This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/7a1a62-e481-4a14-ad6e-35bff96da4c5/1/0cpnYQKGq3OPhs6TX99e1iDwLZY.mft File: 0cpnYQKGq3OPhs6TX99e1iDwLZY.mft (raw, json) Hash identifier: L17mplr6O2yzLWKkVJ6OBTbJPZucxMlGF2Cq91hvYTc= Subject key identifier: EB:FE:E0:EF:DD:54:C5:F0:D2:2C:7E:09:F0:B3:DE:D9:26:CF:34:81 Authority key identifier: D1:CA:67:61:02:86:AB:73:8F:86:CE:93:5F:DF:5E:D6:20:F0:2D:96 Certificate issuer: /CN=d1ca67610286ab738f86ce935fdf5ed620f02d96 Certificate serial: 019BF6BF3F3B5342F962AD92D4090D2F7254 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0cpnYQKGq3OPhs6TX99e1iDwLZY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/7a1a62-e481-4a14-ad6e-35bff96da4c5/1/0cpnYQKGq3OPhs6TX99e1iDwLZY.mft Manifest number: 06E2 Signing time: Sun 25 Jan 2026 20:01:27 +0000 Manifest this update: Sun 25 Jan 2026 20:01:27 +0000 Manifest next update: Mon 26 Jan 2026 20:01:27 +0000 Files and hashes: 1: 02YEKq1IDPEF8lBAQFD4RLUmuKw.roa (hash: TS/pQGf2LaMx5573KYxQQhCXKrO448hCMH6JUvctiu8=) 2: 0cpnYQKGq3OPhs6TX99e1iDwLZY.crl (hash: ajMRctJ0oTQAD9eYCxkn5nA72PWTIm1TkKWSoWn3BLM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/7a1a62-e481-4a14-ad6e-35bff96da4c5/1/0cpnYQKGq3OPhs6TX99e1iDwLZY.crl rsync://rpki.ripe.net/repository/DEFAULT/3a/7a1a62-e481-4a14-ad6e-35bff96da4c5/1/0cpnYQKGq3OPhs6TX99e1iDwLZY.mft rsync://rpki.ripe.net/repository/DEFAULT/0cpnYQKGq3OPhs6TX99e1iDwLZY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f6:bf:3f:3b:53:42:f9:62:ad:92:d4:09:0d:2f:72:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d1ca67610286ab738f86ce935fdf5ed620f02d96 Validity Not Before: Jan 25 20:01:27 2026 GMT Not After : Jan 26 20:01:27 2026 GMT Subject: CN=ebfee0efdd54c5f0d22c7e09f0b3ded926cf3481 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:53:94:9a:74:ec:d8:8e:d9:3f:85:0c:00:fa: 20:8b:7a:bf:ff:9f:42:9b:50:c6:d2:5c:57:82:6f: a5:4f:e9:bf:63:62:c6:a2:77:c1:f4:55:a7:a6:33: ac:3f:18:e5:fa:3b:9f:7a:53:f9:62:d2:30:e2:ea: 51:27:53:e4:7f:da:08:f5:b5:0e:5a:bf:0d:fb:65: 71:94:22:43:67:62:01:73:09:68:89:b1:2b:13:6c: e5:67:28:11:68:ef:34:3b:b4:97:ae:87:04:86:3b: 3e:5a:18:fd:49:e1:c8:ea:fd:f6:d4:2f:3f:c5:10: a3:9d:03:64:c5:cf:68:80:86:b6:51:bc:5d:b9:05: d7:a3:14:b3:51:d6:c3:96:cd:72:e4:87:47:a1:2a: 68:7f:37:79:72:48:cc:33:c2:0b:e9:19:2c:0e:2e: ef:4e:67:6b:21:ff:d9:3a:67:57:01:3b:51:bf:ae: bd:74:56:6a:cb:a2:15:27:98:c5:20:e1:f1:8a:98: cf:62:02:49:b6:63:5c:c1:11:53:43:20:e2:69:e0: 58:1d:b5:be:b5:6b:da:a7:ce:46:2b:bb:aa:3e:cb: a5:fd:5f:d6:b8:86:30:1b:a2:17:b6:4a:1e:1f:e3: aa:7d:8e:ef:63:9e:25:f9:62:e5:b0:6e:65:7c:65: 0d:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:FE:E0:EF:DD:54:C5:F0:D2:2C:7E:09:F0:B3:DE:D9:26:CF:34:81 X509v3 Authority Key Identifier: keyid:D1:CA:67:61:02:86:AB:73:8F:86:CE:93:5F:DF:5E:D6:20:F0:2D:96 