This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/58ebb1-dbec-47f9-bb96-849cfcabb657/1/fmXasjlAyzlPmqpmT-pNb49C4xg.mft File: fmXasjlAyzlPmqpmT-pNb49C4xg.mft (raw, json) Hash identifier: YtDBD/NeW9L7T02xSunvGWqEqkDiDutkKhMpZYpLGkk= Subject key identifier: 3B:8A:34:69:53:9C:D1:9B:D3:5A:6A:1C:C1:58:0E:CD:CC:05:6B:1D Authority key identifier: 7E:65:DA:B2:39:40:CB:39:4F:9A:AA:66:4F:EA:4D:6F:8F:42:E3:18 Certificate issuer: /CN=7e65dab23940cb394f9aaa664fea4d6f8f42e318 Certificate serial: 019BF79A9D108ED7C7F09F7A26BEB1B920F0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fmXasjlAyzlPmqpmT-pNb49C4xg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/58ebb1-dbec-47f9-bb96-849cfcabb657/1/fmXasjlAyzlPmqpmT-pNb49C4xg.mft Manifest number: 17F5 Signing time: Mon 26 Jan 2026 00:01:03 +0000 Manifest this update: Mon 26 Jan 2026 00:01:03 +0000 Manifest next update: Tue 27 Jan 2026 00:01:03 +0000 Files and hashes: 1: ATx_EPHk5Vz1v-SpkJd7Yp6y99I.roa (hash: wd0rlsu9n+czEzHQALtAg7xmPAM6xOroSrrnXWF3Lfo=) 2: JO3t4wzj5pMO8pakWAwlzqvqqRM.asa (hash: RPS36XqFSQhGe2AwlqqHc/6mflgEGlaBrX53Fqp34Rw=) 3: KVan9Pcjft5JIZrcZQHR4i1sEDc.roa (hash: 7Kj/wx1OYLRBwB8Ljtm8I7zBf7kVbnSHVXIyDdmYFnA=) 4: QajoMPTah5HmQYWazmOhTmEgdy4.roa (hash: vdxOYd3C96luAne3fsVsAc2/Kvs7MPuLrsOoLRiJHqk=) 5: U94b541NpMgAwKP9ouuvvL3DKeY.asa (hash: 3/0upql9LNQyluPXuFCuGStTRhsE9wxGljd6ckKQ/wo=) 6: fX3tPrrAy5l65982bntPZMbTKXM.asa (hash: elpKOW5KwuHELtxjMPO/HnU5rqNl0Ef4AHZpAwWCRy8=) 7: fmXasjlAyzlPmqpmT-pNb49C4xg.crl (hash: W+QjEmzoy7yqBcGnsPSDUPdt6Th4Avf2Il94xLHa7NY=) 8: p1pAyUX-fSx4X5xlNyO_Vq2ry7w.roa (hash: 4qf1lMGx7tWHDVof2zNBnir3ltwLgCwXuL9BwrRJPhU=) 9: wY-Cs55am_CMQf8p1GQXagMI6tE.roa (hash: LKZ2Oa7r49TtzT8prI98TwirtVVWtnVlmoHvBJjp2PI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/58ebb1-dbec-47f9-bb96-849cfcabb657/1/fmXasjlAyzlPmqpmT-pNb49C4xg.crl rsync://rpki.ripe.net/repository/DEFAULT/40/58ebb1-dbec-47f9-bb96-849cfcabb657/1/fmXasjlAyzlPmqpmT-pNb49C4xg.mft rsync://rpki.ripe.net/repository/DEFAULT/fmXasjlAyzlPmqpmT-pNb49C4xg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f7:9a:9d:10:8e:d7:c7:f0:9f:7a:26:be:b1:b9:20:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7e65dab23940cb394f9aaa664fea4d6f8f42e318 Validity Not Before: Jan 26 00:01:03 2026 GMT Not After : Jan 27 00:01:03 2026 GMT Subject: CN=3b8a3469539cd19bd35a6a1cc1580ecdcc056b1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:08:81:f3:d9:92:2b:7a:09:da:20:28:81:2b: fb:d0:d8:9e:d9:71:14:92:fe:9d:a7:38:47:d0:ba: 24:68:f8:6f:f8:82:d6:e6:1a:1e:a2:b2:ef:7a:62: 3f:63:90:20:89:7e:24:ed:22:9b:b3:cc:9b:0c:4e: dd:c6:df:3e:73:ec:c2:92:dc:4a:e5:f0:77:41:46: 29:0a:bd:5c:a6:3c:4e:45:31:34:a6:f8:70:08:7c: da:ee:2b:ba:a0:aa:80:5d:0e:1d:eb:87:c8:fd:66: 47:a2:fb:7c:73:35:34:b7:b3:42:3e:7d:3e:d0:41: c3:16:17:fc:6c:03:f5:90:30:a9:0b:ad:c7:0c:d1: bc:26:44:ad:20:0c:1f:d0:6c:1d:40:6f:f8:97:73: 9c:95:42:ca:33:d5:c7:c3:1f:43:55:d5:3a:34:71: 5b:93:9c:c3:d4:57:cc:07:a8:37:01:6a:1d:98:18: 05:78:55:24:44:a6:d7:a8:54:8e:81:f1:ff:94:47: 3d:4a:b3:f4:51:ff:b1:97:5d:77:b1:12:f0:a1:52: d4:c5:79:76:2c:50:a7:ad:26:a9:19:91:43:4d:a0: ab:07:e4:bb:a0:90:4b:d2:20:8d:5d:75:a6:b9:1f: 