This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/fef2e0-ba37-4812-95ad-411a2712164d/1/U8NcqD_N9xskTtgDrEaOFFPYJo8.mft File: U8NcqD_N9xskTtgDrEaOFFPYJo8.mft (raw, json) Hash identifier: gESJPC2PzI+KNM8VvmsNBPAt/vjqIaAbtoeMUcy6GCY= Subject key identifier: 7E:89:7A:91:51:88:9D:5E:F5:B5:22:DF:D9:70:D2:77:47:F6:09:E0 Authority key identifier: 53:C3:5C:A8:3F:CD:F7:1B:24:4E:D8:03:AC:46:8E:14:53:D8:26:8F Certificate issuer: /CN=53c35ca83fcdf71b244ed803ac468e1453d8268f Certificate serial: 019BF4995E54FC70E3110780E8A3EA2DC5DA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U8NcqD_N9xskTtgDrEaOFFPYJo8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/fef2e0-ba37-4812-95ad-411a2712164d/1/U8NcqD_N9xskTtgDrEaOFFPYJo8.mft Manifest number: 0A2D Signing time: Sun 25 Jan 2026 10:00:50 +0000 Manifest this update: Sun 25 Jan 2026 10:00:50 +0000 Manifest next update: Mon 26 Jan 2026 10:00:50 +0000 Files and hashes: 1: 0P9xPfTELLOLsIkje98I5DI3JMM.roa (hash: /5GbceYSZZKUMKDpKsep1xA2kefROVR28hBE+53Ms/s=) 2: U8NcqD_N9xskTtgDrEaOFFPYJo8.crl (hash: lqXVVBtJ5TwjI4VWcUs/R5XneWbZZKfrLVHTXexloQE=) 3: pfH2GwBcvDoKyHCIT0cM2iz_ms0.roa (hash: Mm7/tRb+RTedsr3+m2DHJUxAaM0FcO0MUgT9eZ4XDVI=) 4: zMo_08BFuPtuYYrEDlRKq-rmGBo.roa (hash: vZCIJPH6khDNzPRPnP73DDsgX8UFqI/TfAzpfgqnDZI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/fef2e0-ba37-4812-95ad-411a2712164d/1/U8NcqD_N9xskTtgDrEaOFFPYJo8.crl rsync://rpki.ripe.net/repository/DEFAULT/a7/fef2e0-ba37-4812-95ad-411a2712164d/1/U8NcqD_N9xskTtgDrEaOFFPYJo8.mft rsync://rpki.ripe.net/repository/DEFAULT/U8NcqD_N9xskTtgDrEaOFFPYJo8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 10:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f4:99:5e:54:fc:70:e3:11:07:80:e8:a3:ea:2d:c5:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=53c35ca83fcdf71b244ed803ac468e1453d8268f Validity Not Before: Jan 25 10:00:50 2026 GMT Not After : Jan 26 10:00:50 2026 GMT Subject: CN=7e897a9151889d5ef5b522dfd970d27747f609e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:a9:c7:ca:9a:c3:dc:4d:90:df:98:24:9f:e2: 6f:fe:15:bb:24:08:63:05:59:82:91:21:5a:03:4a: e5:3a:d3:76:39:79:21:84:74:c3:75:c1:90:26:83: 1f:a5:be:c5:23:07:f2:bf:72:af:16:4d:06:14:54: d2:d8:cf:4d:e0:74:04:35:9d:05:a1:64:04:48:24: e4:01:d1:86:e1:69:86:9b:71:c5:ad:73:4a:91:5e: 1c:f8:a2:1e:f2:57:36:a0:42:f1:e3:82:32:b6:77: 4a:86:5b:a4:51:66:ae:69:58:1d:a5:e3:a6:69:83: 8c:f5:71:4c:4a:f3:d8:ca:50:47:e7:a0:58:e9:36: 88:f3:b1:6f:f2:e9:e4:96:44:2c:4a:56:03:2c:f4: 10:8b:1d:77:26:c1:3d:59:78:c2:a9:94:c5:6d:7a: f8:1c:9b:ec:ba:2f:1b:46:62:34:fe:3b:50:df:39: d7:16:91:ba:a0:96:93:88:93:35:ff:0e:cf:5c:5d: 3f:4c:26:2a:57:d3:ba:04:5d:da:e6:7a:1f:a8:59: 8e:e5:15:32:c3:e5:43:bd:96:c7:7b:98:59:74:1c: fc:28:13:78:60:dc:68:2b:c7:41:eb:9b:22:7e:60: a2:10:1f:13:50:56:62:52:e4:cf:bd:26:d7:ee:58: 67:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:89:7A:91:51:88:9D:5E:F5:B5:22:DF:D9:70:D2:77:47:F6:09:E0 X509v3 