This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/3555e0-9443-4e63-a89b-dd17bfd67cd3/1/NufP3RKRk-IZw3ASHKFiUOQptYs.mft File: NufP3RKRk-IZw3ASHKFiUOQptYs.mft (raw, json) Hash identifier: NBOBhNkdjcF4KhdMzz3ssz1UViRowN58UWtq3HePDUs= Subject key identifier: 5F:E5:42:93:B3:C2:43:42:2E:8E:06:F2:D3:53:8F:8E:D3:66:D5:5D Authority key identifier: 36:E7:CF:DD:12:91:93:E2:19:C3:70:12:1C:A1:62:50:E4:29:B5:8B Certificate issuer: /CN=36e7cfdd129193e219c370121ca16250e429b58b Certificate serial: 019BF318B0B077F4B0BAE746D9BBB01DA5BE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NufP3RKRk-IZw3ASHKFiUOQptYs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/3555e0-9443-4e63-a89b-dd17bfd67cd3/1/NufP3RKRk-IZw3ASHKFiUOQptYs.mft Manifest number: 11D8 Signing time: Sun 25 Jan 2026 03:00:40 +0000 Manifest this update: Sun 25 Jan 2026 03:00:40 +0000 Manifest next update: Mon 26 Jan 2026 03:00:40 +0000 Files and hashes: 1: 43mZhZr44AIFJcFlEmjkEL_Qzjo.roa (hash: GwcZdDMV/aXs2RqaKWm3srdiDr2ZSWOLhYiN6xh8X/w=) 2: NufP3RKRk-IZw3ASHKFiUOQptYs.crl (hash: kdHSej8hVCoh/Zwiy/06YqDHSHHn7vrXmivMCrtSE1A=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/3555e0-9443-4e63-a89b-dd17bfd67cd3/1/NufP3RKRk-IZw3ASHKFiUOQptYs.crl rsync://rpki.ripe.net/repository/DEFAULT/33/3555e0-9443-4e63-a89b-dd17bfd67cd3/1/NufP3RKRk-IZw3ASHKFiUOQptYs.mft rsync://rpki.ripe.net/repository/DEFAULT/NufP3RKRk-IZw3ASHKFiUOQptYs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 03:00:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f3:18:b0:b0:77:f4:b0:ba:e7:46:d9:bb:b0:1d:a5:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=36e7cfdd129193e219c370121ca16250e429b58b Validity Not Before: Jan 25 03:00:40 2026 GMT Not After : Jan 26 03:00:40 2026 GMT Subject: CN=5fe54293b3c243422e8e06f2d3538f8ed366d55d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:af:1b:2d:96:28:4a:cd:15:59:2d:46:56:3b: 94:4f:e5:cc:5d:cd:a3:2a:1c:6d:bd:04:47:0d:2c: c8:22:b1:40:fa:f0:3c:f1:32:16:47:6f:3e:ef:b6: c7:56:98:8f:91:23:14:98:4b:b5:26:22:c9:01:73: 89:5e:6b:87:59:53:54:eb:14:d9:a2:bc:65:42:5a: b4:f1:23:df:26:ca:93:f7:b3:5d:73:b7:e3:ac:ea: 42:ba:4d:2d:b6:58:50:1c:ca:d3:9c:ee:e2:09:dc: d7:d6:9c:16:9c:4a:85:b8:23:95:b4:4c:c2:aa:ac: a1:29:47:43:e9:ec:5c:d2:59:fe:82:cd:ec:82:c9: 1d:1e:b6:72:34:67:51:23:63:c2:9a:b0:77:8f:4b: 63:f1:41:dd:8a:80:bd:9b:13:d8:70:b2:b0:eb:87: c5:14:ad:d4:43:b3:38:73:05:7a:f1:89:7c:ba:78: 38:b0:e4:e9:29:78:a0:a6:19:18:da:de:e0:58:73: e0:e7:4a:2a:94:86:c0:aa:2d:20:22:70:24:2d:07: 58:0b:55:6f:30:be:0c:ee:e9:fe:08:af:e7:05:47: f8:06:ed:5e:2e:d8:06:08:db:19:cd:6a:de:32:28: 1d:55:ec:a2:71:b5:33:d8:ee:c2:13:d6:59:2b:40: ab:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:E5:42:93:B3:C2:43:42:2E:8E:06:F2:D3:53:8F:8E:D3:66:D5:5D X509v3 Authority Key Identifier: keyid:36:E7:CF:DD:12:91:93:E2:19:C3:70:12:1C:A1:62:50:E4:29:B5:8B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NufP3RKRk-IZw3ASHKFiUOQptYs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/3555e0-9443-4e63-a89b-dd17bfd67cd3/1/NufP3RKRk-IZw3ASHKFiUOQptYs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/33/3555e0-9443-4e63-a89b-dd17bfd67cd3/1/NufP3RKRk-IZw3ASHKFiUOQptYs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 05:6f:63:56:ec:64:2c:57:e9:c1:02:d0:59:ba:e1:67:cc:8e: 96:66:36:c2:6f:ca:5b:7b:74:98:b9:65:11:99:46:ea:c8:fc: 39:3a:4b:9b:b2:54:4c:0c:44:a7:6c:49:34:92:fb:c7:a8:c6: 4e:ff:3f:d8:7c:71:2f:78:ff:50:ad:24:f2:82:5f:30:f7:0b: a0:b8:b3:94:49:c1:50:23:f6:28:4e:a3:f1:8b:49:b3:63:cf: be:8a:3f:93:26:fb:10:d5:21:ee:66:43:5a:0d:77:d8:0f:75: 3e:55:31:a4:71:10:f4:78:1d:57:fb:13:7f:ba:b7:be:17:0e: 7b:33:21:8d:05:2f:b9:53:9f:67:20:bf:e9:3e:2b:cc:68:d5: e5:1f:69:fa:bc:14:3e:e6:ef:8c:27:6b:52:ca:67:bd:54:90: c4:4a:79:81:d4:a0:5b:11:39:c2:00:13:a6:a0:78:6b:36:06: 9e:c6:95:19:cc:99:c8:d3:c3:8f:83:7a:7e:a7:2f:de:7d:8f: ea:b6:de:52:85:8c:65:60:72:12:2a:ae:79:45:69:dc:94:8a: 37:0e:22:e7:31:d4:b7:c2:cc:67:0f:c0:10:27:d2:e3:26:7f: 89:a5:6a:b3:bf:20:23:fd:73:d1:84:7b:c3:8e:94:ef:4b:c7: 29:2c:b1:cf -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZvzGLCwd/SwuudG2buwHaW+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM2ZTdjZmRkMTI5MTkzZTIxOWMzNzAxMjFjYTE2MjUwZTQy OWI1OGIwHhcNMjYwMTI1MDMwMDQwWhcNMjYwMTI2MDMwMDQwWjAzMTEwLwYDVQQD Eyg1ZmU1NDI5M2IzYzI0MzQyMmU4ZTA2ZjJkMzUzOGY4ZWQzNjZkNTVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6a8bLZYoSs0VWS1GVjuUT+XMXc2j KhxtvQRHDSzIIrFA+vA88TIWR28+77bHVpiPkSMUmEu1JiLJAXOJXmuHWVNU6xTZ orxlQlq08SPfJsqT97Ndc7fjrOpCuk0ttlhQHMrTnO7iCdzX1pwWnEqFuCOVtEzC qqyhKUdD6exc0ln+gs3sgskdHrZyNGdRI2PCmrB3j0tj8UHdioC9mxPYcLKw64fF FK3UQ7M4cwV68Yl8ung4sOTpKXigphkY2t7gWHPg50oqlIbAqi0gInAkLQdYC1Vv ML4M7un+CK/nBUf4Bu1eLtgGCNsZzWreMigdVeyicbUz2O7CE9ZZK0CrZQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFF/lQpOzwkNCLo4G8tNTj47TZtVdMB8GA1UdIwQY MBaAFDbnz90SkZPiGcNwEhyhYlDkKbWLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTnVmUDNSS1JrLUladzNBU0hLRmlVT1FwdFlzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMy8zNTU1ZTAtOTQ0My00ZTYzLWE4OWIt ZGQxN2JmZDY3Y2QzLzEvTnVmUDNSS1JrLUladzNBU0hLRmlVT1FwdFlzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMy8zNTU1ZTAtOTQ0My00ZTYzLWE4OWItZGQxN2JmZDY3Y2Qz LzEvTnVmUDNSS1JrLUladzNBU0hLRmlVT1FwdFlzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABW9jVuxk LFfpwQLQWbrhZ8yOlmY2wm/KW3t0mLllEZlG6sj8OTpLm7JUTAxEp2xJNJL7x6jG Tv8/2HxxL3j/UK0k8oJfMPcLoLizlEnBUCP2KE6j8YtJs2PPvoo/kyb7ENUh7mZD Wg132A91PlUxpHEQ9HgdV/sTf7q3vhcOezMhjQUvuVOfZyC/6T4rzGjV5R9p+rwU PubvjCdrUspnvVSQxEp5gdSgWxE5wgATpqB4azYGnsaVGcyZyNPDj4N6fqcv3n2P 6rbeUoWMZWByEiqueUVp3JSKNw4i5zHUt8LMZw/AECfS4yZ/iaVqs78gI/1z0YR7 w46U70vHKSyxzw== -----END CERTIFICATE-----Generated at Sun Jan 25 11:46:31 2026 by rpki-client