This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/5811c0-6dae-4dd4-987c-d46ffc501f36/1/mRtUIs1VeNRxXr5MUJcgJSPdVlg.mft File: mRtUIs1VeNRxXr5MUJcgJSPdVlg.mft (raw, json) Hash identifier: Q8WPfi+NtYzaI3mEuNYCVED4xOv3luphcp+n7qQqgPE= Subject key identifier: 35:B1:09:F6:A5:B3:B9:C9:9F:65:5A:EB:AF:03:AE:7F:E8:FC:51:0C Authority key identifier: 99:1B:54:22:CD:55:78:D4:71:5E:BE:4C:50:97:20:25:23:DD:56:58 Certificate issuer: /CN=991b5422cd5578d4715ebe4c5097202523dd5658 Certificate serial: 019BF61A01CC19A3A9ABFD990EFBB3A99B5D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mRtUIs1VeNRxXr5MUJcgJSPdVlg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/5811c0-6dae-4dd4-987c-d46ffc501f36/1/mRtUIs1VeNRxXr5MUJcgJSPdVlg.mft Manifest number: 1671 Signing time: Sun 25 Jan 2026 17:00:58 +0000 Manifest this update: Sun 25 Jan 2026 17:00:58 +0000 Manifest next update: Mon 26 Jan 2026 17:00:58 +0000 Files and hashes: 1: HMeFeWtw9N7rk3aYVC_VTWXgzMM.roa (hash: iTEJqDydJmTzPI0AxKyGiy/lzp+8Axti0R4ZxzfqlZo=) 2: mRtUIs1VeNRxXr5MUJcgJSPdVlg.crl (hash: 2+DlLcAmw9cHJ1Ub2l165lbx2wyDYhJVR6SfyIYLAik=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/5811c0-6dae-4dd4-987c-d46ffc501f36/1/mRtUIs1VeNRxXr5MUJcgJSPdVlg.crl rsync://rpki.ripe.net/repository/DEFAULT/23/5811c0-6dae-4dd4-987c-d46ffc501f36/1/mRtUIs1VeNRxXr5MUJcgJSPdVlg.mft rsync://rpki.ripe.net/repository/DEFAULT/mRtUIs1VeNRxXr5MUJcgJSPdVlg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f6:1a:01:cc:19:a3:a9:ab:fd:99:0e:fb:b3:a9:9b:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=991b5422cd5578d4715ebe4c5097202523dd5658 Validity Not Before: Jan 25 17:00:58 2026 GMT Not After : Jan 26 17:00:58 2026 GMT Subject: CN=35b109f6a5b3b9c99f655aebaf03ae7fe8fc510c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:6b:ff:fd:68:80:1c:ee:d6:30:82:0b:c0:23: ed:a5:06:b7:5c:44:db:14:a1:c6:50:05:41:74:ea: 68:8e:ba:dd:fb:b4:66:fc:7d:ef:b4:a0:49:e7:1c: 74:3b:b8:c9:43:ee:f3:93:6d:d8:c4:1f:f3:10:1b: 6c:e4:47:ca:43:af:a0:31:77:d4:be:b3:99:19:1b: 6f:27:da:a9:b9:86:50:40:6f:b6:02:36:7d:f8:88: 70:ed:5b:67:93:5d:b9:3e:79:f3:42:b2:19:59:fa: d0:b4:b0:fc:23:7d:66:61:ef:e9:90:a0:c2:37:6a: ed:1c:96:dc:7b:8e:0f:6c:87:80:f5:d0:eb:da:34: f6:61:f6:d2:8e:8a:2c:03:07:2b:0d:3f:d3:84:4f: 14:b4:43:35:cc:15:15:43:ae:4b:ad:93:d4:b0:bc: 45:0f:d1:d5:dd:02:c8:26:26:d6:26:09:33:a0:ff: 0f:77:d1:b6:24:68:93:84:52:18:fe:6e:ce:72:12: b1:26:05:1e:5f:01:b0:f6:13:32:0e:8d:74:97:1c: b8:a0:50:e2:db:dc:3f:ab:eb:e1:74:c1:6e:a2:b8: 0a:26:26:02:5e:d2:1c:3a:ad:e0:1a:50:5f:23:6a: c8:08:54:a2:26:1d:62:dd:24:12:49:ba:a6:ba:e2: f1:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:B1:09:F6:A5:B3:B9:C9:9F:65:5A:EB:AF:03:AE:7F:E8:FC:51:0C X509v3 Authority Key Identifier: keyid:99:1B:54:22:CD:55:78:D4:71:5E:BE:4C:50:97:20:25:23:DD:56:58 