This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/03f9ee-53e3-4f69-b8b0-c138e5c27c2b/1/UhqgJHWNjRBOEXnFUDmBZjav4pg.mft File: UhqgJHWNjRBOEXnFUDmBZjav4pg.mft (raw, json) Hash identifier: G0BN816h2iGZ9yqmWG6tDTX9gm+Memo07s9OOy3xGUM= Subject key identifier: 86:F3:56:C8:71:BB:BA:78:C2:51:EF:39:32:72:37:0B:A7:7F:6C:74 Authority key identifier: 52:1A:A0:24:75:8D:8D:10:4E:11:79:C5:50:39:81:66:36:AF:E2:98 Certificate issuer: /CN=521aa024758d8d104e1179c55039816636afe298 Certificate serial: 019BF5E3BA8E96B7C67645C37614C343E9AC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UhqgJHWNjRBOEXnFUDmBZjav4pg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/03f9ee-53e3-4f69-b8b0-c138e5c27c2b/1/UhqgJHWNjRBOEXnFUDmBZjav4pg.mft Manifest number: 17E7 Signing time: Sun 25 Jan 2026 16:01:40 +0000 Manifest this update: Sun 25 Jan 2026 16:01:40 +0000 Manifest next update: Mon 26 Jan 2026 16:01:40 +0000 Files and hashes: 1: AEJIsDrd-VO6hWNQVrQjeNSN6Ag.roa (hash: 8FBS9Nlb+Rowhs3MjT22J5QkyFI/YJdlfJfTWvJU2Dk=) 2: UhqgJHWNjRBOEXnFUDmBZjav4pg.crl (hash: Wl5Lxc2EV8oorMCTXfqsEQL3wK5m5NAj/IH8xAr7JAA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/03f9ee-53e3-4f69-b8b0-c138e5c27c2b/1/UhqgJHWNjRBOEXnFUDmBZjav4pg.crl rsync://rpki.ripe.net/repository/DEFAULT/97/03f9ee-53e3-4f69-b8b0-c138e5c27c2b/1/UhqgJHWNjRBOEXnFUDmBZjav4pg.mft rsync://rpki.ripe.net/repository/DEFAULT/UhqgJHWNjRBOEXnFUDmBZjav4pg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f5:e3:ba:8e:96:b7:c6:76:45:c3:76:14:c3:43:e9:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=521aa024758d8d104e1179c55039816636afe298 Validity Not Before: Jan 25 16:01:40 2026 GMT Not After : Jan 26 16:01:40 2026 GMT Subject: CN=86f356c871bbba78c251ef393272370ba77f6c74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:56:9d:8b:e2:b6:95:ea:36:bc:4d:f4:ba:56: 8b:98:68:1b:c4:40:53:0d:77:c5:60:18:5b:04:6f: 08:d4:9c:b8:18:73:62:31:6a:57:3a:29:38:0c:c0: 05:a0:26:0e:f2:af:2f:77:2d:74:f2:4c:05:8e:9e: ff:db:e0:ba:81:c7:40:1d:ac:33:7c:4b:8b:cb:1f: f9:dc:90:e1:78:a7:96:ed:9c:50:de:64:dc:10:42: cf:5c:67:18:eb:27:b2:66:e3:1f:8f:57:94:ad:96: 83:d5:51:95:8e:9a:ed:94:bc:00:0e:7c:6b:6a:2d: da:f4:86:2a:6a:10:24:16:d7:39:f6:f6:b4:19:3c: 12:ac:37:d8:6e:69:16:6e:2a:30:c0:51:7e:4f:09: 6e:f9:58:da:8f:07:37:0a:47:f1:ed:b7:ee:9e:38: c7:9a:53:81:74:cc:6e:cc:65:93:40:74:24:6f:7f: 24:83:8e:6c:98:74:8a:7d:29:9c:29:ba:cc:a7:dc: 0b:d5:2d:d4:41:b6:e0:69:44:62:b6:69:3b:ca:f4: fb:5f:17:06:c1:a5:bf:95:42:06:b1:b7:86:0b:74: 0b:f7:21:f1:58:57:f4:3e:0e:5f:84:32:f1:6a:86: 7e:91:63:61:17:13:4a:ee:c9:5e:69:d2:bf:06:5f: de:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:F3:56:C8:71:BB:BA:78:C2:51:EF:39:32:72:37:0B:A7:7F:6C:74 X509v3 Authority Key Identifier: keyid:52:1A:A0:24:75:8D:8D:10:4E:11:79:C5:50:39:81:66:36:AF:E2:98 