This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/87312c-69c4-4813-b740-1c9667730534/1/1PvHTNH4egvxbEgvYgHJueskTqI.mft File: 1PvHTNH4egvxbEgvYgHJueskTqI.mft (raw, json) Hash identifier: ItAqdRQX206wmcTFnE5M4faXfK7b/weQ0oqejXsT+oY= Subject key identifier: FF:FB:81:F4:2D:E6:11:B5:64:E5:DE:24:52:27:D1:F3:8C:5D:07:84 Authority key identifier: D4:FB:C7:4C:D1:F8:7A:0B:F1:6C:48:2F:62:01:C9:B9:EB:24:4E:A2 Certificate issuer: /CN=d4fbc74cd1f87a0bf16c482f6201c9b9eb244ea2 Certificate serial: 019BF9F669D221A9AA61A19734C4A5B8ED44 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1PvHTNH4egvxbEgvYgHJueskTqI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/87312c-69c4-4813-b740-1c9667730534/1/1PvHTNH4egvxbEgvYgHJueskTqI.mft Manifest number: 17EC Signing time: Mon 26 Jan 2026 11:00:34 +0000 Manifest this update: Mon 26 Jan 2026 11:00:34 +0000 Manifest next update: Tue 27 Jan 2026 11:00:34 +0000 Files and hashes: 1: 1PvHTNH4egvxbEgvYgHJueskTqI.crl (hash: K0t9hc+EB1AANOVWXN+oDkxfeqcX9AN3vImGk+uS1JY=) 2: R3ml3p2UCbj2WZwYh-kGTkhVCeI.roa (hash: 61bHqaM6yloEoaMB3RQ50xunau9HQvm40J9/cQnFMg0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/87312c-69c4-4813-b740-1c9667730534/1/1PvHTNH4egvxbEgvYgHJueskTqI.crl rsync://rpki.ripe.net/repository/DEFAULT/5a/87312c-69c4-4813-b740-1c9667730534/1/1PvHTNH4egvxbEgvYgHJueskTqI.mft rsync://rpki.ripe.net/repository/DEFAULT/1PvHTNH4egvxbEgvYgHJueskTqI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 11:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f9:f6:69:d2:21:a9:aa:61:a1:97:34:c4:a5:b8:ed:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d4fbc74cd1f87a0bf16c482f6201c9b9eb244ea2 Validity Not Before: Jan 26 11:00:34 2026 GMT Not After : Jan 27 11:00:34 2026 GMT Subject: CN=fffb81f42de611b564e5de245227d1f38c5d0784 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:97:f9:94:7f:70:cb:a5:6a:02:dd:44:3b:79: dd:b7:97:6f:5a:f9:3d:22:0f:93:e9:91:c9:28:84: dc:f2:40:1e:56:87:53:27:2d:a5:61:b2:65:88:71: 59:6e:74:8c:48:5a:c1:dd:9f:df:dc:ff:86:89:2f: 76:f1:79:65:83:52:3e:7d:da:73:ab:f0:d6:a0:6c: 3a:67:c4:6a:52:52:6d:cd:fd:ba:4b:09:50:ca:fe: 1a:50:6f:81:df:93:87:4f:f4:6d:a1:47:83:4d:7b: 53:15:0d:12:b9:5c:97:ce:2d:86:de:d5:17:32:1c: e2:25:65:27:06:c1:64:2f:96:ac:d8:79:cc:ed:a2: 19:dc:61:14:db:c1:66:f7:39:8a:b2:08:91:9a:43: 11:99:0d:6b:cb:4c:1e:c1:dd:19:54:68:ec:92:d2: 02:29:32:92:8c:16:31:95:44:19:6a:a2:13:51:32: 05:84:46:fb:92:bd:27:05:35:a4:8d:81:41:d3:75: d5:b0:d8:b5:fd:dc:fd:63:e5:f6:aa:a7:cc:81:58: 8f:1c:b8:12:6d:81:fb:78:27:dc:c3:0a:4c:f1:63: 49:f4:3b:f1:55:f5:2a:07:09:a9:4c:dc:87:d8:e7: e6:cf:52:61:a3:a8:da:40:d4:1b:f1:9a:d4:0b:ea: 10:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:FB:81:F4:2D:E6:11:B5:64:E5:DE:24:52:27:D1:F3:8C:5D:07:84 X509v3 Authority Key Identifier: keyid:D4:FB:C7:4C:D1:F8:7A:0B:F1:6C:48:2F:62:01:C9:B9:EB:24:4E:A2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1PvHTNH4egvxbEgvYgHJueskTqI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/87312c-69c4-4813-b740-1c9667730534/1/1PvHTNH4egvxbEgvYgHJueskTqI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/87312c-69c4-4813-b740-1c9667730534/1/1PvHTNH4egvxbEgvYgHJueskTqI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4e:15:31:4a:ce:00:d4:87:0d:d2:16:cf:1c:f2:30:3c:b9:8f: 60:01:88:42:82:19:b9:72:b4:3e:9d:80:14:7f:02:14:91:3d: 4f:f9:5a:f6:99:be:1e:d8:ab:84:c0:47:df:f1:37:c8:79:80: a4:b6:92:10:a2:c4:40:e2:53:5f:e1:da:07:f9:88:ca:fe:41: 12:2d:a1:fc:e7:14:30:39:71:0c:14:a3:2a:06:0b:37:63:fd: 10:ce:7d:06:36:a6:fe:b0:5c:2b:a7:c2:eb:93:e7:b3:64:56: 88:dd:97:b5:5b:8b:89:a2:f4:36:f8:29:5e:13:21:8e:4c:2d: 53:18:d8:aa:e1:b1:dc:8f:b3:d1:3c:3c:35:8e:a8:44:e0:44: 73:2b:90:d6:b3:7e:f1:84:e3:b9:8f:c7:3a:cb:e6:e3:fd:a5: 57:88:54:91:dd:43:67:7d:a9:9a:bf:85:14:6a:b8:f8:4f:61: a4:e3:c8:6d:b1:ba:3a:e7:b6:42:39:6b:9c:36:4b:e2:25:ef: a8:10:db:e8:c2:7f:b8:c4:5d:63:2e:ff:27:06:de:3f:ec:7b: 09:db:00:5a:a0:b4:05:7c:a8:28:5e:35:84:51:3e:10:e9:fd: 84:e2:ec:7b:1c:86:97:9a:7a:b6:bd:4f:ec:ae:f8:b6:9e:38: 18:91:52:6d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv59mnSIamqYaGXNMSluO1EMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ0ZmJjNzRjZDFmODdhMGJmMTZjNDgyZjYyMDFjOWI5ZWIy NDRlYTIwHhcNMjYwMTI2MTEwMDM0WhcNMjYwMTI3MTEwMDM0WjAzMTEwLwYDVQQD EyhmZmZiODFmNDJkZTYxMWI1NjRlNWRlMjQ1MjI3ZDFmMzhjNWQwNzg0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnZf5lH9wy6VqAt1EO3ndt5dvWvk9 Ig+T6ZHJKITc8kAeVodTJy2lYbJliHFZbnSMSFrB3Z/f3P+GiS928Xllg1I+fdpz q/DWoGw6Z8RqUlJtzf26SwlQyv4aUG+B35OHT/RtoUeDTXtTFQ0SuVyXzi2G3tUX MhziJWUnBsFkL5as2HnM7aIZ3GEU28Fm9zmKsgiRmkMRmQ1ry0wewd0ZVGjsktIC KTKSjBYxlUQZaqITUTIFhEb7kr0nBTWkjYFB03XVsNi1/dz9Y+X2qqfMgViPHLgS bYH7eCfcwwpM8WNJ9DvxVfUqBwmpTNyH2Ofmz1Jho6jaQNQb8ZrUC+oQvQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFP/7gfQt5hG1ZOXeJFIn0fOMXQeEMB8GA1UdIwQY MBaAFNT7x0zR+HoL8WxIL2IBybnrJE6iMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMVB2SFROSDRlZ3Z4YkVndllnSEp1ZXNrVHFJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS84NzMxMmMtNjljNC00ODEzLWI3NDAt MWM5NjY3NzMwNTM0LzEvMVB2SFROSDRlZ3Z4YkVndllnSEp1ZXNrVHFJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81YS84NzMxMmMtNjljNC00ODEzLWI3NDAtMWM5NjY3NzMwNTM0 LzEvMVB2SFROSDRlZ3Z4YkVndllnSEp1ZXNrVHFJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAThUxSs4A 1IcN0hbPHPIwPLmPYAGIQoIZuXK0Pp2AFH8CFJE9T/la9pm+HtirhMBH3/E3yHmA pLaSEKLEQOJTX+HaB/mIyv5BEi2h/OcUMDlxDBSjKgYLN2P9EM59Bjam/rBcK6fC 65Pns2RWiN2XtVuLiaL0NvgpXhMhjkwtUxjYquGx3I+z0Tw8NY6oROBEcyuQ1rN+ 8YTjuY/HOsvm4/2lV4hUkd1DZ32pmr+FFGq4+E9hpOPIbbG6Oue2QjlrnDZL4iXv qBDb6MJ/uMRdYy7/JwbeP+x7CdsAWqC0BXyoKF41hFE+EOn9hOLsexyGl5p6tr1P 7K74tp44GJFSbQ== -----END CERTIFICATE-----Generated at Mon Jan 26 16:27:41 2026 by rpki-client