This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/fcf322-17c1-4f40-a618-bd14d344bbf2/1/v99XKOyr1W70Y3NWlVhmylRoaRo.mft File: v99XKOyr1W70Y3NWlVhmylRoaRo.mft (raw, json) Hash identifier: S6Kt88SM2hH74g5Y/Tcqi/EgHjtETRw6+CJNPhl/59c= Subject key identifier: 6D:8B:61:F2:14:DC:19:A6:03:1E:5C:16:13:1C:88:80:2D:07:9C:93 Authority key identifier: BF:DF:57:28:EC:AB:D5:6E:F4:63:73:56:95:58:66:CA:54:68:69:1A Certificate issuer: /CN=bfdf5728ecabd56ef4637356955866ca5468691a Certificate serial: 019BF7D18BFFAD9EDD64DE412F3BDFA6C717 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v99XKOyr1W70Y3NWlVhmylRoaRo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/fcf322-17c1-4f40-a618-bd14d344bbf2/1/v99XKOyr1W70Y3NWlVhmylRoaRo.mft Manifest number: 040C Signing time: Mon 26 Jan 2026 01:01:03 +0000 Manifest this update: Mon 26 Jan 2026 01:01:03 +0000 Manifest next update: Tue 27 Jan 2026 01:01:03 +0000 Files and hashes: 1: 3BcGBZCHDgJs9gSoEvIJqO6Wdng.roa (hash: QqrBTNsjue3924ijEFZUnNRSzA8ZRhSOavKbIrZOqys=) 2: v99XKOyr1W70Y3NWlVhmylRoaRo.crl (hash: HlF+/if4DTdWDVE0DqY4DU9e+alZ/6VDwkzSyvUvUCw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/fcf322-17c1-4f40-a618-bd14d344bbf2/1/v99XKOyr1W70Y3NWlVhmylRoaRo.crl rsync://rpki.ripe.net/repository/DEFAULT/3f/fcf322-17c1-4f40-a618-bd14d344bbf2/1/v99XKOyr1W70Y3NWlVhmylRoaRo.mft rsync://rpki.ripe.net/repository/DEFAULT/v99XKOyr1W70Y3NWlVhmylRoaRo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f7:d1:8b:ff:ad:9e:dd:64:de:41:2f:3b:df:a6:c7:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bfdf5728ecabd56ef4637356955866ca5468691a Validity Not Before: Jan 26 01:01:03 2026 GMT Not After : Jan 27 01:01:03 2026 GMT Subject: CN=6d8b61f214dc19a6031e5c16131c88802d079c93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:e2:62:d1:09:40:f2:a2:ad:9d:da:8e:8a:cd: b4:ac:88:a5:a0:ce:97:d6:bc:86:bc:69:62:43:d4: cd:16:d8:58:a7:1e:64:14:23:1b:15:60:04:d3:ea: e8:86:09:d0:00:8c:b5:69:bf:28:3c:c2:05:54:fb: 0b:49:e6:05:aa:a5:a7:d1:ce:1e:88:db:79:5c:20: a9:cb:a0:62:01:85:93:7c:de:0d:73:74:29:8c:cb: bc:f7:82:78:cd:b1:5e:23:99:2e:69:45:db:98:08: 5f:da:06:68:ca:d3:7a:8c:06:36:12:27:a6:1b:80: dd:4c:19:8e:2a:2f:7f:81:3f:4d:f0:1c:c3:8c:77: b0:de:ee:49:40:f9:0f:d5:17:72:cc:05:cf:69:87: 93:3e:f2:f0:76:87:f5:75:c9:40:1a:c3:b3:10:10: f2:2a:7b:4a:58:86:35:78:6e:a1:71:fd:19:2c:03: d1:f7:6e:2a:9b:47:29:b1:c4:d1:5c:8b:d5:b9:df: a2:c9:9a:11:c8:ec:76:ea:05:60:66:40:6b:64:c1: 8c:0e:f9:02:29:a1:0d:8c:d9:f4:8a:96:16:04:d4: 14:0d:7b:3a:9b:0a:d7:8f:51:44:89:4c:ab:13:a1: ff:87:45:2e:84:13:83:f8:42:48:1e:cf:82:b3:1b: 2c:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:8B:61:F2:14:DC:19:A6:03:1E:5C:16:13:1C:88:80:2D:07:9C:93 X509v3 Authority Key Identifier: