This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/798889-29d4-4f53-a041-50acbaeec7ca/1/8zXtZqwB15F1zk149nKh_kcgN4A.mft File: 8zXtZqwB15F1zk149nKh_kcgN4A.mft (raw, json) Hash identifier: n/XMr4u7V2LaeG/h/UTKrnziHqUCzWHgvThIvEIceTk= Subject key identifier: 50:05:3F:E5:02:AD:FC:D9:86:B6:29:40:3C:6F:EC:B3:7A:67:28:6B Authority key identifier: F3:35:ED:66:AC:01:D7:91:75:CE:4D:78:F6:72:A1:FE:47:20:37:80 Certificate issuer: /CN=f335ed66ac01d79175ce4d78f672a1fe47203780 Certificate serial: 019BF3BDCE51718A5715F310381C1F7C8525 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8zXtZqwB15F1zk149nKh_kcgN4A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/798889-29d4-4f53-a041-50acbaeec7ca/1/8zXtZqwB15F1zk149nKh_kcgN4A.mft Manifest number: 01AC Signing time: Sun 25 Jan 2026 06:01:01 +0000 Manifest this update: Sun 25 Jan 2026 06:01:01 +0000 Manifest next update: Mon 26 Jan 2026 06:01:01 +0000 Files and hashes: 1: 8zXtZqwB15F1zk149nKh_kcgN4A.crl (hash: +THifqlzkiDe1XXo/oaSRggIB4wJlbpzyV2rjmuRqJM=) 2: VpiFwK0hsjfTbGKdlZz4M450A4o.roa (hash: 7nG4whDnBMU971FoyHXyhGJf7PxhrWgEoIfy9EmmD2A=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/798889-29d4-4f53-a041-50acbaeec7ca/1/8zXtZqwB15F1zk149nKh_kcgN4A.crl rsync://rpki.ripe.net/repository/DEFAULT/83/798889-29d4-4f53-a041-50acbaeec7ca/1/8zXtZqwB15F1zk149nKh_kcgN4A.mft rsync://rpki.ripe.net/repository/DEFAULT/8zXtZqwB15F1zk149nKh_kcgN4A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 06:01:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f3:bd:ce:51:71:8a:57:15:f3:10:38:1c:1f:7c:85:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f335ed66ac01d79175ce4d78f672a1fe47203780 Validity Not Before: Jan 25 06:01:01 2026 GMT Not After : Jan 26 06:01:01 2026 GMT Subject: CN=50053fe502adfcd986b629403c6fecb37a67286b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:59:97:af:7e:5f:18:57:31:e7:1f:2c:a4:e8: f0:02:b7:28:6a:b4:eb:a7:b6:c4:bb:ad:e0:d3:f2: 13:5b:cc:0d:76:27:31:44:c2:ed:84:a8:42:1f:20: f0:f6:d2:a8:9a:1c:e8:81:2c:50:e6:9f:58:2c:95: 8d:4f:5c:5c:a1:45:2d:58:5b:e1:d9:55:26:5e:99: ce:47:4d:19:cf:b9:78:94:fa:01:a7:fe:5e:7b:e8: ad:66:dc:6e:d2:0e:97:ad:0f:98:13:2e:fc:b6:e8: ad:3c:26:9e:94:ed:3d:bd:5f:b5:f4:cd:60:c3:67: 94:b0:77:25:01:eb:bc:d8:b5:a6:15:28:cc:23:e1: 96:ab:e7:f1:b0:cf:65:2a:b4:14:34:6b:68:b9:36: 54:ce:ca:48:02:3b:b2:ef:81:52:ab:34:bf:f2:79: 2d:2a:2d:03:08:1e:f3:37:86:05:4b:3b:b1:29:83: 1f:3d:de:4e:a1:51:9f:ea:d9:5a:75:f7:42:90:2e: c5:c2:0d:d4:c8:b7:92:37:9a:21:1c:ea:fd:db:4d: 28:ae:b4:97:82:0d:7a:fd:ef:5e:f2:fb:ef:8a:10: 9b:dc:0d:68:9e:2c:65:65:3c:c7:db:f0:9a:09:57: af:38:48:d4:53:5b:73:9c:dd:5b:f0:ad:7f:cc:e7: fc:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:05:3F:E5:02:AD:FC:D9:86:B6:29:40:3C:6F:EC:B3:7A:67:28:6B X509v3 Authority Key Identifier: keyid:F3:35:ED:66:AC:01:D7:91:75:CE:4D:78:F6:72:A1:FE:47:20:37:80 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8zXtZqwB15F1zk149nKh_kcgN4A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/798889-29d4-4f53-a041-50acbaeec7ca/1/8zXtZqwB15F1zk149nKh_kcgN4A.