This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/11cdac-6411-454d-b973-4762b010ef1e/1/0KHbRmz4CCBik9B-ZfISH-tJoz4.mft File: 0KHbRmz4CCBik9B-ZfISH-tJoz4.mft (raw, json) Hash identifier: 2NFHVg3WrBK0mbEbsMqe4PqKmHH6pyTGGad0jmf0SSs= Subject key identifier: 81:36:B5:B7:B8:25:AA:83:02:A8:3F:5A:62:16:70:E7:EE:CF:AE:39 Authority key identifier: D0:A1:DB:46:6C:F8:08:20:62:93:D0:7E:65:F2:12:1F:EB:49:A3:3E Certificate issuer: /CN=d0a1db466cf808206293d07e65f2121feb49a33e Certificate serial: 019BF42B9A7EA411B92DC2F62198CC38CAFB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0KHbRmz4CCBik9B-ZfISH-tJoz4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/11cdac-6411-454d-b973-4762b010ef1e/1/0KHbRmz4CCBik9B-ZfISH-tJoz4.mft Manifest number: 15D6 Signing time: Sun 25 Jan 2026 08:00:56 +0000 Manifest this update: Sun 25 Jan 2026 08:00:56 +0000 Manifest next update: Mon 26 Jan 2026 08:00:56 +0000 Files and hashes: 1: 0KHbRmz4CCBik9B-ZfISH-tJoz4.crl (hash: uc6vskwzEnK4FApJcwFIcTs4fVqib1IhiVkmqK9jlfk=) 2: yq5Siwl4i3jmM8YcRC0pxHMIUlk.roa (hash: nGkz7j5CjWTfBWr6c+S9Cs2//HPjWw5q8jEucRFb/jA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/11cdac-6411-454d-b973-4762b010ef1e/1/0KHbRmz4CCBik9B-ZfISH-tJoz4.crl rsync://rpki.ripe.net/repository/DEFAULT/31/11cdac-6411-454d-b973-4762b010ef1e/1/0KHbRmz4CCBik9B-ZfISH-tJoz4.mft rsync://rpki.ripe.net/repository/DEFAULT/0KHbRmz4CCBik9B-ZfISH-tJoz4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 08:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f4:2b:9a:7e:a4:11:b9:2d:c2:f6:21:98:cc:38:ca:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d0a1db466cf808206293d07e65f2121feb49a33e Validity Not Before: Jan 25 08:00:56 2026 GMT Not After : Jan 26 08:00:56 2026 GMT Subject: CN=8136b5b7b825aa8302a83f5a621670e7eecfae39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:42:bd:56:3d:46:00:2b:2d:2f:b0:6c:3d:23: 18:1d:16:76:8d:04:c1:99:05:d3:5c:e3:62:f0:2d: 40:97:cb:63:16:56:b1:2a:30:49:b6:22:a3:15:01: 91:18:04:05:1f:0a:3c:66:4b:ea:7d:9e:e5:d5:da: 10:5d:41:40:29:a2:38:f2:58:2b:4a:91:a7:14:f0: b2:30:f8:e1:fa:44:ba:ab:88:39:6c:24:e6:82:64: bd:4c:85:fa:6f:48:20:56:30:8c:23:cc:49:5f:d5: f1:d1:2b:03:14:9b:b4:64:44:d9:78:b9:43:e6:0d: 5a:90:97:d6:64:78:9d:a2:86:7c:82:43:54:1c:bc: ee:e9:21:e6:05:3a:1d:cc:ea:31:26:40:71:39:23: 89:39:92:4b:ac:92:2c:c5:43:72:2d:cd:54:c7:bd: be:0f:1c:1c:f0:09:c7:2c:dd:db:cc:e3:75:86:79: 70:9d:1b:34:4f:9f:58:10:c0:e0:8a:92:c7:bd:56: b1:16:5f:8c:dc:17:4e:62:c0:b5:43:0e:d1:2a:e9: 46:a9:ee:a6:8e:9e:53:bb:5b:c7:7e:71:4f:95:1e: 71:fd:de:a1:00:52:cf:09:3c:94:20:a3:d7:7a:7d: 38:11:e5:43:7e:51:3b:95:31:76:86:88:56:a4:2f: cb:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:36:B5:B7:B8:25:AA:83:02:A8:3F:5A:62:16:70:E7:EE:CF:AE:39 X509v3 Authority Key Identifier: keyid:D0:A1:DB:46:6C:F8:08:20:62:93:D0:7E:65:F2:12:1F:EB:49:A3:3E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0KHbRmz4CCBik9B-ZfISH-tJoz4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/11cdac-6411-454d-b973-4762b010ef1e/1/0KHbRmz4CCBik9B-ZfISH-tJoz4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/31/11cdac-6411-454d-b973-4762b010ef1e/1/0KHbRmz4CCBik9B-ZfISH-tJoz4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 15:22:9c:ad:9a:da:a7:10:b0:6d:47:43:f9:2b:3f:db:83:c4: 8b:7d:bc:da:ff:e6:81:cd:75:6d:79:ca:36:97:17:54:e9:a3: f0:3d:d2:43:99:cd:49:90:68:84:08:c4:82:b0:a7:b2:4f:47: 7b:fe:d8:3b:5e:82:e9:90:99:17:1b:c9:2c:45:68:2a:ab:ce: d2:52:51:5f:26:d8:a2:67:83:cc:0e:79:7e:4d:cf:2b:f0:13: fb:ed:32:2e:11:d0:c6:df:e3:12:a3:09:1c:97:2c:8e:90:25: 6d:2d:1a:82:42:85:ff:3c:8b:a6:6e:3f:11:29:21:eb:62:29: af:2e:72:2d:f7:d0:82:49:12:10:cc:d5:ed:54:44:9e:5b:a6: 92:b8:5b:9c:bc:04:74:11:c4:f5:b0:39:88:2f:ec:b5:96:1c: c5:a5:f2:53:e9:00:1f:cc:73:dd:0f:53:6d:d3:63:5f:2e:99: 0f:9d:5e:b2:35:73:7b:f4:22:89:95:82:3f:61:a8:77:24:ee: c6:77:bc:b6:17:ef:0d:c7:7b:e5:d1:36:ad:83:e3:7f:c1:2b: 4e:27:b7:cb:ca:30:82:71:e1:2d:ab:7d:98:7a:c7:53:46:3d: a7:97:e4:e4:f6:8d:87:97:fd:9f:c1:25:19:05:f2:b3:52:73: 7d:08:48:c4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv0K5p+pBG5LcL2IZjMOMr7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQwYTFkYjQ2NmNmODA4MjA2MjkzZDA3ZTY1ZjIxMjFmZWI0 OWEzM2UwHhcNMjYwMTI1MDgwMDU2WhcNMjYwMTI2MDgwMDU2WjAzMTEwLwYDVQQD Eyg4MTM2YjViN2I4MjVhYTgzMDJhODNmNWE2MjE2NzBlN2VlY2ZhZTM5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmUK9Vj1GACstL7BsPSMYHRZ2jQTB mQXTXONi8C1Al8tjFlaxKjBJtiKjFQGRGAQFHwo8ZkvqfZ7l1doQXUFAKaI48lgr SpGnFPCyMPjh+kS6q4g5bCTmgmS9TIX6b0ggVjCMI8xJX9Xx0SsDFJu0ZETZeLlD 5g1akJfWZHidooZ8gkNUHLzu6SHmBTodzOoxJkBxOSOJOZJLrJIsxUNyLc1Ux72+ Dxwc8AnHLN3bzON1hnlwnRs0T59YEMDgipLHvVaxFl+M3BdOYsC1Qw7RKulGqe6m jp5Tu1vHfnFPlR5x/d6hAFLPCTyUIKPXen04EeVDflE7lTF2hohWpC/LYwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIE2tbe4JaqDAqg/WmIWcOfuz645MB8GA1UdIwQY MBaAFNCh20Zs+AggYpPQfmXyEh/rSaM+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMEtIYlJtejRDQ0JpazlCLVpmSVNILXRKb3o0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS8xMWNkYWMtNjQxMS00NTRkLWI5NzMt NDc2MmIwMTBlZjFlLzEvMEtIYlJtejRDQ0JpazlCLVpmSVNILXRKb3o0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMS8xMWNkYWMtNjQxMS00NTRkLWI5NzMtNDc2MmIwMTBlZjFl LzEvMEtIYlJtejRDQ0JpazlCLVpmSVNILXRKb3o0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFSKcrZra pxCwbUdD+Ss/24PEi3282v/mgc11bXnKNpcXVOmj8D3SQ5nNSZBohAjEgrCnsk9H e/7YO16C6ZCZFxvJLEVoKqvO0lJRXybYomeDzA55fk3PK/AT++0yLhHQxt/jEqMJ HJcsjpAlbS0agkKF/zyLpm4/ESkh62Ipry5yLffQgkkSEMzV7VREnlumkrhbnLwE dBHE9bA5iC/stZYcxaXyU+kAH8xz3Q9TbdNjXy6ZD51esjVze/QiiZWCP2GodyTu xne8thfvDcd75dE2rYPjf8ErTie3y8owgnHhLat9mHrHU0Y9p5fk5PaNh5f9n8El GQXys1JzfQhIxA== -----END CERTIFICATE-----Generated at Sun Jan 25 19:23:56 2026 by rpki-client