This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/9d64ff-d4da-4dc9-8825-7118f8384c77/1/5HQG9JgrYYJMj9RLge3gqZ_HJOA.mft File: 5HQG9JgrYYJMj9RLge3gqZ_HJOA.mft (raw, json) Hash identifier: haRV2G+h2bYzphBzGyTYoVZHQ2mYdf6MqJoBHY6lyU0= Subject key identifier: E8:AB:4C:A9:AD:23:09:76:FB:C4:D6:2B:99:0E:A4:5A:98:D2:FD:48 Authority key identifier: E4:74:06:F4:98:2B:61:82:4C:8F:D4:4B:81:ED:E0:A9:9F:C7:24:E0 Certificate issuer: /CN=e47406f4982b61824c8fd44b81ede0a99fc724e0 Certificate serial: 019BF5E36D9A781663212106F33590047DDC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5HQG9JgrYYJMj9RLge3gqZ_HJOA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/9d64ff-d4da-4dc9-8825-7118f8384c77/1/5HQG9JgrYYJMj9RLge3gqZ_HJOA.mft Manifest number: 0C9D Signing time: Sun 25 Jan 2026 16:01:21 +0000 Manifest this update: Sun 25 Jan 2026 16:01:21 +0000 Manifest next update: Mon 26 Jan 2026 16:01:21 +0000 Files and hashes: 1: 5HQG9JgrYYJMj9RLge3gqZ_HJOA.crl (hash: XAWSOLrex+1WwZscjp6larjgclnw//xH9vTJ117xgKg=) 2: y2Pk1JESAEjAx9xzsg0kcYS6ZnE.roa (hash: jae+12T+MS9ODSNGqlLiUYOqCmetegdKFULf6+awLks=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/9d64ff-d4da-4dc9-8825-7118f8384c77/1/5HQG9JgrYYJMj9RLge3gqZ_HJOA.crl rsync://rpki.ripe.net/repository/DEFAULT/99/9d64ff-d4da-4dc9-8825-7118f8384c77/1/5HQG9JgrYYJMj9RLge3gqZ_HJOA.mft rsync://rpki.ripe.net/repository/DEFAULT/5HQG9JgrYYJMj9RLge3gqZ_HJOA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f5:e3:6d:9a:78:16:63:21:21:06:f3:35:90:04:7d:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e47406f4982b61824c8fd44b81ede0a99fc724e0 Validity Not Before: Jan 25 16:01:21 2026 GMT Not After : Jan 26 16:01:21 2026 GMT Subject: CN=e8ab4ca9ad230976fbc4d62b990ea45a98d2fd48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:d3:5b:07:c2:0f:21:d7:56:5d:44:f6:d5:11: 73:58:15:01:fa:61:ee:1b:5d:a6:e8:7f:79:0f:be: 0e:6c:5f:c3:e3:fd:73:d3:ea:35:15:30:4e:16:05: d2:64:23:b9:31:36:21:76:70:09:1d:88:57:38:59: 79:18:0e:dd:ef:c6:d5:f1:c9:4d:62:01:3f:2f:8f: 97:49:d9:3a:de:ff:5b:bc:8f:70:49:a8:04:19:84: 89:a9:7d:7d:28:08:5d:f5:6e:4c:35:f0:48:59:70: bf:e1:d6:f3:49:2a:55:95:5c:35:da:be:55:f9:8d: 29:90:10:3e:bf:69:ef:be:8f:11:14:19:b9:1f:30: 05:fb:da:2d:14:67:84:a6:86:6a:0d:3a:6a:9f:eb: a6:76:eb:01:cf:47:5c:ba:b0:d6:b0:36:c6:04:ee: 14:71:ad:85:aa:6f:34:74:43:06:db:e5:81:22:21: ff:e6:13:9c:fa:63:ba:70:5a:55:49:92:cb:1c:68: 2d:b7:fd:ff:02:9d:d0:ec:31:a5:a0:b7:45:b0:b1: 6b:17:b0:d7:2a:44:8f:0c:6a:b8:22:3a:19:d3:35: c4:8b:fd:ba:fc:4e:1e:50:0a:32:c2:07:f7:7c:15: 48:c0:54:dc:41:36:58:4c:9e:cf:89:6e:60:90:f4: d9:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:AB:4C:A9:AD:23:09:76:FB:C4:D6:2B:99:0E:A4:5A:98:D2:FD:48 X509v3 Authority Key Identifier: