This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.mft File: TTaHdCvs89CAgu0S6fNHC4LafP8.mft (raw, json) Hash identifier: z2CZQgpL/wxTNz5/d/98PB6euR/2yxVoAKXIRzfZy9c= Subject key identifier: 25:AE:EC:6A:A1:5E:37:BD:DC:21:DB:46:87:53:E8:7B:40:57:A4:75 Authority key identifier: 4D:36:87:74:2B:EC:F3:D0:80:82:ED:12:E9:F3:47:0B:82:DA:7C:FF Certificate issuer: /CN=4d3687742becf3d08082ed12e9f3470b82da7cff Certificate serial: 019BF6BE8B3EBDAC096E3DE0B63664E051FB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TTaHdCvs89CAgu0S6fNHC4LafP8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.mft Manifest number: 0ECB Signing time: Sun 25 Jan 2026 20:00:41 +0000 Manifest this update: Sun 25 Jan 2026 20:00:41 +0000 Manifest next update: Mon 26 Jan 2026 20:00:41 +0000 Files and hashes: 1: DR-3C6YEtKMcL_5es4EXU7AZkNI.roa (hash: OUT6KMW2KBguWe74r4/N3KwEXWVjz7ZfPOq1uxqbzVY=) 2: TTaHdCvs89CAgu0S6fNHC4LafP8.crl (hash: K8HXOBWruE8s4aQN0pW8RriMkSLVw/308gIWaqxK7aw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.crl rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.mft rsync://rpki.ripe.net/repository/DEFAULT/TTaHdCvs89CAgu0S6fNHC4LafP8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 20:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f6:be:8b:3e:bd:ac:09:6e:3d:e0:b6:36:64:e0:51:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4d3687742becf3d08082ed12e9f3470b82da7cff Validity Not Before: Jan 25 20:00:41 2026 GMT Not After : Jan 26 20:00:41 2026 GMT Subject: CN=25aeec6aa15e37bddc21db468753e87b4057a475 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:7f:bf:b2:c4:f5:bd:e6:c6:3d:bd:52:29:a9: 1a:e2:90:81:5e:3b:fe:9d:6b:42:17:62:82:56:f2: 49:f7:8a:f8:03:fc:bf:9f:28:1f:dc:a0:79:d9:74: f3:e2:6d:b7:fe:39:f1:7c:a6:d9:9b:7b:5b:51:11: 5c:fc:7b:24:61:5f:6d:06:a2:80:7a:84:9e:4c:0b: 04:18:ae:0f:54:d6:d8:6a:0a:59:9d:8a:8f:48:ca: e2:15:03:b9:4d:51:73:c7:eb:5d:93:51:37:68:69: b4:c4:18:d3:12:a2:e8:c7:2b:0c:8d:09:33:ea:ce: 12:ed:ce:c7:87:ed:fd:63:81:96:8a:75:d5:d6:5c: aa:9b:5c:83:71:c6:5f:63:f6:77:3d:68:70:8a:51: a9:94:e5:ae:28:b6:d0:93:ea:e6:81:fc:4c:37:7c: c3:aa:68:a7:f2:1d:f1:66:55:5e:dc:1e:d1:83:c0: 7d:ca:84:56:72:25:8b:49:7c:d8:0a:d1:69:69:29: 86:cd:74:94:15:78:da:d2:dd:8f:35:b2:19:89:63: 97:e9:5e:a3:14:c2:3b:06:e8:87:9c:8b:d8:54:ae: d0:e4:7a:84:35:f9:84:b9:f7:95:fb:35:db:71:b0: db:03:23:40:4e:35:c4:50:3e:7e:f4:fc:ef:da:0a: e3:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:AE:EC:6A:A1:5E:37:BD:DC:21:DB:46:87:53:E8:7B:40:57:A4:75 X509v3 Authority Key Identifier: keyid:4D:36:87:74:2B:EC:F3:D0:80:82:ED:12:E9:F3:47:0B:82:DA:7C:FF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TTaHdCvs89CAgu0S6fNHC4LafP8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/57/d885bb-a3dc-4390-bf24-103b17d3eb45/1/TTaHdCvs89CAgu0S6fNHC4LafP8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1a:dd:23:29:60:92:2e:60:f6:08:2b:9a:32:07:73:3f:aa:21: da:50:ed:0a:00:40:ff:2e:d6:8a:a7:dd:a1:9a:c1:ea:71:9d: 8f:f4:56:e0:97:72:e1:7f:2e:ff:22:72:3c:b5:8e:d0:79:d0: 83:93:aa:a4:65:4c:8e:31:15:07:ec:e3:1a:6d:64:dc:d2:66: d7:8f:78:1c:20:fb:0c:5f:af:bf:17:4f:24:e5:3a:c4:0f:6c: 97:93:d6:9c:97:81:78:64:f3:9e:71:4a:ee:62:0c:b8:a5:c7: 78:46:09:d7:1e:7c:df:1b:50:9d:eb:30:07:6e:c9:4a:55:11: 76:02:89:3e:96:17:10:82:7a:fc:c0:33:6e:48:ff:a3:c9:4e: fb:55:3b:50:03:78:41:9e:6c:9d:45:ba:be:32:a3:33:4c:ff: 4f:24:7b:60:cf:a9:3f:0c:f2:37:95:d7:d5:14:cb:91:99:20: 18:7d:3a:31:20:b8:9b:c7:5c:9d:d3:aa:cb:d2:8a:e2:b3:e4: 9f:1e:c0:89:b5:10:42:bc:30:4b:d9:b9:a2:c5:76:b0:9f:3f: fd:0e:39:b5:7c:d9:5d:89:88:75:fb:49:03:9f:26:7a:26:21: fb:be:1d:a6:62:ee:32:e9:9f:c1:8a:9c:29:9b:04:d6:ab:c9: 3b:62:fb:e8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv2vos+vawJbj3gtjZk4FH7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRkMzY4Nzc0MmJlY2YzZDA4MDgyZWQxMmU5ZjM0NzBiODJk YTdjZmYwHhcNMjYwMTI1MjAwMDQxWhcNMjYwMTI2MjAwMDQxWjAzMTEwLwYDVQQD EygyNWFlZWM2YWExNWUzN2JkZGMyMWRiNDY4NzUzZTg3YjQwNTdhNDc1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0H+/ssT1vebGPb1SKaka4pCBXjv+ nWtCF2KCVvJJ94r4A/y/nygf3KB52XTz4m23/jnxfKbZm3tbURFc/HskYV9tBqKA eoSeTAsEGK4PVNbYagpZnYqPSMriFQO5TVFzx+tdk1E3aGm0xBjTEqLoxysMjQkz 6s4S7c7Hh+39Y4GWinXV1lyqm1yDccZfY/Z3PWhwilGplOWuKLbQk+rmgfxMN3zD qmin8h3xZlVe3B7Rg8B9yoRWciWLSXzYCtFpaSmGzXSUFXja0t2PNbIZiWOX6V6j FMI7BuiHnIvYVK7Q5HqENfmEufeV+zXbcbDbAyNATjXEUD5+9Pzv2grjZwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCWu7GqhXje93CHbRodT6HtAV6R1MB8GA1UdIwQY MBaAFE02h3Qr7PPQgILtEunzRwuC2nz/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVFRhSGRDdnM4OUNBZ3UwUzZmTkhDNExhZlA4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ny9kODg1YmItYTNkYy00MzkwLWJmMjQt MTAzYjE3ZDNlYjQ1LzEvVFRhSGRDdnM4OUNBZ3UwUzZmTkhDNExhZlA4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Ny9kODg1YmItYTNkYy00MzkwLWJmMjQtMTAzYjE3ZDNlYjQ1 LzEvVFRhSGRDdnM4OUNBZ3UwUzZmTkhDNExhZlA4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGt0jKWCS LmD2CCuaMgdzP6oh2lDtCgBA/y7WiqfdoZrB6nGdj/RW4Jdy4X8u/yJyPLWO0HnQ g5OqpGVMjjEVB+zjGm1k3NJm1494HCD7DF+vvxdPJOU6xA9sl5PWnJeBeGTznnFK 7mIMuKXHeEYJ1x583xtQneswB27JSlURdgKJPpYXEIJ6/MAzbkj/o8lO+1U7UAN4 QZ5snUW6vjKjM0z/TyR7YM+pPwzyN5XX1RTLkZkgGH06MSC4m8dcndOqy9KK4rPk nx7AibUQQrwwS9m5osV2sJ8//Q45tXzZXYmIdftJA58meiYh+74dpmLuMumfwYqc KZsE1qvJO2L76A== -----END CERTIFICATE-----Generated at Mon Jan 26 04:25:06 2026 by rpki-client