This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/7d0029-f330-4a66-bedc-42f2ff859373/1/7FNfTIaAzg26SgPZXmZck8yZzrk.mft File: 7FNfTIaAzg26SgPZXmZck8yZzrk.mft (raw, json) Hash identifier: r8hZzYFTQh/3BmSiN7c88h9hNc7oiS/i2TDHP5wvcz0= Subject key identifier: 86:74:0F:3C:8B:FE:B1:C5:20:69:A1:50:92:98:3F:F7:83:63:36:05 Authority key identifier: EC:53:5F:4C:86:80:CE:0D:BA:4A:03:D9:5E:66:5C:93:CC:99:CE:B9 Certificate issuer: /CN=ec535f4c8680ce0dba4a03d95e665c93cc99ceb9 Certificate serial: 019BF6BED1E25B8A65B3B8E97DAEFCB8DA25 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7FNfTIaAzg26SgPZXmZck8yZzrk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/7d0029-f330-4a66-bedc-42f2ff859373/1/7FNfTIaAzg26SgPZXmZck8yZzrk.mft Manifest number: 035C Signing time: Sun 25 Jan 2026 20:00:59 +0000 Manifest this update: Sun 25 Jan 2026 20:00:59 +0000 Manifest next update: Mon 26 Jan 2026 20:00:59 +0000 Files and hashes: 1: 6_ZblNm9ZRmYGkapxWHWsVXv62A.roa (hash: l1m5QGoRdp/fQXdkGDAgYT7UXYr7yNDfK4bT6u+JkJo=) 2: 7FNfTIaAzg26SgPZXmZck8yZzrk.crl (hash: 9v+y+a/GBnajJ8BxH87XHZyLsHwPoZ9Edpk7tP7TeEI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/7d0029-f330-4a66-bedc-42f2ff859373/1/7FNfTIaAzg26SgPZXmZck8yZzrk.crl rsync://rpki.ripe.net/repository/DEFAULT/89/7d0029-f330-4a66-bedc-42f2ff859373/1/7FNfTIaAzg26SgPZXmZck8yZzrk.mft rsync://rpki.ripe.net/repository/DEFAULT/7FNfTIaAzg26SgPZXmZck8yZzrk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 20:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f6:be:d1:e2:5b:8a:65:b3:b8:e9:7d:ae:fc:b8:da:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ec535f4c8680ce0dba4a03d95e665c93cc99ceb9 Validity Not Before: Jan 25 20:00:59 2026 GMT Not After : Jan 26 20:00:59 2026 GMT Subject: CN=86740f3c8bfeb1c52069a15092983ff783633605 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:05:e1:af:3a:eb:ba:12:74:c7:95:8f:df:76: ac:13:37:4c:78:a1:cc:7c:50:02:42:5d:62:dc:64: 03:db:e0:bd:19:e4:9e:0c:15:d3:16:9c:fb:c4:f3: d4:8e:7d:66:15:35:90:b9:e7:fc:53:cb:84:5f:80: 68:d9:81:56:5f:bf:1a:d4:c8:c7:d7:0f:ac:69:26: 5d:6d:c4:ba:d1:0f:f2:01:94:04:29:92:a2:ad:71: 4d:3c:56:ff:25:dd:4d:79:16:a8:11:d0:f6:2c:ab: 1f:fd:6e:d0:31:2e:a2:47:92:b9:6e:dc:21:06:b6: 0d:a7:1b:5e:b6:c0:02:82:58:c6:4e:e6:03:ce:60: 3a:97:b6:cb:42:d9:59:68:79:92:08:c7:7d:99:89: 01:50:03:d4:61:71:c6:84:ac:b0:4b:74:28:03:89: 75:17:cb:32:50:04:be:3b:25:6c:fb:da:bd:04:19: a4:92:5c:43:30:ad:e0:e2:b4:4a:51:aa:4b:48:c1: 5b:5f:07:45:ec:68:90:d7:21:ac:cf:ea:e6:5d:4c: a1:18:3a:ec:6e:51:01:eb:49:e9:b8:8d:5e:eb:24: be:b6:93:84:02:91:a3:02:8d:75:07:c7:7d:45:84: 23:f7:8c:46:ed:c4:ae:7a:61:8b:42:ea:86:99:7d: 3a:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:74:0F:3C:8B:FE:B1:C5:20:69:A1:50:92:98:3F:F7:83:63:36:05 X509v3 Authority Key Identifier: