This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft File: vYUnKkCAkE914jWkevC0EmbipgM.mft (raw, json) Hash identifier: nUvVouY9SDp7qJlPSey8g9lEh9452SHg24MuIwqZjLg= Subject key identifier: 1E:1D:2B:D1:3F:FA:C3:D5:10:1E:81:84:40:1C:97:E5:43:8D:24:79 Authority key identifier: BD:85:27:2A:40:80:90:4F:75:E2:35:A4:7A:F0:B4:12:66:E2:A6:03 Certificate issuer: /CN=bd85272a4080904f75e235a47af0b41266e2a603 Certificate serial: 019BF6BED27226349E24FFBAA7EB92E336F0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vYUnKkCAkE914jWkevC0EmbipgM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft Manifest number: 0B13 Signing time: Sun 25 Jan 2026 20:00:59 +0000 Manifest this update: Sun 25 Jan 2026 20:00:59 +0000 Manifest next update: Mon 26 Jan 2026 20:00:59 +0000 Files and hashes: 1: 5TQ-JqFgF-IFdipnnBO-T6tTIiI.roa (hash: jvG5fPveO3vEmUkVM2g5EIXNmfe8tIUO+ydnKHanIQ8=) 2: vYUnKkCAkE914jWkevC0EmbipgM.crl (hash: ldrqOaXOc64UnvwF9Nc58Qu0LYMMVl+vVS2ljrJfN5A=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.crl rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft rsync://rpki.ripe.net/repository/DEFAULT/vYUnKkCAkE914jWkevC0EmbipgM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f6:be:d2:72:26:34:9e:24:ff:ba:a7:eb:92:e3:36:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bd85272a4080904f75e235a47af0b41266e2a603 Validity Not Before: Jan 25 20:00:59 2026 GMT Not After : Jan 26 20:00:59 2026 GMT Subject: CN=1e1d2bd13ffac3d5101e8184401c97e5438d2479 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:f4:59:37:c0:ea:43:8e:1e:c8:ee:02:fb:1e: 6d:0f:7b:9e:9c:bd:d5:fb:f2:95:e5:98:d7:b7:d6: 7b:c4:20:89:d4:8f:80:97:a8:96:de:5c:09:c6:55: 19:aa:55:e9:75:f0:37:0e:9a:f1:6d:5d:6a:f4:ec: 10:c9:a1:c6:cc:b9:ec:67:e7:f9:5b:de:69:50:fb: 35:90:18:d8:2f:fe:22:3e:87:db:c6:91:f7:73:71: 72:dd:88:7e:3a:20:b0:bd:56:bd:01:70:06:b0:3a: 0d:41:26:f3:d9:79:c4:c3:ce:52:6b:8b:33:48:b6: 1b:ce:c4:75:b2:18:b5:3d:8a:ff:1c:d5:69:2a:50: a6:c1:ea:49:1c:96:6d:dc:ee:f2:5f:b8:1c:a8:1d: b0:9f:84:62:10:f4:a9:95:d4:af:79:52:4b:f9:10: 4c:1d:19:42:a4:b0:ee:65:4b:d3:e0:03:cb:6b:ca: df:78:14:23:c7:7a:38:2d:27:d7:0b:aa:11:71:60: 56:ef:68:15:62:a6:1c:38:62:d8:e9:88:0e:9e:e9: 63:d5:dc:9b:a9:4b:ff:de:89:b3:05:92:85:44:db: ed:3c:85:bb:b3:4e:6b:95:c9:79:59:8e:db:ec:c7: fa:08:05:80:ef:a9:0a:30:ee:10:3b:ec:bf:a1:32: bd:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:1D:2B:D1:3F:FA:C3:D5:10:1E:81:84:40:1C:97:E5:43:8D:24:79 X509v3 Authority Key Identifier: keyid:BD:85:27:2A:40:80:90:4F:75:E2:35:A4:7A:F0:B4:12:66:E2:A6:03 