This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/3a6bb4-24b8-4086-a29d-ee6c509b6221/1/mFW4DEXftep6qn3R2O2LFPnB3EU.mft File: mFW4DEXftep6qn3R2O2LFPnB3EU.mft (raw, json) Hash identifier: 15YrjiXMqwAyQXWh2tC/3MRQrPssKzKmp7dw0MI83SA= Subject key identifier: 9D:B0:19:66:D9:F8:7D:EE:57:C9:B0:C9:3F:86:7B:5F:E7:87:6D:57 Authority key identifier: 98:55:B8:0C:45:DF:B5:EA:7A:AA:7D:D1:D8:ED:8B:14:F9:C1:DC:45 Certificate issuer: /CN=9855b80c45dfb5ea7aaa7dd1d8ed8b14f9c1dc45 Certificate serial: 019BF61A4635C3BC283E12C8C665916EBC15 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mFW4DEXftep6qn3R2O2LFPnB3EU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/3a6bb4-24b8-4086-a29d-ee6c509b6221/1/mFW4DEXftep6qn3R2O2LFPnB3EU.mft Manifest number: 02D2 Signing time: Sun 25 Jan 2026 17:01:15 +0000 Manifest this update: Sun 25 Jan 2026 17:01:15 +0000 Manifest next update: Mon 26 Jan 2026 17:01:15 +0000 Files and hashes: 1: JdrrzB7a1qH9AHo1hI78HQ9vZMk.roa (hash: GTd8cCkoiW0FGNR73NG1lnLnp97HhBUrrNAzm3q5ilE=) 2: mFW4DEXftep6qn3R2O2LFPnB3EU.crl (hash: vtN2wNTeoBz3kZkKnJdTdCWmHMpUQgBzfEn44asr5oM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/3a6bb4-24b8-4086-a29d-ee6c509b6221/1/mFW4DEXftep6qn3R2O2LFPnB3EU.crl rsync://rpki.ripe.net/repository/DEFAULT/1c/3a6bb4-24b8-4086-a29d-ee6c509b6221/1/mFW4DEXftep6qn3R2O2LFPnB3EU.mft rsync://rpki.ripe.net/repository/DEFAULT/mFW4DEXftep6qn3R2O2LFPnB3EU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f6:1a:46:35:c3:bc:28:3e:12:c8:c6:65:91:6e:bc:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9855b80c45dfb5ea7aaa7dd1d8ed8b14f9c1dc45 Validity Not Before: Jan 25 17:01:15 2026 GMT Not After : Jan 26 17:01:15 2026 GMT Subject: CN=9db01966d9f87dee57c9b0c93f867b5fe7876d57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:cc:d3:80:45:fd:fc:1e:97:90:c0:4b:29:b4: 4c:45:9d:61:46:44:df:22:51:95:35:94:e6:02:a3: d5:17:99:cc:c4:cf:82:a0:07:f9:f4:a6:a9:62:f4: d6:7d:f9:bc:0b:d3:5e:8c:d1:bd:c0:03:04:7b:7d: f6:1d:f1:f2:3d:5f:43:b1:b4:fa:f1:1e:7e:47:cb: 40:c6:83:d4:0d:a5:7b:0b:57:48:98:46:e3:ba:18: 0e:59:e1:4a:ba:90:be:f3:65:9f:bb:dd:b3:33:23: 1d:cd:d9:45:bb:22:97:9d:2f:db:b7:2b:8e:ec:76: 79:ff:36:5a:6c:95:67:16:50:95:f9:25:58:5c:e6: 33:f5:13:85:73:6f:de:c4:62:72:d6:fa:b3:a2:43: 6f:64:11:78:24:e4:23:6e:23:f2:7d:8d:f5:0c:d6: 49:80:b2:2a:e4:d3:61:ce:53:42:f4:ce:d8:19:ab: aa:9b:61:2a:4d:f2:55:38:f8:0a:9c:7d:55:77:de: b4:5b:cc:41:52:66:2c:dd:5d:98:b7:1e:7d:b6:9c: ed:85:17:bc:57:3c:60:0a:0a:9b:ac:37:93:ba:70: 24:a3:fd:3b:95:5e:30:82:e3:85:84:90:7c:71:5b: 63:b8:f9:f7:22:d3:a3:91:df:9e:83:ec:c9:a9:22: f3:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:B0:19:66:D9:F8:7D:EE:57:C9:B0:C9:3F:86:7B:5F:E7:87:6D:57 X509v3 Authority Key Identifier: keyid:98:55:B8:0C:45:DF:B5:EA:7A:AA:7D:D1:D8:ED:8B:14:F9:C1:DC:45 