This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/793709-ee58-4f76-b308-862b86b6e642/1/geTmB1l46pR2tkHOAIx4erKOXRM.mft File: geTmB1l46pR2tkHOAIx4erKOXRM.mft (raw, json) Hash identifier: GRe6o5DN6oR88b/IWQIoajTSilqr0ENDLOyetZOH9pM= Subject key identifier: 2A:E7:F1:A5:B0:7A:A8:B9:9C:5D:8E:D5:A4:EB:E4:3E:49:B5:AC:82 Authority key identifier: 81:E4:E6:07:59:78:EA:94:76:B6:41:CE:00:8C:78:7A:B2:8E:5D:13 Certificate issuer: /CN=81e4e6075978ea9476b641ce008c787ab28e5d13 Certificate serial: 019BF6F55A9E1279406A9F830C49050FA74E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/geTmB1l46pR2tkHOAIx4erKOXRM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/793709-ee58-4f76-b308-862b86b6e642/1/geTmB1l46pR2tkHOAIx4erKOXRM.mft Manifest number: 17E8 Signing time: Sun 25 Jan 2026 21:00:33 +0000 Manifest this update: Sun 25 Jan 2026 21:00:33 +0000 Manifest next update: Mon 26 Jan 2026 21:00:33 +0000 Files and hashes: 1: geTmB1l46pR2tkHOAIx4erKOXRM.crl (hash: TSENjPWTpw7MQbRFvVgroM5G/l3IyeCUH5j/g5IcZBI=) 2: pTTs0nVlMn5tHpy7oYuUSfXDe4g.roa (hash: xSZGhc6azC4w2f74UgWS1yPxNx1RtAZpsoy3M6zVKGQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/793709-ee58-4f76-b308-862b86b6e642/1/geTmB1l46pR2tkHOAIx4erKOXRM.crl rsync://rpki.ripe.net/repository/DEFAULT/4d/793709-ee58-4f76-b308-862b86b6e642/1/geTmB1l46pR2tkHOAIx4erKOXRM.mft rsync://rpki.ripe.net/repository/DEFAULT/geTmB1l46pR2tkHOAIx4erKOXRM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 21:00:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f6:f5:5a:9e:12:79:40:6a:9f:83:0c:49:05:0f:a7:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=81e4e6075978ea9476b641ce008c787ab28e5d13 Validity Not Before: Jan 25 21:00:33 2026 GMT Not After : Jan 26 21:00:33 2026 GMT Subject: CN=2ae7f1a5b07aa8b99c5d8ed5a4ebe43e49b5ac82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:8c:91:b4:6c:bb:d7:39:4c:a8:d9:b9:f3:99: a6:55:8f:a2:17:45:9a:e8:d1:a5:03:88:c4:76:fa: d5:be:41:8b:2d:ec:87:fe:77:b0:34:f7:97:e5:75: 98:b3:f8:56:40:8b:ce:59:c3:81:1d:39:5b:a9:cb: 0e:e8:5b:9b:0c:be:2a:0b:89:95:ff:80:b1:df:a4: 3f:9b:d1:fc:2f:be:89:6f:19:af:52:f0:f0:48:f5: 77:2d:80:54:16:d4:1b:17:91:b5:b9:44:d9:0a:b8: b7:57:4f:8e:27:68:68:71:85:89:ec:54:10:24:2e: 54:32:72:39:7c:cf:6a:ed:4b:69:20:61:e2:38:7c: 7a:7f:f6:2e:e5:94:6e:df:8f:07:23:c8:fe:c9:a2: ea:16:cc:2c:23:de:f0:5a:a9:4a:39:cc:b8:ee:47: 26:84:e6:84:90:64:e9:9c:9f:6e:c0:1b:1e:58:f2: 96:5b:9e:d0:09:1e:19:c6:41:a8:15:4c:2e:16:78: 6d:a4:2e:67:a0:dd:7e:cf:10:2c:50:a5:27:6d:e5: ff:8d:05:35:b6:e4:51:d2:44:71:21:58:3c:50:c9: a8:9f:1e:0a:6e:4e:ce:66:72:c4:53:f0:b9:4b:1d: bd:0b:68:8b:a3:4e:0e:75:07:6c:39:26:4a:11:3a: 75:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:E7:F1:A5:B0:7A:A8:B9:9C:5D:8E:D5:A4:EB:E4:3E:49:B5:AC:82 X509v3 Authority Key Identifier: keyid:81:E4:E6:07:59:78:EA:94:76:B6:41:CE:00:8C:78:7A:B2:8E:5D:13 