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vYUnKkCAkE914jWkevC0EmbipgM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 38:c6:df:77:87:1b:a3:36:28:a8:9a:d3:71:43:4e:e3:1b:f4: c7:c7:71:b8:ce:8f:13:36:90:67:d9:d8:09:57:1a:04:eb:8d: 41:17:ff:3d:1a:05:4a:3c:88:e8:a0:81:5d:24:41:ec:a0:55: b8:a8:05:b8:21:d6:e3:f7:48:72:06:33:fc:09:f3:67:ee:73: 43:98:f4:c3:fc:07:a9:19:1c:17:f4:7b:84:04:67:d1:f6:89: 66:28:48:10:60:7a:17:53:9e:fe:c5:16:91:1e:0f:60:b0:e5: 3d:e5:a0:d2:f6:30:b2:ea:7a:9d:66:78:48:6a:05:2f:c6:22: 7b:56:13:c0:c4:0f:c8:75:97:0f:49:38:a2:d2:81:1a:d4:97: 80:73:d5:62:b3:5d:67:8b:76:27:62:51:33:01:5f:d2:73:37: 02:68:0b:39:9c:1f:7d:88:0e:05:11:63:c0:34:b0:c0:67:d3: 7c:4b:29:5a:fc:20:0e:f6:ef:aa:7b:1e:34:a2:15:cf:ad:f5: 6e:b3:58:bd:bb:5b:69:0a:66:71:eb:cf:7e:6b:20:79:2b:18: 81:ac:80:55:60:69:19:bf:e2:4b:8a:5b:43:03:2e:02:fa:af: da:54:b5:af:24:0a:df:bc:e2:cf:f4:db:99:d5:fd:aa:c5:c1: 3c:9a:f1:6a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv2vtJyJjSeJP+6p+uS4zbwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJkODUyNzJhNDA4MDkwNGY3NWUyMzVhNDdhZjBiNDEyNjZl MmE2MDMwHhcNMjYwMTI1MjAwMDU5WhcNMjYwMTI2MjAwMDU5WjAzMTEwLwYDVQQD EygxZTFkMmJkMTNmZmFjM2Q1MTAxZTgxODQ0MDFjOTdlNTQzOGQyNDc5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyfRZN8DqQ44eyO4C+x5tD3uenL3V +/KV5ZjXt9Z7xCCJ1I+Al6iW3lwJxlUZqlXpdfA3DprxbV1q9OwQyaHGzLnsZ+f5 W95pUPs1kBjYL/4iPofbxpH3c3Fy3Yh+OiCwvVa9AXAGsDoNQSbz2XnEw85Sa4sz SLYbzsR1shi1PYr/HNVpKlCmwepJHJZt3O7yX7gcqB2wn4RiEPSpldSveVJL+RBM HRlCpLDuZUvT4APLa8rfeBQjx3o4LSfXC6oRcWBW72gVYqYcOGLY6YgOnulj1dyb qUv/3omzBZKFRNvtPIW7s05rlcl5WY7b7Mf6CAWA76kKMO4QO+y/oTK9owIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFB4dK9E/+sPVEB6BhEAcl+VDjSR5MB8GA1UdIwQY MBaAFL2FJypAgJBPdeI1pHrwtBJm4qYDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdllVbktrQ0FrRTkxNGpXa2V2QzBFbWJpcGdNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNC8yODJjYjAtOTFiZS00MjJhLTk1ZDMt MjRmMjBmOTY3NWVjLzEvdllVbktrQ0FrRTkxNGpXa2V2QzBFbWJpcGdNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNC8yODJjYjAtOTFiZS00MjJhLTk1ZDMtMjRmMjBmOTY3NWVj LzEvdllVbktrQ0FrRTkxNGpXa2V2QzBFbWJpcGdNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOMbfd4cb ozYoqJrTcUNO4xv0x8dxuM6PEzaQZ9nYCVcaBOuNQRf/PRoFSjyI6KCBXSRB7KBV uKgFuCHW4/dIcgYz/AnzZ+5zQ5j0w/wHqRkcF/R7hARn0faJZihIEGB6F1Oe/sUW kR4PYLDlPeWg0vYwsup6nWZ4SGoFL8Yie1YTwMQPyHWXD0k4otKBGtSXgHPVYrNd Z4t2J2JRMwFf0nM3AmgLOZwffYgOBRFjwDSwwGfTfEspWvwgDvbvqnseNKIVz631 brNYvbtbaQpmcevPfmsgeSsYgayAVWBpGb/iS4pbQwMuAvqv2lS1ryQK37ziz/Tb mdX9qsXBPJrxag== -----END CERTIFICATE-----Generated at Mon Jan 26 01:47:45 2026 by rpki-client