This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/62afbb-b8f8-4b12-9193-1c5107cab353/1/Gnyv3jE1omvdQXkCnuv3QU6WQ68.mft File: Gnyv3jE1omvdQXkCnuv3QU6WQ68.mft (raw, json) Hash identifier: JXwoU2OY6AOVCKb4X3S137jIHWHeqKgkqx0PDJcHN7Y= Subject key identifier: CD:89:1B:03:2E:5F:6F:E2:D0:93:B7:7B:05:07:A0:08:B3:F1:5C:C8 Authority key identifier: 1A:7C:AF:DE:31:35:A2:6B:DD:41:79:02:9E:EB:F7:41:4E:96:43:AF Certificate issuer: /CN=1a7cafde3135a26bdd4179029eebf7414e9643af Certificate serial: 019BFC1BFF9CA6F094EE593A077751B78E1E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gnyv3jE1omvdQXkCnuv3QU6WQ68.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/62afbb-b8f8-4b12-9193-1c5107cab353/1/Gnyv3jE1omvdQXkCnuv3QU6WQ68.mft Manifest number: 17E7 Signing time: Mon 26 Jan 2026 21:00:51 +0000 Manifest this update: Mon 26 Jan 2026 21:00:51 +0000 Manifest next update: Tue 27 Jan 2026 21:00:51 +0000 Files and hashes: 1: E2vGMfTh0_d3hFyTF_vwxF5KrPA.roa (hash: DBcvB5VPooiTXjGKSVqOi+hUE2hv4iu9s06iz8E2+EI=) 2: Gnyv3jE1omvdQXkCnuv3QU6WQ68.crl (hash: NKG0WJNYk09idstEl8of8stDXDCz/YVw2hbBLnqSJag=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/62afbb-b8f8-4b12-9193-1c5107cab353/1/Gnyv3jE1omvdQXkCnuv3QU6WQ68.crl rsync://rpki.ripe.net/repository/DEFAULT/83/62afbb-b8f8-4b12-9193-1c5107cab353/1/Gnyv3jE1omvdQXkCnuv3QU6WQ68.mft rsync://rpki.ripe.net/repository/DEFAULT/Gnyv3jE1omvdQXkCnuv3QU6WQ68.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 20:39:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fc:1b:ff:9c:a6:f0:94:ee:59:3a:07:77:51:b7:8e:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1a7cafde3135a26bdd4179029eebf7414e9643af Validity Not Before: Jan 26 21:00:51 2026 GMT Not After : Jan 27 21:00:51 2026 GMT Subject: CN=cd891b032e5f6fe2d093b77b0507a008b3f15cc8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:bd:fd:e1:7e:e5:29:2b:77:19:fb:c7:0f:1e: 3e:22:5c:c7:93:6d:bc:d0:a9:80:71:2f:96:6a:57: 15:36:5b:fe:5d:ae:77:8f:f4:66:2c:8e:54:25:c9: 01:66:68:8d:6e:8b:84:6b:6b:cc:4a:80:5e:90:d1: 1a:6c:86:dd:ad:98:1a:f1:dc:90:08:0b:f9:47:40: 96:aa:02:14:03:44:ed:7d:5c:03:bf:d0:8e:15:81: 89:ee:2f:e7:b7:ec:4e:69:9d:d3:8f:8a:3a:8d:c0: 28:3b:70:9d:35:95:a6:7d:a1:2b:92:f7:f2:14:40: 9d:25:a2:bb:19:e2:89:9f:92:53:ca:63:7d:2d:38: 77:49:03:f5:5e:12:c8:67:89:6c:0a:db:7f:54:69: c8:42:25:8c:ad:b1:87:ea:79:48:31:0a:fa:5b:f2: 74:f5:cb:31:80:49:a1:66:ed:fc:59:86:7f:f0:5a: a7:c1:d6:9e:59:1b:e7:bd:ea:30:96:40:1e:36:b6: 15:b8:af:cb:e6:23:0e:f8:fb:75:65:09:09:8c:e2: 73:24:18:17:0d:b7:9d:16:a8:67:77:74:da:ce:77: bc:3e:fd:e8:13:b7:7e:45:52:e1:4a:d5:76:62:bf: 95:d6:ce:9a:4c:9f:9f:04:5b:30:50:18:e2:ec:71: 81:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:89:1B:03:2E:5F:6F:E2:D0:93:B7:7B:05:07:A0:08:B3:F1:5C:C8 X509v3 Authority Key Identifier: keyid:1A:7C:AF:DE:31:35:A2:6B:DD:41:79:02:9E:EB:F7:41:4E:96:43:AF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gnyv3jE1omvdQXkCnuv3QU6WQ68.