This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/2bea8f-9fbc-4765-93bc-222252929873/1/TKha1Dt7R-dSh4MHGEeU1woCdmw.mft File: TKha1Dt7R-dSh4MHGEeU1woCdmw.mft (raw, json) Hash identifier: TrTNd7pMmm4JPh6hR7fqiCvzZdOvJ1jYSezlIrcFCoY= Subject key identifier: CE:45:F9:62:E9:C7:B0:1D:34:46:AE:43:AA:30:C0:89:8F:8C:5C:3C Authority key identifier: 4C:A8:5A:D4:3B:7B:47:E7:52:87:83:07:18:47:94:D7:0A:02:76:6C Certificate issuer: /CN=4ca85ad43b7b47e752878307184794d70a02766c Certificate serial: 019BF79A59E62C98124F624B9D69575F7A79 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TKha1Dt7R-dSh4MHGEeU1woCdmw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/2bea8f-9fbc-4765-93bc-222252929873/1/TKha1Dt7R-dSh4MHGEeU1woCdmw.mft Manifest number: 036F Signing time: Mon 26 Jan 2026 00:00:46 +0000 Manifest this update: Mon 26 Jan 2026 00:00:46 +0000 Manifest next update: Tue 27 Jan 2026 00:00:46 +0000 Files and hashes: 1: 1-w3-HT-b4gN55Ez02d0Ltxhd_18.roa (hash: SZE3EWQBz3QYJjq31FoNPzS9VUyILcF5vCKxR6HmvGg=) 2: TKha1Dt7R-dSh4MHGEeU1woCdmw.crl (hash: y3EecF6e4SnoxWqsJEZq0rRDbCGaWt1/2d9JIsRIxYM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/2bea8f-9fbc-4765-93bc-222252929873/1/TKha1Dt7R-dSh4MHGEeU1woCdmw.crl rsync://rpki.ripe.net/repository/DEFAULT/20/2bea8f-9fbc-4765-93bc-222252929873/1/TKha1Dt7R-dSh4MHGEeU1woCdmw.mft rsync://rpki.ripe.net/repository/DEFAULT/TKha1Dt7R-dSh4MHGEeU1woCdmw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f7:9a:59:e6:2c:98:12:4f:62:4b:9d:69:57:5f:7a:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4ca85ad43b7b47e752878307184794d70a02766c Validity Not Before: Jan 26 00:00:46 2026 GMT Not After : Jan 27 00:00:46 2026 GMT Subject: CN=ce45f962e9c7b01d3446ae43aa30c0898f8c5c3c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:9a:49:c5:fc:a9:e4:4a:0b:be:50:a3:bc:73: 59:bd:c4:ab:fb:f4:06:b5:ca:b3:74:1e:6e:8f:86: 0b:62:bd:81:43:f7:e6:56:3e:43:bb:3e:0d:c4:fe: fd:8a:93:08:6f:87:38:2e:16:93:ac:e1:41:03:78: 24:c9:ad:4c:3a:89:00:2d:19:8e:32:bd:05:4e:2c: 8f:db:d4:2e:8a:e3:9e:82:55:5b:b5:80:7d:af:65: 5e:a1:73:41:9a:60:2c:d9:31:35:1c:eb:0b:62:bf: 04:c1:e4:4d:42:35:ff:60:ff:b4:02:0e:d6:d0:7a: bf:ed:67:db:64:90:3d:6b:7a:fc:b8:3a:a6:eb:a4: a5:ba:de:eb:e6:d0:67:68:84:1d:ed:ee:66:c4:32: c6:46:c5:35:b8:94:90:cc:72:e9:0e:90:24:72:d7: 6a:64:bb:ea:fc:c3:de:e1:08:2e:d4:87:61:35:50: 26:09:36:3e:3c:94:15:1e:ae:8c:e7:0c:ca:54:ae: c0:16:11:b8:88:0f:2a:73:6b:1e:68:1b:f9:3d:dc: 33:95:67:25:fb:48:09:aa:11:04:3e:bc:36:54:0b: 28:ff:ca:1f:eb:e0:f2:c1:07:93:a3:9c:82:f4:4e: c9:2f:a4:82:78:db:ba:e9:d3:17:b8:8f:8a:9b:43: 4b:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:45:F9:62:E9:C7:B0:1D:34:46:AE:43:AA:30:C0:89:8F:8C:5C:3C X509v3 Authority Key Identifier: keyid:4C:A8:5A:D4:3B:7B:47:E7:52:87:83:07:18:47:94:D7:0A:02:76:6C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TKha1Dt7R-dSh4MHGEeU1woCdmw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/2bea8f-9fbc-4765-93bc-222252929873/1/TKha1Dt7R-dSh4MHGEeU1woCdmw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/20/2bea8f-9fbc-4765-93bc-222252929873/1/TKha1Dt7R-dSh4MHGEeU1woCdmw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 97:4a:97:16:8a:6b:70:71:a4:22:ad:80:6f:28:ff:7d:86:e4: 7a:ea:56:c3:77:dc:15:2a:77:b2:9f:44:f8:24:0c:69:6a:7c: 4a:e2:78:2d:2d:9e:36:d4:27:60:c5:1d:f1:bc:e0:45:2b:59: c8:48:d8:5b:eb:50:57:ac:90:c8:07:a4:af:af:b5:77:ed:ba: f0:61:5f:a6:f9:d5:af:2f:f0:6b:1d:76:e3:90:5f:fa:90:9c: e8:b6:14:b3:7b:89:ec:5f:55:2f:2a:6d:91:f9:83:23:7b:b9: 17:87:f9:fb:0d:a1:32:a6:24:aa:5b:1c:ac:42:28:d2:4c:f6: 86:dd:84:3f:ad:e7:d3:51:2f:8f:cc:a3:05:97:8d:29:4a:0e: dc:8d:14:62:52:37:a2:ef:95:3c:64:80:4e:a6:9e:7c:70:e5: e4:e3:9a:54:8d:fb:67:f5:f9:c1:33:d0:d7:14:cb:74:2a:c7: ea:5a:41:82:98:e9:5f:44:f3:51:07:41:59:fb:4e:98:39:d3: 30:ba:61:de:36:c0:80:da:14:74:4f:4d:2f:1c:24:62:a2:bc: 0c:b6:1d:63:16:9a:d9:71:b0:9b:71:61:b7:27:09:18:6a:50: e3:e9:d9:62:34:dd:c3:41:d2:b2:59:d5:cd:83:98:bd:46:c9: 03:6f:aa:95 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv3mlnmLJgST2JLnWlXX3p5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRjYTg1YWQ0M2I3YjQ3ZTc1Mjg3ODMwNzE4NDc5NGQ3MGEw Mjc2NmMwHhcNMjYwMTI2MDAwMDQ2WhcNMjYwMTI3MDAwMDQ2WjAzMTEwLwYDVQQD EyhjZTQ1Zjk2MmU5YzdiMDFkMzQ0NmFlNDNhYTMwYzA4OThmOGM1YzNjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvZpJxfyp5EoLvlCjvHNZvcSr+/QG tcqzdB5uj4YLYr2BQ/fmVj5Duz4NxP79ipMIb4c4LhaTrOFBA3gkya1MOokALRmO Mr0FTiyP29QuiuOeglVbtYB9r2VeoXNBmmAs2TE1HOsLYr8EweRNQjX/YP+0Ag7W 0Hq/7WfbZJA9a3r8uDqm66Slut7r5tBnaIQd7e5mxDLGRsU1uJSQzHLpDpAkctdq ZLvq/MPe4Qgu1IdhNVAmCTY+PJQVHq6M5wzKVK7AFhG4iA8qc2seaBv5PdwzlWcl +0gJqhEEPrw2VAso/8of6+DywQeTo5yC9E7JL6SCeNu66dMXuI+Km0NLtwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFM5F+WLpx7AdNEauQ6owwImPjFw8MB8GA1UdIwQY MBaAFEyoWtQ7e0fnUoeDBxhHlNcKAnZsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVEtoYTFEdDdSLWRTaDRNSEdFZVUxd29DZG13LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC8yYmVhOGYtOWZiYy00NzY1LTkzYmMt MjIyMjUyOTI5ODczLzEvVEtoYTFEdDdSLWRTaDRNSEdFZVUxd29DZG13Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMC8yYmVhOGYtOWZiYy00NzY1LTkzYmMtMjIyMjUyOTI5ODcz LzEvVEtoYTFEdDdSLWRTaDRNSEdFZVUxd29DZG13LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAl0qXFopr cHGkIq2Abyj/fYbkeupWw3fcFSp3sp9E+CQMaWp8SuJ4LS2eNtQnYMUd8bzgRStZ yEjYW+tQV6yQyAekr6+1d+268GFfpvnVry/wax1245Bf+pCc6LYUs3uJ7F9VLypt kfmDI3u5F4f5+w2hMqYkqlscrEIo0kz2ht2EP63n01Evj8yjBZeNKUoO3I0UYlI3 ou+VPGSATqaefHDl5OOaVI37Z/X5wTPQ1xTLdCrH6lpBgpjpX0TzUQdBWftOmDnT MLph3jbAgNoUdE9NLxwkYqK8DLYdYxaa2XGwm3FhtycJGGpQ4+nZYjTdw0HSslnV zYOYvUbJA2+qlQ== -----END CERTIFICATE-----Generated at Mon Jan 26 03:11:34 2026 by rpki-client