This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/d97aea-fa32-46da-851e-75a4725aa6fd/1/0pigcUzBvyWsfH8c9sKIbIxhkqM.mft File: 0pigcUzBvyWsfH8c9sKIbIxhkqM.mft (raw, json) Hash identifier: Lei3B8vVbTTo15/vReerMWN48kSwb/Dg8y0fTr3GQHA= Subject key identifier: C8:D2:C4:0D:45:D9:A1:84:86:78:32:70:95:A2:BB:99:05:F4:33:9F Authority key identifier: D2:98:A0:71:4C:C1:BF:25:AC:7C:7F:1C:F6:C2:88:6C:8C:61:92:A3 Certificate issuer: /CN=d298a0714cc1bf25ac7c7f1cf6c2886c8c6192a3 Certificate serial: 019BF6F59F921E80D18538443040FDBD16D9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0pigcUzBvyWsfH8c9sKIbIxhkqM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/d97aea-fa32-46da-851e-75a4725aa6fd/1/0pigcUzBvyWsfH8c9sKIbIxhkqM.mft Manifest number: 0564 Signing time: Sun 25 Jan 2026 21:00:50 +0000 Manifest this update: Sun 25 Jan 2026 21:00:50 +0000 Manifest next update: Mon 26 Jan 2026 21:00:50 +0000 Files and hashes: 1: 0pigcUzBvyWsfH8c9sKIbIxhkqM.crl (hash: W8Hnbn7Hwuc7IWhQgVOYhBgPIps7MXyzg24EeKiCqDY=) 2: cMXu7WrvsmC-lThLKVR5Js2GYXY.roa (hash: EpVFpanfzZyTV+MCY5Rt4j7mVt0TS3sr2EacwZSVOVc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/d97aea-fa32-46da-851e-75a4725aa6fd/1/0pigcUzBvyWsfH8c9sKIbIxhkqM.crl rsync://rpki.ripe.net/repository/DEFAULT/51/d97aea-fa32-46da-851e-75a4725aa6fd/1/0pigcUzBvyWsfH8c9sKIbIxhkqM.mft rsync://rpki.ripe.net/repository/DEFAULT/0pigcUzBvyWsfH8c9sKIbIxhkqM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 21:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f6:f5:9f:92:1e:80:d1:85:38:44:30:40:fd:bd:16:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d298a0714cc1bf25ac7c7f1cf6c2886c8c6192a3 Validity Not Before: Jan 25 21:00:50 2026 GMT Not After : Jan 26 21:00:50 2026 GMT Subject: CN=c8d2c40d45d9a1848678327095a2bb9905f4339f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:71:88:b1:36:02:1b:67:76:29:b6:91:21:70: 8e:e0:4c:db:13:c3:8f:ff:87:e2:44:7a:fa:e8:07: f7:ff:ce:85:ab:1c:d4:3a:fc:91:be:80:f1:07:b0: 02:2f:98:16:1a:4f:d6:a3:05:81:84:1c:a5:39:c6: ec:68:bf:d4:ab:e5:fa:1a:99:2f:fb:dd:d4:01:e5: 82:05:38:4e:d9:4d:ca:23:e3:4e:f0:d4:f0:82:ea: ef:b3:79:5c:f6:c4:7f:69:45:6f:12:55:77:31:ae: 16:40:70:82:f8:b7:2e:05:93:64:18:41:1b:b1:c1: 67:43:28:95:44:80:73:c4:fd:a9:b0:60:d1:76:23: 4f:95:9f:9b:c3:dc:d6:ef:7e:19:9b:56:3c:2b:5b: be:cf:d7:8c:1e:fb:79:73:cd:74:6b:99:aa:51:7e: 0a:fc:c0:d7:71:82:cb:5c:18:1b:f0:ee:f4:7b:07: a7:30:27:d0:04:97:34:41:49:91:6f:b4:e0:fd:fa: 26:45:61:8f:e1:c8:8c:27:cf:9b:09:ef:44:7e:b6: 27:d9:ff:ad:36:9e:fe:74:a0:2d:e1:9b:1d:af:66: f9:44:65:a8:94:6f:24:0c:9c:7e:c9:c9:f0:05:08: 28:41:10:ec:1c:79:64:36:60:7c:ca:6b:d9:27:59: 27:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:D2:C4:0D:45:D9:A1:84:86:78:32:70:95:A2:BB:99:05:F4:33:9F X509v3 Authority Key Identifier: keyid:D2:98:A0:71:4C:C1:BF:25:AC:7C:7F:1C:F6:C2:88:6C:8C:61:92:A3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0pigcUzBvyWsfH8c9sKIbIxhkqM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/d97aea-fa32-46da-851e-75a4725aa6fd/1/0pigcUzBvyWsfH8c9sKIbIxhkqM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/51/d97aea-fa32-46da-851e-75a4725aa6fd/1/0pigcUzBvyWsfH8c9sKIbIxhkqM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c6:e2:8b:cd:d0:68:80:a3:23:b4:97:9f:c5:d5:d3:e5:22:a4: 5b:3d:40:7e:0c:b6:a0:38:8b:b8:18:f3:a3:45:a5:f4:63:65: bb:d3:a4:b7:45:ea:5b:59:2c:62:ee:c7:76:08:4a:83:47:e6: d8:8e:9d:bd:09:24:34:9b:53:1e:e4:12:a0:2c:f4:21:37:5b: fc:c8:d1:86:b9:95:92:c6:f8:61:f0:70:9f:5e:af:d9:ca:ea: 0f:4c:dc:ae:b2:66:b4:7a:0a:5a:ab:07:bf:94:d0:91:4f:17: 1e:bd:8d:a5:57:df:23:c4:0a:e9:92:b7:b5:e6:ce:9c:a2:bc: d9:36:0e:2a:ee:0b:62:8e:00:b2:c0:53:35:4f:1b:18:0a:33: 30:79:27:77:7e:44:20:6d:1b:5b:93:3e:b6:a8:2c:38:e8:7b: 83:8d:cc:44:21:51:83:95:26:52:95:c7:e8:20:d8:b3:2c:92: 62:21:81:8c:cb:87:f3:2d:a1:57:db:32:0e:12:9b:54:ff:ca: 6c:cc:40:02:34:97:d6:10:f8:f6:47:51:55:e7:3a:b8:a7:df: ae:0a:4d:9b:a4:6c:82:2f:b7:1c:6d:45:72:51:40:fe:a0:36: 26:86:77:d0:da:68:cf:b7:75:60:92:e4:0b:df:b1:a0:1f:89: 95:77:ce:a0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv29Z+SHoDRhThEMED9vRbZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQyOThhMDcxNGNjMWJmMjVhYzdjN2YxY2Y2YzI4ODZjOGM2 MTkyYTMwHhcNMjYwMTI1MjEwMDUwWhcNMjYwMTI2MjEwMDUwWjAzMTEwLwYDVQQD EyhjOGQyYzQwZDQ1ZDlhMTg0ODY3ODMyNzA5NWEyYmI5OTA1ZjQzMzlmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2nGIsTYCG2d2KbaRIXCO4EzbE8OP /4fiRHr66Af3/86FqxzUOvyRvoDxB7ACL5gWGk/WowWBhBylOcbsaL/Uq+X6Gpkv +93UAeWCBThO2U3KI+NO8NTwgurvs3lc9sR/aUVvElV3Ma4WQHCC+LcuBZNkGEEb scFnQyiVRIBzxP2psGDRdiNPlZ+bw9zW734Zm1Y8K1u+z9eMHvt5c810a5mqUX4K /MDXcYLLXBgb8O70ewenMCfQBJc0QUmRb7Tg/fomRWGP4ciMJ8+bCe9EfrYn2f+t Np7+dKAt4Zsdr2b5RGWolG8kDJx+ycnwBQgoQRDsHHlkNmB8ymvZJ1knYQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMjSxA1F2aGEhngycJWiu5kF9DOfMB8GA1UdIwQY MBaAFNKYoHFMwb8lrHx/HPbCiGyMYZKjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMHBpZ2NVekJ2eVdzZkg4YzlzS0liSXhoa3FNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS9kOTdhZWEtZmEzMi00NmRhLTg1MWUt NzVhNDcyNWFhNmZkLzEvMHBpZ2NVekJ2eVdzZkg4YzlzS0liSXhoa3FNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81MS9kOTdhZWEtZmEzMi00NmRhLTg1MWUtNzVhNDcyNWFhNmZk LzEvMHBpZ2NVekJ2eVdzZkg4YzlzS0liSXhoa3FNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAxuKLzdBo gKMjtJefxdXT5SKkWz1Afgy2oDiLuBjzo0Wl9GNlu9Okt0XqW1ksYu7HdghKg0fm 2I6dvQkkNJtTHuQSoCz0ITdb/MjRhrmVksb4YfBwn16v2crqD0zcrrJmtHoKWqsH v5TQkU8XHr2NpVffI8QK6ZK3tebOnKK82TYOKu4LYo4AssBTNU8bGAozMHknd35E IG0bW5M+tqgsOOh7g43MRCFRg5UmUpXH6CDYsyySYiGBjMuH8y2hV9syDhKbVP/K bMxAAjSX1hD49kdRVec6uKffrgpNm6Rsgi+3HG1FclFA/qA2JoZ30Npoz7d1YJLk C9+xoB+JlXfOoA== -----END CERTIFICATE-----Generated at Mon Jan 26 07:11:59 2026 by rpki-client