This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/50d855-cd81-481a-95ef-b84487f920e4/1/ktf2mgS9nK1SOzn3ei3atEwpEZI.mft File: ktf2mgS9nK1SOzn3ei3atEwpEZI.mft (raw, json) Hash identifier: jToSP1zLV3MluvsPYPSf5owIn7vb1D5CicnZSbjBbUs= Subject key identifier: 04:35:DA:B0:40:36:32:98:33:FF:50:71:02:9C:9B:7C:94:34:83:A0 Authority key identifier: 92:D7:F6:9A:04:BD:9C:AD:52:3B:39:F7:7A:2D:DA:B4:4C:29:11:92 Certificate issuer: /CN=92d7f69a04bd9cad523b39f77a2ddab44c291192 Certificate serial: 019BF4992F84C0C3A14401B2653C430CC9CB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktf2mgS9nK1SOzn3ei3atEwpEZI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/50d855-cd81-481a-95ef-b84487f920e4/1/ktf2mgS9nK1SOzn3ei3atEwpEZI.mft Manifest number: 1779 Signing time: Sun 25 Jan 2026 10:00:38 +0000 Manifest this update: Sun 25 Jan 2026 10:00:38 +0000 Manifest next update: Mon 26 Jan 2026 10:00:38 +0000 Files and hashes: 1: fmRq58mpG0rKIM2ubHEkVCGj3lg.roa (hash: gms/i5htVsFqQUspRwp2t/v4bZzOX6eOsTh27/wJ/To=) 2: ktf2mgS9nK1SOzn3ei3atEwpEZI.crl (hash: 58sEQ5kFW81khADysr2mKMpVbaXFcefKjnyyT75iI/c=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/50d855-cd81-481a-95ef-b84487f920e4/1/ktf2mgS9nK1SOzn3ei3atEwpEZI.crl rsync://rpki.ripe.net/repository/DEFAULT/37/50d855-cd81-481a-95ef-b84487f920e4/1/ktf2mgS9nK1SOzn3ei3atEwpEZI.mft rsync://rpki.ripe.net/repository/DEFAULT/ktf2mgS9nK1SOzn3ei3atEwpEZI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f4:99:2f:84:c0:c3:a1:44:01:b2:65:3c:43:0c:c9:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=92d7f69a04bd9cad523b39f77a2ddab44c291192 Validity Not Before: Jan 25 10:00:38 2026 GMT Not After : Jan 26 10:00:38 2026 GMT Subject: CN=0435dab04036329833ff5071029c9b7c943483a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:36:9a:a4:f1:96:57:dd:0e:64:9e:ca:aa:60: 27:40:0f:10:47:f0:25:45:91:f7:ed:eb:6e:df:24: 0f:23:6f:4f:9b:d6:86:45:a3:3d:4c:77:88:07:9d: 4b:ca:f7:be:49:94:7a:1d:f1:66:4a:ff:fb:22:83: 66:61:b0:b3:6d:23:43:6b:61:f0:dd:46:87:2d:44: c9:63:eb:17:41:2b:4e:dd:c6:9e:bd:3c:0f:6a:b6: b7:af:6c:45:8f:e5:84:2b:c5:b8:1b:e6:24:63:2c: 9c:08:bb:4c:ea:b1:c6:72:94:65:28:83:d7:41:f0: 84:48:1d:50:2c:da:3b:1c:63:0c:23:63:d4:76:68: f5:1a:93:27:7a:fe:ff:04:46:3e:71:4a:84:6a:8a: c6:9b:10:69:41:de:ca:e7:0c:db:4e:15:39:40:6c: 49:bf:f4:8b:5a:6a:f2:a2:89:75:33:d9:d0:77:95: 92:10:2a:56:05:73:22:5f:71:ad:03:4d:e4:9f:4c: 0c:5d:25:a4:5e:1d:ad:2a:12:63:5e:d5:3b:83:e6: 2e:c5:a9:fd:63:e3:db:1b:7b:b0:5a:5b:1a:44:45: 2f:8d:f9:8a:3d:5c:9e:25:9b:de:4b:13:ae:ce:78: 1a:9c:50:de:fe:12:9a:5b:3a:ec:b3:e5:a9:45:e4: f4:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:35:DA:B0:40:36:32:98:33:FF:50:71:02:9C:9B:7C:94:34:83:A0 X509v3 Authority Key Identifier: keyid:92:D7:F6:9A:04:BD:9C:AD:52:3B:39:F7:7A:2D:DA:B4:4C:29:11:92 