This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.mft File: ukQzhlmFp7teJpw3lK5vFkz8Lds.mft (raw, json) Hash identifier: +/k/D7TXTWBwP+U5IJcy6TtaeKJt5YLCD4swWBvuV3Q= Subject key identifier: D9:03:23:F5:B0:E1:E3:5A:5D:B3:31:4B:91:A2:6D:79:FF:0B:2C:5A Authority key identifier: BA:44:33:86:59:85:A7:BB:5E:26:9C:37:94:AE:6F:16:4C:FC:2D:DB Certificate issuer: /CN=ba4433865985a7bb5e269c3794ae6f164cfc2ddb Certificate serial: 019BF650EA1419315A84A71725F488B16D86 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ukQzhlmFp7teJpw3lK5vFkz8Lds.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.mft Manifest number: 07C8 Signing time: Sun 25 Jan 2026 18:00:56 +0000 Manifest this update: Sun 25 Jan 2026 18:00:56 +0000 Manifest next update: Mon 26 Jan 2026 18:00:56 +0000 Files and hashes: 1: UfxnZEwkQdyHN4gibAtk_ce1zeI.roa (hash: Bl9GgITeZ3znWiaIE2fwC3TQwsJfWdhy5zENaMdMELI=) 2: ukQzhlmFp7teJpw3lK5vFkz8Lds.crl (hash: 0RO97sXPmFioPdnWzP8BRLm69lHwAxw8MzUNfh9ypdk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.crl rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.mft rsync://rpki.ripe.net/repository/DEFAULT/ukQzhlmFp7teJpw3lK5vFkz8Lds.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 18:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f6:50:ea:14:19:31:5a:84:a7:17:25:f4:88:b1:6d:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ba4433865985a7bb5e269c3794ae6f164cfc2ddb Validity Not Before: Jan 25 18:00:56 2026 GMT Not After : Jan 26 18:00:56 2026 GMT Subject: CN=d90323f5b0e1e35a5db3314b91a26d79ff0b2c5a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:ce:bf:6b:d1:b7:25:07:a8:c4:cb:60:e5:de: e9:c7:38:fc:f1:57:d9:92:a0:e2:22:54:80:6f:23: b0:84:a8:1e:29:36:46:04:c1:40:ba:9c:00:68:3b: 66:54:cf:48:6a:f7:36:d9:46:a1:50:fa:81:dd:5e: 87:02:d9:bf:82:11:c7:9e:05:41:0d:91:bc:c0:e6: d7:b0:83:ed:d7:6e:93:39:b0:71:03:c9:a3:17:92: b7:a7:0e:39:ff:ed:9c:34:04:fd:5e:12:fc:6a:95: 4a:63:ec:81:15:4b:e3:15:0c:42:c6:c2:06:98:9e: 61:31:34:47:f3:dc:75:16:a8:b8:ee:de:1f:93:96: a6:46:7e:52:d7:a0:61:c7:37:cd:76:bc:bc:9d:1a: b2:f4:61:22:fc:2b:c0:75:eb:64:17:88:db:52:a1: 32:73:bb:8e:f5:cf:20:bf:ba:f2:f2:e1:50:f5:b1: b0:6b:d1:ba:1b:c5:d9:76:3b:be:8c:dd:21:1e:7d: a3:79:6e:98:79:64:89:69:96:77:32:4d:fe:7c:7d: 63:85:19:e9:41:75:f6:7c:eb:e2:b6:96:9c:8a:ef: 46:c4:21:ab:34:34:66:c8:fc:18:1e:6b:f7:7a:f2: f6:54:ba:b4:7f:75:83:fc:98:4c:68:a3:18:d9:44: 50:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:03:23:F5:B0:E1:E3:5A:5D:B3:31:4B:91:A2:6D:79:FF:0B:2C:5A X509v3 Authority Key Identifier: keyid:BA:44:33:86:59:85:A7:BB:5E:26:9C:37:94:AE:6F:16:4C:FC:2D:DB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ukQzhlmFp7teJpw3lK5vFkz8Lds.