keyid:EC:53:5F:4C:86:80:CE:0D:BA:4A:03:D9:5E:66:5C:93:CC:99:CE:B9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7FNfTIaAzg26SgPZXmZck8yZzrk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/7d0029-f330-4a66-bedc-42f2ff859373/1/7FNfTIaAzg26SgPZXmZck8yZzrk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/89/7d0029-f330-4a66-bedc-42f2ff859373/1/7FNfTIaAzg26SgPZXmZck8yZzrk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 23:1b:e3:f2:be:ef:96:9a:a1:02:bb:4d:71:4a:67:67:60:78: 6a:56:67:95:14:42:c9:a6:bc:97:da:f5:49:35:38:27:b8:80: a8:73:be:c8:d1:99:a8:7c:e0:98:6d:8f:5c:ef:00:11:5a:54: a5:e0:8b:14:80:9e:69:bb:90:e0:25:75:c6:9c:32:03:d3:cf: 80:8e:23:d2:82:7a:40:85:8e:7d:be:e2:ac:b2:e6:ea:c5:5f: 42:e3:21:b6:3f:53:77:53:87:aa:5c:6e:32:68:a9:c6:b4:35: eb:73:59:46:4a:a5:88:1f:9e:37:45:a4:39:e9:3a:86:21:14: 48:00:15:fc:1e:8c:3a:78:81:28:f7:bc:86:da:49:5e:cf:96: ab:20:ca:8b:8a:8e:48:4f:48:b2:cf:1f:d4:75:c3:dd:db:ce: f1:cf:c0:80:ef:e7:84:b6:70:65:e1:4c:3a:42:40:db:e0:c9: a6:dc:14:ce:48:da:0f:46:ca:fa:42:03:d3:29:ea:4d:dc:bf: 7c:2e:4f:5d:ee:24:0d:02:76:9e:72:b3:e2:72:d2:26:ef:47: 0a:bc:f0:d9:39:33:7a:95:e2:0a:6a:34:71:3f:1c:b0:5b:76: a4:f7:2c:d5:33:7c:60:86:6e:a6:60:16:58:9e:79:27:04:db: 2b:9c:e3:67 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv2vtHiW4pls7jpfa78uNolMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVjNTM1ZjRjODY4MGNlMGRiYTRhMDNkOTVlNjY1YzkzY2M5 OWNlYjkwHhcNMjYwMTI1MjAwMDU5WhcNMjYwMTI2MjAwMDU5WjAzMTEwLwYDVQQD Eyg4Njc0MGYzYzhiZmViMWM1MjA2OWExNTA5Mjk4M2ZmNzgzNjMzNjA1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtAXhrzrruhJ0x5WP33asEzdMeKHM fFACQl1i3GQD2+C9GeSeDBXTFpz7xPPUjn1mFTWQuef8U8uEX4Bo2YFWX78a1MjH 1w+saSZdbcS60Q/yAZQEKZKirXFNPFb/Jd1NeRaoEdD2LKsf/W7QMS6iR5K5btwh BrYNpxtetsACgljGTuYDzmA6l7bLQtlZaHmSCMd9mYkBUAPUYXHGhKywS3QoA4l1 F8syUAS+OyVs+9q9BBmkklxDMK3g4rRKUapLSMFbXwdF7GiQ1yGsz+rmXUyhGDrs blEB60npuI1e6yS+tpOEApGjAo11B8d9RYQj94xG7cSuemGLQuqGmX068QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIZ0DzyL/rHFIGmhUJKYP/eDYzYFMB8GA1UdIwQY MBaAFOxTX0yGgM4NukoD2V5mXJPMmc65MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvN0ZOZlRJYUF6ZzI2U2dQWlhtWmNrOHlaenJrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OS83ZDAwMjktZjMzMC00YTY2LWJlZGMt NDJmMmZmODU5MzczLzEvN0ZOZlRJYUF6ZzI2U2dQWlhtWmNrOHlaenJrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84OS83ZDAwMjktZjMzMC00YTY2LWJlZGMtNDJmMmZmODU5Mzcz LzEvN0ZOZlRJYUF6ZzI2U2dQWlhtWmNrOHlaenJrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIxvj8r7v lpqhArtNcUpnZ2B4alZnlRRCyaa8l9r1STU4J7iAqHO+yNGZqHzgmG2PXO8AEVpU peCLFICeabuQ4CV1xpwyA9PPgI4j0oJ6QIWOfb7irLLm6sVfQuMhtj9Td1OHqlxu MmipxrQ163NZRkqliB+eN0WkOek6hiEUSAAV/B6MOniBKPe8htpJXs+WqyDKi4qO SE9Iss8f1HXD3dvO8c/AgO/nhLZwZeFMOkJA2+DJptwUzkjaD0bK+kID0ynqTdy/ fC5PXe4kDQJ2nnKz4nLSJu9HCrzw2TkzepXiCmo0cT8csFt2pPcs1TN8YIZupmAW WJ55JwTbK5zjZw== -----END CERTIFICATE-----Generated at Mon Jan 26 04:24:25 2026 by rpki-client