This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/15089b-18d7-4ff0-9d28-b9b65402b928/1/rKZqWTivVnqeKbT3bxFWB8K4qiA.mft File: rKZqWTivVnqeKbT3bxFWB8K4qiA.mft (raw, json) Hash identifier: YzaRS8vwah3GLANIkJOtI+8mEPqcUfI07j00FyPeaFw= Subject key identifier: 8F:F8:89:32:40:42:1D:13:95:E9:D6:E8:F3:AA:12:CD:AD:BC:9A:B8 Authority key identifier: AC:A6:6A:59:38:AF:56:7A:9E:29:B4:F7:6F:11:56:07:C2:B8:AA:20 Certificate issuer: /CN=aca66a5938af567a9e29b4f76f115607c2b8aa20 Certificate serial: 019BF318985A6F390078B77B738D5A087509 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rKZqWTivVnqeKbT3bxFWB8K4qiA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/15089b-18d7-4ff0-9d28-b9b65402b928/1/rKZqWTivVnqeKbT3bxFWB8K4qiA.mft Manifest number: 1845 Signing time: Sun 25 Jan 2026 03:00:33 +0000 Manifest this update: Sun 25 Jan 2026 03:00:33 +0000 Manifest next update: Mon 26 Jan 2026 03:00:33 +0000 Files and hashes: 1: 0MbPthP00y-BiYvrfmoPPDH6ShE.roa (hash: IRw4Yiq6W1chqGkvly7drfGE0he8NRBMaSdVXp7MZQM=) 2: FwbsSA-LLYDwJveOiIwWRQL8O4A.roa (hash: LZ4xTrrdN0a7so3riKKQBkOHl1SW+eGzBvkpE5DQJok=) 3: MGK7UvPouG-XbQIejIWT_wE8AX4.roa (hash: Cuig2tzBvMGwk2EQso0my/pHmOoXx+KAzgvlPpwypMs=) 4: MMRGLoAC4Sfnmbb2pyyxVC21vMI.roa (hash: xHNn6q9PYRqeQK2NR9l8QrkTBmZNq1GFHSPhCABTUdQ=) 5: YwjZZ9bgLVxt2xabfmCAAbgkMaU.roa (hash: 1zAPzM37tpNFKQcC0bPci1i0+4xvK1uwZaId1VplQqg=) 6: Z9v03Glll_6U7rPnPHeeMtOaRwo.roa (hash: MIONyPy9xxM9PP/Mww4JUQcmmXncwxAen4eKUZkPg6g=) 7: rKZqWTivVnqeKbT3bxFWB8K4qiA.crl (hash: Ep/qDduJvP16cbKVDYez76vy1j//vE1Odwjr18ReDGA=) 8: wgpETV0ctXLiN05hA1XO5_ljpco.roa (hash: 7QpaMI3uEfsgVOxk023whBWoxJwTMZppePWCn+pGin0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/15089b-18d7-4ff0-9d28-b9b65402b928/1/rKZqWTivVnqeKbT3bxFWB8K4qiA.crl rsync://rpki.ripe.net/repository/DEFAULT/2f/15089b-18d7-4ff0-9d28-b9b65402b928/1/rKZqWTivVnqeKbT3bxFWB8K4qiA.mft rsync://rpki.ripe.net/repository/DEFAULT/rKZqWTivVnqeKbT3bxFWB8K4qiA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f3:18:98:5a:6f:39:00:78:b7:7b:73:8d:5a:08:75:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=aca66a5938af567a9e29b4f76f115607c2b8aa20 Validity Not Before: Jan 25 03:00:33 2026 GMT Not After : Jan 26 03:00:33 2026 GMT Subject: CN=8ff8893240421d1395e9d6e8f3aa12cdadbc9ab8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:9c:c0:82:41:e7:45:17:2b:a2:1d:0a:e2:2a: 44:42:3f:db:92:18:15:cc:bb:32:1e:13:81:9f:ca: 38:d9:04:ad:33:1b:ac:32:32:6c:52:c5:8e:e9:64: c1:77:91:87:fc:42:53:89:89:2b:a4:64:92:c4:b9: 9d:04:55:f7:39:16:a3:0a:54:98:d6:24:7d:da:14: 5d:f0:24:cb:76:18:ef:a6:dc:c7:27:6f:ed:96:c7: 93:86:13:ce:1d:98:55:3d:63:eb:da:0d:4b:7b:4a: 90:03:a5:cf:20:40:00:94:d6:9f:68:75:e0:18:58: 1f:81:0f:bf:79:f2:96:18:18:c7:b6:fb:f5:e3:0b: d5:08:32:54:ba:92:4b:d7:68:d2:84:0e:f6:97:e1: 1f:e8:8e:01:d0:15:44:b4:3f:db:fa:ab:53:9c:3a: 1b:af:31:b5:6d:97:64:c9:32:64:64:64:e6:3a:c0: 6a:d1:0c:36:cb:fb:ef:fc:47:72:52:bb:e3:e6:4e: c4:f1:1b:36:33:82:df:60:44:63:3d:78:ab:81:0c: 9f:a4:c1:c4:cb:04:36:e1:1e:54:ce:8f:2b:50:1e: 54:2e:92:34:31:7a:2a:ff:e4:d2:80:58:ba:64:5a: 