97:73:c1:21:4c:58:fe:aa:ee:2b:f7:5a:d5:9a:87: 45:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:8A:34:69:53:9C:D1:9B:D3:5A:6A:1C:C1:58:0E:CD:CC:05:6B:1D X509v3 Authority Key Identifier: keyid:7E:65:DA:B2:39:40:CB:39:4F:9A:AA:66:4F:EA:4D:6F:8F:42:E3:18 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fmXasjlAyzlPmqpmT-pNb49C4xg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/58ebb1-dbec-47f9-bb96-849cfcabb657/1/fmXasjlAyzlPmqpmT-pNb49C4xg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/40/58ebb1-dbec-47f9-bb96-849cfcabb657/1/fmXasjlAyzlPmqpmT-pNb49C4xg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3a:ac:10:f8:6c:fe:27:2e:75:ed:6a:2e:4b:29:d6:11:a3:3d: d4:f8:48:c5:cc:b9:00:c6:37:d1:3b:ec:31:90:97:c9:d1:3f: 93:44:a2:50:9c:15:79:36:df:7a:47:49:9c:10:c8:ec:c6:2d: d2:38:4f:27:a9:06:18:5e:a3:77:c9:5e:d8:25:8b:77:96:9e: e4:a3:5e:4c:90:58:0e:ae:56:86:fa:57:f8:23:49:ba:ad:f9: 61:6f:7a:a7:ed:aa:86:23:aa:89:00:90:71:18:7a:ce:1a:ad: e7:1e:fd:b6:fd:10:ea:2e:22:e6:2e:05:d3:76:ae:f7:a6:79: 76:96:12:5a:03:8f:85:d8:b2:c4:fa:6d:39:9b:de:a2:12:93: 4a:2a:ca:ac:e8:3d:ea:2c:4e:b2:62:6a:6a:ed:f2:95:64:c5: aa:f6:60:2a:c1:b4:5b:76:2e:8f:e3:5c:bf:24:56:dd:d7:db: 3f:be:f9:b6:b1:1c:a0:1c:22:8f:54:10:7d:14:5d:ae:64:ae: 3e:d7:1f:07:83:bc:fb:35:d2:ed:fa:a5:20:a7:68:34:8d:f5: 83:14:0f:4f:04:c7:bc:2b:92:13:75:81:49:8c:63:25:39:37: 92:63:99:e3:91:b4:0e:af:6e:47:21:da:97:a8:2f:c1:28:3d: 31:ae:3c:d2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv3mp0QjtfH8J96Jr6xuSDwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdlNjVkYWIyMzk0MGNiMzk0ZjlhYWE2NjRmZWE0ZDZmOGY0 MmUzMTgwHhcNMjYwMTI2MDAwMTAzWhcNMjYwMTI3MDAwMTAzWjAzMTEwLwYDVQQD EygzYjhhMzQ2OTUzOWNkMTliZDM1YTZhMWNjMTU4MGVjZGNjMDU2YjFkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArgiB89mSK3oJ2iAogSv70Nie2XEU kv6dpzhH0LokaPhv+ILW5hoeorLvemI/Y5AgiX4k7SKbs8ybDE7dxt8+c+zCktxK 5fB3QUYpCr1cpjxORTE0pvhwCHza7iu6oKqAXQ4d64fI/WZHovt8czU0t7NCPn0+ 0EHDFhf8bAP1kDCpC63HDNG8JkStIAwf0GwdQG/4l3OclULKM9XHwx9DVdU6NHFb k5zD1FfMB6g3AWodmBgFeFUkRKbXqFSOgfH/lEc9SrP0Uf+xl113sRLwoVLUxXl2 LFCnrSapGZFDTaCrB+S7oJBL0iCNXXWmuR+Xc8EhTFj+qu4r91rVmodFbwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDuKNGlTnNGb01pqHMFYDs3MBWsdMB8GA1UdIwQY MBaAFH5l2rI5QMs5T5qqZk/qTW+PQuMYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZm1YYXNqbEF5emxQbXFwbVQtcE5iNDlDNHhnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC81OGViYjEtZGJlYy00N2Y5LWJiOTYt ODQ5Y2ZjYWJiNjU3LzEvZm1YYXNqbEF5emxQbXFwbVQtcE5iNDlDNHhnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MC81OGViYjEtZGJlYy00N2Y5LWJiOTYtODQ5Y2ZjYWJiNjU3 LzEvZm1YYXNqbEF5emxQbXFwbVQtcE5iNDlDNHhnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOqwQ+Gz+ Jy517WouSynWEaM91PhIxcy5AMY30TvsMZCXydE/k0SiUJwVeTbfekdJnBDI7MYt 0jhPJ6kGGF6jd8le2CWLd5ae5KNeTJBYDq5WhvpX+CNJuq35YW96p+2qhiOqiQCQ cRh6zhqt5x79tv0Q6i4i5i4F03au96Z5dpYSWgOPhdiyxPptOZveohKTSirKrOg9 6ixOsmJqau3ylWTFqvZgKsG0W3Yuj+NcvyRW3dfbP775trEcoBwij1QQfRRdrmSu PtcfB4O8+zXS7fqlIKdoNI31gxQPTwTHvCuSE3WBSYxjJTk3kmOZ45G0Dq9uRyHa l6gvwSg9Ma480g== -----END CERTIFICATE-----Generated at Mon Jan 26 07:18:13 2026 by rpki-client