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktf2mgS9nK1SOzn3ei3atEwpEZI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/50d855-cd81-481a-95ef-b84487f920e4/1/ktf2mgS9nK1SOzn3ei3atEwpEZI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/37/50d855-cd81-481a-95ef-b84487f920e4/1/ktf2mgS9nK1SOzn3ei3atEwpEZI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ad:b2:c9:fc:67:46:bc:1b:d4:1a:83:c6:3c:f2:77:7d:77:fc: 78:35:d6:f8:7d:70:28:8e:fe:1d:06:e9:24:4e:34:b7:5e:98: 53:ef:91:dd:07:33:03:86:1f:f8:ca:08:89:1f:b0:fa:41:87: 1b:30:02:04:b4:42:87:da:a0:ac:8a:8d:2e:0f:ed:26:42:84: 4b:1f:82:30:a6:ed:3a:be:25:70:2f:60:56:63:30:7a:02:e2: 43:d1:b7:c8:2e:9e:26:a1:e5:40:35:64:04:1b:2c:4e:76:5d: e0:1a:44:c7:8a:e5:8c:c1:bb:a5:e7:cc:c0:4f:4b:2b:1f:48: 8f:3d:96:3c:b7:92:01:41:7a:9b:fa:72:c1:c2:17:36:59:9c: e3:88:43:5c:b5:10:0f:ca:60:7f:09:e2:bd:65:6f:77:dc:fe: 16:27:ad:c1:f0:d9:98:e7:bf:53:d8:da:79:c9:b4:30:f3:a8: 0e:cb:0e:de:3d:3a:81:e2:fb:5e:e6:63:11:07:b4:46:7b:e9: 13:fa:7c:e3:13:cf:57:c5:a9:79:28:42:a6:5d:23:46:58:ad: 34:60:b6:c2:51:68:28:0f:fa:34:bb:fe:94:b4:29:56:42:6c: 60:2e:b1:26:67:75:be:53:54:59:cc:94:86:4a:bf:1a:95:ea: 45:3e:68:b6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv0mS+EwMOhRAGyZTxDDMnLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkyZDdmNjlhMDRiZDljYWQ1MjNiMzlmNzdhMmRkYWI0NGMy OTExOTIwHhcNMjYwMTI1MTAwMDM4WhcNMjYwMTI2MTAwMDM4WjAzMTEwLwYDVQQD EygwNDM1ZGFiMDQwMzYzMjk4MzNmZjUwNzEwMjljOWI3Yzk0MzQ4M2EwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAszaapPGWV90OZJ7KqmAnQA8QR/Al RZH37etu3yQPI29Pm9aGRaM9THeIB51Lyve+SZR6HfFmSv/7IoNmYbCzbSNDa2Hw 3UaHLUTJY+sXQStO3caevTwPara3r2xFj+WEK8W4G+YkYyycCLtM6rHGcpRlKIPX QfCESB1QLNo7HGMMI2PUdmj1GpMnev7/BEY+cUqEaorGmxBpQd7K5wzbThU5QGxJ v/SLWmryool1M9nQd5WSECpWBXMiX3GtA03kn0wMXSWkXh2tKhJjXtU7g+Yuxan9 Y+PbG3uwWlsaREUvjfmKPVyeJZveSxOuznganFDe/hKaWzrss+WpReT0bQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAQ12rBANjKYM/9QcQKcm3yUNIOgMB8GA1UdIwQY MBaAFJLX9poEvZytUjs593ot2rRMKRGSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva3RmMm1nUzluSzFTT3puM2VpM2F0RXdwRVpJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNy81MGQ4NTUtY2Q4MS00ODFhLTk1ZWYt Yjg0NDg3ZjkyMGU0LzEva3RmMm1nUzluSzFTT3puM2VpM2F0RXdwRVpJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNy81MGQ4NTUtY2Q4MS00ODFhLTk1ZWYtYjg0NDg3ZjkyMGU0 LzEva3RmMm1nUzluSzFTT3puM2VpM2F0RXdwRVpJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArbLJ/GdG vBvUGoPGPPJ3fXf8eDXW+H1wKI7+HQbpJE40t16YU++R3QczA4Yf+MoIiR+w+kGH GzACBLRCh9qgrIqNLg/tJkKESx+CMKbtOr4lcC9gVmMwegLiQ9G3yC6eJqHlQDVk BBssTnZd4BpEx4rljMG7pefMwE9LKx9Ijz2WPLeSAUF6m/pywcIXNlmc44hDXLUQ D8pgfwnivWVvd9z+FietwfDZmOe/U9jaecm0MPOoDssO3j06geL7XuZjEQe0Rnvp E/p84xPPV8WpeShCpl0jRlitNGC2wlFoKA/6NLv+lLQpVkJsYC6xJmd1vlNUWcyU hkq/GpXqRT5otg== -----END CERTIFICATE-----Generated at Sun Jan 25 16:44:39 2026 by rpki-client