This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/5f153d-71d9-470a-ba27-971139514bb1/1/CKKX-M-hzm0_4sUmkRxGippjGNA.mft File: CKKX-M-hzm0_4sUmkRxGippjGNA.mft (raw, json) Hash identifier: ZE5cLH6+pb5NYYYcRFgzHYLWIL1ZLpP+mwFn4RaYkrc= Subject key identifier: 24:FE:24:17:0B:1F:E3:EB:84:39:FF:A2:BD:D8:20:4A:0F:4C:D4:F5 Authority key identifier: 08:A2:97:F8:CF:A1:CE:6D:3F:E2:C5:26:91:1C:46:8A:9A:63:18:D0 Certificate issuer: /CN=08a297f8cfa1ce6d3fe2c526911c468a9a6318d0 Certificate serial: 019BF4D0D4CCEAB510DA5A4DC3E947629D92 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CKKX-M-hzm0_4sUmkRxGippjGNA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/5f153d-71d9-470a-ba27-971139514bb1/1/CKKX-M-hzm0_4sUmkRxGippjGNA.mft Manifest number: 17EA Signing time: Sun 25 Jan 2026 11:01:25 +0000 Manifest this update: Sun 25 Jan 2026 11:01:25 +0000 Manifest next update: Mon 26 Jan 2026 11:01:25 +0000 Files and hashes: 1: 5dqgcQc20DZK2fFn6bpH-A8uyQ8.roa (hash: eVKJis7Ad9o9z5jyjcFOLQfOP7WhBCGivw8hyFer3JM=) 2: CKKX-M-hzm0_4sUmkRxGippjGNA.crl (hash: QHiXkzjVnq5BDSw4GYhT9shQgXX1pXHoXxBkIkXfOWo=) 3: RMuTV-vXrFsXAt5l344yDIEdodg.roa (hash: 4Y7+XsWOTPcRpIgGXMuxA5FSDFIupn4tgYoKEVmPgqU=) 4: UL14P1AhHlUZzAIOnswglPjo1V8.roa (hash: oIVyB68rjWbYMJyZsMbtBMTHDcN1LK+tN3ZZZFRb1s4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/5f153d-71d9-470a-ba27-971139514bb1/1/CKKX-M-hzm0_4sUmkRxGippjGNA.crl rsync://rpki.ripe.net/repository/DEFAULT/71/5f153d-71d9-470a-ba27-971139514bb1/1/CKKX-M-hzm0_4sUmkRxGippjGNA.mft rsync://rpki.ripe.net/repository/DEFAULT/CKKX-M-hzm0_4sUmkRxGippjGNA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 11:01:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f4:d0:d4:cc:ea:b5:10:da:5a:4d:c3:e9:47:62:9d:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08a297f8cfa1ce6d3fe2c526911c468a9a6318d0 Validity Not Before: Jan 25 11:01:25 2026 GMT Not After : Jan 26 11:01:25 2026 GMT Subject: CN=24fe24170b1fe3eb8439ffa2bdd8204a0f4cd4f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:73:76:c4:23:fe:50:ed:08:57:22:84:ab:75: 33:d6:25:94:38:51:b8:1d:05:a0:d6:e8:27:cb:51: a8:b8:47:b2:19:6a:74:f2:e2:55:84:c9:2a:94:6b: a0:f8:55:5b:68:ae:67:24:53:1f:90:5b:1d:82:37: a0:e6:d1:6f:c6:b5:e5:5f:c6:03:11:f8:02:f0:4f: ce:ee:5c:63:cb:f5:d4:9d:7c:0c:8e:56:30:12:b7: 10:9b:77:f8:5e:03:7e:7b:48:26:7f:d6:19:0c:c1: c2:a6:94:b3:2f:b2:b3:f2:a6:26:fe:7b:38:aa:ce: b4:a7:13:7a:fe:09:bd:94:29:f7:8b:a0:dd:a5:df: 82:65:0d:d7:0c:4d:21:9f:3f:62:51:c6:74:19:42: c2:a6:a6:8e:91:72:09:2b:d1:f9:28:9c:df:ca:1d: fd:db:8c:7f:24:ba:73:9f:50:eb:20:43:8f:bd:b7: 38:f3:8b:c0:99:cb:d6:9a:46:fc:d6:be:c1:74:d6: 96:54:9f:2c:c0:f6:e4:6f:86:3e:46:b9:8d:7f:5a: e4:b5:2d:1a:93:35:2f:c3:25:13:a9:be:e6:13:a6: 70:6f:fa:8e:5a:00:e4:c8:58:f4:15:c3:7a:d4:21: f7:df:f0:96:f1:db:4a:bc:a6:cf:5d:2c:a1:05:6d: 6a:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:FE:24:17:0B:1F:E3:EB:84:39:FF:A2:BD:D8:20:4A:0F:4C:D4:F5 X509v3 