This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/0c9d80-43a5-453a-ad25-4ee92ee1e0cd/1/knEFydH7BpBVSXH0ZMoh9KRcEGo.mft File: knEFydH7BpBVSXH0ZMoh9KRcEGo.mft (raw, json) Hash identifier: zZwHV8kmtig8rhEjkse3iM4J6uq0fpZFqu2W7+Mykzw= Subject key identifier: 55:13:5D:02:20:86:B8:01:7B:02:C7:91:6C:F7:23:51:2D:1F:F9:95 Authority key identifier: 92:71:05:C9:D1:FB:06:90:55:49:71:F4:64:CA:21:F4:A4:5C:10:6A Certificate issuer: /CN=927105c9d1fb0690554971f464ca21f4a45c106a Certificate serial: 019BF5AC57281BDEAFECEDDADC367C5876F9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/knEFydH7BpBVSXH0ZMoh9KRcEGo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/0c9d80-43a5-453a-ad25-4ee92ee1e0cd/1/knEFydH7BpBVSXH0ZMoh9KRcEGo.mft Manifest number: 0EBF Signing time: Sun 25 Jan 2026 15:01:10 +0000 Manifest this update: Sun 25 Jan 2026 15:01:10 +0000 Manifest next update: Mon 26 Jan 2026 15:01:10 +0000 Files and hashes: 1: YthcC5vfZaqX4lQHCzfAkYHmBn8.roa (hash: e1Wa1MDzLGWDE0S3sqNrMKZLPwUzO14S8dedZF4Jkxs=) 2: knEFydH7BpBVSXH0ZMoh9KRcEGo.crl (hash: ZgnzGS7WqmSpKCt6c1Ha7Parmt+yLKHfdrniu2nhwtM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9f/0c9d80-43a5-453a-ad25-4ee92ee1e0cd/1/knEFydH7BpBVSXH0ZMoh9KRcEGo.crl rsync://rpki.ripe.net/repository/DEFAULT/9f/0c9d80-43a5-453a-ad25-4ee92ee1e0cd/1/knEFydH7BpBVSXH0ZMoh9KRcEGo.mft rsync://rpki.ripe.net/repository/DEFAULT/knEFydH7BpBVSXH0ZMoh9KRcEGo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f5:ac:57:28:1b:de:af:ec:ed:da:dc:36:7c:58:76:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=927105c9d1fb0690554971f464ca21f4a45c106a Validity Not Before: Jan 25 15:01:10 2026 GMT Not After : Jan 26 15:01:10 2026 GMT Subject: CN=55135d022086b8017b02c7916cf723512d1ff995 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:22:ab:33:97:b9:db:6c:3d:15:1d:6e:cb:92: 22:d5:cd:ef:3e:1c:de:0c:51:fd:14:c2:ff:b1:3c: 8b:13:e8:fd:46:c9:1f:7e:36:43:71:34:15:0f:5f: 93:52:6a:6c:94:3f:bf:e9:9e:ae:fd:6a:50:33:38: d9:57:5c:68:f6:61:a0:11:22:cc:1e:c5:e3:e7:c2: fc:4f:e8:9f:49:c0:fd:48:32:2a:f1:75:82:b4:e3: 46:93:8c:16:0a:75:5b:9a:b2:88:d1:89:09:98:c6: 0f:de:95:2c:3c:ec:e3:52:69:d9:8b:52:b8:9b:74: 46:16:e4:8c:c1:7e:68:1d:bb:ed:f4:0d:fa:96:59: 0d:62:f7:32:47:01:42:4c:8d:06:16:8d:2d:72:e8: 5c:c1:80:75:a4:16:1d:3e:b0:6f:95:cc:6e:f2:a4: 8c:5d:ec:0b:b2:df:ec:16:0b:9b:5c:35:f3:0e:37: f7:e3:e3:a6:4a:36:eb:01:12:20:2c:86:fa:f0:c8: 7b:44:2e:13:61:99:a9:75:96:83:9f:62:dc:8f:41: a1:2b:e6:1b:38:e2:5f:69:e8:e1:13:54:97:a8:0f: 82:b8:ba:d9:e4:44:8c:ba:a2:09:70:25:9d:6b:2b: e1:7a:30:ed:10:7b:2c:57:a4:0d:22:dd:8a:a7:22: c6:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:13:5D:02:20:86:B8:01:7B:02:C7:91:6C:F7:23:51:2D:1F:F9:95 X509v3 Authority Key Identifier: keyid:92:71:05:C9:D1:FB:06:90:55:49:71:F4:64:CA:21:F4:A4:5C:10:6A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/knEFydH7BpBVSXH0ZMoh9KRcEGo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/0c9d80-43a5-453a-ad25-4ee92ee1e0cd/1/knEFydH7BpBVSXH0ZMoh9KRcEGo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/0c9d80-43a5-453a-ad25-4ee92ee1e0cd/1/knEFydH7BpBVSXH0ZMoh9KRcEGo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 91:73:81:6e:28:78:33:64:98:a8:38:01:c2:43:43:e7:8a:39: 48:7c:99:21:9c:d9:0c:8f:14:a9:26:82:44:f2:cd:a1:95:bd: 7b:61:b4:be:c9:41:7a:eb:c0:15:a6:4c:49:bc:57:5c:de:23: 17:3f:f6:02:5c:a8:b4:48:4e:af:6a:e3:45:4a:77:fd:5a:22: a7:27:42:f7:ac:ce:4b:e1:7a:08:7a:87:f1:16:12:b0:d7:32: ab:69:11:0c:6d:37:09:71:30:d7:ff:57:9b:45:89:85:54:81: d5:ff:94:0d:a4:87:a3:52:5f:a9:4c:c2:9d:be:02:7f:74:8a: 3f:e1:97:89:10:85:a8:03:c1:17:24:1f:7a:8b:2c:0d:bb:49: 1a:34:4c:6c:ef:81:0a:6f:dc:d5:27:14:17:f4:01:0c:25:33: 46:a6:21:88:0a:32:ee:ce:9e:f0:38:1d:f3:20:ad:64:6d:24: 44:b7:50:0e:47:96:49:0d:0b:ac:42:df:8e:15:54:1b:37:c2: 28:c3:70:7f:b5:9a:ae:c6:f4:fb:56:67:0d:2a:91:51:df:1b: 29:93:f0:53:41:e5:65:5c:3b:39:63:5b:2a:92:3a:03:8f:7d: fa:e2:ed:ee:3c:d7:c6:12:3d:5b:09:1e:32:02:11:14:e6:7b: 6c:7d:6d:41 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv1rFcoG96v7O3a3DZ8WHb5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkyNzEwNWM5ZDFmYjA2OTA1NTQ5NzFmNDY0Y2EyMWY0YTQ1 YzEwNmEwHhcNMjYwMTI1MTUwMTEwWhcNMjYwMTI2MTUwMTEwWjAzMTEwLwYDVQQD Eyg1NTEzNWQwMjIwODZiODAxN2IwMmM3OTE2Y2Y3MjM1MTJkMWZmOTk1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtCKrM5e522w9FR1uy5Ii1c3vPhze DFH9FML/sTyLE+j9RskffjZDcTQVD1+TUmpslD+/6Z6u/WpQMzjZV1xo9mGgESLM HsXj58L8T+ifScD9SDIq8XWCtONGk4wWCnVbmrKI0YkJmMYP3pUsPOzjUmnZi1K4 m3RGFuSMwX5oHbvt9A36llkNYvcyRwFCTI0GFo0tcuhcwYB1pBYdPrBvlcxu8qSM XewLst/sFgubXDXzDjf34+OmSjbrARIgLIb68Mh7RC4TYZmpdZaDn2Lcj0GhK+Yb OOJfaejhE1SXqA+CuLrZ5ESMuqIJcCWdayvhejDtEHssV6QNIt2KpyLGRwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFUTXQIghrgBewLHkWz3I1EtH/mVMB8GA1UdIwQY MBaAFJJxBcnR+waQVUlx9GTKIfSkXBBqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva25FRnlkSDdCcEJWU1hIMFpNb2g5S1JjRUdvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Zi8wYzlkODAtNDNhNS00NTNhLWFkMjUt NGVlOTJlZTFlMGNkLzEva25FRnlkSDdCcEJWU1hIMFpNb2g5S1JjRUdvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Zi8wYzlkODAtNDNhNS00NTNhLWFkMjUtNGVlOTJlZTFlMGNk LzEva25FRnlkSDdCcEJWU1hIMFpNb2g5S1JjRUdvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkXOBbih4 M2SYqDgBwkND54o5SHyZIZzZDI8UqSaCRPLNoZW9e2G0vslBeuvAFaZMSbxXXN4j Fz/2AlyotEhOr2rjRUp3/VoipydC96zOS+F6CHqH8RYSsNcyq2kRDG03CXEw1/9X m0WJhVSB1f+UDaSHo1JfqUzCnb4Cf3SKP+GXiRCFqAPBFyQfeossDbtJGjRMbO+B Cm/c1ScUF/QBDCUzRqYhiAoy7s6e8Dgd8yCtZG0kRLdQDkeWSQ0LrELfjhVUGzfC KMNwf7Warsb0+1ZnDSqRUd8bKZPwU0HlZVw7OWNbKpI6A499+uLt7jzXxhI9Wwke MgIRFOZ7bH1tQQ== -----END CERTIFICATE-----Generated at Sun Jan 25 19:24:35 2026 by rpki-client