This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.mft File: UqZcYoSDp1Zoi7FYwoq3wNR94nw.mft (raw, json) Hash identifier: xKwFC/a2kvgfanTe9L7KqZjsKFP8pR/O4C2Qua5usO4= Subject key identifier: EC:69:CF:CE:41:D5:33:26:98:AC:A1:4F:2B:F1:E6:69:44:B9:F6:8D Authority key identifier: 52:A6:5C:62:84:83:A7:56:68:8B:B1:58:C2:8A:B7:C0:D4:7D:E2:7C Certificate issuer: /CN=52a65c628483a756688bb158c28ab7c0d47de27c Certificate serial: 019BF53E4FD2CA33ED294AF32F63EEFB97C1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UqZcYoSDp1Zoi7FYwoq3wNR94nw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.mft Manifest number: 05BA Signing time: Sun 25 Jan 2026 13:01:00 +0000 Manifest this update: Sun 25 Jan 2026 13:01:00 +0000 Manifest next update: Mon 26 Jan 2026 13:01:00 +0000 Files and hashes: 1: La2aKUWeZDjg9QmjOG5Ypn3DLPs.roa (hash: 0EBH5b7C6wuxTeA4u0lRX6AP5UIiFNUIOVkyZ9JGpK4=) 2: UqZcYoSDp1Zoi7FYwoq3wNR94nw.crl (hash: tfFXt1CaO333ddaxAAhslWRHuO+t07/MoixL3SKbKMU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.crl rsync://rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.mft rsync://rpki.ripe.net/repository/DEFAULT/UqZcYoSDp1Zoi7FYwoq3wNR94nw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:01:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f5:3e:4f:d2:ca:33:ed:29:4a:f3:2f:63:ee:fb:97:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=52a65c628483a756688bb158c28ab7c0d47de27c Validity Not Before: Jan 25 13:01:00 2026 GMT Not After : Jan 26 13:01:00 2026 GMT Subject: CN=ec69cfce41d5332698aca14f2bf1e66944b9f68d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:3f:f9:88:c4:4a:ed:22:6e:16:d3:27:37:bf: 2a:e5:60:12:e4:03:68:55:35:32:aa:6a:6e:38:ec: 73:71:63:d0:19:d6:d2:92:f0:69:c1:a1:28:8e:bc: 4c:2d:fb:45:df:f7:62:b5:31:1e:4d:8b:b3:ba:af: c3:8b:f4:2f:3a:fd:a0:52:ca:09:3b:15:01:70:86: 60:de:88:76:4a:e4:af:58:10:20:ab:41:2e:29:01: 1f:12:62:e9:23:c6:2a:6d:92:1d:02:80:89:d8:cb: 4d:86:a5:53:7e:e3:90:ac:af:a5:c9:55:15:cf:aa: 8a:ab:35:cd:c5:c5:bf:91:42:97:47:71:80:6e:e0: 57:a1:c5:3b:dc:68:70:f3:c0:47:ce:2e:c3:dd:9d: c2:3e:bc:ac:61:d5:16:fa:b5:07:93:e3:60:3b:9b: a9:84:18:ea:07:ab:b1:df:01:79:a1:cb:22:b2:07: 48:21:0c:02:1e:21:40:be:03:93:ec:69:ab:fe:ac: 84:f9:5a:58:99:41:88:29:99:a4:a0:ed:18:0d:47: d4:0a:13:b1:86:49:25:7a:9e:6a:36:24:28:a6:27: 4d:06:12:b7:05:be:3e:a5:90:b8:13:91:b2:3f:c5: c1:b9:2e:fe:a3:66:e4:22:ba:73:e6:b5:c7:24:a9: 9a:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:69:CF:CE:41:D5:33:26:98:AC:A1:4F:2B:F1:E6:69:44:B9:F6:8D X509v3 Authority Key Identifier: keyid:52:A6:5C:62:84:83:A7:56:68:8B:B1:58:C2:8A:B7:C0:D4:7D:E2:7C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UqZcYoSDp1Zoi7FYwoq3wNR94nw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/03d0e2-a49e-4371-b21c-5015e1208119/1/UqZcYoSDp1Zoi7FYwoq3wNR94nw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 00:78:4f:04:64:83:3a:52:8f:ac:ee:69:ec:8f:d3:8f:a8:a1: ac:e9:e0:05:ed:cb:90:ad:52:c1:aa:97:72:41:fe:73:b8:2e: 91:9b:30:cb:6e:8c:65:9b:f4:b7:fc:90:75:a9:2d:2f:a7:6e: 3b:ff:87:91:06:45:24:9c:69:fd:e1:77:15:02:c5:f7:94:62: 2c:ce:69:0b:b4:80:a9:72:b8:48:c7:70:52:20:2b:10:ac:0b: 34:9f:7b:f9:01:8a:1a:33:cf:e9:d8:5a:0d:16:4d:f4:b6:d2: 72:78:66:c0:d5:f8:c5:1d:a2:b1:c2:1c:49:79:7e:41:f7:ea: 0c:64:76:45:2e:8b:60:68:be:d8:a8:37:d7:f8:8d:ad:9f:7c: e7:eb:20:49:39:fa:c4:59:1f:ba:66:a5:46:75:cf:c8:5e:bd: 9e:43:f1:23:f6:93:8d:bb:a8:30:8f:0c:e4:b0:f1:86:59:44: 7a:45:b5:18:2d:5f:29:f4:20:22:15:65:84:cd:80:c3:8b:84: 91:92:90:d2:2d:4f:68:aa:c4:94:7f:75:14:f1:0f:5a:cb:4c: e9:32:8a:98:58:04:ea:8a:3d:f1:06:96:5b:1c:b9:9b:e8:cd: a4:fa:cc:0e:10:0c:7f:41:2b:03:3f:a5:41:a9:b6:3b:2a:96: 57:07:8d:24 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv1Pk/SyjPtKUrzL2Pu+5fBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUyYTY1YzYyODQ4M2E3NTY2ODhiYjE1OGMyOGFiN2MwZDQ3 ZGUyN2MwHhcNMjYwMTI1MTMwMTAwWhcNMjYwMTI2MTMwMTAwWjAzMTEwLwYDVQQD EyhlYzY5Y2ZjZTQxZDUzMzI2OThhY2ExNGYyYmYxZTY2OTQ0YjlmNjhkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsj/5iMRK7SJuFtMnN78q5WAS5ANo VTUyqmpuOOxzcWPQGdbSkvBpwaEojrxMLftF3/ditTEeTYuzuq/Di/QvOv2gUsoJ OxUBcIZg3oh2SuSvWBAgq0EuKQEfEmLpI8YqbZIdAoCJ2MtNhqVTfuOQrK+lyVUV z6qKqzXNxcW/kUKXR3GAbuBXocU73Ghw88BHzi7D3Z3CPrysYdUW+rUHk+NgO5up hBjqB6ux3wF5ocsisgdIIQwCHiFAvgOT7Gmr/qyE+VpYmUGIKZmkoO0YDUfUChOx hkklep5qNiQopidNBhK3Bb4+pZC4E5GyP8XBuS7+o2bkIrpz5rXHJKmadQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOxpz85B1TMmmKyhTyvx5mlEufaNMB8GA1UdIwQY MBaAFFKmXGKEg6dWaIuxWMKKt8DUfeJ8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVXFaY1lvU0RwMVpvaTdGWXdvcTN3TlI5NG53LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZi8wM2QwZTItYTQ5ZS00MzcxLWIyMWMt NTAxNWUxMjA4MTE5LzEvVXFaY1lvU0RwMVpvaTdGWXdvcTN3TlI5NG53Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZi8wM2QwZTItYTQ5ZS00MzcxLWIyMWMtNTAxNWUxMjA4MTE5 LzEvVXFaY1lvU0RwMVpvaTdGWXdvcTN3TlI5NG53LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAHhPBGSD OlKPrO5p7I/Tj6ihrOngBe3LkK1SwaqXckH+c7gukZswy26MZZv0t/yQdaktL6du O/+HkQZFJJxp/eF3FQLF95RiLM5pC7SAqXK4SMdwUiArEKwLNJ97+QGKGjPP6dha DRZN9LbScnhmwNX4xR2iscIcSXl+QffqDGR2RS6LYGi+2Kg31/iNrZ985+sgSTn6 xFkfumalRnXPyF69nkPxI/aTjbuoMI8M5LDxhllEekW1GC1fKfQgIhVlhM2Aw4uE kZKQ0i1PaKrElH91FPEPWstM6TKKmFgE6oo98QaWWxy5m+jNpPrMDhAMf0ErAz+l Qam2OyqWVweNJA== -----END CERTIFICATE-----Generated at Sun Jan 25 22:09:30 2026 by rpki-client