This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/a54eb1-33de-401f-935a-f349284509b7/1/kpbYTmTVXsgSR2-4BvD-daCL-ys.mft File: kpbYTmTVXsgSR2-4BvD-daCL-ys.mft (raw, json) Hash identifier: 4xMaKabRx245qlwiraWIOOI0vTNm692uUajLyzlbdJQ= Subject key identifier: 58:90:D8:E0:90:E9:6F:45:3E:32:8A:48:18:CE:D9:08:07:D9:76:DB Authority key identifier: 92:96:D8:4E:64:D5:5E:C8:12:47:6F:B8:06:F0:FE:75:A0:8B:FB:2B Certificate issuer: /CN=9296d84e64d55ec812476fb806f0fe75a08bfb2b Certificate serial: 019BF6BE9D68224C261FE6A8B1FCAD8E31EB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kpbYTmTVXsgSR2-4BvD-daCL-ys.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/a54eb1-33de-401f-935a-f349284509b7/1/kpbYTmTVXsgSR2-4BvD-daCL-ys.mft Manifest number: 17EA Signing time: Sun 25 Jan 2026 20:00:45 +0000 Manifest this update: Sun 25 Jan 2026 20:00:45 +0000 Manifest next update: Mon 26 Jan 2026 20:00:45 +0000 Files and hashes: 1: WMTxNqy5dxe24um7JtSXmDnNRnM.roa (hash: TxZKxHcS8Fj+JFe1cwBosTBaRiZeeZ2HacumzoOW+L8=) 2: kpbYTmTVXsgSR2-4BvD-daCL-ys.crl (hash: 0q+HooP2SpEZIFQZ6nOCI8FYqQKI6PbF6lUJjNqKV64=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/a54eb1-33de-401f-935a-f349284509b7/1/kpbYTmTVXsgSR2-4BvD-daCL-ys.crl rsync://rpki.ripe.net/repository/DEFAULT/53/a54eb1-33de-401f-935a-f349284509b7/1/kpbYTmTVXsgSR2-4BvD-daCL-ys.mft rsync://rpki.ripe.net/repository/DEFAULT/kpbYTmTVXsgSR2-4BvD-daCL-ys.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f6:be:9d:68:22:4c:26:1f:e6:a8:b1:fc:ad:8e:31:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9296d84e64d55ec812476fb806f0fe75a08bfb2b Validity Not Before: Jan 25 20:00:45 2026 GMT Not After : Jan 26 20:00:45 2026 GMT Subject: CN=5890d8e090e96f453e328a4818ced90807d976db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:eb:09:08:07:5f:b5:4d:3a:f1:34:31:c7:6a: 15:eb:92:22:c9:da:85:78:46:ed:af:8d:54:0c:72: d2:32:8f:f2:ee:04:5e:2c:23:0c:c9:e5:d8:98:3a: 5f:1a:7e:9e:95:eb:55:74:69:b9:87:1b:a3:ad:dc: d1:e5:0f:58:cd:2a:37:9e:cf:87:2a:37:d8:dd:ec: f2:5f:98:a9:84:2f:e5:0f:85:d3:48:8b:f4:fb:f3: 31:d6:86:1e:75:05:67:cd:f3:69:aa:75:a7:ea:d8: 58:f5:98:14:dc:bb:73:75:24:8a:7f:d6:83:1f:e0: 27:e1:44:4c:e3:64:75:ca:d4:5b:0c:cf:fd:14:34: 1e:c9:da:31:90:d6:0e:54:db:c6:67:3e:46:b8:2f: cd:8a:ca:91:de:f3:4d:51:57:c8:3e:21:22:61:6d: 92:f6:59:af:4d:f6:da:10:3a:fc:a4:3f:bd:a3:dc: a2:47:45:83:f4:e4:5f:87:f6:7c:d9:ef:26:b8:35: 37:6d:7b:c6:ef:be:02:78:62:88:9b:e2:2f:fc:b8: 7b:4a:1a:56:89:ed:26:f2:e9:ba:b6:04:cd:a2:70: 19:f8:43:28:e3:46:bf:3d:2d:72:25:78:ac:d3:25: 19:a5:14:6d:dd:f7:cf:02:e6:05:57:a3:28:3c:d5: 3c:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:90:D8:E0:90:E9:6F:45:3E:32:8A:48:18:CE:D9:08:07:D9:76:DB X509v3 Authority Key Identifier: keyid:92:96:D8:4E:64:D5:5E:C8:12:47:6F:B8:06:F0:FE:75:A0:8B:FB:2B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kpbYTmTVXsgSR2-4BvD-daCL-ys.