This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/Cdzx6JflmOw_GrYL1EMyhybe2uQ.mft File: Cdzx6JflmOw_GrYL1EMyhybe2uQ.mft (raw, json) Hash identifier: OU40HDhz/5YXgU+MbGWojC0Ks4gQxflUo7VkX00a7wc= Subject key identifier: D8:58:96:92:9D:03:D7:5D:A8:76:AB:02:5D:0A:74:A3:9C:26:E4:3F Authority key identifier: 09:DC:F1:E8:97:E5:98:EC:3F:1A:B6:0B:D4:43:32:87:26:DE:DA:E4 Certificate issuer: /CN=09dcf1e897e598ec3f1ab60bd443328726dedae4 Certificate serial: 019BF7633765647178F1E9301E4A215B879C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Cdzx6JflmOw_GrYL1EMyhybe2uQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/Cdzx6JflmOw_GrYL1EMyhybe2uQ.mft Manifest number: 163A Signing time: Sun 25 Jan 2026 23:00:32 +0000 Manifest this update: Sun 25 Jan 2026 23:00:32 +0000 Manifest next update: Mon 26 Jan 2026 23:00:32 +0000 Files and hashes: 1: 4c-GbGdVRIrY9IqPjRy0nzn_VSE.roa (hash: icjwc3qakSmAHiw3iEGT6Xw+HBGCPaCuGNR8zcJ+6LU=) 2: Cdzx6JflmOw_GrYL1EMyhybe2uQ.crl (hash: mDytpHT5lUHQWy4Lk5nS9STxxMkewjPr3+OucDVR5E8=) 3: G89I4eFQRreVo-7aKBmhJUYUtfE.roa (hash: Y0sI6cJ3p/tnjubSMmOmQUTjHM00CIS1iUsc5f8JH6o=) 4: dYdu6qoIQ4XCeyHdAC497fGCxxs.roa (hash: oc3k4EGMJTIdaq924ORNmciOrYjNG46O7CO8iE2EBZI=) 5: lgCyYbtiym8UQxlU3Wsnfuin5Po.roa (hash: Y0pYZtEe50I9gKfovWkm1yNE+nmUWXQeAcc9hn8uT60=) 6: u3tl30EyAJsURqJzM6oI5-sRJh4.roa (hash: +MJkYGw5uZPSvZdWWPtxlmooe+ag+H3pOtple6Ilz3I=) 7: zR5fs6PTrjyplvT56u1K4BvWPlc.roa (hash: O8dzuCsmazQPoLBfGqOiMn2tNXQbancZpn0bojUcLR0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/Cdzx6JflmOw_GrYL1EMyhybe2uQ.crl rsync://rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/Cdzx6JflmOw_GrYL1EMyhybe2uQ.mft rsync://rpki.ripe.net/repository/DEFAULT/Cdzx6JflmOw_GrYL1EMyhybe2uQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f7:63:37:65:64:71:78:f1:e9:30:1e:4a:21:5b:87:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09dcf1e897e598ec3f1ab60bd443328726dedae4 Validity Not Before: Jan 25 23:00:32 2026 GMT Not After : Jan 26 23:00:32 2026 GMT Subject: CN=d85896929d03d75da876ab025d0a74a39c26e43f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:91:94:9b:20:32:81:21:2a:57:49:6c:cd:f4: 4f:71:28:80:4b:d2:4c:10:95:6e:83:c7:60:a4:c4: e2:2e:59:b2:47:43:86:6c:81:ec:8f:d2:bc:2b:17: 74:39:55:79:d9:6d:ee:a6:d5:ed:ac:e5:ef:5f:25: e0:ab:c1:c5:74:68:f3:b7:ab:dc:d4:e8:73:11:f2: 4d:ea:0c:fd:05:91:ee:57:9c:e1:1b:b9:38:82:89: d2:54:e4:df:87:f7:3a:b4:21:87:c6:6c:f8:5f:8c: 16:eb:43:d0:33:86:d0:17:47:89:cf:c7:ed:71:b8: 08:e0:2c:02:f6:0b:ca:89:d4:db:46:bb:6b:23:d0: 25:88:fb:79:4d:dd:92:65:13:e7:5d:ab:6b:9c:61: 99:24:11:49:bd:31:6f:d8:08:a4:49:6e:87:d6:35: d8:cd:85:81:31:0a:aa:82:cd:16:42:25:5e:7e:47: 4a:2b:27:69:cc:99:74:24:b4:9b:9d:56:2e:47:1b: 76:cb:95:4e:7b:a8:d7:9f:5a:21:bb:43:c4:3a:86: cd:28:40:43:07:e9:84:d2:0e:54:66:a9:e5:77:c5: f0:65:99:0f:7d:5e:51:e6:83:3f:02:04:76:a3:0d: 7c:c4:67:53:e3:57:9a:b3:a0:e8:6c:3e:32:3a:59: 89:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:58:96:92:9D:03:D7:5D:A8:76:AB:02:5D:0A:74:A3:9C:26:E4:3F