This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/382ff4-4fc2-4302-af90-96adffe2e86a/1/KCyT0maFJ4jkmYLZ96Yg222fWI0.mft File: KCyT0maFJ4jkmYLZ96Yg222fWI0.mft (raw, json) Hash identifier: Ei7ey4vhXK+Uxw+AMj5/gOz4oc7j8knGbd1AWRSzzsQ= Subject key identifier: AC:EF:EC:99:F0:D9:4E:B5:17:DD:D4:EA:42:3B:F1:C3:80:62:3C:13 Authority key identifier: 28:2C:93:D2:66:85:27:88:E4:99:82:D9:F7:A6:20:DB:6D:9F:58:8D Certificate issuer: /CN=282c93d266852788e49982d9f7a620db6d9f588d Certificate serial: 019BF198C8F3F43D056CFA6965ABC39C721B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KCyT0maFJ4jkmYLZ96Yg222fWI0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/382ff4-4fc2-4302-af90-96adffe2e86a/1/KCyT0maFJ4jkmYLZ96Yg222fWI0.mft Manifest number: 0D03 Signing time: Sat 24 Jan 2026 20:01:20 +0000 Manifest this update: Sat 24 Jan 2026 20:01:20 +0000 Manifest next update: Sun 25 Jan 2026 20:01:20 +0000 Files and hashes: 1: 1ObfCdLE7dKk-d-Joasz4Il0A1o.roa (hash: p/QxJngDf+aUBVUX1Y9rupN0VdWFzSbmnVUDpsP2Y34=) 2: KCyT0maFJ4jkmYLZ96Yg222fWI0.crl (hash: XrAoF7uHtwD4S4jz3ctbg+J8H2+PRl6lvB7v2SlrzMM=) 3: h28P9psTB0BJCTdOtSuL769CZEY.roa (hash: WnzE0ULZO+Ns9cDIOM8A2gQx3rSBVndAJ664fi5lHZY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/382ff4-4fc2-4302-af90-96adffe2e86a/1/KCyT0maFJ4jkmYLZ96Yg222fWI0.crl rsync://rpki.ripe.net/repository/DEFAULT/44/382ff4-4fc2-4302-af90-96adffe2e86a/1/KCyT0maFJ4jkmYLZ96Yg222fWI0.mft rsync://rpki.ripe.net/repository/DEFAULT/KCyT0maFJ4jkmYLZ96Yg222fWI0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 20:01:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f1:98:c8:f3:f4:3d:05:6c:fa:69:65:ab:c3:9c:72:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=282c93d266852788e49982d9f7a620db6d9f588d Validity Not Before: Jan 24 20:01:20 2026 GMT Not After : Jan 25 20:01:20 2026 GMT Subject: CN=acefec99f0d94eb517ddd4ea423bf1c380623c13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:d0:89:de:2c:38:45:ec:12:9e:b0:bb:89:de: a6:76:60:66:77:24:2d:63:31:14:47:a7:40:93:cb: 3a:4d:46:f3:ae:06:ef:6f:f8:03:72:f1:8f:b8:14: ef:23:04:af:50:fa:cb:58:9b:8c:a1:f0:a5:90:06: bc:00:57:e1:6d:cc:e3:b5:47:03:bc:37:5f:e3:57: e6:93:e7:94:39:b6:ea:26:dc:08:63:ac:db:68:65: d3:d4:f9:1d:94:37:11:e8:ec:2c:95:36:c6:55:9f: 52:4e:6c:f0:59:ba:09:14:02:83:6b:16:41:9b:58: 44:6d:d1:13:6b:35:26:71:66:38:e5:24:19:5f:22: 46:b4:6b:f4:fe:ed:0f:b0:be:00:0e:25:0e:2f:f0: 55:4c:72:16:27:9b:7d:2d:b2:da:3d:52:69:fa:76: 45:4b:45:38:3f:87:13:72:12:d9:8e:4e:8a:ca:04: ce:b8:95:c9:a0:a8:59:24:56:ef:12:f6:b0:5d:32: 61:bf:6d:03:e4:d1:75:85:ab:1d:ee:bb:a1:ac:de: 38:d9:ba:19:dd:de:1b:b5:4b:74:05:78:5f:c3:eb: 51:5e:e6:db:72:fc:bb:28:59:e0:13:d9:da:98:46: e4:17:a6:28:ec:1c:ee:fc:62:9c:2e:74:01:4f:fb: d7:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:EF:EC:99:F0:D9:4E:B5:17:DD:D4:EA:42:3B:F1:C3:80:62:3C:13 X509v3 Authority Key Identifier: keyid:28:2C:93:D2:66:85:27:88:E4:99:82:D9:F7:A6:20:DB:6D:9F:58:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KCyT0maFJ4jkmYLZ96Yg222fWI0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/382ff4-4fc2-4302-af90-96adffe2e86a/1/KCyT0maFJ4jkmYLZ96Yg222fWI0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/44/382ff4-4fc2-4302-af90-96adffe2e86a/1/KCyT0maFJ4jkmYLZ96Yg222fWI0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 07:a8:8c:2a:dc:87:a2:a5:a9:76:c1:70:58:1e:30:80:5e:4f: 4f:0d:46:0c:65:f3:8a:31:92:0d:e0:ce:b5:b9:2c:4f:62:33: fa:28:03:4f:26:89:73:e0:2f:29:e4:62:29:be:5e:48:4a:27: 0c:ca:2c:c9:17:8f:f7:83:75:d5:6c:b1:a2:0f:93:2b:bd:e3: 17:5a:f2:e4:06:06:37:79:1c:8b:6f:97:35:59:eb:6b:ab:a7: ed:cd:29:29:f2:03:f6:a7:ea:2e:34:8d:69:78:73:a7:37:7a: c1:5e:c6:c6:3f:78:74:49:17:21:65:e3:6c:e2:e7:ee:20:91: f8:7c:4d:12:65:fd:1e:e8:a5:a8:4a:8a:94:0e:71:c6:55:c4: 72:09:5e:a6:77:e8:d3:a4:27:65:8a:12:4f:32:6c:52:9b:b7: e6:ae:89:d2:f6:1c:5a:5f:43:97:6b:71:d0:3e:1d:0f:7c:6a: 08:9f:b8:48:75:54:cf:d5:19:28:0d:cd:02:3f:2b:2d:ab:50: 02:c1:ad:c9:43:6b:02:1a:a2:d4:57:91:3a:eb:5d:5a:67:1a: 12:4d:fe:db:15:d3:80:20:bd:33:98:3f:0a:5c:0c:62:af:7c: de:b6:5a:30:9d:50:52:db:99:2c:b1:84:88:4c:4d:c5:28:d6: d6:a8:4e:e0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZvxmMjz9D0FbPppZavDnHIbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI4MmM5M2QyNjY4NTI3ODhlNDk5ODJkOWY3YTYyMGRiNmQ5 ZjU4OGQwHhcNMjYwMTI0MjAwMTIwWhcNMjYwMTI1MjAwMTIwWjAzMTEwLwYDVQQD EyhhY2VmZWM5OWYwZDk0ZWI1MTdkZGQ0ZWE0MjNiZjFjMzgwNjIzYzEzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5dCJ3iw4RewSnrC7id6mdmBmdyQt YzEUR6dAk8s6TUbzrgbvb/gDcvGPuBTvIwSvUPrLWJuMofClkAa8AFfhbczjtUcD vDdf41fmk+eUObbqJtwIY6zbaGXT1PkdlDcR6OwslTbGVZ9STmzwWboJFAKDaxZB m1hEbdETazUmcWY45SQZXyJGtGv0/u0PsL4ADiUOL/BVTHIWJ5t9LbLaPVJp+nZF S0U4P4cTchLZjk6KygTOuJXJoKhZJFbvEvawXTJhv20D5NF1hasd7ruhrN442boZ 3d4btUt0BXhfw+tRXubbcvy7KFngE9namEbkF6Yo7Bzu/GKcLnQBT/vXgwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKzv7Jnw2U61F93U6kI78cOAYjwTMB8GA1UdIwQY MBaAFCgsk9JmhSeI5JmC2femINttn1iNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS0N5VDBtYUZKNGprbVlMWjk2WWcyMjJmV0kwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NC8zODJmZjQtNGZjMi00MzAyLWFmOTAt OTZhZGZmZTJlODZhLzEvS0N5VDBtYUZKNGprbVlMWjk2WWcyMjJmV0kwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80NC8zODJmZjQtNGZjMi00MzAyLWFmOTAtOTZhZGZmZTJlODZh LzEvS0N5VDBtYUZKNGprbVlMWjk2WWcyMjJmV0kwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAB6iMKtyH oqWpdsFwWB4wgF5PTw1GDGXzijGSDeDOtbksT2Iz+igDTyaJc+AvKeRiKb5eSEon DMosyReP94N11Wyxog+TK73jF1ry5AYGN3kci2+XNVnra6un7c0pKfID9qfqLjSN aXhzpzd6wV7Gxj94dEkXIWXjbOLn7iCR+HxNEmX9HuilqEqKlA5xxlXEcglepnfo 06QnZYoSTzJsUpu35q6J0vYcWl9Dl2tx0D4dD3xqCJ+4SHVUz9UZKA3NAj8rLatQ AsGtyUNrAhqi1FeROutdWmcaEk3+2xXTgCC9M5g/ClwMYq983rZaMJ1QUtuZLLGE iExNxSjW1qhO4A== -----END CERTIFICATE-----Generated at Sun Jan 25 06:04:41 2026 by rpki-client