This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.mft File: d0HROhWph91gAZwCZdLs7EhAlEo.mft (raw, json) Hash identifier: hebgMdvuZzlv5+PylTwpZ8tQx0n7aatbgc1Scd/VGJs= Subject key identifier: CE:2B:6D:03:6C:D3:7A:37:C7:F9:C6:69:FE:EB:29:C2:B6:77:0A:F2 Authority key identifier: 77:41:D1:3A:15:A9:87:DD:60:01:9C:02:65:D2:EC:EC:48:40:94:4A Certificate issuer: /CN=7741d13a15a987dd60019c0265d2ecec4840944a Certificate serial: 019BF1CFACF4E003B61231F358F502920801 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d0HROhWph91gAZwCZdLs7EhAlEo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.mft Manifest number: 08FA Signing time: Sat 24 Jan 2026 21:01:17 +0000 Manifest this update: Sat 24 Jan 2026 21:01:17 +0000 Manifest next update: Sun 25 Jan 2026 21:01:17 +0000 Files and hashes: 1: 2aVju54fgg9bD1JRsSNN37U-9Hk.roa (hash: gQ2ZXX3Kuvxj5T+dbec4hU1fv3yACHxOQmVvGeAb560=) 2: d0HROhWph91gAZwCZdLs7EhAlEo.crl (hash: tLkSlkk1GvP+3whRlGwoPSdJHYSrTHszBwLMxbomwHc=) 3: sRYXppUiSNJrW5d1MVXqJ1v0U0g.roa (hash: e8cW0JrKBdNEagEPQSlGciScba5vYX0jEPFos43/Uno=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.crl rsync://rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.mft rsync://rpki.ripe.net/repository/DEFAULT/d0HROhWph91gAZwCZdLs7EhAlEo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 21:01:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f1:cf:ac:f4:e0:03:b6:12:31:f3:58:f5:02:92:08:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7741d13a15a987dd60019c0265d2ecec4840944a Validity Not Before: Jan 24 21:01:17 2026 GMT Not After : Jan 25 21:01:17 2026 GMT Subject: CN=ce2b6d036cd37a37c7f9c669feeb29c2b6770af2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:89:32:d9:a9:cb:1e:0b:57:22:64:ff:43:21: c5:69:0b:ef:29:7d:46:cb:7d:55:95:a2:f1:f4:71: 1d:41:bf:64:f5:03:2c:ae:86:90:ef:66:06:8f:f8: 09:ab:20:0c:86:03:48:db:da:50:b0:de:b0:53:1a: 23:ee:76:05:3e:48:8e:77:c6:f8:c3:37:0a:61:62: 42:0b:ea:d4:9e:f2:ce:3f:61:c6:66:ca:e5:bc:cb: 18:70:3f:df:aa:cf:84:45:a9:b5:25:0e:9d:3b:d6: fa:26:1c:fc:62:78:54:46:ea:52:3c:d0:c0:fb:65: e3:3b:77:e0:b2:ff:4b:b4:6d:66:69:98:5e:1a:a3: 12:f8:15:de:f2:35:9b:94:83:47:ef:4c:16:62:c7: a9:04:55:4a:e0:76:f7:3a:01:70:f7:1f:c8:00:ec: 81:38:3c:11:cb:60:3f:36:e0:2c:38:7c:3d:ae:2d: 55:19:6a:f1:fc:38:eb:9c:b1:e6:6b:b9:df:ef:50: 76:cb:de:b9:d1:6c:a5:18:62:81:b0:dd:d8:55:4d: 4e:02:ae:e0:48:a0:66:eb:b7:84:7c:cf:d7:f8:53: 61:9d:b6:2c:79:73:4c:1f:90:7f:09:06:d1:6c:a5: 97:b3:8a:ad:68:40:39:1e:0b:89:cc:6e:01:c9:af: 27:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:2B:6D:03:6C:D3:7A:37:C7:F9:C6:69:FE:EB:29:C2:B6:77:0A:F2 X509v3 Authority Key Identifier: keyid:77:41:D1:3A:15:A9:87:DD:60:01:9C:02:65:D2:EC:EC:48:40:94:4A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0HROhWph91gAZwCZdLs7EhAlEo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7d:9e:86:c1:48:e1:d5:f5:42:29:b0:c0:24:69:0a:11:0b:4d: cc:bc:3a:85:7a:f7:75:da:ab:cc:6e:a5:8b:5b:91:1e:7e:70: a7:ae:9b:9f:ae:1a:f2:88:43:7a:35:ab:5f:44:30:a8:e0:c7: f3:3f:09:aa:0c:38:b5:44:c5:f4:0b:e6:19:de:21:ab:47:f2: 55:5f:e2:13:ff:2e:7f:9d:79:11:c7:41:ec:a5:2d:a3:3a:19: fa:8b:e5:36:39:e6:fa:ca:2e:1d:29:4c:5a:e6:ab:53:54:97: b6:50:b2:c4:65:3d:79:6f:af:36:f6:d7:63:3e:ce:05:77:84: 83:e9:b8:ab:ae:e7:bb:83:a4:4f:e9:08:5c:c2:3b:b0:7b:d7: ab:a2:6a:fa:a8:87:0d:ce:f2:34:05:56:f3:3f:c3:62:d2:3d: 13:cb:bc:fa:71:88:79:39:2b:ec:ce:d7:57:ba:f1:a7:d3:58: 20:2f:b7:39:2d:82:6c:5d:ee:23:76:a8:83:54:d2:5d:2b:b5: 34:12:87:72:7a:87:fd:a3:52:8a:a6:fd:e2:6e:5a:29:39:7e: 58:60:7c:13:67:93:37:ba:77:12:c7:ae:d5:4e:6c:5f:8f:39: 92:f2:58:96:1e:c0:13:6e:4a:54:ec:43:c9:ba:91:0f:a3:76: 82:9e:61:ea -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZvxz6z04AO2EjHzWPUCkggBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc3NDFkMTNhMTVhOTg3ZGQ2MDAxOWMwMjY1ZDJlY2VjNDg0 MDk0NGEwHhcNMjYwMTI0MjEwMTE3WhcNMjYwMTI1MjEwMTE3WjAzMTEwLwYDVQQD EyhjZTJiNmQwMzZjZDM3YTM3YzdmOWM2NjlmZWViMjljMmI2NzcwYWYyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtYky2anLHgtXImT/QyHFaQvvKX1G y31VlaLx9HEdQb9k9QMsroaQ72YGj/gJqyAMhgNI29pQsN6wUxoj7nYFPkiOd8b4 wzcKYWJCC+rUnvLOP2HGZsrlvMsYcD/fqs+ERam1JQ6dO9b6Jhz8YnhURupSPNDA +2XjO3fgsv9LtG1maZheGqMS+BXe8jWblINH70wWYsepBFVK4Hb3OgFw9x/IAOyB ODwRy2A/NuAsOHw9ri1VGWrx/DjrnLHma7nf71B2y9650WylGGKBsN3YVU1OAq7g SKBm67eEfM/X+FNhnbYseXNMH5B/CQbRbKWXs4qtaEA5HguJzG4Bya8n8QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFM4rbQNs03o3x/nGaf7rKcK2dwryMB8GA1UdIwQY MBaAFHdB0ToVqYfdYAGcAmXS7OxIQJRKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZDBIUk9oV3BoOTFnQVp3Q1pkTHM3RWhBbEVvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83My8wYmU5ZDAtOTk5YS00NDlhLTg1MTkt MzUyM2UzMDMwYmU0LzEvZDBIUk9oV3BoOTFnQVp3Q1pkTHM3RWhBbEVvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83My8wYmU5ZDAtOTk5YS00NDlhLTg1MTktMzUyM2UzMDMwYmU0 LzEvZDBIUk9oV3BoOTFnQVp3Q1pkTHM3RWhBbEVvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfZ6GwUjh 1fVCKbDAJGkKEQtNzLw6hXr3ddqrzG6li1uRHn5wp66bn64a8ohDejWrX0QwqODH 8z8Jqgw4tUTF9AvmGd4hq0fyVV/iE/8uf515EcdB7KUtozoZ+ovlNjnm+souHSlM WuarU1SXtlCyxGU9eW+vNvbXYz7OBXeEg+m4q67nu4OkT+kIXMI7sHvXq6Jq+qiH Dc7yNAVW8z/DYtI9E8u8+nGIeTkr7M7XV7rxp9NYIC+3OS2CbF3uI3aog1TSXSu1 NBKHcnqH/aNSiqb94m5aKTl+WGB8E2eTN7p3Eseu1U5sX485kvJYlh7AE25KVOxD ybqRD6N2gp5h6g== -----END CERTIFICATE-----Generated at Sun Jan 25 06:11:33 2026 by rpki-client