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mFW4DEXftep6qn3R2O2LFPnB3EU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/3a6bb4-24b8-4086-a29d-ee6c509b6221/1/mFW4DEXftep6qn3R2O2LFPnB3EU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/3a6bb4-24b8-4086-a29d-ee6c509b6221/1/mFW4DEXftep6qn3R2O2LFPnB3EU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1f:1b:ac:ae:f4:00:47:cb:a9:ba:f3:38:b7:39:43:80:f6:1e: 12:b3:66:86:fb:22:c7:00:46:51:69:7b:f6:53:d8:8c:e5:43: 77:d3:1e:f1:1d:38:8e:1c:d9:3b:c6:71:2b:28:e4:a2:66:86: 5e:94:0b:53:2a:c2:72:d7:ad:3d:fe:de:4f:5b:32:3c:39:c1: d4:9c:80:d5:43:13:42:7d:f3:46:10:ca:3f:03:83:e3:2d:f0: 25:46:23:13:7d:e9:59:9b:0b:f6:bb:4a:8d:95:c2:ae:ac:db: 99:e0:12:b4:91:42:df:34:0e:a6:d2:5b:ca:02:13:7b:3a:9c: ca:7f:6a:de:89:be:1d:72:ec:13:58:bd:b1:39:ed:16:e7:1e: 73:94:55:24:da:d7:a3:08:3c:77:f0:29:25:6a:fe:c2:d4:dc: b9:39:2e:d1:2a:55:cb:00:ab:27:9c:1a:e2:fb:b0:85:89:52: c9:78:5d:c9:4d:56:a4:ac:e2:94:bc:69:8c:63:da:6b:6b:57: f7:bf:48:54:2a:53:22:26:9e:66:c3:39:af:38:7b:01:51:ce: 7d:d0:e7:bd:12:f0:21:a4:18:73:c4:7f:94:e7:52:4f:af:1b: fc:ef:f9:86:f3:6d:1d:c3:8b:6f:06:c5:84:84:d6:72:b9:55: 4e:c3:fd:c7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv2GkY1w7woPhLIxmWRbrwVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk4NTViODBjNDVkZmI1ZWE3YWFhN2RkMWQ4ZWQ4YjE0Zjlj MWRjNDUwHhcNMjYwMTI1MTcwMTE1WhcNMjYwMTI2MTcwMTE1WjAzMTEwLwYDVQQD Eyg5ZGIwMTk2NmQ5Zjg3ZGVlNTdjOWIwYzkzZjg2N2I1ZmU3ODc2ZDU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu8zTgEX9/B6XkMBLKbRMRZ1hRkTf IlGVNZTmAqPVF5nMxM+CoAf59KapYvTWffm8C9NejNG9wAMEe332HfHyPV9DsbT6 8R5+R8tAxoPUDaV7C1dImEbjuhgOWeFKupC+82Wfu92zMyMdzdlFuyKXnS/btyuO 7HZ5/zZabJVnFlCV+SVYXOYz9ROFc2/exGJy1vqzokNvZBF4JOQjbiPyfY31DNZJ gLIq5NNhzlNC9M7YGauqm2EqTfJVOPgKnH1Vd960W8xBUmYs3V2Ytx59tpzthRe8 VzxgCgqbrDeTunAko/07lV4wguOFhJB8cVtjuPn3ItOjkd+eg+zJqSLzqQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJ2wGWbZ+H3uV8mwyT+Ge1/nh21XMB8GA1UdIwQY MBaAFJhVuAxF37Xqeqp90djtixT5wdxFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbUZXNERFWGZ0ZXA2cW4zUjJPMkxGUG5CM0VVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy8zYTZiYjQtMjRiOC00MDg2LWEyOWQt ZWU2YzUwOWI2MjIxLzEvbUZXNERFWGZ0ZXA2cW4zUjJPMkxGUG5CM0VVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYy8zYTZiYjQtMjRiOC00MDg2LWEyOWQtZWU2YzUwOWI2MjIx LzEvbUZXNERFWGZ0ZXA2cW4zUjJPMkxGUG5CM0VVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHxusrvQA R8upuvM4tzlDgPYeErNmhvsixwBGUWl79lPYjOVDd9Me8R04jhzZO8ZxKyjkomaG XpQLUyrCctetPf7eT1syPDnB1JyA1UMTQn3zRhDKPwOD4y3wJUYjE33pWZsL9rtK jZXCrqzbmeAStJFC3zQOptJbygITezqcyn9q3om+HXLsE1i9sTntFucec5RVJNrX owg8d/ApJWr+wtTcuTku0SpVywCrJ5wa4vuwhYlSyXhdyU1WpKzilLxpjGPaa2tX 979IVCpTIiaeZsM5rzh7AVHOfdDnvRLwIaQYc8R/lOdST68b/O/5hvNtHcOLbwbF hITWcrlVTsP9xw== -----END CERTIFICATE-----Generated at Sun Jan 25 23:33:49 2026 by rpki-client