This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/587a79-1b6c-4c2a-b139-24aab44f2539/1/U0bE0gD-UDXGGwyJS5RU5y0nyR8.mft File: U0bE0gD-UDXGGwyJS5RU5y0nyR8.mft (raw, json) Hash identifier: dd+D7UTCPTOWA6TAZfNJHeuypcc60AacUaW9U3N2dZk= Subject key identifier: A5:50:49:EC:3B:AE:B3:AB:EE:A5:9F:E6:F3:E0:61:65:E0:54:A6:E3 Authority key identifier: 53:46:C4:D2:00:FE:50:35:C6:1B:0C:89:4B:94:54:E7:2D:27:C9:1F Certificate issuer: /CN=5346c4d200fe5035c61b0c894b9454e72d27c91f Certificate serial: 019BF72CDE354EFBBFD0C873E5A106E0C32D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U0bE0gD-UDXGGwyJS5RU5y0nyR8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/587a79-1b6c-4c2a-b139-24aab44f2539/1/U0bE0gD-UDXGGwyJS5RU5y0nyR8.mft Manifest number: 17EB Signing time: Sun 25 Jan 2026 22:01:11 +0000 Manifest this update: Sun 25 Jan 2026 22:01:11 +0000 Manifest next update: Mon 26 Jan 2026 22:01:11 +0000 Files and hashes: 1: I14lG_8KuHU0CqYJHc9FqXObhcQ.roa (hash: ZF+DnhO3hjJF0AK61h8lfYEMUXQ/Nib4VTQFMRZ8378=) 2: U0bE0gD-UDXGGwyJS5RU5y0nyR8.crl (hash: +MWQwxfkLMaklS7h1b+FORKTc1Txa2T2xe11lmqxezU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/587a79-1b6c-4c2a-b139-24aab44f2539/1/U0bE0gD-UDXGGwyJS5RU5y0nyR8.crl rsync://rpki.ripe.net/repository/DEFAULT/25/587a79-1b6c-4c2a-b139-24aab44f2539/1/U0bE0gD-UDXGGwyJS5RU5y0nyR8.mft rsync://rpki.ripe.net/repository/DEFAULT/U0bE0gD-UDXGGwyJS5RU5y0nyR8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f7:2c:de:35:4e:fb:bf:d0:c8:73:e5:a1:06:e0:c3:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5346c4d200fe5035c61b0c894b9454e72d27c91f Validity Not Before: Jan 25 22:01:11 2026 GMT Not After : Jan 26 22:01:11 2026 GMT Subject: CN=a55049ec3baeb3abeea59fe6f3e06165e054a6e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:49:3f:4e:8e:6d:84:6b:be:2a:40:3b:bf:c0: 10:18:71:52:35:29:e9:98:27:e1:74:9a:c5:ec:79: 35:57:65:8a:44:68:50:0f:f2:5a:38:7e:da:57:61: 68:9b:db:d2:59:88:f5:02:76:47:8a:89:83:96:41: 20:29:d7:ee:3f:cd:7d:20:57:60:1b:6b:39:0b:7e: 45:fd:d3:a3:1e:e3:50:87:9d:aa:24:6a:6e:aa:57: 69:e0:ab:fd:60:de:62:b2:82:70:d9:c3:65:b2:89: ae:10:89:7e:12:b9:4f:ac:14:e3:c7:9e:8a:0e:df: 95:84:0b:7f:d2:a4:a6:cd:40:77:8c:d5:74:73:06: 05:82:03:8c:a7:3e:0d:3c:8e:03:0e:06:f0:2f:e6: 2d:ce:ce:8e:13:99:17:f1:8c:1f:f1:a1:ab:b0:6d: ab:d0:0a:d9:04:e0:d4:42:e7:2f:69:f6:71:cd:9b: c1:23:78:ec:2f:6a:3e:0b:42:09:13:dc:a3:1a:36: ae:ab:e8:72:24:1b:db:56:38:b3:26:dc:10:97:ed: 27:05:bb:23:db:f2:2e:0a:a2:95:37:49:b3:40:59: 5b:f8:7c:df:7a:82:6e:dc:98:d2:a9:b0:3d:b7:f5: 2e:2e:e3:9b:6c:37:aa:c7:27:4c:13:1f:2b:6e:76: e6:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:50:49:EC:3B:AE:B3:AB:EE:A5:9F:E6:F3:E0:61:65:E0:54:A6:E3 X509v3 Authority Key Identifier: keyid:53:46:C4:D2:00:FE:50:35:C6:1B:0C:89:4B:94:54:E7:2D:27:C9:1F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U0bE0gD-UDXGGwyJS5RU5y0nyR8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/587a79-1b6c-4c2a-b139-24aab44f2539/1/U0bE0gD-UDXGGwyJS5RU5y0nyR8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/25/587a79-1b6c-4c2a-b139-24aab44f2539/1/U0bE0gD-UDXGGwyJS5RU5y0nyR8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 88:69:87:38:1d:a8:35:b8:87:f9:4c:e2:fa:a9:e0:dd:67:7c: 71:6e:f7:da:c6:f4:eb:f4:54:55:b7:f9:7c:b2:b9:97:36:54: e8:34:9a:5e:be:c4:77:6d:25:ae:de:7d:41:45:35:19:d4:e3: 84:93:91:61:28:af:c0:c9:70:09:a0:c8:a0:3e:3d:a0:c0:25: fc:e7:d6:f1:22:70:60:13:00:cd:5a:3e:3c:78:44:12:72:74: 0d:3a:57:e5:22:42:e2:f8:09:39:b7:dc:e2:68:6d:af:2b:12: f2:52:44:dd:36:c6:b7:9d:65:e4:55:00:f9:91:96:d7:4e:eb: bf:38:eb:8d:47:c4:17:a7:3c:8c:d1:98:ef:48:97:b0:7a:ae: 7b:48:56:0d:cd:a1:bf:f9:f0:41:47:43:5f:bc:67:84:96:2d: fb:98:a6:c5:e3:37:6d:b1:4e:3c:17:d4:25:50:18:1c:99:58: 30:81:dc:17:0a:e0:77:f5:37:3e:1b:98:da:b6:47:c2:c6:02: a9:54:04:91:7c:15:3e:3b:e1:25:e5:10:8f:75:48:65:73:cc: 22:07:f9:ac:49:f7:d9:79:87:3d:83:fd:c6:4a:92:a8:41:cc: 7b:f4:9e:5c:32:78:37:d6:68:06:4d:6a:ac:3d:9b:97:ee:78: 71:bc:d4:04 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv3LN41Tvu/0Mhz5aEG4MMtMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUzNDZjNGQyMDBmZTUwMzVjNjFiMGM4OTRiOTQ1NGU3MmQy N2M5MWYwHhcNMjYwMTI1MjIwMTExWhcNMjYwMTI2MjIwMTExWjAzMTEwLwYDVQQD EyhhNTUwNDllYzNiYWViM2FiZWVhNTlmZTZmM2UwNjE2NWUwNTRhNmUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvEk/To5thGu+KkA7v8AQGHFSNSnp mCfhdJrF7Hk1V2WKRGhQD/JaOH7aV2Fom9vSWYj1AnZHiomDlkEgKdfuP819IFdg G2s5C35F/dOjHuNQh52qJGpuqldp4Kv9YN5isoJw2cNlsomuEIl+ErlPrBTjx56K Dt+VhAt/0qSmzUB3jNV0cwYFggOMpz4NPI4DDgbwL+Ytzs6OE5kX8Ywf8aGrsG2r 0ArZBODUQucvafZxzZvBI3jsL2o+C0IJE9yjGjauq+hyJBvbVjizJtwQl+0nBbsj 2/IuCqKVN0mzQFlb+HzfeoJu3JjSqbA9t/UuLuObbDeqxydMEx8rbnbmFQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKVQSew7rrOr7qWf5vPgYWXgVKbjMB8GA1UdIwQY MBaAFFNGxNIA/lA1xhsMiUuUVOctJ8kfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVTBiRTBnRC1VRFhHR3d5SlM1UlU1eTBueVI4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS81ODdhNzktMWI2Yy00YzJhLWIxMzkt MjRhYWI0NGYyNTM5LzEvVTBiRTBnRC1VRFhHR3d5SlM1UlU1eTBueVI4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNS81ODdhNzktMWI2Yy00YzJhLWIxMzktMjRhYWI0NGYyNTM5 LzEvVTBiRTBnRC1VRFhHR3d5SlM1UlU1eTBueVI4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiGmHOB2o NbiH+Uzi+qng3Wd8cW732sb06/RUVbf5fLK5lzZU6DSaXr7Ed20lrt59QUU1GdTj hJORYSivwMlwCaDIoD49oMAl/OfW8SJwYBMAzVo+PHhEEnJ0DTpX5SJC4vgJObfc 4mhtrysS8lJE3TbGt51l5FUA+ZGW107rvzjrjUfEF6c8jNGY70iXsHque0hWDc2h v/nwQUdDX7xnhJYt+5imxeM3bbFOPBfUJVAYHJlYMIHcFwrgd/U3PhuY2rZHwsYC qVQEkXwVPjvhJeUQj3VIZXPMIgf5rEn32XmHPYP9xkqSqEHMe/SeXDJ4N9ZoBk1q rD2bl+54cbzUBA== -----END CERTIFICATE-----Generated at Mon Jan 26 08:42:28 2026 by rpki-client