This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/565ea1-2a36-4403-941e-f0d40f029673/1/59aKnrhqgmTp3cMSKEm4DMNC9dw.mft File: 59aKnrhqgmTp3cMSKEm4DMNC9dw.mft (raw, json) Hash identifier: g0GY+w/Gh0itkgLdhfYjpO2uoFxILuogbQ0plsSB/Sg= Subject key identifier: 73:E0:35:77:AE:D0:29:4B:5C:64:D9:94:33:10:E2:4C:E3:38:89:BF Authority key identifier: E7:D6:8A:9E:B8:6A:82:64:E9:DD:C3:12:28:49:B8:0C:C3:42:F5:DC Certificate issuer: /CN=e7d68a9eb86a8264e9ddc3122849b80cc342f5dc Certificate serial: 019BF5754C059BBAFBE9EF6B435A5EB407C7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/59aKnrhqgmTp3cMSKEm4DMNC9dw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/565ea1-2a36-4403-941e-f0d40f029673/1/59aKnrhqgmTp3cMSKEm4DMNC9dw.mft Manifest number: 1502 Signing time: Sun 25 Jan 2026 14:01:03 +0000 Manifest this update: Sun 25 Jan 2026 14:01:03 +0000 Manifest next update: Mon 26 Jan 2026 14:01:03 +0000 Files and hashes: 1: 59aKnrhqgmTp3cMSKEm4DMNC9dw.crl (hash: HLN7xbkMhS2SbxNnkFz+NhWbi/cSMW+SXIcIdytorMM=) 2: 5D_6V1jfsiELpRkCmEhi7rdCKRg.roa (hash: /d0M4c6YWxQ0V8Mp5iLPG6sVPAc4eaY42hLJi+0oXvQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/565ea1-2a36-4403-941e-f0d40f029673/1/59aKnrhqgmTp3cMSKEm4DMNC9dw.crl rsync://rpki.ripe.net/repository/DEFAULT/a3/565ea1-2a36-4403-941e-f0d40f029673/1/59aKnrhqgmTp3cMSKEm4DMNC9dw.mft rsync://rpki.ripe.net/repository/DEFAULT/59aKnrhqgmTp3cMSKEm4DMNC9dw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 14:01:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f5:75:4c:05:9b:ba:fb:e9:ef:6b:43:5a:5e:b4:07:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e7d68a9eb86a8264e9ddc3122849b80cc342f5dc Validity Not Before: Jan 25 14:01:03 2026 GMT Not After : Jan 26 14:01:03 2026 GMT Subject: CN=73e03577aed0294b5c64d9943310e24ce33889bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:0b:c4:3f:63:b4:fe:67:b8:bd:d7:84:b4:cc: 92:7d:c2:92:a7:70:49:55:58:6f:5d:cc:62:a1:36: 1b:a9:e1:13:bc:e8:96:8d:c7:36:4b:15:8d:ff:8b: 02:ab:82:d5:cc:9e:bd:7c:2a:b1:87:38:46:0c:2e: 4d:9a:6d:95:81:44:11:46:ec:96:a0:31:1b:29:17: 63:74:86:06:87:2b:c9:3d:c3:af:87:76:de:07:5b: a9:bd:93:92:81:fb:b2:f4:56:a8:de:e2:c1:c7:a4: 84:1a:74:83:0d:5f:17:24:4f:24:ea:e8:4c:95:c6: de:2a:86:93:e4:94:96:3c:da:40:3d:be:ff:5c:ee: d3:a8:28:52:66:19:f8:9c:28:3e:3d:e8:56:49:f1: f0:d0:e7:3e:39:66:98:7d:4f:e3:89:e1:38:7f:1f: a9:0f:b4:e9:d3:59:8f:2b:75:45:24:1a:84:0a:64: 1b:ca:07:b0:a4:86:37:f7:4f:00:b5:06:9f:a6:14: a2:33:f2:36:ed:72:0e:aa:8c:eb:55:29:9c:87:ca: d8:38:b6:10:5c:73:0c:46:b5:21:8d:4b:e5:45:91: 74:22:7d:e6:12:da:14:db:66:f9:60:06:de:c7:9e: 7d:6b:d2:d9:44:15:8d:58:0e:92:72:b9:5b:99:e1: d0:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:E0:35:77:AE:D0:29:4B:5C:64:D9:94:33:10:E2:4C:E3:38:89:BF X509v3 Authority Key Identifier: keyid:E7:D6:8A:9E:B8:6A:82:64:E9:DD:C3:12:28:49:B8:0C:C3:42:F5:DC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/59aKnrhqgmTp3cMSKEm4DMNC9dw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/565ea1-2a36-4403-941e-f0d40f029673/1/59aKnrhqgmTp3cMSKEm4DMNC9dw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/565ea1-2a36-4403-941e-f0d40f029673/1/59aKnrhqgmTp3cMSKEm4DMNC9dw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2b:d8:66:dd:69:24:bf:63:d0:c4:07:c0:38:e5:e8:0f:fa:d6: e0:d7:3a:e4:9e:5e:e7:0e:ef:54:fe:a4:6a:4d:5f:64:9c:e9: d1:e4:e3:f9:df:22:6a:0c:c8:b6:d5:15:ed:e3:84:af:12:e0: 79:6f:d8:86:26:09:1f:02:88:65:d5:27:76:dd:cf:c6:55:f1: 6b:68:6f:ab:4d:c0:c0:ac:2e:c9:0b:7c:c8:be:92:a7:d8:83: 26:eb:a4:1e:f3:00:a0:d1:a3:90:51:50:0c:a2:6f:94:1a:13: 9b:e0:a9:56:df:6c:4b:5b:c1:b7:d8:8c:81:60:5e:95:2c:eb: 63:4d:10:cf:a7:f2:8d:1e:44:6f:17:ac:42:de:d6:36:62:83: 11:3d:32:4d:04:e2:df:ff:98:fe:f1:50:b1:f5:17:ef:c2:2f: 23:c9:c9:5d:11:e1:13:3e:cc:ea:9a:b7:b2:55:eb:27:de:dd: 6a:60:dc:d8:69:b4:9f:1f:0f:6e:83:65:b3:34:6f:50:2f:49: 62:de:ca:42:29:2e:a4:59:4e:07:3c:9d:9d:15:38:fd:a1:ab: 23:2b:44:fa:4d:85:09:4d:f6:dc:32:43:00:50:4a:c6:35:86: b2:0e:05:57:fc:e3:60:09:39:00:cc:db:fc:5b:1f:1d:a9:3c: 4e:cd:1a:77 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv1dUwFm7r76e9rQ1petAfHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU3ZDY4YTllYjg2YTgyNjRlOWRkYzMxMjI4NDliODBjYzM0 MmY1ZGMwHhcNMjYwMTI1MTQwMTAzWhcNMjYwMTI2MTQwMTAzWjAzMTEwLwYDVQQD Eyg3M2UwMzU3N2FlZDAyOTRiNWM2NGQ5OTQzMzEwZTI0Y2UzMzg4OWJmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAogvEP2O0/me4vdeEtMySfcKSp3BJ VVhvXcxioTYbqeETvOiWjcc2SxWN/4sCq4LVzJ69fCqxhzhGDC5Nmm2VgUQRRuyW oDEbKRdjdIYGhyvJPcOvh3beB1upvZOSgfuy9Fao3uLBx6SEGnSDDV8XJE8k6uhM lcbeKoaT5JSWPNpAPb7/XO7TqChSZhn4nCg+PehWSfHw0Oc+OWaYfU/jieE4fx+p D7Tp01mPK3VFJBqECmQbygewpIY3908AtQafphSiM/I27XIOqozrVSmch8rYOLYQ XHMMRrUhjUvlRZF0In3mEtoU22b5YAbex559a9LZRBWNWA6ScrlbmeHQvwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHPgNXeu0ClLXGTZlDMQ4kzjOIm/MB8GA1UdIwQY MBaAFOfWip64aoJk6d3DEihJuAzDQvXcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNTlhS25yaHFnbVRwM2NNU0tFbTRETU5DOWR3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy81NjVlYTEtMmEzNi00NDAzLTk0MWUt ZjBkNDBmMDI5NjczLzEvNTlhS25yaHFnbVRwM2NNU0tFbTRETU5DOWR3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMy81NjVlYTEtMmEzNi00NDAzLTk0MWUtZjBkNDBmMDI5Njcz LzEvNTlhS25yaHFnbVRwM2NNU0tFbTRETU5DOWR3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAK9hm3Wkk v2PQxAfAOOXoD/rW4Nc65J5e5w7vVP6kak1fZJzp0eTj+d8iagzIttUV7eOErxLg eW/YhiYJHwKIZdUndt3PxlXxa2hvq03AwKwuyQt8yL6Sp9iDJuukHvMAoNGjkFFQ DKJvlBoTm+CpVt9sS1vBt9iMgWBelSzrY00Qz6fyjR5EbxesQt7WNmKDET0yTQTi 3/+Y/vFQsfUX78IvI8nJXRHhEz7M6pq3slXrJ97damDc2Gm0nx8PboNlszRvUC9J Yt7KQikupFlOBzydnRU4/aGrIytE+k2FCU323DJDAFBKxjWGsg4FV/zjYAk5AMzb /FsfHak8Ts0adw== -----END CERTIFICATE-----Generated at Sun Jan 25 23:55:27 2026 by rpki-client