This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/d568ed-1780-4d60-a6f7-5a8360dea3a3/1/sdLmgf8j3d89UXhY4cZKHa0phyk.mft File: sdLmgf8j3d89UXhY4cZKHa0phyk.mft (raw, json) Hash identifier: m0QLwmlnz+al2rXSd6mfSSs4zgxQ+Y8gnJ2nQrtnzgg= Subject key identifier: BD:5A:F5:52:A0:AB:4E:08:BC:BE:F0:21:22:38:6D:B9:0B:87:21:77 Authority key identifier: B1:D2:E6:81:FF:23:DD:DF:3D:51:78:58:E1:C6:4A:1D:AD:29:87:29 Certificate issuer: /CN=b1d2e681ff23dddf3d517858e1c64a1dad298729 Certificate serial: 019BF687FEFAFF9435B36C2329CB1AABCA4A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sdLmgf8j3d89UXhY4cZKHa0phyk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/d568ed-1780-4d60-a6f7-5a8360dea3a3/1/sdLmgf8j3d89UXhY4cZKHa0phyk.mft Manifest number: 1636 Signing time: Sun 25 Jan 2026 19:01:06 +0000 Manifest this update: Sun 25 Jan 2026 19:01:06 +0000 Manifest next update: Mon 26 Jan 2026 19:01:06 +0000 Files and hashes: 1: bLRsbjwrHl85CS_7pV5-UUKmgDU.roa (hash: wRWPjMaqEtjkWAV9xCnB4Aq9mP2pz2n/Qg6SuBrxsSE=) 2: sdLmgf8j3d89UXhY4cZKHa0phyk.crl (hash: qzKoLewnJ8O/2gENBp5Vmj1pX+QVuTzzS70RepGu48w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/d568ed-1780-4d60-a6f7-5a8360dea3a3/1/sdLmgf8j3d89UXhY4cZKHa0phyk.crl rsync://rpki.ripe.net/repository/DEFAULT/33/d568ed-1780-4d60-a6f7-5a8360dea3a3/1/sdLmgf8j3d89UXhY4cZKHa0phyk.mft rsync://rpki.ripe.net/repository/DEFAULT/sdLmgf8j3d89UXhY4cZKHa0phyk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 19:01:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f6:87:fe:fa:ff:94:35:b3:6c:23:29:cb:1a:ab:ca:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b1d2e681ff23dddf3d517858e1c64a1dad298729 Validity Not Before: Jan 25 19:01:06 2026 GMT Not After : Jan 26 19:01:06 2026 GMT Subject: CN=bd5af552a0ab4e08bcbef02122386db90b872177 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:60:17:95:af:33:8c:a2:7b:44:f0:23:54:8f: bf:bb:36:39:ff:0e:f9:50:cf:08:fb:5d:9c:59:e7: fd:34:22:a0:f2:7d:58:cb:3b:eb:fd:dd:d1:02:1e: 5f:fa:51:a6:86:64:32:a5:51:65:73:bf:f9:01:bf: 38:4b:c6:4e:f4:c1:33:60:ed:d7:b4:1c:eb:bc:c0: 7a:7b:ba:b0:39:5f:d4:ff:4c:46:29:f6:72:24:d1: a6:55:ac:5d:a3:4e:a4:d8:aa:91:52:35:72:df:fc: 72:0c:78:a3:7e:5b:62:7d:7d:9e:3d:8b:fa:0f:21: e9:59:ce:b0:6d:cf:74:47:41:52:37:55:93:97:45: 81:00:33:ca:fa:50:16:fc:4c:90:b2:e9:9b:44:bf: 5c:b1:3c:53:77:ff:92:5e:d7:4c:38:5e:8f:37:fe: b6:19:d4:ae:b5:7e:90:9c:a3:5f:76:15:e1:c0:1f: 60:3d:92:23:02:20:51:ec:16:a9:71:43:06:98:26: 29:68:ad:93:59:86:84:e7:b0:2b:ea:66:a9:82:1c: d1:b4:a5:bb:f8:03:a1:a3:2d:58:9b:99:0a:3b:67: 3a:e9:3b:45:c1:43:9e:8f:b7:4d:69:8f:52:f5:30: 3b:22:75:f8:7a:b4:d2:e4:fb:61:5b:24:6b:90:4d: 4c:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:5A:F5:52:A0:AB:4E:08:BC:BE:F0:21:22:38:6D:B9:0B:87:21:77 X509v3 Authority Key Identifier: keyid:B1:D2:E6:81:FF:23:DD:DF:3D:51:78:58:E1:C6:4A:1D:AD:29:87:29 