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/a54eb1-33de-401f-935a-f349284509b7/1/kpbYTmTVXsgSR2-4BvD-daCL-ys.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/53/a54eb1-33de-401f-935a-f349284509b7/1/kpbYTmTVXsgSR2-4BvD-daCL-ys.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 06:f8:19:ed:60:4c:28:73:e0:6a:6e:ae:53:c2:cd:5c:9c:66: f5:0c:ca:89:f2:fc:21:df:bc:d1:bf:59:5f:c1:df:c2:24:92: f7:b7:1f:b0:54:b5:f2:26:c9:86:cc:9b:5e:c0:6e:9a:d2:e1: f1:67:fd:b7:b2:cc:1d:6c:17:07:9e:4b:37:af:d4:b5:33:38: 8b:de:1e:f5:a4:e2:94:3e:ad:c9:bb:d9:b5:ac:47:0b:0b:63: ac:7b:60:01:0c:5c:e9:52:6e:9f:7f:23:3f:3f:c9:60:2d:08: 61:e1:d4:73:24:9c:de:71:61:21:3e:26:37:6f:5b:49:15:85: 79:c6:ea:1b:77:a5:af:f9:b9:6c:ab:5d:6c:71:eb:27:1f:f4: 53:69:43:fd:b0:61:0b:01:4f:87:7b:b7:6d:45:34:23:89:02: c2:5a:bc:14:26:ee:ea:f1:c1:c3:22:14:27:39:47:6f:cc:e8: 33:2b:a8:9b:ba:6c:94:bb:b5:b1:7f:2e:92:79:00:9e:e1:e9: 26:f3:bc:a7:57:64:57:f1:39:f5:38:3b:df:c3:8c:35:69:1c: 1d:07:19:eb:12:2c:e9:bb:a2:e4:d8:bf:c8:db:4d:ca:c4:c5: 51:e7:ea:76:ac:b1:90:52:2c:c0:4e:25:c0:5f:49:31:89:f3: 9c:50:76:c9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv2vp1oIkwmH+aosfytjjHrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkyOTZkODRlNjRkNTVlYzgxMjQ3NmZiODA2ZjBmZTc1YTA4 YmZiMmIwHhcNMjYwMTI1MjAwMDQ1WhcNMjYwMTI2MjAwMDQ1WjAzMTEwLwYDVQQD Eyg1ODkwZDhlMDkwZTk2ZjQ1M2UzMjhhNDgxOGNlZDkwODA3ZDk3NmRiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm+sJCAdftU068TQxx2oV65IiydqF eEbtr41UDHLSMo/y7gReLCMMyeXYmDpfGn6eletVdGm5hxujrdzR5Q9YzSo3ns+H KjfY3ezyX5iphC/lD4XTSIv0+/Mx1oYedQVnzfNpqnWn6thY9ZgU3LtzdSSKf9aD H+An4URM42R1ytRbDM/9FDQeydoxkNYOVNvGZz5GuC/NisqR3vNNUVfIPiEiYW2S 9lmvTfbaEDr8pD+9o9yiR0WD9ORfh/Z82e8muDU3bXvG774CeGKIm+Iv/Lh7ShpW ie0m8um6tgTNonAZ+EMo40a/PS1yJXis0yUZpRRt3ffPAuYFV6MoPNU8bwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFiQ2OCQ6W9FPjKKSBjO2QgH2XbbMB8GA1UdIwQY MBaAFJKW2E5k1V7IEkdvuAbw/nWgi/srMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva3BiWVRtVFZYc2dTUjItNEJ2RC1kYUNMLXlzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81My9hNTRlYjEtMzNkZS00MDFmLTkzNWEt ZjM0OTI4NDUwOWI3LzEva3BiWVRtVFZYc2dTUjItNEJ2RC1kYUNMLXlzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81My9hNTRlYjEtMzNkZS00MDFmLTkzNWEtZjM0OTI4NDUwOWI3 LzEva3BiWVRtVFZYc2dTUjItNEJ2RC1kYUNMLXlzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABvgZ7WBM KHPgam6uU8LNXJxm9QzKifL8Id+80b9ZX8HfwiSS97cfsFS18ibJhsybXsBumtLh 8Wf9t7LMHWwXB55LN6/UtTM4i94e9aTilD6tybvZtaxHCwtjrHtgAQxc6VJun38j Pz/JYC0IYeHUcySc3nFhIT4mN29bSRWFecbqG3elr/m5bKtdbHHrJx/0U2lD/bBh CwFPh3u3bUU0I4kCwlq8FCbu6vHBwyIUJzlHb8zoMyuom7pslLu1sX8uknkAnuHp JvO8p1dkV/E59Tg738OMNWkcHQcZ6xIs6bui5Ni/yNtNysTFUefqdqyxkFIswE4l wF9JMYnznFB2yQ== -----END CERTIFICATE-----Generated at Mon Jan 26 00:51:28 2026 by rpki-client