This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/4eca4d-3a2e-4a84-a789-01577a927fa9/1/nSP0y0urXBCAGncGWN-JHPuMaMY.mft File: nSP0y0urXBCAGncGWN-JHPuMaMY.mft (raw, json) Hash identifier: abW3DcAuOwVB/P/TejeUKed+b3DJajkphMaMWnC+Myc= Subject key identifier: 7C:D8:86:4C:5D:D6:BE:AE:0E:D3:7B:51:70:7E:08:1B:1E:35:2E:8D Authority key identifier: 9D:23:F4:CB:4B:AB:5C:10:80:1A:77:06:58:DF:89:1C:FB:8C:68:C6 Certificate issuer: /CN=9d23f4cb4bab5c10801a770658df891cfb8c68c6 Certificate serial: 019BF46273F732A027E847BF0698840F4311 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSP0y0urXBCAGncGWN-JHPuMaMY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/4eca4d-3a2e-4a84-a789-01577a927fa9/1/nSP0y0urXBCAGncGWN-JHPuMaMY.mft Manifest number: 17C8 Signing time: Sun 25 Jan 2026 09:00:51 +0000 Manifest this update: Sun 25 Jan 2026 09:00:51 +0000 Manifest next update: Mon 26 Jan 2026 09:00:51 +0000 Files and hashes: 1: 1-CMu0p1qNg0e63aYoj_D4LrDxfY.roa (hash: lOabOtnZlG49slymDCg4DYEF9uaLsHuP8kozmEeWWJk=) 2: NhBesxbcMyD0yBQrL2MrPFZhlpM.roa (hash: doi57fugVWY7hzj7Rlf76Ryk/Bx6TRKhE01hpolLsig=) 3: Vx7x_kcOmv3pHdfN4JeJkZMt0-E.roa (hash: H/ghuncbtOSKrShu1dgfSXsTU1/uj8pKrjpq8yu2Ers=) 4: XPTuMOSHPxC4TQkhQQhMLupKp7g.roa (hash: TDD3hEBL7CPqvnrfrg7l4hY6bRfLkH7/ULGfUjsBzoo=) 5: h4LJjNrzp4fAWVmt9xZ04UKNInQ.roa (hash: hPnSIuqaeCZAtukV9F+5jwRGZESxgM1eDjQaNz+/KSs=) 6: nSP0y0urXBCAGncGWN-JHPuMaMY.crl (hash: VlbkRC6kswckayvdqh9B08WZNzvmJwFYqsN1qDI2R+U=) 7: nqfdhUcL9cEhRFGA3epCciCW5S4.roa (hash: IIzxcFRfs7wicO4VvZHLFcN54s0V/nVCkQfttWBnBQM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/4eca4d-3a2e-4a84-a789-01577a927fa9/1/nSP0y0urXBCAGncGWN-JHPuMaMY.crl rsync://rpki.ripe.net/repository/DEFAULT/1a/4eca4d-3a2e-4a84-a789-01577a927fa9/1/nSP0y0urXBCAGncGWN-JHPuMaMY.mft rsync://rpki.ripe.net/repository/DEFAULT/nSP0y0urXBCAGncGWN-JHPuMaMY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f4:62:73:f7:32:a0:27:e8:47:bf:06:98:84:0f:43:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9d23f4cb4bab5c10801a770658df891cfb8c68c6 Validity Not Before: Jan 25 09:00:51 2026 GMT Not After : Jan 26 09:00:51 2026 GMT Subject: CN=7cd8864c5dd6beae0ed37b51707e081b1e352e8d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:c5:a7:91:82:f4:83:bd:ab:f3:4a:1f:be:bc: de:b6:ab:36:23:b6:86:ce:41:01:c6:a6:8e:23:4a: e8:e9:db:7d:41:11:9b:84:1f:60:f4:43:e6:db:c6: b7:5b:83:b1:ca:6f:e2:34:ff:e7:05:f8:26:33:c7: b9:39:a5:f8:4d:b1:d1:33:bc:02:25:0e:0f:69:df: b8:0d:86:be:52:3c:fa:74:70:4a:71:0f:38:cf:1f: 02:d5:25:e9:83:d6:db:a0:0a:67:d0:a5:d7:9c:98: 98:3f:16:fb:1b:2e:46:36:39:ab:e9:c8:65:a9:d6: ee:3e:03:cb:9b:9d:59:c8:fa:d5:cc:5b:2e:4a:21: 90:01:fa:94:4a:00:8b:3b:83:70:90:f0:37:c1:fc: fa:56:ce:ec:df:39:d9:5a:5c:a8:23:fc:96:04:4b: 5c:38:46:97:9c:dd:4f:a3:94:bf:1f:df:f9:c0:b8: 7d:dd:d0:06:61:8f:0c:ca:bb:8d:0f:06:99:e9:3a: db:2f:5b:e7:a9:2e:f8:39:11:16:0b:d3:75:f8:fe: c3:8c:40:72:52:79:b6:c5:f3:71:b5:e7:21:52:37: 18:c3:cf:09:74:75:e8:0a:ec:a8:c6:5f:1f:f8:81: fc:9a:ac:65:2f:c9:6d:87:ce:d8:2a:d8:4d:4b:52: 