This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/250946-da66-4a94-bae6-ee77d75c325e/1/hNYBqLDqXLJMXsT4XSJn2CGTHAI.mft File: hNYBqLDqXLJMXsT4XSJn2CGTHAI.mft (raw, json) Hash identifier: RQW4AVBaZCtqt53sSryvPEqfPlyvc56PP4HeCiZ/dfI= Subject key identifier: 7D:AA:36:EF:F1:F8:7B:53:FE:06:42:24:0D:62:DB:09:64:6D:61:97 Authority key identifier: 84:D6:01:A8:B0:EA:5C:B2:4C:5E:C4:F8:5D:22:67:D8:21:93:1C:02 Certificate issuer: /CN=84d601a8b0ea5cb24c5ec4f85d2267d821931c02 Certificate serial: 019BF5AC969025EED8AF4C824B33DEDB17AA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hNYBqLDqXLJMXsT4XSJn2CGTHAI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/250946-da66-4a94-bae6-ee77d75c325e/1/hNYBqLDqXLJMXsT4XSJn2CGTHAI.mft Manifest number: 0B03 Signing time: Sun 25 Jan 2026 15:01:27 +0000 Manifest this update: Sun 25 Jan 2026 15:01:27 +0000 Manifest next update: Mon 26 Jan 2026 15:01:27 +0000 Files and hashes: 1: GPPNPmR8KUY_sEY8Xyw8dhEolxg.roa (hash: JjmXr+ibRaRGfx0pfBbomv1IH9Jgiuy25aSKoWiXJmg=) 2: hNYBqLDqXLJMXsT4XSJn2CGTHAI.crl (hash: PiBC/PixBUTdqnAjL1iXhu4Rr0BvXpTR1iYiYhQWxCU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/250946-da66-4a94-bae6-ee77d75c325e/1/hNYBqLDqXLJMXsT4XSJn2CGTHAI.crl rsync://rpki.ripe.net/repository/DEFAULT/94/250946-da66-4a94-bae6-ee77d75c325e/1/hNYBqLDqXLJMXsT4XSJn2CGTHAI.mft rsync://rpki.ripe.net/repository/DEFAULT/hNYBqLDqXLJMXsT4XSJn2CGTHAI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f5:ac:96:90:25:ee:d8:af:4c:82:4b:33:de:db:17:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=84d601a8b0ea5cb24c5ec4f85d2267d821931c02 Validity Not Before: Jan 25 15:01:27 2026 GMT Not After : Jan 26 15:01:27 2026 GMT Subject: CN=7daa36eff1f87b53fe0642240d62db09646d6197 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:6a:39:92:57:48:ce:05:d0:66:7c:83:63:b8: 78:a8:c7:83:b8:08:e4:7b:24:fb:d0:81:6d:c3:2b: 04:4a:bd:8a:48:6e:f4:b6:c2:86:ae:18:7d:0f:17: 73:1d:88:5f:d9:63:5e:8a:e5:e2:7c:ad:98:df:64: e4:c8:60:65:ce:08:75:61:4c:3d:4c:44:f2:db:41: f5:4d:e0:d5:21:c7:31:dd:5b:2c:9f:5b:87:81:76: 7c:65:e7:65:80:31:70:e4:5a:bf:7d:a4:b3:ac:3b: 33:2b:76:8c:3a:9b:9e:c4:67:6d:a6:43:a9:17:b0: 62:45:eb:b6:e9:57:d7:02:61:dc:91:62:92:b3:97: 75:64:4b:6d:90:e4:bf:3a:dc:34:3a:40:8e:e3:83: de:6e:e3:57:14:5d:55:e7:60:58:78:62:eb:ac:e4: 08:9d:5d:41:cc:f7:49:c8:29:3f:fa:fc:67:bd:8a: 74:80:e4:3b:7a:98:09:d7:e6:2b:1a:1d:2b:0f:61: b2:18:34:6b:ad:0b:24:fa:6e:1f:fe:2a:9a:43:76: 9f:7e:f2:e3:bb:61:08:a1:a4:78:52:2d:88:c7:15: 4b:8f:93:d5:b7:df:71:56:0c:07:8b:73:ba:96:73: b8:c9:33:26:9b:88:49:00:a8:5c:4d:48:c6:96:e4: f4:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:AA:36:EF:F1:F8:7B:53:FE:06:42:24:0D:62:DB:09:64:6D:61:97 X509v3 Authority Key Identifier: keyid:84:D6:01:A8:B0:EA:5C:B2:4C:5E:C4:F8:5D:22:67:D8:21:93:1C:02 