This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/4bd70c-094a-43d0-adda-04fbd681896a/1/8bmuyqN97cDywE9RvJY_zS5KrMw.mft File: 8bmuyqN97cDywE9RvJY_zS5KrMw.mft (raw, json) Hash identifier: PjYIamwmZtMyQW9AX4Eka+7g9pBP/vWtDSAVYlCfgr0= Subject key identifier: EF:FC:E5:50:79:26:24:ED:58:D4:E8:D3:B2:10:AF:E4:3A:A0:F0:DF Authority key identifier: F1:B9:AE:CA:A3:7D:ED:C0:F2:C0:4F:51:BC:96:3F:CD:2E:4A:AC:CC Certificate issuer: /CN=f1b9aecaa37dedc0f2c04f51bc963fcd2e4aaccc Certificate serial: 019BF8ADD7C069FC153584021D03C49E17E1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8bmuyqN97cDywE9RvJY_zS5KrMw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/4bd70c-094a-43d0-adda-04fbd681896a/1/8bmuyqN97cDywE9RvJY_zS5KrMw.mft Manifest number: 05EB Signing time: Mon 26 Jan 2026 05:01:41 +0000 Manifest this update: Mon 26 Jan 2026 05:01:41 +0000 Manifest next update: Tue 27 Jan 2026 05:01:41 +0000 Files and hashes: 1: 1-4VgmB7x2kPxjVo8rWB5bdGpwJg.roa (hash: tYA4HwMckxXKaEemAAzTny37cSzdXzplQtmU/0PMdkU=) 2: 8bmuyqN97cDywE9RvJY_zS5KrMw.crl (hash: ZRmCRJDzPmv1Rz7uhUQt54Wk+GYiJ6Mg4475Cd2Yjbs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/4bd70c-094a-43d0-adda-04fbd681896a/1/8bmuyqN97cDywE9RvJY_zS5KrMw.crl rsync://rpki.ripe.net/repository/DEFAULT/68/4bd70c-094a-43d0-adda-04fbd681896a/1/8bmuyqN97cDywE9RvJY_zS5KrMw.mft rsync://rpki.ripe.net/repository/DEFAULT/8bmuyqN97cDywE9RvJY_zS5KrMw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f8:ad:d7:c0:69:fc:15:35:84:02:1d:03:c4:9e:17:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f1b9aecaa37dedc0f2c04f51bc963fcd2e4aaccc Validity Not Before: Jan 26 05:01:41 2026 GMT Not After : Jan 27 05:01:41 2026 GMT Subject: CN=effce550792624ed58d4e8d3b210afe43aa0f0df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:85:0b:33:30:e2:17:47:35:bd:1c:c1:25:35: e1:fd:5b:a8:d4:44:6f:81:e4:69:62:33:c3:80:42: bb:e8:ad:00:53:df:c8:cc:8e:14:30:80:50:51:83: 49:fb:77:e0:6e:a0:e4:61:ca:44:d6:8b:e4:4e:78: 7c:f0:83:e9:20:44:38:0c:2a:f6:3e:95:52:bb:90: c2:55:c8:55:61:58:cd:44:d5:8b:d6:81:32:b3:0d: 0b:cd:7c:d5:db:7f:21:4c:42:ee:f5:87:4b:f5:dd: 84:f3:5e:70:11:ad:af:74:ff:9f:b2:76:1a:f0:fc: 3a:88:96:bc:60:a8:c5:ed:7e:a6:0e:f7:84:83:e0: 85:e9:e8:cc:76:24:b7:6a:bb:c7:06:38:c8:c8:af: 2b:03:88:e4:51:0e:1b:9a:85:cf:0a:a4:7d:d6:f9: b2:d9:40:bd:a0:2f:58:9d:ea:6e:1f:bb:0b:32:f5: 84:a7:49:0e:bb:3c:35:f3:5f:fd:be:4b:b2:bf:ac: 82:03:9d:9a:02:0c:c9:c5:4c:23:50:3f:47:af:ef: d3:70:59:d5:27:5c:d5:0c:57:84:47:83:94:de:6f: 0d:de:d9:2a:f5:26:9f:a7:44:02:4b:2a:bf:56:51: d0:fe:75:0a:fd:07:8c:36:8e:44:66:ae:a3:f2:e0: b0:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:FC:E5:50:79:26:24:ED:58:D4:E8:D3:B2:10:AF:E4:3A:A0:F0:DF X509v3 Authority Key Identifier: