This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/b2471c-bebc-4412-a6a4-2f9cac700fa5/1/aDjbfmmRJ9pMHFpek_RPMCtihjs.mft File: aDjbfmmRJ9pMHFpek_RPMCtihjs.mft (raw, json) Hash identifier: c9ifagyY1rkER2eM5GABhOpJWrBUzFVZ08FEXkVPPMk= Subject key identifier: FF:1A:46:6E:0D:7F:F5:0C:E8:A7:27:FB:FE:75:D6:5A:82:2C:3D:9B Authority key identifier: 68:38:DB:7E:69:91:27:DA:4C:1C:5A:5E:93:F4:4F:30:2B:62:86:3B Certificate issuer: /CN=6838db7e699127da4c1c5a5e93f44f302b62863b Certificate serial: 019BF5AC330655B7E7D6A2AFD294EDBA9731 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aDjbfmmRJ9pMHFpek_RPMCtihjs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/b2471c-bebc-4412-a6a4-2f9cac700fa5/1/aDjbfmmRJ9pMHFpek_RPMCtihjs.mft Manifest number: 17E7 Signing time: Sun 25 Jan 2026 15:01:01 +0000 Manifest this update: Sun 25 Jan 2026 15:01:01 +0000 Manifest next update: Mon 26 Jan 2026 15:01:01 +0000 Files and hashes: 1: a1IDt2xomxWARvsJeU8MLNXS4IU.roa (hash: 426ydjesv20i56PFyO1tKmNiavKTm2qYefp1CVawqKM=) 2: aDjbfmmRJ9pMHFpek_RPMCtihjs.crl (hash: r84traIlciAX0GF9P4+zZwPnorqw2YB9rVO9VhWUmUw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/93/b2471c-bebc-4412-a6a4-2f9cac700fa5/1/aDjbfmmRJ9pMHFpek_RPMCtihjs.crl rsync://rpki.ripe.net/repository/DEFAULT/93/b2471c-bebc-4412-a6a4-2f9cac700fa5/1/aDjbfmmRJ9pMHFpek_RPMCtihjs.mft rsync://rpki.ripe.net/repository/DEFAULT/aDjbfmmRJ9pMHFpek_RPMCtihjs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 15:01:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f5:ac:33:06:55:b7:e7:d6:a2:af:d2:94:ed:ba:97:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6838db7e699127da4c1c5a5e93f44f302b62863b Validity Not Before: Jan 25 15:01:01 2026 GMT Not After : Jan 26 15:01:01 2026 GMT Subject: CN=ff1a466e0d7ff50ce8a727fbfe75d65a822c3d9b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:af:fd:de:1f:e3:ad:2a:62:e7:0c:7b:22:e7: 76:07:94:41:ae:fa:86:65:e1:88:3b:e9:7d:58:3a: 2f:a6:99:f3:d7:0d:3d:80:fd:cf:ec:04:3b:da:7c: 8d:1c:47:1a:57:de:c0:6d:3f:69:dc:17:fd:c5:11: 3e:2c:d3:4f:30:3e:b7:70:d6:6d:a5:89:76:c4:19: 79:77:87:47:1f:8e:e2:78:cf:c3:ea:49:e2:77:75: bc:31:e1:6d:fb:9c:60:d9:3e:fa:eb:b6:ee:f1:71: 9a:a2:2a:00:74:e6:e7:87:69:8d:1d:f9:36:22:2d: 69:6e:ea:99:6a:15:d6:2f:4b:eb:07:3c:67:2d:72: 71:4b:c7:54:e5:1e:1b:fb:4e:09:10:66:cf:b6:84: 9b:ea:4e:a1:1c:db:53:3d:36:5c:d2:78:f2:df:11: 3e:ac:b7:5f:e1:c9:7a:d5:b9:4e:b0:0f:26:ed:af: ed:0c:0d:1c:2d:0b:31:62:e9:78:a1:44:10:f4:68: 6b:4a:c7:79:d2:6b:6b:f8:62:a1:b9:c1:89:dc:e7: 6e:47:52:84:31:81:34:c4:ff:bc:df:cf:a7:07:b8: 6d:90:50:a6:21:ec:0d:3e:75:cb:4a:8a:23:e4:d2: a6:50:ad:f7:75:cf:5d:48:2f:59:cd:1f:f5:5f:26: 85:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:1A:46:6E:0D:7F:F5:0C:E8:A7:27:FB:FE:75:D6:5A:82:2C:3D:9B X509v3 Authority Key Identifier: keyid:68:38:DB:7E:69:91:27:DA:4C:1C:5A:5E:93:F4:4F:30:2B:62:86:3B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aDjbfmmRJ9pMHFpek_RPMCtihjs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/b2471c-bebc-4412-a6a4-2f9cac700fa5/1/aDjbfmmRJ9pMHFpek_RPMCtihjs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/93/b2471c-bebc-4412-a6a4-2f9cac700fa5/1/aDjbfmmRJ9pMHFpek_RPMCtihjs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 52:53:23:df:7f:d8:8f:ae:a4:70:f7:a0:f9:41:6d:ca:66:17: b1:63:48:80:8e:54:8e:ee:2a:48:2a:4b:3c:e5:79:55:ac:c9: 20:e7:e8:12:e9:b8:b8:e2:8a:da:5f:49:47:d0:2d:97:31:c2: da:75:4d:00:b7:08:1e:b3:30:5b:eb:0a:f8:55:e9:da:5d:d4: bb:f1:84:34:48:35:be:1d:ea:b6:76:42:09:4e:30:2e:7c:32: 36:90:14:6f:9b:9c:20:ff:68:c8:ce:5b:50:8c:f6:8d:e7:81: c3:05:1b:3c:76:6f:ee:40:83:2c:5f:2b:d5:bc:6f:c8:28:e4: 59:52:b2:72:ba:0f:2b:cf:7f:a2:0e:e4:b5:8b:98:d7:c5:a7: 21:77:8d:ef:cc:a2:68:d8:86:b9:94:ab:0d:42:b7:27:20:4e: dd:1e:cd:de:53:64:67:7d:80:41:65:ed:94:96:a5:9f:7c:f7: f8:6d:b2:94:ce:cc:57:b2:4a:a1:40:8e:90:7d:bf:f7:02:f8: b4:3b:dd:63:6b:8c:2a:e8:fd:8d:4a:ed:12:56:2c:81:b3:d1: 9a:5a:f1:3a:4d:ee:f3:c7:ea:f0:b0:d5:6a:ec:57:63:f5:3b: 07:4a:12:36:9a:17:5e:32:50:25:3c:69:89:1a:ba:bd:4d:6f: fe:51:43:16 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv1rDMGVbfn1qKv0pTtupcxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY4MzhkYjdlNjk5MTI3ZGE0YzFjNWE1ZTkzZjQ0ZjMwMmI2 Mjg2M2IwHhcNMjYwMTI1MTUwMTAxWhcNMjYwMTI2MTUwMTAxWjAzMTEwLwYDVQQD EyhmZjFhNDY2ZTBkN2ZmNTBjZThhNzI3ZmJmZTc1ZDY1YTgyMmMzZDliMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkK/93h/jrSpi5wx7Iud2B5RBrvqG ZeGIO+l9WDovppnz1w09gP3P7AQ72nyNHEcaV97AbT9p3Bf9xRE+LNNPMD63cNZt pYl2xBl5d4dHH47ieM/D6knid3W8MeFt+5xg2T7667bu8XGaoioAdObnh2mNHfk2 Ii1pbuqZahXWL0vrBzxnLXJxS8dU5R4b+04JEGbPtoSb6k6hHNtTPTZc0njy3xE+ rLdf4cl61blOsA8m7a/tDA0cLQsxYul4oUQQ9GhrSsd50mtr+GKhucGJ3OduR1KE MYE0xP+838+nB7htkFCmIewNPnXLSooj5NKmUK33dc9dSC9ZzR/1XyaFgwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFP8aRm4Nf/UM6Kcn+/511lqCLD2bMB8GA1UdIwQY MBaAFGg4235pkSfaTBxaXpP0TzArYoY7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYURqYmZtbVJKOXBNSEZwZWtfUlBNQ3RpaGpzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85My9iMjQ3MWMtYmViYy00NDEyLWE2YTQt MmY5Y2FjNzAwZmE1LzEvYURqYmZtbVJKOXBNSEZwZWtfUlBNQ3RpaGpzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85My9iMjQ3MWMtYmViYy00NDEyLWE2YTQtMmY5Y2FjNzAwZmE1 LzEvYURqYmZtbVJKOXBNSEZwZWtfUlBNQ3RpaGpzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUlMj33/Y j66kcPeg+UFtymYXsWNIgI5Uju4qSCpLPOV5VazJIOfoEum4uOKK2l9JR9AtlzHC 2nVNALcIHrMwW+sK+FXp2l3Uu/GENEg1vh3qtnZCCU4wLnwyNpAUb5ucIP9oyM5b UIz2jeeBwwUbPHZv7kCDLF8r1bxvyCjkWVKycroPK89/og7ktYuY18WnIXeN78yi aNiGuZSrDUK3JyBO3R7N3lNkZ32AQWXtlJaln3z3+G2ylM7MV7JKoUCOkH2/9wL4 tDvdY2uMKuj9jUrtElYsgbPRmlrxOk3u88fq8LDVauxXY/U7B0oSNpoXXjJQJTxp iRq6vU1v/lFDFg== -----END CERTIFICATE-----Generated at Mon Jan 26 00:18:15 2026 by rpki-client