This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9bacf8-146c-4b63-9d36-8200b86603b1/1/TOkDeb2NBDdLOt7wYNUa4hVxCTU.mft File: TOkDeb2NBDdLOt7wYNUa4hVxCTU.mft (raw, json) Hash identifier: sqOqIXn+h1jUaVqNx2EGbK4fudkJwiIKGWOVVahBVuI= Subject key identifier: B9:2F:72:51:45:09:73:78:AA:D5:0A:1A:40:4F:D6:C3:7A:04:D3:75 Authority key identifier: 4C:E9:03:79:BD:8D:04:37:4B:3A:DE:F0:60:D5:1A:E2:15:71:09:35 Certificate issuer: /CN=4ce90379bd8d04374b3adef060d51ae215710935 Certificate serial: 019BF98900115EAC1A398C15B860B3487C8D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TOkDeb2NBDdLOt7wYNUa4hVxCTU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9bacf8-146c-4b63-9d36-8200b86603b1/1/TOkDeb2NBDdLOt7wYNUa4hVxCTU.mft Manifest number: 01D2 Signing time: Mon 26 Jan 2026 09:01:03 +0000 Manifest this update: Mon 26 Jan 2026 09:01:03 +0000 Manifest next update: Tue 27 Jan 2026 09:01:03 +0000 Files and hashes: 1: EjuIE4enXZzinM4ZfgsSD3gwxuY.roa (hash: VmAOnFMFZNZ7v7h3b1tL7nh4Drf7aU0G1qxfw7anYLc=) 2: TOkDeb2NBDdLOt7wYNUa4hVxCTU.crl (hash: wIf0GKxRpC65a/AMFS7J32OTH4qS/kjgWcX3+bVo8OI=) 3: ksdLr_cpg0SNdbhzGPEUMaDjaa0.roa (hash: aWZAiEXDI8uHWbww+kMMTpEPGkhJJ3i3CwUVKl+KHtA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/9bacf8-146c-4b63-9d36-8200b86603b1/1/TOkDeb2NBDdLOt7wYNUa4hVxCTU.crl rsync://rpki.ripe.net/repository/DEFAULT/86/9bacf8-146c-4b63-9d36-8200b86603b1/1/TOkDeb2NBDdLOt7wYNUa4hVxCTU.mft rsync://rpki.ripe.net/repository/DEFAULT/TOkDeb2NBDdLOt7wYNUa4hVxCTU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 09:01:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f9:89:00:11:5e:ac:1a:39:8c:15:b8:60:b3:48:7c:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4ce90379bd8d04374b3adef060d51ae215710935 Validity Not Before: Jan 26 09:01:03 2026 GMT Not After : Jan 27 09:01:03 2026 GMT Subject: CN=b92f725145097378aad50a1a404fd6c37a04d375 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:d2:b3:c0:04:62:87:a1:d0:0d:8b:77:75:69: 01:18:be:99:41:12:a7:d1:c2:a4:0d:0d:6c:db:d1: 3f:04:d2:be:30:19:c8:ea:46:09:ff:37:6a:8d:00: cf:cf:61:b3:1b:e8:79:86:af:74:1b:1e:30:07:05: de:1d:e7:fb:b6:1d:48:8f:06:ea:36:be:03:a4:d1: 24:79:ee:23:5c:7a:1f:67:63:4b:d6:9a:86:d6:73: 55:9a:c3:c3:71:20:23:55:36:01:fd:1e:25:f9:7e: 30:01:be:ca:26:b1:41:78:71:df:77:97:ba:95:2d: fe:38:e6:ed:07:1a:27:3c:46:84:25:68:6c:2a:91: 17:d9:a4:42:3b:97:05:07:5f:14:35:43:37:2b:d7: 8b:9c:18:76:32:0e:80:c1:82:ad:3f:2f:7f:90:c7: 08:c3:3d:b9:f0:95:8c:26:ce:12:97:d4:f3:cf:79: ed:39:3f:27:6a:d1:e0:cd:8a:09:c3:a9:36:dd:bd: f9:7e:c8:25:d5:12:f5:ea:bf:0b:88:68:a0:6d:31: f2:67:0c:f5:0a:92:73:a3:71:4e:2e:a8:fe:bb:4f: 58:b0:3a:8e:3d:89:a5:39:76:61:18:19:96:1e:77: 8c:c8:f6:5a:72:bb:7b:20:a0:4f:46:38:68:4a:a0: 95:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:2F:72:51:45:09:73:78:AA:D5:0A:1A:40:4F:D6:C3:7A:04:D3:75 X509v3 Authority Key Identifier: keyid:4C:E9:03:79:BD:8D:04:37:4B:3A:DE:F0:60:D5:1A:E2:15:71:09:35 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TOkDeb2NBDdLOt7wYNUa4hVxCTU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9bacf8-146c-4b63-9d36-8200b86603b1/1/TOkDeb2NBDdLOt7wYNUa4hVxCTU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9bacf8-146c-4b63-9d36-8200b86603b1/1/TOkDeb2NBDdLOt7wYNUa4hVxCTU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6e:2a:04:2c:3f:a4:c7:a0:71:62:1d:31:8d:21:ae:b9:ed:e9: a4:c7:bf:86:b1:99:b2:11:b0:f9:88:02:91:f2:50:cd:4b:7e: 30:bb:f8:33:18:3d:53:65:b4:39:36:38:8e:e8:42:77:71:d9: ee:b5:7c:c9:db:de:93:52:97:4f:e0:59:60:88:f8:6b:0a:f5: e4:5c:71:39:8d:2c:39:38:c7:b6:af:ab:e4:06:a9:00:13:1e: 45:d8:ac:0d:4b:60:4e:63:b2:5b:d8:13:1d:33:64:c7:5e:81: 30:b1:b4:55:b8:9f:52:f2:12:ba:31:a6:ac:53:7e:ff:f1:de: f0:9e:56:b7:ae:35:58:af:ef:cc:94:83:b2:d7:39:d0:30:31: 13:31:2e:cc:cc:cd:5b:5a:f0:fb:5b:df:c4:3a:95:68:fc:33: 3f:23:cc:9a:11:53:8d:17:2f:c6:f2:ad:17:86:9a:50:ee:d4: 47:55:7a:43:d4:25:51:0d:59:00:ae:84:73:96:45:74:bd:ac: f5:59:5f:30:61:17:fc:da:f7:26:1a:0f:8d:4e:37:fa:84:58: 00:ff:8d:86:6c:b7:25:e7:23:03:c5:01:5c:9f:cf:63:47:eb: 38:13:ab:18:e6:10:30:ae:a9:60:4d:0c:a1:3e:78:66:60:3a: de:5e:f2:e2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv5iQARXqwaOYwVuGCzSHyNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRjZTkwMzc5YmQ4ZDA0Mzc0YjNhZGVmMDYwZDUxYWUyMTU3 MTA5MzUwHhcNMjYwMTI2MDkwMTAzWhcNMjYwMTI3MDkwMTAzWjAzMTEwLwYDVQQD EyhiOTJmNzI1MTQ1MDk3Mzc4YWFkNTBhMWE0MDRmZDZjMzdhMDRkMzc1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzNKzwARih6HQDYt3dWkBGL6ZQRKn 0cKkDQ1s29E/BNK+MBnI6kYJ/zdqjQDPz2GzG+h5hq90Gx4wBwXeHef7th1Ijwbq Nr4DpNEkee4jXHofZ2NL1pqG1nNVmsPDcSAjVTYB/R4l+X4wAb7KJrFBeHHfd5e6 lS3+OObtBxonPEaEJWhsKpEX2aRCO5cFB18UNUM3K9eLnBh2Mg6AwYKtPy9/kMcI wz258JWMJs4Sl9Tzz3ntOT8natHgzYoJw6k23b35fsgl1RL16r8LiGigbTHyZwz1 CpJzo3FOLqj+u09YsDqOPYmlOXZhGBmWHneMyPZacrt7IKBPRjhoSqCVQQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLkvclFFCXN4qtUKGkBP1sN6BNN1MB8GA1UdIwQY MBaAFEzpA3m9jQQ3Szre8GDVGuIVcQk1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVE9rRGViMk5CRGRMT3Q3d1lOVWE0aFZ4Q1RVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni85YmFjZjgtMTQ2Yy00YjYzLTlkMzYt ODIwMGI4NjYwM2IxLzEvVE9rRGViMk5CRGRMT3Q3d1lOVWE0aFZ4Q1RVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Ni85YmFjZjgtMTQ2Yy00YjYzLTlkMzYtODIwMGI4NjYwM2Ix LzEvVE9rRGViMk5CRGRMT3Q3d1lOVWE0aFZ4Q1RVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbioELD+k x6BxYh0xjSGuue3ppMe/hrGZshGw+YgCkfJQzUt+MLv4Mxg9U2W0OTY4juhCd3HZ 7rV8ydvek1KXT+BZYIj4awr15FxxOY0sOTjHtq+r5AapABMeRdisDUtgTmOyW9gT HTNkx16BMLG0VbifUvISujGmrFN+//He8J5Wt641WK/vzJSDstc50DAxEzEuzMzN W1rw+1vfxDqVaPwzPyPMmhFTjRcvxvKtF4aaUO7UR1V6Q9QlUQ1ZAK6Ec5ZFdL2s 9VlfMGEX/Nr3JhoPjU43+oRYAP+Nhmy3JecjA8UBXJ/PY0frOBOrGOYQMK6pYE0M oT54ZmA63l7y4g== -----END CERTIFICATE-----Generated at Mon Jan 26 17:00:57 2026 by rpki-client