This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/76556e-a1d8-4e0a-8468-2214f18eb329/1/0KpKGno60j-q4q6un6YZTwISgSk.mft File: 0KpKGno60j-q4q6un6YZTwISgSk.mft (raw, json) Hash identifier: mWXB4gGOwPA1WyB91yGbVAdBj5hL52eZBjModIsK3jc= Subject key identifier: F0:CD:C5:BE:9F:2B:0D:FF:5A:51:26:08:A6:5B:32:3E:C6:6D:AC:80 Authority key identifier: D0:AA:4A:1A:7A:3A:D2:3F:AA:E2:AE:AE:9F:A6:19:4F:02:12:81:29 Certificate issuer: /CN=d0aa4a1a7a3ad23faae2aeae9fa6194f02128129 Certificate serial: 019BF619BF8351CE68488C8A847286D2025C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0KpKGno60j-q4q6un6YZTwISgSk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/76556e-a1d8-4e0a-8468-2214f18eb329/1/0KpKGno60j-q4q6un6YZTwISgSk.mft Manifest number: 0404 Signing time: Sun 25 Jan 2026 17:00:41 +0000 Manifest this update: Sun 25 Jan 2026 17:00:41 +0000 Manifest next update: Mon 26 Jan 2026 17:00:41 +0000 Files and hashes: 1: 0KpKGno60j-q4q6un6YZTwISgSk.crl (hash: CiXemVPXs2FMd8Gxv3Kt0U/7NkmNtF/zneF/r+37zNs=) 2: 0r4BvsnJAN2Pz40prPoUEy6WvzU.roa (hash: AamdQ0j/vjkbuVtweF8p9JDSZ2i84cCde/Gwvcvf218=) 3: 5bf5CwJmQOVXufa2Bw359AZEO9s.roa (hash: vE+kqAcM+EoC006Mvnftc/u8n7NMMiAT3ni4cuysV1M=) 4: epNTET6BvQ6zhUMoLdSPzHjbIWE.roa (hash: qxvi55+BDN0SED0a/Y9HgRfeWegI7IGQUucmOAr178Y=) 5: ncOZbEMiJNqjiscavpDBkZeriIg.roa (hash: KP4yleOLVWJhJdzAKqGM+QLwSbZEncnkoAH1TNTBzJs=) 6: oS9h716veeRY1y9kuFn-MIGUEBg.roa (hash: KS+2BIj/1oDD8HcECr/uPYIsA+2SUgLQkBkCEiNQnZg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/76556e-a1d8-4e0a-8468-2214f18eb329/1/0KpKGno60j-q4q6un6YZTwISgSk.crl rsync://rpki.ripe.net/repository/DEFAULT/a5/76556e-a1d8-4e0a-8468-2214f18eb329/1/0KpKGno60j-q4q6un6YZTwISgSk.mft rsync://rpki.ripe.net/repository/DEFAULT/0KpKGno60j-q4q6un6YZTwISgSk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f6:19:bf:83:51:ce:68:48:8c:8a:84:72:86:d2:02:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d0aa4a1a7a3ad23faae2aeae9fa6194f02128129 Validity Not Before: Jan 25 17:00:41 2026 GMT Not After : Jan 26 17:00:41 2026 GMT Subject: CN=f0cdc5be9f2b0dff5a512608a65b323ec66dac80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:f0:12:cf:6d:03:57:cd:c3:b3:df:82:52:df: 51:31:ae:fc:dd:c7:23:01:cc:b8:fe:95:ed:cb:15: bd:19:6a:95:34:db:63:e9:67:2b:62:85:bd:c4:9c: 2d:80:0b:81:25:2c:50:fa:f8:8e:cc:c9:5c:07:1f: a0:de:32:9f:77:cf:c4:2c:f9:8b:2a:b2:82:43:98: 96:21:3d:e0:ab:69:1f:7f:46:54:5e:1c:03:af:47: 12:ec:04:d6:af:11:90:3e:c7:6c:5f:53:1a:42:6f: 00:46:e6:07:c9:de:2e:0f:1d:d1:c1:5f:c8:9a:5d: 0b:e4:54:37:95:29:2a:9c:c8:22:d8:1f:2f:8a:59: f9:c3:1d:b6:36:98:4f:73:0f:fa:68:40:62:17:13: 48:de:dc:4f:85:8a:cc:bb:41:33:a5:35:bc:26:a6: 15:ec:e1:20:c9:17:4d:e8:06:e2:3c:93:54:94:63: f2:96:62:4c:b4:2e:34:d6:c1:5b:42:e1:4c:61:78: fd:4c:83:f0:c3:fe:4a:d2:4a:13:a2:77:64:d2:48: c8:de:ed:d4:84:6b:ef:ae:f0:7d:31:50:e8:d0:11: 99:7c:67:2b:cb:2e:09:41:a3:dc:d9:a5:22:bf:ea: 8d:60:2e:e6:95:28:02:f4:3a:b5:0b:2f:cd:dd:58: dd:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:CD:C5:BE:9F:2B:0D:FF:5A:51:26:08:A6:5B:32:3E:C6:6D:AC:80 