This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/509d0b-acd1-4958-a3cd-375f2449a8c1/1/VDxwGANHJZY6lxyWqMqrWYyuY4o.mft File: VDxwGANHJZY6lxyWqMqrWYyuY4o.mft (raw, json) Hash identifier: K/2S1OLwa1izgNEDZmPCpNEw+UkNAnm7Z9+MPq7MtoA= Subject key identifier: DA:95:B3:BB:29:27:5A:95:7F:6B:1E:EC:A0:69:C8:52:B4:CD:2C:F8 Authority key identifier: 54:3C:70:18:03:47:25:96:3A:97:1C:96:A8:CA:AB:59:8C:AE:63:8A Certificate issuer: /CN=543c7018034725963a971c96a8caab598cae638a Certificate serial: 019BF5E44698617BEADF2343C1FC6B9D7D48 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VDxwGANHJZY6lxyWqMqrWYyuY4o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/509d0b-acd1-4958-a3cd-375f2449a8c1/1/VDxwGANHJZY6lxyWqMqrWYyuY4o.mft Manifest number: 05DD Signing time: Sun 25 Jan 2026 16:02:16 +0000 Manifest this update: Sun 25 Jan 2026 16:02:16 +0000 Manifest next update: Mon 26 Jan 2026 16:02:16 +0000 Files and hashes: 1: 6EkJKay6ASec3Uw_czHATgEyfKA.roa (hash: 2c9WHQTBPJnNJtn4QC9p7CmncMVB1cW6dCt+0dg0vCE=) 2: VDxwGANHJZY6lxyWqMqrWYyuY4o.crl (hash: YjbLTsknqF3+k56tcbu4Rv29vt0YHxJ+7IwRXuCF75w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/509d0b-acd1-4958-a3cd-375f2449a8c1/1/VDxwGANHJZY6lxyWqMqrWYyuY4o.crl rsync://rpki.ripe.net/repository/DEFAULT/45/509d0b-acd1-4958-a3cd-375f2449a8c1/1/VDxwGANHJZY6lxyWqMqrWYyuY4o.mft rsync://rpki.ripe.net/repository/DEFAULT/VDxwGANHJZY6lxyWqMqrWYyuY4o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f5:e4:46:98:61:7b:ea:df:23:43:c1:fc:6b:9d:7d:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=543c7018034725963a971c96a8caab598cae638a Validity Not Before: Jan 25 16:02:16 2026 GMT Not After : Jan 26 16:02:16 2026 GMT Subject: CN=da95b3bb29275a957f6b1eeca069c852b4cd2cf8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:29:47:2c:0f:84:f8:2b:66:c5:57:53:c8:b8: 23:9f:dd:21:49:ee:58:7d:b8:b1:90:d1:24:ab:22: 99:ff:ea:51:a6:0b:47:f0:2c:61:67:fd:28:a1:0a: a6:46:e4:14:e1:bb:0f:8b:f2:13:42:96:70:85:b7: 47:b8:cd:bf:78:c4:44:05:0e:04:61:57:56:f5:d3: 8e:41:a2:2a:a0:7e:18:ff:30:82:86:f0:d0:16:2c: 5e:55:b5:11:63:45:55:55:6c:83:e3:e7:27:3f:9b: cb:d3:48:9d:0c:fe:bd:da:73:c8:e6:7b:03:d5:cc: 2f:75:50:87:a2:8d:6b:8e:a1:1e:00:80:f2:e1:5d: 5f:a9:56:e9:a4:a2:10:d3:e3:51:a0:29:c5:ec:2e: 08:c7:c6:ca:ef:53:27:75:e2:6d:1a:7e:ee:b8:2a: 6c:bb:a2:aa:1c:79:ae:cd:d1:6d:21:a7:5b:6a:d5: c8:ab:c2:78:8e:60:a9:ad:cd:c8:82:50:60:82:a7: 42:a9:c7:8c:00:86:1b:c1:28:a6:2b:06:b6:f5:66: 6c:ca:f8:c7:e0:89:6b:01:b6:1e:ed:80:6c:ca:f9: d3:92:ea:68:31:41:3f:75:0f:f2:3b:ba:33:8c:aa: b4:97:ce:3a:37:90:72:99:38:12:c1:37:dd:02:50: 87:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:95:B3:BB:29:27:5A:95:7F:6B:1E:EC:A0:69:C8:52:B4:CD:2C:F8 X509v3 Authority Key Identifier: keyid:54:3C:70:18:03:47:25:96:3A:97:1C:96:A8:CA:AB:59:8C:AE:63:8A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VDxwGANHJZY6lxyWqMqrWYyuY4o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/509d0b-acd1-4958-a3cd-375f2449a8c1/1/VDxwGANHJZY6lxyWqMqrWYyuY4o.