC0/jCWKI/q9/gyHzdTCQELgZQBvOjM3ByIbhN5zVkVJTfa TZ6K736r9saz5oYmSjk+KC17KnbIV0eLVTQXTvmYi37zaQ2+PW8fUg/zYH6WXU1T SRNTaRe13dzNbi7bEwH+yBwucV2DeQBiulOoXGzt1+2Ywp6rMsksXhQhvAUa6NoJ RjXIXW5yiNFuCw== -----END CERTIFICATE-----Generated at Mon Jan 26 00:21:25 2026 by rpki-client