keyid:E4:74:06:F4:98:2B:61:82:4C:8F:D4:4B:81:ED:E0:A9:9F:C7:24:E0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5HQG9JgrYYJMj9RLge3gqZ_HJOA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/9d64ff-d4da-4dc9-8825-7118f8384c77/1/5HQG9JgrYYJMj9RLge3gqZ_HJOA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/99/9d64ff-d4da-4dc9-8825-7118f8384c77/1/5HQG9JgrYYJMj9RLge3gqZ_HJOA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3c:e1:01:43:2a:d7:2e:3d:c7:ef:4e:cb:d6:2d:ab:ad:a7:79: f4:10:71:7c:36:78:02:0f:b6:0f:d3:e2:1b:b2:f9:9b:18:ac: 46:0f:15:2e:73:a7:2f:db:31:b9:24:7c:b2:55:c9:e1:4c:71: 65:32:43:02:16:4b:c1:33:c4:59:26:22:55:9a:10:f5:0a:04: 6b:c7:29:df:40:19:34:48:c8:ef:56:8a:f3:07:d4:8d:37:ab: ff:1c:db:01:2c:6a:3c:87:8c:8a:22:77:a3:7f:61:72:c1:01: 61:5f:cf:6f:b0:d9:28:61:e1:d1:e4:ef:ee:bc:f6:54:68:0d: be:d3:d9:b3:96:32:7d:03:f5:00:42:b2:7b:06:14:e7:64:bb: 03:d5:52:c2:1d:de:e3:04:38:b8:6a:32:0b:d0:59:06:fa:b2: 56:67:fb:5f:31:72:a6:5a:b3:10:72:d2:32:11:6f:43:e2:98: 4b:d4:7e:f0:d4:4b:86:ab:ab:ef:7c:ee:6a:a4:22:4e:6c:4d: 53:18:2b:ca:ec:aa:dd:53:a9:7a:66:98:6a:c2:f4:56:fd:54: 28:f5:62:51:8c:c8:b0:93:60:c9:f0:79:c9:ae:27:bc:f6:e7: 59:35:d7:01:6f:29:b2:9d:83:06:d5:4f:58:bc:4d:bc:7c:ee: c8:f2:34:32 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv1422aeBZjISEG8zWQBH3cMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU0NzQwNmY0OTgyYjYxODI0YzhmZDQ0YjgxZWRlMGE5OWZj NzI0ZTAwHhcNMjYwMTI1MTYwMTIxWhcNMjYwMTI2MTYwMTIxWjAzMTEwLwYDVQQD EyhlOGFiNGNhOWFkMjMwOTc2ZmJjNGQ2MmI5OTBlYTQ1YTk4ZDJmZDQ4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAktNbB8IPIddWXUT21RFzWBUB+mHu G12m6H95D74ObF/D4/1z0+o1FTBOFgXSZCO5MTYhdnAJHYhXOFl5GA7d78bV8clN YgE/L4+XSdk63v9bvI9wSagEGYSJqX19KAhd9W5MNfBIWXC/4dbzSSpVlVw12r5V +Y0pkBA+v2nvvo8RFBm5HzAF+9otFGeEpoZqDTpqn+umdusBz0dcurDWsDbGBO4U ca2Fqm80dEMG2+WBIiH/5hOc+mO6cFpVSZLLHGgtt/3/Ap3Q7DGloLdFsLFrF7DX KkSPDGq4IjoZ0zXEi/26/E4eUAoywgf3fBVIwFTcQTZYTJ7PiW5gkPTZZQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOirTKmtIwl2+8TWK5kOpFqY0v1IMB8GA1UdIwQY MBaAFOR0BvSYK2GCTI/US4Ht4KmfxyTgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNUhRRzlKZ3JZWUpNajlSTGdlM2dxWl9ISk9BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OS85ZDY0ZmYtZDRkYS00ZGM5LTg4MjUt NzExOGY4Mzg0Yzc3LzEvNUhRRzlKZ3JZWUpNajlSTGdlM2dxWl9ISk9BLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85OS85ZDY0ZmYtZDRkYS00ZGM5LTg4MjUtNzExOGY4Mzg0Yzc3 LzEvNUhRRzlKZ3JZWUpNajlSTGdlM2dxWl9ISk9BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPOEBQyrX Lj3H707L1i2rrad59BBxfDZ4Ag+2D9PiG7L5mxisRg8VLnOnL9sxuSR8slXJ4Uxx ZTJDAhZLwTPEWSYiVZoQ9QoEa8cp30AZNEjI71aK8wfUjTer/xzbASxqPIeMiiJ3 o39hcsEBYV/Pb7DZKGHh0eTv7rz2VGgNvtPZs5YyfQP1AEKyewYU52S7A9VSwh3e 4wQ4uGoyC9BZBvqyVmf7XzFyplqzEHLSMhFvQ+KYS9R+8NRLhqur73zuaqQiTmxN Uxgryuyq3VOpemaYasL0Vv1UKPViUYzIsJNgyfB5ya4nvPbnWTXXAW8psp2DBtVP WLxNvHzuyPI0Mg== -----END CERTIFICATE-----Generated at Sun Jan 25 21:10:45 2026 by rpki-client