X509v3 Authority Key Identifier: keyid:09:DC:F1:E8:97:E5:98:EC:3F:1A:B6:0B:D4:43:32:87:26:DE:DA:E4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Cdzx6JflmOw_GrYL1EMyhybe2uQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/Cdzx6JflmOw_GrYL1EMyhybe2uQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/74/9bc4cc-b646-4701-8975-623e199fdbe9/1/Cdzx6JflmOw_GrYL1EMyhybe2uQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 31:97:c6:4d:c4:82:89:61:bc:2b:75:6c:a4:66:94:f1:c6:4e: f2:68:8a:f8:2b:30:c4:95:a8:b1:44:be:f3:54:4d:d3:37:c4: 0c:71:f2:6c:83:9d:fa:b2:4c:ae:b2:a3:5a:3d:82:3e:59:e1: ea:bf:7c:79:51:05:0a:58:65:ad:c1:7d:32:34:91:2a:60:86: 5a:8b:d0:d7:66:c6:f0:64:8a:db:dd:c1:c7:a7:98:8e:7e:81: 06:02:99:f9:6b:a2:87:91:ae:b9:da:4d:5f:da:96:66:31:b1: 83:11:e7:0f:04:6d:02:be:82:60:2b:be:5a:f3:1a:1d:49:3a: 03:21:a1:37:c5:12:9d:33:8f:ef:2a:f5:b7:9a:53:4d:4b:dc: ac:d7:bb:df:40:c0:c0:53:b9:e3:de:52:22:b8:27:86:e6:44: 54:d9:7e:a5:d5:23:a9:64:a9:7f:86:cd:88:1c:03:cf:40:ea: 7c:9b:5b:7e:ef:55:80:41:ca:65:8e:1f:c3:46:73:12:4c:9a: d6:02:67:81:67:90:0b:36:6f:da:5d:c3:28:5c:a7:39:76:d9: ef:09:ef:8d:cc:25:19:b6:d7:02:8b:a4:d5:cd:91:1d:b1:0a: 95:29:e6:f5:d8:cf:d9:29:05:5f:85:54:c2:aa:d9:0a:8b:aa: 0f:59:cc:29 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv3YzdlZHF48ekwHkohW4ecMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5ZGNmMWU4OTdlNTk4ZWMzZjFhYjYwYmQ0NDMzMjg3MjZk ZWRhZTQwHhcNMjYwMTI1MjMwMDMyWhcNMjYwMTI2MjMwMDMyWjAzMTEwLwYDVQQD EyhkODU4OTY5MjlkMDNkNzVkYTg3NmFiMDI1ZDBhNzRhMzljMjZlNDNmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtJGUmyAygSEqV0lszfRPcSiAS9JM EJVug8dgpMTiLlmyR0OGbIHsj9K8Kxd0OVV52W3uptXtrOXvXyXgq8HFdGjzt6vc 1OhzEfJN6gz9BZHuV5zhG7k4gonSVOTfh/c6tCGHxmz4X4wW60PQM4bQF0eJz8ft cbgI4CwC9gvKidTbRrtrI9AliPt5Td2SZRPnXatrnGGZJBFJvTFv2AikSW6H1jXY zYWBMQqqgs0WQiVefkdKKydpzJl0JLSbnVYuRxt2y5VOe6jXn1ohu0PEOobNKEBD B+mE0g5UZqnld8XwZZkPfV5R5oM/AgR2ow18xGdT41eas6DobD4yOlmJfwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNhYlpKdA9ddqHarAl0KdKOcJuQ/MB8GA1UdIwQY MBaAFAnc8eiX5ZjsPxq2C9RDMocm3trkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ2R6eDZKZmxtT3dfR3JZTDFFTXloeWJlMnVRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NC85YmM0Y2MtYjY0Ni00NzAxLTg5NzUt NjIzZTE5OWZkYmU5LzEvQ2R6eDZKZmxtT3dfR3JZTDFFTXloeWJlMnVRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83NC85YmM0Y2MtYjY0Ni00NzAxLTg5NzUtNjIzZTE5OWZkYmU5 LzEvQ2R6eDZKZmxtT3dfR3JZTDFFTXloeWJlMnVRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMZfGTcSC iWG8K3VspGaU8cZO8miK+CswxJWosUS+81RN0zfEDHHybIOd+rJMrrKjWj2CPlnh 6r98eVEFClhlrcF9MjSRKmCGWovQ12bG8GSK293Bx6eYjn6BBgKZ+Wuih5GuudpN X9qWZjGxgxHnDwRtAr6CYCu+WvMaHUk6AyGhN8USnTOP7yr1t5pTTUvcrNe730DA wFO5495SIrgnhuZEVNl+pdUjqWSpf4bNiBwDz0DqfJtbfu9VgEHKZY4fw0ZzEkya 1gJngWeQCzZv2l3DKFynOXbZ7wnvjcwlGbbXAouk1c2RHbEKlSnm9djP2SkFX4VU wqrZCouqD1nMKQ== -----END CERTIFICATE-----Generated at Mon Jan 26 02:25:55 2026 by rpki-client