This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/7e4ba7-f592-4eec-bcae-095d0bd2555f/1/byDBquA8J08ClCjuoKRCQgjU8-0.mft File: byDBquA8J08ClCjuoKRCQgjU8-0.mft (raw, json) Hash identifier: EkdIQ9zlmY6e5cjw02qlKgUe5FS+vOeTPmwpGeaOjZY= Subject key identifier: 06:85:94:72:9A:D9:CD:29:DC:32:BF:E4:B4:FE:3B:0E:2A:C6:12:E3 Authority key identifier: 6F:20:C1:AA:E0:3C:27:4F:02:94:28:EE:A0:A4:42:42:08:D4:F3:ED Certificate issuer: /CN=6f20c1aae03c274f029428eea0a4424208d4f3ed Certificate serial: 019BF6BF2BACF9777F97B48E2BFC1DFB4660 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/byDBquA8J08ClCjuoKRCQgjU8-0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/7e4ba7-f592-4eec-bcae-095d0bd2555f/1/byDBquA8J08ClCjuoKRCQgjU8-0.mft Manifest number: 17EA Signing time: Sun 25 Jan 2026 20:01:22 +0000 Manifest this update: Sun 25 Jan 2026 20:01:22 +0000 Manifest next update: Mon 26 Jan 2026 20:01:22 +0000 Files and hashes: 1: byDBquA8J08ClCjuoKRCQgjU8-0.crl (hash: qFi2+3VzzzZ1arPh/fpzCYCrm+IgwgZ0Xx4MY+xCyD0=) 2: grB1qqfTRQP7MTNrrn-WzmUk8gw.roa (hash: +6I+Ww911XZBE+FZXYbMuXqk8USqXVoE6JeVtzI2oaA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/7e4ba7-f592-4eec-bcae-095d0bd2555f/1/byDBquA8J08ClCjuoKRCQgjU8-0.crl rsync://rpki.ripe.net/repository/DEFAULT/35/7e4ba7-f592-4eec-bcae-095d0bd2555f/1/byDBquA8J08ClCjuoKRCQgjU8-0.mft rsync://rpki.ripe.net/repository/DEFAULT/byDBquA8J08ClCjuoKRCQgjU8-0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 20:01:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f6:bf:2b:ac:f9:77:7f:97:b4:8e:2b:fc:1d:fb:46:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6f20c1aae03c274f029428eea0a4424208d4f3ed Validity Not Before: Jan 25 20:01:22 2026 GMT Not After : Jan 26 20:01:22 2026 GMT Subject: CN=068594729ad9cd29dc32bfe4b4fe3b0e2ac612e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:0e:a4:6c:06:00:6c:3b:64:f4:6b:da:74:d4: 63:d7:9b:39:4b:7b:25:5e:0d:95:10:c5:55:6a:ee: c3:61:ba:0f:6b:4b:aa:fd:9e:5b:f9:b2:b2:74:75: b1:7e:b6:26:6a:76:16:c8:3a:0f:e6:01:79:ed:b6: 1a:82:37:4d:3e:93:06:e5:27:ff:d6:b4:c9:84:7d: d0:8a:ad:d8:f8:cb:63:74:6e:2d:08:85:1a:f3:2a: 3b:a5:3b:63:f9:dc:f9:97:b3:7e:c6:8d:46:02:2d: 23:94:7e:5d:1f:2a:43:0f:e9:08:98:5e:0b:74:94: 7a:df:3e:9f:a4:16:53:e8:b5:5d:7d:0d:ee:df:b4: 25:4d:33:94:aa:d4:95:e2:3c:d4:60:7e:de:1d:a1: 02:6a:c0:41:ae:18:ab:c8:7c:d3:d7:92:f1:29:14: 35:04:b2:00:43:99:9d:73:0f:d5:35:1f:fb:cc:0f: bc:1b:01:03:58:1a:a2:f5:0d:c8:6c:35:71:e3:27: f1:5f:92:9f:03:08:a5:8a:94:ba:6b:c4:21:9b:34: c2:a7:03:8c:87:82:30:25:3f:a7:d4:61:d8:b2:b6: d7:e4:ff:bb:a2:b8:45:ee:72:4c:28:a0:32:be:30: 2a:95:08:e3:fd:3e:10:a2:f9:45:54:09:1a:2e:6b: b4:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:85:94:72:9A:D9:CD:29:DC:32:BF:E4:B4:FE:3B:0E:2A:C6:12:E3 X509v3 Authority Key Identifier: keyid:6F:20:C1:AA:E0:3C:27:4F:02:94:28:EE:A0:A4:42:42:08:D4:F3:ED