X509v3 Authority Key Identifier: keyid:D0:AA:4A:1A:7A:3A:D2:3F:AA:E2:AE:AE:9F:A6:19:4F:02:12:81:29 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0KpKGno60j-q4q6un6YZTwISgSk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/76556e-a1d8-4e0a-8468-2214f18eb329/1/0KpKGno60j-q4q6un6YZTwISgSk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/76556e-a1d8-4e0a-8468-2214f18eb329/1/0KpKGno60j-q4q6un6YZTwISgSk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a9:4c:12:0b:fd:ef:14:33:b1:1e:ee:4b:59:fa:64:a2:2d:27: 2f:a0:12:b9:94:cb:46:da:22:14:35:8d:53:5a:ca:85:53:5b: 8b:54:50:ed:c3:bc:4e:a3:77:da:46:1b:43:b3:ed:1c:f0:7c: 65:77:91:03:5f:b9:1b:21:27:9a:22:b0:96:cb:2a:72:09:53: 1f:1d:e3:ab:07:d8:24:94:ba:2b:a4:34:3d:ae:86:a4:34:d9: f9:6d:d7:df:88:76:28:ea:c6:ce:2f:60:87:b4:31:91:6c:9d: ea:8e:6e:73:9f:2b:ff:ea:69:30:a1:bc:61:07:65:c4:53:e9: 6c:18:78:71:1c:a1:3f:11:92:05:2b:5a:d8:a6:f0:8c:76:7b: 1b:84:63:d7:83:d6:0a:47:3d:b1:f3:e3:6c:69:74:0d:fa:59: 41:06:27:03:f2:01:73:b0:37:2c:05:f3:5e:7c:1c:9f:58:a3: 75:de:db:c2:88:19:e9:19:f7:58:0a:bd:03:c5:33:3c:d2:c8: fd:b8:3e:71:50:96:7a:e8:76:00:c5:1f:8b:49:c1:b0:a4:b2: fa:7d:3e:39:9b:0f:44:c8:83:6f:ee:46:3e:48:7f:a3:c5:c7: 49:23:d1:a8:3f:e4:00:94:54:8a:b1:6b:32:b8:56:50:3e:bf: cc:d9:e3:b1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv2Gb+DUc5oSIyKhHKG0gJcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQwYWE0YTFhN2EzYWQyM2ZhYWUyYWVhZTlmYTYxOTRmMDIx MjgxMjkwHhcNMjYwMTI1MTcwMDQxWhcNMjYwMTI2MTcwMDQxWjAzMTEwLwYDVQQD EyhmMGNkYzViZTlmMmIwZGZmNWE1MTI2MDhhNjViMzIzZWM2NmRhYzgwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtPASz20DV83Ds9+CUt9RMa783ccj Acy4/pXtyxW9GWqVNNtj6WcrYoW9xJwtgAuBJSxQ+viOzMlcBx+g3jKfd8/ELPmL KrKCQ5iWIT3gq2kff0ZUXhwDr0cS7ATWrxGQPsdsX1MaQm8ARuYHyd4uDx3RwV/I ml0L5FQ3lSkqnMgi2B8viln5wx22NphPcw/6aEBiFxNI3txPhYrMu0EzpTW8JqYV 7OEgyRdN6AbiPJNUlGPylmJMtC401sFbQuFMYXj9TIPww/5K0koTondk0kjI3u3U hGvvrvB9MVDo0BGZfGcryy4JQaPc2aUiv+qNYC7mlSgC9Dq1Cy/N3VjdRwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPDNxb6fKw3/WlEmCKZbMj7GbayAMB8GA1UdIwQY MBaAFNCqShp6OtI/quKurp+mGU8CEoEpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMEtwS0dubzYwai1xNHE2dW42WVpUd0lTZ1NrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNS83NjU1NmUtYTFkOC00ZTBhLTg0Njgt MjIxNGYxOGViMzI5LzEvMEtwS0dubzYwai1xNHE2dW42WVpUd0lTZ1NrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNS83NjU1NmUtYTFkOC00ZTBhLTg0NjgtMjIxNGYxOGViMzI5 LzEvMEtwS0dubzYwai1xNHE2dW42WVpUd0lTZ1NrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqUwSC/3v FDOxHu5LWfpkoi0nL6ASuZTLRtoiFDWNU1rKhVNbi1RQ7cO8TqN32kYbQ7PtHPB8 ZXeRA1+5GyEnmiKwlssqcglTHx3jqwfYJJS6K6Q0Pa6GpDTZ+W3X34h2KOrGzi9g h7QxkWyd6o5uc58r/+ppMKG8YQdlxFPpbBh4cRyhPxGSBSta2KbwjHZ7G4Rj14PW Ckc9sfPjbGl0DfpZQQYnA/IBc7A3LAXzXnwcn1ijdd7bwogZ6Rn3WAq9A8UzPNLI /bg+cVCWeuh2AMUfi0nBsKSy+n0+OZsPRMiDb+5GPkh/o8XHSSPRqD/kAJRUirFr MrhWUD6/zNnjsQ== -----END CERTIFICATE-----Generated at Sun Jan 25 20:13:13 2026 by rpki-client