This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/fb39a8-623b-4435-94fe-cec92b578006/1/U1vkU3bViYdFK9Bka5p0z562yy0.mft File: U1vkU3bViYdFK9Bka5p0z562yy0.mft (raw, json) Hash identifier: eanwVvTmmfS/zgcuTg8aihOzfvTG23ayO/TS2GEeYwg= Subject key identifier: 38:21:D2:09:60:B4:2E:00:E4:D9:D4:A5:F4:26:55:93:01:BB:BA:66 Authority key identifier: 53:5B:E4:53:76:D5:89:87:45:2B:D0:64:6B:9A:74:CF:9E:B6:CB:2D Certificate issuer: /CN=535be45376d58987452bd0646b9a74cf9eb6cb2d Certificate serial: 019BF6515FE33130FF64C96DB27B22E4F05D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U1vkU3bViYdFK9Bka5p0z562yy0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/fb39a8-623b-4435-94fe-cec92b578006/1/U1vkU3bViYdFK9Bka5p0z562yy0.mft Manifest number: 17E9 Signing time: Sun 25 Jan 2026 18:01:26 +0000 Manifest this update: Sun 25 Jan 2026 18:01:26 +0000 Manifest next update: Mon 26 Jan 2026 18:01:26 +0000 Files and hashes: 1: U1vkU3bViYdFK9Bka5p0z562yy0.crl (hash: tGn8eQdiLNZTvZ9Yr1u5q8YQAyM6NJPtnQADOthLjSk=) 2: yAmajTNIGB30RaNnDKHZKbNV084.roa (hash: AvmPyTEQGMbZs2CFL6VyUeUgqUB6djXcQ6A/Qc+SDAE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/fb39a8-623b-4435-94fe-cec92b578006/1/U1vkU3bViYdFK9Bka5p0z562yy0.crl rsync://rpki.ripe.net/repository/DEFAULT/95/fb39a8-623b-4435-94fe-cec92b578006/1/U1vkU3bViYdFK9Bka5p0z562yy0.mft rsync://rpki.ripe.net/repository/DEFAULT/U1vkU3bViYdFK9Bka5p0z562yy0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f6:51:5f:e3:31:30:ff:64:c9:6d:b2:7b:22:e4:f0:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=535be45376d58987452bd0646b9a74cf9eb6cb2d Validity Not Before: Jan 25 18:01:26 2026 GMT Not After : Jan 26 18:01:26 2026 GMT Subject: CN=3821d20960b42e00e4d9d4a5f426559301bbba66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:d3:44:b1:f6:1b:9f:7a:46:62:c7:fc:dd:e3: e1:25:5d:53:2e:4f:88:ec:ca:ea:dd:69:75:0e:d8: ba:b1:33:fa:a8:35:03:cf:73:a4:7e:19:e0:f7:0b: b8:b2:03:23:67:60:a4:c5:57:48:15:31:3b:9f:d7: cb:b4:5c:8c:27:af:2c:db:14:43:d9:a9:3c:cc:5d: a3:df:81:82:81:4a:74:aa:ad:e8:94:d9:ef:a5:53: 93:12:45:a7:33:4c:05:eb:d5:18:11:bd:a5:86:4e: f2:89:3a:26:63:91:5e:f3:59:6b:86:8d:0b:03:67: f9:1f:8e:fe:94:c2:ce:ed:ad:8c:3d:dc:3a:3e:0f: 0e:b5:9c:99:65:33:91:e0:ba:b5:07:6d:1b:2e:7a: 19:c6:bd:e9:5d:2e:a5:01:ba:5a:c2:90:d8:a1:3a: 12:2b:99:bf:58:8e:0a:6a:e1:f8:5c:fe:a3:08:51: 01:30:18:05:69:c2:77:e2:6b:65:d3:39:30:6a:82: 4b:04:3d:6e:37:64:a5:9b:6b:3a:a9:90:b9:d5:8b: 4b:6a:58:3d:7e:b6:c2:e7:c1:15:30:15:f8:3f:88: b1:e2:10:95:2d:7e:fd:2e:07:14:66:f9:b4:b9:dc: 6c:e6:a2:3e:53:a8:a2:ea:68:3a:b4:99:3a:9a:85: 66:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:21:D2:09:60:B4:2E:00:E4:D9:D4:A5:F4:26:55:93:01:BB:BA:66 X509v3 Authority Key Identifier: keyid:53:5B:E4:53:76:D5:89:87:45:2B:D0:64:6B:9A:74:CF:9E:B6:CB:2D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U1vkU3bViYdFK9Bka5p0z562yy0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/fb39a8-623b-4435-94fe-cec92b578006/1/U1vkU3bViYdFK9Bka5p0z562yy0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/95/fb39a8-623b-4435-94fe-cec92b578006/1/U1vkU3bViYdFK9Bka5p0z562yy0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b5:12:45:b5:61:3f:47:31:50:16:ac:98:81:38:b3:da:a8:6f: 4a:01:cf:0c:f3:84:e1:16:38:14:31:68:56:84:ac:3f:46:59: 78:94:67:5f:20:80:73:04:20:ce:1e:cb:a7:51:0d:c0:bb:21: 7d:0f:66:dc:ee:8b:f5:e5:49:21:ac:ec:f3:6e:e8:65:f5:17: db:21:03:34:a8:42:b4:b7:b3:fb:b7:e2:9a:a8:41:4e:50:ff: fb:c0:78:78:0c:a2:25:e8:a3:28:17:09:b8:44:85:2b:f0:d6: e1:4e:78:d0:bd:85:94:ac:e9:8f:bc:7b:b7:55:a8:36:61:a3: ea:71:d1:10:05:6b:1b:76:36:2a:69:4a:e6:f6:34:6f:42:95: b2:93:be:85:fa:d3:48:77:1f:89:79:97:32:17:c3:15:f3:b1: 6e:66:74:ea:72:9a:89:8d:63:3c:7b:e1:f5:51:31:4e:a9:53: b8:b7:03:6a:6b:4c:2e:94:8e:42:1d:85:45:ed:61:21:4f:c8: 09:ba:da:7b:c7:24:2a:0a:72:cd:7b:ef:6e:7a:b8:9f:33:be: af:40:84:eb:3e:d2:67:1a:cc:2d:e5:2a:bd:af:85:eb:48:89: b3:49:86:13:50:16:fb:2f:0f:e7:82:39:54:13:e7:a2:ea:82: a9:ef:db:91 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv2UV/jMTD/ZMltsnsi5PBdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUzNWJlNDUzNzZkNTg5ODc0NTJiZDA2NDZiOWE3NGNmOWVi NmNiMmQwHhcNMjYwMTI1MTgwMTI2WhcNMjYwMTI2MTgwMTI2WjAzMTEwLwYDVQQD EygzODIxZDIwOTYwYjQyZTAwZTRkOWQ0YTVmNDI2NTU5MzAxYmJiYTY2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0NNEsfYbn3pGYsf83ePhJV1TLk+I 7Mrq3Wl1Dti6sTP6qDUDz3Okfhng9wu4sgMjZ2CkxVdIFTE7n9fLtFyMJ68s2xRD 2ak8zF2j34GCgUp0qq3olNnvpVOTEkWnM0wF69UYEb2lhk7yiTomY5Fe81lrho0L A2f5H47+lMLO7a2MPdw6Pg8OtZyZZTOR4Lq1B20bLnoZxr3pXS6lAbpawpDYoToS K5m/WI4KauH4XP6jCFEBMBgFacJ34mtl0zkwaoJLBD1uN2Slm2s6qZC51YtLalg9 frbC58EVMBX4P4ix4hCVLX79LgcUZvm0udxs5qI+U6ii6mg6tJk6moVmkwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDgh0glgtC4A5NnUpfQmVZMBu7pmMB8GA1UdIwQY MBaAFFNb5FN21YmHRSvQZGuadM+etsstMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVTF2a1UzYlZpWWRGSzlCa2E1cDB6NTYyeXkwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NS9mYjM5YTgtNjIzYi00NDM1LTk0ZmUt Y2VjOTJiNTc4MDA2LzEvVTF2a1UzYlZpWWRGSzlCa2E1cDB6NTYyeXkwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85NS9mYjM5YTgtNjIzYi00NDM1LTk0ZmUtY2VjOTJiNTc4MDA2 LzEvVTF2a1UzYlZpWWRGSzlCa2E1cDB6NTYyeXkwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAtRJFtWE/ RzFQFqyYgTiz2qhvSgHPDPOE4RY4FDFoVoSsP0ZZeJRnXyCAcwQgzh7Lp1ENwLsh fQ9m3O6L9eVJIazs827oZfUX2yEDNKhCtLez+7fimqhBTlD/+8B4eAyiJeijKBcJ uESFK/DW4U540L2FlKzpj7x7t1WoNmGj6nHREAVrG3Y2KmlK5vY0b0KVspO+hfrT SHcfiXmXMhfDFfOxbmZ06nKaiY1jPHvh9VExTqlTuLcDamtMLpSOQh2FRe1hIU/I Cbrae8ckKgpyzXvvbnq4nzO+r0CE6z7SZxrMLeUqva+F60iJs0mGE1AW+y8P54I5 VBPnouqCqe/bkQ== -----END CERTIFICATE-----Generated at Mon Jan 26 02:28:05 2026 by rpki-client