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/geTmB1l46pR2tkHOAIx4erKOXRM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/793709-ee58-4f76-b308-862b86b6e642/1/geTmB1l46pR2tkHOAIx4erKOXRM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/793709-ee58-4f76-b308-862b86b6e642/1/geTmB1l46pR2tkHOAIx4erKOXRM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 18:41:c3:60:58:95:9b:20:ad:a1:72:35:54:4c:f1:20:66:76: 41:ff:16:5d:ca:8d:86:4e:6b:3f:cc:51:6b:6d:1c:4f:22:f0: 37:03:1d:79:cc:49:dc:89:fd:d9:57:f9:45:da:71:f8:e8:77: fd:e2:28:48:03:e2:8b:d4:26:4a:f2:c2:c2:01:9e:7a:de:f2: 7d:50:33:22:ab:d5:74:81:2a:da:39:91:9b:6b:4f:af:14:20: de:37:42:bb:32:56:3a:3d:7d:cc:b0:f0:dc:08:98:b4:fa:3f: 6a:7a:e6:d0:3f:1f:38:38:9a:ee:c1:1b:48:82:a9:07:ac:e2: f9:ac:25:db:1a:c4:87:47:58:37:19:3d:05:60:18:43:69:9c: 30:1d:77:1e:b2:0e:82:34:9e:cb:15:9e:82:09:2c:e8:81:6b: 42:d1:09:10:6a:cc:2b:f9:2e:ba:1e:fb:53:ec:f8:98:63:1c: 77:24:e1:bc:6f:ea:82:34:89:8f:7d:4b:3c:7c:39:35:1c:16: 30:f2:c2:fc:5f:44:a0:b3:f5:6e:ac:f2:8b:4b:d6:79:d4:4e: 3d:ca:a9:c4:8e:7a:65:7c:72:5f:e5:c4:06:93:fd:be:9b:cc: e3:4c:af:44:b0:2f:70:48:d2:3e:5a:fc:24:27:ec:34:3b:96: c5:0a:fd:9c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv29VqeEnlAap+DDEkFD6dOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgxZTRlNjA3NTk3OGVhOTQ3NmI2NDFjZTAwOGM3ODdhYjI4 ZTVkMTMwHhcNMjYwMTI1MjEwMDMzWhcNMjYwMTI2MjEwMDMzWjAzMTEwLwYDVQQD EygyYWU3ZjFhNWIwN2FhOGI5OWM1ZDhlZDVhNGViZTQzZTQ5YjVhYzgyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuIyRtGy71zlMqNm585mmVY+iF0Wa 6NGlA4jEdvrVvkGLLeyH/newNPeX5XWYs/hWQIvOWcOBHTlbqcsO6FubDL4qC4mV /4Cx36Q/m9H8L76JbxmvUvDwSPV3LYBUFtQbF5G1uUTZCri3V0+OJ2hocYWJ7FQQ JC5UMnI5fM9q7UtpIGHiOHx6f/Yu5ZRu348HI8j+yaLqFswsI97wWqlKOcy47kcm hOaEkGTpnJ9uwBseWPKWW57QCR4ZxkGoFUwuFnhtpC5noN1+zxAsUKUnbeX/jQU1 tuRR0kRxIVg8UMmonx4Kbk7OZnLEU/C5Sx29C2iLo04OdQdsOSZKETp1YwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCrn8aWweqi5nF2O1aTr5D5JtayCMB8GA1UdIwQY MBaAFIHk5gdZeOqUdrZBzgCMeHqyjl0TMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ2VUbUIxbDQ2cFIydGtIT0FJeDRlcktPWFJNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZC83OTM3MDktZWU1OC00Zjc2LWIzMDgt ODYyYjg2YjZlNjQyLzEvZ2VUbUIxbDQ2cFIydGtIT0FJeDRlcktPWFJNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80ZC83OTM3MDktZWU1OC00Zjc2LWIzMDgtODYyYjg2YjZlNjQy LzEvZ2VUbUIxbDQ2cFIydGtIT0FJeDRlcktPWFJNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGEHDYFiV myCtoXI1VEzxIGZ2Qf8WXcqNhk5rP8xRa20cTyLwNwMdecxJ3In92Vf5Rdpx+Oh3 /eIoSAPii9QmSvLCwgGeet7yfVAzIqvVdIEq2jmRm2tPrxQg3jdCuzJWOj19zLDw 3AiYtPo/anrm0D8fODia7sEbSIKpB6zi+awl2xrEh0dYNxk9BWAYQ2mcMB13HrIO gjSeyxWeggks6IFrQtEJEGrMK/kuuh77U+z4mGMcdyThvG/qgjSJj31LPHw5NRwW MPLC/F9EoLP1bqzyi0vWedROPcqpxI56ZXxyX+XEBpP9vpvM40yvRLAvcEjSPlr8 JCfsNDuWxQr9nA== -----END CERTIFICATE-----Generated at Mon Jan 26 06:23:34 2026 by rpki-client