This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/hESS25y7Cg62v2nCXIaWH0kYPJs.mft File: hESS25y7Cg62v2nCXIaWH0kYPJs.mft (raw, json) Hash identifier: Q02cZGfRuynRh4VFXHsvnsONU9yInsqilbk8ixnCDa8= Subject key identifier: BB:43:90:C8:BB:98:8B:25:EC:33:D5:13:75:48:12:5B:81:D4:8D:8B Authority key identifier: 84:44:92:DB:9C:BB:0A:0E:B6:BF:69:C2:5C:86:96:1F:49:18:3C:9B Certificate issuer: /CN=844492db9cbb0a0eb6bf69c25c86961f49183c9b Certificate serial: 019BF72CF0774650D09CBC56A69E83B5595A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hESS25y7Cg62v2nCXIaWH0kYPJs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/hESS25y7Cg62v2nCXIaWH0kYPJs.mft Manifest number: 086A Signing time: Sun 25 Jan 2026 22:01:16 +0000 Manifest this update: Sun 25 Jan 2026 22:01:16 +0000 Manifest next update: Mon 26 Jan 2026 22:01:16 +0000 Files and hashes: 1: DLumB3dr6jlfHoiS9Gw_fIJrHvk.roa (hash: 5nKHF0MVunEP7PYJoKkfoQt8SYyn/TqTcUA4jgE0VRw=) 2: VMwkQbgZsaD1modLD1OCZoOdaP0.roa (hash: hFT/2DxMA5YwrG6LBI7zWfiz+2OyUaLWWeHm7RJ0nXg=) 3: cPKzl4MAM1VPvGgqdoHotmjF_TQ.roa (hash: Kwq91RaELM7PU5xhh1ZgTtP0NFXJmqvp86LKfBSRLfM=) 4: hESS25y7Cg62v2nCXIaWH0kYPJs.crl (hash: EiuxrZmTQl+uGIITz/u/dYxVcS7pF7BzU3M2mHhs+Fs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/hESS25y7Cg62v2nCXIaWH0kYPJs.crl rsync://rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/hESS25y7Cg62v2nCXIaWH0kYPJs.mft rsync://rpki.ripe.net/repository/DEFAULT/hESS25y7Cg62v2nCXIaWH0kYPJs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f7:2c:f0:77:46:50:d0:9c:bc:56:a6:9e:83:b5:59:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=844492db9cbb0a0eb6bf69c25c86961f49183c9b Validity Not Before: Jan 25 22:01:16 2026 GMT Not After : Jan 26 22:01:16 2026 GMT Subject: CN=bb4390c8bb988b25ec33d5137548125b81d48d8b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:03:84:7e:17:50:a5:5d:18:06:9d:31:17:ee: af:18:45:ea:86:50:dd:87:e5:22:1f:48:96:63:15: 02:35:f6:2f:90:f4:cf:70:7b:15:92:9d:04:b7:51: 42:2c:11:8c:de:a8:22:9a:12:dc:7d:7d:b0:96:63: a6:9e:fb:05:bd:98:31:f8:fb:2f:9a:2c:10:ab:3a: d4:00:73:c1:dc:8d:1a:b2:c3:1d:60:27:fc:b7:6c: 6f:a7:69:96:3a:aa:0a:10:43:eb:87:53:4f:cf:b9: 3b:70:a7:19:e0:92:13:0f:ed:e5:60:62:be:af:05: 05:9d:37:a2:ee:b7:c5:37:58:79:cc:c0:e0:9f:4e: 92:15:6e:e9:82:af:cd:6a:e7:2e:63:09:de:f5:0f: de:ec:ef:f6:cf:35:dd:22:15:98:d0:5d:5e:f8:0b: 7f:2b:30:ed:cf:79:e2:04:6b:f5:e3:ea:bd:36:89: b9:3c:33:e3:5f:ce:6d:81:9c:6e:a1:62:6b:94:cf: 3d:43:db:00:0c:99:f4:1c:19:eb:44:f1:ab:3a:ff: b0:c8:e5:a9:09:d4:7a:1a:fa:8a:66:ee:a6:48:f9: bb:31:65:58:76:9d:d7:a8:3b:e5:27:df:3f:e4:c9: ba:1d:11:07:48:cc:e5:ef:d1:3a:6b:8b:93:a0:24: 0f:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:43:90:C8:BB:98:8B:25:EC:33:D5:13:75:48:12:5B:81:D4:8D:8B X509v3 Authority Key Identifier: keyid:84:44:92:DB:9C:BB:0A:0E:B6:BF:69:C2:5C:86:96:1F:49:18:3C:9B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hESS25y7Cg62v2nCXIaWH0kYPJs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/hESS25y7Cg62v2nCXIaWH0kYPJs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/33a888-4cf3-4a8c-9297-a1e0db1a17df/1/hESS25y7Cg62v2nCXIaWH0kYPJs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 84:35:e8:cf:80:8b:b5:3f:62:06:20:c8:a9:09:d6:84:1d:67: d3:a2:3f:9f:0b:34:d3:aa:3d:18:59:72:9c:5b:5e:56:b7:bd: 71:c4:8c:5a:c2:cf:ce:cf:60:ed:44:19:50:96:c3:26:5b:9d: f1:f0:be:ac:87:32:30:14:83:47:41:64:0a:63:69:9a:27:23: 9b:78:8b:5a:2d:59:46:b0:3b:cb:ee:84:a5:f4:c9:68:2e:8d: 5b:17:bd:ee:6b:90:25:d7:79:02:d4:d7:14:95:5b:8d:fc:00: 3c:c4:02:13:73:d7:21:38:76:34:ec:2a:e4:22:99:fb:30:9f: 47:59:e7:d2:be:77:a8:cf:b5:ea:20:1c:24:74:21:fe:aa:a5: 46:7e:c1:ae:13:05:84:69:b2:58:e5:59:6a:95:3b:0c:b2:ed: 4f:9c:55:42:cb:81:4b:ce:e1:66:e6:48:d9:c2:a9:e7:0a:35: 98:af:b4:ef:00:be:8c:bd:01:44:45:33:ad:78:99:64:e1:32: 4a:80:58:3c:07:c5:91:9d:26:a2:cf:0b:9c:94:07:95:ca:f6: 23:50:5c:cd:be:db:e5:cd:22:3f:97:7d:31:69:68:72:ce:b6: 38:0c:11:44:42:ff:ec:83:94:e7:f1:91:44:01:0b:89:bc:14: 84:ee:26:c3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv3LPB3RlDQnLxWpp6DtVlaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg0NDQ5MmRiOWNiYjBhMGViNmJmNjljMjVjODY5NjFmNDkx ODNjOWIwHhcNMjYwMTI1MjIwMTE2WhcNMjYwMTI2MjIwMTE2WjAzMTEwLwYDVQQD EyhiYjQzOTBjOGJiOTg4YjI1ZWMzM2Q1MTM3NTQ4MTI1YjgxZDQ4ZDhiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmgOEfhdQpV0YBp0xF+6vGEXqhlDd h+UiH0iWYxUCNfYvkPTPcHsVkp0Et1FCLBGM3qgimhLcfX2wlmOmnvsFvZgx+Psv miwQqzrUAHPB3I0assMdYCf8t2xvp2mWOqoKEEPrh1NPz7k7cKcZ4JITD+3lYGK+ rwUFnTei7rfFN1h5zMDgn06SFW7pgq/NaucuYwne9Q/e7O/2zzXdIhWY0F1e+At/ KzDtz3niBGv14+q9Nom5PDPjX85tgZxuoWJrlM89Q9sADJn0HBnrRPGrOv+wyOWp CdR6GvqKZu6mSPm7MWVYdp3XqDvlJ98/5Mm6HREHSMzl79E6a4uToCQPJwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLtDkMi7mIsl7DPVE3VIEluB1I2LMB8GA1UdIwQY MBaAFIREktucuwoOtr9pwlyGlh9JGDybMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaEVTUzI1eTdDZzYydjJuQ1hJYVdIMGtZUEpzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Zi8zM2E4ODgtNGNmMy00YThjLTkyOTct YTFlMGRiMWExN2RmLzEvaEVTUzI1eTdDZzYydjJuQ1hJYVdIMGtZUEpzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Zi8zM2E4ODgtNGNmMy00YThjLTkyOTctYTFlMGRiMWExN2Rm LzEvaEVTUzI1eTdDZzYydjJuQ1hJYVdIMGtZUEpzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhDXoz4CL tT9iBiDIqQnWhB1n06I/nws006o9GFlynFteVre9ccSMWsLPzs9g7UQZUJbDJlud 8fC+rIcyMBSDR0FkCmNpmicjm3iLWi1ZRrA7y+6EpfTJaC6NWxe97muQJdd5AtTX FJVbjfwAPMQCE3PXITh2NOwq5CKZ+zCfR1nn0r53qM+16iAcJHQh/qqlRn7BrhMF hGmyWOVZapU7DLLtT5xVQsuBS87hZuZI2cKp5wo1mK+07wC+jL0BREUzrXiZZOEy SoBYPAfFkZ0mos8LnJQHlcr2I1Bczb7b5c0iP5d9MWlocs62OAwRREL/7IOU5/GR RAELibwUhO4mww== -----END CERTIFICATE-----Generated at Mon Jan 26 04:00:10 2026 by rpki-client