This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/24c4d1-863f-44c3-86ad-9a294c70c70e/1/tpH_yGWeLmOm3s7H1vNtYLZkCWE.mft File: tpH_yGWeLmOm3s7H1vNtYLZkCWE.mft (raw, json) Hash identifier: bpTdlmZPHuioYcsHipoGad9689n9MrIG2Uf01aW7d9k= Subject key identifier: 05:A2:E5:88:02:40:2E:7B:A9:F6:97:C2:56:4B:64:E5:41:F1:A4:38 Authority key identifier: B6:91:FF:C8:65:9E:2E:63:A6:DE:CE:C7:D6:F3:6D:60:B6:64:09:61 Certificate issuer: /CN=b691ffc8659e2e63a6decec7d6f36d60b6640961 Certificate serial: 019BF5AC4AA0B9A999F2D0E52C3F96AFC822 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tpH_yGWeLmOm3s7H1vNtYLZkCWE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/24c4d1-863f-44c3-86ad-9a294c70c70e/1/tpH_yGWeLmOm3s7H1vNtYLZkCWE.mft Manifest number: 92 Signing time: Sun 25 Jan 2026 15:01:07 +0000 Manifest this update: Sun 25 Jan 2026 15:01:07 +0000 Manifest next update: Mon 26 Jan 2026 15:01:07 +0000 Files and hashes: 1: CnAOgW0v2FHhY7xG5Ek16W61Xwo.asa (hash: BYtVtXvNLu7yhVLJxNiUtZ/vkS0B93JK13XOxYFj8W8=) 2: tpH_yGWeLmOm3s7H1vNtYLZkCWE.crl (hash: 8cShqx1QnQ3W4XOaLN8OHZLHKH/HBsfcYX50YCsqc2k=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/24c4d1-863f-44c3-86ad-9a294c70c70e/1/tpH_yGWeLmOm3s7H1vNtYLZkCWE.crl rsync://rpki.ripe.net/repository/DEFAULT/25/24c4d1-863f-44c3-86ad-9a294c70c70e/1/tpH_yGWeLmOm3s7H1vNtYLZkCWE.mft rsync://rpki.ripe.net/repository/DEFAULT/tpH_yGWeLmOm3s7H1vNtYLZkCWE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 15:01:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f5:ac:4a:a0:b9:a9:99:f2:d0:e5:2c:3f:96:af:c8:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b691ffc8659e2e63a6decec7d6f36d60b6640961 Validity Not Before: Jan 25 15:01:07 2026 GMT Not After : Jan 26 15:01:07 2026 GMT Subject: CN=05a2e58802402e7ba9f697c2564b64e541f1a438 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:52:80:77:06:01:74:0d:c6:33:99:e4:c5:f6: 8c:93:83:a6:ef:8a:cb:2e:06:79:3f:b2:f0:9e:db: d6:a9:01:20:fa:74:06:c6:b3:ea:2e:cb:98:00:70: 25:e9:64:02:eb:9b:ba:01:3c:3b:52:a7:48:ad:b5: 00:eb:38:ff:bf:32:a1:39:9c:bc:61:c3:a0:b0:42: 28:2d:ca:9f:6c:9a:48:b8:aa:f0:cb:e6:1c:15:91: c6:20:a8:d8:5c:9a:8b:f9:a0:9d:8d:95:37:3d:97: 9d:9b:2d:7e:b5:a2:42:5e:e4:a9:b1:f2:6c:c4:3a: ad:81:32:75:5a:b1:3f:f9:a6:0d:81:98:bf:db:3d: b8:d1:37:37:f0:5f:55:77:90:66:63:dc:75:35:be: 06:3f:89:1a:3c:f9:de:f2:ab:04:fa:04:ca:a2:ea: f9:ba:b8:e9:e6:e3:3b:72:04:a7:fc:70:76:ea:29: 02:63:a3:e1:57:41:50:39:9f:88:9d:45:f7:c2:b5: 11:3a:81:e4:b0:c5:be:85:aa:08:b0:b2:9a:30:df: a6:93:52:ad:63:62:3d:00:96:8e:1c:fc:48:40:31: dd:9d:5b:3b:eb:48:90:ba:78:52:97:72:97:d3:ac: f7:45:0e:3d:bb:cf:47:cf:aa:3f:6e:34:c0:9e:5b: a8:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:A2:E5:88:02:40:2E:7B:A9:F6:97:C2:56:4B:64:E5:41:F1:A4:38 X509v3 Authority Key Identifier: keyid:B6:91:FF:C8:65:9E:2E:63:A6:DE:CE:C7:D6:F3:6D:60:B6:64:09:61 