This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/0bd4d3-d46c-483f-956e-ea7ae72bd32d/1/kziECSasc-rVthh5GeiPEAMimco.mft File: kziECSasc-rVthh5GeiPEAMimco.mft (raw, json) Hash identifier: EaOXbaRdckBcZbq770VJKe+8p04uCLeql/T6oMbCxRM= Subject key identifier: 75:A4:6D:AD:7F:AB:C6:B0:46:D5:A9:61:8B:48:FF:21:14:2F:43:71 Authority key identifier: 93:38:84:09:26:AC:73:EA:D5:B6:18:79:19:E8:8F:10:03:22:99:CA Certificate issuer: /CN=9338840926ac73ead5b6187919e88f10032299ca Certificate serial: 019BF6511F8550221D3262C86EAA75D99C41 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kziECSasc-rVthh5GeiPEAMimco.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/0bd4d3-d46c-483f-956e-ea7ae72bd32d/1/kziECSasc-rVthh5GeiPEAMimco.mft Manifest number: DE Signing time: Sun 25 Jan 2026 18:01:10 +0000 Manifest this update: Sun 25 Jan 2026 18:01:10 +0000 Manifest next update: Mon 26 Jan 2026 18:01:10 +0000 Files and hashes: 1: 1-z0Y3fH_aErOAd2Nag5ZT3JcPH4.roa (hash: ajlsAWqEGjBF2s25AsAbzW/nKPdDq6JxNB0eWlyY3OU=) 2: 6lmykGrjWlxTI-Qm8cv1Wru-ZUM.roa (hash: 3/8y+29k2Z9zB5VeslI5T+W11/MyhEBGlF4ugyZh+nA=) 3: FcXUetsC0-6bv54Z1lmHoqKMdxM.roa (hash: dFkWAsnbwOvbQKILV1fPns+xMo4goiFme2jYhULRvHk=) 4: Y4x7zeztB7lrOx01OBJN1UiLyT0.roa (hash: gs7Dc5as7DJ7oLTov6hgPGgK6t+t5Pe4B5kRBUgM7WI=) 5: _SAMOxgv34T8ZP2BEt3dVFweldA.roa (hash: bU6RDLC/fFMgRKk4b1P2ryi1ytEL97qHkSA7liSJFY0=) 6: kziECSasc-rVthh5GeiPEAMimco.crl (hash: o2xAXrtXg1DQ6Sd1ukbu6uitf5WNowgOByAGRJG3sqs=) 7: nKQXbT6FciiHVvddJS0_5sOh1ms.asa (hash: 7BE1jfl/pKiooWczO/8pMkQZmIL4Zuvts1Z6qAFpwl4=) 8: nf63dpM5Md5RBRi4P-HwEK-eN_E.roa (hash: 9d7TgxCegK25CmqdbC1sGXI3mJJK7sBKT2RoRfBWFdw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/79/0bd4d3-d46c-483f-956e-ea7ae72bd32d/1/kziECSasc-rVthh5GeiPEAMimco.crl rsync://rpki.ripe.net/repository/DEFAULT/79/0bd4d3-d46c-483f-956e-ea7ae72bd32d/1/kziECSasc-rVthh5GeiPEAMimco.mft rsync://rpki.ripe.net/repository/DEFAULT/kziECSasc-rVthh5GeiPEAMimco.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f6:51:1f:85:50:22:1d:32:62:c8:6e:aa:75:d9:9c:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9338840926ac73ead5b6187919e88f10032299ca Validity Not Before: Jan 25 18:01:10 2026 GMT Not After : Jan 26 18:01:10 2026 GMT Subject: CN=75a46dad7fabc6b046d5a9618b48ff21142f4371 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:d5:a5:71:09:5b:04:a4:4f:17:57:a1:de:d1: 31:ff:10:45:40:09:83:70:49:9a:3f:21:ae:a6:47: 89:08:8b:4f:e8:37:08:d7:52:de:cd:44:c6:e7:3a: bd:27:74:92:f9:d5:6a:92:44:0b:8e:6f:a4:06:73: 6d:05:7a:55:d8:0e:ec:a2:2d:43:1d:8d:2f:e2:e4: bc:ce:ed:f5:4d:9f:2b:91:01:6e:74:64:4d:83:0b: 1d:40:1f:69:9c:93:4f:1b:4a:38:ef:73:f2:65:26: b0:47:c4:50:53:ee:6b:5f:62:b9:e1:05:9f:71:a6: 29:62:6c:ff:ce:88:85:77:96:f3:ca:df:91:91:bb: ed:1a:b8:70:fa:47:ab:b8:45:54:72:5a:01:44:a7: 0a:0d:ba:60:94:5f:9e:f0:02:b4:0c:23:8e:7c:bf: 23:ee:32:e4:98:bf:fe:37:e5:f5:d0:3e:9f:3c:3c: 2d:73:12:fb:cd:1f:ab:6c:51:9b:d2:bc:26:3e:b5: ca:3b:f0:42:38:79:12:31:9c:9c:00:a7:68:ab:4c: 54:ec:d0:dd:0e:a8:8c:15:55:6e:96:65:cd:22:1f: 55:f9:84:30:e5:56:e7:af:e3:6f:95:60:08:72:f9: 03:49:71:fa:2b:c5:de:08:de:c5:b4:91:c4:b9:d8: c0:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:A4:6D:AD:7F:AB:C6:B0:46:D5:A9:61:8B:48:FF:21:14:2F:43:71 X509v3 Authority Key Identifier: keyid:93:38:84:09:26:AC:73:EA:D5:B6:18:79:19:E8:8F:10:03:22:99:CA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kziECSasc-rVthh5GeiPEAMimco.