This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/7a1a62-e481-4a14-ad6e-35bff96da4c5/1/0cpnYQKGq3OPhs6TX99e1iDwLZY.mft File: 0cpnYQKGq3OPhs6TX99e1iDwLZY.mft (raw, json) Hash identifier: F6NFyI1GF5cksQNiKLT+CoSqxo4aSmUieDkQuGyvvLE= Subject key identifier: 61:FB:B5:E3:05:58:36:E5:29:8B:89:9F:A4:00:B1:DD:2B:8C:2B:0F Authority key identifier: D1:CA:67:61:02:86:AB:73:8F:86:CE:93:5F:DF:5E:D6:20:F0:2D:96 Certificate issuer: /CN=d1ca67610286ab738f86ce935fdf5ed620f02d96 Certificate serial: 019BF4D0001BA2E374BE93767BB78CCFB0FB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0cpnYQKGq3OPhs6TX99e1iDwLZY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/7a1a62-e481-4a14-ad6e-35bff96da4c5/1/0cpnYQKGq3OPhs6TX99e1iDwLZY.mft Manifest number: 06E1 Signing time: Sun 25 Jan 2026 11:00:30 +0000 Manifest this update: Sun 25 Jan 2026 11:00:30 +0000 Manifest next update: Mon 26 Jan 2026 11:00:30 +0000 Files and hashes: 1: 02YEKq1IDPEF8lBAQFD4RLUmuKw.roa (hash: TS/pQGf2LaMx5573KYxQQhCXKrO448hCMH6JUvctiu8=) 2: 0cpnYQKGq3OPhs6TX99e1iDwLZY.crl (hash: L1xvjRaMDkUWnouLHpDzP8+QEkAGaHLnYhzsz53uyws=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/7a1a62-e481-4a14-ad6e-35bff96da4c5/1/0cpnYQKGq3OPhs6TX99e1iDwLZY.crl rsync://rpki.ripe.net/repository/DEFAULT/3a/7a1a62-e481-4a14-ad6e-35bff96da4c5/1/0cpnYQKGq3OPhs6TX99e1iDwLZY.mft rsync://rpki.ripe.net/repository/DEFAULT/0cpnYQKGq3OPhs6TX99e1iDwLZY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f4:d0:00:1b:a2:e3:74:be:93:76:7b:b7:8c:cf:b0:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d1ca67610286ab738f86ce935fdf5ed620f02d96 Validity Not Before: Jan 25 11:00:30 2026 GMT Not After : Jan 26 11:00:30 2026 GMT Subject: CN=61fbb5e3055836e5298b899fa400b1dd2b8c2b0f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:52:b2:1b:53:07:2d:64:a3:da:44:04:ee:75: 9a:40:1f:8f:7d:12:e4:8a:37:83:1f:30:3d:14:19: b6:53:76:51:ba:72:40:3f:22:81:bc:64:d9:0f:d9: 36:75:03:50:7e:f2:d6:25:15:4d:b4:a3:4a:f4:34: 06:2b:87:0d:f1:fb:10:5e:5f:9c:10:c1:e1:f8:1f: ad:49:e2:a1:4a:dc:8a:61:d6:df:bb:c2:93:23:99: f5:f5:db:f9:78:05:ae:79:1f:81:c9:4e:1c:8c:ce: e4:2a:45:78:0f:ea:ba:59:f3:ff:8e:42:34:5c:69: 54:20:b2:de:7b:d0:50:85:f5:49:7a:3d:5e:11:b3: c4:72:76:c0:2a:87:ac:c2:a2:d1:ec:e5:e2:9d:64: 1c:01:c5:cd:91:23:4a:3e:a0:90:a8:19:9e:5f:85: 67:61:0c:5c:d3:ff:38:00:bb:4d:db:d0:0d:51:11: 4e:61:72:e0:1c:19:49:f8:0c:e9:26:31:46:e4:68: 30:07:b3:0c:68:5c:52:8d:df:80:94:91:54:3d:a6: 43:68:f6:ee:fd:dd:2e:22:05:84:48:f3:3f:f1:80: f0:62:e0:e9:6f:5b:47:99:12:2d:6f:b8:32:66:0f: f3:99:38:c7:e8:ed:44:b6:dc:26:cc:35:f2:bf:2c: e5:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:FB:B5:E3:05:58:36:E5:29:8B:89:9F:A4:00:B1:DD:2B:8C:2B:0F X509v3 Authority Key Identifier: keyid:D1:CA:67:61:02:86:AB:73:8F:86:CE:93:5F:DF:5E:D6:20:F0:2D:96 