This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/0924fa-54fb-4254-b64e-0ac9b3bae6f5/1/hAKSSGHLwIjGVahyU1qQMQige_E.mft File: hAKSSGHLwIjGVahyU1qQMQige_E.mft (raw, json) Hash identifier: PKqWD1TUsb5jAc1o532dwc3h/9UemHdYi6FwJKegjXk= Subject key identifier: 4C:3C:14:F7:FD:DB:7C:86:9B:5F:5D:BF:E6:F0:B4:C5:6B:1D:E0:B9 Authority key identifier: 84:02:92:48:61:CB:C0:88:C6:55:A8:72:53:5A:90:31:08:A0:7B:F1 Certificate issuer: /CN=8402924861cbc088c655a872535a903108a07bf1 Certificate serial: 019BF50700050DB9BA06B944F4F8F54D1D2A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hAKSSGHLwIjGVahyU1qQMQige_E.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/0924fa-54fb-4254-b64e-0ac9b3bae6f5/1/hAKSSGHLwIjGVahyU1qQMQige_E.mft Manifest number: 1421 Signing time: Sun 25 Jan 2026 12:00:35 +0000 Manifest this update: Sun 25 Jan 2026 12:00:35 +0000 Manifest next update: Mon 26 Jan 2026 12:00:35 +0000 Files and hashes: 1: EApMV8-N-zmao3CAo-NQpD3Lz2A.roa (hash: aR54mqSnxFgOPc79I9yN0jBUTDGkCFj+YEV/eOtu4c4=) 2: hAKSSGHLwIjGVahyU1qQMQige_E.crl (hash: GxGiFfWhSap+gkN7Ld1kZ/DU86LGbrvMFy+BoDpG5HM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9f/0924fa-54fb-4254-b64e-0ac9b3bae6f5/1/hAKSSGHLwIjGVahyU1qQMQige_E.crl rsync://rpki.ripe.net/repository/DEFAULT/9f/0924fa-54fb-4254-b64e-0ac9b3bae6f5/1/hAKSSGHLwIjGVahyU1qQMQige_E.mft rsync://rpki.ripe.net/repository/DEFAULT/hAKSSGHLwIjGVahyU1qQMQige_E.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 12:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f5:07:00:05:0d:b9:ba:06:b9:44:f4:f8:f5:4d:1d:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8402924861cbc088c655a872535a903108a07bf1 Validity Not Before: Jan 25 12:00:35 2026 GMT Not After : Jan 26 12:00:35 2026 GMT Subject: CN=4c3c14f7fddb7c869b5f5dbfe6f0b4c56b1de0b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:d3:28:a7:56:f4:3c:19:19:a2:f1:f0:03:c0: 7b:d7:c3:5a:70:8d:f1:b5:23:07:ba:41:ce:81:12: a8:29:ed:58:7d:53:3a:89:73:20:ed:01:ac:68:34: cd:68:6d:57:b0:b7:f2:df:59:ba:03:e0:dc:e7:40: 41:ce:a8:30:a2:b0:23:da:2c:f0:aa:63:9e:7c:64: a1:74:9d:61:55:86:ed:93:a6:3f:77:d3:11:14:4a: 45:2c:43:96:ef:fd:9d:c9:d5:68:a0:4d:c9:8b:2c: 9e:49:22:84:75:ca:86:eb:8e:f8:53:eb:68:9e:0d: 76:f4:5f:2d:58:ed:3d:a6:ec:1e:a3:34:36:d4:51: 91:45:5f:42:35:83:98:19:20:de:3e:a4:a3:2d:b6: ab:6e:8c:4e:b8:46:95:f2:5b:d0:8a:5f:c2:a0:d1: 46:03:ba:c5:64:02:5b:95:d1:d2:df:37:0e:c2:9e: d2:47:32:ec:01:85:2f:c4:eb:51:50:76:c7:68:48: 53:95:03:6a:5a:16:21:b7:4f:65:04:6d:5f:c6:e7: 6d:a1:b5:cc:bb:a7:0b:3d:57:dc:ad:e2:94:09:f3: d6:57:3b:8b:3a:e0:0f:18:8a:dd:0b:47:54:ca:27: e5:0d:95:4e:6a:5a:e3:d9:cd:b1:57:3c:1e:7b:1b: 2f:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:3C:14:F7:FD:DB:7C:86:9B:5F:5D:BF:E6:F0:B4:C5:6B:1D:E0:B9 X509v3 Authority Key Identifier: keyid:84:02:92:48:61:CB:C0:88:C6:55:A8:72:53:5A:90:31:08:A0:7B:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hAKSSGHLwIjGVahyU1qQMQige_E.