This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/00248c-3791-4629-a6c6-6d971992c349/1/D5otI3SqascUtfim7duA3GlnnMY.mft File: D5otI3SqascUtfim7duA3GlnnMY.mft (raw, json) Hash identifier: X3g2Ct0v1fyfZq1vQMGRao5WpiG1UnyzdsVfNyDbdUk= Subject key identifier: F9:69:93:7C:57:7B:36:F4:EE:A7:63:3C:69:71:33:68:01:AB:AC:B7 Authority key identifier: 0F:9A:2D:23:74:AA:6A:C7:14:B5:F8:A6:ED:DB:80:DC:69:67:9C:C6 Certificate issuer: /CN=0f9a2d2374aa6ac714b5f8a6eddb80dc69679cc6 Certificate serial: 019BF7D20FB66E1F96B3F251159D61E216B3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D5otI3SqascUtfim7duA3GlnnMY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/00248c-3791-4629-a6c6-6d971992c349/1/D5otI3SqascUtfim7duA3GlnnMY.mft Manifest number: 0E4E Signing time: Mon 26 Jan 2026 01:01:37 +0000 Manifest this update: Mon 26 Jan 2026 01:01:37 +0000 Manifest next update: Tue 27 Jan 2026 01:01:37 +0000 Files and hashes: 1: 8SEsdKMq767CnaRYG-1hJ5v6Hic.roa (hash: h/RdezdmLSdHmsoFs8q7JJ7Hnulds2LoEiNuAXGhUZg=) 2: D5otI3SqascUtfim7duA3GlnnMY.crl (hash: eCVjrzBUm3Q/tpHhHlUdWlnWMpO8UA6OFGobOzoPu1Q=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/00248c-3791-4629-a6c6-6d971992c349/1/D5otI3SqascUtfim7duA3GlnnMY.crl rsync://rpki.ripe.net/repository/DEFAULT/7f/00248c-3791-4629-a6c6-6d971992c349/1/D5otI3SqascUtfim7duA3GlnnMY.mft rsync://rpki.ripe.net/repository/DEFAULT/D5otI3SqascUtfim7duA3GlnnMY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f7:d2:0f:b6:6e:1f:96:b3:f2:51:15:9d:61:e2:16:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0f9a2d2374aa6ac714b5f8a6eddb80dc69679cc6 Validity Not Before: Jan 26 01:01:37 2026 GMT Not After : Jan 27 01:01:37 2026 GMT Subject: CN=f969937c577b36f4eea7633c6971336801abacb7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:70:36:ad:9e:fd:51:60:e9:9c:22:46:f6:8c: 8a:9d:7d:96:14:be:38:4c:a7:7b:a4:f3:44:11:86: 46:13:0c:1f:63:fb:5e:bd:4a:a7:4a:3c:1e:cc:54: 8c:63:4e:c7:33:9f:f8:14:40:cd:48:25:78:2a:a3: 18:00:2b:d0:e4:1a:25:55:06:1c:77:bf:bf:69:15: 7d:c3:cb:fc:f7:09:24:d0:a9:61:1a:a6:3d:e4:3e: 29:ad:1c:fd:dd:b3:63:45:89:aa:41:98:65:f6:e4: 09:b9:61:25:d4:ac:f5:f4:73:af:b1:03:d9:bf:d9: de:02:8c:99:48:4f:0d:36:8c:6b:44:28:63:1f:cc: a0:fa:52:8b:cc:62:b5:a1:7d:69:16:73:cf:38:11: 7b:1a:33:1c:f8:23:2d:f1:ca:d2:87:ff:d1:22:8d: 85:4b:da:c2:cb:94:49:91:3c:65:a1:48:9e:fb:fa: 81:9a:84:b1:c6:93:93:cd:d5:4d:18:42:57:8a:12: be:c3:79:95:5e:f6:46:14:ba:8f:dc:5e:5b:c9:8d: c0:82:dd:be:8b:1f:8a:5f:8f:7e:e8:74:19:0c:be: 0e:02:f3:96:75:cc:4b:95:f5:6d:f8:7f:25:99:56: bc:8f:98:62:51:34:f6:7a:a3:c0:98:b0:9b:c5:03: 5c:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:69:93:7C:57:7B:36:F4:EE:A7:63:3C:69:71:33:68:01:AB:AC:B7 X509v3 Authority Key Identifier: keyid:0F:9A:2D:23:74:AA:6A:C7:14:B5:F8:A6:ED:DB:80:DC:69:67:9C:C6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D5otI3SqascUtfim7duA3GlnnMY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/00248c-3791-4629-a6c6-6d971992c349/1/D5otI3SqascUtfim7duA3GlnnMY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/00248c-3791-4629-a6c6-6d971992c349/1/D5otI3SqascUtfim7duA3GlnnMY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 71:0b:99:fa:88:f0:ea:89:e6:f9:b9:c6:cc:73:cc:04:17:f5: 83:de:c1:f9:45:ee:4a:7b:d1:7b:d1:43:4a:59:5a:11:89:81: 9c:46:74:a0:c9:9a:0e:86:8a:b1:7c:d2:6c:98:39:46:c3:0c: 21:af:64:b5:cd:cb:4b:4f:1c:d1:76:7e:a1:79:29:0e:33:3b: 2e:4a:9c:5d:70:b9:53:60:5e:3d:59:63:9d:df:52:d7:7d:3a: 4e:fb:b9:7f:6e:dc:55:6e:7f:f8:cd:12:fa:c8:86:fe:84:35: f0:13:8a:64:5d:ee:a5:b4:85:8f:29:68:ca:00:60:eb:d4:65: 54:de:07:f6:02:0c:fe:28:5a:12:f6:45:ce:52:f0:5d:85:77: da:cb:ec:2b:75:3a:4b:90:95:cf:e1:b9:71:2f:13:49:88:75: 0b:52:16:aa:41:48:48:90:56:50:97:3e:16:c1:2c:6c:2a:67: 46:0a:c3:b2:2c:4b:d2:41:31:68:a8:27:99:92:0b:07:8b:e6: 93:27:cb:02:97:10:11:1e:c6:eb:a6:15:5d:0c:d9:0b:1a:db: 2c:cb:78:ac:13:31:36:e3:05:3c:3f:76:47:8a:d4:91:5f:2c: f3:b6:3a:e5:91:ab:9d:55:82:ad:32:04:c6:42:ec:15:ed:ba: eb:d4:23:ea -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv30g+2bh+Ws/JRFZ1h4hazMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBmOWEyZDIzNzRhYTZhYzcxNGI1ZjhhNmVkZGI4MGRjNjk2 NzljYzYwHhcNMjYwMTI2MDEwMTM3WhcNMjYwMTI3MDEwMTM3WjAzMTEwLwYDVQQD EyhmOTY5OTM3YzU3N2IzNmY0ZWVhNzYzM2M2OTcxMzM2ODAxYWJhY2I3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz3A2rZ79UWDpnCJG9oyKnX2WFL44 TKd7pPNEEYZGEwwfY/tevUqnSjwezFSMY07HM5/4FEDNSCV4KqMYACvQ5BolVQYc d7+/aRV9w8v89wkk0KlhGqY95D4prRz93bNjRYmqQZhl9uQJuWEl1Kz19HOvsQPZ v9neAoyZSE8NNoxrRChjH8yg+lKLzGK1oX1pFnPPOBF7GjMc+CMt8crSh//RIo2F S9rCy5RJkTxloUie+/qBmoSxxpOTzdVNGEJXihK+w3mVXvZGFLqP3F5byY3Agt2+ ix+KX49+6HQZDL4OAvOWdcxLlfVt+H8lmVa8j5hiUTT2eqPAmLCbxQNcCwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPlpk3xXezb07qdjPGlxM2gBq6y3MB8GA1UdIwQY MBaAFA+aLSN0qmrHFLX4pu3bgNxpZ5zGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRDVvdEkzU3Fhc2NVdGZpbTdkdUEzR2xubk1ZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Zi8wMDI0OGMtMzc5MS00NjI5LWE2YzYt NmQ5NzE5OTJjMzQ5LzEvRDVvdEkzU3Fhc2NVdGZpbTdkdUEzR2xubk1ZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Zi8wMDI0OGMtMzc5MS00NjI5LWE2YzYtNmQ5NzE5OTJjMzQ5 LzEvRDVvdEkzU3Fhc2NVdGZpbTdkdUEzR2xubk1ZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcQuZ+ojw 6onm+bnGzHPMBBf1g97B+UXuSnvRe9FDSllaEYmBnEZ0oMmaDoaKsXzSbJg5RsMM Ia9ktc3LS08c0XZ+oXkpDjM7LkqcXXC5U2BePVljnd9S1306Tvu5f27cVW5/+M0S +siG/oQ18BOKZF3upbSFjyloygBg69RlVN4H9gIM/ihaEvZFzlLwXYV32svsK3U6 S5CVz+G5cS8TSYh1C1IWqkFISJBWUJc+FsEsbCpnRgrDsixL0kExaKgnmZILB4vm kyfLApcQER7G66YVXQzZCxrbLMt4rBMxNuMFPD92R4rUkV8s87Y65ZGrnVWCrTIE xkLsFe2669Qj6g== -----END CERTIFICATE-----Generated at Mon Jan 26 03:12:02 2026 by rpki-client