This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/6ec943-70e2-4335-84fe-c79d4eeb5ad6/1/4kCgJeDmGkTZPkqAHjiIsm570kE.mft File: 4kCgJeDmGkTZPkqAHjiIsm570kE.mft (raw, json) Hash identifier: iEzyvdpfswLtq0yJjePc+87ZXZI1RqmC8iM3blh0BiU= Subject key identifier: BC:12:3F:08:E2:F2:94:A3:10:C3:36:5E:81:5D:77:06:BA:48:14:E1 Authority key identifier: E2:40:A0:25:E0:E6:1A:44:D9:3E:4A:80:1E:38:88:B2:6E:7B:D2:41 Certificate issuer: /CN=e240a025e0e61a44d93e4a801e3888b26e7bd241 Certificate serial: 019BF65109F121BD30DB3DD65E45D6A8D96C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4kCgJeDmGkTZPkqAHjiIsm570kE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/6ec943-70e2-4335-84fe-c79d4eeb5ad6/1/4kCgJeDmGkTZPkqAHjiIsm570kE.mft Manifest number: 17EB Signing time: Sun 25 Jan 2026 18:01:04 +0000 Manifest this update: Sun 25 Jan 2026 18:01:04 +0000 Manifest next update: Mon 26 Jan 2026 18:01:04 +0000 Files and hashes: 1: 4kCgJeDmGkTZPkqAHjiIsm570kE.crl (hash: iu/XgMUrTqDwwo855EbsbUkLuEBzQ7eiN4R7B63HXTs=) 2: CTp1GS2fYaQIruu9tWpwYU6UL5U.roa (hash: 1woVFgn9dNEGbuwWBJn4MG4ChUl6MAOmb6s5dU16yL8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/6ec943-70e2-4335-84fe-c79d4eeb5ad6/1/4kCgJeDmGkTZPkqAHjiIsm570kE.crl rsync://rpki.ripe.net/repository/DEFAULT/1a/6ec943-70e2-4335-84fe-c79d4eeb5ad6/1/4kCgJeDmGkTZPkqAHjiIsm570kE.mft rsync://rpki.ripe.net/repository/DEFAULT/4kCgJeDmGkTZPkqAHjiIsm570kE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f6:51:09:f1:21:bd:30:db:3d:d6:5e:45:d6:a8:d9:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e240a025e0e61a44d93e4a801e3888b26e7bd241 Validity Not Before: Jan 25 18:01:04 2026 GMT Not After : Jan 26 18:01:04 2026 GMT Subject: CN=bc123f08e2f294a310c3365e815d7706ba4814e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:82:44:99:52:82:dc:f8:df:5d:b9:59:f8:96: 03:fb:d6:69:18:16:4f:a2:bf:89:c4:95:08:6c:f7: b1:21:d8:74:99:04:ce:ab:3e:4a:7b:c6:11:7e:31: d9:0f:da:b1:ee:b9:1c:57:ff:19:95:44:77:51:d5: 50:36:a5:48:ef:9f:81:33:c9:3f:7a:bf:54:83:d7: fc:e9:00:22:60:b7:dd:f7:e3:3f:c0:8a:11:c5:b5: 5c:01:28:99:f4:dd:4f:85:16:31:73:12:84:26:fe: a5:19:75:6c:67:0a:84:46:51:3f:0c:44:93:e1:7f: 89:61:57:86:ca:eb:f6:af:a2:17:08:a0:6b:d7:92: c8:77:57:65:10:87:01:73:f7:52:62:8f:27:49:da: b4:53:3b:c3:30:f2:0f:24:d2:b8:91:8b:58:a5:05: 26:f5:af:3e:78:c1:1a:bf:0f:bd:ca:9b:8e:6f:d9: d7:7d:ea:03:11:f9:48:bd:e5:eb:83:48:29:f4:e2: 3c:b0:7f:ff:fd:c2:e5:be:e0:6a:07:0c:aa:f7:a2: d0:32:88:16:f0:dd:31:e5:07:c6:4b:f6:41:f9:51: d1:08:ec:31:4f:b2:b8:6b:dc:06:a7:f6:63:d6:42: 05:b3:d9:cb:4c:df:75:0b:38:cb:2b:8e:05:84:be: ce:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:12:3F:08:E2:F2:94:A3:10:C3:36:5E:81:5D:77:06:BA:48:14:E1 X509v3 Authority Key Identifier: keyid:E2:40:A0:25:E0:E6:1A:44:D9:3E:4A:80:1E:38:88:B2:6E:7B:D2:41 