This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.mft File: kwNiKzxU5F9BZvMBeY-G27pHGAw.mft (raw, json) Hash identifier: PRu7qC57Yb38bqWTZxuR9LWhEHNkKF5O7ew4+kyMTU4= Subject key identifier: 32:29:A2:AB:86:BE:C2:42:92:0B:92:C2:4D:4B:09:27:2E:56:11:A6 Authority key identifier: 93:03:62:2B:3C:54:E4:5F:41:66:F3:01:79:8F:86:DB:BA:47:18:0C Certificate issuer: /CN=9303622b3c54e45f4166f301798f86dbba47180c Certificate serial: 019BF72D3768DB6F9BCDBCEF84B177E3DCF3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kwNiKzxU5F9BZvMBeY-G27pHGAw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.mft Manifest number: 0983 Signing time: Sun 25 Jan 2026 22:01:34 +0000 Manifest this update: Sun 25 Jan 2026 22:01:34 +0000 Manifest next update: Mon 26 Jan 2026 22:01:34 +0000 Files and hashes: 1: kwNiKzxU5F9BZvMBeY-G27pHGAw.crl (hash: geFAM6+KdnvAFUld5mYfJ1xvzX+qRHKPABxdkHU00hU=) 2: oEI10F1yOzZXTlBBBvzIeX5OXog.roa (hash: QNwI0l8coi9XbWot/ryVzcBU4wEtxZkGadr7asLldw8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.crl rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.mft rsync://rpki.ripe.net/repository/DEFAULT/kwNiKzxU5F9BZvMBeY-G27pHGAw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f7:2d:37:68:db:6f:9b:cd:bc:ef:84:b1:77:e3:dc:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9303622b3c54e45f4166f301798f86dbba47180c Validity Not Before: Jan 25 22:01:34 2026 GMT Not After : Jan 26 22:01:34 2026 GMT Subject: CN=3229a2ab86bec242920b92c24d4b09272e5611a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:01:d8:99:63:52:92:63:71:23:43:35:4a:f1: d6:90:19:1f:5e:67:10:c5:40:16:62:0a:35:6d:a8: 78:88:7b:75:e1:70:b8:08:e8:54:91:19:2f:12:9c: 98:95:8f:ae:fd:ae:35:1c:51:e2:71:5c:22:d9:cb: 76:72:d9:34:8d:1e:5d:d3:bf:d8:75:34:6a:22:59: a1:6a:ba:cf:9b:68:57:43:1f:d8:b6:c5:73:5b:e2: 39:e3:76:7d:ef:d6:9d:e5:f7:fa:d3:2e:3c:64:bf: 23:6b:38:94:1e:fe:23:46:d5:bd:a7:c7:37:1b:0d: 0c:67:8c:7d:b1:43:af:b2:9c:47:42:9b:d6:7e:1f: 52:aa:6b:5f:f8:92:61:97:c6:7c:0b:de:22:ad:be: 40:84:85:4a:cc:0c:58:e5:ea:be:09:d8:37:ac:e7: 20:39:51:22:2e:c3:e0:c6:ef:17:da:73:61:ca:bc: eb:0c:93:b4:43:54:2f:2d:4e:81:d5:72:13:12:3b: 0c:a6:a9:1a:af:b4:88:18:d2:3c:3b:9f:f8:5e:8d: 4d:a3:82:85:fb:e4:1f:1b:4a:10:11:16:04:39:cd: 4e:af:8c:1b:62:b3:0a:2d:f3:94:f0:69:2e:9b:63: 3d:38:b9:f6:1e:14:6a:0c:86:eb:f1:3c:81:72:da: 2f:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:29:A2:AB:86:BE:C2:42:92:0B:92:C2:4D:4B:09:27:2E:56:11:A6 X509v3 Authority Key Identifier: keyid:93:03:62:2B:3C:54:E4:5F:41:66:F3:01:79:8F:86:DB:BA:47:18:0C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kwNiKzxU5F9BZvMBeY-G27pHGAw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 