This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/af35c3-7f81-4829-8dba-18dbe6504bb4/1/FoYA36ydPRp15mMNaXEC8vITLEg.mft File: FoYA36ydPRp15mMNaXEC8vITLEg.mft (raw, json) Hash identifier: 1aTnhSlAcAGlkHAO28sD6mrDBoTmL9ytu6iHzak8zpw= Subject key identifier: B2:B7:C3:F5:07:9A:95:50:75:4F:B7:FE:2A:F5:A8:BE:70:FD:EB:61 Authority key identifier: 16:86:00:DF:AC:9D:3D:1A:75:E6:63:0D:69:71:02:F2:F2:13:2C:48 Certificate issuer: /CN=168600dfac9d3d1a75e6630d697102f2f2132c48 Certificate serial: 019BF4D09D58C7A8D4900806441231756EF7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FoYA36ydPRp15mMNaXEC8vITLEg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/af35c3-7f81-4829-8dba-18dbe6504bb4/1/FoYA36ydPRp15mMNaXEC8vITLEg.mft Manifest number: 17F7 Signing time: Sun 25 Jan 2026 11:01:10 +0000 Manifest this update: Sun 25 Jan 2026 11:01:10 +0000 Manifest next update: Mon 26 Jan 2026 11:01:10 +0000 Files and hashes: 1: E4NAfEwW3jbfNnqs4s6wX2om-oU.roa (hash: fdTtA83SV7tJMvW5toFMANKX74HjpiK+6fBeEianyoA=) 2: FoYA36ydPRp15mMNaXEC8vITLEg.crl (hash: YwpAlhxp6lcUNp6AiQ+LZrOXk0cHtqXTfoHfo1vcnCw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/af35c3-7f81-4829-8dba-18dbe6504bb4/1/FoYA36ydPRp15mMNaXEC8vITLEg.crl rsync://rpki.ripe.net/repository/DEFAULT/86/af35c3-7f81-4829-8dba-18dbe6504bb4/1/FoYA36ydPRp15mMNaXEC8vITLEg.mft rsync://rpki.ripe.net/repository/DEFAULT/FoYA36ydPRp15mMNaXEC8vITLEg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 11:01:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f4:d0:9d:58:c7:a8:d4:90:08:06:44:12:31:75:6e:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=168600dfac9d3d1a75e6630d697102f2f2132c48 Validity Not Before: Jan 25 11:01:10 2026 GMT Not After : Jan 26 11:01:10 2026 GMT Subject: CN=b2b7c3f5079a9550754fb7fe2af5a8be70fdeb61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:5c:8e:00:5c:c6:3c:b8:2b:41:ad:b0:bb:cd: 5b:03:51:ba:7f:ad:9c:6b:b5:f6:73:46:a6:46:29: d5:6d:b0:50:03:d5:09:5a:04:5f:87:60:5c:70:97: 6e:38:a8:1f:ca:53:8b:ae:57:b3:08:6b:6d:1a:5a: 37:89:99:3f:08:21:93:50:5f:4a:c1:02:5e:7d:b5: ab:33:d3:df:dc:d4:56:ef:df:9d:f5:84:6f:4b:2c: 37:58:ab:52:f8:fe:33:58:5d:ee:43:b7:a6:ad:53: ec:fe:7e:5e:12:62:d2:c2:21:84:a7:e3:18:69:7e: 37:1f:52:0e:6c:e2:70:41:62:b4:e2:ec:c8:44:6b: 77:95:9c:bf:93:b5:35:37:76:55:d1:f5:97:d9:49: ab:d9:e1:ca:60:7d:1c:32:94:39:92:c0:3f:38:fc: 73:ca:6e:b8:7c:85:27:29:c0:cd:b2:fa:fa:35:a5: 75:8b:5c:af:47:84:c7:79:b2:06:b9:da:e1:87:b4: 87:4b:20:c3:b4:43:45:bf:c5:2d:a4:56:ba:b4:ff: ee:fb:f5:2f:ce:23:dc:cf:7a:3c:ea:33:54:9f:da: 1c:e7:6e:cc:8b:06:ce:f6:48:b3:b6:2c:d7:f8:dc: 91:0b:6c:59:ef:8f:f8:67:4e:fc:55:aa:75:9f:06: 61:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:B7:C3:F5:07:9A:95:50:75:4F:B7:FE:2A:F5:A8:BE:70:FD:EB:61 X509v3 Authority Key Identifier: keyid:16:86:00:DF:AC:9D:3D:1A:75:E6:63:0D:69:71:02:F2:F2:13:2C:48 