This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.mft File: 4gShwspKTbAzN142DeMjeQumpbk.mft (raw, json) Hash identifier: 7pIejtTQSk4zcalWBll30X/1InPXeq+jjEOmcEl6exg= Subject key identifier: E7:9F:6C:DD:90:F2:D3:0E:A5:26:19:E7:9D:A2:A4:51:85:99:E1:63 Authority key identifier: E2:04:A1:C2:CA:4A:4D:B0:33:37:5E:36:0D:E3:23:79:0B:A6:A5:B9 Certificate issuer: /CN=e204a1c2ca4a4db033375e360de323790ba6a5b9 Certificate serial: 019BF9C0E4A940482CAAEE4D4A1B5A8F9CFE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4gShwspKTbAzN142DeMjeQumpbk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.mft Manifest number: 107F Signing time: Mon 26 Jan 2026 10:02:06 +0000 Manifest this update: Mon 26 Jan 2026 10:02:06 +0000 Manifest next update: Tue 27 Jan 2026 10:02:06 +0000 Files and hashes: 1: 4gShwspKTbAzN142DeMjeQumpbk.crl (hash: Y+BraPiOgdjN5wtB3xTfvsMjmpo9ryL1+AmdTAVgymY=) 2: Q_JnpghBEdCLh0xBHJB-tx_t2gw.roa (hash: Ab9wt6TXLrpI0IOi098sXRGVv7NV4z8Pe9YK/pyc2Mc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.crl rsync://rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.mft rsync://rpki.ripe.net/repository/DEFAULT/4gShwspKTbAzN142DeMjeQumpbk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 10:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f9:c0:e4:a9:40:48:2c:aa:ee:4d:4a:1b:5a:8f:9c:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e204a1c2ca4a4db033375e360de323790ba6a5b9 Validity Not Before: Jan 26 10:02:06 2026 GMT Not After : Jan 27 10:02:06 2026 GMT Subject: CN=e79f6cdd90f2d30ea52619e79da2a4518599e163 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:d6:9c:db:55:98:3b:b6:cf:47:4b:53:39:34: a6:36:43:14:7d:f7:41:d6:ab:03:39:fe:95:b9:19: f5:94:a8:8c:c1:e2:50:75:12:d8:d7:64:56:a5:72: 79:ab:ae:e0:e9:a3:80:f6:7a:6c:fa:67:ff:ed:d0: 04:b5:c6:e7:9d:f4:06:8b:c1:dd:67:fc:de:27:72: 60:61:4a:ba:dc:01:8e:7a:cf:f5:f6:17:27:e5:43: 21:92:7c:4f:58:9b:26:9b:3b:f1:20:c5:79:e0:5c: c2:02:33:64:49:65:01:50:51:3c:3a:8b:5d:a7:47: 34:d8:30:be:d8:1d:99:00:8b:03:9b:d7:98:4a:05: 70:48:3b:8f:b5:11:a3:5d:71:aa:a4:01:49:1c:1b: c7:32:15:86:a5:6c:e3:82:64:86:3e:d7:73:7a:0a: 21:9a:1d:f2:25:cf:2c:c1:1c:7a:37:4e:72:65:d9: 00:9c:b5:7b:61:e9:00:d0:63:39:f4:de:8d:ca:bf: 2d:c3:50:67:0e:8c:d3:d6:e3:a3:e1:2d:ac:65:ff: d9:15:2b:28:a1:3b:61:c2:b7:f4:6a:bb:1d:b9:c0: 6f:75:14:cb:e0:05:3e:6c:1c:6f:35:6c:67:a1:50: db:06:3d:99:6b:9e:d3:0e:a6:50:52:9f:eb:55:2b: 0e:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:9F:6C:DD:90:F2:D3:0E:A5:26:19:E7:9D:A2:A4:51:85:99:E1:63 X509v3 Authority Key Identifier: keyid:E2:04:A1:C2:CA:4A:4D:B0:33:37:5E:36:0D:E3:23:79:0B:A6:A5:B9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4gShwspKTbAzN142DeMjeQumpbk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/85/12e905-7854-473c-950b-cf4bd4f3f29d/1/4gShwspKTbAzN142DeMjeQumpbk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 98:e3:df:27:23:51:3f:70:e1:ae:9c:c0:02:99:17:80:cb:01: e0:1d:64:7b:a7:5a:7c:32:7c:bb:5f:e6:9c:78:61:80:f3:6e: ff:07:a0:99:28:67:43:13:ba:22:8a:2f:0e:5e:b4:ab:34:8a: a4:c7:1b:6b:6c:38:9d:fb:cf:c1:47:aa:66:a9:45:aa:d5:bc: 37:99:40:e2:d0:9b:e0:8c:51:44:59:d2:de:a6:53:39:f6:47: 92:94:1c:11:55:61:4b:92:92:e4:99:89:cf:e5:88:e5:ba:2f: 6c:43:ff:8f:1a:45:33:ea:a9:9f:d5:a4:14:1b:1f:c1:93:b0: f3:85:86:2f:5e:af:91:46:bf:9c:81:e7:2b:ba:29:f4:22:71: b2:9d:b7:77:41:3a:06:78:93:e1:da:f6:6b:cb:c2:89:26:51: 75:9b:66:bf:d4:95:a7:8c:b3:f2:0b:e8:e5:35:13:6b:e6:7c: ef:fb:b9:bb:36:ae:fa:bd:a2:fa:92:8d:d8:2d:a5:2a:9d:7a: 79:0e:78:3a:ab:fc:97:15:e5:d1:6d:1d:95:0f:bd:0f:0b:8d: e6:44:be:26:4f:9c:bb:8f:90:29:be:4e:52:6e:41:56:8a:a8: 2b:f3:6d:b7:bf:4d:d9:b3:5d:51:28:ed:73:10:29:57:02:c9: 92:92:d9:28 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv5wOSpQEgsqu5NShtaj5z+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUyMDRhMWMyY2E0YTRkYjAzMzM3NWUzNjBkZTMyMzc5MGJh NmE1YjkwHhcNMjYwMTI2MTAwMjA2WhcNMjYwMTI3MTAwMjA2WjAzMTEwLwYDVQQD EyhlNzlmNmNkZDkwZjJkMzBlYTUyNjE5ZTc5ZGEyYTQ1MTg1OTllMTYzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvNac21WYO7bPR0tTOTSmNkMUffdB 1qsDOf6VuRn1lKiMweJQdRLY12RWpXJ5q67g6aOA9nps+mf/7dAEtcbnnfQGi8Hd Z/zeJ3JgYUq63AGOes/19hcn5UMhknxPWJsmmzvxIMV54FzCAjNkSWUBUFE8Ootd p0c02DC+2B2ZAIsDm9eYSgVwSDuPtRGjXXGqpAFJHBvHMhWGpWzjgmSGPtdzegoh mh3yJc8swRx6N05yZdkAnLV7YekA0GM59N6Nyr8tw1BnDozT1uOj4S2sZf/ZFSso oTthwrf0arsducBvdRTL4AU+bBxvNWxnoVDbBj2Za57TDqZQUp/rVSsOKQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOefbN2Q8tMOpSYZ552ipFGFmeFjMB8GA1UdIwQY MBaAFOIEocLKSk2wMzdeNg3jI3kLpqW5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNGdTaHdzcEtUYkF6TjE0MkRlTWplUXVtcGJrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NS8xMmU5MDUtNzg1NC00NzNjLTk1MGIt Y2Y0YmQ0ZjNmMjlkLzEvNGdTaHdzcEtUYkF6TjE0MkRlTWplUXVtcGJrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84NS8xMmU5MDUtNzg1NC00NzNjLTk1MGItY2Y0YmQ0ZjNmMjlk LzEvNGdTaHdzcEtUYkF6TjE0MkRlTWplUXVtcGJrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmOPfJyNR P3DhrpzAApkXgMsB4B1ke6dafDJ8u1/mnHhhgPNu/wegmShnQxO6IoovDl60qzSK pMcba2w4nfvPwUeqZqlFqtW8N5lA4tCb4IxRRFnS3qZTOfZHkpQcEVVhS5KS5JmJ z+WI5bovbEP/jxpFM+qpn9WkFBsfwZOw84WGL16vkUa/nIHnK7op9CJxsp23d0E6 BniT4dr2a8vCiSZRdZtmv9SVp4yz8gvo5TUTa+Z87/u5uzau+r2i+pKN2C2lKp16 eQ54Oqv8lxXl0W0dlQ+9DwuN5kS+Jk+cu4+QKb5OUm5BVoqoK/Ntt79N2bNdUSjt cxApVwLJkpLZKA== -----END CERTIFICATE-----Generated at Mon Jan 26 12:25:36 2026 by rpki-client