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mRtUIs1VeNRxXr5MUJcgJSPdVlg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/5811c0-6dae-4dd4-987c-d46ffc501f36/1/mRtUIs1VeNRxXr5MUJcgJSPdVlg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/23/5811c0-6dae-4dd4-987c-d46ffc501f36/1/mRtUIs1VeNRxXr5MUJcgJSPdVlg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 63:8f:cc:41:19:4b:b8:bc:4a:4a:c9:56:b9:28:2a:18:9e:96: 2a:c7:5c:c6:b7:6c:cb:97:c6:3a:58:3b:da:52:dd:4c:64:a6: 9e:b6:15:5b:a0:46:b2:75:68:09:6e:2e:77:5a:5f:d6:68:2b: bf:4e:7b:de:27:9e:09:5a:5a:75:a4:62:a7:7b:14:b1:f5:43: 15:52:88:08:a2:40:de:81:d9:65:ec:ff:9b:0d:b7:7a:9a:8e: 45:6a:fd:1c:2b:04:26:a8:8f:4a:2c:48:56:f4:02:b9:90:13: 51:ed:4a:65:03:1d:f9:ec:71:cc:46:f5:ba:a5:84:d8:5b:a2: db:e0:14:10:e9:24:41:91:18:42:79:2d:51:81:ea:e2:e4:3e: 95:ba:18:0d:bb:83:8f:05:ce:41:fa:0a:04:4a:bf:99:66:9d: 8d:88:a0:c9:d5:3f:73:de:a4:c5:19:bf:4e:81:a1:b6:68:ec: 6e:c8:23:f2:88:74:02:5f:f9:44:c5:49:db:ed:bd:0d:11:5e: 0c:91:79:31:1d:38:99:e1:14:ac:33:17:56:fd:3b:f6:0b:f8: 5c:8f:80:ac:7d:e4:7a:3f:de:44:bf:ef:cd:46:e0:70:3b:2f: b7:e2:ef:60:62:62:62:51:dd:99:cc:5f:9b:8a:bf:f8:44:5e: a5:00:e7:12 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv2GgHMGaOpq/2ZDvuzqZtdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk5MWI1NDIyY2Q1NTc4ZDQ3MTVlYmU0YzUwOTcyMDI1MjNk ZDU2NTgwHhcNMjYwMTI1MTcwMDU4WhcNMjYwMTI2MTcwMDU4WjAzMTEwLwYDVQQD EygzNWIxMDlmNmE1YjNiOWM5OWY2NTVhZWJhZjAzYWU3ZmU4ZmM1MTBjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwmv//WiAHO7WMIILwCPtpQa3XETb FKHGUAVBdOpojrrd+7Rm/H3vtKBJ5xx0O7jJQ+7zk23YxB/zEBts5EfKQ6+gMXfU vrOZGRtvJ9qpuYZQQG+2AjZ9+Ihw7Vtnk125PnnzQrIZWfrQtLD8I31mYe/pkKDC N2rtHJbce44PbIeA9dDr2jT2YfbSjoosAwcrDT/ThE8UtEM1zBUVQ65LrZPUsLxF D9HV3QLIJibWJgkzoP8Pd9G2JGiThFIY/m7OchKxJgUeXwGw9hMyDo10lxy4oFDi 29w/q+vhdMFuorgKJiYCXtIcOq3gGlBfI2rICFSiJh1i3SQSSbqmuuLxZwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDWxCfals7nJn2Va668Drn/o/FEMMB8GA1UdIwQY MBaAFJkbVCLNVXjUcV6+TFCXICUj3VZYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbVJ0VUlzMVZlTlJ4WHI1TVVKY2dKU1BkVmxnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMy81ODExYzAtNmRhZS00ZGQ0LTk4N2Mt ZDQ2ZmZjNTAxZjM2LzEvbVJ0VUlzMVZlTlJ4WHI1TVVKY2dKU1BkVmxnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMy81ODExYzAtNmRhZS00ZGQ0LTk4N2MtZDQ2ZmZjNTAxZjM2 LzEvbVJ0VUlzMVZlTlJ4WHI1TVVKY2dKU1BkVmxnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAY4/MQRlL uLxKSslWuSgqGJ6WKsdcxrdsy5fGOlg72lLdTGSmnrYVW6BGsnVoCW4ud1pf1mgr v0573ieeCVpadaRip3sUsfVDFVKICKJA3oHZZez/mw23epqORWr9HCsEJqiPSixI VvQCuZATUe1KZQMd+exxzEb1uqWE2Fui2+AUEOkkQZEYQnktUYHq4uQ+lboYDbuD jwXOQfoKBEq/mWadjYigydU/c96kxRm/ToGhtmjsbsgj8oh0Al/5RMVJ2+29DRFe DJF5MR04meEUrDMXVv079gv4XI+ArH3kej/eRL/vzUbgcDsvt+LvYGJiYlHdmcxf m4q/+ERepQDnEg== -----END CERTIFICATE-----Generated at Sun Jan 25 19:46:16 2026 by rpki-client