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hNYBqLDqXLJMXsT4XSJn2CGTHAI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/250946-da66-4a94-bae6-ee77d75c325e/1/hNYBqLDqXLJMXsT4XSJn2CGTHAI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/94/250946-da66-4a94-bae6-ee77d75c325e/1/hNYBqLDqXLJMXsT4XSJn2CGTHAI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 35:82:16:6f:9e:68:c1:dc:53:73:c2:8f:0c:1f:02:2a:57:a9: 44:a2:ff:76:b2:69:79:54:e6:de:69:c2:1f:f2:bf:ee:b2:fb: d2:c5:7e:69:e3:44:26:4d:c5:8b:f3:c7:d6:7d:a6:54:a3:d3: b9:da:a9:4f:ff:ad:5e:0e:a6:ef:ac:8b:42:a7:62:ab:61:9c: c5:dd:21:86:df:62:50:6f:cd:8e:c3:38:25:e8:31:3c:58:36: 80:9c:1f:59:36:37:a9:e4:3e:65:4e:50:86:42:4b:42:18:15: 75:60:86:fd:41:4e:26:11:a2:e0:23:1b:01:fd:75:94:3a:d1: 72:47:70:77:9b:22:4e:8b:23:aa:20:db:42:44:3a:3b:c8:f7: 08:4d:c1:f6:b4:0a:73:f4:23:df:c8:23:6b:45:59:4e:26:70: a1:1d:e6:16:58:82:df:75:36:e7:88:20:56:a0:53:c8:a8:0e: a6:08:85:ed:b8:e4:f3:c5:27:77:d2:96:63:b7:80:79:63:82: a7:0c:50:ab:7a:be:86:99:99:00:5a:55:60:61:2b:0e:25:89: d0:ca:ec:65:fe:aa:34:82:44:d3:96:84:fc:01:77:47:f2:57: 73:50:49:7a:11:78:ee:bf:1f:ed:d8:bf:b8:3b:a8:13:77:d8: 02:5c:e3:c9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv1rJaQJe7Yr0yCSzPe2xeqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg0ZDYwMWE4YjBlYTVjYjI0YzVlYzRmODVkMjI2N2Q4MjE5 MzFjMDIwHhcNMjYwMTI1MTUwMTI3WhcNMjYwMTI2MTUwMTI3WjAzMTEwLwYDVQQD Eyg3ZGFhMzZlZmYxZjg3YjUzZmUwNjQyMjQwZDYyZGIwOTY0NmQ2MTk3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2mo5kldIzgXQZnyDY7h4qMeDuAjk eyT70IFtwysESr2KSG70tsKGrhh9DxdzHYhf2WNeiuXifK2Y32TkyGBlzgh1YUw9 TETy20H1TeDVIccx3Vssn1uHgXZ8ZedlgDFw5Fq/faSzrDszK3aMOpuexGdtpkOp F7BiReu26VfXAmHckWKSs5d1ZEttkOS/Otw0OkCO44PebuNXFF1V52BYeGLrrOQI nV1BzPdJyCk/+vxnvYp0gOQ7epgJ1+YrGh0rD2GyGDRrrQsk+m4f/iqaQ3affvLj u2EIoaR4Ui2IxxVLj5PVt99xVgwHi3O6lnO4yTMmm4hJAKhcTUjGluT0QQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFH2qNu/x+HtT/gZCJA1i2wlkbWGXMB8GA1UdIwQY MBaAFITWAaiw6lyyTF7E+F0iZ9ghkxwCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaE5ZQnFMRHFYTEpNWHNUNFhTSm4yQ0dUSEFJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NC8yNTA5NDYtZGE2Ni00YTk0LWJhZTYt ZWU3N2Q3NWMzMjVlLzEvaE5ZQnFMRHFYTEpNWHNUNFhTSm4yQ0dUSEFJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85NC8yNTA5NDYtZGE2Ni00YTk0LWJhZTYtZWU3N2Q3NWMzMjVl LzEvaE5ZQnFMRHFYTEpNWHNUNFhTSm4yQ0dUSEFJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANYIWb55o wdxTc8KPDB8CKlepRKL/drJpeVTm3mnCH/K/7rL70sV+aeNEJk3Fi/PH1n2mVKPT udqpT/+tXg6m76yLQqdiq2Gcxd0hht9iUG/NjsM4JegxPFg2gJwfWTY3qeQ+ZU5Q hkJLQhgVdWCG/UFOJhGi4CMbAf11lDrRckdwd5siTosjqiDbQkQ6O8j3CE3B9rQK c/Qj38gja0VZTiZwoR3mFliC33U254ggVqBTyKgOpgiF7bjk88Und9KWY7eAeWOC pwxQq3q+hpmZAFpVYGErDiWJ0MrsZf6qNIJE05aE/AF3R/JXc1BJehF47r8f7di/ uDuoE3fYAlzjyQ== -----END CERTIFICATE-----Generated at Sun Jan 25 21:12:23 2026 by rpki-client