52:24:14:b9:8f:c2:84:9d:51:5e:1e:7a:ef:73:99:8a:d7:aa: 50:35:7c:0f:89:fb:09:15:f8:1a:28:d1:b9:04:7b:09:f5:6f: 80:04:60:5a:14:a0:81:5e:26:7b:1a:07:05:b1:fc:e0:1c:c8: 8f:85:4f:b8:48:31:b7:68:47:35:7f:0f:e3:e8:fd:e2:db:9a: f3:eb:37:09:16:de:d9:d9:d5:0e:eb:65:cf:3a:14:6f:bc:f4: df:cd:0c:dd:86:54:9f:4d:64:20:6f:39:0b:db:33:14:d7:a1: 50:f1:a8:f2:bf:b2:40:4b:ac:5d:88:72:ec:11:41:23:1f:d6: e5:9a:b2:33:a3:d3:3e:26:e3:15:aa:27:b0:bd:6e:c0:43:b8: 28:23:81:91:22:66:33:ac:63:10:5c:f6:3b:4d:86:69:7b:45: 76:5c:6d:87:36:dd:35:73:bc:3f:f5:ac:2d:f5:87:a7:1e:5b: 40:91:ed:b1:31:bd:46:43:4b:35:8b:6c:45:95:ca:01:af:38: 54:e0:78:a7:8f:ba:16:dd:4c:63:99:17:d2:f4:d3:f5:69:e4: 06:cc:08:84:58:99:48:29:0c:6f:76:84:54:83:57:cd:60:a5: 9d:7e:a3:8c:64:2a:99:4f:c4:5e:c4:0b:09:ce:0c:80:98:08: 5a:ac:90:94 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv3LTdo22+bzbzvhLF349zzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkzMDM2MjJiM2M1NGU0NWY0MTY2ZjMwMTc5OGY4NmRiYmE0 NzE4MGMwHhcNMjYwMTI1MjIwMTM0WhcNMjYwMTI2MjIwMTM0WjAzMTEwLwYDVQQD EygzMjI5YTJhYjg2YmVjMjQyOTIwYjkyYzI0ZDRiMDkyNzJlNTYxMWE2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqwHYmWNSkmNxI0M1SvHWkBkfXmcQ xUAWYgo1bah4iHt14XC4COhUkRkvEpyYlY+u/a41HFHicVwi2ct2ctk0jR5d07/Y dTRqIlmharrPm2hXQx/YtsVzW+I543Z979ad5ff60y48ZL8jaziUHv4jRtW9p8c3 Gw0MZ4x9sUOvspxHQpvWfh9Sqmtf+JJhl8Z8C94irb5AhIVKzAxY5eq+Cdg3rOcg OVEiLsPgxu8X2nNhyrzrDJO0Q1QvLU6B1XITEjsMpqkar7SIGNI8O5/4Xo1No4KF ++QfG0oQERYEOc1Or4wbYrMKLfOU8Gkum2M9OLn2HhRqDIbr8TyBctov7QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDIpoquGvsJCkguSwk1LCScuVhGmMB8GA1UdIwQY MBaAFJMDYis8VORfQWbzAXmPhtu6RxgMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva3dOaUt6eFU1RjlCWnZNQmVZLUcyN3BIR0F3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC8wNzdhNTAtNDViNi00YTM4LTlkYjkt OTUwYzdlNzMyNDVjLzEva3dOaUt6eFU1RjlCWnZNQmVZLUcyN3BIR0F3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81ZC8wNzdhNTAtNDViNi00YTM4LTlkYjktOTUwYzdlNzMyNDVj LzEva3dOaUt6eFU1RjlCWnZNQmVZLUcyN3BIR0F3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUiQUuY/C hJ1RXh5673OZiteqUDV8D4n7CRX4GijRuQR7CfVvgARgWhSggV4mexoHBbH84BzI j4VPuEgxt2hHNX8P4+j94tua8+s3CRbe2dnVDutlzzoUb7z0380M3YZUn01kIG85 C9szFNehUPGo8r+yQEusXYhy7BFBIx/W5ZqyM6PTPibjFaonsL1uwEO4KCOBkSJm M6xjEFz2O02GaXtFdlxthzbdNXO8P/WsLfWHpx5bQJHtsTG9RkNLNYtsRZXKAa84 VOB4p4+6Ft1MY5kX0vTT9WnkBswIhFiZSCkMb3aEVINXzWClnX6jjGQqmU/EXsQL Cc4MgJgIWqyQlA== -----END CERTIFICATE-----Generated at Mon Jan 26 07:37:41 2026 by rpki-client