keyid:F1:B9:AE:CA:A3:7D:ED:C0:F2:C0:4F:51:BC:96:3F:CD:2E:4A:AC:CC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8bmuyqN97cDywE9RvJY_zS5KrMw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/4bd70c-094a-43d0-adda-04fbd681896a/1/8bmuyqN97cDywE9RvJY_zS5KrMw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/68/4bd70c-094a-43d0-adda-04fbd681896a/1/8bmuyqN97cDywE9RvJY_zS5KrMw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1c:0e:db:da:5d:fa:64:09:e6:00:90:5f:8c:9d:57:64:82:22: f9:ca:55:43:b2:81:41:65:90:ae:b1:92:a1:da:de:ce:e5:13: 2c:1c:fb:a9:66:77:32:6a:e4:ee:66:31:26:04:ab:63:ef:78: b0:45:16:6a:4c:d8:cd:f1:b0:1d:25:73:17:c8:17:47:88:17: 3b:e7:77:4c:aa:01:e6:38:e8:cf:18:68:98:e4:17:02:b8:fe: 2f:31:d6:6d:bf:4a:e1:f4:22:25:36:93:56:69:2e:c4:ad:7d: 63:cb:18:71:a2:cc:af:81:c3:f1:25:9a:b6:1a:5a:af:20:ec: 7c:d5:c7:6e:e2:53:f6:39:c2:a4:70:e5:7f:ff:98:e0:24:c9: 75:63:42:ac:d5:5c:ac:ce:33:c8:a5:d8:a8:c1:72:80:97:c9: 73:8e:6d:a2:32:75:ac:3f:36:40:09:8e:e3:14:01:a9:f7:3f: 71:e9:5b:e2:61:58:91:52:9d:e4:a1:b1:b0:c5:27:24:d3:60: 8e:41:82:71:ff:ac:50:2e:03:9e:f2:5a:52:39:a5:c6:be:1e: 99:a5:1f:d7:24:4c:67:48:3e:28:d0:e0:3d:c6:ff:84:68:3e: 25:f2:db:dc:fe:66:3d:46:f4:39:2f:66:54:4a:49:78:06:97: 0a:80:86:c6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv4rdfAafwVNYQCHQPEnhfhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYxYjlhZWNhYTM3ZGVkYzBmMmMwNGY1MWJjOTYzZmNkMmU0 YWFjY2MwHhcNMjYwMTI2MDUwMTQxWhcNMjYwMTI3MDUwMTQxWjAzMTEwLwYDVQQD EyhlZmZjZTU1MDc5MjYyNGVkNThkNGU4ZDNiMjEwYWZlNDNhYTBmMGRmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+oULMzDiF0c1vRzBJTXh/Vuo1ERv geRpYjPDgEK76K0AU9/IzI4UMIBQUYNJ+3fgbqDkYcpE1ovkTnh88IPpIEQ4DCr2 PpVSu5DCVchVYVjNRNWL1oEysw0LzXzV238hTELu9YdL9d2E815wEa2vdP+fsnYa 8Pw6iJa8YKjF7X6mDveEg+CF6ejMdiS3arvHBjjIyK8rA4jkUQ4bmoXPCqR91vmy 2UC9oC9YnepuH7sLMvWEp0kOuzw181/9vkuyv6yCA52aAgzJxUwjUD9Hr+/TcFnV J1zVDFeER4OU3m8N3tkq9Safp0QCSyq/VlHQ/nUK/QeMNo5EZq6j8uCwzQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFO/85VB5JiTtWNTo07IQr+Q6oPDfMB8GA1UdIwQY MBaAFPG5rsqjfe3A8sBPUbyWP80uSqzMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOGJtdXlxTjk3Y0R5d0U5UnZKWV96UzVLck13LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OC80YmQ3MGMtMDk0YS00M2QwLWFkZGEt MDRmYmQ2ODE4OTZhLzEvOGJtdXlxTjk3Y0R5d0U5UnZKWV96UzVLck13Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82OC80YmQ3MGMtMDk0YS00M2QwLWFkZGEtMDRmYmQ2ODE4OTZh LzEvOGJtdXlxTjk3Y0R5d0U5UnZKWV96UzVLck13LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHA7b2l36 ZAnmAJBfjJ1XZIIi+cpVQ7KBQWWQrrGSodrezuUTLBz7qWZ3Mmrk7mYxJgSrY+94 sEUWakzYzfGwHSVzF8gXR4gXO+d3TKoB5jjozxhomOQXArj+LzHWbb9K4fQiJTaT VmkuxK19Y8sYcaLMr4HD8SWathparyDsfNXHbuJT9jnCpHDlf/+Y4CTJdWNCrNVc rM4zyKXYqMFygJfJc45tojJ1rD82QAmO4xQBqfc/celb4mFYkVKd5KGxsMUnJNNg jkGCcf+sUC4DnvJaUjmlxr4emaUf1yRMZ0g+KNDgPcb/hGg+JfLb3P5mPUb0OS9m VEpJeAaXCoCGxg== -----END CERTIFICATE-----Generated at Mon Jan 26 10:58:03 2026 by rpki-client