This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/063b1b-7bde-48cc-b1ac-fad707d9c4f6/1/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.mft File: U7-Y1TUiqpVwgf3sKLFyCEOU8RI.mft (raw, json) Hash identifier: kJc5vINEAPJRXQqPAy/267zrL9x/5t7BUr0VFekEamw= Subject key identifier: 57:DE:36:44:6E:25:E8:E7:0F:08:21:93:64:33:7B:14:31:D6:67:88 Authority key identifier: 53:BF:98:D5:35:22:AA:95:70:81:FD:EC:28:B1:72:08:43:94:F1:12 Certificate issuer: /CN=53bf98d53522aa957081fdec28b172084394f112 Certificate serial: 019BF5E2F3244FE062DE3CCE114BE9D44F1E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/063b1b-7bde-48cc-b1ac-fad707d9c4f6/1/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.mft Manifest number: 0FFE Signing time: Sun 25 Jan 2026 16:00:49 +0000 Manifest this update: Sun 25 Jan 2026 16:00:49 +0000 Manifest next update: Mon 26 Jan 2026 16:00:49 +0000 Files and hashes: 1: U7-Y1TUiqpVwgf3sKLFyCEOU8RI.crl (hash: 3/HLQjievx17ScmToPvMStmouBch1QU3R1XE3TJx9HM=) 2: mK9jBg2iFuywF6JUAww3mxKLxCU.roa (hash: lk8hbAdLVuILHrw42c6HMnMUPa/ZOyLXrol4InQSdq8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/063b1b-7bde-48cc-b1ac-fad707d9c4f6/1/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.crl rsync://rpki.ripe.net/repository/DEFAULT/36/063b1b-7bde-48cc-b1ac-fad707d9c4f6/1/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.mft rsync://rpki.ripe.net/repository/DEFAULT/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f5:e2:f3:24:4f:e0:62:de:3c:ce:11:4b:e9:d4:4f:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=53bf98d53522aa957081fdec28b172084394f112 Validity Not Before: Jan 25 16:00:49 2026 GMT Not After : Jan 26 16:00:49 2026 GMT Subject: CN=57de36446e25e8e70f08219364337b1431d66788 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:45:16:44:ab:7f:09:78:33:e2:be:1a:34:48: cd:c6:1c:fb:64:18:b1:30:9f:41:67:10:41:dc:1f: 51:0e:97:2b:32:4b:25:80:08:f9:41:b7:9a:8e:f4: d2:aa:60:50:d4:5d:14:73:38:eb:b8:97:a6:57:f8: 8c:ec:d3:c2:89:dd:b7:4a:bc:39:5c:02:77:cb:86: 3b:6c:9f:6f:b2:af:90:f5:59:3d:a2:dd:33:60:1a: 3b:f6:e2:fc:3a:76:2f:c7:80:e3:36:27:3a:dd:9e: e5:5f:f6:d7:f9:58:92:fc:9f:e7:44:54:86:b7:7e: 1a:94:0a:00:21:bd:33:10:e0:5e:65:66:c3:ef:d2: f1:9a:b4:f6:30:7b:ee:06:01:3a:e3:41:cc:4d:66: 7b:62:9b:06:05:96:26:97:d7:41:67:53:71:b2:b7: ec:e9:1d:1c:7b:93:a3:fe:25:2d:86:f2:89:86:e1: e4:35:c8:28:f4:ce:6f:ac:70:7f:a2:b5:00:f2:04: 00:8c:1b:03:ec:7c:77:5b:e2:6f:56:fd:f9:78:c8: 5a:e6:8e:98:73:7c:d5:85:5e:69:22:7f:8f:21:92: 81:6e:43:86:52:b0:8f:a7:30:cd:4c:98:32:7b:2f: b1:59:ab:b9:ee:e2:a4:83:77:d1:df:fe:79:d7:cb: 8c:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:DE:36:44:6E:25:E8:E7:0F:08:21:93:64:33:7B:14:31:D6:67:88 X509v3 Authority Key Identifier: keyid:53:BF:98:D5:35:22:AA:95:70:81:FD:EC:28:B1:72:08:43:94:F1:12 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/063b1b-7bde-48cc-b1ac-fad707d9c4f6/1/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/36/063b1b-7bde-48cc-b1ac-fad707d9c4f6/1/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 58:5e:39:92:f4:f9:a5:0a:24:65:9a:46:83:ef:e7:81:18:13: 07:76:25:ec:a1:d3:10:00:6b:d2:47:94:1b:e6:93:25:d8:c0: 17:d8:05:09:0c:b9:ae:36:4f:23:6f:8f:ec:b9:27:f6:04:22: 2c:ed:94:2a:20:b4:a3:c6:85:a4:66:28:3e:6a:2c:ad:f2:4f: b7:78:1f:cd:b3:16:cb:42:eb:44:70:a3:d8:4a:13:28:37:c3: b0:de:2b:98:09:57:ae:8f:32:55:a3:24:a8:71:ea:8b:fe:7a: 79:cd:e4:96:1a:97:0f:3e:76:37:d5:cd:50:5c:40:40:f8:43: ad:2f:ba:75:e1:b2:34:11:94:f7:25:0c:83:c5:25:ec:59:b6: b7:35:1a:c0:29:f2:55:30:dc:d6:39:36:b7:cc:c8:da:91:f7: a0:8b:8f:bb:0e:93:7f:18:f2:f7:34:f6:5c:22:85:f0:90:a9: 9e:41:ec:1f:f1:bb:96:72:ed:c2:4a:f5:e5:11:f7:34:8c:d3: 71:0a:d5:0f:24:42:d0:83:16:a1:df:6e:58:55:00:8f:b0:f3: 72:fd:73:67:4f:a5:a3:c2:d8:e0:64:be:c8:9d:94:75:d9:36: 06:9a:a9:4f:f6:2b:4a:f8:80:b5:d4:26:a5:a6:de:a6:b1:d4: ab:7b:b9:b6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv14vMkT+Bi3jzOEUvp1E8eMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUzYmY5OGQ1MzUyMmFhOTU3MDgxZmRlYzI4YjE3MjA4NDM5 NGYxMTIwHhcNMjYwMTI1MTYwMDQ5WhcNMjYwMTI2MTYwMDQ5WjAzMTEwLwYDVQQD Eyg1N2RlMzY0NDZlMjVlOGU3MGYwODIxOTM2NDMzN2IxNDMxZDY2Nzg4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA30UWRKt/CXgz4r4aNEjNxhz7ZBix MJ9BZxBB3B9RDpcrMkslgAj5QbeajvTSqmBQ1F0UczjruJemV/iM7NPCid23Srw5 XAJ3y4Y7bJ9vsq+Q9Vk9ot0zYBo79uL8OnYvx4DjNic63Z7lX/bX+ViS/J/nRFSG t34alAoAIb0zEOBeZWbD79LxmrT2MHvuBgE640HMTWZ7YpsGBZYml9dBZ1Nxsrfs 6R0ce5Oj/iUthvKJhuHkNcgo9M5vrHB/orUA8gQAjBsD7Hx3W+JvVv35eMha5o6Y c3zVhV5pIn+PIZKBbkOGUrCPpzDNTJgyey+xWau57uKkg3fR3/5518uMsQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFfeNkRuJejnDwghk2QzexQx1meIMB8GA1UdIwQY MBaAFFO/mNU1IqqVcIH97CixcghDlPESMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVTctWTFUVWlxcFZ3Z2Yzc0tMRnlDRU9VOFJJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi8wNjNiMWItN2JkZS00OGNjLWIxYWMt ZmFkNzA3ZDljNGY2LzEvVTctWTFUVWlxcFZ3Z2Yzc0tMRnlDRU9VOFJJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNi8wNjNiMWItN2JkZS00OGNjLWIxYWMtZmFkNzA3ZDljNGY2 LzEvVTctWTFUVWlxcFZ3Z2Yzc0tMRnlDRU9VOFJJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWF45kvT5 pQokZZpGg+/ngRgTB3Yl7KHTEABr0keUG+aTJdjAF9gFCQy5rjZPI2+P7Lkn9gQi LO2UKiC0o8aFpGYoPmosrfJPt3gfzbMWy0LrRHCj2EoTKDfDsN4rmAlXro8yVaMk qHHqi/56ec3klhqXDz52N9XNUFxAQPhDrS+6deGyNBGU9yUMg8Ul7Fm2tzUawCny VTDc1jk2t8zI2pH3oIuPuw6Tfxjy9zT2XCKF8JCpnkHsH/G7lnLtwkr15RH3NIzT cQrVDyRC0IMWod9uWFUAj7Dzcv1zZ0+lo8LY4GS+yJ2Uddk2BpqpT/YrSviAtdQm pabeprHUq3u5tg== -----END CERTIFICATE-----Generated at Sun Jan 25 22:36:27 2026 by rpki-client