This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/53b489-ab48-49fe-9d01-a0e37f25a515/1/DIdKX1JzTiYOe_pNRRFK3ZJ341M.mft File: DIdKX1JzTiYOe_pNRRFK3ZJ341M.mft (raw, json) Hash identifier: jRBD6O+cSVZNLgAEqzSPQBDnM/BzUIGz1CYgQs4KfW4= Subject key identifier: 77:C5:44:79:2E:75:12:3F:25:12:6C:A9:D3:92:27:4F:85:79:5F:43 Authority key identifier: 0C:87:4A:5F:52:73:4E:26:0E:7B:FA:4D:45:11:4A:DD:92:77:E3:53 Certificate issuer: /CN=0c874a5f52734e260e7bfa4d45114add9277e353 Certificate serial: 019BF50716E533B1AA73E48A26399754183C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DIdKX1JzTiYOe_pNRRFK3ZJ341M.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/53b489-ab48-49fe-9d01-a0e37f25a515/1/DIdKX1JzTiYOe_pNRRFK3ZJ341M.mft Manifest number: 09D5 Signing time: Sun 25 Jan 2026 12:00:41 +0000 Manifest this update: Sun 25 Jan 2026 12:00:41 +0000 Manifest next update: Mon 26 Jan 2026 12:00:41 +0000 Files and hashes: 1: 96SX2S5aBWouZ5qx7BRgteL4iq8.roa (hash: M3a2yFufjkSiLfAokMv1+05AOpH8jhB4+9skztdJecg=) 2: DIdKX1JzTiYOe_pNRRFK3ZJ341M.crl (hash: kjjMvJWKu4dDJ9N7tb3GUqLx4QyoonkiSNABK1DBvlo=) 3: L6SdCLp_FHvz3o3tKNX0l8WA490.roa (hash: 9JHTUcRidI2GiaDB1BZb9pHbOm8ZJYd9k9gXu4meKKU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/53b489-ab48-49fe-9d01-a0e37f25a515/1/DIdKX1JzTiYOe_pNRRFK3ZJ341M.crl rsync://rpki.ripe.net/repository/DEFAULT/3d/53b489-ab48-49fe-9d01-a0e37f25a515/1/DIdKX1JzTiYOe_pNRRFK3ZJ341M.mft rsync://rpki.ripe.net/repository/DEFAULT/DIdKX1JzTiYOe_pNRRFK3ZJ341M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f5:07:16:e5:33:b1:aa:73:e4:8a:26:39:97:54:18:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0c874a5f52734e260e7bfa4d45114add9277e353 Validity Not Before: Jan 25 12:00:41 2026 GMT Not After : Jan 26 12:00:41 2026 GMT Subject: CN=77c544792e75123f25126ca9d392274f85795f43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:50:86:4e:b6:83:a4:3e:b2:d9:43:c6:08:bb: 56:a2:93:e3:12:9f:03:84:96:94:98:1d:37:45:c2: ab:ea:8e:21:cd:8c:03:b4:42:f6:d9:c0:3c:e9:d9: 94:8f:8e:93:0a:f8:12:9a:5f:86:79:73:e3:56:7a: 09:e0:d8:66:ea:81:26:11:24:78:98:cb:4e:0a:4a: db:84:70:23:82:2b:ab:ad:c3:cf:d0:75:7f:ad:ea: 00:e0:02:15:c5:7c:1f:ba:78:7b:48:85:42:03:69: 71:ff:d6:07:41:53:7e:28:9f:62:c9:48:5d:a2:5d: 91:f3:a2:b3:4d:fd:c5:49:68:74:ac:05:ae:dc:3d: a5:59:b8:9d:13:fa:05:96:37:e9:f6:6d:9e:0d:b1: 8e:ae:c9:b6:43:83:ca:b2:4d:2c:df:03:d2:17:14: d8:63:0a:2a:63:96:57:0f:6b:bb:b5:37:0a:70:af: 61:25:39:a6:f7:ad:62:cb:8b:1f:3a:d9:47:1b:b9: 9d:c4:d9:2e:de:a3:61:6e:98:69:5b:fd:7d:da:e8: 43:61:38:03:41:36:dd:f7:cb:d7:e8:24:41:36:6b: b0:1b:e8:5f:48:fa:e7:9c:56:de:aa:06:5b:5e:fe: 93:b9:8c:98:9a:36:35:8d:01:b6:51:dc:ab:b5:35: 70:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:C5:44:79:2E:75:12:3F:25:12:6C:A9:D3:92:27:4F:85:79:5F:43 X509v3 Authority Key Identifier: keyid:0C:87:4A:5F:52:73:4E:26:0E:7B:FA:4D:45:11:4A:DD:92:77:E3:53 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DIdKX1JzTiYOe_pNRRFK3ZJ341M.