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/45/509d0b-acd1-4958-a3cd-375f2449a8c1/1/VDxwGANHJZY6lxyWqMqrWYyuY4o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c2:93:b9:97:99:0e:fb:d6:c2:27:be:29:8a:70:7e:aa:c0:ee: 3f:35:16:ff:b0:09:21:b2:83:50:8b:07:62:04:10:87:98:96: 27:17:8d:6d:56:65:ca:a6:7c:84:81:0d:35:51:6b:b7:e1:f4: f1:1e:72:06:07:28:36:a4:21:a2:80:d1:4c:98:4b:a1:11:c2: 9b:cb:20:d6:e7:65:36:36:2e:c2:18:6d:f0:e7:3f:10:1a:e5: 4f:fe:d6:f2:76:c5:6f:a0:45:3c:f9:7f:8c:15:c2:7a:03:ef: 4a:e9:06:9b:ec:c7:f3:22:ba:62:34:fb:06:26:e7:ca:85:01: c7:48:5f:78:87:61:91:f9:1d:36:c5:ed:ea:74:6a:0d:a6:c6: 22:32:f0:37:c2:26:82:41:db:a1:0e:34:42:8c:f0:d6:0c:a3: d3:50:bf:fc:18:58:67:7f:d4:ef:06:9d:fe:28:67:07:85:ed: 7e:be:f9:ec:7c:b6:7e:a5:e8:b0:1b:29:d6:c3:64:f7:14:1e: 5c:ba:e3:3d:e9:2d:1a:bb:8d:f7:11:d7:b5:52:ee:53:ae:bf: 09:76:18:e8:ea:6b:cf:6a:c4:17:35:71:8b:08:0b:48:0d:6c: c1:e8:ae:06:c3:6d:5a:4f:39:a0:3d:ce:e5:30:77:66:3b:4f: 94:ed:4f:90 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv15EaYYXvq3yNDwfxrnX1IMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU0M2M3MDE4MDM0NzI1OTYzYTk3MWM5NmE4Y2FhYjU5OGNh ZTYzOGEwHhcNMjYwMTI1MTYwMjE2WhcNMjYwMTI2MTYwMjE2WjAzMTEwLwYDVQQD EyhkYTk1YjNiYjI5Mjc1YTk1N2Y2YjFlZWNhMDY5Yzg1MmI0Y2QyY2Y4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsilHLA+E+CtmxVdTyLgjn90hSe5Y fbixkNEkqyKZ/+pRpgtH8CxhZ/0ooQqmRuQU4bsPi/ITQpZwhbdHuM2/eMREBQ4E YVdW9dOOQaIqoH4Y/zCChvDQFixeVbURY0VVVWyD4+cnP5vL00idDP692nPI5nsD 1cwvdVCHoo1rjqEeAIDy4V1fqVbppKIQ0+NRoCnF7C4Ix8bK71MndeJtGn7uuCps u6KqHHmuzdFtIadbatXIq8J4jmCprc3IglBggqdCqceMAIYbwSimKwa29WZsyvjH 4IlrAbYe7YBsyvnTkupoMUE/dQ/yO7ozjKq0l846N5BymTgSwTfdAlCHgQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNqVs7spJ1qVf2se7KBpyFK0zSz4MB8GA1UdIwQY MBaAFFQ8cBgDRyWWOpcclqjKq1mMrmOKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVkR4d0dBTkhKWlk2bHh5V3FNcXJXWXl1WTRvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NS81MDlkMGItYWNkMS00OTU4LWEzY2Qt Mzc1ZjI0NDlhOGMxLzEvVkR4d0dBTkhKWlk2bHh5V3FNcXJXWXl1WTRvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80NS81MDlkMGItYWNkMS00OTU4LWEzY2QtMzc1ZjI0NDlhOGMx LzEvVkR4d0dBTkhKWlk2bHh5V3FNcXJXWXl1WTRvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAwpO5l5kO +9bCJ74pinB+qsDuPzUW/7AJIbKDUIsHYgQQh5iWJxeNbVZlyqZ8hIENNVFrt+H0 8R5yBgcoNqQhooDRTJhLoRHCm8sg1udlNjYuwhht8Oc/EBrlT/7W8nbFb6BFPPl/ jBXCegPvSukGm+zH8yK6YjT7BibnyoUBx0hfeIdhkfkdNsXt6nRqDabGIjLwN8Im gkHboQ40Qozw1gyj01C//BhYZ3/U7wad/ihnB4Xtfr757Hy2fqXosBsp1sNk9xQe XLrjPektGruN9xHXtVLuU66/CXYY6Oprz2rEFzVxiwgLSA1sweiuBsNtWk85oD3O 5TB3ZjtPlO1PkA== -----END CERTIFICATE-----Generated at Sun Jan 25 23:56:50 2026 by rpki-client