This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/jbNHdLAZeShP2edU_qaPo8YXg9A.mft File: jbNHdLAZeShP2edU_qaPo8YXg9A.mft (raw, json) Hash identifier: lqgKFB+AZyu4D/iPPOnI56dvL7NilF36dCrdr0OWFfA= Subject key identifier: E5:39:52:5B:6A:8A:BA:40:52:26:8C:52:01:04:45:45:FB:B7:5E:D0 Authority key identifier: 8D:B3:47:74:B0:19:79:28:4F:D9:E7:54:FE:A6:8F:A3:C6:17:83:D0 Certificate issuer: /CN=8db34774b01979284fd9e754fea68fa3c61783d0 Certificate serial: 019BF72CB1D591CC53153AF50C27BDE41ACB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jbNHdLAZeShP2edU_qaPo8YXg9A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/jbNHdLAZeShP2edU_qaPo8YXg9A.mft Manifest number: 1834 Signing time: Sun 25 Jan 2026 22:01:00 +0000 Manifest this update: Sun 25 Jan 2026 22:01:00 +0000 Manifest next update: Mon 26 Jan 2026 22:01:00 +0000 Files and hashes: 1: 7M11WAr8ASMmTsOpEXXftqbLZKI.roa (hash: Hy7iKCS/PTOuaQ4Hy/XwhYj+Mf9Lpbiz3nTqAU+v+KA=) 2: IPD7v-J9c376oyXeNIKc_aWnNmQ.roa (hash: EEItVG+CeXn/JupxjY6OK4AdQvnwdrYLgxk2U0ldhpY=) 3: _gRsaSao0vaUMwc0x3LyFobrYg8.roa (hash: NuZeEvpoAsVGvJOhf6lMpbCZ6vhyLjtVLY0IuaaWnsk=) 4: gpd1mhOHXiMRj4sBD1YUlIe0OKY.roa (hash: Mp1A6bnLjG6e+iNvqlRY2Pi1q3kKD3uoZO/De04Jgqw=) 5: jbNHdLAZeShP2edU_qaPo8YXg9A.crl (hash: MJK0+7ZK5hQKKyoCPEiXckDUO7sAzgYf5sKcTlK/88E=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/jbNHdLAZeShP2edU_qaPo8YXg9A.crl rsync://rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/jbNHdLAZeShP2edU_qaPo8YXg9A.mft rsync://rpki.ripe.net/repository/DEFAULT/jbNHdLAZeShP2edU_qaPo8YXg9A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f7:2c:b1:d5:91:cc:53:15:3a:f5:0c:27:bd:e4:1a:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8db34774b01979284fd9e754fea68fa3c61783d0 Validity Not Before: Jan 25 22:01:00 2026 GMT Not After : Jan 26 22:01:00 2026 GMT Subject: CN=e539525b6a8aba4052268c5201044545fbb75ed0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:60:cb:c3:dc:4b:e9:4b:c3:d8:b2:de:4a:bd: 85:ec:66:9d:8b:67:f1:9c:16:54:e4:58:cb:c3:0c: 75:4d:6d:8f:9e:81:03:95:a6:8e:53:ad:d1:d3:54: 6a:f4:66:e4:8a:99:66:5a:f0:77:37:92:cf:fc:d9: 08:c1:0c:7d:a9:3d:6c:d9:0f:0d:b0:55:79:31:6a: 90:77:dc:ad:43:7d:d3:0f:50:2a:2d:3d:03:11:e0: 5f:68:f6:ec:23:8f:d4:c3:8b:ad:87:45:fe:b8:a4: 3a:71:cd:82:39:7c:41:8a:63:71:c7:bb:a0:b3:b5: 93:81:59:ca:01:46:ee:d4:d4:e9:07:05:55:4e:f7: ef:ac:36:f1:15:30:1c:20:89:5f:9c:69:6a:be:f5: b0:92:bc:a7:74:34:ea:3f:6b:41:ab:34:39:53:5a: 07:eb:f4:67:01:82:82:07:37:19:18:f6:e4:d6:54: c2:0b:4b:d0:a1:17:69:1a:e3:2a:7a:90:f6:9d:d1: 6a:12:62:52:49:a9:2a:f7:0c:72:b4:d6:41:9f:1d: 3e:1c:0f:e8:09:b2:4a:fd:69:f1:65:10:d1:2d:4f: dc:3f:be:7f:cd:4c:f5:4f:a8:2e:85:e7:18:7a:2b: 79:ca:f0:12:a3:c6:78:9c:60:94:3d:3e:46:ee:f0: 82:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:39:52:5B:6A:8A:BA:40:52:26:8C:52:01:04:45:45:FB:B7:5E:D0 X509v3 Authority Key Identifier: keyid:8D:B3:47:74:B0:19:79:28:4F:D9:E7:54:FE:A6:8F:A3:C6:17:83:D0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jbNHdLAZeShP2edU_qaPo8YXg9A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/jbNHdLAZeShP2edU_qaPo8YXg9A.