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FoYA36ydPRp15mMNaXEC8vITLEg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/af35c3-7f81-4829-8dba-18dbe6504bb4/1/FoYA36ydPRp15mMNaXEC8vITLEg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/86/af35c3-7f81-4829-8dba-18dbe6504bb4/1/FoYA36ydPRp15mMNaXEC8vITLEg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 24:80:da:f8:91:6f:15:de:e5:14:a8:b0:f2:8d:93:84:54:63: 68:5d:43:e1:b0:10:5e:1d:24:ae:8e:34:8c:f6:a4:e4:58:6c: c7:79:ec:91:00:c8:c5:3a:d8:01:d3:2b:9b:37:7a:bc:a8:e9: fa:be:a5:ca:b5:43:55:4a:4b:c5:84:c6:bd:63:01:c0:6d:24: 7f:20:53:4a:f9:ac:0f:e0:93:8d:c1:7a:9e:a4:00:37:54:4b: 3f:37:ab:4c:d7:88:dc:1d:0d:c0:6e:19:d2:93:5f:fc:4e:53: ae:9b:79:c3:d0:db:3d:fa:6f:4b:bc:f5:46:24:d0:ed:cc:13: 1e:20:84:62:5d:35:e7:f3:d0:b8:e8:8f:5e:72:7f:e9:27:e7: e1:e0:6b:40:76:cd:4e:56:3d:3a:f8:26:3b:e4:5c:94:5a:a7: db:33:9e:b5:61:74:fc:e2:ae:18:58:dd:94:66:94:cd:66:1b: 31:49:d1:5b:97:3a:fe:3c:67:0a:db:5c:26:dc:e8:a4:44:d0: fb:b7:c6:60:8e:79:34:fb:ba:30:dc:5a:1b:4e:5c:74:2d:08: bf:7f:0d:57:13:a5:13:f0:e2:17:fe:73:6c:f5:56:6a:40:f8: 94:6d:06:1b:4a:da:d7:e6:56:8d:41:2b:76:2b:20:85:bc:c4: e6:95:7f:7f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv00J1Yx6jUkAgGRBIxdW73MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE2ODYwMGRmYWM5ZDNkMWE3NWU2NjMwZDY5NzEwMmYyZjIx MzJjNDgwHhcNMjYwMTI1MTEwMTEwWhcNMjYwMTI2MTEwMTEwWjAzMTEwLwYDVQQD EyhiMmI3YzNmNTA3OWE5NTUwNzU0ZmI3ZmUyYWY1YThiZTcwZmRlYjYxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2FyOAFzGPLgrQa2wu81bA1G6f62c a7X2c0amRinVbbBQA9UJWgRfh2BccJduOKgfylOLrlezCGttGlo3iZk/CCGTUF9K wQJefbWrM9Pf3NRW79+d9YRvSyw3WKtS+P4zWF3uQ7emrVPs/n5eEmLSwiGEp+MY aX43H1IObOJwQWK04uzIRGt3lZy/k7U1N3ZV0fWX2Umr2eHKYH0cMpQ5ksA/OPxz ym64fIUnKcDNsvr6NaV1i1yvR4THebIGudrhh7SHSyDDtENFv8UtpFa6tP/u+/Uv ziPcz3o86jNUn9oc527MiwbO9kiztizX+NyRC2xZ74/4Z078Vap1nwZhowIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLK3w/UHmpVQdU+3/ir1qL5w/ethMB8GA1UdIwQY MBaAFBaGAN+snT0adeZjDWlxAvLyEyxIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRm9ZQTM2eWRQUnAxNW1NTmFYRUM4dklUTEVnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni9hZjM1YzMtN2Y4MS00ODI5LThkYmEt MThkYmU2NTA0YmI0LzEvRm9ZQTM2eWRQUnAxNW1NTmFYRUM4dklUTEVnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Ni9hZjM1YzMtN2Y4MS00ODI5LThkYmEtMThkYmU2NTA0YmI0 LzEvRm9ZQTM2eWRQUnAxNW1NTmFYRUM4dklUTEVnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJIDa+JFv Fd7lFKiw8o2ThFRjaF1D4bAQXh0kro40jPak5Fhsx3nskQDIxTrYAdMrmzd6vKjp +r6lyrVDVUpLxYTGvWMBwG0kfyBTSvmsD+CTjcF6nqQAN1RLPzerTNeI3B0NwG4Z 0pNf/E5Trpt5w9DbPfpvS7z1RiTQ7cwTHiCEYl015/PQuOiPXnJ/6Sfn4eBrQHbN TlY9OvgmO+RclFqn2zOetWF0/OKuGFjdlGaUzWYbMUnRW5c6/jxnCttcJtzopETQ +7fGYI55NPu6MNxaG05cdC0Iv38NVxOlE/DiF/5zbPVWakD4lG0GG0ra1+ZWjUEr disghbzE5pV/fw== -----END CERTIFICATE-----Generated at Sun Jan 25 18:13:57 2026 by rpki-client