This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/382ff4-4fc2-4302-af90-96adffe2e86a/1/KCyT0maFJ4jkmYLZ96Yg222fWI0.mft File: KCyT0maFJ4jkmYLZ96Yg222fWI0.mft (raw, json) Hash identifier: 7P7zE2OcPJTTezINZEWSenZnJvWq4CDqJkS345mVDRU= Subject key identifier: F8:9D:62:77:23:74:87:02:1A:93:06:CC:FF:01:D0:AF:7F:A5:37:F3 Authority key identifier: 28:2C:93:D2:66:85:27:88:E4:99:82:D9:F7:A6:20:DB:6D:9F:58:8D Certificate issuer: /CN=282c93d266852788e49982d9f7a620db6d9f588d Certificate serial: 019BF386B4AE04151B73DEE99039C2D3E80E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KCyT0maFJ4jkmYLZ96Yg222fWI0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/382ff4-4fc2-4302-af90-96adffe2e86a/1/KCyT0maFJ4jkmYLZ96Yg222fWI0.mft Manifest number: 0D04 Signing time: Sun 25 Jan 2026 05:00:50 +0000 Manifest this update: Sun 25 Jan 2026 05:00:50 +0000 Manifest next update: Mon 26 Jan 2026 05:00:50 +0000 Files and hashes: 1: 1ObfCdLE7dKk-d-Joasz4Il0A1o.roa (hash: p/QxJngDf+aUBVUX1Y9rupN0VdWFzSbmnVUDpsP2Y34=) 2: KCyT0maFJ4jkmYLZ96Yg222fWI0.crl (hash: ONIRfuIa7yGYKEP9MH3KCXuDUz26aj3I5eDcjDXHrC4=) 3: h28P9psTB0BJCTdOtSuL769CZEY.roa (hash: WnzE0ULZO+Ns9cDIOM8A2gQx3rSBVndAJ664fi5lHZY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/382ff4-4fc2-4302-af90-96adffe2e86a/1/KCyT0maFJ4jkmYLZ96Yg222fWI0.crl rsync://rpki.ripe.net/repository/DEFAULT/44/382ff4-4fc2-4302-af90-96adffe2e86a/1/KCyT0maFJ4jkmYLZ96Yg222fWI0.mft rsync://rpki.ripe.net/repository/DEFAULT/KCyT0maFJ4jkmYLZ96Yg222fWI0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f3:86:b4:ae:04:15:1b:73:de:e9:90:39:c2:d3:e8:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=282c93d266852788e49982d9f7a620db6d9f588d Validity Not Before: Jan 25 05:00:50 2026 GMT Not After : Jan 26 05:00:50 2026 GMT Subject: CN=f89d6277237487021a9306ccff01d0af7fa537f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:25:dc:f4:73:1e:f2:d3:c6:ef:69:34:21:62: c6:aa:48:6f:db:a6:18:2f:cf:4d:e9:f3:7f:e6:e6: fa:91:2a:36:d7:19:b2:92:7d:20:0c:8c:1e:93:0c: 54:52:3c:31:79:be:35:33:95:cc:80:01:c1:2e:6a: e1:f9:8e:0c:a6:d5:44:91:2a:a8:52:56:e8:34:37: 6b:6c:79:70:59:30:14:ea:d8:1a:0c:f7:61:1a:12: a5:a8:95:cc:49:1c:5b:3e:15:94:94:bc:8c:c0:ab: c6:1a:51:82:b3:8f:f4:e9:84:11:70:ce:89:44:1e: eb:c7:fa:c6:a7:69:5c:57:df:55:e3:89:a7:fe:5d: 6b:a0:e5:a5:eb:b2:03:8a:1c:06:40:aa:f5:e0:5f: db:ec:06:5b:2d:40:57:35:b0:fa:0e:36:89:eb:96: 7b:0e:2b:63:77:2d:45:25:b9:e9:c6:49:9d:31:29: 45:32:4b:c6:88:92:2e:49:ba:8e:4a:74:a9:93:5f: 6f:67:89:21:77:d1:1a:b5:a4:c9:83:52:e3:6b:ca: 1a:b7:56:02:ee:3b:d1:68:b1:6e:64:d7:cb:c4:2f: 1e:18:68:9d:6f:41:03:f0:8a:7b:f0:2e:06:74:4b: 1b:a2:f5:a0:2a:88:02:90:9e:09:f4:e8:84:3e:be: e7:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:9D:62:77:23:74:87:02:1A:93:06:CC:FF:01:D0:AF:7F:A5:37:F3 X509v3 Authority Key Identifier: keyid:28:2C:93:D2:66:85:27:88:E4:99:82:D9:F7:A6:20:DB:6D:9F:58:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KCyT0maFJ4jkmYLZ96Yg222fWI0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/382ff4-4fc2-4302-af90-96adffe2e86a/1/KCyT0maFJ4jkmYLZ96Yg222fWI0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/44/382ff4-4fc2-4302-af90-96adffe2e86a/1/KCyT0maFJ4jkmYLZ96Yg222fWI0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 90:53:1a:44:4b:32:24:ec:96:87:a1:9b:f9:7b:97:9a:38:fa: 7a:bc:67:f1:4e:b5:8b:e2:71:0b:a0:35:ef:7a:93:8d:0a:a6: 38:f5:57:31:77:31:7d:62:40:a3:42:e5:d5:21:83:51:14:aa: 18:5b:2a:a1:ab:ab:78:2e:50:8b:be:67:a9:3b:5e:68:3b:04: 54:05:40:07:29:b0:21:c7:62:52:6f:23:ad:25:b9:29:c8:a8: b2:12:ad:1e:3a:32:cc:01:48:20:fd:39:47:76:df:44:57:f0: e2:ba:2d:0b:7d:b0:20:6d:71:74:f3:48:bc:2e:c5:63:a0:ab: fa:77:a7:c1:e3:cf:1e:41:06:d5:89:77:66:9f:91:3f:2c:27: 2b:84:a7:28:94:84:c7:2b:db:1d:b0:78:09:98:ec:2e:40:c4: e3:68:48:65:4f:c3:ba:92:6f:81:e6:e8:3d:b1:ed:e0:c4:64: b9:f4:79:39:7b:bf:aa:2c:9a:02:97:7b:4d:fa:74:30:46:e1: 87:17:46:e5:e7:d0:be:45:2c:47:a1:cf:e7:41:fd:fc:a0:d7: 3d:73:93:d0:39:44:23:9d:d1:4a:9a:2d:1d:52:47:a2:6b:5c: 1f:68:eb:d2:89:20:72:af:42:19:f8:97:66:ee:bd:f6:5a:96: 15:e2:5e:9d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZvzhrSuBBUbc97pkDnC0+gOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI4MmM5M2QyNjY4NTI3ODhlNDk5ODJkOWY3YTYyMGRiNmQ5 ZjU4OGQwHhcNMjYwMTI1MDUwMDUwWhcNMjYwMTI2MDUwMDUwWjAzMTEwLwYDVQQD EyhmODlkNjI3NzIzNzQ4NzAyMWE5MzA2Y2NmZjAxZDBhZjdmYTUzN2YzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5yXc9HMe8tPG72k0IWLGqkhv26YY L89N6fN/5ub6kSo21xmykn0gDIwekwxUUjwxeb41M5XMgAHBLmrh+Y4MptVEkSqo UlboNDdrbHlwWTAU6tgaDPdhGhKlqJXMSRxbPhWUlLyMwKvGGlGCs4/06YQRcM6J RB7rx/rGp2lcV99V44mn/l1roOWl67IDihwGQKr14F/b7AZbLUBXNbD6DjaJ65Z7 Ditjdy1FJbnpxkmdMSlFMkvGiJIuSbqOSnSpk19vZ4khd9EataTJg1Lja8oat1YC 7jvRaLFuZNfLxC8eGGidb0ED8Ip78C4GdEsbovWgKogCkJ4J9OiEPr7n7wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPidYncjdIcCGpMGzP8B0K9/pTfzMB8GA1UdIwQY MBaAFCgsk9JmhSeI5JmC2femINttn1iNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS0N5VDBtYUZKNGprbVlMWjk2WWcyMjJmV0kwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NC8zODJmZjQtNGZjMi00MzAyLWFmOTAt OTZhZGZmZTJlODZhLzEvS0N5VDBtYUZKNGprbVlMWjk2WWcyMjJmV0kwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80NC8zODJmZjQtNGZjMi00MzAyLWFmOTAtOTZhZGZmZTJlODZh LzEvS0N5VDBtYUZKNGprbVlMWjk2WWcyMjJmV0kwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkFMaREsy JOyWh6Gb+XuXmjj6erxn8U61i+JxC6A173qTjQqmOPVXMXcxfWJAo0Ll1SGDURSq GFsqoaureC5Qi75nqTteaDsEVAVABymwIcdiUm8jrSW5KcioshKtHjoyzAFIIP05 R3bfRFfw4rotC32wIG1xdPNIvC7FY6Cr+nenwePPHkEG1Yl3Zp+RPywnK4SnKJSE xyvbHbB4CZjsLkDE42hIZU/DupJvgeboPbHt4MRkufR5OXu/qiyaApd7Tfp0MEbh hxdG5efQvkUsR6HP50H9/KDXPXOT0DlEI53RSpotHVJHomtcH2jr0okgcq9CGfiX Zu699lqWFeJenQ== -----END CERTIFICATE-----Generated at Sun Jan 25 07:47:16 2026 by rpki-client