Authority Key Identifier: keyid:53:C3:5C:A8:3F:CD:F7:1B:24:4E:D8:03:AC:46:8E:14:53:D8:26:8F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U8NcqD_N9xskTtgDrEaOFFPYJo8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/fef2e0-ba37-4812-95ad-411a2712164d/1/U8NcqD_N9xskTtgDrEaOFFPYJo8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/fef2e0-ba37-4812-95ad-411a2712164d/1/U8NcqD_N9xskTtgDrEaOFFPYJo8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4f:2e:c8:6e:bd:70:db:c1:43:2a:9e:a5:ff:58:e6:aa:c2:7f: 80:37:37:3e:49:5d:e3:ae:57:15:bf:50:49:f0:38:ff:1e:c9: 91:44:15:57:2b:82:93:4c:3c:c5:50:47:9b:51:2a:17:1b:5d: 58:6b:e3:e4:91:cb:9a:9a:df:d4:06:59:9a:d3:d7:73:a2:07: f0:92:3e:9f:18:96:0e:71:cc:40:89:24:fe:c6:5d:8b:67:7d: 17:17:52:e8:37:0b:41:08:c1:00:b2:35:3a:63:4f:04:8c:ae: 35:dd:9e:11:91:ae:03:71:5f:7d:95:f0:5e:87:0f:d0:7f:52: c9:33:4f:9e:76:02:46:f3:59:0f:b8:6a:af:89:e2:a3:1b:88: da:48:fb:ba:a2:e1:c1:65:96:20:53:7d:86:d7:d6:32:97:36: fa:73:45:21:f7:f9:b7:5b:31:79:89:d5:de:e6:80:b0:85:68: 1d:30:83:17:e2:aa:6b:ef:8a:68:2d:fe:ab:53:0f:08:29:d6: eb:fb:09:cc:6a:ae:cb:88:fa:c6:3b:08:99:ca:20:cb:c4:e8: 8c:ed:8b:19:fb:8d:6d:57:53:ba:41:42:78:1d:bb:46:98:e4: 89:34:bb:e6:9e:94:44:01:f3:00:bb:a1:20:0f:7f:d1:bd:24: ba:53:2c:42 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv0mV5U/HDjEQeA6KPqLcXaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUzYzM1Y2E4M2ZjZGY3MWIyNDRlZDgwM2FjNDY4ZTE0NTNk ODI2OGYwHhcNMjYwMTI1MTAwMDUwWhcNMjYwMTI2MTAwMDUwWjAzMTEwLwYDVQQD Eyg3ZTg5N2E5MTUxODg5ZDVlZjViNTIyZGZkOTcwZDI3NzQ3ZjYwOWUwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk6nHyprD3E2Q35gkn+Jv/hW7JAhj BVmCkSFaA0rlOtN2OXkhhHTDdcGQJoMfpb7FIwfyv3KvFk0GFFTS2M9N4HQENZ0F oWQESCTkAdGG4WmGm3HFrXNKkV4c+KIe8lc2oELx44IytndKhlukUWauaVgdpeOm aYOM9XFMSvPYylBH56BY6TaI87Fv8unklkQsSlYDLPQQix13JsE9WXjCqZTFbXr4 HJvsui8bRmI0/jtQ3znXFpG6oJaTiJM1/w7PXF0/TCYqV9O6BF3a5nofqFmO5RUy w+VDvZbHe5hZdBz8KBN4YNxoK8dB65sifmCiEB8TUFZiUuTPvSbX7lhnAwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFH6JepFRiJ1e9bUi39lw0ndH9gngMB8GA1UdIwQY MBaAFFPDXKg/zfcbJE7YA6xGjhRT2CaPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVThOY3FEX045eHNrVHRnRHJFYU9GRlBZSm84LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy9mZWYyZTAtYmEzNy00ODEyLTk1YWQt NDExYTI3MTIxNjRkLzEvVThOY3FEX045eHNrVHRnRHJFYU9GRlBZSm84Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNy9mZWYyZTAtYmEzNy00ODEyLTk1YWQtNDExYTI3MTIxNjRk LzEvVThOY3FEX045eHNrVHRnRHJFYU9GRlBZSm84LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATy7Ibr1w 28FDKp6l/1jmqsJ/gDc3Pkld465XFb9QSfA4/x7JkUQVVyuCk0w8xVBHm1EqFxtd WGvj5JHLmprf1AZZmtPXc6IH8JI+nxiWDnHMQIkk/sZdi2d9FxdS6DcLQQjBALI1 OmNPBIyuNd2eEZGuA3FffZXwXocP0H9SyTNPnnYCRvNZD7hqr4nioxuI2kj7uqLh wWWWIFN9htfWMpc2+nNFIff5t1sxeYnV3uaAsIVoHTCDF+Kqa++KaC3+q1MPCCnW 6/sJzGquy4j6xjsImcogy8TojO2LGfuNbVdTukFCeB27RpjkiTS75p6URAHzALuh IA9/0b0kulMsQg== -----END CERTIFICATE-----Generated at Sun Jan 25 20:39:16 2026 by rpki-client