This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/2d4818-f182-4b46-9e8c-0827961c05e0/1/rKbwaDzHS63SOoFAw4XxyBziTfc.mft File: rKbwaDzHS63SOoFAw4XxyBziTfc.mft (raw, json) Hash identifier: YDMUbMyWwb2UN2A5yQE7SAYR+eT9txRyG+CDa5gtajw= Subject key identifier: D4:39:99:ED:19:E9:75:BB:DA:16:4D:5E:F4:F2:7C:F1:75:73:5B:CC Authority key identifier: AC:A6:F0:68:3C:C7:4B:AD:D2:3A:81:40:C3:85:F1:C8:1C:E2:4D:F7 Certificate issuer: /CN=aca6f0683cc74badd23a8140c385f1c81ce24df7 Certificate serial: 019BF5E2F8D6AF08D5C04A167B5827539408 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rKbwaDzHS63SOoFAw4XxyBziTfc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/2d4818-f182-4b46-9e8c-0827961c05e0/1/rKbwaDzHS63SOoFAw4XxyBziTfc.mft Manifest number: 0E91 Signing time: Sun 25 Jan 2026 16:00:51 +0000 Manifest this update: Sun 25 Jan 2026 16:00:51 +0000 Manifest next update: Mon 26 Jan 2026 16:00:51 +0000 Files and hashes: 1: Hl-oGjMEXSHh22tv7GvQWauR6Ls.roa (hash: k0kjDMHyxNG6XHvsH8YWl0QTbYb+WeHWx5ruPE+qWhs=) 2: rKbwaDzHS63SOoFAw4XxyBziTfc.crl (hash: AvpiM2yU5BwET0jqns8MW0Ww8YPc5xXyhPf6k4BVEEY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/2d4818-f182-4b46-9e8c-0827961c05e0/1/rKbwaDzHS63SOoFAw4XxyBziTfc.crl rsync://rpki.ripe.net/repository/DEFAULT/31/2d4818-f182-4b46-9e8c-0827961c05e0/1/rKbwaDzHS63SOoFAw4XxyBziTfc.mft rsync://rpki.ripe.net/repository/DEFAULT/rKbwaDzHS63SOoFAw4XxyBziTfc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f5:e2:f8:d6:af:08:d5:c0:4a:16:7b:58:27:53:94:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=aca6f0683cc74badd23a8140c385f1c81ce24df7 Validity Not Before: Jan 25 16:00:51 2026 GMT Not After : Jan 26 16:00:51 2026 GMT Subject: CN=d43999ed19e975bbda164d5ef4f27cf175735bcc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:08:ae:1b:1c:ae:03:66:98:09:ff:32:f5:fd: 4a:8b:59:08:01:2c:93:55:ed:37:e8:ff:bb:77:6d: c5:3d:b5:db:d8:f6:81:be:b0:6b:84:78:a9:86:e0: 65:c8:54:60:5d:5e:32:ab:33:1a:62:f4:69:66:18: e2:ee:fc:6b:28:94:97:04:3f:bb:5e:94:8f:21:09: f3:99:14:98:9f:c2:13:1d:00:ff:05:7a:0f:1b:54: 60:16:44:87:dd:87:41:fb:46:61:ef:13:7c:00:7e: fe:02:3f:19:47:32:2d:5e:fd:55:7c:9e:de:81:bb: 96:8f:4d:23:85:75:d6:ed:66:0f:f7:66:a1:33:88: 03:e5:62:70:dd:2f:44:c1:21:28:20:15:66:09:ab: 23:a0:8d:2f:b7:48:ec:bb:94:3f:7b:0b:e2:34:84: 3c:15:a5:1a:59:c3:20:4d:26:fc:2f:14:ee:a9:94: b4:08:c1:7f:f8:8a:fb:28:77:2a:be:94:ca:bc:fb: e4:f7:fb:8f:73:88:09:5b:6c:99:a5:e9:62:29:2c: 79:38:4e:2a:3d:53:e0:fb:90:eb:2b:ef:84:76:54: 58:c9:7b:84:68:8d:9e:50:5d:46:73:1a:f1:c1:ba: f8:df:93:bd:74:f9:1d:ae:ee:1d:ef:94:92:12:d1: 37:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:39:99:ED:19:E9:75:BB:DA:16:4D:5E:F4:F2:7C:F1:75:73:5B:CC X509v3 Authority Key Identifier: keyid:AC:A6:F0:68:3C:C7:4B:AD:D2:3A:81:40:C3:85:F1:C8:1C:E2:4D:F7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rKbwaDzHS63SOoFAw4XxyBziTfc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/2d4818-f182-4b46-9e8c-0827961c05e0/1/rKbwaDzHS63SOoFAw4XxyBziTfc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/31/2d4818-f182-4b46-9e8c-0827961c05e0/1/rKbwaDzHS63SOoFAw4XxyBziTfc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7e:d2:3d:7d:84:82:07:49:8f:bf:29:ef:0c:86:a1:7c:6a:b0: 17:a6:f7:79:c3:52:f2:7f:86:b2:54:7a:1f:0f:b8:43:b8:8b: 45:9f:7c:b4:97:07:0f:b9:c5:71:87:fc:be:01:18:1b:af:19: 34:bc:79:19:f5:af:91:81:12:fc:d7:81:82:f0:38:48:26:66: 67:c6:72:b7:54:04:30:ee:32:5b:0d:90:a1:1c:26:af:39:30: 5f:dc:0b:a1:66:89:0b:5c:11:18:4c:8a:6d:d9:89:8b:d6:e7: da:f4:b7:f1:c8:e6:46:fe:c5:53:b5:49:a9:34:59:42:18:1b: 83:18:dd:47:0f:d4:25:0d:59:0c:a6:34:d5:03:73:5b:0a:74: 00:67:b0:92:a9:75:a3:2e:92:c5:7d:42:62:fe:5b:51:0b:e7: 25:62:ef:eb:c2:e0:8d:2f:97:c6:21:b6:66:0c:92:00:4f:53: 2a:64:64:61:ad:57:00:46:74:a4:05:3e:14:75:68:9f:65:a9: 16:a5:28:53:93:7c:b7:fa:10:f4:85:20:4f:80:bd:80:6e:65: f6:81:da:00:04:66:2e:65:af:26:da:a0:87:53:b3:0c:36:67: e0:31:68:9c:e3:0e:38:6e:19:9a:3a:51:bb:1c:ee:72:f9:6c: 50:d3:07:82 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv14vjWrwjVwEoWe1gnU5QIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFjYTZmMDY4M2NjNzRiYWRkMjNhODE0MGMzODVmMWM4MWNl MjRkZjcwHhcNMjYwMTI1MTYwMDUxWhcNMjYwMTI2MTYwMDUxWjAzMTEwLwYDVQQD EyhkNDM5OTllZDE5ZTk3NWJiZGExNjRkNWVmNGYyN2NmMTc1NzM1YmNjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwAiuGxyuA2aYCf8y9f1Ki1kIASyT Ve036P+7d23FPbXb2PaBvrBrhHiphuBlyFRgXV4yqzMaYvRpZhji7vxrKJSXBD+7 XpSPIQnzmRSYn8ITHQD/BXoPG1RgFkSH3YdB+0Zh7xN8AH7+Aj8ZRzItXv1VfJ7e gbuWj00jhXXW7WYP92ahM4gD5WJw3S9EwSEoIBVmCasjoI0vt0jsu5Q/ewviNIQ8 FaUaWcMgTSb8LxTuqZS0CMF/+Ir7KHcqvpTKvPvk9/uPc4gJW2yZpeliKSx5OE4q PVPg+5DrK++EdlRYyXuEaI2eUF1Gcxrxwbr435O9dPkdru4d75SSEtE3zQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNQ5me0Z6XW72hZNXvTyfPF1c1vMMB8GA1UdIwQY MBaAFKym8Gg8x0ut0jqBQMOF8cgc4k33MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcktid2FEekhTNjNTT29GQXc0WHh5QnppVGZjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS8yZDQ4MTgtZjE4Mi00YjQ2LTllOGMt MDgyNzk2MWMwNWUwLzEvcktid2FEekhTNjNTT29GQXc0WHh5QnppVGZjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMS8yZDQ4MTgtZjE4Mi00YjQ2LTllOGMtMDgyNzk2MWMwNWUw LzEvcktid2FEekhTNjNTT29GQXc0WHh5QnppVGZjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAftI9fYSC B0mPvynvDIahfGqwF6b3ecNS8n+GslR6Hw+4Q7iLRZ98tJcHD7nFcYf8vgEYG68Z NLx5GfWvkYES/NeBgvA4SCZmZ8Zyt1QEMO4yWw2QoRwmrzkwX9wLoWaJC1wRGEyK bdmJi9bn2vS38cjmRv7FU7VJqTRZQhgbgxjdRw/UJQ1ZDKY01QNzWwp0AGewkql1 oy6SxX1CYv5bUQvnJWLv68LgjS+XxiG2ZgySAE9TKmRkYa1XAEZ0pAU+FHVon2Wp FqUoU5N8t/oQ9IUgT4C9gG5l9oHaAARmLmWvJtqgh1OzDDZn4DFonOMOOG4ZmjpR uxzucvlsUNMHgg== -----END CERTIFICATE-----Generated at Sun Jan 25 21:12:42 2026 by rpki-client