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0cpnYQKGq3OPhs6TX99e1iDwLZY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/7a1a62-e481-4a14-ad6e-35bff96da4c5/1/0cpnYQKGq3OPhs6TX99e1iDwLZY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/7a1a62-e481-4a14-ad6e-35bff96da4c5/1/0cpnYQKGq3OPhs6TX99e1iDwLZY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 43:ad:d1:24:df:c6:f4:76:43:4d:08:d6:23:ae:b5:2d:70:66: e1:73:ab:28:39:b3:63:27:cb:52:24:7d:26:20:eb:37:6a:f0: a3:9c:eb:e0:40:e5:60:53:40:63:01:29:fb:10:ec:ec:20:f6: b1:5b:8a:88:0f:a3:84:7e:66:e1:87:ff:f5:67:10:11:b3:3f: 04:12:af:a7:7c:3a:fc:77:c9:f7:fb:0b:8f:33:0d:91:a1:ad: 12:10:8d:15:58:52:67:7d:06:4a:b0:db:3c:b5:f6:45:91:9b: dc:74:c9:20:c4:d0:5a:43:89:11:b6:d2:c0:2e:89:fc:4c:bb: c8:22:5e:8c:e2:e7:c7:41:fe:f6:b3:b9:09:60:61:8b:89:6b: 3c:d8:bc:91:13:bc:42:c3:e2:6a:ff:69:71:93:52:b1:de:ca: 1d:42:c9:df:c4:8c:57:19:09:8c:67:6a:b9:3a:4e:4e:9a:f0: bf:21:47:b6:fc:06:aa:a1:e2:ea:54:96:4a:ff:5c:47:97:e9: 3e:fd:7e:d5:3b:17:10:8a:09:4e:3e:6f:58:c3:26:74:ce:ab: 7c:a9:e7:f2:50:16:8d:1e:08:76:ef:6c:2b:d2:34:2b:08:96: bb:fe:f2:aa:3b:c4:bb:8f:23:01:06:be:02:c7:3d:c1:60:a7: 58:4a:a3:8a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv00AAbouN0vpN2e7eMz7D7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQxY2E2NzYxMDI4NmFiNzM4Zjg2Y2U5MzVmZGY1ZWQ2MjBm MDJkOTYwHhcNMjYwMTI1MTEwMDMwWhcNMjYwMTI2MTEwMDMwWjAzMTEwLwYDVQQD Eyg2MWZiYjVlMzA1NTgzNmU1Mjk4Yjg5OWZhNDAwYjFkZDJiOGMyYjBmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo1KyG1MHLWSj2kQE7nWaQB+PfRLk ijeDHzA9FBm2U3ZRunJAPyKBvGTZD9k2dQNQfvLWJRVNtKNK9DQGK4cN8fsQXl+c EMHh+B+tSeKhStyKYdbfu8KTI5n19dv5eAWueR+ByU4cjM7kKkV4D+q6WfP/jkI0 XGlUILLee9BQhfVJej1eEbPEcnbAKoeswqLR7OXinWQcAcXNkSNKPqCQqBmeX4Vn YQxc0/84ALtN29ANURFOYXLgHBlJ+AzpJjFG5GgwB7MMaFxSjd+AlJFUPaZDaPbu /d0uIgWESPM/8YDwYuDpb1tHmRItb7gyZg/zmTjH6O1EttwmzDXyvyzlaQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGH7teMFWDblKYuJn6QAsd0rjCsPMB8GA1UdIwQY MBaAFNHKZ2EChqtzj4bOk1/fXtYg8C2WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMGNwbllRS0dxM09QaHM2VFg5OWUxaUR3TFpZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS83YTFhNjItZTQ4MS00YTE0LWFkNmUt MzViZmY5NmRhNGM1LzEvMGNwbllRS0dxM09QaHM2VFg5OWUxaUR3TFpZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYS83YTFhNjItZTQ4MS00YTE0LWFkNmUtMzViZmY5NmRhNGM1 LzEvMGNwbllRS0dxM09QaHM2VFg5OWUxaUR3TFpZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQ63RJN/G 9HZDTQjWI661LXBm4XOrKDmzYyfLUiR9JiDrN2rwo5zr4EDlYFNAYwEp+xDs7CD2 sVuKiA+jhH5m4Yf/9WcQEbM/BBKvp3w6/HfJ9/sLjzMNkaGtEhCNFVhSZ30GSrDb PLX2RZGb3HTJIMTQWkOJEbbSwC6J/Ey7yCJejOLnx0H+9rO5CWBhi4lrPNi8kRO8 QsPiav9pcZNSsd7KHULJ38SMVxkJjGdquTpOTprwvyFHtvwGqqHi6lSWSv9cR5fp Pv1+1TsXEIoJTj5vWMMmdM6rfKnn8lAWjR4Idu9sK9I0KwiWu/7yqjvEu48jAQa+ Asc9wWCnWEqjig== -----END CERTIFICATE-----Generated at Sun Jan 25 17:37:41 2026 by rpki-client