This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/245873-1ca7-4b71-b220-edb0418cac4d/1/39D7xN6B7icnq6PpEK_NKlOmZAw.mft File: 39D7xN6B7icnq6PpEK_NKlOmZAw.mft (raw, json) Hash identifier: Kf7qsJmIxOyiX0o+HYRD+CNd5HUHE2N05RWtY3HsZnY= Subject key identifier: 3A:D3:E3:8C:71:60:3E:54:09:29:B8:E4:0F:E1:E1:89:99:20:42:8F Authority key identifier: DF:D0:FB:C4:DE:81:EE:27:27:AB:A3:E9:10:AF:CD:2A:53:A6:64:0C Certificate issuer: /CN=dfd0fbc4de81ee2727aba3e910afcd2a53a6640c Certificate serial: 019BF4CFFF407D8BD30330011A14F8C6BDEB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/39D7xN6B7icnq6PpEK_NKlOmZAw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/245873-1ca7-4b71-b220-edb0418cac4d/1/39D7xN6B7icnq6PpEK_NKlOmZAw.mft Manifest number: E7 Signing time: Sun 25 Jan 2026 11:00:30 +0000 Manifest this update: Sun 25 Jan 2026 11:00:30 +0000 Manifest next update: Mon 26 Jan 2026 11:00:30 +0000 Files and hashes: 1: 39D7xN6B7icnq6PpEK_NKlOmZAw.crl (hash: f3galsMms4HQ+Ddv8xyVS426WgUQaVTDV4Y9xDr/QUU=) 2: G1iJHYXZZbAs4A1MhgUftxUGaws.roa (hash: 7QifEDFoU7RkmJKkZqgcMn81wo0EKV/iY/tFPszpQk0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/245873-1ca7-4b71-b220-edb0418cac4d/1/39D7xN6B7icnq6PpEK_NKlOmZAw.crl rsync://rpki.ripe.net/repository/DEFAULT/5a/245873-1ca7-4b71-b220-edb0418cac4d/1/39D7xN6B7icnq6PpEK_NKlOmZAw.mft rsync://rpki.ripe.net/repository/DEFAULT/39D7xN6B7icnq6PpEK_NKlOmZAw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f4:cf:ff:40:7d:8b:d3:03:30:01:1a:14:f8:c6:bd:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dfd0fbc4de81ee2727aba3e910afcd2a53a6640c Validity Not Before: Jan 25 11:00:30 2026 GMT Not After : Jan 26 11:00:30 2026 GMT Subject: CN=3ad3e38c71603e540929b8e40fe1e1899920428f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:8b:d2:46:32:57:c7:ce:21:d0:42:d9:3e:d5: 63:9b:8b:f9:83:67:39:98:8c:d6:fc:5a:cd:d6:c2: 07:26:12:83:56:c4:ca:b2:3e:9a:40:05:c3:d8:3c: 54:e8:64:94:6d:35:44:c5:c6:7b:ef:5b:bd:7c:fe: a3:e1:7d:52:b4:06:d5:90:32:51:96:27:3a:4e:31: 13:81:c2:9d:30:20:7f:b8:c9:f1:5d:55:00:e2:38: 76:6d:7f:99:1e:b8:13:e4:35:46:16:f6:30:3a:11: 88:54:b0:6e:78:6d:0f:89:32:b0:bc:a6:04:d3:0e: 09:a2:9c:0c:33:d4:11:c0:7d:8c:28:e4:6e:0a:de: 6d:02:0e:ca:50:8b:84:f4:53:07:ff:b0:11:5e:20: 44:6a:2a:c9:2f:5e:c5:6f:e7:b6:24:17:81:b7:79: c1:7b:d1:ee:7e:f2:4b:e2:56:89:34:bd:ad:e0:6a: 5f:7c:93:f1:19:cb:fc:23:99:76:29:6a:a8:6b:1c: b8:6c:e3:80:86:a9:d5:38:a3:72:d6:c3:67:59:24: 9c:68:7b:62:21:16:38:01:a8:a0:b0:d9:2f:40:01: cb:3a:64:32:cd:d4:8a:1c:7f:f3:68:e8:2f:e5:c6: 0a:3a:21:0b:21:37:af:2d:66:e3:09:0c:1a:2d:07: 8a:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:D3:E3:8C:71:60:3E:54:09:29:B8:E4:0F:E1:E1:89:99:20:42:8F X509v3 Authority Key Identifier: