This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.mft File: gKkhQIQztm6lCkAAqs4Q0q3QaoU.mft (raw, json) Hash identifier: 2tfOdCSScm7S18tdKsf2L0YALNHJBRoX8jYx9e04Y2A= Subject key identifier: B3:DD:4D:C2:6E:65:96:72:24:36:A7:A7:16:2C:54:81:F0:20:4D:E4 Authority key identifier: 80:A9:21:40:84:33:B6:6E:A5:0A:40:00:AA:CE:10:D2:AD:D0:6A:85 Certificate issuer: /CN=80a921408433b66ea50a4000aace10d2add06a85 Certificate serial: 019BF72DAFD43CF8C22574B329654041F961 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gKkhQIQztm6lCkAAqs4Q0q3QaoU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.mft Manifest number: 0641 Signing time: Sun 25 Jan 2026 22:02:05 +0000 Manifest this update: Sun 25 Jan 2026 22:02:05 +0000 Manifest next update: Mon 26 Jan 2026 22:02:05 +0000 Files and hashes: 1: TADovInnVhImIAMNLhy833dYeyU.roa (hash: f/dalF6vRD8VNn9XqvAc5SALl8hYeWv1uoN4z7iWDuo=) 2: gKkhQIQztm6lCkAAqs4Q0q3QaoU.crl (hash: OLFweGmJGjLQ28Jz8vXfvMqyO7x1BdBHr+e/+CiQif4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.crl rsync://rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.mft rsync://rpki.ripe.net/repository/DEFAULT/gKkhQIQztm6lCkAAqs4Q0q3QaoU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f7:2d:af:d4:3c:f8:c2:25:74:b3:29:65:40:41:f9:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=80a921408433b66ea50a4000aace10d2add06a85 Validity Not Before: Jan 25 22:02:05 2026 GMT Not After : Jan 26 22:02:05 2026 GMT Subject: CN=b3dd4dc26e6596722436a7a7162c5481f0204de4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:2b:06:ba:e2:c3:84:97:da:4e:6c:cb:85:a8: 8f:f2:cb:c5:7b:f0:f6:96:f5:c2:a4:27:4b:65:04: 45:b3:cf:85:3b:50:fd:48:f0:d2:90:44:55:14:01: 19:49:d2:76:9b:53:d7:04:46:8d:8b:9a:01:f2:cf: af:8e:08:82:d9:88:db:c8:14:63:d3:ff:41:26:e2: 61:6e:1a:ea:6f:46:af:c9:aa:7d:06:ef:8e:d5:59: b4:32:62:e7:7d:d9:ca:0b:58:20:4e:1b:e7:93:30: 7c:08:68:6b:a1:57:28:c2:cb:05:4b:94:5c:72:96: d0:52:70:66:81:07:67:ee:93:69:a4:65:a7:d5:5d: ec:5e:3e:86:b2:52:90:52:2c:2f:54:77:1d:61:56: 86:91:8a:48:52:e3:29:51:79:ed:24:c3:df:92:89: 78:19:3b:79:8c:89:7b:da:b5:53:3d:63:18:17:25: 46:21:ca:73:21:a3:1a:20:f7:44:a2:e5:b0:70:0c: 40:a1:70:e5:fd:66:b3:1e:63:d7:25:67:ee:80:d3: 42:75:9a:77:62:75:fd:ed:55:75:f2:0e:51:00:d8: 99:40:1f:86:33:b3:8e:8f:b4:c9:4c:77:8e:4e:c5: 07:e3:30:e5:86:4e:88:09:f0:0b:eb:66:a9:b1:73: 62:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:DD:4D:C2:6E:65:96:72:24:36:A7:A7:16:2C:54:81:F0:20:4D:E4 X509v3 Authority Key Identifier: keyid:80:A9:21:40:84:33:B6:6E:A5:0A:40:00:AA:CE:10:D2:AD:D0:6A:85 