This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/dc64f4-cfba-4efd-b4ed-676bedb17473/1/0-2n3wX226CeOefUvex7rg7_urA.mft File: 0-2n3wX226CeOefUvex7rg7_urA.mft (raw, json) Hash identifier: yWcibDC4FMqwcyWf1gsD2dtXRWACm4zaw+x7JxRql34= Subject key identifier: 1B:49:7B:8E:C8:26:22:0E:07:07:BF:75:DB:C8:4E:A2:95:A8:63:32 Authority key identifier: D3:ED:A7:DF:05:F6:DB:A0:9E:39:E7:D4:BD:EC:7B:AE:0E:FF:BA:B0 Certificate issuer: /CN=d3eda7df05f6dba09e39e7d4bdec7bae0effbab0 Certificate serial: 019BF61A0C7EBBA4E479496A6CD8CC82198E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0-2n3wX226CeOefUvex7rg7_urA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/dc64f4-cfba-4efd-b4ed-676bedb17473/1/0-2n3wX226CeOefUvex7rg7_urA.mft Manifest number: 04F1 Signing time: Sun 25 Jan 2026 17:01:00 +0000 Manifest this update: Sun 25 Jan 2026 17:01:00 +0000 Manifest next update: Mon 26 Jan 2026 17:01:00 +0000 Files and hashes: 1: 0-2n3wX226CeOefUvex7rg7_urA.crl (hash: jMUgBIKMXlDF5eLh9m12DCzoa1FH2glpIwU1F9UffiU=) 2: qTWraqPBRkXUgfYW4gfB3AS-jm0.roa (hash: Rbt0ZTsq9hRwXO+cnDLn20WShDhAg5xFObZyVKiajFo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/dc64f4-cfba-4efd-b4ed-676bedb17473/1/0-2n3wX226CeOefUvex7rg7_urA.crl rsync://rpki.ripe.net/repository/DEFAULT/54/dc64f4-cfba-4efd-b4ed-676bedb17473/1/0-2n3wX226CeOefUvex7rg7_urA.mft rsync://rpki.ripe.net/repository/DEFAULT/0-2n3wX226CeOefUvex7rg7_urA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f6:1a:0c:7e:bb:a4:e4:79:49:6a:6c:d8:cc:82:19:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d3eda7df05f6dba09e39e7d4bdec7bae0effbab0 Validity Not Before: Jan 25 17:01:00 2026 GMT Not After : Jan 26 17:01:00 2026 GMT Subject: CN=1b497b8ec826220e0707bf75dbc84ea295a86332 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:f8:d0:99:0b:fe:96:00:d9:79:68:07:f4:79: b7:c6:74:2b:24:c1:db:96:a6:23:80:8f:7b:c4:16: c0:ad:83:05:a0:8e:9d:bf:80:4e:c2:48:94:71:4f: 1a:f8:a8:8c:48:e8:1a:fe:d7:87:00:c4:28:cf:28: 45:c0:62:6d:59:8a:1c:6d:b7:6d:54:c3:6d:b9:4e: 51:17:6a:ad:74:f8:ca:44:3b:b9:6a:02:10:3d:09: d4:c4:3c:07:4a:ce:57:07:7f:22:d8:bf:38:2a:cd: 0e:92:dc:ed:0f:5c:ec:fa:d5:d0:68:22:3c:d3:86: f0:56:16:4f:a9:96:c2:98:87:3d:06:f3:14:73:52: 08:bd:c9:cd:10:e3:09:69:81:1f:ed:f4:8f:90:0a: 7a:28:4a:c8:f3:20:60:06:91:52:28:0a:78:65:e8: f1:56:e1:85:ae:9c:87:39:c6:43:12:ed:4f:e1:5b: f8:d5:1d:d6:1b:3b:01:ce:b4:ba:ce:d9:00:b9:00: 77:0e:e5:13:87:0a:e8:50:51:16:0a:09:ad:85:c0: 20:c6:23:97:13:c6:c1:06:56:46:fe:fc:5b:93:59: b9:f7:01:cd:f9:e5:d7:ac:b0:6f:02:75:83:a9:40: f5:5b:4b:02:e7:7a:53:f4:f8:c2:05:fe:7e:db:10: b1:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:49:7B:8E:C8:26:22:0E:07:07:BF:75:DB:C8:4E:A2:95:A8:63:32 X509v3 Authority Key Identifier: keyid:D3:ED:A7:DF:05:F6:DB:A0:9E:39:E7:D4:BD:EC:7B:AE:0E:FF:BA:B0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0-2n3wX226CeOefUvex7rg7_urA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/dc64f4-cfba-4efd-b4ed-676bedb17473/1/0-2n3wX226CeOefUvex7rg7_urA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/54/dc64f4-cfba-4efd-b4ed-676bedb17473/1/0-2n3wX226CeOefUvex7rg7_urA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 10:c7:6b:90:d3:c0:98:d2:5f:fa:1e:7a:c8:75:4b:af:bf:f1: 3a:1f:f4:b5:7f:f4:24:90:12:5b:c0:78:78:62:a6:80:9e:52: 19:44:17:8b:c1:c9:80:40:0d:23:a5:b6:83:78:04:29:49:cf: 9c:25:a0:4c:56:6c:fa:48:d8:46:67:03:b6:89:e4:10:64:39: af:7f:79:0c:fa:61:ab:e0:63:57:f9:1d:b4:7e:d8:66:d5:8a: ee:eb:d3:45:6e:49:5d:ac:08:c0:39:ff:35:6b:a5:36:94:b7: f1:8e:87:b9:b2:34:a5:4a:ee:7f:87:0f:69:f8:05:e3:6a:ed: 68:a9:a7:b8:13:22:32:f4:c2:f9:f5:1f:40:fb:37:80:ee:f0: a4:03:63:30:8c:f5:05:83:43:5d:2a:36:3f:15:b8:e0:4f:8e: 20:e9:a5:39:7a:4e:28:ac:68:1b:a9:49:ab:d9:b9:15:ec:f5: c2:db:52:c1:f2:ce:c4:61:8e:16:d3:e4:70:f5:86:6f:14:cb: 2a:a8:29:2e:eb:48:db:f6:ea:b2:37:62:d0:09:b8:c3:74:45: 4a:a7:d0:bc:90:d9:03:45:40:96:72:1d:5a:68:46:0e:b5:d9: 43:61:50:be:ec:bd:f8:51:fc:a2:ed:54:d6:c4:ad:a2:5d:53: 59:57:94:cc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv2Ggx+u6TkeUlqbNjMghmOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQzZWRhN2RmMDVmNmRiYTA5ZTM5ZTdkNGJkZWM3YmFlMGVm ZmJhYjAwHhcNMjYwMTI1MTcwMTAwWhcNMjYwMTI2MTcwMTAwWjAzMTEwLwYDVQQD EygxYjQ5N2I4ZWM4MjYyMjBlMDcwN2JmNzVkYmM4NGVhMjk1YTg2MzMyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8PjQmQv+lgDZeWgH9Hm3xnQrJMHb lqYjgI97xBbArYMFoI6dv4BOwkiUcU8a+KiMSOga/teHAMQozyhFwGJtWYocbbdt VMNtuU5RF2qtdPjKRDu5agIQPQnUxDwHSs5XB38i2L84Ks0OktztD1zs+tXQaCI8 04bwVhZPqZbCmIc9BvMUc1IIvcnNEOMJaYEf7fSPkAp6KErI8yBgBpFSKAp4Zejx VuGFrpyHOcZDEu1P4Vv41R3WGzsBzrS6ztkAuQB3DuUThwroUFEWCgmthcAgxiOX E8bBBlZG/vxbk1m59wHN+eXXrLBvAnWDqUD1W0sC53pT9PjCBf5+2xCx/wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBtJe47IJiIOBwe/ddvITqKVqGMyMB8GA1UdIwQY MBaAFNPtp98F9tugnjnn1L3se64O/7qwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMC0ybjN3WDIyNkNlT2VmVXZleDdyZzdfdXJBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC9kYzY0ZjQtY2ZiYS00ZWZkLWI0ZWQt Njc2YmVkYjE3NDczLzEvMC0ybjN3WDIyNkNlT2VmVXZleDdyZzdfdXJBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81NC9kYzY0ZjQtY2ZiYS00ZWZkLWI0ZWQtNjc2YmVkYjE3NDcz LzEvMC0ybjN3WDIyNkNlT2VmVXZleDdyZzdfdXJBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEMdrkNPA mNJf+h56yHVLr7/xOh/0tX/0JJASW8B4eGKmgJ5SGUQXi8HJgEANI6W2g3gEKUnP nCWgTFZs+kjYRmcDtonkEGQ5r395DPphq+BjV/kdtH7YZtWK7uvTRW5JXawIwDn/ NWulNpS38Y6HubI0pUruf4cPafgF42rtaKmnuBMiMvTC+fUfQPs3gO7wpANjMIz1 BYNDXSo2PxW44E+OIOmlOXpOKKxoG6lJq9m5Fez1wttSwfLOxGGOFtPkcPWGbxTL KqgpLutI2/bqsjdi0Am4w3RFSqfQvJDZA0VAlnIdWmhGDrXZQ2FQvuy9+FH8ou1U 1sStol1TWVeUzA== -----END CERTIFICATE-----Generated at Mon Jan 26 01:33:40 2026 by rpki-client