This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/353282-53e2-46a2-8fc4-41d49a8ffc81/1/DZ40sUlHfVXvC1lipeXgDN-1hIk.mft File: DZ40sUlHfVXvC1lipeXgDN-1hIk.mft (raw, json) Hash identifier: g/pI6VtLS5zAemUVv5Rt4cKD8dX/JRENzPN2V5RXY4c= Subject key identifier: C7:E7:10:9D:50:FD:51:4D:CF:4A:F1:63:5E:29:5C:83:4E:F3:CA:37 Authority key identifier: 0D:9E:34:B1:49:47:7D:55:EF:0B:59:62:A5:E5:E0:0C:DF:B5:84:89 Certificate issuer: /CN=0d9e34b149477d55ef0b5962a5e5e00cdfb58489 Certificate serial: 019BF5E3833C7F05DEBADAA8881BCDA17E8E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DZ40sUlHfVXvC1lipeXgDN-1hIk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/353282-53e2-46a2-8fc4-41d49a8ffc81/1/DZ40sUlHfVXvC1lipeXgDN-1hIk.mft Manifest number: 1525 Signing time: Sun 25 Jan 2026 16:01:26 +0000 Manifest this update: Sun 25 Jan 2026 16:01:26 +0000 Manifest next update: Mon 26 Jan 2026 16:01:26 +0000 Files and hashes: 1: DZ40sUlHfVXvC1lipeXgDN-1hIk.crl (hash: zcfpei8ugovfnnZnW45T2WmqSzNnTRBqi8kM/Mc9BN4=) 2: jiPOjIl6nBCVWenOtGifVVlibug.roa (hash: XoY5kXa67LdZT4EHsb4gzDlj3ILFLqUeSW5H/QfO6kE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/353282-53e2-46a2-8fc4-41d49a8ffc81/1/DZ40sUlHfVXvC1lipeXgDN-1hIk.crl rsync://rpki.ripe.net/repository/DEFAULT/7b/353282-53e2-46a2-8fc4-41d49a8ffc81/1/DZ40sUlHfVXvC1lipeXgDN-1hIk.mft rsync://rpki.ripe.net/repository/DEFAULT/DZ40sUlHfVXvC1lipeXgDN-1hIk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f5:e3:83:3c:7f:05:de:ba:da:a8:88:1b:cd:a1:7e:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0d9e34b149477d55ef0b5962a5e5e00cdfb58489 Validity Not Before: Jan 25 16:01:26 2026 GMT Not After : Jan 26 16:01:26 2026 GMT Subject: CN=c7e7109d50fd514dcf4af1635e295c834ef3ca37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:fe:f7:07:98:af:86:25:dd:f4:e4:38:b9:15: 4a:df:eb:7c:66:c2:56:31:22:3e:fd:db:06:cf:c0: de:99:22:c0:ea:a8:8c:1c:ce:9f:d2:f5:17:8f:92: b4:96:56:6c:f5:5a:c9:0d:4a:88:16:cb:7b:f9:62: 8e:0b:d8:30:b1:d8:40:8b:56:fe:35:30:e0:d6:3f: 97:1a:02:67:48:f9:0e:35:18:58:3d:1f:05:c6:01: de:d9:74:7f:ab:35:62:40:09:df:fd:5e:ef:d3:d6: da:ca:ed:18:1b:79:58:be:41:b3:5c:55:0c:5b:75: b3:e6:63:d7:a5:ef:de:bf:83:5b:d7:69:95:31:b1: 1e:fc:ae:0e:f5:de:ae:38:6a:3d:39:5c:48:17:e0: 7c:02:dd:74:06:f8:7b:54:8b:17:54:45:cc:5e:8b: f4:22:c1:17:72:a0:d9:a7:8a:af:56:a7:ec:13:a9: 37:d9:0d:2d:03:94:b2:95:75:74:0f:c0:fe:c2:07: b0:62:6b:b0:de:b0:1d:fc:26:1c:63:d5:49:1c:66: f2:89:31:b9:7a:06:40:b0:c4:26:58:df:30:81:f5: 5f:e1:9f:e4:f6:11:01:22:71:67:97:ee:05:fa:e4: 95:c7:59:52:1e:5b:46:a4:23:4f:94:69:f6:a4:32: 4b:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:E7:10:9D:50:FD:51:4D:CF:4A:F1:63:5E:29:5C:83:4E:F3:CA:37 X509v3 Authority Key Identifier: keyid:0D:9E:34:B1:49:47:7D:55:EF:0B:59:62:A5:E5:E0:0C:DF:B5:84:89 