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4kCgJeDmGkTZPkqAHjiIsm570kE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/6ec943-70e2-4335-84fe-c79d4eeb5ad6/1/4kCgJeDmGkTZPkqAHjiIsm570kE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/6ec943-70e2-4335-84fe-c79d4eeb5ad6/1/4kCgJeDmGkTZPkqAHjiIsm570kE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 41:57:d5:59:1e:b7:9e:95:a2:47:89:7d:57:de:fc:e4:14:b0: 43:5b:a7:f9:74:dd:d3:a6:37:af:f6:c8:13:3a:4d:be:f6:93: e6:ae:e4:d8:f1:33:f0:7f:fb:f3:fa:77:3e:6b:db:35:42:85: fe:a2:4d:2b:c3:31:67:1e:d1:a1:c4:83:5f:22:3b:58:0e:b2: a4:c0:38:ac:bf:fc:80:bb:96:d3:bd:20:e7:7d:c5:16:0e:78: 8d:a7:02:d6:e1:be:13:ba:20:09:da:ca:59:d1:e9:c3:cf:e5: 9b:93:bd:31:cf:76:e9:b7:c9:8a:c8:28:15:23:39:91:d2:fc: 01:60:de:5f:63:c7:b4:b5:32:29:36:94:6b:05:15:9a:08:d3: 6e:83:54:45:4f:1d:4f:70:74:e0:5b:c0:c4:3f:15:ee:4d:e4: 84:09:6d:c7:b8:ed:76:c1:f6:de:1a:19:a2:6d:c6:c3:87:cb: a3:42:80:ba:5a:2d:46:09:46:88:c1:9c:a4:30:b7:8b:5e:0e: f0:f7:03:f4:d1:8f:8e:e1:79:15:d2:50:6f:76:0e:7c:eb:60: 86:39:14:e5:ff:f1:0e:de:ec:ef:4d:f9:b5:7d:e0:98:66:64: 05:7c:db:c4:a7:db:30:c9:dd:6b:26:f4:f5:76:e1:c7:44:51: a1:5f:59:da -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv2UQnxIb0w2z3WXkXWqNlsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUyNDBhMDI1ZTBlNjFhNDRkOTNlNGE4MDFlMzg4OGIyNmU3 YmQyNDEwHhcNMjYwMTI1MTgwMTA0WhcNMjYwMTI2MTgwMTA0WjAzMTEwLwYDVQQD EyhiYzEyM2YwOGUyZjI5NGEzMTBjMzM2NWU4MTVkNzcwNmJhNDgxNGUxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3IJEmVKC3PjfXblZ+JYD+9ZpGBZP or+JxJUIbPexIdh0mQTOqz5Ke8YRfjHZD9qx7rkcV/8ZlUR3UdVQNqVI75+BM8k/ er9Ug9f86QAiYLfd9+M/wIoRxbVcASiZ9N1PhRYxcxKEJv6lGXVsZwqERlE/DEST 4X+JYVeGyuv2r6IXCKBr15LId1dlEIcBc/dSYo8nSdq0UzvDMPIPJNK4kYtYpQUm 9a8+eMEavw+9ypuOb9nXfeoDEflIveXrg0gp9OI8sH///cLlvuBqBwyq96LQMogW 8N0x5QfGS/ZB+VHRCOwxT7K4a9wGp/Zj1kIFs9nLTN91CzjLK44FhL7OqwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLwSPwji8pSjEMM2XoFddwa6SBThMB8GA1UdIwQY MBaAFOJAoCXg5hpE2T5KgB44iLJue9JBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNGtDZ0plRG1Ha1RaUGtxQUhqaUlzbTU3MGtFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYS82ZWM5NDMtNzBlMi00MzM1LTg0ZmUt Yzc5ZDRlZWI1YWQ2LzEvNGtDZ0plRG1Ha1RaUGtxQUhqaUlzbTU3MGtFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYS82ZWM5NDMtNzBlMi00MzM1LTg0ZmUtYzc5ZDRlZWI1YWQ2 LzEvNGtDZ0plRG1Ha1RaUGtxQUhqaUlzbTU3MGtFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQVfVWR63 npWiR4l9V9785BSwQ1un+XTd06Y3r/bIEzpNvvaT5q7k2PEz8H/78/p3PmvbNUKF /qJNK8MxZx7RocSDXyI7WA6ypMA4rL/8gLuW070g533FFg54jacC1uG+E7ogCdrK WdHpw8/lm5O9Mc926bfJisgoFSM5kdL8AWDeX2PHtLUyKTaUawUVmgjTboNURU8d T3B04FvAxD8V7k3khAltx7jtdsH23hoZom3Gw4fLo0KAulotRglGiMGcpDC3i14O 8PcD9NGPjuF5FdJQb3YOfOtghjkU5f/xDt7s7035tX3gmGZkBXzbxKfbMMndayb0 9Xbhx0RRoV9Z2g== -----END CERTIFICATE-----Generated at Sun Jan 25 21:10:50 2026 by rpki-client