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/83/798889-29d4-4f53-a041-50acbaeec7ca/1/8zXtZqwB15F1zk149nKh_kcgN4A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 29:59:34:bc:43:44:f3:9e:34:5b:26:b0:6d:b3:61:9b:d0:5c: 0a:57:f4:92:21:4a:c6:b2:f8:59:71:37:22:df:a2:55:64:35: 07:6b:2b:a0:52:38:ea:9f:91:af:f3:e5:b8:15:54:c2:2f:2e: 68:a4:f8:e7:3c:62:bb:97:8c:e4:81:e2:08:ba:63:0a:78:b0: 21:31:6d:b9:2b:4c:a2:91:11:1c:a7:d5:e8:95:59:0e:55:8c: 98:3e:3e:9d:4d:23:cf:3c:36:b2:65:41:7f:71:f4:44:c7:6f: 20:be:63:0e:ff:61:b6:ab:42:8d:18:fc:2a:66:41:54:ba:2e: 64:34:e8:6e:1c:c1:de:d1:ea:14:be:75:ee:d5:2a:ab:23:cc: 9b:da:37:a1:00:6c:2e:ed:73:2f:f6:a2:c8:8d:a8:7d:0f:41: ba:bb:3f:81:e4:84:73:92:d1:cf:01:a7:c7:ab:5a:7b:63:da: 62:6c:48:88:fb:58:64:17:21:b8:01:40:0e:2c:7f:70:47:85: a2:21:e8:70:fd:7b:4a:0e:5b:29:d9:79:85:3d:92:78:f9:6a: 6c:a1:de:fa:6c:bc:98:9e:41:3a:fb:fe:b9:f6:35:2f:a9:3f: 60:9b:8c:d6:8c:18:40:db:91:0e:13:0d:e0:0c:f7:a4:1f:60: 97:3d:6a:c7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZvzvc5RcYpXFfMQOBwffIUlMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYzMzVlZDY2YWMwMWQ3OTE3NWNlNGQ3OGY2NzJhMWZlNDcy MDM3ODAwHhcNMjYwMTI1MDYwMTAxWhcNMjYwMTI2MDYwMTAxWjAzMTEwLwYDVQQD Eyg1MDA1M2ZlNTAyYWRmY2Q5ODZiNjI5NDAzYzZmZWNiMzdhNjcyODZiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6FmXr35fGFcx5x8spOjwArcoarTr p7bEu63g0/ITW8wNdicxRMLthKhCHyDw9tKomhzogSxQ5p9YLJWNT1xcoUUtWFvh 2VUmXpnOR00Zz7l4lPoBp/5ee+itZtxu0g6XrQ+YEy78tuitPCaelO09vV+19M1g w2eUsHclAeu82LWmFSjMI+GWq+fxsM9lKrQUNGtouTZUzspIAjuy74FSqzS/8nkt Ki0DCB7zN4YFSzuxKYMfPd5OoVGf6tladfdCkC7Fwg3UyLeSN5ohHOr9200orrSX gg16/e9e8vvvihCb3A1onixlZTzH2/CaCVevOEjUU1tznN1b8K1/zOf8fQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFAFP+UCrfzZhrYpQDxv7LN6ZyhrMB8GA1UdIwQY MBaAFPM17WasAdeRdc5NePZyof5HIDeAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOHpYdFpxd0IxNUYxemsxNDluS2hfa2NnTjRBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84My83OTg4ODktMjlkNC00ZjUzLWEwNDEt NTBhY2JhZWVjN2NhLzEvOHpYdFpxd0IxNUYxemsxNDluS2hfa2NnTjRBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84My83OTg4ODktMjlkNC00ZjUzLWEwNDEtNTBhY2JhZWVjN2Nh LzEvOHpYdFpxd0IxNUYxemsxNDluS2hfa2NnTjRBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKVk0vENE 8540WyawbbNhm9BcClf0kiFKxrL4WXE3It+iVWQ1B2sroFI46p+Rr/PluBVUwi8u aKT45zxiu5eM5IHiCLpjCniwITFtuStMopERHKfV6JVZDlWMmD4+nU0jzzw2smVB f3H0RMdvIL5jDv9htqtCjRj8KmZBVLouZDTobhzB3tHqFL517tUqqyPMm9o3oQBs Lu1zL/aiyI2ofQ9Burs/geSEc5LRzwGnx6tae2PaYmxIiPtYZBchuAFADix/cEeF oiHocP17Sg5bKdl5hT2SePlqbKHe+my8mJ5BOvv+ufY1L6k/YJuM1owYQNuRDhMN 4Az3pB9glz1qxw== -----END CERTIFICATE-----Generated at Sun Jan 25 13:13:12 2026 by rpki-client