This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/8cf51c-54d7-4c3a-90c4-bd512ed58f78/1/Tq8Utn4FHPvV4bHVFpPURoI5J5I.mft File: Tq8Utn4FHPvV4bHVFpPURoI5J5I.mft (raw, json) Hash identifier: zVsdkGqKyMrHk9qoaSgCDvG92Ry3O+NDYIDp+V6MKu8= Subject key identifier: 2E:2F:47:CE:77:B3:D9:2C:D2:F1:76:2C:5A:A3:11:CF:18:53:B0:69 Authority key identifier: 4E:AF:14:B6:7E:05:1C:FB:D5:E1:B1:D5:16:93:D4:46:82:39:27:92 Certificate issuer: /CN=4eaf14b67e051cfbd5e1b1d51693d44682392792 Certificate serial: 019BF5072AF391D2DFB475BF418B4A70CF8C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tq8Utn4FHPvV4bHVFpPURoI5J5I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/8cf51c-54d7-4c3a-90c4-bd512ed58f78/1/Tq8Utn4FHPvV4bHVFpPURoI5J5I.mft Manifest number: 17FD Signing time: Sun 25 Jan 2026 12:00:46 +0000 Manifest this update: Sun 25 Jan 2026 12:00:46 +0000 Manifest next update: Mon 26 Jan 2026 12:00:46 +0000 Files and hashes: 1: 3h4uNQ-eHV25TPT3_E5l_yB3jcs.asa (hash: +n8cfnczvffDxczQzCZSc5S0iS+H58G3zef9yb8kOjI=) 2: Dpgo4cDU1mscMX_CBOiypw89lis.roa (hash: 8mfwVN6lhdlH9CLh9R1lsuHG76iz8iY1mnvSJDuNBqo=) 3: Fphh8r1eCoKfj34xf9qomkf3wiQ.roa (hash: kT8k4bJet91D4p4C9K+F18fRKc/kTtWP1eAEzsSVixY=) 4: TnEVtd_feb3wLnGx0zhpDVlsdLo.roa (hash: 12X/x/nT6odb0gI2KEmUSYfcKY0KPCIKcIJZCeogYHQ=) 5: Tq8Utn4FHPvV4bHVFpPURoI5J5I.crl (hash: +ABX6BmqzNbPcIeNlmfW2jnBh1leEbfWKqp78F0xX+o=) 6: xsiB3z_ZUNuT9LADFwk2oVftHEQ.asa (hash: nzOu1LkWctsvsqnZutP1IKQ9rVw9QiUwIrmmVgJRers=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/8cf51c-54d7-4c3a-90c4-bd512ed58f78/1/Tq8Utn4FHPvV4bHVFpPURoI5J5I.crl rsync://rpki.ripe.net/repository/DEFAULT/29/8cf51c-54d7-4c3a-90c4-bd512ed58f78/1/Tq8Utn4FHPvV4bHVFpPURoI5J5I.mft rsync://rpki.ripe.net/repository/DEFAULT/Tq8Utn4FHPvV4bHVFpPURoI5J5I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 12:00:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f5:07:2a:f3:91:d2:df:b4:75:bf:41:8b:4a:70:cf:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4eaf14b67e051cfbd5e1b1d51693d44682392792 Validity Not Before: Jan 25 12:00:46 2026 GMT Not After : Jan 26 12:00:46 2026 GMT Subject: CN=2e2f47ce77b3d92cd2f1762c5aa311cf1853b069 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:39:7d:18:f4:e2:c8:4a:a9:83:66:2f:f1:38: fb:3c:08:71:96:aa:66:d8:3c:2e:d9:d0:a1:2c:f0: a5:5b:2c:87:c6:8c:ef:b3:f2:2a:f2:ea:ad:42:af: 9e:f4:6e:5a:32:c8:12:80:e9:31:8a:28:1c:18:a6: c5:e3:be:5d:33:09:95:82:7b:43:6f:af:ef:84:51: ec:19:91:ab:12:1f:08:fa:69:b0:f2:62:e8:d1:fb: 88:d2:02:b4:6f:78:07:4d:c7:0a:52:70:26:a5:24: 08:3d:c6:a7:52:34:51:bd:e6:23:a9:c5:01:f5:e1: 4f:43:9c:a6:f0:ab:3d:4c:79:fb:5d:9e:b6:f2:ad: c8:52:8a:fd:4b:90:ce:75:a1:8b:e9:45:c0:68:61: b5:ea:ab:06:42:45:4a:e4:51:01:b2:2a:33:45:59: f6:4c:2a:cb:86:61:63:0f:0d:0f:fe:cb:88:c8:93: 26:a4:12:ca:11:ac:3d:75:b3:73:ca:f2:3d:fb:03: d6:02:ab:0f:b7:a7:ac:82:08:70:60:20:12:06:98: 63:e4:b6:9d:29:31:9e:d2:04:fd:9e:a2:33:9e:76: e6:91:b1:30:df:f9:b6:75:d4:93:50:55:7e:45:c7: 5f:eb:77:18:c9:b0:16:66:10:05:92:41:c2:bf:6e: 60:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:2F:47:CE:77:B3:D9:2C:D2:F1:76:2C:5A:A3:11:CF:18:53:B0:69 X509v3 Authority Key Identifier: keyid:4E:AF:14:B6:7E:05:1C:FB:D5:E1:B1:D5:16:93:D4:46:82:39:27:92 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tq8Utn4FHPvV4bHVFpPURoI5J5I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/8cf51c-54d7-4c3a-90c4-bd512ed58f78/1/Tq8Utn4FHPvV4bHVFpPURoI5J5I.