X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/byDBquA8J08ClCjuoKRCQgjU8-0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/7e4ba7-f592-4eec-bcae-095d0bd2555f/1/byDBquA8J08ClCjuoKRCQgjU8-0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/35/7e4ba7-f592-4eec-bcae-095d0bd2555f/1/byDBquA8J08ClCjuoKRCQgjU8-0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a4:16:00:a6:91:ed:46:48:32:4b:30:ff:ad:71:40:77:95:75: ac:97:4c:78:3a:4d:8c:c7:a1:5f:35:d3:d1:f6:67:34:5b:1f: e3:b3:9c:81:a3:a3:05:6e:ce:ee:1f:87:f4:56:45:36:9c:f6: a5:43:d3:ee:0e:3e:61:d5:0b:17:de:f7:98:d2:d8:c0:e8:6d: 6b:e9:0a:68:bb:19:a6:37:bf:92:46:36:28:3c:9a:d5:03:5d: a6:2b:ae:30:68:73:aa:f9:1c:d3:f8:dd:55:bf:05:4d:08:30: f5:8b:bd:27:09:e6:38:7a:e0:08:eb:d4:4c:a6:2c:33:56:55: 06:1c:e7:01:2c:f6:77:d3:1b:75:3b:a0:fe:cc:b8:25:db:3a: f8:9c:47:8a:55:90:0f:9c:13:23:1c:41:ee:05:76:5b:9d:ee: 89:48:7f:35:20:20:1d:7c:aa:3a:74:cc:22:7c:69:0f:5c:e9: ff:7b:8a:07:22:d1:75:28:f7:90:a9:de:eb:45:a3:ed:75:06: 8c:b8:a2:82:ac:5e:91:5d:ad:cf:45:8f:11:51:51:7c:38:a4: 86:88:ed:c8:b7:b2:a1:a8:95:92:29:1b:a3:5f:75:95:05:af: 50:e7:fc:5a:47:e0:c6:33:1e:8a:f8:72:d7:7d:e5:26:10:6a: 45:7a:e0:04 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv2vyus+Xd/l7SOK/wd+0ZgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZmMjBjMWFhZTAzYzI3NGYwMjk0MjhlZWEwYTQ0MjQyMDhk NGYzZWQwHhcNMjYwMTI1MjAwMTIyWhcNMjYwMTI2MjAwMTIyWjAzMTEwLwYDVQQD EygwNjg1OTQ3MjlhZDljZDI5ZGMzMmJmZTRiNGZlM2IwZTJhYzYxMmUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0A6kbAYAbDtk9GvadNRj15s5S3sl Xg2VEMVVau7DYboPa0uq/Z5b+bKydHWxfrYmanYWyDoP5gF57bYagjdNPpMG5Sf/ 1rTJhH3Qiq3Y+MtjdG4tCIUa8yo7pTtj+dz5l7N+xo1GAi0jlH5dHypDD+kImF4L dJR63z6fpBZT6LVdfQ3u37QlTTOUqtSV4jzUYH7eHaECasBBrhiryHzT15LxKRQ1 BLIAQ5mdcw/VNR/7zA+8GwEDWBqi9Q3IbDVx4yfxX5KfAwilipS6a8QhmzTCpwOM h4IwJT+n1GHYsrbX5P+7orhF7nJMKKAyvjAqlQjj/T4QovlFVAkaLmu06QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAaFlHKa2c0p3DK/5LT+Ow4qxhLjMB8GA1UdIwQY MBaAFG8gwargPCdPApQo7qCkQkII1PPtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYnlEQnF1QThKMDhDbENqdW9LUkNRZ2pVOC0wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS83ZTRiYTctZjU5Mi00ZWVjLWJjYWUt MDk1ZDBiZDI1NTVmLzEvYnlEQnF1QThKMDhDbENqdW9LUkNRZ2pVOC0wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNS83ZTRiYTctZjU5Mi00ZWVjLWJjYWUtMDk1ZDBiZDI1NTVm LzEvYnlEQnF1QThKMDhDbENqdW9LUkNRZ2pVOC0wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApBYAppHt RkgySzD/rXFAd5V1rJdMeDpNjMehXzXT0fZnNFsf47OcgaOjBW7O7h+H9FZFNpz2 pUPT7g4+YdULF973mNLYwOhta+kKaLsZpje/kkY2KDya1QNdpiuuMGhzqvkc0/jd Vb8FTQgw9Yu9JwnmOHrgCOvUTKYsM1ZVBhznASz2d9MbdTug/sy4Jds6+JxHilWQ D5wTIxxB7gV2W53uiUh/NSAgHXyqOnTMInxpD1zp/3uKByLRdSj3kKne60Wj7XUG jLiigqxekV2tz0WPEVFRfDikhojtyLeyoaiVkikbo191lQWvUOf8WkfgxjMeivhy 133lJhBqRXrgBA== -----END CERTIFICATE-----Generated at Mon Jan 26 04:24:16 2026 by rpki-client