This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/f317b3-0668-4e04-9b6d-615aca51e2f6/1/vX2BeM7FzTdlSKkEkRf0acCnQxw.mft File: vX2BeM7FzTdlSKkEkRf0acCnQxw.mft (raw, json) Hash identifier: P7aR6pGDW6Zh1dgRtnoRJlHJtPpf90SSJI6N7CFE6E0= Subject key identifier: D7:32:04:39:6B:03:70:6E:A6:9F:96:3A:71:63:DB:18:57:CA:11:E5 Authority key identifier: BD:7D:81:78:CE:C5:CD:37:65:48:A9:04:91:17:F4:69:C0:A7:43:1C Certificate issuer: /CN=bd7d8178cec5cd376548a9049117f469c0a7431c Certificate serial: 019BF61A19A1A7E2048E521BC248526AD331 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vX2BeM7FzTdlSKkEkRf0acCnQxw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/f317b3-0668-4e04-9b6d-615aca51e2f6/1/vX2BeM7FzTdlSKkEkRf0acCnQxw.mft Manifest number: 17FA Signing time: Sun 25 Jan 2026 17:01:04 +0000 Manifest this update: Sun 25 Jan 2026 17:01:04 +0000 Manifest next update: Mon 26 Jan 2026 17:01:04 +0000 Files and hashes: 1: 7z1tSf8I9u1vya-qzqnrFwA2jNM.roa (hash: /WQm3fnxjA4ArGkSbC1Tat7ScQ2OaqKECXjtZq5aFo8=) 2: XiD6lDrgMPuS8eayCDVkIbui-4s.roa (hash: SBkJkhDft5A8cF6t/KuhZfif5su+kzjqoUhMEaiSsSk=) 3: ajZvyc1TZO3sN3JzZ4xIlekYW3A.roa (hash: KoTZ28q/3XFXaDAUF+RkPrxNb4KFBcBG2YemXG25Ts8=) 4: pBECGuvlqI1JRG7h1KFoBdoLOQQ.roa (hash: g1yrRU6vVwlNdEkW9jmsyPMMiYUAGVw0ecH5Z2RUhlM=) 5: vX2BeM7FzTdlSKkEkRf0acCnQxw.crl (hash: eJ2Bf3DJHytWGrmQkSi/xFWfb6HAL0PINdAeCYX2bS0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/f317b3-0668-4e04-9b6d-615aca51e2f6/1/vX2BeM7FzTdlSKkEkRf0acCnQxw.crl rsync://rpki.ripe.net/repository/DEFAULT/4a/f317b3-0668-4e04-9b6d-615aca51e2f6/1/vX2BeM7FzTdlSKkEkRf0acCnQxw.mft rsync://rpki.ripe.net/repository/DEFAULT/vX2BeM7FzTdlSKkEkRf0acCnQxw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f6:1a:19:a1:a7:e2:04:8e:52:1b:c2:48:52:6a:d3:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bd7d8178cec5cd376548a9049117f469c0a7431c Validity Not Before: Jan 25 17:01:04 2026 GMT Not After : Jan 26 17:01:04 2026 GMT Subject: CN=d73204396b03706ea69f963a7163db1857ca11e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:4f:cd:de:0b:92:df:e8:30:c0:70:60:33:40: a2:bd:a8:de:5d:fd:b2:2c:29:ec:a5:4e:e5:fb:7f: d9:ca:21:83:4b:ee:d0:c6:05:28:88:ab:c7:20:2c: 53:e4:53:52:7f:29:53:b7:7b:08:c1:dc:47:a0:d2: f4:db:da:36:87:8a:e6:f0:3d:a9:18:38:df:78:91: 54:29:2e:9e:34:3d:86:33:c5:16:63:c7:ed:3b:3f: 2f:c2:d3:f6:da:14:de:ea:03:e7:1f:4b:1b:fb:a2: 66:da:da:50:32:69:86:4a:31:fc:c6:c8:90:1b:43: 2d:c9:aa:ef:a3:f0:ac:a4:85:eb:3a:92:4d:8d:2a: f9:93:7a:74:b9:41:6c:0d:35:ce:e5:93:b2:4e:54: a5:a4:c0:25:de:5a:3c:e7:46:cc:8e:34:2b:f1:33: ea:22:8f:9d:c4:56:b4:5f:fa:84:27:3b:8e:ad:80: b9:ac:91:aa:68:b5:39:37:b1:07:c5:01:8c:27:0a: eb:61:04:b5:a7:da:2d:47:ff:64:0a:af:23:af:e5: 41:05:89:21:21:e9:ea:f8:3f:30:e9:5e:9a:ba:f4: a6:38:10:b7:15:c2:21:86:c9:eb:60:51:46:65:32: df:21:50:64:d6:7b:fe:f2:eb:e7:c7:34:43:e7:8c: 6b:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:32:04:39:6B:03:70:6E:A6:9F:96:3A:71:63:DB:18:57:CA:11:E5 