This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/6fa51b-812e-4284-9d17-ad51ba216531/1/309yD7vOaxVdc1fb5xJspWwevnU.mft File: 309yD7vOaxVdc1fb5xJspWwevnU.mft (raw, json) Hash identifier: yt3iSE0sYOWOHNpfEA26YOLhh29q/1YQNnzgsYwiiQM= Subject key identifier: BF:C6:EC:1E:95:EA:8A:07:F8:3E:F1:D4:C7:19:78:10:67:2C:81:69 Authority key identifier: DF:4F:72:0F:BB:CE:6B:15:5D:73:57:DB:E7:12:6C:A5:6C:1E:BE:75 Certificate issuer: /CN=df4f720fbbce6b155d7357dbe7126ca56c1ebe75 Certificate serial: 019BF8402461BF9324623FE893F6ACC9418A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/309yD7vOaxVdc1fb5xJspWwevnU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/6fa51b-812e-4284-9d17-ad51ba216531/1/309yD7vOaxVdc1fb5xJspWwevnU.mft Manifest number: 0392 Signing time: Mon 26 Jan 2026 03:01:51 +0000 Manifest this update: Mon 26 Jan 2026 03:01:51 +0000 Manifest next update: Tue 27 Jan 2026 03:01:51 +0000 Files and hashes: 1: 309yD7vOaxVdc1fb5xJspWwevnU.crl (hash: ng5aa4JN+cRAFRNfL+bIezloV7e9Ojv89B/J5vN+U5Y=) 2: ZiAi_TdUfMkb3j8gN1a3XiArDYg.roa (hash: p3ud5x+KgWlnChdbJ3zLdy64GsE5PLnEtLECSRQZh38=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/6fa51b-812e-4284-9d17-ad51ba216531/1/309yD7vOaxVdc1fb5xJspWwevnU.crl rsync://rpki.ripe.net/repository/DEFAULT/9a/6fa51b-812e-4284-9d17-ad51ba216531/1/309yD7vOaxVdc1fb5xJspWwevnU.mft rsync://rpki.ripe.net/repository/DEFAULT/309yD7vOaxVdc1fb5xJspWwevnU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f8:40:24:61:bf:93:24:62:3f:e8:93:f6:ac:c9:41:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df4f720fbbce6b155d7357dbe7126ca56c1ebe75 Validity Not Before: Jan 26 03:01:51 2026 GMT Not After : Jan 27 03:01:51 2026 GMT Subject: CN=bfc6ec1e95ea8a07f83ef1d4c7197810672c8169 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:93:d3:fd:26:51:a5:74:2b:78:4c:85:e9:ed: fd:be:e4:bf:c4:4c:5a:5c:aa:3f:d4:4c:24:a6:f2: de:bb:de:89:c8:c4:a7:2a:6d:f9:bf:41:f1:a4:3d: 86:61:8c:dd:01:96:3c:d2:3f:46:fe:50:03:46:08: a0:89:15:30:38:13:95:9d:a9:8d:f7:0a:13:a2:93: 23:36:49:a9:3c:93:90:5b:6a:e2:ec:49:a4:98:15: 88:9c:24:ec:2f:73:3f:16:f1:67:7b:57:8a:43:9c: 43:2a:fe:61:5c:de:bd:03:c3:aa:cf:3a:bf:43:ae: c5:61:9e:36:39:f5:43:59:a7:4c:08:1c:4b:cb:5c: ee:24:a4:18:4c:e5:7f:ec:8a:7a:79:17:cb:7f:e6: 8f:4c:29:dc:86:dc:5d:8d:71:cd:35:da:ec:50:ff: b0:d1:78:2d:e8:d0:6a:11:44:03:b3:52:d4:26:5f: 46:10:8a:91:61:5b:04:e8:8f:b6:77:4a:87:7e:9e: 35:e7:67:f5:9b:bc:3e:cf:6e:92:91:73:31:fe:e8: d9:a1:d4:64:d5:f1:56:bf:42:bf:c0:3c:b1:ee:c4: 65:c2:34:95:76:1b:bd:a4:8f:02:c5:c9:46:52:41: 16:3a:1d:87:12:e1:a4:ef:5d:88:aa:7f:f2:a2:b0: 61:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:C6:EC:1E:95:EA:8A:07:F8:3E:F1:D4:C7:19:78:10:67:2C:81:69 X509v3 Authority Key Identifier: keyid:DF:4F:72:0F:BB:CE:6B:15:5D:73:57:DB:E7:12:6C:A5:6C:1E:BE:75 