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gKkhQIQztm6lCkAAqs4Q0q3QaoU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 96:a7:8f:07:18:d3:02:29:7b:48:1b:e2:e1:68:e1:cd:41:9a: 31:54:7c:ca:f7:6e:84:87:a9:95:4c:ec:a5:a0:1a:2a:df:eb: 0c:f0:a0:15:33:0c:79:b3:f1:06:b3:ce:4c:16:ae:2f:66:1a: d2:cb:df:e6:3c:ff:4d:dd:c2:d8:6f:d1:8c:b3:ea:b5:fb:24: b8:9a:a5:55:50:8b:23:63:d1:4f:2c:1d:d3:a2:4f:76:90:6f: 89:48:de:20:c4:cd:5f:a0:7d:5a:6f:55:58:9f:4a:87:60:aa: b0:24:24:39:73:0e:1c:b5:74:2e:7a:f0:34:dc:08:eb:75:67: 04:9e:fb:23:de:f6:d7:69:ee:e2:8d:bd:fc:a3:e6:e3:ae:95: 3d:73:44:f4:59:e9:0f:6c:cc:70:2d:e9:a7:83:74:18:30:cb: 6b:cf:ec:f6:7c:51:e0:e5:8e:9b:06:a5:d1:d9:80:f1:a7:d6: 6e:48:eb:6d:90:fb:85:dc:d5:a3:ee:e8:d5:cd:ec:16:23:f6: 17:e0:30:d3:bf:40:42:86:29:38:00:01:4a:86:ff:f0:42:a7: ba:fb:dc:78:cc:1a:32:1c:25:27:6b:72:1f:b7:aa:84:19:5a: 32:c8:eb:f6:de:8d:5b:40:d3:f2:67:22:77:df:38:59:5a:1e: 96:4e:d3:c3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv3La/UPPjCJXSzKWVAQflhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgwYTkyMTQwODQzM2I2NmVhNTBhNDAwMGFhY2UxMGQyYWRk MDZhODUwHhcNMjYwMTI1MjIwMjA1WhcNMjYwMTI2MjIwMjA1WjAzMTEwLwYDVQQD EyhiM2RkNGRjMjZlNjU5NjcyMjQzNmE3YTcxNjJjNTQ4MWYwMjA0ZGU0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2ysGuuLDhJfaTmzLhaiP8svFe/D2 lvXCpCdLZQRFs8+FO1D9SPDSkERVFAEZSdJ2m1PXBEaNi5oB8s+vjgiC2YjbyBRj 0/9BJuJhbhrqb0avyap9Bu+O1Vm0MmLnfdnKC1ggThvnkzB8CGhroVcowssFS5Rc cpbQUnBmgQdn7pNppGWn1V3sXj6GslKQUiwvVHcdYVaGkYpIUuMpUXntJMPfkol4 GTt5jIl72rVTPWMYFyVGIcpzIaMaIPdEouWwcAxAoXDl/WazHmPXJWfugNNCdZp3 YnX97VV18g5RANiZQB+GM7OOj7TJTHeOTsUH4zDlhk6ICfAL62apsXNioQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLPdTcJuZZZyJDanpxYsVIHwIE3kMB8GA1UdIwQY MBaAFICpIUCEM7ZupQpAAKrOENKt0GqFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ0traFFJUXp0bTZsQ2tBQXFzNFEwcTNRYW9VLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMS9kODA5YjEtZmFmNy00MGMyLTk0YmEt ZjE4MTVhNDFhMDMzLzEvZ0traFFJUXp0bTZsQ2tBQXFzNFEwcTNRYW9VLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMS9kODA5YjEtZmFmNy00MGMyLTk0YmEtZjE4MTVhNDFhMDMz LzEvZ0traFFJUXp0bTZsQ2tBQXFzNFEwcTNRYW9VLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlqePBxjT Ail7SBvi4WjhzUGaMVR8yvduhIeplUzspaAaKt/rDPCgFTMMebPxBrPOTBauL2Ya 0svf5jz/Td3C2G/RjLPqtfskuJqlVVCLI2PRTywd06JPdpBviUjeIMTNX6B9Wm9V WJ9Kh2CqsCQkOXMOHLV0LnrwNNwI63VnBJ77I97212nu4o29/KPm466VPXNE9Fnp D2zMcC3pp4N0GDDLa8/s9nxR4OWOmwal0dmA8afWbkjrbZD7hdzVo+7o1c3sFiP2 F+Aw079AQoYpOAABSob/8EKnuvvceMwaMhwlJ2tyH7eqhBlaMsjr9t6NW0DT8mci d984WVoelk7Tww== -----END CERTIFICATE-----Generated at Mon Jan 26 05:38:00 2026 by rpki-client