This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/ea1cff-ae8f-4719-89b3-003a1568bf3f/1/Kb4C3qCghumID1ZMhocrvFl8xnI.mft File: Kb4C3qCghumID1ZMhocrvFl8xnI.mft (raw, json) Hash identifier: pJbVvl/gzqu63pPrSTV+1zFmA8ZYImxK0QP08NX0AMY= Subject key identifier: 7E:B0:96:12:8A:FC:53:E3:06:C7:4D:6B:03:7E:D6:31:E7:36:44:10 Authority key identifier: 29:BE:02:DE:A0:A0:86:E9:88:0F:56:4C:86:87:2B:BC:59:7C:C6:72 Certificate issuer: /CN=29be02dea0a086e9880f564c86872bbc597cc672 Certificate serial: 019BF507413C3E9DD3D0F219A91089068F67 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Kb4C3qCghumID1ZMhocrvFl8xnI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/ea1cff-ae8f-4719-89b3-003a1568bf3f/1/Kb4C3qCghumID1ZMhocrvFl8xnI.mft Manifest number: 15D9 Signing time: Sun 25 Jan 2026 12:00:51 +0000 Manifest this update: Sun 25 Jan 2026 12:00:51 +0000 Manifest next update: Mon 26 Jan 2026 12:00:51 +0000 Files and hashes: 1: 1-W964s-KtZyiNamSbJ6IP1jbFT4.roa (hash: tyUpzznYouv+Rmk3/StqHsUEFXC/JRLOGyGTS4NNP4Y=) 2: GStnKDxU2VExQ_xcPN4egFEKjLo.roa (hash: siSBOiPXXJh3GCU5grMPMkb/iUn8KcQ7coKcPhWce6E=) 3: Kb4C3qCghumID1ZMhocrvFl8xnI.crl (hash: polwZe2ArMLF603xeAKwOdRqcHHptRmwlPrl3VTgkf8=) 4: KzDc8QsMTzvMJxQ96GJ3yCoLi_U.roa (hash: Xkhd86uGm3VF/evalHU0tYC3SzwGKBs1H4sASP/73Pg=) 5: RKeJP9iEvuDf3LggtuJwNO7uQEk.roa (hash: +VIR5z/XQ5Qx7TTNzGJldp0pk9LFlEUwye6JlD69ltQ=) 6: RMWLa9nYNadgqj8fRvJ7gt0vmRY.roa (hash: YPSVWQ4p2Yzt69XO4XRgEZdOa23MUm2U51FrUJbQeG0=) 7: VSrC1QP0T_UaXaaEFdbsOmUjBh0.roa (hash: zTpZ/xLPhwOsaGOqgGhoR4AJouaTmVoH7QdVIfFBLJc=) 8: WkDZDOXBWr9x5TExAfjLxWKxbkU.roa (hash: YkRBfAeJDTqNqtEqsLxdtIzJ8woFGgTRSv1hmR+uNQ4=) 9: mju1GTQPLsJiestxJWXcq-E1Bo0.roa (hash: 95gpW7g+cVKJk4QbRN0p3aXkVNHoQsAxKOBXvYSCcxk=) 10: qJD08TGqbLXdbWVjPMA7B5pGkPI.roa (hash: Kx7++AsdN5bNJwCWFiOZcN26zdxHM+ZF2tTRAsBHsXQ=) 11: rg80XbUJLJkTb5OEL1rZgHZ1y6U.roa (hash: vhHXEQRDhmmcuNgaQBq7IXJimIzM9H1G1xvHCsunoqk=) 12: xewkVdgaX0V36_1yEpoUi8m7v6c.roa (hash: kF/BrgELi4+Am7OL4A+u/VI4R7I6POdHlx4gpQyUi6M=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/ea1cff-ae8f-4719-89b3-003a1568bf3f/1/Kb4C3qCghumID1ZMhocrvFl8xnI.crl rsync://rpki.ripe.net/repository/DEFAULT/4a/ea1cff-ae8f-4719-89b3-003a1568bf3f/1/Kb4C3qCghumID1ZMhocrvFl8xnI.mft