This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/ceea91-0a2a-4a4e-917b-c6161ce395af/1/hfuFrdCfSHbqaqqI1NiMgcy2sQo.mft File: hfuFrdCfSHbqaqqI1NiMgcy2sQo.mft (raw, json) Hash identifier: m0lwkGXlgQ/JUBD2HmMsrUzbdq/vFOlyLsLTjxzRgT8= Subject key identifier: 6E:7A:2B:4F:1B:2C:AA:92:5F:3C:5F:57:4A:D2:D3:5F:39:4E:DB:9B Authority key identifier: 85:FB:85:AD:D0:9F:48:76:EA:6A:AA:88:D4:D8:8C:81:CC:B6:B1:0A Certificate issuer: /CN=85fb85add09f4876ea6aaa88d4d88c81ccb6b10a Certificate serial: 019BF4D026E259E02045C96E33E56AEED5F3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hfuFrdCfSHbqaqqI1NiMgcy2sQo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/ceea91-0a2a-4a4e-917b-c6161ce395af/1/hfuFrdCfSHbqaqqI1NiMgcy2sQo.mft Manifest number: 0A78 Signing time: Sun 25 Jan 2026 11:00:40 +0000 Manifest this update: Sun 25 Jan 2026 11:00:40 +0000 Manifest next update: Mon 26 Jan 2026 11:00:40 +0000 Files and hashes: 1: U967gx6zU2ewhEleCWFHT_7A_9o.roa (hash: rEcp4qFupVQgVYmsA8hG1Q/G6+z2CIRB0Mx5vxsYxf0=) 2: h-KmrUFQix2mPVIgPxijrxKClGw.roa (hash: fc8hHRpimWi4M001kIYlHNuSFZw5gckGt8QS97+VBbM=) 3: hfuFrdCfSHbqaqqI1NiMgcy2sQo.crl (hash: c+8bCMTXuaotND2N8RJJC71Q+yK16GVVEbcK8c0nio0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/ceea91-0a2a-4a4e-917b-c6161ce395af/1/hfuFrdCfSHbqaqqI1NiMgcy2sQo.crl rsync://rpki.ripe.net/repository/DEFAULT/58/ceea91-0a2a-4a4e-917b-c6161ce395af/1/hfuFrdCfSHbqaqqI1NiMgcy2sQo.mft rsync://rpki.ripe.net/repository/DEFAULT/hfuFrdCfSHbqaqqI1NiMgcy2sQo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f4:d0:26:e2:59:e0:20:45:c9:6e:33:e5:6a:ee:d5:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85fb85add09f4876ea6aaa88d4d88c81ccb6b10a Validity Not Before: Jan 25 11:00:40 2026 GMT Not After : Jan 26 11:00:40 2026 GMT Subject: CN=6e7a2b4f1b2caa925f3c5f574ad2d35f394edb9b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:df:00:83:3e:dd:54:17:21:fb:1c:a8:ea:bc: 83:e2:8b:65:a5:65:53:c5:56:fc:4b:ec:dc:d2:87: 51:1c:61:10:26:ee:f2:0d:61:1b:51:fb:a8:f3:fc: 4f:03:e3:7c:04:bc:3d:ea:2a:31:48:29:68:f3:e5: 76:f4:56:f0:3f:22:27:2b:71:cb:de:c4:a6:24:ab: 21:61:6b:ee:5d:df:17:62:14:98:b6:c9:5d:72:a8: da:5f:13:99:83:ec:80:51:94:c0:76:ac:aa:5c:1d: 4a:61:1d:72:84:7f:26:a4:84:aa:8b:b3:39:30:04: dd:bd:42:de:ee:9a:56:8f:c8:1d:9c:27:cc:49:d6: ac:09:c5:17:80:e2:42:f8:a3:0d:d5:e0:27:17:1e: 0d:91:37:e2:88:0a:7a:6b:16:77:1a:5f:63:db:fc: 81:08:ef:36:fe:68:25:02:69:15:5e:b1:b5:32:34: f6:74:39:94:39:6a:9e:4c:3a:41:e4:c9:7e:2c:db: c4:30:c6:61:2e:b0:75:82:ab:0f:a5:48:fa:25:87: bc:8d:c9:fc:30:fd:5e:e8:23:55:b1:51:eb:c5:d3: 34:b6:f1:75:50:d3:62:3b:2a:53:20:3a:92:e0:a0: 78:9d:ca:12:47:69:a7:43:e5:66:e7:dc:ba:70:9b: 56:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:7A:2B:4F:1B:2C:AA:92:5F:3C:5F:57:4A:D2:D3:5F:39:4E:DB:9B X509v3 Authority Key Identifier: keyid:85:FB:85:AD:D0:9F:48:76:EA:6A:AA:88:D4:D8:8C:81:CC:B6:B1:0A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hfuFrdCfSHbqaqqI1NiMgcy2sQo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/ceea91-0a2a-4a4e-917b-c6161ce395af/1/hfuFrdCfSHbqaqqI1NiMgcy2sQo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/58/ceea91-0a2a-4a4e-917b-c6161ce395af/1/hfuFrdCfSHbqaqqI1NiMgcy2sQo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption e0:03:82:9c:76:14:1f:06:04:70:ed:35:d9:e1:f1:e9:8d:db: ba:b1:6b:a5:15:61:28:69:ad:a9:d4:77:57:2e:2b:4c:c7:86: de:da:5c:2f:f3:b7:33:c5:0e:3f:67:ff:34:3c:59:44:66:0e: 09:a0:f6:f0:34:c5:a4:6e:45:29:b9:c9:cc:50:69:41:ff:80: a7:38:9d:9c:5f:05:b8:ca:b2:b2:e0:bb:24:75:27:17:11:ce: aa:85:84:f2:ea:27:fa:38:88:ce:96:c9:af:1a:7c:83:d6:cc: 84:fa:b5:0f:73:fd:46:7d:13:2d:13:ee:fa:10:15:f7:d7:ee: 81:63:01:e9:f4:fd:9d:39:71:ae:37:7b:5a:fa:af:35:dc:f7: 85:67:2c:18:09:35:a6:52:ec:e4:b8:7b:34:b4:e3:57:43:f0: 9d:42:a8:4f:ce:b6:4d:af:07:bd:64:ae:01:c8:07:95:d7:4a: 2c:e3:67:50:51:b1:bb:18:c4:b9:53:bb:a1:40:6c:7c:39:71: 0f:74:8d:b2:85:fe:23:63:49:ce:69:fa:1a:cc:c4:0d:ee:eb: bd:b1:17:96:ed:70:30:1e:17:7e:c8:ca:4e:6c:5e:47:3d:f5: 96:78:b1:a8:f6:25:94:74:f4:f0:5c:b1:86:f4:06:05:22:a8: dd:0c:92:09 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv00CbiWeAgRcluM+Vq7tXzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg1ZmI4NWFkZDA5ZjQ4NzZlYTZhYWE4OGQ0ZDg4YzgxY2Ni NmIxMGEwHhcNMjYwMTI1MTEwMDQwWhcNMjYwMTI2MTEwMDQwWjAzMTEwLwYDVQQD Eyg2ZTdhMmI0ZjFiMmNhYTkyNWYzYzVmNTc0YWQyZDM1ZjM5NGVkYjliMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArN8Agz7dVBch+xyo6ryD4otlpWVT xVb8S+zc0odRHGEQJu7yDWEbUfuo8/xPA+N8BLw96ioxSClo8+V29FbwPyInK3HL 3sSmJKshYWvuXd8XYhSYtsldcqjaXxOZg+yAUZTAdqyqXB1KYR1yhH8mpISqi7M5 MATdvULe7ppWj8gdnCfMSdasCcUXgOJC+KMN1eAnFx4NkTfiiAp6axZ3Gl9j2/yB CO82/mglAmkVXrG1MjT2dDmUOWqeTDpB5Ml+LNvEMMZhLrB1gqsPpUj6JYe8jcn8 MP1e6CNVsVHrxdM0tvF1UNNiOypTIDqS4KB4ncoSR2mnQ+Vm59y6cJtWywIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFG56K08bLKqSXzxfV0rS0185TtubMB8GA1UdIwQY MBaAFIX7ha3Qn0h26mqqiNTYjIHMtrEKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaGZ1RnJkQ2ZTSGJxYXFxSTFOaU1nY3kyc1FvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC9jZWVhOTEtMGEyYS00YTRlLTkxN2It YzYxNjFjZTM5NWFmLzEvaGZ1RnJkQ2ZTSGJxYXFxSTFOaU1nY3kyc1FvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OC9jZWVhOTEtMGEyYS00YTRlLTkxN2ItYzYxNjFjZTM5NWFm LzEvaGZ1RnJkQ2ZTSGJxYXFxSTFOaU1nY3kyc1FvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA4AOCnHYU HwYEcO012eHx6Y3burFrpRVhKGmtqdR3Vy4rTMeG3tpcL/O3M8UOP2f/NDxZRGYO CaD28DTFpG5FKbnJzFBpQf+ApzidnF8FuMqysuC7JHUnFxHOqoWE8uon+jiIzpbJ rxp8g9bMhPq1D3P9Rn0TLRPu+hAV99fugWMB6fT9nTlxrjd7WvqvNdz3hWcsGAk1 plLs5Lh7NLTjV0PwnUKoT862Ta8HvWSuAcgHlddKLONnUFGxuxjEuVO7oUBsfDlx D3SNsoX+I2NJzmn6GszEDe7rvbEXlu1wMB4XfsjKTmxeRz31lnixqPYllHT08Fyx hvQGBSKo3QySCQ== -----END CERTIFICATE-----Generated at Sun Jan 25 15:22:45 2026 by rpki-client