This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/5c06bc-8ca1-4091-9418-734fab6fec6f/1/legTEe8dNuzG0SXjbILCb5FbDfc.mft File: legTEe8dNuzG0SXjbILCb5FbDfc.mft (raw, json) Hash identifier: Ujlo8NxHQykfSBUbojEHD06JQr3HZDzvHFfoNRY9fso= Subject key identifier: 90:8C:76:6C:CF:2D:C3:A8:A8:28:F1:47:BE:46:AC:D6:0C:66:C0:8B Authority key identifier: 95:E8:13:11:EF:1D:36:EC:C6:D1:25:E3:6C:82:C2:6F:91:5B:0D:F7 Certificate issuer: /CN=95e81311ef1d36ecc6d125e36c82c26f915b0df7 Certificate serial: 019BF72D4FBBE6A1F6253FC93774EE9CA2F6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/legTEe8dNuzG0SXjbILCb5FbDfc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/5c06bc-8ca1-4091-9418-734fab6fec6f/1/legTEe8dNuzG0SXjbILCb5FbDfc.mft Manifest number: 134B Signing time: Sun 25 Jan 2026 22:01:40 +0000 Manifest this update: Sun 25 Jan 2026 22:01:40 +0000 Manifest next update: Mon 26 Jan 2026 22:01:40 +0000 Files and hashes: 1: _C6lyxoQMU5yOrfGf8iAi-Sl_ow.roa (hash: p2xyfl4wigqQ6in3fdRR4OWjfDysBXxdWoA57WsF6ho=) 2: legTEe8dNuzG0SXjbILCb5FbDfc.crl (hash: MlS04w5OBNlJq76BigSlZDBLArAYtML2M4Yimj1JGCo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/5c06bc-8ca1-4091-9418-734fab6fec6f/1/legTEe8dNuzG0SXjbILCb5FbDfc.crl rsync://rpki.ripe.net/repository/DEFAULT/58/5c06bc-8ca1-4091-9418-734fab6fec6f/1/legTEe8dNuzG0SXjbILCb5FbDfc.mft rsync://rpki.ripe.net/repository/DEFAULT/legTEe8dNuzG0SXjbILCb5FbDfc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f7:2d:4f:bb:e6:a1:f6:25:3f:c9:37:74:ee:9c:a2:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=95e81311ef1d36ecc6d125e36c82c26f915b0df7 Validity Not Before: Jan 25 22:01:40 2026 GMT Not After : Jan 26 22:01:40 2026 GMT Subject: CN=908c766ccf2dc3a8a828f147be46acd60c66c08b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:4d:0b:2b:d7:54:b3:f1:29:51:54:ee:51:5c: 69:7f:3a:cb:ba:3e:8b:4b:58:c0:1e:2f:e5:0e:72: a1:c5:c5:2a:9c:2d:18:36:79:8b:c1:f8:be:5d:c5: f7:d8:0a:25:82:7b:b2:c4:98:c0:da:aa:3d:bf:44: cd:fb:96:3f:8b:d7:58:9c:34:b1:dc:aa:df:1e:a0: f6:b1:81:79:cc:aa:4d:df:3d:80:27:42:1d:79:27: 94:fa:a7:1b:ae:5e:0d:fb:b4:1b:ea:07:71:b6:5e: 36:69:88:18:31:a5:81:04:8d:d3:59:80:6c:93:08: 5f:dc:04:58:62:19:95:98:92:1b:06:0a:2a:d1:12: 23:50:57:e4:8d:d9:c6:52:72:e1:fa:0a:7f:11:f9: c4:91:09:4b:ed:bb:f3:eb:0f:c0:e5:08:5e:4b:fb: 90:42:32:8c:69:f8:60:9f:27:08:90:78:25:be:e3: d9:70:97:be:d8:96:b9:ad:3b:00:d9:25:d5:12:26: e9:1d:e7:53:23:cc:dc:1e:7c:9e:d5:3c:a4:97:3d: ae:ee:be:f0:d9:01:f7:ec:fe:50:0c:bc:ca:b8:c5: f5:d9:0a:5a:55:1c:dc:d4:7c:38:4d:3e:d3:47:0d: 50:19:97:aa:2f:71:49:c4:75:9a:5b:a5:67:7d:f1: 85:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:8C:76:6C:CF:2D:C3:A8:A8:28:F1:47:BE:46:AC:D6:0C:66:C0:8B X509v3 Authority Key Identifier: keyid:95:E8:13:11:EF:1D:36:EC:C6:D1:25:E3:6C:82:C2:6F:91:5B:0D:F7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/legTEe8dNuzG0SXjbILCb5FbDfc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/5c06bc-8ca1-4091-9418-734fab6fec6f/1/legTEe8dNuzG0SXjbILCb5FbDfc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/58/5c06bc-8ca1-4091-9418-734fab6fec6f/1/legTEe8dNuzG0SXjbILCb5FbDfc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 42:63:da:d6:0b:56:f4:a6:6a:65:e9:ce:de:72:9e:4e:4f:f4: f4:5d:ac:13:96:7f:54:0f:ad:22:53:e9:6a:a5:60:97:28:95: a0:b0:29:37:36:7a:47:8e:41:3f:ca:a5:b5:7a:ba:f6:e8:d1: 15:4e:02:66:39:4d:94:af:a2:3a:f1:d7:83:4b:db:19:e3:4c: 51:1c:23:86:88:58:92:89:a2:85:c8:08:60:6f:2b:de:5c:0f: 53:4e:9a:cc:6f:4d:3e:73:22:bd:cf:02:e7:22:a7:a2:72:ea: 85:04:2b:c7:32:f8:96:92:4c:af:94:2b:eb:9f:2d:6e:d4:cc: 12:29:cf:64:2b:d2:b9:4f:07:49:f9:65:a9:e0:b1:00:3d:ba: 9d:fb:d0:61:e5:4a:ff:28:2d:69:3b:d9:ae:ec:07:a1:5d:65: a0:09:7b:f6:b1:e7:72:24:27:b3:90:b4:97:b3:45:50:93:01: c4:a0:d6:9d:64:9b:44:3a:8c:15:fd:40:63:1b:e8:bb:c5:e5: 54:74:6f:aa:53:0e:36:6e:91:80:d6:16:43:7e:f1:5f:e8:63: a2:1e:33:8b:69:b1:03:c7:22:cf:11:1e:69:3e:c0:83:7c:79: 6a:9a:09:3a:fb:7b:f2:0b:2d:ed:5d:32:59:18:11:d8:63:d4: 6c:07:49:21 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv3LU+75qH2JT/JN3TunKL2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk1ZTgxMzExZWYxZDM2ZWNjNmQxMjVlMzZjODJjMjZmOTE1 YjBkZjcwHhcNMjYwMTI1MjIwMTQwWhcNMjYwMTI2MjIwMTQwWjAzMTEwLwYDVQQD Eyg5MDhjNzY2Y2NmMmRjM2E4YTgyOGYxNDdiZTQ2YWNkNjBjNjZjMDhiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3E0LK9dUs/EpUVTuUVxpfzrLuj6L S1jAHi/lDnKhxcUqnC0YNnmLwfi+XcX32AolgnuyxJjA2qo9v0TN+5Y/i9dYnDSx 3KrfHqD2sYF5zKpN3z2AJ0IdeSeU+qcbrl4N+7Qb6gdxtl42aYgYMaWBBI3TWYBs kwhf3ARYYhmVmJIbBgoq0RIjUFfkjdnGUnLh+gp/EfnEkQlL7bvz6w/A5QheS/uQ QjKMafhgnycIkHglvuPZcJe+2Ja5rTsA2SXVEibpHedTI8zcHnye1Tyklz2u7r7w 2QH37P5QDLzKuMX12QpaVRzc1Hw4TT7TRw1QGZeqL3FJxHWaW6VnffGFgwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJCMdmzPLcOoqCjxR75GrNYMZsCLMB8GA1UdIwQY MBaAFJXoExHvHTbsxtEl42yCwm+RWw33MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbGVnVEVlOGROdXpHMFNYamJJTENiNUZiRGZjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC81YzA2YmMtOGNhMS00MDkxLTk0MTgt NzM0ZmFiNmZlYzZmLzEvbGVnVEVlOGROdXpHMFNYamJJTENiNUZiRGZjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OC81YzA2YmMtOGNhMS00MDkxLTk0MTgtNzM0ZmFiNmZlYzZm LzEvbGVnVEVlOGROdXpHMFNYamJJTENiNUZiRGZjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQmPa1gtW 9KZqZenO3nKeTk/09F2sE5Z/VA+tIlPpaqVglyiVoLApNzZ6R45BP8qltXq69ujR FU4CZjlNlK+iOvHXg0vbGeNMURwjhohYkomihcgIYG8r3lwPU06azG9NPnMivc8C 5yKnonLqhQQrxzL4lpJMr5Qr658tbtTMEinPZCvSuU8HSfllqeCxAD26nfvQYeVK /ygtaTvZruwHoV1loAl79rHnciQns5C0l7NFUJMBxKDWnWSbRDqMFf1AYxvou8Xl VHRvqlMONm6RgNYWQ37xX+hjoh4zi2mxA8cizxEeaT7Ag3x5apoJOvt78gst7V0y WRgR2GPUbAdJIQ== -----END CERTIFICATE-----Generated at Mon Jan 26 01:50:44 2026 by rpki-client