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tpH_yGWeLmOm3s7H1vNtYLZkCWE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/24c4d1-863f-44c3-86ad-9a294c70c70e/1/tpH_yGWeLmOm3s7H1vNtYLZkCWE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/25/24c4d1-863f-44c3-86ad-9a294c70c70e/1/tpH_yGWeLmOm3s7H1vNtYLZkCWE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1d:f8:31:53:0f:f8:bf:26:14:59:f4:db:62:6b:8a:b1:79:95: 49:6a:24:e2:38:15:1b:e3:fd:1f:f6:d6:73:5e:6f:30:5c:76: 94:24:e4:f2:54:59:38:5b:b8:e4:51:0f:0f:8d:19:d4:c2:a5: db:f7:12:f9:dd:42:70:e4:03:6e:db:21:46:cf:bf:91:91:99: e5:65:52:38:d6:d7:18:46:12:e9:06:38:88:7c:3f:0c:3e:9d: ed:8e:ce:9f:81:e7:72:d4:1a:09:ee:0b:b9:88:b8:a1:9f:af: 71:30:34:4f:11:9c:01:f6:3d:9a:5f:4d:7f:71:10:9d:9b:ec: 5a:93:4b:f3:92:6d:ff:b2:8c:d8:b5:0e:9f:fa:82:10:59:5b: 06:5b:5d:88:28:d2:71:94:97:26:8a:c9:bc:7a:d9:8f:d1:23: 79:10:8e:02:41:45:d8:cb:16:ee:b4:f8:d1:a6:0e:5b:99:1d: 7c:95:5d:07:95:9d:9c:95:2c:33:ed:02:a7:cc:18:90:a7:ae: 10:a8:c8:21:f9:c4:5e:e3:13:bf:01:89:1e:2c:0f:86:95:62: a9:a5:f6:06:d4:82:01:99:13:b7:05:34:6e:5e:ac:2d:db:37: 72:8c:ee:1c:bb:11:a1:ac:19:67:66:1c:c9:79:24:67:f9:b3: 3a:f4:9a:ef -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv1rEqguamZ8tDlLD+Wr8giMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI2OTFmZmM4NjU5ZTJlNjNhNmRlY2VjN2Q2ZjM2ZDYwYjY2 NDA5NjEwHhcNMjYwMTI1MTUwMTA3WhcNMjYwMTI2MTUwMTA3WjAzMTEwLwYDVQQD EygwNWEyZTU4ODAyNDAyZTdiYTlmNjk3YzI1NjRiNjRlNTQxZjFhNDM4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0lKAdwYBdA3GM5nkxfaMk4Om74rL LgZ5P7LwntvWqQEg+nQGxrPqLsuYAHAl6WQC65u6ATw7UqdIrbUA6zj/vzKhOZy8 YcOgsEIoLcqfbJpIuKrwy+YcFZHGIKjYXJqL+aCdjZU3PZedmy1+taJCXuSpsfJs xDqtgTJ1WrE/+aYNgZi/2z240Tc38F9Vd5BmY9x1Nb4GP4kaPPne8qsE+gTKour5 urjp5uM7cgSn/HB26ikCY6PhV0FQOZ+InUX3wrUROoHksMW+haoIsLKaMN+mk1Kt Y2I9AJaOHPxIQDHdnVs760iQunhSl3KX06z3RQ49u89Hz6o/bjTAnluoPQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAWi5YgCQC57qfaXwlZLZOVB8aQ4MB8GA1UdIwQY MBaAFLaR/8hlni5jpt7Ox9bzbWC2ZAlhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdHBIX3lHV2VMbU9tM3M3SDF2TnRZTFprQ1dFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS8yNGM0ZDEtODYzZi00NGMzLTg2YWQt OWEyOTRjNzBjNzBlLzEvdHBIX3lHV2VMbU9tM3M3SDF2TnRZTFprQ1dFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNS8yNGM0ZDEtODYzZi00NGMzLTg2YWQtOWEyOTRjNzBjNzBl LzEvdHBIX3lHV2VMbU9tM3M3SDF2TnRZTFprQ1dFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHfgxUw/4 vyYUWfTbYmuKsXmVSWok4jgVG+P9H/bWc15vMFx2lCTk8lRZOFu45FEPD40Z1MKl 2/cS+d1CcOQDbtshRs+/kZGZ5WVSONbXGEYS6QY4iHw/DD6d7Y7On4HnctQaCe4L uYi4oZ+vcTA0TxGcAfY9ml9Nf3EQnZvsWpNL85Jt/7KM2LUOn/qCEFlbBltdiCjS cZSXJorJvHrZj9EjeRCOAkFF2MsW7rT40aYOW5kdfJVdB5WdnJUsM+0Cp8wYkKeu EKjIIfnEXuMTvwGJHiwPhpViqaX2BtSCAZkTtwU0bl6sLds3cozuHLsRoawZZ2Yc yXkkZ/mzOvSa7w== -----END CERTIFICATE-----Generated at Mon Jan 26 01:19:27 2026 by rpki-client