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/0bd4d3-d46c-483f-956e-ea7ae72bd32d/1/kziECSasc-rVthh5GeiPEAMimco.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/79/0bd4d3-d46c-483f-956e-ea7ae72bd32d/1/kziECSasc-rVthh5GeiPEAMimco.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 18:db:d9:6e:f6:77:37:d8:69:ec:c3:dd:1c:6f:9b:c2:05:fc: 41:d8:cb:43:4a:2c:9b:a4:d9:41:73:df:d6:38:9e:0b:d8:50: 84:a5:e5:f9:aa:4d:06:a2:6c:ec:00:30:19:0d:a8:fe:b9:0f: f8:49:fd:53:12:9c:b5:1e:d9:04:88:f7:35:b9:70:48:62:1a: da:a0:18:ca:e2:26:c2:ef:9e:df:fe:78:b6:d4:1a:cd:29:4c: 6b:bb:99:1d:99:df:b5:a1:0e:0c:98:99:10:88:a2:fd:34:a5: e3:28:66:d8:6b:26:8c:44:0e:5d:d4:76:3f:3e:c2:2d:0b:0f: 28:72:9d:2c:d0:d6:cc:96:2e:1b:19:41:1d:39:86:37:a4:fa: 11:de:54:5c:fe:af:60:ee:40:bb:69:68:e4:c2:1f:21:57:82: d2:f8:c3:f0:27:f6:66:7b:62:f6:31:89:de:9d:a8:c4:f7:d8: fd:e3:51:4a:92:7e:77:ac:bf:e5:53:34:b3:e7:45:a5:27:c9: ac:28:5e:7a:10:76:8a:28:f4:20:9a:ce:70:52:39:c5:b0:ce: 66:7c:18:47:ca:df:a7:f3:02:c7:cd:37:5a:26:09:49:c6:1e: dc:1c:1a:83:5a:6b:ab:33:99:3d:ac:c0:83:82:f8:25:b8:1e: 82:e0:8d:fc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv2UR+FUCIdMmLIbqp12ZxBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkzMzg4NDA5MjZhYzczZWFkNWI2MTg3OTE5ZTg4ZjEwMDMy Mjk5Y2EwHhcNMjYwMTI1MTgwMTEwWhcNMjYwMTI2MTgwMTEwWjAzMTEwLwYDVQQD Eyg3NWE0NmRhZDdmYWJjNmIwNDZkNWE5NjE4YjQ4ZmYyMTE0MmY0MzcxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApNWlcQlbBKRPF1eh3tEx/xBFQAmD cEmaPyGupkeJCItP6DcI11LezUTG5zq9J3SS+dVqkkQLjm+kBnNtBXpV2A7soi1D HY0v4uS8zu31TZ8rkQFudGRNgwsdQB9pnJNPG0o473PyZSawR8RQU+5rX2K54QWf caYpYmz/zoiFd5bzyt+RkbvtGrhw+keruEVUcloBRKcKDbpglF+e8AK0DCOOfL8j 7jLkmL/+N+X10D6fPDwtcxL7zR+rbFGb0rwmPrXKO/BCOHkSMZycAKdoq0xU7NDd DqiMFVVulmXNIh9V+YQw5Vbnr+NvlWAIcvkDSXH6K8XeCN7FtJHEudjAeQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHWkba1/q8awRtWpYYtI/yEUL0NxMB8GA1UdIwQY MBaAFJM4hAkmrHPq1bYYeRnojxADIpnKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva3ppRUNTYXNjLXJWdGhoNUdlaVBFQU1pbWNvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OS8wYmQ0ZDMtZDQ2Yy00ODNmLTk1NmUt ZWE3YWU3MmJkMzJkLzEva3ppRUNTYXNjLXJWdGhoNUdlaVBFQU1pbWNvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83OS8wYmQ0ZDMtZDQ2Yy00ODNmLTk1NmUtZWE3YWU3MmJkMzJk LzEva3ppRUNTYXNjLXJWdGhoNUdlaVBFQU1pbWNvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGNvZbvZ3 N9hp7MPdHG+bwgX8QdjLQ0osm6TZQXPf1jieC9hQhKXl+apNBqJs7AAwGQ2o/rkP +En9UxKctR7ZBIj3NblwSGIa2qAYyuImwu+e3/54ttQazSlMa7uZHZnftaEODJiZ EIii/TSl4yhm2GsmjEQOXdR2Pz7CLQsPKHKdLNDWzJYuGxlBHTmGN6T6Ed5UXP6v YO5Au2lo5MIfIVeC0vjD8Cf2Znti9jGJ3p2oxPfY/eNRSpJ+d6y/5VM0s+dFpSfJ rCheehB2iij0IJrOcFI5xbDOZnwYR8rfp/MCx803WiYJScYe3Bwag1prqzOZPazA g4L4JbgeguCN/A== -----END CERTIFICATE-----Generated at Sun Jan 25 23:34:36 2026 by rpki-client