X509v3 Authority Key Identifier: keyid:BD:7D:81:78:CE:C5:CD:37:65:48:A9:04:91:17:F4:69:C0:A7:43:1C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vX2BeM7FzTdlSKkEkRf0acCnQxw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/f317b3-0668-4e04-9b6d-615aca51e2f6/1/vX2BeM7FzTdlSKkEkRf0acCnQxw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/f317b3-0668-4e04-9b6d-615aca51e2f6/1/vX2BeM7FzTdlSKkEkRf0acCnQxw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0c:90:a3:4d:7c:fb:fe:a5:a5:f6:a3:72:1f:64:29:a8:4e:18: 11:bc:6f:0b:cd:f1:9e:9a:96:b0:52:d8:0b:d1:4d:14:15:4b: 2e:1a:99:f9:d4:17:bb:3d:de:24:b6:49:24:e3:1a:14:81:e0: 6c:5a:4c:a9:a0:7a:e8:6b:41:49:44:a4:c7:73:e2:97:01:72: 7f:37:90:13:a8:87:fc:54:29:7e:20:e0:d9:4e:a0:a0:cd:50: 04:52:8a:82:55:ad:72:13:6f:f4:7e:3f:ff:e5:21:00:be:96: 27:87:14:55:b3:46:b5:00:3b:0e:76:3f:84:2b:c8:3b:ed:63: 5e:03:8a:69:41:c0:a6:41:2d:b0:90:73:3e:7f:bd:94:5d:1e: 45:65:a3:b0:39:08:2d:b4:fb:f7:5b:7e:6c:1c:c9:81:7e:2f: 60:e2:eb:25:fa:42:9a:0f:52:02:46:aa:94:76:a0:76:d7:99: 1c:eb:bc:ac:c4:21:62:a0:fe:03:c6:25:2c:25:ec:53:cc:a3: 13:9a:e5:ee:8b:e2:01:9b:28:d3:73:8b:de:25:a1:b4:9e:b5: 38:ff:71:bf:04:65:0d:aa:13:b8:ea:67:f9:10:6a:72:ef:8e: 84:1c:34:69:a2:9e:85:db:4d:6e:98:2f:63:82:99:73:d5:68: f9:f3:d3:18 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv2Ghmhp+IEjlIbwkhSatMxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJkN2Q4MTc4Y2VjNWNkMzc2NTQ4YTkwNDkxMTdmNDY5YzBh NzQzMWMwHhcNMjYwMTI1MTcwMTA0WhcNMjYwMTI2MTcwMTA0WjAzMTEwLwYDVQQD EyhkNzMyMDQzOTZiMDM3MDZlYTY5Zjk2M2E3MTYzZGIxODU3Y2ExMWU1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArk/N3guS3+gwwHBgM0CivajeXf2y LCnspU7l+3/ZyiGDS+7QxgUoiKvHICxT5FNSfylTt3sIwdxHoNL029o2h4rm8D2p GDjfeJFUKS6eND2GM8UWY8ftOz8vwtP22hTe6gPnH0sb+6Jm2tpQMmmGSjH8xsiQ G0Mtyarvo/CspIXrOpJNjSr5k3p0uUFsDTXO5ZOyTlSlpMAl3lo850bMjjQr8TPq Io+dxFa0X/qEJzuOrYC5rJGqaLU5N7EHxQGMJwrrYQS1p9otR/9kCq8jr+VBBYkh Ienq+D8w6V6auvSmOBC3FcIhhsnrYFFGZTLfIVBk1nv+8uvnxzRD54xrZQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNcyBDlrA3Bupp+WOnFj2xhXyhHlMB8GA1UdIwQY MBaAFL19gXjOxc03ZUipBJEX9GnAp0McMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdlgyQmVNN0Z6VGRsU0trRWtSZjBhY0NuUXh3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80YS9mMzE3YjMtMDY2OC00ZTA0LTliNmQt NjE1YWNhNTFlMmY2LzEvdlgyQmVNN0Z6VGRsU0trRWtSZjBhY0NuUXh3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80YS9mMzE3YjMtMDY2OC00ZTA0LTliNmQtNjE1YWNhNTFlMmY2 LzEvdlgyQmVNN0Z6VGRsU0trRWtSZjBhY0NuUXh3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADJCjTXz7 /qWl9qNyH2QpqE4YEbxvC83xnpqWsFLYC9FNFBVLLhqZ+dQXuz3eJLZJJOMaFIHg bFpMqaB66GtBSUSkx3PilwFyfzeQE6iH/FQpfiDg2U6goM1QBFKKglWtchNv9H4/ /+UhAL6WJ4cUVbNGtQA7DnY/hCvIO+1jXgOKaUHApkEtsJBzPn+9lF0eRWWjsDkI LbT791t+bBzJgX4vYOLrJfpCmg9SAkaqlHagdteZHOu8rMQhYqD+A8YlLCXsU8yj E5rl7oviAZso03OL3iWhtJ61OP9xvwRlDaoTuOpn+RBqcu+OhBw0aaKehdtNbpgv Y4KZc9Vo+fPTGA== -----END CERTIFICATE-----Generated at Sun Jan 25 21:10:29 2026 by rpki-client