keyid:BF:DF:57:28:EC:AB:D5:6E:F4:63:73:56:95:58:66:CA:54:68:69:1A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v99XKOyr1W70Y3NWlVhmylRoaRo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/fcf322-17c1-4f40-a618-bd14d344bbf2/1/v99XKOyr1W70Y3NWlVhmylRoaRo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/fcf322-17c1-4f40-a618-bd14d344bbf2/1/v99XKOyr1W70Y3NWlVhmylRoaRo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 83:26:97:6f:34:81:52:45:05:84:1d:7a:8b:a5:ac:f7:33:a5: b3:a3:c4:c7:04:ab:4d:b1:9d:ad:ed:b3:ec:4f:ec:f8:30:a8: fb:5a:8a:f6:21:4b:f2:ed:f4:10:a7:53:69:f6:13:12:0d:0a: 88:59:27:68:ce:82:c4:fa:78:80:45:e0:bc:bc:3d:94:2b:bf: 51:a2:b0:4a:a8:df:12:0e:b3:c3:d2:06:a2:a5:8e:35:1e:bf: 7e:8f:bf:06:70:4f:e5:6b:82:04:9f:ea:98:ca:9b:c8:98:e0: 82:c6:5e:a5:3a:e7:d2:47:66:c8:ff:56:ef:32:0c:e2:a4:34: 70:9d:e2:a4:6f:be:e4:51:43:53:b8:4e:a2:e9:fc:fa:a3:03: 2d:7d:69:bc:6a:e9:74:a2:b7:d5:b9:85:f1:83:3d:b1:39:76: 96:6e:67:0d:76:83:8f:af:76:72:92:5c:8b:b8:6b:bb:44:8e: bd:c3:bb:c9:95:67:37:9a:01:33:45:65:31:a2:38:bf:d8:c9: ef:f1:2b:18:f6:da:0e:3f:2c:73:34:62:d7:ab:ec:23:24:40: c6:7a:75:b8:9d:6c:3f:3c:7c:60:9e:da:9c:09:ee:9c:c2:3a: 5a:83:11:32:da:be:34:4c:c4:4f:96:82:16:27:7e:2d:fa:d8: b3:eb:6c:40 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv30Yv/rZ7dZN5BLzvfpscXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJmZGY1NzI4ZWNhYmQ1NmVmNDYzNzM1Njk1NTg2NmNhNTQ2 ODY5MWEwHhcNMjYwMTI2MDEwMTAzWhcNMjYwMTI3MDEwMTAzWjAzMTEwLwYDVQQD Eyg2ZDhiNjFmMjE0ZGMxOWE2MDMxZTVjMTYxMzFjODg4MDJkMDc5YzkzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu+Ji0QlA8qKtndqOis20rIiloM6X 1ryGvGliQ9TNFthYpx5kFCMbFWAE0+rohgnQAIy1ab8oPMIFVPsLSeYFqqWn0c4e iNt5XCCpy6BiAYWTfN4Nc3QpjMu894J4zbFeI5kuaUXbmAhf2gZoytN6jAY2Eiem G4DdTBmOKi9/gT9N8BzDjHew3u5JQPkP1RdyzAXPaYeTPvLwdof1dclAGsOzEBDy KntKWIY1eG6hcf0ZLAPR924qm0cpscTRXIvVud+iyZoRyOx26gVgZkBrZMGMDvkC KaENjNn0ipYWBNQUDXs6mwrXj1FEiUyrE6H/h0UuhBOD+EJIHs+CsxssAwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFG2LYfIU3BmmAx5cFhMciIAtB5yTMB8GA1UdIwQY MBaAFL/fVyjsq9Vu9GNzVpVYZspUaGkaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdjk5WEtPeXIxVzcwWTNOV2xWaG15bFJvYVJvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZi9mY2YzMjItMTdjMS00ZjQwLWE2MTgt YmQxNGQzNDRiYmYyLzEvdjk5WEtPeXIxVzcwWTNOV2xWaG15bFJvYVJvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZi9mY2YzMjItMTdjMS00ZjQwLWE2MTgtYmQxNGQzNDRiYmYy LzEvdjk5WEtPeXIxVzcwWTNOV2xWaG15bFJvYVJvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgyaXbzSB UkUFhB16i6Ws9zOls6PExwSrTbGdre2z7E/s+DCo+1qK9iFL8u30EKdTafYTEg0K iFknaM6CxPp4gEXgvLw9lCu/UaKwSqjfEg6zw9IGoqWONR6/fo+/BnBP5WuCBJ/q mMqbyJjggsZepTrn0kdmyP9W7zIM4qQ0cJ3ipG++5FFDU7hOoun8+qMDLX1pvGrp dKK31bmF8YM9sTl2lm5nDXaDj692cpJci7hru0SOvcO7yZVnN5oBM0VlMaI4v9jJ 7/ErGPbaDj8sczRi16vsIyRAxnp1uJ1sPzx8YJ7anAnunMI6WoMRMtq+NEzET5aC Fid+LfrYs+tsQA== -----END CERTIFICATE-----Generated at Mon Jan 26 07:12:08 2026 by rpki-client