This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/267966-f039-4174-810d-3f4ef81a2e53/1/S8hY5QhWNUaEpdBKPsw1klgNVI0.mft File: S8hY5QhWNUaEpdBKPsw1klgNVI0.mft (raw, json) Hash identifier: MFgsXFoT/CIhgvNJrWzbiFI9X09YLrPpPZZqz6gKNhA= Subject key identifier: 30:BC:DE:67:A8:41:57:C2:0A:6B:2C:37:7A:86:9C:66:F9:F8:8F:77 Authority key identifier: 4B:C8:58:E5:08:56:35:46:84:A5:D0:4A:3E:CC:35:92:58:0D:54:8D Certificate issuer: /CN=4bc858e50856354684a5d04a3ecc3592580d548d Certificate serial: 019BF91AEC22AE38CD07D5F20DA167D0BBBF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S8hY5QhWNUaEpdBKPsw1klgNVI0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/267966-f039-4174-810d-3f4ef81a2e53/1/S8hY5QhWNUaEpdBKPsw1klgNVI0.mft Manifest number: 0AA8 Signing time: Mon 26 Jan 2026 07:00:49 +0000 Manifest this update: Mon 26 Jan 2026 07:00:49 +0000 Manifest next update: Tue 27 Jan 2026 07:00:49 +0000 Files and hashes: 1: S8hY5QhWNUaEpdBKPsw1klgNVI0.crl (hash: 0H9nKzX3K0wIOU5pb2Z+3FNWUhRTCXtxX1K/O7nslMw=) 2: hOCqHr0-rwjOn6wU8z8C-ggKXAo.roa (hash: aczilg5expuAqkln7fFu+xj4eV4HRQvyQA+wDQF1/60=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/267966-f039-4174-810d-3f4ef81a2e53/1/S8hY5QhWNUaEpdBKPsw1klgNVI0.crl rsync://rpki.ripe.net/repository/DEFAULT/19/267966-f039-4174-810d-3f4ef81a2e53/1/S8hY5QhWNUaEpdBKPsw1klgNVI0.mft rsync://rpki.ripe.net/repository/DEFAULT/S8hY5QhWNUaEpdBKPsw1klgNVI0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f9:1a:ec:22:ae:38:cd:07:d5:f2:0d:a1:67:d0:bb:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4bc858e50856354684a5d04a3ecc3592580d548d Validity Not Before: Jan 26 07:00:49 2026 GMT Not After : Jan 27 07:00:49 2026 GMT Subject: CN=30bcde67a84157c20a6b2c377a869c66f9f88f77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:1b:18:ce:b6:0a:a4:e6:bf:cd:ad:29:03:2a: ba:cd:fb:2a:c1:ab:d0:37:8e:57:5f:31:1b:be:34: d0:0c:19:5c:1e:23:3b:e0:2e:c4:64:69:61:67:5c: 68:0a:d7:bb:5e:69:1e:e7:0c:10:1c:d8:14:77:e4: d9:7e:9b:57:10:4f:cc:c2:d9:ba:36:ad:2e:a5:f7: 5f:55:1a:83:41:76:b2:da:4b:87:ee:11:cd:2e:aa: 66:76:74:0b:b9:92:78:fb:70:4e:cb:cf:fa:bc:68: 5c:e6:37:7b:ea:18:e5:08:d2:d7:bf:d0:bd:e0:bc: cf:ed:13:c7:eb:b3:4d:fe:e4:e5:18:fc:9c:8b:e9: 05:d8:92:33:e6:8e:53:16:dd:19:d7:92:f5:05:2d: fa:38:d0:41:b1:c3:ed:7e:d6:12:6e:b2:0a:26:02: 9a:0d:f1:0e:45:99:2f:c8:20:f2:7c:b4:bd:80:e9: 3c:f9:a7:ab:04:41:be:86:51:65:0e:d9:96:df:37: e1:9b:98:06:4f:c1:16:cc:9b:9c:01:32:21:56:7e: a6:1e:d9:fa:95:e4:b5:23:02:fd:e1:ca:ae:6e:6d: 89:9e:8e:5d:7a:63:28:fb:05:43:29:9f:78:2f:8e: 59:d4:11:9b:4a:d7:a8:5c:c5:51:ef:9b:44:f7:15: 25:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:BC:DE:67:A8:41:57:C2:0A:6B:2C:37:7A:86:9C:66:F9:F8:8F:77 X509v3 Authority Key Identifier: keyid:4B:C8:58:E5:08:56:35:46:84:A5:D0:4A:3E:CC:35:92:58:0D:54:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S8hY5QhWNUaEpdBKPsw1klgNVI0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/267966-f039-4174-810d-3f4ef81a2e53/1/S8hY5QhWNUaEpdBKPsw1klgNVI0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/19/267966-f039-4174-810d-3f4ef81a2e53/1/S8hY5QhWNUaEpdBKPsw1klgNVI0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3a:07:d3:8a:46:3d:e6:84:01:6a:c2:15:a4:01:9b:6a:fd:33: 41:5c:9f:85:a3:b8:0b:5a:86:98:55:04:a9:2a:2c:08:cb:09: 6c:9a:30:02:2b:b0:ee:b3:dd:af:ff:14:07:90:28:7c:3b:69: d0:8c:af:07:7f:46:96:23:53:6b:8b:50:5d:4e:d0:68:6a:ec: 80:fe:6d:b7:cc:d2:03:59:58:f9:2f:86:bc:30:a9:77:5d:be: 51:3e:aa:bd:9b:df:ae:31:ef:be:8b:22:39:44:5c:fc:24:d1: 35:f7:63:17:bc:67:15:75:db:07:48:50:65:f9:21:b0:ff:a0: 40:86:2f:5d:08:9e:17:25:8c:f2:a3:38:6d:aa:3e:17:d7:c5: d4:ba:bf:d4:c0:ba:43:74:fe:75:36:5d:44:2f:ed:97:e1:22: 92:9a:c1:cc:cd:c4:e0:5a:c3:e1:a8:1a:0e:06:2d:f9:9f:d1: df:33:d6:d0:6c:dc:06:33:b2:e0:3a:fd:e7:f6:f1:52:76:c2: ef:8c:df:8c:32:86:59:ff:13:f4:49:c5:24:60:75:72:1f:ac: 69:1c:9f:b0:1d:df:03:39:12:8d:13:21:1d:38:e3:4a:38:a3: b6:24:ec:44:9e:30:d3:55:d7:9b:b7:f0:83:75:3e:fd:4d:e5: a8:1e:94:a9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv5GuwirjjNB9XyDaFn0Lu/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRiYzg1OGU1MDg1NjM1NDY4NGE1ZDA0YTNlY2MzNTkyNTgw ZDU0OGQwHhcNMjYwMTI2MDcwMDQ5WhcNMjYwMTI3MDcwMDQ5WjAzMTEwLwYDVQQD EygzMGJjZGU2N2E4NDE1N2MyMGE2YjJjMzc3YTg2OWM2NmY5Zjg4Zjc3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvhsYzrYKpOa/za0pAyq6zfsqwavQ N45XXzEbvjTQDBlcHiM74C7EZGlhZ1xoCte7Xmke5wwQHNgUd+TZfptXEE/Mwtm6 Nq0upfdfVRqDQXay2kuH7hHNLqpmdnQLuZJ4+3BOy8/6vGhc5jd76hjlCNLXv9C9 4LzP7RPH67NN/uTlGPyci+kF2JIz5o5TFt0Z15L1BS36ONBBscPtftYSbrIKJgKa DfEORZkvyCDyfLS9gOk8+aerBEG+hlFlDtmW3zfhm5gGT8EWzJucATIhVn6mHtn6 leS1IwL94cqubm2Jno5demMo+wVDKZ94L45Z1BGbSteoXMVR75tE9xUlYwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDC83meoQVfCCmssN3qGnGb5+I93MB8GA1UdIwQY MBaAFEvIWOUIVjVGhKXQSj7MNZJYDVSNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUzhoWTVRaFdOVWFFcGRCS1BzdzFrbGdOVkkwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOS8yNjc5NjYtZjAzOS00MTc0LTgxMGQt M2Y0ZWY4MWEyZTUzLzEvUzhoWTVRaFdOVWFFcGRCS1BzdzFrbGdOVkkwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xOS8yNjc5NjYtZjAzOS00MTc0LTgxMGQtM2Y0ZWY4MWEyZTUz LzEvUzhoWTVRaFdOVWFFcGRCS1BzdzFrbGdOVkkwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOgfTikY9 5oQBasIVpAGbav0zQVyfhaO4C1qGmFUEqSosCMsJbJowAiuw7rPdr/8UB5AofDtp 0IyvB39GliNTa4tQXU7QaGrsgP5tt8zSA1lY+S+GvDCpd12+UT6qvZvfrjHvvosi OURc/CTRNfdjF7xnFXXbB0hQZfkhsP+gQIYvXQieFyWM8qM4bao+F9fF1Lq/1MC6 Q3T+dTZdRC/tl+EikprBzM3E4FrD4agaDgYt+Z/R3zPW0GzcBjOy4Dr95/bxUnbC 74zfjDKGWf8T9EnFJGB1ch+saRyfsB3fAzkSjRMhHTjjSjijtiTsRJ4w01XXm7fw g3U+/U3lqB6UqQ== -----END CERTIFICATE-----Generated at Mon Jan 26 10:27:36 2026 by rpki-client