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DZ40sUlHfVXvC1lipeXgDN-1hIk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/353282-53e2-46a2-8fc4-41d49a8ffc81/1/DZ40sUlHfVXvC1lipeXgDN-1hIk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/353282-53e2-46a2-8fc4-41d49a8ffc81/1/DZ40sUlHfVXvC1lipeXgDN-1hIk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 17:95:58:d5:b8:75:98:d1:ac:75:bb:d9:da:86:d8:05:67:c5: c9:41:1c:ae:72:d1:07:50:3a:04:19:a0:e1:8a:27:2f:ff:21: 2f:7f:4e:e0:0c:95:3e:87:51:ab:f3:4e:9c:f5:01:2f:43:ed: 24:4c:05:31:6c:37:8d:63:5c:50:10:59:a9:06:d1:a2:55:1c: 39:7b:d7:a6:32:66:e8:0f:8e:67:4a:f3:8d:30:03:23:7d:fb: 6d:70:69:3d:3f:5b:b5:34:3e:96:45:ae:8e:c7:a4:88:a3:6f: 57:8f:dd:f0:a6:78:b3:d2:36:92:e5:33:c2:49:b3:5c:c4:cc: 2e:e7:f6:69:f3:df:08:42:c4:67:fa:b0:fc:c2:98:15:ad:20: a2:e4:cb:ea:67:34:f5:1a:27:e7:7d:bc:99:64:b3:cc:b6:3b: 43:08:bc:cb:6e:98:b8:34:9b:bc:e3:86:3e:e3:89:bc:fd:1b: 85:66:f4:4c:66:29:3a:6f:13:94:38:8d:49:e7:45:3d:22:ea: e6:87:e6:98:62:92:28:cb:82:e5:80:17:29:24:ed:1b:dd:ac: e9:f1:84:81:f9:5f:08:30:c9:00:d3:76:79:95:4b:a4:a5:bc: 47:b6:cc:cb:fd:14:f5:d5:8f:07:c5:a7:0b:73:fb:92:b3:ee: dd:bb:55:5a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv144M8fwXeutqoiBvNoX6OMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBkOWUzNGIxNDk0NzdkNTVlZjBiNTk2MmE1ZTVlMDBjZGZi NTg0ODkwHhcNMjYwMTI1MTYwMTI2WhcNMjYwMTI2MTYwMTI2WjAzMTEwLwYDVQQD EyhjN2U3MTA5ZDUwZmQ1MTRkY2Y0YWYxNjM1ZTI5NWM4MzRlZjNjYTM3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0P73B5ivhiXd9OQ4uRVK3+t8ZsJW MSI+/dsGz8DemSLA6qiMHM6f0vUXj5K0llZs9VrJDUqIFst7+WKOC9gwsdhAi1b+ NTDg1j+XGgJnSPkONRhYPR8FxgHe2XR/qzViQAnf/V7v09bayu0YG3lYvkGzXFUM W3Wz5mPXpe/ev4Nb12mVMbEe/K4O9d6uOGo9OVxIF+B8At10Bvh7VIsXVEXMXov0 IsEXcqDZp4qvVqfsE6k32Q0tA5SylXV0D8D+wgewYmuw3rAd/CYcY9VJHGbyiTG5 egZAsMQmWN8wgfVf4Z/k9hEBInFnl+4F+uSVx1lSHltGpCNPlGn2pDJLowIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMfnEJ1Q/VFNz0rxY14pXINO88o3MB8GA1UdIwQY MBaAFA2eNLFJR31V7wtZYqXl4AzftYSJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRFo0MHNVbEhmVlh2QzFsaXBlWGdETi0xaElrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yi8zNTMyODItNTNlMi00NmEyLThmYzQt NDFkNDlhOGZmYzgxLzEvRFo0MHNVbEhmVlh2QzFsaXBlWGdETi0xaElrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Yi8zNTMyODItNTNlMi00NmEyLThmYzQtNDFkNDlhOGZmYzgx LzEvRFo0MHNVbEhmVlh2QzFsaXBlWGdETi0xaElrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAF5VY1bh1 mNGsdbvZ2obYBWfFyUEcrnLRB1A6BBmg4YonL/8hL39O4AyVPodRq/NOnPUBL0Pt JEwFMWw3jWNcUBBZqQbRolUcOXvXpjJm6A+OZ0rzjTADI337bXBpPT9btTQ+lkWu jsekiKNvV4/d8KZ4s9I2kuUzwkmzXMTMLuf2afPfCELEZ/qw/MKYFa0gouTL6mc0 9Ron5328mWSzzLY7Qwi8y26YuDSbvOOGPuOJvP0bhWb0TGYpOm8TlDiNSedFPSLq 5ofmmGKSKMuC5YAXKSTtG92s6fGEgflfCDDJANN2eZVLpKW8R7bMy/0U9dWPB8Wn C3P7krPu3btVWg== -----END CERTIFICATE-----Generated at Mon Jan 26 01:48:01 2026 by rpki-client