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/jbNHdLAZeShP2edU_qaPo8YXg9A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3e:63:3e:0e:3d:1b:a8:f7:2e:bd:f6:47:ec:e5:c4:38:dc:44: 70:73:d9:8b:ea:f7:2f:9b:00:85:f9:01:a0:d0:ea:dd:cf:09: 47:81:8a:af:60:7b:30:95:ed:aa:74:0f:97:54:13:5a:8f:1c: 96:ab:9b:54:3b:e8:46:7d:2e:c5:ba:8e:9d:d1:ee:b0:a3:6b: e3:f8:4e:34:fe:d7:b7:44:33:3d:b0:7f:dc:b8:1d:9c:d9:77: e5:c9:0c:8f:6c:c0:9d:e1:ec:14:24:ec:a9:91:9f:64:39:1e: b5:58:d7:b7:fc:43:8f:09:1e:b3:5e:95:08:57:27:81:ac:60: 35:95:18:5e:5f:16:5c:15:bc:5c:24:eb:3d:a7:03:78:1d:1f: 01:b8:0f:bd:95:7d:3c:10:b4:fc:2c:e7:b2:6b:3e:c6:b3:b5: 03:88:c7:17:29:99:05:37:01:2b:5d:5e:e8:8c:1a:5a:1e:ea: b4:88:bb:7b:27:b4:dc:f3:9d:97:00:4c:34:f4:bd:ce:8c:40: 52:21:51:d9:aa:29:e1:fa:97:94:1b:cd:db:16:29:4f:37:dc: ba:e5:58:0c:74:75:fb:d6:48:f6:db:e0:37:b9:30:1a:0a:91: e9:a7:57:df:6b:d9:3c:f7:5d:cb:17:bd:4d:3e:e4:47:97:14: bc:78:68:c6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv3LLHVkcxTFTr1DCe95BrLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhkYjM0Nzc0YjAxOTc5Mjg0ZmQ5ZTc1NGZlYTY4ZmEzYzYx NzgzZDAwHhcNMjYwMTI1MjIwMTAwWhcNMjYwMTI2MjIwMTAwWjAzMTEwLwYDVQQD EyhlNTM5NTI1YjZhOGFiYTQwNTIyNjhjNTIwMTA0NDU0NWZiYjc1ZWQwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4GDLw9xL6UvD2LLeSr2F7Gadi2fx nBZU5FjLwwx1TW2PnoEDlaaOU63R01Rq9GbkiplmWvB3N5LP/NkIwQx9qT1s2Q8N sFV5MWqQd9ytQ33TD1AqLT0DEeBfaPbsI4/Uw4uth0X+uKQ6cc2COXxBimNxx7ug s7WTgVnKAUbu1NTpBwVVTvfvrDbxFTAcIIlfnGlqvvWwkryndDTqP2tBqzQ5U1oH 6/RnAYKCBzcZGPbk1lTCC0vQoRdpGuMqepD2ndFqEmJSSakq9wxytNZBnx0+HA/o CbJK/WnxZRDRLU/cP75/zUz1T6guhecYeit5yvASo8Z4nGCUPT5G7vCC3wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOU5UltqirpAUiaMUgEERUX7t17QMB8GA1UdIwQY MBaAFI2zR3SwGXkoT9nnVP6mj6PGF4PQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvamJOSGRMQVplU2hQMmVkVV9xYVBvOFlYZzlBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNy83MGE4ZjEtZDhlYi00MmI1LWJkZGIt NjI2NTUyMWY2ZGY3LzEvamJOSGRMQVplU2hQMmVkVV9xYVBvOFlYZzlBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNy83MGE4ZjEtZDhlYi00MmI1LWJkZGItNjI2NTUyMWY2ZGY3 LzEvamJOSGRMQVplU2hQMmVkVV9xYVBvOFlYZzlBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPmM+Dj0b qPcuvfZH7OXEONxEcHPZi+r3L5sAhfkBoNDq3c8JR4GKr2B7MJXtqnQPl1QTWo8c lqubVDvoRn0uxbqOndHusKNr4/hONP7Xt0QzPbB/3LgdnNl35ckMj2zAneHsFCTs qZGfZDketVjXt/xDjwkes16VCFcngaxgNZUYXl8WXBW8XCTrPacDeB0fAbgPvZV9 PBC0/Cznsms+xrO1A4jHFymZBTcBK11e6IwaWh7qtIi7eye03POdlwBMNPS9zoxA UiFR2aop4fqXlBvN2xYpTzfcuuVYDHR1+9ZI9tvgN7kwGgqR6adX32vZPPddyxe9 TT7kR5cUvHhoxg== -----END CERTIFICATE-----Generated at Mon Jan 26 04:24:49 2026 by rpki-client