This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/acd28e-52ae-4ac9-b028-669f7a761631/1/KbOnF2ZaETfpncj60i4-f5jbiXM.mft File: KbOnF2ZaETfpncj60i4-f5jbiXM.mft (raw, json) Hash identifier: m+esudv9JoSrLl5K9y9UsCHNW2SRkMexvV7VFh4wuOs= Subject key identifier: FC:D6:D1:D9:2B:4F:95:C6:9D:3D:1A:8E:B2:A1:4D:E1:43:AB:98:DD Authority key identifier: 29:B3:A7:17:66:5A:11:37:E9:9D:C8:FA:D2:2E:3E:7F:98:DB:89:73 Certificate issuer: /CN=29b3a717665a1137e99dc8fad22e3e7f98db8973 Certificate serial: 019BF4D07471F253FB61507BCFD8EBE6A6D4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KbOnF2ZaETfpncj60i4-f5jbiXM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/acd28e-52ae-4ac9-b028-669f7a761631/1/KbOnF2ZaETfpncj60i4-f5jbiXM.mft Manifest number: 17ED Signing time: Sun 25 Jan 2026 11:01:00 +0000 Manifest this update: Sun 25 Jan 2026 11:01:00 +0000 Manifest next update: Mon 26 Jan 2026 11:01:00 +0000 Files and hashes: 1: KbOnF2ZaETfpncj60i4-f5jbiXM.crl (hash: M5U8/A8bhtd3+BljFVX61y8zZPjq6Bj4eC/fDVfUkUo=) 2: Ty9RnsnK3EDnysBvDikYp04oggo.roa (hash: oWmmAPgiMnRBuVQF4Wy8CU51nd17TmIJOxZ3k8HDTIo=) 3: VmNdh6laZxyVCC_g82mHnoN0sjg.roa (hash: fCIZoEHtubiL+1CEYbmHMAzOgcDhgRWMLUT6hfUtnUM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/acd28e-52ae-4ac9-b028-669f7a761631/1/KbOnF2ZaETfpncj60i4-f5jbiXM.crl rsync://rpki.ripe.net/repository/DEFAULT/36/acd28e-52ae-4ac9-b028-669f7a761631/1/KbOnF2ZaETfpncj60i4-f5jbiXM.mft rsync://rpki.ripe.net/repository/DEFAULT/KbOnF2ZaETfpncj60i4-f5jbiXM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f4:d0:74:71:f2:53:fb:61:50:7b:cf:d8:eb:e6:a6:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29b3a717665a1137e99dc8fad22e3e7f98db8973 Validity Not Before: Jan 25 11:01:00 2026 GMT Not After : Jan 26 11:01:00 2026 GMT Subject: CN=fcd6d1d92b4f95c69d3d1a8eb2a14de143ab98dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:16:87:b2:0b:fc:4a:09:41:ee:fd:f6:e8:8e: bf:10:06:b2:db:49:8d:2a:e5:6c:e9:98:0f:43:a3: 90:49:b2:91:42:e7:ea:e0:bb:d1:fb:38:69:78:ee: 8f:4c:88:36:9a:ca:02:be:b7:45:75:01:b6:15:6c: 7f:60:f3:3f:66:35:8f:a0:ea:30:d4:ec:f2:92:8e: 22:f9:6f:86:8c:00:0a:1c:ce:cb:79:8c:84:99:34: e7:2d:72:0c:79:8f:9b:1c:34:de:3b:97:53:ae:25: 29:10:f6:04:e5:b9:18:67:c4:1d:e6:89:3d:02:4a: 91:9b:73:f6:a8:f7:f1:c6:9f:92:10:14:67:f7:11: 07:63:43:64:72:76:93:8b:85:5c:99:bf:1e:66:89: a4:4a:94:fb:d5:8d:e6:a8:4c:4f:40:17:b0:6a:88: 26:e3:ea:d5:06:90:1e:bc:50:db:8e:56:d6:36:4e: 4f:19:5a:8e:e6:98:1a:f1:cc:94:4d:96:6d:60:47: f9:55:74:a0:a3:0a:47:2d:74:79:39:1b:d7:29:11: 62:28:14:75:10:d1:1e:e5:c3:e7:b0:c2:b8:5b:12: 8f:dc:d3:8f:46:78:7d:51:86:97:d7:24:91:66:72: 62:10:db:94:19:48:ae:db:56:77:cb:66:9c:98:85: 67:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:D6:D1:D9:2B:4F:95:C6:9D:3D:1A:8E:B2:A1:4D:E1:43:AB:98:DD X509v3 Authority Key Identifier: keyid:29:B3:A7:17:66:5A:11:37:E9:9D:C8:FA:D2:2E:3E:7F:98:DB:89:73 