This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/2231d2-cd9a-4cf1-80d0-51b2aa5980be/1/1u7_aQEa0BobF5pt1w1ZoRFvUfM.mft File: 1u7_aQEa0BobF5pt1w1ZoRFvUfM.mft (raw, json) Hash identifier: Eryh4k3eb+V9TP3c6eUhxl+bQd5BSiKuFrG6UrLTt2Y= Subject key identifier: 3E:33:41:76:69:89:ED:42:96:B1:2A:8C:C0:27:8C:21:3E:D4:25:9C Authority key identifier: D6:EE:FF:69:01:1A:D0:1A:1B:17:9A:6D:D7:0D:59:A1:11:6F:51:F3 Certificate issuer: /CN=d6eeff69011ad01a1b179a6dd70d59a1116f51f3 Certificate serial: 019BF57529DD4822994B8588866CB7C20BFF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1u7_aQEa0BobF5pt1w1ZoRFvUfM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/2231d2-cd9a-4cf1-80d0-51b2aa5980be/1/1u7_aQEa0BobF5pt1w1ZoRFvUfM.mft Manifest number: 111F Signing time: Sun 25 Jan 2026 14:00:54 +0000 Manifest this update: Sun 25 Jan 2026 14:00:54 +0000 Manifest next update: Mon 26 Jan 2026 14:00:54 +0000 Files and hashes: 1: 1u7_aQEa0BobF5pt1w1ZoRFvUfM.crl (hash: OrWpr17C7+ydhFQfk1VdqxX15mPBEVvFF2X+LCRF4ws=) 2: nVcrQjhWQvZv3MpiEu7OA3dqEsU.roa (hash: q6SGNZPGxWCvS2kjA8Hhq7jz4Krm0km/a67HNcgbwrs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/2231d2-cd9a-4cf1-80d0-51b2aa5980be/1/1u7_aQEa0BobF5pt1w1ZoRFvUfM.crl rsync://rpki.ripe.net/repository/DEFAULT/a9/2231d2-cd9a-4cf1-80d0-51b2aa5980be/1/1u7_aQEa0BobF5pt1w1ZoRFvUfM.mft rsync://rpki.ripe.net/repository/DEFAULT/1u7_aQEa0BobF5pt1w1ZoRFvUfM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f5:75:29:dd:48:22:99:4b:85:88:86:6c:b7:c2:0b:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d6eeff69011ad01a1b179a6dd70d59a1116f51f3 Validity Not Before: Jan 25 14:00:54 2026 GMT Not After : Jan 26 14:00:54 2026 GMT Subject: CN=3e3341766989ed4296b12a8cc0278c213ed4259c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:32:ec:3e:92:4e:61:61:f1:f0:ab:8b:70:e0: 85:de:a4:c7:85:5d:36:ac:e3:ad:b3:02:40:78:39: 69:96:c8:b0:0b:c1:21:15:8a:86:8c:99:96:f3:12: 05:6a:f9:50:75:ee:a4:37:4b:90:9f:5d:22:c0:ec: f1:5d:43:42:1f:7b:11:c4:08:9a:29:99:cc:84:70: 77:b7:43:75:52:62:bb:a8:f9:bf:8e:f3:38:b8:bc: 02:92:c9:9d:78:33:da:2e:87:9f:91:51:f9:f1:69: a3:7e:c1:d5:e7:86:65:b5:d0:96:ca:ed:32:fc:03: ef:a7:9e:62:8e:39:7d:96:9a:50:da:d5:b1:bd:ec: b9:fd:33:e2:7d:84:5b:d0:14:e9:9e:39:c6:de:41: dc:79:a9:66:8c:e8:2c:3d:e2:6f:cb:d9:01:98:24: 38:70:32:59:ba:4c:76:bb:9a:78:7d:9e:23:8e:d8: a0:97:40:81:5e:68:73:ca:c4:80:1b:4d:61:86:b5: ef:57:71:0b:9b:3d:50:9a:a3:33:d3:5f:43:31:49: 1f:e0:03:05:1a:d8:9b:82:82:02:12:8c:fe:b1:15: 8f:16:d2:50:a4:92:3d:8b:d3:37:0f:bd:4f:95:6f: 5c:85:53:3e:86:b5:17:3a:59:f9:d3:ad:78:db:d1: 8c:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:33:41:76:69:89:ED:42:96:B1:2A:8C:C0:27:8C:21:3E:D4:25:9C X509v3 Authority Key Identifier: keyid:D6:EE:FF:69:01:1A:D0:1A:1B:17:9A:6D:D7:0D:59:A1:11:6F:51:F3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1u7_aQEa0BobF5pt1w1ZoRFvUfM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/2231d2-cd9a-4cf1-80d0-51b2aa5980be/1/1u7_aQEa0BobF5pt1w1ZoRFvUfM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/2231d2-cd9a-4cf1-80d0-51b2aa5980be/1/1u7_aQEa0BobF5pt1w1ZoRFvUfM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 70:2d:f5:21:a1:83:25:75:15:6c:1b:c6:30:1d:de:a4:d1:4c: 9a:0a:c1:59:20:42:8f:a1:05:99:b1:1d:b5:91:e3:de:b8:b2: 8c:73:41:9b:6d:94:fd:4e:3e:9a:a7:d7:50:84:84:6b:fc:ce: 68:cc:fa:e1:b2:de:39:25:fc:9d:41:84:51:f6:5b:2a:15:5b: b4:46:76:ae:19:33:7e:e5:d4:0f:2c:33:b7:94:90:2f:27:9e: b4:44:b4:33:e8:bd:ad:bb:65:36:15:44:0d:f5:62:17:44:94: 1b:a6:c9:b8:83:8a:b4:6e:4e:77:1e:d4:5d:be:ed:a8:f5:6b: 8f:bc:ab:9f:81:eb:f1:1e:56:0d:8b:79:40:18:59:02:1b:79: 7b:2c:55:3c:18:94:2a:e2:3f:be:d4:2e:ca:78:4e:0e:cb:e8: 29:39:e4:b2:13:25:f1:80:17:86:42:6b:51:dc:99:bb:97:40: cf:17:97:bf:39:93:90:66:85:38:91:36:98:ae:0f:2d:9e:b9: a6:40:24:4e:d0:84:d3:fa:94:29:43:6d:57:f0:48:54:1b:e3: 23:2a:60:13:2f:82:af:d6:92:82:cf:4b:64:2a:98:7c:bd:d1: c0:65:b1:4f:6a:18:5e:2d:f3:82:8f:a8:21:f6:49:a5:69:e0: cb:8e:26:fa -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv1dSndSCKZS4WIhmy3wgv/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ2ZWVmZjY5MDExYWQwMWExYjE3OWE2ZGQ3MGQ1OWExMTE2 ZjUxZjMwHhcNMjYwMTI1MTQwMDU0WhcNMjYwMTI2MTQwMDU0WjAzMTEwLwYDVQQD EygzZTMzNDE3NjY5ODllZDQyOTZiMTJhOGNjMDI3OGMyMTNlZDQyNTljMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkTLsPpJOYWHx8KuLcOCF3qTHhV02 rOOtswJAeDlplsiwC8EhFYqGjJmW8xIFavlQde6kN0uQn10iwOzxXUNCH3sRxAia KZnMhHB3t0N1UmK7qPm/jvM4uLwCksmdeDPaLoefkVH58WmjfsHV54ZltdCWyu0y /APvp55ijjl9lppQ2tWxvey5/TPifYRb0BTpnjnG3kHcealmjOgsPeJvy9kBmCQ4 cDJZukx2u5p4fZ4jjtigl0CBXmhzysSAG01hhrXvV3ELmz1QmqMz019DMUkf4AMF GtibgoICEoz+sRWPFtJQpJI9i9M3D71PlW9chVM+hrUXOln5061429GMhQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFD4zQXZpie1ClrEqjMAnjCE+1CWcMB8GA1UdIwQY MBaAFNbu/2kBGtAaGxeabdcNWaERb1HzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMXU3X2FRRWEwQm9iRjVwdDF3MVpvUkZ2VWZNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOS8yMjMxZDItY2Q5YS00Y2YxLTgwZDAt NTFiMmFhNTk4MGJlLzEvMXU3X2FRRWEwQm9iRjVwdDF3MVpvUkZ2VWZNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hOS8yMjMxZDItY2Q5YS00Y2YxLTgwZDAtNTFiMmFhNTk4MGJl LzEvMXU3X2FRRWEwQm9iRjVwdDF3MVpvUkZ2VWZNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcC31IaGD JXUVbBvGMB3epNFMmgrBWSBCj6EFmbEdtZHj3riyjHNBm22U/U4+mqfXUISEa/zO aMz64bLeOSX8nUGEUfZbKhVbtEZ2rhkzfuXUDywzt5SQLyeetES0M+i9rbtlNhVE DfViF0SUG6bJuIOKtG5Odx7UXb7tqPVrj7yrn4Hr8R5WDYt5QBhZAht5eyxVPBiU KuI/vtQuynhODsvoKTnkshMl8YAXhkJrUdyZu5dAzxeXvzmTkGaFOJE2mK4PLZ65 pkAkTtCE0/qUKUNtV/BIVBvjIypgEy+Cr9aSgs9LZCqYfL3RwGWxT2oYXi3zgo+o IfZJpWngy44m+g== -----END CERTIFICATE-----Generated at Sun Jan 25 22:35:08 2026 by rpki-client