This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/e0c1d4-8b33-4360-9f50-cbbac6e4ad71/1/maykAWr4XVlpVITNYTzxiW39WaE.mft File: maykAWr4XVlpVITNYTzxiW39WaE.mft (raw, json) Hash identifier: jHG0h6Tr8SQwDEwNiKni34bLLWZ8Mo5hdrMnvyChMoA= Subject key identifier: FB:85:9C:A1:52:98:C8:EB:6B:A2:68:9C:DF:6D:33:21:A9:2A:BD:F4 Authority key identifier: 99:AC:A4:01:6A:F8:5D:59:69:54:84:CD:61:3C:F1:89:6D:FD:59:A1 Certificate issuer: /CN=99aca4016af85d59695484cd613cf1896dfd59a1 Certificate serial: 019BF3BDC6799B367F1AFAF2C9F3DD7BE6D7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/maykAWr4XVlpVITNYTzxiW39WaE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/e0c1d4-8b33-4360-9f50-cbbac6e4ad71/1/maykAWr4XVlpVITNYTzxiW39WaE.mft Manifest number: 05FC Signing time: Sun 25 Jan 2026 06:00:59 +0000 Manifest this update: Sun 25 Jan 2026 06:00:59 +0000 Manifest next update: Mon 26 Jan 2026 06:00:59 +0000 Files and hashes: 1: WXXJ5075ZAff04RmS5smR110RVw.roa (hash: uErB5MACpy/J873DH0P3yHm3DQt+fz1WVOuw3Q44104=) 2: maykAWr4XVlpVITNYTzxiW39WaE.crl (hash: hHxTAqQJ4vG4jPBXh897pkTYO7oSMCQDo4xMuo/S4ag=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/e0c1d4-8b33-4360-9f50-cbbac6e4ad71/1/maykAWr4XVlpVITNYTzxiW39WaE.crl rsync://rpki.ripe.net/repository/DEFAULT/3d/e0c1d4-8b33-4360-9f50-cbbac6e4ad71/1/maykAWr4XVlpVITNYTzxiW39WaE.mft rsync://rpki.ripe.net/repository/DEFAULT/maykAWr4XVlpVITNYTzxiW39WaE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 06:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f3:bd:c6:79:9b:36:7f:1a:fa:f2:c9:f3:dd:7b:e6:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=99aca4016af85d59695484cd613cf1896dfd59a1 Validity Not Before: Jan 25 06:00:59 2026 GMT Not After : Jan 26 06:00:59 2026 GMT Subject: CN=fb859ca15298c8eb6ba2689cdf6d3321a92abdf4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:3e:c4:9e:a6:d8:b8:68:46:fd:4b:a4:75:84: 31:0d:0d:f4:7f:a5:f6:4e:8a:fb:c3:b3:e6:d7:6b: 3a:1d:ce:c1:05:7b:9d:90:ee:e6:b6:53:f0:f2:b1: 2a:0b:55:d9:a9:4e:95:16:7e:2f:84:fb:e5:ab:67: f3:73:82:87:94:4a:0a:11:86:18:16:38:27:d9:ed: d0:1b:67:3b:80:23:a5:7c:83:b7:fc:c3:d5:d0:b8: fe:77:90:21:4a:dd:30:bc:39:16:66:9d:19:25:3d: 33:7e:31:c5:7d:d5:04:1e:93:7d:0b:ee:aa:bd:0a: ea:af:5b:13:31:6a:e6:1e:e9:58:47:12:f7:08:ee: 3a:67:53:89:b3:36:90:68:92:84:ad:d7:72:5e:e0: a5:85:98:d5:bf:60:9d:c3:41:82:55:5b:3f:a9:21: 1c:eb:c4:a6:36:f1:d1:3c:8f:b8:fa:04:1a:82:c7: 82:8c:8d:c6:f7:7d:6d:35:71:04:a1:34:19:f2:24: b7:8d:b0:0b:2b:03:a9:1c:23:1a:02:47:31:5e:9a: b6:85:ed:90:fe:84:84:80:78:42:1f:b2:52:75:e7: 26:aa:11:85:13:34:a0:93:db:64:1f:f0:8d:41:4a: c8:3f:38:7f:8a:1a:dd:98:df:eb:dd:72:58:42:4a: d4:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:85:9C:A1:52:98:C8:EB:6B:A2:68:9C:DF:6D:33:21:A9:2A:BD:F4 X509v3 Authority Key Identifier: keyid:99:AC:A4:01:6A:F8:5D:59:69:54:84:CD:61:3C:F1:89:6D:FD:59:A1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/maykAWr4XVlpVITNYTzxiW39WaE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/e0c1d4-8b33-4360-9f50-cbbac6e4ad71/1/maykAWr4XVlpVITNYTzxiW39WaE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/e0c1d4-8b33-4360-9f50-cbbac6e4ad71/1/maykAWr4XVlpVITNYTzxiW39WaE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 93:b3:9c:d8:40:e2:53:c8:af:e3:2b:81:17:a3:88:0a:12:08: 79:0e:29:74:c0:e4:d9:b5:75:69:0f:4b:4a:4d:76:8a:76:45: 0d:02:fd:6f:6c:ef:d0:62:0e:41:a7:4d:d8:4a:c6:30:96:7f: 2c:92:eb:08:b4:9c:a0:24:c1:59:02:15:31:7b:56:3c:f8:d3: 4d:f0:74:28:6d:f4:fc:84:13:6a:16:a5:44:36:73:64:6c:b7: 8f:e9:aa:40:f4:6e:ca:27:28:0d:60:67:1e:35:a8:6e:b1:9c: de:ad:16:da:54:94:9e:97:50:b4:fa:05:c6:9d:0e:41:40:68: 39:ec:80:e4:c0:ff:cd:a2:b5:f8:c6:70:65:31:2e:1d:c7:10: 11:c4:35:ad:79:6d:20:f6:c6:8d:6e:f0:c1:f0:34:fc:5c:50: 84:14:18:a5:6f:5b:a8:cd:54:ae:ec:4a:78:79:59:0f:ba:40: 67:60:49:e1:a8:67:62:9c:d7:bd:b5:8a:79:2c:1e:d4:1d:dd: b2:4c:d4:08:f3:1e:97:3d:7a:ab:5f:08:87:cf:2b:ce:6b:43: 8a:68:e5:33:cd:08:ff:86:db:eb:2e:43:94:0a:4c:0a:80:27: 4e:55:3b:5f:d6:71:85:af:52:03:d8:39:43:38:91:da:18:55: 8d:9c:73:49 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZvzvcZ5mzZ/GvryyfPde+bXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk5YWNhNDAxNmFmODVkNTk2OTU0ODRjZDYxM2NmMTg5NmRm ZDU5YTEwHhcNMjYwMTI1MDYwMDU5WhcNMjYwMTI2MDYwMDU5WjAzMTEwLwYDVQQD EyhmYjg1OWNhMTUyOThjOGViNmJhMjY4OWNkZjZkMzMyMWE5MmFiZGY0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4z7EnqbYuGhG/UukdYQxDQ30f6X2 Tor7w7Pm12s6Hc7BBXudkO7mtlPw8rEqC1XZqU6VFn4vhPvlq2fzc4KHlEoKEYYY Fjgn2e3QG2c7gCOlfIO3/MPV0Lj+d5AhSt0wvDkWZp0ZJT0zfjHFfdUEHpN9C+6q vQrqr1sTMWrmHulYRxL3CO46Z1OJszaQaJKErddyXuClhZjVv2Cdw0GCVVs/qSEc 68SmNvHRPI+4+gQagseCjI3G931tNXEEoTQZ8iS3jbALKwOpHCMaAkcxXpq2he2Q /oSEgHhCH7JSdecmqhGFEzSgk9tkH/CNQUrIPzh/ihrdmN/r3XJYQkrUjwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPuFnKFSmMjra6JonN9tMyGpKr30MB8GA1UdIwQY MBaAFJmspAFq+F1ZaVSEzWE88Ylt/VmhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbWF5a0FXcjRYVmxwVklUTllUenhpVzM5V2FFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZC9lMGMxZDQtOGIzMy00MzYwLTlmNTAt Y2JiYWM2ZTRhZDcxLzEvbWF5a0FXcjRYVmxwVklUTllUenhpVzM5V2FFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZC9lMGMxZDQtOGIzMy00MzYwLTlmNTAtY2JiYWM2ZTRhZDcx LzEvbWF5a0FXcjRYVmxwVklUTllUenhpVzM5V2FFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAk7Oc2EDi U8iv4yuBF6OIChIIeQ4pdMDk2bV1aQ9LSk12inZFDQL9b2zv0GIOQadN2ErGMJZ/ LJLrCLScoCTBWQIVMXtWPPjTTfB0KG30/IQTahalRDZzZGy3j+mqQPRuyicoDWBn HjWobrGc3q0W2lSUnpdQtPoFxp0OQUBoOeyA5MD/zaK1+MZwZTEuHccQEcQ1rXlt IPbGjW7wwfA0/FxQhBQYpW9bqM1UruxKeHlZD7pAZ2BJ4ahnYpzXvbWKeSwe1B3d skzUCPMelz16q18Ih88rzmtDimjlM80I/4bb6y5DlApMCoAnTlU7X9Zxha9SA9g5 QziR2hhVjZxzSQ== -----END CERTIFICATE-----Generated at Sun Jan 25 16:22:23 2026 by rpki-client