keyid:DF:D0:FB:C4:DE:81:EE:27:27:AB:A3:E9:10:AF:CD:2A:53:A6:64:0C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/39D7xN6B7icnq6PpEK_NKlOmZAw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/245873-1ca7-4b71-b220-edb0418cac4d/1/39D7xN6B7icnq6PpEK_NKlOmZAw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/245873-1ca7-4b71-b220-edb0418cac4d/1/39D7xN6B7icnq6PpEK_NKlOmZAw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 45:ea:7e:77:b3:ea:51:c7:8f:2a:57:31:a7:3d:05:e2:1f:01: d2:51:56:37:fa:45:39:47:ee:14:84:cf:18:6a:9b:5d:64:72: 22:a3:8a:a6:18:7c:bd:6e:a8:bd:8a:07:b4:7c:4d:9f:24:47: 13:c0:eb:ef:57:c2:1a:28:42:8d:5e:cc:c7:fe:e9:59:04:99: fe:25:fc:4d:58:b3:02:22:c8:9a:7f:df:92:29:4f:db:8c:f0: 19:79:5f:91:79:0c:01:22:22:58:b5:fd:1f:ce:4a:ca:ea:09: 4f:8d:93:0a:3e:5a:a4:96:70:c5:32:49:85:4b:a6:0a:cf:00: 14:f0:97:aa:c9:fb:ce:76:ad:44:db:f3:3f:0f:c2:c1:73:a8: ec:74:23:3e:02:30:54:48:d4:1f:7b:39:7a:4f:c0:7d:ca:7c: 97:ed:3a:71:13:77:96:2b:fc:6d:ef:87:3e:c5:e1:f1:21:34: 33:25:1b:da:8c:78:03:75:86:28:d8:44:c8:b9:aa:34:d7:6f: f1:e4:f2:5f:4c:4d:41:9f:21:3b:68:24:15:a7:62:0d:d7:ee: 02:e6:da:68:fa:41:fe:94:86:7a:f6:8a:60:9d:a4:34:6d:08: ef:b5:8c:85:1e:b8:0d:57:b7:0d:f7:6e:19:f1:b1:d1:d5:86: 70:80:83:b5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv0z/9AfYvTAzABGhT4xr3rMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRmZDBmYmM0ZGU4MWVlMjcyN2FiYTNlOTEwYWZjZDJhNTNh NjY0MGMwHhcNMjYwMTI1MTEwMDMwWhcNMjYwMTI2MTEwMDMwWjAzMTEwLwYDVQQD EygzYWQzZTM4YzcxNjAzZTU0MDkyOWI4ZTQwZmUxZTE4OTk5MjA0MjhmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzIvSRjJXx84h0ELZPtVjm4v5g2c5 mIzW/FrN1sIHJhKDVsTKsj6aQAXD2DxU6GSUbTVExcZ771u9fP6j4X1StAbVkDJR lic6TjETgcKdMCB/uMnxXVUA4jh2bX+ZHrgT5DVGFvYwOhGIVLBueG0PiTKwvKYE 0w4JopwMM9QRwH2MKORuCt5tAg7KUIuE9FMH/7ARXiBEairJL17Fb+e2JBeBt3nB e9HufvJL4laJNL2t4GpffJPxGcv8I5l2KWqoaxy4bOOAhqnVOKNy1sNnWSScaHti IRY4AaigsNkvQAHLOmQyzdSKHH/zaOgv5cYKOiELITevLWbjCQwaLQeKLQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDrT44xxYD5UCSm45A/h4YmZIEKPMB8GA1UdIwQY MBaAFN/Q+8Tege4nJ6uj6RCvzSpTpmQMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMzlEN3hONkI3aWNucTZQcEVLX05LbE9tWkF3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS8yNDU4NzMtMWNhNy00YjcxLWIyMjAt ZWRiMDQxOGNhYzRkLzEvMzlEN3hONkI3aWNucTZQcEVLX05LbE9tWkF3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81YS8yNDU4NzMtMWNhNy00YjcxLWIyMjAtZWRiMDQxOGNhYzRk LzEvMzlEN3hONkI3aWNucTZQcEVLX05LbE9tWkF3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARep+d7Pq UcePKlcxpz0F4h8B0lFWN/pFOUfuFITPGGqbXWRyIqOKphh8vW6ovYoHtHxNnyRH E8Dr71fCGihCjV7Mx/7pWQSZ/iX8TVizAiLImn/fkilP24zwGXlfkXkMASIiWLX9 H85KyuoJT42TCj5apJZwxTJJhUumCs8AFPCXqsn7znatRNvzPw/CwXOo7HQjPgIw VEjUH3s5ek/Afcp8l+06cRN3liv8be+HPsXh8SE0MyUb2ox4A3WGKNhEyLmqNNdv 8eTyX0xNQZ8hO2gkFadiDdfuAubaaPpB/pSGevaKYJ2kNG0I77WMhR64DVe3Dfdu GfGx0dWGcICDtQ== -----END CERTIFICATE-----Generated at Sun Jan 25 15:22:48 2026 by rpki-client