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/53b489-ab48-49fe-9d01-a0e37f25a515/1/DIdKX1JzTiYOe_pNRRFK3ZJ341M.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/53b489-ab48-49fe-9d01-a0e37f25a515/1/DIdKX1JzTiYOe_pNRRFK3ZJ341M.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 70:d5:80:12:23:b6:32:5f:de:fc:97:06:ac:a4:80:ee:e2:a5: cd:ef:3c:c3:e5:13:4d:fe:fc:78:f7:41:ea:e9:64:e9:8a:08: 8e:36:18:eb:31:68:c1:7c:ba:65:25:3f:65:2e:15:e7:d3:7f: 60:2a:48:6b:16:b2:fd:4d:52:68:12:ba:8c:7c:b7:8f:c8:82: bc:91:37:6f:05:4c:94:09:39:c2:31:ec:69:3b:30:07:9d:50: 9d:a9:34:e4:e5:13:a0:5b:52:dc:b1:b3:f4:19:15:32:5a:1b: b0:50:01:df:73:e6:b0:22:45:21:3c:57:58:f6:9b:f7:31:1d: 9d:56:19:5d:02:3a:a2:18:06:b5:ac:cf:b4:95:fd:4e:09:d0: af:86:55:d3:23:04:d1:bc:d9:e4:b0:22:54:de:4e:5f:72:c9: 47:10:5e:f7:24:70:13:e1:69:01:32:4e:1c:60:f8:27:2a:e9: 6f:8d:76:eb:13:b5:f3:f7:30:ca:11:bf:5f:64:0b:16:81:bf: fb:c6:d2:50:a2:57:e2:d2:38:a7:f6:9b:dd:9d:90:f7:34:19: 0e:e9:94:da:bc:c7:01:28:fa:b8:4d:d1:ab:f3:2b:f0:20:b0: e7:f3:cc:20:ab:46:ac:07:bc:61:89:7d:4f:c2:b8:9e:22:ed: ef:ae:e1:dd -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv1BxblM7Gqc+SKJjmXVBg8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBjODc0YTVmNTI3MzRlMjYwZTdiZmE0ZDQ1MTE0YWRkOTI3 N2UzNTMwHhcNMjYwMTI1MTIwMDQxWhcNMjYwMTI2MTIwMDQxWjAzMTEwLwYDVQQD Eyg3N2M1NDQ3OTJlNzUxMjNmMjUxMjZjYTlkMzkyMjc0Zjg1Nzk1ZjQzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs1CGTraDpD6y2UPGCLtWopPjEp8D hJaUmB03RcKr6o4hzYwDtEL22cA86dmUj46TCvgSml+GeXPjVnoJ4Nhm6oEmESR4 mMtOCkrbhHAjgiurrcPP0HV/reoA4AIVxXwfunh7SIVCA2lx/9YHQVN+KJ9iyUhd ol2R86KzTf3FSWh0rAWu3D2lWbidE/oFljfp9m2eDbGOrsm2Q4PKsk0s3wPSFxTY YwoqY5ZXD2u7tTcKcK9hJTmm961iy4sfOtlHG7mdxNku3qNhbphpW/192uhDYTgD QTbd98vX6CRBNmuwG+hfSPrnnFbeqgZbXv6TuYyYmjY1jQG2UdyrtTVwRQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHfFRHkudRI/JRJsqdOSJ0+FeV9DMB8GA1UdIwQY MBaAFAyHSl9Sc04mDnv6TUURSt2Sd+NTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRElkS1gxSnpUaVlPZV9wTlJSRkszWkozNDFNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZC81M2I0ODktYWI0OC00OWZlLTlkMDEt YTBlMzdmMjVhNTE1LzEvRElkS1gxSnpUaVlPZV9wTlJSRkszWkozNDFNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZC81M2I0ODktYWI0OC00OWZlLTlkMDEtYTBlMzdmMjVhNTE1 LzEvRElkS1gxSnpUaVlPZV9wTlJSRkszWkozNDFNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcNWAEiO2 Ml/e/JcGrKSA7uKlze88w+UTTf78ePdB6ulk6YoIjjYY6zFowXy6ZSU/ZS4V59N/ YCpIaxay/U1SaBK6jHy3j8iCvJE3bwVMlAk5wjHsaTswB51Qnak05OUToFtS3LGz 9BkVMlobsFAB33PmsCJFITxXWPab9zEdnVYZXQI6ohgGtazPtJX9TgnQr4ZV0yME 0bzZ5LAiVN5OX3LJRxBe9yRwE+FpATJOHGD4Jyrpb4126xO18/cwyhG/X2QLFoG/ +8bSUKJX4tI4p/ab3Z2Q9zQZDumU2rzHASj6uE3Rq/Mr8CCw5/PMIKtGrAe8YYl9 T8K4niLt767h3Q== -----END CERTIFICATE-----Generated at Sun Jan 25 16:18:25 2026 by rpki-client