59:12:56:a8:94:17:4a:17:2e:20:4f:c6:88:8e:c0: 14:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:F8:89:32:40:42:1D:13:95:E9:D6:E8:F3:AA:12:CD:AD:BC:9A:B8 X509v3 Authority Key Identifier: keyid:AC:A6:6A:59:38:AF:56:7A:9E:29:B4:F7:6F:11:56:07:C2:B8:AA:20 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rKZqWTivVnqeKbT3bxFWB8K4qiA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/15089b-18d7-4ff0-9d28-b9b65402b928/1/rKZqWTivVnqeKbT3bxFWB8K4qiA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/15089b-18d7-4ff0-9d28-b9b65402b928/1/rKZqWTivVnqeKbT3bxFWB8K4qiA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 77:94:92:10:92:b3:36:6b:4b:c4:9d:ce:a9:69:76:ef:a4:04: fc:73:cb:1b:16:a0:6a:ab:9e:4a:4c:86:60:d8:fc:9f:d1:68: da:d5:e6:ff:32:c3:15:ca:e5:a5:de:4d:3c:c0:b8:de:4a:7a: 3e:29:ae:4f:7e:55:cd:7e:f8:12:31:6a:91:b8:d4:c5:85:84: 15:cc:c3:e9:76:60:8e:9b:0c:3d:b4:d8:0e:ba:be:cb:e2:ab: a7:c0:f9:a4:e8:ff:63:10:f2:f1:60:0d:c9:7f:88:34:a2:0d: d0:8e:29:db:87:89:fe:c3:eb:ca:c0:f0:44:5f:f2:01:b1:9b: c8:52:7a:80:ce:36:58:3f:b3:f8:93:74:09:97:4d:70:be:6c: 88:a2:b1:ab:f2:82:9f:27:7e:bc:25:90:32:2d:39:7d:3c:b0: 22:23:b9:b8:9b:3c:83:f9:5d:15:f2:23:ca:d7:cc:03:77:d9: ca:58:ef:48:5a:67:ef:68:18:f3:43:ba:2e:60:48:57:f4:b3: ff:b7:eb:ff:f7:dc:8c:71:b8:5b:92:1c:b7:9c:c6:c2:b2:29: 3d:60:0e:69:da:6c:55:5e:eb:72:31:c6:79:d0:e7:d4:72:80: d2:52:b8:c2:57:3c:0e:fd:c4:4f:0e:27:be:98:d9:9d:4f:d8: 0e:88:74:b6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZvzGJhabzkAeLd7c41aCHUJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFjYTY2YTU5MzhhZjU2N2E5ZTI5YjRmNzZmMTE1NjA3YzJi OGFhMjAwHhcNMjYwMTI1MDMwMDMzWhcNMjYwMTI2MDMwMDMzWjAzMTEwLwYDVQQD Eyg4ZmY4ODkzMjQwNDIxZDEzOTVlOWQ2ZThmM2FhMTJjZGFkYmM5YWI4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv5zAgkHnRRcroh0K4ipEQj/bkhgV zLsyHhOBn8o42QStMxusMjJsUsWO6WTBd5GH/EJTiYkrpGSSxLmdBFX3ORajClSY 1iR92hRd8CTLdhjvptzHJ2/tlseThhPOHZhVPWPr2g1Le0qQA6XPIEAAlNafaHXg GFgfgQ+/efKWGBjHtvv14wvVCDJUupJL12jShA72l+Ef6I4B0BVEtD/b+qtTnDob rzG1bZdkyTJkZGTmOsBq0Qw2y/vv/EdyUrvj5k7E8Rs2M4LfYERjPXirgQyfpMHE ywQ24R5Uzo8rUB5ULpI0MXoq/+TSgFi6ZFpZElaolBdKFy4gT8aIjsAUtwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFI/4iTJAQh0TlenW6POqEs2tvJq4MB8GA1UdIwQY MBaAFKymalk4r1Z6nim0928RVgfCuKogMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcktacVdUaXZWbnFlS2JUM2J4RldCOEs0cWlBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi8xNTA4OWItMThkNy00ZmYwLTlkMjgt YjliNjU0MDJiOTI4LzEvcktacVdUaXZWbnFlS2JUM2J4RldCOEs0cWlBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZi8xNTA4OWItMThkNy00ZmYwLTlkMjgtYjliNjU0MDJiOTI4 LzEvcktacVdUaXZWbnFlS2JUM2J4RldCOEs0cWlBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAd5SSEJKz NmtLxJ3OqWl276QE/HPLGxagaqueSkyGYNj8n9Fo2tXm/zLDFcrlpd5NPMC43kp6 PimuT35VzX74EjFqkbjUxYWEFczD6XZgjpsMPbTYDrq+y+Krp8D5pOj/YxDy8WAN yX+INKIN0I4p24eJ/sPrysDwRF/yAbGbyFJ6gM42WD+z+JN0CZdNcL5siKKxq/KC nyd+vCWQMi05fTywIiO5uJs8g/ldFfIjytfMA3fZyljvSFpn72gY80O6LmBIV/Sz /7fr//fcjHG4W5Ict5zGwrIpPWAOadpsVV7rcjHGedDn1HKA0lK4wlc8Dv3ETw4n vpjZnU/YDoh0tg== -----END CERTIFICATE-----Generated at Sun Jan 25 06:15:06 2026 by rpki-client