This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/b2f963-3939-44c5-9b9d-b16242b9bde7/1/rZR5r-OpoY4cN0_KAi0f8qJVsa8.mft File: rZR5r-OpoY4cN0_KAi0f8qJVsa8.mft (raw, json) Hash identifier: OUmuFV/9HvUdHxFkvG61uP85BjKCpfEqwrLWnmL0uto= Subject key identifier: 93:E8:6B:26:8B:93:D4:56:73:0F:12:70:5F:76:0B:57:D9:F0:FD:67 Authority key identifier: AD:94:79:AF:E3:A9:A1:8E:1C:37:4F:CA:02:2D:1F:F2:A2:55:B1:AF Certificate issuer: /CN=ad9479afe3a9a18e1c374fca022d1ff2a255b1af Certificate serial: 019BF8085DBBE1A3DAD0DF33FEA5F5D925E0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rZR5r-OpoY4cN0_KAi0f8qJVsa8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/b2f963-3939-44c5-9b9d-b16242b9bde7/1/rZR5r-OpoY4cN0_KAi0f8qJVsa8.mft Manifest number: 029F Signing time: Mon 26 Jan 2026 02:00:56 +0000 Manifest this update: Mon 26 Jan 2026 02:00:56 +0000 Manifest next update: Tue 27 Jan 2026 02:00:56 +0000 Files and hashes: 1: 15iMLkZijLxFQhyhHpyZVO_Pbh0.roa (hash: 4vg9pvNIz6AeHAhcqTYuN2xhMEHA7ity8ku3fgSFNxI=) 2: rZR5r-OpoY4cN0_KAi0f8qJVsa8.crl (hash: aCMrf8tqc0lQ8nMF6lvvY+/jRWoubnTyoE42eWD+tJc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/b2f963-3939-44c5-9b9d-b16242b9bde7/1/rZR5r-OpoY4cN0_KAi0f8qJVsa8.crl rsync://rpki.ripe.net/repository/DEFAULT/82/b2f963-3939-44c5-9b9d-b16242b9bde7/1/rZR5r-OpoY4cN0_KAi0f8qJVsa8.mft rsync://rpki.ripe.net/repository/DEFAULT/rZR5r-OpoY4cN0_KAi0f8qJVsa8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f8:08:5d:bb:e1:a3:da:d0:df:33:fe:a5:f5:d9:25:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ad9479afe3a9a18e1c374fca022d1ff2a255b1af Validity Not Before: Jan 26 02:00:56 2026 GMT Not After : Jan 27 02:00:56 2026 GMT Subject: CN=93e86b268b93d456730f12705f760b57d9f0fd67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:8a:14:a9:58:a0:a9:44:7b:a8:01:cc:b6:51: 6d:05:54:d7:91:85:6f:c9:70:e4:77:34:5c:d7:27: 7e:62:5c:d4:4c:bb:4e:36:79:4a:16:dc:de:f0:4d: 63:b1:fe:3b:39:ac:35:68:b4:97:72:0a:04:ee:61: ba:7a:2b:99:b5:ea:83:56:93:9f:ff:d8:ca:fa:96: 3c:2b:3c:ce:b1:da:e2:58:4c:95:46:b8:34:a4:f2: f9:dc:97:78:98:72:68:bc:ec:b4:f5:99:d6:98:6c: 63:d8:01:30:b8:13:df:6b:0d:fd:69:5d:8e:e9:a3: eb:d4:7d:9f:ec:29:7a:98:6a:e9:c3:13:46:56:7e: 00:d7:08:61:ad:82:29:32:94:48:93:93:ea:07:d6: 26:ef:51:77:82:5d:3f:e5:ff:e7:c2:b3:1b:45:c7: a6:8f:74:0a:52:36:ea:b5:1b:11:3f:5d:f9:0c:58: 59:18:97:39:60:85:8b:d0:1a:2b:41:53:70:a0:66: fd:32:90:fd:3e:ae:66:00:27:9b:bb:73:d6:67:4e: 30:7f:e0:93:0f:75:1f:b9:1c:f9:d8:86:8f:6d:cb: ee:55:80:9a:92:8f:98:c3:de:f7:29:bd:a3:12:08: 98:54:a9:bb:60:d7:e8:d2:57:b6:14:53:f2:49:5b: 26:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:E8:6B:26:8B:93:D4:56:73:0F:12:70:5F:76:0B:57:D9:F0:FD:67 X509v3 Authority Key Identifier: keyid:AD:94:79:AF:E3:A9:A1:8E:1C:37:4F:CA:02:2D:1F:F2:A2:55:B1:AF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rZR5r-OpoY4cN0_KAi0f8qJVsa8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/b2f963-3939-44c5-9b9d-b16242b9bde7/1/rZR5r-OpoY4cN0_KAi0f8qJVsa8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/82/b2f963-3939-44c5-9b9d-b16242b9bde7/1/rZR5r-OpoY4cN0_KAi0f8qJVsa8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 89:cb:b3:97:39:2e:93:0f:17:e5:e6:60:bc:d3:72:63:93:6c: bd:2b:e8:dd:bf:7f:9f:6b:12:ec:0d:61:18:36:73:28:36:19: be:67:25:f3:f3:e5:27:56:50:ff:1e:db:5d:ec:d4:43:7b:75: 22:19:71:f3:a3:6c:19:73:b4:9b:ec:0f:45:46:bc:c3:3b:96: 77:fd:85:f8:98:25:73:9b:8c:7d:6b:93:56:fa:33:72:a4:72: 71:b8:f9:97:1f:b6:dd:81:e5:47:f1:c4:36:23:8c:5c:f0:41: 09:a1:33:76:24:31:46:bc:a9:f6:18:11:74:c2:d9:a5:29:75: 50:3a:50:c5:af:02:df:f1:84:46:ce:af:c5:c0:c3:01:9f:ad: d0:68:34:6f:01:38:3f:58:b4:db:d0:fb:e4:19:b3:19:52:aa: 54:28:da:99:b8:ec:7a:a8:c8:84:74:14:67:b8:3b:0e:ab:0b: 8d:15:04:52:b7:7d:cd:45:50:0a:40:69:25:9d:63:b1:6a:15: 88:07:f4:ee:8c:05:d7:a2:72:44:c1:b6:03:8f:e2:19:a6:e8: 7b:74:30:ed:c6:59:40:0f:df:36:5a:07:01:88:1b:f1:9e:36: 5d:40:e9:84:6c:3a:90:52:78:b6:16:87:c8:53:d7:0a:1b:53: 5a:00:97:40 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv4CF274aPa0N8z/qX12SXgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFkOTQ3OWFmZTNhOWExOGUxYzM3NGZjYTAyMmQxZmYyYTI1 NWIxYWYwHhcNMjYwMTI2MDIwMDU2WhcNMjYwMTI3MDIwMDU2WjAzMTEwLwYDVQQD Eyg5M2U4NmIyNjhiOTNkNDU2NzMwZjEyNzA1Zjc2MGI1N2Q5ZjBmZDY3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuYoUqVigqUR7qAHMtlFtBVTXkYVv yXDkdzRc1yd+YlzUTLtONnlKFtze8E1jsf47Oaw1aLSXcgoE7mG6eiuZteqDVpOf /9jK+pY8KzzOsdriWEyVRrg0pPL53Jd4mHJovOy09ZnWmGxj2AEwuBPfaw39aV2O 6aPr1H2f7Cl6mGrpwxNGVn4A1whhrYIpMpRIk5PqB9Ym71F3gl0/5f/nwrMbRcem j3QKUjbqtRsRP135DFhZGJc5YIWL0BorQVNwoGb9MpD9Pq5mACebu3PWZ04wf+CT D3UfuRz52IaPbcvuVYCako+Yw973Kb2jEgiYVKm7YNfo0le2FFPySVsmUQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJPoayaLk9RWcw8ScF92C1fZ8P1nMB8GA1UdIwQY MBaAFK2Uea/jqaGOHDdPygItH/KiVbGvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvclpSNXItT3BvWTRjTjBfS0FpMGY4cUpWc2E4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Mi9iMmY5NjMtMzkzOS00NGM1LTliOWQt YjE2MjQyYjliZGU3LzEvclpSNXItT3BvWTRjTjBfS0FpMGY4cUpWc2E4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Mi9iMmY5NjMtMzkzOS00NGM1LTliOWQtYjE2MjQyYjliZGU3 LzEvclpSNXItT3BvWTRjTjBfS0FpMGY4cUpWc2E4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAicuzlzku kw8X5eZgvNNyY5NsvSvo3b9/n2sS7A1hGDZzKDYZvmcl8/PlJ1ZQ/x7bXezUQ3t1 Ihlx86NsGXO0m+wPRUa8wzuWd/2F+Jglc5uMfWuTVvozcqRycbj5lx+23YHlR/HE NiOMXPBBCaEzdiQxRryp9hgRdMLZpSl1UDpQxa8C3/GERs6vxcDDAZ+t0Gg0bwE4 P1i029D75BmzGVKqVCjambjseqjIhHQUZ7g7DqsLjRUEUrd9zUVQCkBpJZ1jsWoV iAf07owF16JyRMG2A4/iGaboe3Qw7cZZQA/fNloHAYgb8Z42XUDphGw6kFJ4thaH yFPXChtTWgCXQA== -----END CERTIFICATE-----Generated at Mon Jan 26 05:57:01 2026 by rpki-client