This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/97fb0d-d77f-4467-8627-e222bf8529b8/1/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.mft File: lRTfn9w6CxKMIO6MBmKMQ8lYu_A.mft (raw, json) Hash identifier: jpw7CL2v28qYyM75P7MsrNyixPLThYWceh4qJRWV7ZQ= Subject key identifier: A2:D2:ED:32:3D:AB:29:6B:E9:11:17:1D:8E:22:F6:EC:23:4C:AA:DE Authority key identifier: 95:14:DF:9F:DC:3A:0B:12:8C:20:EE:8C:06:62:8C:43:C9:58:BB:F0 Certificate issuer: /CN=9514df9fdc3a0b128c20ee8c06628c43c958bbf0 Certificate serial: 019BF7D16C6093823456F6C9A39524689E06 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/97fb0d-d77f-4467-8627-e222bf8529b8/1/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.mft Manifest number: 08D3 Signing time: Mon 26 Jan 2026 01:00:55 +0000 Manifest this update: Mon 26 Jan 2026 01:00:55 +0000 Manifest next update: Tue 27 Jan 2026 01:00:55 +0000 Files and hashes: 1: 2-4ZrGQpT0KhwdAqEtwr7VvBLF4.roa (hash: ZZxmDsOTlkFKhz+gwa9Ymw4vgOjq/wRy+P8gUBbGFBY=) 2: CNW3k6cV5qMFfGeO7DCzp4az4dk.roa (hash: eEtgT8pDcDhVSbny7WGDB2FnSEmCUTl8gLtOm3YCkbI=) 3: lRTfn9w6CxKMIO6MBmKMQ8lYu_A.crl (hash: kGmkv29WsuMk/+ZShThkLC2w+sZbyqZgn9Aj/IPnz8k=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/97fb0d-d77f-4467-8627-e222bf8529b8/1/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.crl rsync://rpki.ripe.net/repository/DEFAULT/8b/97fb0d-d77f-4467-8627-e222bf8529b8/1/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.mft rsync://rpki.ripe.net/repository/DEFAULT/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f7:d1:6c:60:93:82:34:56:f6:c9:a3:95:24:68:9e:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9514df9fdc3a0b128c20ee8c06628c43c958bbf0 Validity Not Before: Jan 26 01:00:55 2026 GMT Not After : Jan 27 01:00:55 2026 GMT Subject: CN=a2d2ed323dab296be911171d8e22f6ec234caade Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:3a:1f:3c:8e:c8:47:e0:51:4f:13:61:f0:c4: 83:70:fe:cc:ac:18:b0:c6:a9:63:fc:22:bf:d3:0c: 47:88:19:b6:5f:fc:94:cd:d8:81:18:ed:10:b9:dc: 63:f8:a9:8b:a0:65:71:df:3b:13:32:54:9a:96:3f: 51:cf:a3:34:1b:f9:0d:40:61:fa:f8:c9:4f:c8:3a: e3:d0:d3:9a:89:1e:94:b4:7c:3e:d9:ba:b9:1f:84: 82:00:1c:2b:7f:03:cc:8e:cf:eb:a5:09:48:e6:6b: 3c:3a:0b:25:aa:cc:49:0a:85:5a:59:79:92:17:a7: 81:cf:47:78:18:04:ef:32:15:d6:55:ee:cb:9a:35: 2a:85:9b:bc:5a:64:2d:b4:64:40:c8:d5:1e:dd:4d: 85:86:24:37:a9:ae:24:f7:ab:85:2e:3d:8a:2c:04: 9f:b0:58:7b:f6:d8:40:bc:8f:d9:a5:ef:cc:3e:83: 0b:7d:90:6b:82:b2:3f:fe:d6:19:f5:94:ab:0e:24: 9d:68:a0:56:67:a9:cc:3f:92:ba:33:32:7a:a2:71: cc:eb:74:ef:61:63:1d:4c:b0:4d:09:3e:6e:0a:87: 0b:7f:b1:1c:2a:ca:bd:d6:89:98:d8:e1:97:7c:83: b1:65:50:16:b9:e6:e9:2d:b0:9d:49:a3:ad:2f:31: fb:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:D2:ED:32:3D:AB:29:6B:E9:11:17:1D:8E:22:F6:EC:23:4C:AA:DE X509v3 Authority Key Identifier: keyid:95:14:DF:9F:DC:3A:0B:12:8C:20:EE:8C:06:62:8C:43:C9:58:BB:F0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/97fb0d-d77f-4467-8627-e222bf8529b8/1/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/97fb0d-d77f-4467-8627-e222bf8529b8/1/lRTfn9w6CxKMIO6MBmKMQ8lYu_A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 17:99:c3:da:aa:b7:c5:7e:27:48:97:bd:03:87:fa:fc:17:c1: 6d:0e:36:4e:77:7f:09:2b:1a:57:3e:da:64:89:a5:7d:3e:f8: 11:10:db:a3:d9:c9:c6:b2:0d:ba:07:b9:26:d2:75:5d:3c:ad: bd:f9:97:08:28:83:c0:4c:9c:65:3a:1b:a4:96:a5:68:f9:77: 71:4e:63:02:17:66:53:31:90:ff:e0:e0:29:f4:ce:10:38:1d: c3:4c:5f:31:22:ff:3a:db:16:4c:e4:2a:51:ad:22:ab:d9:70: 41:12:0d:65:e0:4b:2e:b6:80:0a:3f:d1:7d:bd:07:84:99:29: 4e:3e:38:71:be:fd:99:8c:10:57:b9:9c:a0:34:cb:04:d8:31: 94:36:03:cf:67:b3:44:60:b2:e1:c1:b7:48:aa:e4:3a:5f:d9: 23:69:15:02:2c:b9:20:c7:21:15:7d:1b:d0:da:ae:4f:e1:45: 47:55:3f:e3:60:58:8d:b3:11:67:36:27:01:af:4a:3e:fb:c7: 55:76:1c:b5:0c:d3:94:60:52:b3:95:8a:6d:8d:f6:c7:be:4e: 97:54:2a:ce:41:a2:01:b6:22:02:f3:bd:57:41:06:2a:3d:89: 3c:4f:22:9f:98:11:10:03:9a:55:a6:45:6b:fc:6d:c9:cc:df: ad:57:96:88 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv30Wxgk4I0VvbJo5UkaJ4GMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk1MTRkZjlmZGMzYTBiMTI4YzIwZWU4YzA2NjI4YzQzYzk1 OGJiZjAwHhcNMjYwMTI2MDEwMDU1WhcNMjYwMTI3MDEwMDU1WjAzMTEwLwYDVQQD EyhhMmQyZWQzMjNkYWIyOTZiZTkxMTE3MWQ4ZTIyZjZlYzIzNGNhYWRlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqjofPI7IR+BRTxNh8MSDcP7MrBiw xqlj/CK/0wxHiBm2X/yUzdiBGO0Qudxj+KmLoGVx3zsTMlSalj9Rz6M0G/kNQGH6 +MlPyDrj0NOaiR6UtHw+2bq5H4SCABwrfwPMjs/rpQlI5ms8OgslqsxJCoVaWXmS F6eBz0d4GATvMhXWVe7LmjUqhZu8WmQttGRAyNUe3U2FhiQ3qa4k96uFLj2KLASf sFh79thAvI/Zpe/MPoMLfZBrgrI//tYZ9ZSrDiSdaKBWZ6nMP5K6MzJ6onHM63Tv YWMdTLBNCT5uCocLf7EcKsq91omY2OGXfIOxZVAWuebpLbCdSaOtLzH7swIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKLS7TI9qylr6REXHY4i9uwjTKreMB8GA1UdIwQY MBaAFJUU35/cOgsSjCDujAZijEPJWLvwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbFJUZm45dzZDeEtNSU82TUJtS01ROGxZdV9BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yi85N2ZiMGQtZDc3Zi00NDY3LTg2Mjct ZTIyMmJmODUyOWI4LzEvbFJUZm45dzZDeEtNSU82TUJtS01ROGxZdV9BLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Yi85N2ZiMGQtZDc3Zi00NDY3LTg2MjctZTIyMmJmODUyOWI4 LzEvbFJUZm45dzZDeEtNSU82TUJtS01ROGxZdV9BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAF5nD2qq3 xX4nSJe9A4f6/BfBbQ42Tnd/CSsaVz7aZImlfT74ERDbo9nJxrINuge5JtJ1XTyt vfmXCCiDwEycZTobpJalaPl3cU5jAhdmUzGQ/+DgKfTOEDgdw0xfMSL/OtsWTOQq Ua0iq9lwQRINZeBLLraACj/Rfb0HhJkpTj44cb79mYwQV7mcoDTLBNgxlDYDz2ez RGCy4cG3SKrkOl/ZI2kVAiy5IMchFX0b0NquT+FFR1U/42BYjbMRZzYnAa9KPvvH VXYctQzTlGBSs5WKbY32x75Ol1QqzkGiAbYiAvO9V0EGKj2JPE8in5gREAOaVaZF a/xtyczfrVeWiA== -----END CERTIFICATE-----Generated at Mon Jan 26 05:36:44 2026 by rpki-client