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sdLmgf8j3d89UXhY4cZKHa0phyk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/d568ed-1780-4d60-a6f7-5a8360dea3a3/1/sdLmgf8j3d89UXhY4cZKHa0phyk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/33/d568ed-1780-4d60-a6f7-5a8360dea3a3/1/sdLmgf8j3d89UXhY4cZKHa0phyk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 25:d4:a1:2f:49:3b:ef:de:ff:67:ba:da:60:e2:3d:61:4d:d7: cd:04:3d:f0:e2:75:4c:4a:99:0c:34:97:17:93:5a:ec:8f:91: 50:b5:d6:e2:77:0f:ef:c0:fd:bf:86:0f:8d:ae:c1:7e:4e:74: 65:44:cb:80:82:58:de:8c:d5:73:78:20:9a:eb:2c:34:bf:91: 4a:6a:e0:4d:4b:9d:2c:7c:06:00:af:27:e1:9f:bc:79:d8:f8: bf:f1:e8:7f:29:82:f5:47:99:13:02:4c:fc:cc:2d:64:bc:c6: a7:7f:c5:de:50:d9:36:3a:c1:76:b0:e3:4e:f1:c9:9b:34:77: d0:5d:5c:cf:14:17:de:ce:11:c7:f2:32:09:a3:d3:0c:c7:e6: 6f:2c:6e:a4:bd:c7:45:7c:03:16:47:5d:a1:5e:49:b7:57:84: 2e:f3:4e:b8:60:60:51:75:50:41:2f:02:1f:61:af:0a:b5:36: 72:7e:49:91:bf:7e:9e:fe:24:a6:20:35:bd:72:2b:8e:f5:f7: 92:e5:96:6c:00:04:64:e4:c8:12:b6:a0:7f:3b:ca:ad:bf:f8: 79:5d:49:58:96:c1:d6:68:91:a3:51:6d:65:ad:3a:3b:e0:ae: 19:22:89:74:72:81:10:f4:49:c9:ed:1b:62:ae:ce:26:17:6e: ae:a3:95:26 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv2h/76/5Q1s2wjKcsaq8pKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIxZDJlNjgxZmYyM2RkZGYzZDUxNzg1OGUxYzY0YTFkYWQy OTg3MjkwHhcNMjYwMTI1MTkwMTA2WhcNMjYwMTI2MTkwMTA2WjAzMTEwLwYDVQQD EyhiZDVhZjU1MmEwYWI0ZTA4YmNiZWYwMjEyMjM4NmRiOTBiODcyMTc3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAymAXla8zjKJ7RPAjVI+/uzY5/w75 UM8I+12cWef9NCKg8n1Yyzvr/d3RAh5f+lGmhmQypVFlc7/5Ab84S8ZO9MEzYO3X tBzrvMB6e7qwOV/U/0xGKfZyJNGmVaxdo06k2KqRUjVy3/xyDHijfltifX2ePYv6 DyHpWc6wbc90R0FSN1WTl0WBADPK+lAW/EyQsumbRL9csTxTd/+SXtdMOF6PN/62 GdSutX6QnKNfdhXhwB9gPZIjAiBR7BapcUMGmCYpaK2TWYaE57Ar6mapghzRtKW7 +AOhoy1Ym5kKO2c66TtFwUOej7dNaY9S9TA7InX4erTS5PthWyRrkE1MUQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFL1a9VKgq04IvL7wISI4bbkLhyF3MB8GA1UdIwQY MBaAFLHS5oH/I93fPVF4WOHGSh2tKYcpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc2RMbWdmOGozZDg5VVhoWTRjWktIYTBwaHlrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMy9kNTY4ZWQtMTc4MC00ZDYwLWE2Zjct NWE4MzYwZGVhM2EzLzEvc2RMbWdmOGozZDg5VVhoWTRjWktIYTBwaHlrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMy9kNTY4ZWQtMTc4MC00ZDYwLWE2ZjctNWE4MzYwZGVhM2Ez LzEvc2RMbWdmOGozZDg5VVhoWTRjWktIYTBwaHlrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJdShL0k7 797/Z7raYOI9YU3XzQQ98OJ1TEqZDDSXF5Na7I+RULXW4ncP78D9v4YPja7Bfk50 ZUTLgIJY3ozVc3ggmussNL+RSmrgTUudLHwGAK8n4Z+8edj4v/HofymC9UeZEwJM /MwtZLzGp3/F3lDZNjrBdrDjTvHJmzR30F1czxQX3s4Rx/IyCaPTDMfmbyxupL3H RXwDFkddoV5Jt1eELvNOuGBgUXVQQS8CH2GvCrU2cn5Jkb9+nv4kpiA1vXIrjvX3 kuWWbAAEZOTIEragfzvKrb/4eV1JWJbB1miRo1FtZa06O+CuGSKJdHKBEPRJye0b Yq7OJhdurqOVJg== -----END CERTIFICATE-----Generated at Mon Jan 26 04:00:00 2026 by rpki-client