This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/5893f7-b4f1-4961-9426-fd73b80833b7/1/rCGhE9G6AdEH_feRMIwKUfPQbdo.mft File: rCGhE9G6AdEH_feRMIwKUfPQbdo.mft (raw, json) Hash identifier: IMhRhy+M8CTcKTftJrD/ZnNMUvOKnDlCj7avOht8DNE= Subject key identifier: F7:35:90:60:4D:7A:60:B8:6F:D7:CC:14:CC:45:48:71:39:EE:26:4A Authority key identifier: AC:21:A1:13:D1:BA:01:D1:07:FD:F7:91:30:8C:0A:51:F3:D0:6D:DA Certificate issuer: /CN=ac21a113d1ba01d107fdf791308c0a51f3d06dda Certificate serial: 019BF83FE8098C3FBBE507789A80904E2A50 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rCGhE9G6AdEH_feRMIwKUfPQbdo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/5893f7-b4f1-4961-9426-fd73b80833b7/1/rCGhE9G6AdEH_feRMIwKUfPQbdo.mft Manifest number: 06D2 Signing time: Mon 26 Jan 2026 03:01:36 +0000 Manifest this update: Mon 26 Jan 2026 03:01:36 +0000 Manifest next update: Tue 27 Jan 2026 03:01:36 +0000 Files and hashes: 1: Hv-HpYlBtcGtjlR8qtNflDayGpQ.roa (hash: aBGsg4UHN28OpsS2xFbkAdXhnlHxP423kuvv3ReKy28=) 2: rCGhE9G6AdEH_feRMIwKUfPQbdo.crl (hash: r9ej3O/fyPM7ysutdwWOIxpSA0d0DHEzr3DyIB0x5UA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/5893f7-b4f1-4961-9426-fd73b80833b7/1/rCGhE9G6AdEH_feRMIwKUfPQbdo.crl rsync://rpki.ripe.net/repository/DEFAULT/43/5893f7-b4f1-4961-9426-fd73b80833b7/1/rCGhE9G6AdEH_feRMIwKUfPQbdo.mft rsync://rpki.ripe.net/repository/DEFAULT/rCGhE9G6AdEH_feRMIwKUfPQbdo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f8:3f:e8:09:8c:3f:bb:e5:07:78:9a:80:90:4e:2a:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ac21a113d1ba01d107fdf791308c0a51f3d06dda Validity Not Before: Jan 26 03:01:36 2026 GMT Not After : Jan 27 03:01:36 2026 GMT Subject: CN=f73590604d7a60b86fd7cc14cc45487139ee264a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:0c:68:b2:84:10:61:bf:4e:0d:57:3f:af:f2: c2:b2:ca:7e:50:bf:ea:d1:d6:fb:66:67:6b:86:50: 24:06:0c:a5:55:c8:d6:1b:73:64:84:c9:7f:35:48: 80:a5:aa:c2:8d:9a:0f:74:07:e3:26:7b:97:87:d4: e7:6e:44:d8:83:70:5f:9b:d3:7d:96:94:d1:60:80: a5:dd:ba:51:27:e9:0d:e9:81:53:1e:7f:e1:18:27: 47:f2:bc:23:5e:d6:85:06:4e:43:f7:ef:dd:68:c6: 84:e7:93:68:e1:7b:83:4a:f0:78:96:37:41:bb:a2: 6b:f4:8f:e5:75:06:51:fb:84:32:b7:30:5e:9c:8a: 31:4c:25:f8:ee:a1:39:eb:ea:88:bd:cd:fc:8b:ef: a3:62:75:03:f1:d0:89:0e:03:ca:33:d9:b3:db:da: 77:bf:20:d2:56:5f:1e:4e:1f:f2:59:7c:8b:ae:04: dc:86:b6:a2:d0:ed:01:e6:0c:19:ab:28:da:ff:32: 08:19:6a:4c:7c:47:04:ed:11:18:ac:4a:8a:94:a2: 7e:ec:8d:0d:d3:8d:43:c7:b4:16:e4:55:fc:59:49: d0:5d:6c:d6:6d:e4:c1:d9:3a:8c:99:8f:88:d9:81: 57:5a:ea:3f:65:2e:b8:2e:40:04:b0:75:62:fd:dc: 97:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:35:90:60:4D:7A:60:B8:6F:D7:CC:14:CC:45:48:71:39:EE:26:4A X509v3 Authority Key Identifier: keyid:AC:21:A1:13:D1:BA:01:D1:07:FD:F7:91:30:8C:0A:51:F3:D0:6D:DA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rCGhE9G6AdEH_feRMIwKUfPQbdo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/5893f7-b4f1-4961-9426-fd73b80833b7/1/rCGhE9G6AdEH_feRMIwKUfPQbdo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/43/5893f7-b4f1-4961-9426-fd73b80833b7/1/rCGhE9G6AdEH_feRMIwKUfPQbdo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 01:05:6e:b2:2e:5f:93:0f:58:57:1f:db:85:90:e5:b8:22:e9: 32:d4:0a:e1:54:6f:29:e5:92:0a:30:c3:ee:4e:72:bb:c9:eb: 7c:7f:9e:c6:5f:ea:a7:cb:64:fe:c0:46:b8:78:c5:b2:3a:22: 51:71:1e:d7:d1:90:bf:3c:e9:f1:f5:1f:24:64:9e:b5:1f:bf: 3c:83:b7:9e:f3:be:a8:cd:de:af:d3:72:9d:a6:0f:fb:48:97: c6:37:9c:8d:55:e8:50:1f:a0:c6:58:71:19:97:e1:52:cc:20: 35:59:91:df:b1:d5:88:ce:f0:60:45:e0:d2:4c:79:a6:54:ef: 2d:04:ae:60:06:a4:25:63:01:cb:87:0e:49:07:3a:18:b7:d0: f3:35:83:24:29:59:59:aa:31:ff:7a:5e:67:d9:b6:75:a4:7a: 61:55:39:4b:2e:49:cb:d2:18:f4:cd:d9:19:7f:fe:4e:19:d6: 57:f8:a7:32:f5:ed:c9:e2:82:7f:98:fd:8d:bb:fd:e2:d1:e0: 74:08:3d:7b:88:81:4f:47:5f:2e:74:db:46:8b:5d:4a:77:0a: 7b:13:a8:56:06:8b:af:cf:4a:bd:f3:13:bf:ca:e1:b3:56:ef: 87:b4:c5:ca:e9:0b:bd:3a:04:3d:e0:ff:16:2e:7d:83:6f:30: 37:09:cf:24 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv4P+gJjD+75Qd4moCQTipQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFjMjFhMTEzZDFiYTAxZDEwN2ZkZjc5MTMwOGMwYTUxZjNk MDZkZGEwHhcNMjYwMTI2MDMwMTM2WhcNMjYwMTI3MDMwMTM2WjAzMTEwLwYDVQQD EyhmNzM1OTA2MDRkN2E2MGI4NmZkN2NjMTRjYzQ1NDg3MTM5ZWUyNjRhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqQxosoQQYb9ODVc/r/LCssp+UL/q 0db7ZmdrhlAkBgylVcjWG3NkhMl/NUiAparCjZoPdAfjJnuXh9TnbkTYg3Bfm9N9 lpTRYICl3bpRJ+kN6YFTHn/hGCdH8rwjXtaFBk5D9+/daMaE55No4XuDSvB4ljdB u6Jr9I/ldQZR+4QytzBenIoxTCX47qE56+qIvc38i++jYnUD8dCJDgPKM9mz29p3 vyDSVl8eTh/yWXyLrgTchrai0O0B5gwZqyja/zIIGWpMfEcE7REYrEqKlKJ+7I0N 041Dx7QW5FX8WUnQXWzWbeTB2TqMmY+I2YFXWuo/ZS64LkAEsHVi/dyX1QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPc1kGBNemC4b9fMFMxFSHE57iZKMB8GA1UdIwQY MBaAFKwhoRPRugHRB/33kTCMClHz0G3aMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvckNHaEU5RzZBZEVIX2ZlUk1Jd0tVZlBRYmRvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My81ODkzZjctYjRmMS00OTYxLTk0MjYt ZmQ3M2I4MDgzM2I3LzEvckNHaEU5RzZBZEVIX2ZlUk1Jd0tVZlBRYmRvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80My81ODkzZjctYjRmMS00OTYxLTk0MjYtZmQ3M2I4MDgzM2I3 LzEvckNHaEU5RzZBZEVIX2ZlUk1Jd0tVZlBRYmRvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAQVusi5f kw9YVx/bhZDluCLpMtQK4VRvKeWSCjDD7k5yu8nrfH+exl/qp8tk/sBGuHjFsjoi UXEe19GQvzzp8fUfJGSetR+/PIO3nvO+qM3er9NynaYP+0iXxjecjVXoUB+gxlhx GZfhUswgNVmR37HViM7wYEXg0kx5plTvLQSuYAakJWMBy4cOSQc6GLfQ8zWDJClZ Waox/3peZ9m2daR6YVU5Sy5Jy9IY9M3ZGX/+ThnWV/inMvXtyeKCf5j9jbv94tHg dAg9e4iBT0dfLnTbRotdSncKexOoVgaLr89KvfMTv8rhs1bvh7TFyukLvToEPeD/ Fi59g28wNwnPJA== -----END CERTIFICATE-----Generated at Mon Jan 26 07:12:37 2026 by rpki-client