5d:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:D8:86:4C:5D:D6:BE:AE:0E:D3:7B:51:70:7E:08:1B:1E:35:2E:8D X509v3 Authority Key Identifier: keyid:9D:23:F4:CB:4B:AB:5C:10:80:1A:77:06:58:DF:89:1C:FB:8C:68:C6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSP0y0urXBCAGncGWN-JHPuMaMY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/4eca4d-3a2e-4a84-a789-01577a927fa9/1/nSP0y0urXBCAGncGWN-JHPuMaMY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/4eca4d-3a2e-4a84-a789-01577a927fa9/1/nSP0y0urXBCAGncGWN-JHPuMaMY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a7:41:ee:79:c9:59:7a:70:0e:88:77:1f:ba:fb:cf:0d:46:4c: 95:8e:1d:2d:85:6f:6e:c1:f3:1f:e3:6a:8f:61:a8:ba:04:23: 19:cf:fa:8f:f3:13:fe:aa:e0:cf:53:4b:d9:79:38:79:e6:f8: da:26:43:c7:68:21:ac:e2:20:4d:03:ca:3a:7d:15:11:72:d9: 4a:ba:c1:fb:c7:4b:7d:e6:cd:e5:14:a1:b8:7f:ed:7d:4b:01: e3:24:f3:b8:ef:f3:10:a5:59:93:1f:d1:1a:ba:ff:bb:57:05: 0a:0d:47:d0:3d:ef:4e:29:4c:96:1a:e1:aa:0f:9c:f9:83:de: 91:67:1f:a7:98:ed:8d:35:73:5e:b6:2b:aa:e2:3f:ab:32:51: 3f:9a:b9:11:65:bb:e0:4f:4e:f6:33:24:30:10:da:fd:38:15: 6d:d4:15:6e:1f:25:24:38:f0:ba:d8:bf:7d:45:79:a6:e6:d5: 68:c2:55:93:bd:e7:22:e2:ba:b3:2f:70:87:97:68:fb:80:76: e2:a3:29:6e:86:cf:b6:06:66:da:bd:20:5b:ad:d2:c7:24:87: c1:19:62:50:59:aa:26:11:11:c9:41:b7:5a:10:08:53:6f:9c: 21:d9:92:b8:3e:57:f1:ea:f8:44:f9:f6:8e:05:4a:ef:ac:1a: b5:b6:27:32 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv0YnP3MqAn6Ee/BpiED0MRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlkMjNmNGNiNGJhYjVjMTA4MDFhNzcwNjU4ZGY4OTFjZmI4 YzY4YzYwHhcNMjYwMTI1MDkwMDUxWhcNMjYwMTI2MDkwMDUxWjAzMTEwLwYDVQQD Eyg3Y2Q4ODY0YzVkZDZiZWFlMGVkMzdiNTE3MDdlMDgxYjFlMzUyZThkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArcWnkYL0g72r80ofvrzetqs2I7aG zkEBxqaOI0ro6dt9QRGbhB9g9EPm28a3W4Oxym/iNP/nBfgmM8e5OaX4TbHRM7wC JQ4Pad+4DYa+Ujz6dHBKcQ84zx8C1SXpg9bboApn0KXXnJiYPxb7Gy5GNjmr6chl qdbuPgPLm51ZyPrVzFsuSiGQAfqUSgCLO4NwkPA3wfz6Vs7s3znZWlyoI/yWBEtc OEaXnN1Po5S/H9/5wLh93dAGYY8MyruNDwaZ6TrbL1vnqS74OREWC9N1+P7DjEBy Unm2xfNxtechUjcYw88JdHXoCuyoxl8f+IH8mqxlL8lth87YKthNS1Jd2QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHzYhkxd1r6uDtN7UXB+CBseNS6NMB8GA1UdIwQY MBaAFJ0j9MtLq1wQgBp3BljfiRz7jGjGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvblNQMHkwdXJYQkNBR25jR1dOLUpIUHVNYU1ZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYS80ZWNhNGQtM2EyZS00YTg0LWE3ODkt MDE1NzdhOTI3ZmE5LzEvblNQMHkwdXJYQkNBR25jR1dOLUpIUHVNYU1ZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYS80ZWNhNGQtM2EyZS00YTg0LWE3ODktMDE1NzdhOTI3ZmE5 LzEvblNQMHkwdXJYQkNBR25jR1dOLUpIUHVNYU1ZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAp0HueclZ enAOiHcfuvvPDUZMlY4dLYVvbsHzH+Nqj2GougQjGc/6j/MT/qrgz1NL2Xk4eeb4 2iZDx2ghrOIgTQPKOn0VEXLZSrrB+8dLfebN5RShuH/tfUsB4yTzuO/zEKVZkx/R Grr/u1cFCg1H0D3vTilMlhrhqg+c+YPekWcfp5jtjTVzXrYrquI/qzJRP5q5EWW7 4E9O9jMkMBDa/TgVbdQVbh8lJDjwuti/fUV5pubVaMJVk73nIuK6sy9wh5do+4B2 4qMpbobPtgZm2r0gW63SxySHwRliUFmqJhERyUG3WhAIU2+cIdmSuD5X8er4RPn2 jgVK76watbYnMg== -----END CERTIFICATE-----Generated at Sun Jan 25 11:46:35 2026 by rpki-client