This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/68dc3c-df2e-4461-b7a6-01cbfc0e94e7/1/3g2da2l8ochlcMJWhi5oWLR5nIU.mft File: 3g2da2l8ochlcMJWhi5oWLR5nIU.mft (raw, json) Hash identifier: CddOGBFIlVDORUtmEiwD8LjN1Yf3fvdv2PfOcQkAWL4= Subject key identifier: 9A:DA:16:A3:6E:DE:0D:4E:F5:D9:87:9E:1C:A3:78:41:A8:B6:41:AA Authority key identifier: DE:0D:9D:6B:69:7C:A1:C8:65:70:C2:56:86:2E:68:58:B4:79:9C:85 Certificate issuer: /CN=de0d9d6b697ca1c86570c256862e6858b4799c85 Certificate serial: 019BF574EA6F31603D9559ACE41DCAA637D1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3g2da2l8ochlcMJWhi5oWLR5nIU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/68dc3c-df2e-4461-b7a6-01cbfc0e94e7/1/3g2da2l8ochlcMJWhi5oWLR5nIU.mft Manifest number: 17EF Signing time: Sun 25 Jan 2026 14:00:38 +0000 Manifest this update: Sun 25 Jan 2026 14:00:38 +0000 Manifest next update: Mon 26 Jan 2026 14:00:38 +0000 Files and hashes: 1: 3g2da2l8ochlcMJWhi5oWLR5nIU.crl (hash: NM61YLO0Df3+77OF/Gjhn3vA68Qm5C7Zan5c/mfmMk4=) 2: E_7lG7f5ZU0hPBZXeO9KiDguzXQ.roa (hash: uU7vlve0LCQA4yv+Ab2N5h2lLHcGh/mEnZNylo4rqpM=) 3: XKNodyTpVE_edu5x6d6F6Y2O2tk.roa (hash: bwj5H0svZvvLnoA8x9sKQziSKp08OjMhTh7PRO1SLcQ=) 4: ZDpRY_KWNL6AZ9OnIDN7BtGPipc.roa (hash: 1DrZ+2ptHaqoBHGtimSHqvMKa2JLNNgAJEEeUlCf64I=) 5: d9A4hlEmKbDPdLh-NP6SoKhEXtQ.roa (hash: 2KXDsx5G7CA7gUyYoSSGzL5b/e8kc/9Eqvs4mB1p5uE=) 6: hneKOL6xKV3cr3gP56n-PmBtpXI.roa (hash: GxqGClH9UHGqcmyTREy95vx88t5aKLbmXG/YE4t9Tqg=) 7: i97cNeb8oKq1iXS4wbPlLnkqnXM.roa (hash: tnxwmRHEGHKiP3jVd9g9eR9Y1YnQOfRk5Mq17tUDcaY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/68dc3c-df2e-4461-b7a6-01cbfc0e94e7/1/3g2da2l8ochlcMJWhi5oWLR5nIU.crl rsync://rpki.ripe.net/repository/DEFAULT/33/68dc3c-df2e-4461-b7a6-01cbfc0e94e7/1/3g2da2l8ochlcMJWhi5oWLR5nIU.mft rsync://rpki.ripe.net/repository/DEFAULT/3g2da2l8ochlcMJWhi5oWLR5nIU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f5:74:ea:6f:31:60:3d:95:59:ac:e4:1d:ca:a6:37:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=de0d9d6b697ca1c86570c256862e6858b4799c85 Validity Not Before: Jan 25 14:00:38 2026 GMT Not After : Jan 26 14:00:38 2026 GMT Subject: CN=9ada16a36ede0d4ef5d9879e1ca37841a8b641aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:48:18:06:10:ac:82:37:59:dc:ce:27:fa:e2: e1:44:72:59:1d:cc:83:16:90:e1:52:48:2e:81:cf: 87:57:37:34:0a:cf:d5:ea:bb:0b:b6:58:55:55:b8: 04:cb:83:bf:36:0c:15:d0:65:d2:17:da:99:0e:13: db:6b:57:ce:dc:8f:23:30:a2:3d:97:5d:e0:bf:83: 1d:0a:52:8f:9b:a8:0a:39:f7:f0:5a:00:f9:a1:5b: b3:7d:1a:94:44:38:1e:5b:26:10:30:f6:19:9e:8c: 83:c2:f7:db:c6:62:08:6e:ed:f4:d5:d6:28:8c:00: 8a:d1:2e:5f:37:b0:cf:4f:98:3e:6e:9a:a3:53:f2: 53:38:6a:11:72:2c:e0:91:85:e8:d8:10:15:af:5a: 63:d8:48:ae:3e:22:91:f6:db:f7:70:7e:59:d4:ba: 87:8d:c1:53:55:8b:48:2d:f7:b9:48:4d:6f:e0:b6: c5:99:c4:76:3a:ed:7a:68:3b:1b:72:e2:71:9e:b5: af:a8:52:ed:6f:fd:d1:99:96:88:23:a2:1c:f4:33: 1f:4f:64:35:96:d7:2b:c7:c4:f3:3e:e6:6f:42:ff: f3:81:4c:08:19:77:6f:26:9e:a6:53:36:b7:3e:5b: 69:72:e5:28:db:b2:94:b4:0f:f9:46:e9:94:40:f0: cb:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:DA:16:A3:6E:DE:0D:4E:F5:D9:87:9E:1C:A3:78:41:A8:B6:41:AA X509v3 Authority Key Identifier: keyid:DE:0D:9D:6B:69:7C:A1:C8:65:70:C2:56:86:2E:68:58:B4:79:9C:85 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3g2da2l8ochlcMJWhi5oWLR5nIU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/68dc3c-df2e-4461-b7a6-01cbfc0e94e7/1/3g2da2l8ochlcMJWhi5oWLR5nIU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/33/68dc3c-df2e-4461-b7a6-01cbfc0e94e7/1/3g2da2l8ochlcMJWhi5oWLR5nIU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 82:a2:a1:c4:b7:a5:08:c0:09:dd:99:ab:39:23:2f:f1:e1:8d: 47:34:34:50:6e:3b:2f:0f:50:84:bd:1b:d4:ee:9e:be:f3:31: 48:42:ce:f3:fa:34:8c:c7:2d:40:17:aa:24:c3:49:1f:e4:c7: 20:25:3f:6d:7c:23:4d:03:af:49:2f:95:63:3b:be:bb:a8:b5: 82:58:f0:42:ac:43:82:6b:d6:1f:cb:e9:05:10:31:1e:08:fd: ea:5e:ba:b3:ba:92:ca:fe:57:f3:77:fe:93:03:00:14:d5:67: 55:29:83:ab:1a:ed:1e:64:6d:32:fb:1c:22:3a:a6:b2:13:7d: 82:ea:0d:3d:83:a0:04:6c:ff:63:2c:7a:a3:8c:05:12:23:25: 53:10:43:3d:54:3e:00:ae:63:a8:92:60:53:fc:3e:cb:43:bd: 51:8f:66:ee:ff:7b:bf:ab:6e:cc:70:1f:51:57:3a:d7:18:7f: 16:53:fd:b8:d1:b5:f4:07:83:f2:8c:1f:ca:a1:03:08:97:bd: bb:0c:09:da:aa:46:df:f1:71:b2:1b:39:e6:2e:e6:1f:69:9f: 32:08:84:06:70:57:07:7a:ca:58:dc:d5:30:fb:2f:3a:6f:b8: 70:1c:4f:c7:c8:ba:5a:70:1e:af:52:a3:82:40:fb:54:72:1f: da:b4:75:7f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv1dOpvMWA9lVms5B3KpjfRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRlMGQ5ZDZiNjk3Y2ExYzg2NTcwYzI1Njg2MmU2ODU4YjQ3 OTljODUwHhcNMjYwMTI1MTQwMDM4WhcNMjYwMTI2MTQwMDM4WjAzMTEwLwYDVQQD Eyg5YWRhMTZhMzZlZGUwZDRlZjVkOTg3OWUxY2EzNzg0MWE4YjY0MWFhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu0gYBhCsgjdZ3M4n+uLhRHJZHcyD FpDhUkgugc+HVzc0Cs/V6rsLtlhVVbgEy4O/NgwV0GXSF9qZDhPba1fO3I8jMKI9 l13gv4MdClKPm6gKOffwWgD5oVuzfRqURDgeWyYQMPYZnoyDwvfbxmIIbu301dYo jACK0S5fN7DPT5g+bpqjU/JTOGoRcizgkYXo2BAVr1pj2EiuPiKR9tv3cH5Z1LqH jcFTVYtILfe5SE1v4LbFmcR2Ou16aDsbcuJxnrWvqFLtb/3RmZaII6Ic9DMfT2Q1 ltcrx8TzPuZvQv/zgUwIGXdvJp6mUza3PltpcuUo27KUtA/5RumUQPDLVQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJraFqNu3g1O9dmHnhyjeEGotkGqMB8GA1UdIwQY MBaAFN4NnWtpfKHIZXDCVoYuaFi0eZyFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM2cyZGEybDhvY2hsY01KV2hpNW9XTFI1bklVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMy82OGRjM2MtZGYyZS00NDYxLWI3YTYt MDFjYmZjMGU5NGU3LzEvM2cyZGEybDhvY2hsY01KV2hpNW9XTFI1bklVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMy82OGRjM2MtZGYyZS00NDYxLWI3YTYtMDFjYmZjMGU5NGU3 LzEvM2cyZGEybDhvY2hsY01KV2hpNW9XTFI1bklVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgqKhxLel CMAJ3ZmrOSMv8eGNRzQ0UG47Lw9QhL0b1O6evvMxSELO8/o0jMctQBeqJMNJH+TH ICU/bXwjTQOvSS+VYzu+u6i1gljwQqxDgmvWH8vpBRAxHgj96l66s7qSyv5X83f+ kwMAFNVnVSmDqxrtHmRtMvscIjqmshN9guoNPYOgBGz/Yyx6o4wFEiMlUxBDPVQ+ AK5jqJJgU/w+y0O9UY9m7v97v6tuzHAfUVc61xh/FlP9uNG19AeD8owfyqEDCJe9 uwwJ2qpG3/Fxshs55i7mH2mfMgiEBnBXB3rKWNzVMPsvOm+4cBxPx8i6WnAer1Kj gkD7VHIf2rR1fw== -----END CERTIFICATE-----Generated at Sun Jan 25 16:21:11 2026 by rpki-client