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UhqgJHWNjRBOEXnFUDmBZjav4pg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/03f9ee-53e3-4f69-b8b0-c138e5c27c2b/1/UhqgJHWNjRBOEXnFUDmBZjav4pg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/97/03f9ee-53e3-4f69-b8b0-c138e5c27c2b/1/UhqgJHWNjRBOEXnFUDmBZjav4pg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 34:7f:3c:d7:1a:86:bb:b3:81:4b:2a:0d:41:fa:2e:6b:e5:24: 80:11:e0:ad:60:89:f2:2d:40:13:3e:ab:b0:a4:d2:fb:03:91: 8a:8d:29:fa:9f:30:e1:7c:22:5a:50:38:38:f1:0b:81:c9:05: 93:a2:80:57:c3:80:0e:7d:85:e9:fd:ae:f5:3d:2a:62:74:13: b3:69:09:ab:8f:ff:5f:3c:cd:c5:4e:11:4f:1b:2c:88:6e:dd: 8f:1e:9d:bb:11:7c:a6:6e:6f:db:a5:71:69:89:f8:fb:5f:b0: da:67:6c:39:a4:c8:bd:ed:44:46:79:22:19:74:a8:81:7a:f9: a9:06:0e:39:e9:48:1a:58:f7:46:85:14:0b:af:77:6a:e5:05: 3a:d0:04:f8:70:25:b5:fa:74:b1:da:d9:a2:28:81:48:ce:51: a7:34:6e:3d:7a:a3:33:2d:9c:cc:77:d8:0d:e2:9a:9d:91:63: c5:e5:7e:94:db:16:a2:a1:f2:18:cd:93:d2:11:fb:c5:2c:e9: 33:40:5d:00:7b:ca:9b:72:58:34:80:d4:e4:3d:be:27:c1:0a: c4:1e:22:e5:66:26:f1:2a:8a:95:d3:d0:4a:a6:6e:65:5e:24: 4a:ee:90:f5:50:12:d1:1b:be:50:b5:d7:a6:43:f3:3b:44:5f: 17:a7:f1:48 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv147qOlrfGdkXDdhTDQ+msMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUyMWFhMDI0NzU4ZDhkMTA0ZTExNzljNTUwMzk4MTY2MzZh ZmUyOTgwHhcNMjYwMTI1MTYwMTQwWhcNMjYwMTI2MTYwMTQwWjAzMTEwLwYDVQQD Eyg4NmYzNTZjODcxYmJiYTc4YzI1MWVmMzkzMjcyMzcwYmE3N2Y2Yzc0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwladi+K2leo2vE30ulaLmGgbxEBT DXfFYBhbBG8I1Jy4GHNiMWpXOik4DMAFoCYO8q8vdy108kwFjp7/2+C6gcdAHawz fEuLyx/53JDheKeW7ZxQ3mTcEELPXGcY6yeyZuMfj1eUrZaD1VGVjprtlLwADnxr ai3a9IYqahAkFtc59va0GTwSrDfYbmkWbiowwFF+Twlu+Vjajwc3Ckfx7bfunjjH mlOBdMxuzGWTQHQkb38kg45smHSKfSmcKbrMp9wL1S3UQbbgaURitmk7yvT7XxcG waW/lUIGsbeGC3QL9yHxWFf0Pg5fhDLxaoZ+kWNhFxNK7sleadK/Bl/exwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIbzVshxu7p4wlHvOTJyNwunf2x0MB8GA1UdIwQY MBaAFFIaoCR1jY0QThF5xVA5gWY2r+KYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVWhxZ0pIV05qUkJPRVhuRlVEbUJaamF2NHBnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Ny8wM2Y5ZWUtNTNlMy00ZjY5LWI4YjAt YzEzOGU1YzI3YzJiLzEvVWhxZ0pIV05qUkJPRVhuRlVEbUJaamF2NHBnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Ny8wM2Y5ZWUtNTNlMy00ZjY5LWI4YjAtYzEzOGU1YzI3YzJi LzEvVWhxZ0pIV05qUkJPRVhuRlVEbUJaamF2NHBnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANH881xqG u7OBSyoNQfoua+UkgBHgrWCJ8i1AEz6rsKTS+wORio0p+p8w4XwiWlA4OPELgckF k6KAV8OADn2F6f2u9T0qYnQTs2kJq4//XzzNxU4RTxssiG7djx6duxF8pm5v26Vx aYn4+1+w2mdsOaTIve1ERnkiGXSogXr5qQYOOelIGlj3RoUUC693auUFOtAE+HAl tfp0sdrZoiiBSM5RpzRuPXqjMy2czHfYDeKanZFjxeV+lNsWoqHyGM2T0hH7xSzp M0BdAHvKm3JYNIDU5D2+J8EKxB4i5WYm8SqKldPQSqZuZV4kSu6Q9VAS0Ru+ULXX pkPzO0RfF6fxSA== -----END CERTIFICATE-----Generated at Mon Jan 26 01:48:25 2026 by rpki-client