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0cpnYQKGq3OPhs6TX99e1iDwLZY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/7a1a62-e481-4a14-ad6e-35bff96da4c5/1/0cpnYQKGq3OPhs6TX99e1iDwLZY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/7a1a62-e481-4a14-ad6e-35bff96da4c5/1/0cpnYQKGq3OPhs6TX99e1iDwLZY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 38:06:1b:c2:01:e3:c8:37:a1:4f:4d:2e:36:7e:ff:33:67:c4: 8d:cc:c8:d1:bf:90:7a:bf:c5:d7:9b:2a:f0:42:24:08:3b:43: f4:d3:e4:92:fb:8b:a0:71:06:0a:c8:25:1f:81:88:e7:4f:b5: ea:dd:49:35:c9:ba:b1:31:92:cd:da:15:63:85:e9:46:8e:11: 2f:f0:29:d5:3c:de:21:a2:09:44:83:04:06:17:67:50:c9:6a: 4a:b8:77:5c:33:02:87:0e:1b:f7:73:96:9c:f7:22:3b:f2:56: 32:47:ea:4f:00:fd:d2:e3:3d:87:cb:b8:02:7e:b4:b1:55:53: c1:e7:d9:a1:da:2b:60:f9:59:53:34:8f:69:96:fd:ea:2e:74: 73:b9:7f:74:8d:06:28:cc:9c:5e:af:f6:5a:ca:5a:a9:fe:64: 81:47:74:2e:b0:69:12:ff:00:93:c6:ab:04:87:e4:52:c2:38: 1d:bc:9f:51:17:81:73:11:34:5e:5d:de:d1:14:96:59:4e:1a: 3f:f7:c8:9f:df:9c:1e:5c:de:90:eb:60:ad:f2:75:3a:db:82: 72:03:84:f9:9f:b1:e2:22:b1:7f:2e:ae:80:f6:a5:9c:4e:e4: 2c:eb:42:25:da:45:c3:3b:43:7a:c2:89:1a:c6:00:7b:69:c2: 1e:41:c0:57 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv2vz87U0L5Yq2S1AkNL3JUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQxY2E2NzYxMDI4NmFiNzM4Zjg2Y2U5MzVmZGY1ZWQ2MjBm MDJkOTYwHhcNMjYwMTI1MjAwMTI3WhcNMjYwMTI2MjAwMTI3WjAzMTEwLwYDVQQD EyhlYmZlZTBlZmRkNTRjNWYwZDIyYzdlMDlmMGIzZGVkOTI2Y2YzNDgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsFOUmnTs2I7ZP4UMAPogi3q//59C m1DG0lxXgm+lT+m/Y2LGonfB9FWnpjOsPxjl+jufelP5YtIw4upRJ1Pkf9oI9bUO Wr8N+2VxlCJDZ2IBcwloibErE2zlZygRaO80O7SXrocEhjs+Whj9SeHI6v321C8/ xRCjnQNkxc9ogIa2UbxduQXXoxSzUdbDls1y5IdHoSpofzd5ckjMM8IL6RksDi7v TmdrIf/ZOmdXATtRv669dFZqy6IVJ5jFIOHxipjPYgJJtmNcwRFTQyDiaeBYHbW+ tWvap85GK7uqPsul/V/WuIYwG6IXtkoeH+OqfY7vY54l+WLlsG5lfGUNmwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOv+4O/dVMXw0ix+CfCz3tkmzzSBMB8GA1UdIwQY MBaAFNHKZ2EChqtzj4bOk1/fXtYg8C2WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMGNwbllRS0dxM09QaHM2VFg5OWUxaUR3TFpZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS83YTFhNjItZTQ4MS00YTE0LWFkNmUt MzViZmY5NmRhNGM1LzEvMGNwbllRS0dxM09QaHM2VFg5OWUxaUR3TFpZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYS83YTFhNjItZTQ4MS00YTE0LWFkNmUtMzViZmY5NmRhNGM1 LzEvMGNwbllRS0dxM09QaHM2VFg5OWUxaUR3TFpZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOAYbwgHj yDehT00uNn7/M2fEjczI0b+Qer/F15sq8EIkCDtD9NPkkvuLoHEGCsglH4GI50+1 6t1JNcm6sTGSzdoVY4XpRo4RL/Ap1TzeIaIJRIMEBhdnUMlqSrh3XDMChw4b93OW nPciO/JWMkfqTwD90uM9h8u4An60sVVTwefZodorYPlZUzSPaZb96i50c7l/dI0G KMycXq/2Wspaqf5kgUd0LrBpEv8Ak8arBIfkUsI4HbyfUReBcxE0Xl3e0RSWWU4a P/fIn9+cHlzekOtgrfJ1OtuCcgOE+Z+x4iKxfy6ugPalnE7kLOtCJdpFwztDesKJ GsYAe2nCHkHAVw== -----END CERTIFICATE-----Generated at Mon Jan 26 01:13:23 2026 by rpki-client