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/0924fa-54fb-4254-b64e-0ac9b3bae6f5/1/hAKSSGHLwIjGVahyU1qQMQige_E.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/0924fa-54fb-4254-b64e-0ac9b3bae6f5/1/hAKSSGHLwIjGVahyU1qQMQige_E.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1f:d9:af:70:fe:08:37:a5:1d:f3:db:49:6f:d3:f7:88:1b:63: 2e:67:7b:43:4c:89:b0:f0:68:38:81:4b:4d:b7:e4:d5:4c:71: 7d:fd:05:28:f9:3c:f3:1d:d8:2b:cb:d7:9e:81:9b:70:58:0f: 83:46:f3:5a:3c:da:cc:77:89:41:82:93:ae:20:b3:9b:a3:12: 3f:78:8f:5b:bc:71:aa:af:0a:b2:07:92:62:af:16:b5:9f:b4: 15:31:c8:d0:a3:a0:08:a8:ef:e0:3e:3d:f8:fa:9e:00:32:63: 1c:57:fe:64:5b:8f:55:64:3b:1b:2e:7b:09:6e:18:04:ba:72: ec:15:af:d8:30:94:88:a5:4a:1d:69:ab:d7:b2:8f:f8:fc:85: 3e:72:e2:28:bd:cf:48:10:be:83:ee:0c:d7:ee:75:01:f2:9c: 5b:ec:dd:7b:8e:77:74:ed:bb:ca:78:05:ed:25:6b:ed:ac:de: 15:93:a0:28:96:1f:ea:2d:7f:c9:c4:8b:f6:23:86:ac:53:14: 61:a8:c1:c2:12:ab:25:a7:8a:78:55:9c:77:0a:db:14:81:7a: 06:b9:74:c7:5e:f2:ea:6c:02:c6:7a:b5:71:7e:45:eb:a4:3b: f7:e7:db:80:dc:2f:d8:23:99:66:5d:0b:29:b5:e8:96:39:c4: 39:ac:11:e5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv1BwAFDbm6BrlE9Pj1TR0qMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg0MDI5MjQ4NjFjYmMwODhjNjU1YTg3MjUzNWE5MDMxMDhh MDdiZjEwHhcNMjYwMTI1MTIwMDM1WhcNMjYwMTI2MTIwMDM1WjAzMTEwLwYDVQQD Eyg0YzNjMTRmN2ZkZGI3Yzg2OWI1ZjVkYmZlNmYwYjRjNTZiMWRlMGI5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm9Mop1b0PBkZovHwA8B718NacI3x tSMHukHOgRKoKe1YfVM6iXMg7QGsaDTNaG1XsLfy31m6A+Dc50BBzqgworAj2izw qmOefGShdJ1hVYbtk6Y/d9MRFEpFLEOW7/2dydVooE3JiyyeSSKEdcqG6474U+to ng129F8tWO09puweozQ21FGRRV9CNYOYGSDePqSjLbarboxOuEaV8lvQil/CoNFG A7rFZAJbldHS3zcOwp7SRzLsAYUvxOtRUHbHaEhTlQNqWhYht09lBG1fxudtobXM u6cLPVfcreKUCfPWVzuLOuAPGIrdC0dUyiflDZVOalrj2c2xVzweexsvwwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEw8FPf923yGm19dv+bwtMVrHeC5MB8GA1UdIwQY MBaAFIQCkkhhy8CIxlWoclNakDEIoHvxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaEFLU1NHSEx3SWpHVmFoeVUxcVFNUWlnZV9FLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Zi8wOTI0ZmEtNTRmYi00MjU0LWI2NGUt MGFjOWIzYmFlNmY1LzEvaEFLU1NHSEx3SWpHVmFoeVUxcVFNUWlnZV9FLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Zi8wOTI0ZmEtNTRmYi00MjU0LWI2NGUtMGFjOWIzYmFlNmY1 LzEvaEFLU1NHSEx3SWpHVmFoeVUxcVFNUWlnZV9FLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAH9mvcP4I N6Ud89tJb9P3iBtjLmd7Q0yJsPBoOIFLTbfk1Uxxff0FKPk88x3YK8vXnoGbcFgP g0bzWjzazHeJQYKTriCzm6MSP3iPW7xxqq8KsgeSYq8WtZ+0FTHI0KOgCKjv4D49 +PqeADJjHFf+ZFuPVWQ7Gy57CW4YBLpy7BWv2DCUiKVKHWmr17KP+PyFPnLiKL3P SBC+g+4M1+51AfKcW+zde453dO27yngF7SVr7azeFZOgKJYf6i1/ycSL9iOGrFMU YajBwhKrJaeKeFWcdwrbFIF6Brl0x17y6mwCxnq1cX5F66Q79+fbgNwv2COZZl0L KbXoljnEOawR5Q== -----END CERTIFICATE-----Generated at Sun Jan 25 18:14:58 2026 by rpki-client