Authority Key Identifier: keyid:08:A2:97:F8:CF:A1:CE:6D:3F:E2:C5:26:91:1C:46:8A:9A:63:18:D0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CKKX-M-hzm0_4sUmkRxGippjGNA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/5f153d-71d9-470a-ba27-971139514bb1/1/CKKX-M-hzm0_4sUmkRxGippjGNA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/71/5f153d-71d9-470a-ba27-971139514bb1/1/CKKX-M-hzm0_4sUmkRxGippjGNA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1d:01:37:d3:71:82:80:42:d2:4e:30:99:ab:d0:25:81:58:8c: 9e:ea:82:15:82:4f:ca:ff:09:1b:a8:ff:5a:eb:90:be:fb:73: f6:40:76:dd:be:35:b5:f2:5d:93:c0:b1:f0:6f:a3:64:40:70: 27:0e:74:16:65:aa:30:15:b9:9e:12:25:50:fb:b9:c0:79:38: cc:ec:e7:d5:56:1c:88:3e:fc:53:88:d1:2d:ff:4a:c1:65:a1: 8d:e1:14:a8:28:f8:28:8a:37:16:63:88:e3:94:4d:58:55:22: cc:4d:3c:0c:2f:3a:6b:f6:51:21:7f:2c:ae:27:a1:51:87:ec: 3a:7b:7c:d6:fb:d3:cc:33:68:5e:e3:d9:dd:52:c6:9e:f1:f9: 40:de:44:01:8b:eb:a6:92:df:ee:01:6b:90:a6:3c:de:d3:9f: 84:13:a5:19:4a:e2:61:9f:1e:5b:5b:e0:9a:3e:ec:bf:2d:64: 73:01:02:bb:a2:fb:55:1b:d3:e5:1e:83:e3:73:51:a2:3b:cf: f0:62:92:93:41:99:02:1c:b4:59:57:f6:21:61:49:40:64:47: ce:64:b5:9e:49:82:6c:91:67:cb:c5:40:8f:e2:8d:a5:24:4a: 9f:49:43:d4:30:93:6a:1f:32:aa:8f:4a:5b:6e:b0:dd:4a:e7: d8:0d:fe:74 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv00NTM6rUQ2lpNw+lHYp2SMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA4YTI5N2Y4Y2ZhMWNlNmQzZmUyYzUyNjkxMWM0NjhhOWE2 MzE4ZDAwHhcNMjYwMTI1MTEwMTI1WhcNMjYwMTI2MTEwMTI1WjAzMTEwLwYDVQQD EygyNGZlMjQxNzBiMWZlM2ViODQzOWZmYTJiZGQ4MjA0YTBmNGNkNGY1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjXN2xCP+UO0IVyKEq3Uz1iWUOFG4 HQWg1ugny1GouEeyGWp08uJVhMkqlGug+FVbaK5nJFMfkFsdgjeg5tFvxrXlX8YD EfgC8E/O7lxjy/XUnXwMjlYwErcQm3f4XgN+e0gmf9YZDMHCppSzL7Kz8qYm/ns4 qs60pxN6/gm9lCn3i6Ddpd+CZQ3XDE0hnz9iUcZ0GULCpqaOkXIJK9H5KJzfyh39 24x/JLpzn1DrIEOPvbc484vAmcvWmkb81r7BdNaWVJ8swPbkb4Y+RrmNf1rktS0a kzUvwyUTqb7mE6Zwb/qOWgDkyFj0FcN61CH33/CW8dtKvKbPXSyhBW1qkwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCT+JBcLH+PrhDn/or3YIEoPTNT1MB8GA1UdIwQY MBaAFAiil/jPoc5tP+LFJpEcRoqaYxjQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ0tLWC1NLWh6bTBfNHNVbWtSeEdpcHBqR05BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MS81ZjE1M2QtNzFkOS00NzBhLWJhMjct OTcxMTM5NTE0YmIxLzEvQ0tLWC1NLWh6bTBfNHNVbWtSeEdpcHBqR05BLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83MS81ZjE1M2QtNzFkOS00NzBhLWJhMjctOTcxMTM5NTE0YmIx LzEvQ0tLWC1NLWh6bTBfNHNVbWtSeEdpcHBqR05BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHQE303GC gELSTjCZq9AlgViMnuqCFYJPyv8JG6j/WuuQvvtz9kB23b41tfJdk8Cx8G+jZEBw Jw50FmWqMBW5nhIlUPu5wHk4zOzn1VYciD78U4jRLf9KwWWhjeEUqCj4KIo3FmOI 45RNWFUizE08DC86a/ZRIX8sriehUYfsOnt81vvTzDNoXuPZ3VLGnvH5QN5EAYvr ppLf7gFrkKY83tOfhBOlGUriYZ8eW1vgmj7svy1kcwECu6L7VRvT5R6D43NRojvP 8GKSk0GZAhy0WVf2IWFJQGRHzmS1nkmCbJFny8VAj+KNpSRKn0lD1DCTah8yqo9K W26w3Urn2A3+dA== -----END CERTIFICATE-----Generated at Sun Jan 25 19:06:41 2026 by rpki-client