This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.mft File: tKfQVIK4TTu2BPCZvK-eftNGiJo.mft (raw, json) Hash identifier: +OvDEF4FaMn/pMawykoW9AwDWhtnBYvnd3hKm7Fn2fo= Subject key identifier: 53:28:3C:1C:ED:C5:0D:C2:CC:63:16:7F:CE:96:2F:F0:F3:B6:4C:E8 Authority key identifier: B4:A7:D0:54:82:B8:4D:3B:B6:04:F0:99:BC:AF:9E:7E:D3:46:88:9A Certificate issuer: /CN=b4a7d05482b84d3bb604f099bcaf9e7ed346889a Certificate serial: 019BF61A09397CE7D82BD17E201D9E27919B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tKfQVIK4TTu2BPCZvK-eftNGiJo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.mft Manifest number: 17E6 Signing time: Sun 25 Jan 2026 17:00:59 +0000 Manifest this update: Sun 25 Jan 2026 17:00:59 +0000 Manifest next update: Mon 26 Jan 2026 17:00:59 +0000 Files and hashes: 1: awToJLBsyk0T4IcWFD08IQBrMn8.roa (hash: D6jszyrJ34yNygrEuO9QJPaleqlFTsrRTxhepr3reTI=) 2: tKfQVIK4TTu2BPCZvK-eftNGiJo.crl (hash: uaD8+sYonBa41EBG6Z0bAuysZe7UTcfS2t08gXPqg68=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.crl rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.mft rsync://rpki.ripe.net/repository/DEFAULT/tKfQVIK4TTu2BPCZvK-eftNGiJo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f6:1a:09:39:7c:e7:d8:2b:d1:7e:20:1d:9e:27:91:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b4a7d05482b84d3bb604f099bcaf9e7ed346889a Validity Not Before: Jan 25 17:00:59 2026 GMT Not After : Jan 26 17:00:59 2026 GMT Subject: CN=53283c1cedc50dc2cc63167fce962ff0f3b64ce8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:16:a8:42:6d:1d:e5:42:2b:e0:57:31:70:73: e2:00:c6:93:7d:f3:0b:eb:23:7e:db:d7:4e:6e:5a: 46:fe:3a:71:63:b4:9d:28:96:e4:68:3d:d7:30:e1: 33:36:7c:57:d3:26:c2:28:47:36:82:62:ab:7f:ac: 30:e9:96:e6:29:ab:75:5d:6c:d8:47:f5:87:58:bf: fc:96:80:50:84:c3:71:39:94:e6:40:b9:05:67:c8: 8a:08:c7:f8:2b:24:22:a5:2b:b7:17:07:88:26:03: 2e:c7:e4:47:b2:39:1e:8d:7a:4c:8e:4c:11:4d:0c: 94:28:23:ee:0c:ce:63:b5:9e:e0:37:60:de:05:46: 69:51:be:1f:cf:e5:72:49:fa:39:8f:bb:88:2d:74: a5:4d:c8:ef:ed:2c:3d:e1:48:d7:52:1c:60:d5:ef: c3:31:a2:4e:62:54:35:63:a2:07:9c:64:7e:4b:7e: bc:8f:a0:24:ed:4b:dc:ab:86:33:22:ed:d9:a4:fd: b8:de:17:0a:5b:6b:3a:4e:98:d8:6b:2b:1d:43:f7: e9:62:0e:c5:d4:ae:7e:66:8a:60:1d:d2:0c:ac:76: 1c:41:c4:ff:39:72:32:f3:ab:0c:f6:cc:39:3c:eb: 3e:fe:da:ce:2f:87:eb:5f:96:9a:a0:27:1f:1e:a7: 4c:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:28:3C:1C:ED:C5:0D:C2:CC:63:16:7F:CE:96:2F:F0:F3:B6:4C:E8 X509v3 Authority Key Identifier: keyid:B4:A7:D0:54:82:B8:4D:3B:B6:04:F0:99:BC:AF:9E:7E:D3:46:88:9A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tKfQVIK4TTu2BPCZvK-eftNGiJo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/64/9dd8ae-4afc-44c1-9bd0-c532195eef49/1/tKfQVIK4TTu2BPCZvK-eftNGiJo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5f:4b:0c:fe:34:e9:02:0c:14:a0:19:72:1c:13:c8:4e:b0:7e: f1:15:6b:14:4d:a4:fe:c3:16:c2:72:aa:41:f5:d3:08:18:1b: 84:e3:bd:d3:2e:d8:76:c0:a3:6e:40:68:78:10:34:0e:44:0a: ef:32:f9:d9:f2:2b:d4:5d:a7:f5:5a:6f:13:60:79:3d:ad:a8: 91:d6:f3:4d:ad:a2:c0:2e:81:b2:cc:18:dd:cd:b9:a2:e2:69: cd:c3:21:17:55:a4:d2:2b:65:8f:ab:2f:c0:29:7d:5f:cc:48: c8:b6:da:c5:ae:18:73:18:bc:66:9f:2f:c1:b2:2f:e2:eb:5e: 75:e1:cc:e9:87:1f:01:95:5e:70:3c:e3:20:07:60:51:0c:24: 45:9a:a3:45:83:f4:2b:5c:4b:27:65:03:c4:5d:3a:d5:c4:5f: c1:4d:07:21:cb:fd:ee:e3:72:5e:3f:1b:0b:50:68:fe:df:58: bf:e9:47:1d:f1:45:ae:2d:da:fc:91:d7:6e:82:f1:bd:87:92: 6b:8b:be:c0:9a:5d:d4:30:a1:76:eb:46:0f:3d:12:e1:4b:39: 92:2c:f9:97:ca:94:f0:9d:a3:dd:c4:1b:7a:5a:41:5e:e8:4f: e3:dd:1a:6b:dc:b4:90:77:e8:cf:fd:81:34:39:17:d8:b5:88: 7f:00:ed:3c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv2Ggk5fOfYK9F+IB2eJ5GbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI0YTdkMDU0ODJiODRkM2JiNjA0ZjA5OWJjYWY5ZTdlZDM0 Njg4OWEwHhcNMjYwMTI1MTcwMDU5WhcNMjYwMTI2MTcwMDU5WjAzMTEwLwYDVQQD Eyg1MzI4M2MxY2VkYzUwZGMyY2M2MzE2N2ZjZTk2MmZmMGYzYjY0Y2U4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqBaoQm0d5UIr4FcxcHPiAMaTffML 6yN+29dOblpG/jpxY7SdKJbkaD3XMOEzNnxX0ybCKEc2gmKrf6ww6ZbmKat1XWzY R/WHWL/8loBQhMNxOZTmQLkFZ8iKCMf4KyQipSu3FweIJgMux+RHsjkejXpMjkwR TQyUKCPuDM5jtZ7gN2DeBUZpUb4fz+VySfo5j7uILXSlTcjv7Sw94UjXUhxg1e/D MaJOYlQ1Y6IHnGR+S368j6Ak7Uvcq4YzIu3ZpP243hcKW2s6TpjYaysdQ/fpYg7F 1K5+ZopgHdIMrHYcQcT/OXIy86sM9sw5POs+/trOL4frX5aaoCcfHqdMyQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFMoPBztxQ3CzGMWf86WL/DztkzoMB8GA1UdIwQY MBaAFLSn0FSCuE07tgTwmbyvnn7TRoiaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdEtmUVZJSzRUVHUyQlBDWnZLLWVmdE5HaUpvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC85ZGQ4YWUtNGFmYy00NGMxLTliZDAt YzUzMjE5NWVlZjQ5LzEvdEtmUVZJSzRUVHUyQlBDWnZLLWVmdE5HaUpvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NC85ZGQ4YWUtNGFmYy00NGMxLTliZDAtYzUzMjE5NWVlZjQ5 LzEvdEtmUVZJSzRUVHUyQlBDWnZLLWVmdE5HaUpvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAX0sM/jTp AgwUoBlyHBPITrB+8RVrFE2k/sMWwnKqQfXTCBgbhOO90y7YdsCjbkBoeBA0DkQK 7zL52fIr1F2n9VpvE2B5Pa2okdbzTa2iwC6BsswY3c25ouJpzcMhF1Wk0itlj6sv wCl9X8xIyLbaxa4Ycxi8Zp8vwbIv4utedeHM6YcfAZVecDzjIAdgUQwkRZqjRYP0 K1xLJ2UDxF061cRfwU0HIcv97uNyXj8bC1Bo/t9Yv+lHHfFFri3a/JHXboLxvYeS a4u+wJpd1DChdutGDz0S4Us5kiz5l8qU8J2j3cQbelpBXuhP490aa9y0kHfoz/2B NDkX2LWIfwDtPA== -----END CERTIFICATE-----Generated at Sun Jan 25 23:54:35 2026 by rpki-client