rsync://rpki.ripe.net/repository/DEFAULT/Kb4C3qCghumID1ZMhocrvFl8xnI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 12:00:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f5:07:41:3c:3e:9d:d3:d0:f2:19:a9:10:89:06:8f:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29be02dea0a086e9880f564c86872bbc597cc672 Validity Not Before: Jan 25 12:00:51 2026 GMT Not After : Jan 26 12:00:51 2026 GMT Subject: CN=7eb096128afc53e306c74d6b037ed631e7364410 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:ee:1b:ff:75:97:77:10:f0:ff:a8:58:51:1f: 75:d2:ca:9f:89:4f:0d:7f:da:a9:16:02:b4:be:74: db:bb:90:95:26:13:3e:78:91:37:d4:56:d0:99:07: 9b:f2:ab:2c:e1:0b:e2:90:2e:76:7e:05:18:aa:f1: 2f:f9:a3:93:04:36:43:35:4e:57:9c:e6:d0:7b:5c: 05:5f:33:f0:54:82:6c:4b:f7:8c:ea:6f:7c:fe:56: 78:fe:03:f5:b7:a1:81:e9:59:d5:46:07:ce:ef:0d: 05:0b:45:d8:e5:34:17:84:4e:c9:51:84:18:83:92: 91:6c:a7:48:bf:eb:af:f5:7c:70:0d:be:97:b7:84: 9c:e5:8e:eb:d6:44:9d:1d:49:49:bf:b7:59:1f:2d: da:19:14:22:ec:4c:25:59:71:75:ea:7f:0f:9c:17: e3:43:43:bc:c8:8f:9e:be:18:90:e3:96:60:ac:ab: 21:fc:a4:1a:11:47:d3:2f:ff:b1:a4:32:af:4b:33: a2:50:80:a6:b6:5f:f4:63:a3:ce:0b:20:b3:b4:d0: ad:24:7b:5b:03:38:c8:ec:c8:59:0b:95:84:97:1a: eb:1d:b8:54:25:bd:be:8c:49:c8:40:43:09:bc:be: 2d:a1:90:09:fd:21:f6:c5:99:e4:8a:51:fb:da:9f: 64:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:B0:96:12:8A:FC:53:E3:06:C7:4D:6B:03:7E:D6:31:E7:36:44:10 X509v3 Authority Key Identifier: keyid:29:BE:02:DE:A0:A0:86:E9:88:0F:56:4C:86:87:2B:BC:59:7C:C6:72 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Kb4C3qCghumID1ZMhocrvFl8xnI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/ea1cff-ae8f-4719-89b3-003a1568bf3f/1/Kb4C3qCghumID1ZMhocrvFl8xnI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/ea1cff-ae8f-4719-89b3-003a1568bf3f/1/Kb4C3qCghumID1ZMhocrvFl8xnI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 91:ca:7e:78:5c:33:fd:ec:e6:82:a6:85:01:43:1e:bd:e8:53: 22:80:1f:9b:bc:6f:36:c9:dc:5f:8d:2d:ad:f6:15:e0:0d:a8: eb:b4:9f:07:1e:61:f8:c3:dd:31:20:2b:c8:8c:bd:89:0a:3a: 37:46:3b:5d:19:95:40:93:3d:43:c3:10:ec:04:8d:2d:78:51: 87:ea:61:df:b4:e1:15:19:2f:04:93:a4:db:77:7a:d1:4f:68: cc:2b:4a:42:94:f8:0d:b2:0b:69:2b:a8:f8:4c:68:31:93:42: 0a:92:a4:f9:1b:c0:13:0d:0f:49:ba:b2:e2:7f:3e:7b:ef:fd: ba:bf:0d:8d:4a:5f:d8:84:7c:0c:2c:44:2e:ef:89:bb:bc:1a: 54:ed:cc:e2:a9:90:c9:f1:20:d4:5f:f3:7f:0e:d0:a0:e7:69: 96:b8:79:80:d9:7b:54:b7:08:ac:50:7a:f9:49:ee:79:88:7a: 20:50:0f:02:72:b6:7a:38:c4:0a:aa:0c:3d:5c:df:ae:90:bb: 1f:53:7b:49:a4:4f:33:c6:b3:33:1e:55:ad:1b:35:45:bd:6d: 83:9f:8f:64:6c:08:ad:a1:6c:e1:02:7a:b1:f1:8f:65:51:9c: b9:0b:12:8a:bc:de:8a:a7:4d:5d:99:0f:c6:0f:55:04:8d:4f: 2d:6c:45:c5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv1B0E8Pp3T0PIZqRCJBo9nMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5YmUwMmRlYTBhMDg2ZTk4ODBmNTY0Yzg2ODcyYmJjNTk3 Y2M2NzIwHhcNMjYwMTI1MTIwMDUxWhcNMjYwMTI2MTIwMDUxWjAzMTEwLwYDVQQD Eyg3ZWIwOTYxMjhhZmM1M2UzMDZjNzRkNmIwMzdlZDYzMWU3MzY0NDEwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl+4b/3WXdxDw/6hYUR910sqfiU8N f9qpFgK0vnTbu5CVJhM+eJE31FbQmQeb8qss4QvikC52fgUYqvEv+aOTBDZDNU5X nObQe1wFXzPwVIJsS/eM6m98/lZ4/gP1t6GB6VnVRgfO7w0FC0XY5TQXhE7JUYQY g5KRbKdIv+uv9XxwDb6Xt4Sc5Y7r1kSdHUlJv7dZHy3aGRQi7EwlWXF16n8PnBfj Q0O8yI+evhiQ45ZgrKsh/KQaEUfTL/+xpDKvSzOiUICmtl/0Y6POCyCztNCtJHtb AzjI7MhZC5WElxrrHbhUJb2+jEnIQEMJvL4toZAJ/SH2xZnkilH72p9krQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFH6wlhKK/FPjBsdNawN+1jHnNkQQMB8GA1UdIwQY MBaAFCm+At6goIbpiA9WTIaHK7xZfMZyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS2I0QzNxQ2dodW1JRDFaTWhvY3J2Rmw4eG5JLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80YS9lYTFjZmYtYWU4Zi00NzE5LTg5YjMt MDAzYTE1NjhiZjNmLzEvS2I0QzNxQ2dodW1JRDFaTWhvY3J2Rmw4eG5JLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80YS9lYTFjZmYtYWU4Zi00NzE5LTg5YjMtMDAzYTE1NjhiZjNm LzEvS2I0QzNxQ2dodW1JRDFaTWhvY3J2Rmw4eG5JLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkcp+eFwz /ezmgqaFAUMevehTIoAfm7xvNsncX40trfYV4A2o67SfBx5h+MPdMSAryIy9iQo6 N0Y7XRmVQJM9Q8MQ7ASNLXhRh+ph37ThFRkvBJOk23d60U9ozCtKQpT4DbILaSuo +ExoMZNCCpKk+RvAEw0PSbqy4n8+e+/9ur8NjUpf2IR8DCxELu+Ju7waVO3M4qmQ yfEg1F/zfw7QoOdplrh5gNl7VLcIrFB6+UnueYh6IFAPAnK2ejjECqoMPVzfrpC7 H1N7SaRPM8azMx5VrRs1Rb1tg5+PZGwIraFs4QJ6sfGPZVGcuQsSirzeiqdNXZkP xg9VBI1PLWxFxQ== -----END CERTIFICATE-----Generated at Sun Jan 25 22:01:17 2026 by rpki-client