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/62afbb-b8f8-4b12-9193-1c5107cab353/1/Gnyv3jE1omvdQXkCnuv3QU6WQ68.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/83/62afbb-b8f8-4b12-9193-1c5107cab353/1/Gnyv3jE1omvdQXkCnuv3QU6WQ68.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 36:9c:82:6b:00:77:2c:55:5f:59:ee:e6:7f:10:22:a7:c7:e9: 0d:5e:45:48:99:c7:83:6e:86:d0:d2:c2:52:c1:18:54:99:52: a6:3c:fc:93:af:e5:70:df:7e:cb:23:06:a5:1f:de:45:9d:a8: de:fc:93:fa:75:ca:f8:67:d5:d7:0e:b6:a7:32:c7:ec:bb:98: 75:0b:4e:3e:be:a6:d8:d1:29:29:12:79:46:85:f0:c2:6c:66: ad:e7:a8:52:5a:c9:b6:b4:86:f4:c7:7b:6a:39:22:f5:0d:8a: 07:5f:21:93:2d:88:e5:73:d4:11:a7:06:ce:99:bf:b1:f5:ea: 25:6c:63:c1:e4:4e:4f:7f:11:b9:e4:d9:9b:83:10:f6:c7:d6: 0d:ff:9b:4c:83:09:29:8d:d2:09:0c:da:de:21:d8:e7:d7:8a: 46:a5:12:fd:1b:94:b2:e3:e3:4b:e4:ae:b6:dd:c2:bf:9e:db: 9b:d7:c1:3d:70:95:c8:af:05:99:cd:a1:16:90:e3:58:90:d8: 6a:5c:7d:a7:a6:bb:89:81:20:b7:38:61:53:87:af:21:56:bd: 18:bd:b6:1a:90:5c:3d:82:ba:9c:42:fa:41:af:e3:c7:d1:25: 09:32:dc:e0:84:dc:90:8e:8b:12:36:c5:58:3e:7f:97:36:d0: 20:2a:09:fd -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv8G/+cpvCU7lk6B3dRt44eMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhN2NhZmRlMzEzNWEyNmJkZDQxNzkwMjllZWJmNzQxNGU5 NjQzYWYwHhcNMjYwMTI2MjEwMDUxWhcNMjYwMTI3MjEwMDUxWjAzMTEwLwYDVQQD EyhjZDg5MWIwMzJlNWY2ZmUyZDA5M2I3N2IwNTA3YTAwOGIzZjE1Y2M4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo7394X7lKSt3GfvHDx4+IlzHk228 0KmAcS+WalcVNlv+Xa53j/RmLI5UJckBZmiNbouEa2vMSoBekNEabIbdrZga8dyQ CAv5R0CWqgIUA0TtfVwDv9COFYGJ7i/nt+xOaZ3Tj4o6jcAoO3CdNZWmfaErkvfy FECdJaK7GeKJn5JTymN9LTh3SQP1XhLIZ4lsCtt/VGnIQiWMrbGH6nlIMQr6W/J0 9csxgEmhZu38WYZ/8FqnwdaeWRvnveowlkAeNrYVuK/L5iMO+Pt1ZQkJjOJzJBgX DbedFqhnd3Tazne8Pv3oE7d+RVLhStV2Yr+V1s6aTJ+fBFswUBji7HGBOwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFM2JGwMuX2/i0JO3ewUHoAiz8VzIMB8GA1UdIwQY MBaAFBp8r94xNaJr3UF5Ap7r90FOlkOvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR255djNqRTFvbXZkUVhrQ251djNRVTZXUTY4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84My82MmFmYmItYjhmOC00YjEyLTkxOTMt MWM1MTA3Y2FiMzUzLzEvR255djNqRTFvbXZkUVhrQ251djNRVTZXUTY4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84My82MmFmYmItYjhmOC00YjEyLTkxOTMtMWM1MTA3Y2FiMzUz LzEvR255djNqRTFvbXZkUVhrQ251djNRVTZXUTY4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANpyCawB3 LFVfWe7mfxAip8fpDV5FSJnHg26G0NLCUsEYVJlSpjz8k6/lcN9+yyMGpR/eRZ2o 3vyT+nXK+GfV1w62pzLH7LuYdQtOPr6m2NEpKRJ5RoXwwmxmreeoUlrJtrSG9Md7 ajki9Q2KB18hky2I5XPUEacGzpm/sfXqJWxjweROT38RueTZm4MQ9sfWDf+bTIMJ KY3SCQza3iHY59eKRqUS/RuUsuPjS+Sutt3Cv57bm9fBPXCVyK8Fmc2hFpDjWJDY alx9p6a7iYEgtzhhU4evIVa9GL22GpBcPYK6nEL6Qa/jx9ElCTLc4ITckI6LEjbF WD5/lzbQICoJ/Q== -----END CERTIFICATE-----Generated at Tue Jan 27 04:21:31 2026 by rpki-client