This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.mft File: duK6XMFQs1PL00ufBF6gUJdAhE0.mft (raw, json) Hash identifier: S4elOyuMUjeGgHZ8XhQOjnmHEvgtUObiahEsuefD32s= Subject key identifier: E0:FF:D1:7C:36:50:D0:70:2F:4B:61:A6:DF:74:24:7C:19:FA:FB:94 Authority key identifier: 76:E2:BA:5C:C1:50:B3:53:CB:D3:4B:9F:04:5E:A0:50:97:40:84:4D Certificate issuer: /CN=76e2ba5cc150b353cbd34b9f045ea0509740844d Certificate serial: 019BF72D0563404802CE180ECAF59C8E27D8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/duK6XMFQs1PL00ufBF6gUJdAhE0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.mft Manifest number: 17EA Signing time: Sun 25 Jan 2026 22:01:21 +0000 Manifest this update: Sun 25 Jan 2026 22:01:21 +0000 Manifest next update: Mon 26 Jan 2026 22:01:21 +0000 Files and hashes: 1: 9pt3MDCay7srVLLtOW6VihLRgqg.roa (hash: t8waBrYlHxhkv2G7wxFbB2b8tWVcdcespy2BiSBs4U8=) 2: duK6XMFQs1PL00ufBF6gUJdAhE0.crl (hash: 1p8NRqzDiYsUNQ8aJ5YBlopujYm6gZ1oKYaNsMKyDtw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.crl rsync://rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.mft rsync://rpki.ripe.net/repository/DEFAULT/duK6XMFQs1PL00ufBF6gUJdAhE0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f7:2d:05:63:40:48:02:ce:18:0e:ca:f5:9c:8e:27:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=76e2ba5cc150b353cbd34b9f045ea0509740844d Validity Not Before: Jan 25 22:01:21 2026 GMT Not After : Jan 26 22:01:21 2026 GMT Subject: CN=e0ffd17c3650d0702f4b61a6df74247c19fafb94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:67:e1:c8:66:a9:cd:72:89:74:1e:44:ff:40: 02:79:a0:b6:16:cc:f0:89:f3:5b:23:e2:31:f5:a6: ea:d2:ba:60:2c:de:8c:08:19:32:99:a8:66:67:29: 66:0a:27:6c:a9:23:71:c3:62:bf:e7:8a:e4:e0:43: c3:e4:8b:37:28:03:85:a5:ab:0f:2f:b5:28:92:d9: cf:03:4c:ca:e4:56:46:2f:f1:fd:f6:ef:04:90:6a: 50:6f:7a:5f:ee:0b:3f:24:18:33:38:09:5c:5d:79: 3d:3e:c6:99:4e:38:ac:16:e5:f0:9e:14:f3:09:f9: d5:8d:65:5b:c5:f2:7f:91:64:dc:f7:bd:3d:09:f1: d7:15:39:b5:0b:22:0e:06:9a:a7:68:b3:90:34:23: 53:94:c4:2e:96:77:08:88:bb:d5:15:d3:7e:eb:49: 76:f9:e0:fd:e7:f3:4b:d5:fe:06:9d:a1:ce:72:09: 89:cf:ea:6d:23:f7:2a:ad:83:17:5f:ba:c6:81:12: 0d:2b:ef:13:0d:32:2b:5f:89:ff:48:c7:dd:c0:74: 8d:51:58:8c:95:f6:73:55:21:6a:f3:e1:7e:9b:84: 83:24:ed:1d:d4:85:2a:29:18:f8:84:55:21:69:f1: c7:a6:63:6e:66:43:3d:73:29:4c:39:b4:49:06:52: ff:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:FF:D1:7C:36:50:D0:70:2F:4B:61:A6:DF:74:24:7C:19:FA:FB:94 X509v3 Authority Key Identifier: keyid:76:E2:BA:5C:C1:50:B3:53:CB:D3:4B:9F:04:5E:A0:50:97:40:84:4D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/duK6XMFQs1PL00ufBF6gUJdAhE0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/31d2ed-8e2f-4fa9-83ca-70405e3528af/1/duK6XMFQs1PL00ufBF6gUJdAhE0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 72:46:ad:82:e8:57:86:0b:85:ac:41:25:2c:06:9e:d3:58:7f: b8:88:82:84:80:f7:50:a8:4d:fb:cb:7c:22:4b:3a:e3:23:70: 29:77:d0:ba:d8:b5:5e:18:78:a3:b4:16:2e:33:52:a2:af:ad: 53:dd:92:60:66:06:39:9e:b5:fc:ad:40:45:e9:db:46:c5:05: 5f:c4:b8:55:85:a7:b1:22:d5:41:ac:8f:be:8c:5a:04:84:ac: dd:27:db:db:64:7d:55:72:e5:a7:a6:4b:4c:5a:5b:ea:43:1d: 3a:e3:b0:d6:a9:21:03:1e:a1:e3:74:91:b5:88:e5:42:38:a1: 1a:b1:24:92:24:c0:91:ad:a2:d4:d0:cb:94:da:9d:ef:9f:cd: 6a:c9:0c:18:09:a8:c9:70:1e:b4:c1:0f:75:e6:6c:73:ce:c9: 4f:e1:8e:c3:7d:e1:57:5a:6c:3e:2b:d0:6b:de:0a:ba:c4:cc: 06:8a:9d:ab:d6:e0:df:0b:84:38:51:39:97:21:90:f5:df:99: 4b:77:78:59:f5:b3:d5:af:df:19:51:2a:d2:1a:19:fc:95:63: 7b:ef:1c:ff:ab:2f:d8:18:ed:ce:0a:28:df:0b:cb:8f:3f:2a: 79:62:2d:c9:0e:1a:2d:ff:a0:67:40:c1:c5:49:07:43:a5:4a: 0c:2e:33:bd -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv3LQVjQEgCzhgOyvWcjifYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc2ZTJiYTVjYzE1MGIzNTNjYmQzNGI5ZjA0NWVhMDUwOTc0 MDg0NGQwHhcNMjYwMTI1MjIwMTIxWhcNMjYwMTI2MjIwMTIxWjAzMTEwLwYDVQQD EyhlMGZmZDE3YzM2NTBkMDcwMmY0YjYxYTZkZjc0MjQ3YzE5ZmFmYjk0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt2fhyGapzXKJdB5E/0ACeaC2Fszw ifNbI+Ix9abq0rpgLN6MCBkymahmZylmCidsqSNxw2K/54rk4EPD5Is3KAOFpasP L7UoktnPA0zK5FZGL/H99u8EkGpQb3pf7gs/JBgzOAlcXXk9PsaZTjisFuXwnhTz CfnVjWVbxfJ/kWTc9709CfHXFTm1CyIOBpqnaLOQNCNTlMQulncIiLvVFdN+60l2 +eD95/NL1f4GnaHOcgmJz+ptI/cqrYMXX7rGgRINK+8TDTIrX4n/SMfdwHSNUViM lfZzVSFq8+F+m4SDJO0d1IUqKRj4hFUhafHHpmNuZkM9cylMObRJBlL/0wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOD/0Xw2UNBwL0thpt90JHwZ+vuUMB8GA1UdIwQY MBaAFHbiulzBULNTy9NLnwReoFCXQIRNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZHVLNlhNRlFzMVBMMDB1ZkJGNmdVSmRBaEUwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZS8zMWQyZWQtOGUyZi00ZmE5LTgzY2Et NzA0MDVlMzUyOGFmLzEvZHVLNlhNRlFzMVBMMDB1ZkJGNmdVSmRBaEUwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80ZS8zMWQyZWQtOGUyZi00ZmE5LTgzY2EtNzA0MDVlMzUyOGFm LzEvZHVLNlhNRlFzMVBMMDB1ZkJGNmdVSmRBaEUwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAckatguhX hguFrEElLAae01h/uIiChID3UKhN+8t8Iks64yNwKXfQuti1Xhh4o7QWLjNSoq+t U92SYGYGOZ61/K1ARenbRsUFX8S4VYWnsSLVQayPvoxaBISs3Sfb22R9VXLlp6ZL TFpb6kMdOuOw1qkhAx6h43SRtYjlQjihGrEkkiTAka2i1NDLlNqd75/NaskMGAmo yXAetMEPdeZsc87JT+GOw33hV1psPivQa94KusTMBoqdq9bg3wuEOFE5lyGQ9d+Z S3d4WfWz1a/fGVEq0hoZ/JVje+8c/6sv2Bjtzgoo3wvLjz8qeWItyQ4aLf+gZ0DB xUkHQ6VKDC4zvQ== -----END CERTIFICATE-----Generated at Mon Jan 26 02:21:34 2026 by rpki-client