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KbOnF2ZaETfpncj60i4-f5jbiXM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/acd28e-52ae-4ac9-b028-669f7a761631/1/KbOnF2ZaETfpncj60i4-f5jbiXM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/36/acd28e-52ae-4ac9-b028-669f7a761631/1/KbOnF2ZaETfpncj60i4-f5jbiXM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 11:c3:07:97:03:c8:13:cc:43:5e:15:36:97:db:c0:84:b9:98: 55:a3:15:1f:8d:67:ff:41:41:23:3a:60:d6:a3:a4:3f:8d:11: 06:ee:16:d5:a1:75:61:93:a7:7d:c6:a9:6b:0c:de:d1:da:20: a6:e9:b3:fe:87:f2:38:dd:98:82:ac:70:fe:81:d8:c0:47:09: ab:7a:48:7c:0e:50:ea:af:5f:a5:0e:99:91:04:f6:c3:7d:91: d2:b8:9e:73:85:31:44:11:bf:26:6d:d5:3d:dd:8b:f1:1d:01: 6b:bb:8d:e1:45:e7:41:0a:6d:cb:73:9d:11:74:2e:4a:1a:ad: cf:90:5c:c9:f3:9c:41:85:86:0c:f0:3f:12:57:63:7f:67:21: 62:6a:5f:7f:74:9e:4e:92:3e:84:e6:8b:11:fb:67:fd:6e:6c: 49:7a:8b:7f:91:4f:03:65:31:1b:84:7b:48:f1:42:3b:7e:57: 2f:0c:f0:97:61:fe:cb:96:03:2e:ba:7a:9f:f1:85:d5:37:c2: 8c:72:8d:72:39:0f:ef:58:a8:17:94:14:0c:da:0d:43:67:43: cd:7c:0a:05:78:bd:48:c0:76:84:8d:62:48:ca:29:9c:aa:dd: 23:ac:e3:d3:68:69:3f:d1:96:bf:d1:22:46:76:84:b4:b8:63: cd:4c:32:d3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv00HRx8lP7YVB7z9jr5qbUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5YjNhNzE3NjY1YTExMzdlOTlkYzhmYWQyMmUzZTdmOThk Yjg5NzMwHhcNMjYwMTI1MTEwMTAwWhcNMjYwMTI2MTEwMTAwWjAzMTEwLwYDVQQD EyhmY2Q2ZDFkOTJiNGY5NWM2OWQzZDFhOGViMmExNGRlMTQzYWI5OGRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnRaHsgv8SglB7v326I6/EAay20mN KuVs6ZgPQ6OQSbKRQufq4LvR+zhpeO6PTIg2msoCvrdFdQG2FWx/YPM/ZjWPoOow 1Ozyko4i+W+GjAAKHM7LeYyEmTTnLXIMeY+bHDTeO5dTriUpEPYE5bkYZ8Qd5ok9 AkqRm3P2qPfxxp+SEBRn9xEHY0NkcnaTi4Vcmb8eZomkSpT71Y3mqExPQBewaogm 4+rVBpAevFDbjlbWNk5PGVqO5pga8cyUTZZtYEf5VXSgowpHLXR5ORvXKRFiKBR1 ENEe5cPnsMK4WxKP3NOPRnh9UYaX1ySRZnJiENuUGUiu21Z3y2acmIVnOQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPzW0dkrT5XGnT0ajrKhTeFDq5jdMB8GA1UdIwQY MBaAFCmzpxdmWhE36Z3I+tIuPn+Y24lzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS2JPbkYyWmFFVGZwbmNqNjBpNC1mNWpiaVhNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi9hY2QyOGUtNTJhZS00YWM5LWIwMjgt NjY5ZjdhNzYxNjMxLzEvS2JPbkYyWmFFVGZwbmNqNjBpNC1mNWpiaVhNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNi9hY2QyOGUtNTJhZS00YWM5LWIwMjgtNjY5ZjdhNzYxNjMx LzEvS2JPbkYyWmFFVGZwbmNqNjBpNC1mNWpiaVhNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEcMHlwPI E8xDXhU2l9vAhLmYVaMVH41n/0FBIzpg1qOkP40RBu4W1aF1YZOnfcapawze0dog pumz/ofyON2Ygqxw/oHYwEcJq3pIfA5Q6q9fpQ6ZkQT2w32R0riec4UxRBG/Jm3V Pd2L8R0Ba7uN4UXnQQpty3OdEXQuShqtz5BcyfOcQYWGDPA/Eldjf2chYmpff3Se TpI+hOaLEftn/W5sSXqLf5FPA2UxG4R7SPFCO35XLwzwl2H+y5YDLrp6n/GF1TfC jHKNcjkP71ioF5QUDNoNQ2dDzXwKBXi9SMB2hI1iSMopnKrdI6zj02hpP9GWv9Ei RnaEtLhjzUwy0w== -----END CERTIFICATE-----Generated at Sun Jan 25 15:22:56 2026 by rpki-client