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/309yD7vOaxVdc1fb5xJspWwevnU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/6fa51b-812e-4284-9d17-ad51ba216531/1/309yD7vOaxVdc1fb5xJspWwevnU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/6fa51b-812e-4284-9d17-ad51ba216531/1/309yD7vOaxVdc1fb5xJspWwevnU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b0:c4:73:fc:3b:7e:12:98:64:c0:79:a6:02:ca:91:e3:aa:eb: f9:82:30:54:de:dc:97:e6:93:3a:21:b7:c9:de:87:c7:70:0a: 90:25:47:c3:b9:18:0d:dc:5f:8e:67:4d:d3:e0:31:4c:3c:31: a7:a5:14:af:02:95:36:cc:bc:1e:ef:a1:b5:3d:67:4a:5e:c3: 8b:4e:b4:0d:bd:59:45:e2:4b:06:5d:9f:bd:ac:f9:7f:56:3c: 8c:18:ae:c1:a1:94:d0:3f:84:4b:7c:13:89:25:07:b3:a9:2b: c3:72:34:58:1e:66:32:7f:0b:0c:f1:93:e0:b3:2d:d5:e6:18: 1c:0f:03:8e:ac:db:3d:87:d1:04:3a:47:16:c2:5c:ca:3c:c8: 50:1b:af:83:c7:76:47:69:d5:bf:f0:f4:73:fc:05:a3:e6:5d: ac:78:7c:c3:d9:03:7e:20:4c:b1:ef:92:81:c1:8c:ce:f7:70: 18:6f:22:95:a7:61:96:48:b2:58:61:32:55:94:f7:fa:9f:63: bd:51:18:b3:a9:d9:91:b6:e7:38:da:80:19:53:c2:74:bd:5f: 20:80:ef:ec:bf:8f:8a:ef:40:52:87:ae:73:83:6e:e8:b5:6f: 33:b1:51:76:0b:03:d6:95:78:2b:e0:26:9a:ed:5c:7e:d9:60: 61:40:1f:ab -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv4QCRhv5MkYj/ok/asyUGKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRmNGY3MjBmYmJjZTZiMTU1ZDczNTdkYmU3MTI2Y2E1NmMx ZWJlNzUwHhcNMjYwMTI2MDMwMTUxWhcNMjYwMTI3MDMwMTUxWjAzMTEwLwYDVQQD EyhiZmM2ZWMxZTk1ZWE4YTA3ZjgzZWYxZDRjNzE5NzgxMDY3MmM4MTY5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj5PT/SZRpXQreEyF6e39vuS/xExa XKo/1EwkpvLeu96JyMSnKm35v0HxpD2GYYzdAZY80j9G/lADRgigiRUwOBOVnamN 9woTopMjNkmpPJOQW2ri7EmkmBWInCTsL3M/FvFne1eKQ5xDKv5hXN69A8Oqzzq/ Q67FYZ42OfVDWadMCBxLy1zuJKQYTOV/7Ip6eRfLf+aPTCnchtxdjXHNNdrsUP+w 0Xgt6NBqEUQDs1LUJl9GEIqRYVsE6I+2d0qHfp4152f1m7w+z26SkXMx/ujZodRk 1fFWv0K/wDyx7sRlwjSVdhu9pI8CxclGUkEWOh2HEuGk712Iqn/yorBhKQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFL/G7B6V6ooH+D7x1McZeBBnLIFpMB8GA1UdIwQY MBaAFN9Pcg+7zmsVXXNX2+cSbKVsHr51MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMzA5eUQ3dk9heFZkYzFmYjV4SnNwV3dldm5VLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85YS82ZmE1MWItODEyZS00Mjg0LTlkMTct YWQ1MWJhMjE2NTMxLzEvMzA5eUQ3dk9heFZkYzFmYjV4SnNwV3dldm5VLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85YS82ZmE1MWItODEyZS00Mjg0LTlkMTctYWQ1MWJhMjE2NTMx LzEvMzA5eUQ3dk9heFZkYzFmYjV4SnNwV3dldm5VLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAsMRz/Dt+ EphkwHmmAsqR46rr+YIwVN7cl+aTOiG3yd6Hx3AKkCVHw7kYDdxfjmdN0+AxTDwx p6UUrwKVNsy8Hu+htT1nSl7Di060Db1ZReJLBl2fvaz5f1Y8jBiuwaGU0D+ES3wT iSUHs6krw3I0WB5mMn8LDPGT4LMt1eYYHA8DjqzbPYfRBDpHFsJcyjzIUBuvg8d2 R2nVv/D0c/wFo+ZdrHh8w9kDfiBMse+SgcGMzvdwGG8iladhlkiyWGEyVZT3+p9j vVEYs6nZkbbnONqAGVPCdL1fIIDv7L+Piu9AUoeuc4Nu6LVvM7FRdgsD1pV4K+Am mu1cftlgYUAfqw== -----END CERTIFICATE-----Generated at Mon Jan 26 05:12:58 2026 by rpki-client