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/29/8cf51c-54d7-4c3a-90c4-bd512ed58f78/1/Tq8Utn4FHPvV4bHVFpPURoI5J5I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 33:9f:5a:aa:c4:03:df:3e:84:ab:97:54:8b:03:62:9f:ba:f8: dc:37:71:aa:81:06:c7:37:94:35:6a:2d:ed:56:d1:71:73:a4: 4b:87:24:39:b3:cf:f4:9c:bc:45:77:58:99:57:ef:bf:3b:83: f2:8e:1a:47:ad:05:e7:cd:6a:44:e7:2c:df:b6:74:3b:66:07: 9a:94:9b:31:ca:cf:b1:68:2f:86:85:1d:28:8a:3d:a7:9d:d7: ee:f6:63:86:60:80:89:61:c0:fa:9e:1d:8e:13:eb:f9:59:7d: 5a:08:9b:90:c1:19:6f:da:c1:be:04:d5:74:33:3c:5c:92:b9: 82:32:fd:a7:1a:a9:0d:94:0a:c8:c8:eb:ea:26:40:c2:d3:2c: 19:bf:64:22:aa:1f:61:66:3d:fb:29:28:96:fc:eb:9f:f3:e9: 45:89:62:87:57:6d:ac:72:59:c3:cf:e7:41:50:8e:45:11:d9: 1a:5e:74:1c:12:c8:0e:93:3e:07:d2:bd:9b:5b:13:c2:94:6f: f0:88:de:a5:6f:63:e7:93:95:6a:bb:6f:ac:4b:4c:26:3c:42: 2d:e8:90:a3:d9:99:cd:a9:72:43:87:90:ce:f6:a6:29:69:80: e3:e7:4c:53:0a:f4:93:a6:15:31:56:2b:50:ff:d3:53:fa:3a: 58:89:4f:f6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv1ByrzkdLftHW/QYtKcM+MMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRlYWYxNGI2N2UwNTFjZmJkNWUxYjFkNTE2OTNkNDQ2ODIz OTI3OTIwHhcNMjYwMTI1MTIwMDQ2WhcNMjYwMTI2MTIwMDQ2WjAzMTEwLwYDVQQD EygyZTJmNDdjZTc3YjNkOTJjZDJmMTc2MmM1YWEzMTFjZjE4NTNiMDY5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyjl9GPTiyEqpg2Yv8Tj7PAhxlqpm 2Dwu2dChLPClWyyHxozvs/Iq8uqtQq+e9G5aMsgSgOkxiigcGKbF475dMwmVgntD b6/vhFHsGZGrEh8I+mmw8mLo0fuI0gK0b3gHTccKUnAmpSQIPcanUjRRveYjqcUB 9eFPQ5ym8Ks9THn7XZ628q3IUor9S5DOdaGL6UXAaGG16qsGQkVK5FEBsiozRVn2 TCrLhmFjDw0P/suIyJMmpBLKEaw9dbNzyvI9+wPWAqsPt6esgghwYCASBphj5Lad KTGe0gT9nqIznnbmkbEw3/m2ddSTUFV+Rcdf63cYybAWZhAFkkHCv25gwwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFC4vR853s9ks0vF2LFqjEc8YU7BpMB8GA1UdIwQY MBaAFE6vFLZ+BRz71eGx1RaT1EaCOSeSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVHE4VXRuNEZIUHZWNGJIVkZwUFVSb0k1SjVJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS84Y2Y1MWMtNTRkNy00YzNhLTkwYzQt YmQ1MTJlZDU4Zjc4LzEvVHE4VXRuNEZIUHZWNGJIVkZwUFVSb0k1SjVJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOS84Y2Y1MWMtNTRkNy00YzNhLTkwYzQtYmQ1MTJlZDU4Zjc4 LzEvVHE4VXRuNEZIUHZWNGJIVkZwUFVSb0k1SjVJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAM59aqsQD 3z6Eq5dUiwNin7r43DdxqoEGxzeUNWot7VbRcXOkS4ckObPP9Jy8RXdYmVfvvzuD 8o4aR60F581qROcs37Z0O2YHmpSbMcrPsWgvhoUdKIo9p53X7vZjhmCAiWHA+p4d jhPr+Vl9WgibkMEZb9rBvgTVdDM8XJK5gjL9pxqpDZQKyMjr6iZAwtMsGb9kIqof YWY9+ykolvzrn/PpRYlih1dtrHJZw8/nQVCORRHZGl50HBLIDpM+B9K9m1sTwpRv 8IjepW9j55OVartvrEtMJjxCLeiQo9mZzalyQ4eQzvamKWmA4+dMUwr0k6YVMVYr UP/TU/o6WIlP9g== -----END CERTIFICATE-----Generated at Sun Jan 25 22:19:33 2026 by rpki-client