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 23:ab:fc:e9:16:cb:50:cf:41:d6:92:7b:37:a7:64:e0:91:7e: ea:01:53:9b:f3:27:d5:cc:4e:8d:95:17:5c:13:56:64:5a:59: 94:c9:de:d1:06:eb:9f:68:ae:1f:17:2d:7d:75:5d:f5:7c:20: 19:6e:c0:22:a1:9c:c9:6e:45:a2:03:50:5f:8a:bc:88:30:39: 26:2a:50:5d:d9:a3:82:5a:de:f4:37:4e:ef:e9:5f:04:cd:86: f7:cb:8a:09:66:4e:5b:9f:76:82:cd:50:7f:05:2a:db:3f:5a: c8:6f:77:b2:b7:9f:30:ac:1a:3e:7c:29:67:ed:86:d0:81:41: 37:fd:f4:80:f8:0d:cb:db:f5:96:ac:15:42:d4:11:4e:ef:86: fa:e6:e5:1e:d0:70:de:d8:b5:3b:00:6b:5d:bc:19:61:63:45: 52:72:33:36:b8:96:83:c4:e3:b0:27:ea:e5:a9:37:da:92:e2: 55:f3:86:0d:3b:b5:b9:60:05:07:a1:14:6d:ae:d9:cd:e0:16: a3:e7:d1:ee:73:aa:71:32:8a:4e:ac:ed:82:c0:95:ce:eb:4b: b7:cb:cb:3f:6f:dd:4c:b6:9c:bc:14:59:50:e1:08:2b:d4:42: 1f:b5:e6:c4:ba:ed:53:eb:80:c2:36:50:0c:e3:24:a9:a8:b7: 79:a8:57:7f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv2UOoUGTFahKcXJfSIsW2GMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJhNDQzMzg2NTk4NWE3YmI1ZTI2OWMzNzk0YWU2ZjE2NGNm YzJkZGIwHhcNMjYwMTI1MTgwMDU2WhcNMjYwMTI2MTgwMDU2WjAzMTEwLwYDVQQD EyhkOTAzMjNmNWIwZTFlMzVhNWRiMzMxNGI5MWEyNmQ3OWZmMGIyYzVhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAys6/a9G3JQeoxMtg5d7pxzj88VfZ kqDiIlSAbyOwhKgeKTZGBMFAupwAaDtmVM9Iavc22UahUPqB3V6HAtm/ghHHngVB DZG8wObXsIPt126TObBxA8mjF5K3pw45/+2cNAT9XhL8apVKY+yBFUvjFQxCxsIG mJ5hMTRH89x1Fqi47t4fk5amRn5S16BhxzfNdry8nRqy9GEi/CvAdetkF4jbUqEy c7uO9c8gv7ry8uFQ9bGwa9G6G8XZdju+jN0hHn2jeW6YeWSJaZZ3Mk3+fH1jhRnp QXX2fOvitpaciu9GxCGrNDRmyPwYHmv3evL2VLq0f3WD/JhMaKMY2URQ8QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNkDI/Ww4eNaXbMxS5GibXn/CyxaMB8GA1UdIwQY MBaAFLpEM4ZZhae7XiacN5SubxZM/C3bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdWtRemhsbUZwN3RlSnB3M2xLNXZGa3o4TGRzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OS9hYjMyMTktYzY0Yi00NzBlLTgzNDEt M2ExMjAyNzQwMGU2LzEvdWtRemhsbUZwN3RlSnB3M2xLNXZGa3o4TGRzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82OS9hYjMyMTktYzY0Yi00NzBlLTgzNDEtM2ExMjAyNzQwMGU2 LzEvdWtRemhsbUZwN3RlSnB3M2xLNXZGa3o4TGRzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAI6v86RbL UM9B1pJ7N6dk4JF+6gFTm/Mn1cxOjZUXXBNWZFpZlMne0Qbrn2iuHxctfXVd9Xwg GW7AIqGcyW5FogNQX4q8iDA5JipQXdmjglre9DdO7+lfBM2G98uKCWZOW592gs1Q fwUq2z9ayG93srefMKwaPnwpZ+2G0IFBN/30gPgNy9v1lqwVQtQRTu+G+ublHtBw 3ti1OwBrXbwZYWNFUnIzNriWg8TjsCfq5ak32pLiVfOGDTu1uWAFB6EUba7ZzeAW o+fR7nOqcTKKTqztgsCVzutLt8vLP2/dTLacvBRZUOEIK9RCH7XmxLrtU+uAwjZQ DOMkqai3eahXfw== -----END CERTIFICATE-----Generated at Mon Jan 26 04:02:23 2026 by rpki-client