This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/cbfa9b-0291-48e3-805c-43d66a0331ec/1/K8hpV3Lw5k87mhYhczzAJQb3RwI.mft File: K8hpV3Lw5k87mhYhczzAJQb3RwI.mft (raw, json) Hash identifier: qlrfWV686ffO2L8vQK/79wWiLc3IPisz4UIMyLr7vsU= Subject key identifier: F8:D9:CA:AE:EB:15:D3:ED:3C:62:E9:4F:75:5B:1F:4C:93:1C:98:CA Authority key identifier: 2B:C8:69:57:72:F0:E6:4F:3B:9A:16:21:73:3C:C0:25:06:F7:47:02 Certificate issuer: /CN=2bc8695772f0e64f3b9a1621733cc02506f74702 Certificate serial: 019BF8767DF033A660988BED2DE3935BF1AB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K8hpV3Lw5k87mhYhczzAJQb3RwI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/cbfa9b-0291-48e3-805c-43d66a0331ec/1/K8hpV3Lw5k87mhYhczzAJQb3RwI.mft Manifest number: 17FE Signing time: Mon 26 Jan 2026 04:01:13 +0000 Manifest this update: Mon 26 Jan 2026 04:01:13 +0000 Manifest next update: Tue 27 Jan 2026 04:01:13 +0000 Files and hashes: 1: 5CrZJSgU3umnhBpv3SBW8GVEgqE.roa (hash: 2gixcHV7KBq6bvuQpRe8OX0ebav7J2q4kd7P6HGr740=) 2: 66eo3bJdi9RGbEdDXS4tD5cqq_o.roa (hash: 5t8peN4WCQBgYdxTrPyY0DXm3aBeHyQsSo4GmYIKBxg=) 3: K8hpV3Lw5k87mhYhczzAJQb3RwI.crl (hash: 5yjOaflrprE5Cx8tORsGtjCA+Rk0xRj2z7NnIyw/KtA=) 4: K_ZSiUHd1rB1pcqdi19och0DGOM.roa (hash: 8mJ7F1VxOqtPJAA3HEixFXJNyvdHfHViy/fRZXdsxig=) 5: QPcZtk0DXKyMJbNEz2ZuJuMfm00.roa (hash: umOLljeZUfmplY2DajwQdgANFJvFzfTBHi6UK1dXAg0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/cbfa9b-0291-48e3-805c-43d66a0331ec/1/K8hpV3Lw5k87mhYhczzAJQb3RwI.crl rsync://rpki.ripe.net/repository/DEFAULT/a9/cbfa9b-0291-48e3-805c-43d66a0331ec/1/K8hpV3Lw5k87mhYhczzAJQb3RwI.mft rsync://rpki.ripe.net/repository/DEFAULT/K8hpV3Lw5k87mhYhczzAJQb3RwI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f8:76:7d:f0:33:a6:60:98:8b:ed:2d:e3:93:5b:f1:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2bc8695772f0e64f3b9a1621733cc02506f74702 Validity Not Before: Jan 26 04:01:13 2026 GMT Not After : Jan 27 04:01:13 2026 GMT Subject: CN=f8d9caaeeb15d3ed3c62e94f755b1f4c931c98ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:06:e7:39:3d:1d:b4:88:0f:37:ea:8b:27:bf: c3:11:6a:e2:f3:4e:77:3c:18:a3:cd:18:7e:54:d4: 8e:dd:33:d1:79:b1:3b:2e:4b:10:a0:34:05:7b:9d: 1e:4e:4b:4c:37:bb:dd:55:df:1a:36:dc:06:c1:49: 3e:39:7a:c1:96:8e:4f:40:d3:67:ff:bc:0b:8b:c1: 36:fc:c5:44:f4:2a:f9:a3:f9:b4:e3:87:ea:ca:d8: 09:1d:5b:c6:c3:e2:97:3e:1f:91:61:b9:0e:18:b4: 45:0f:01:40:73:b0:1c:f9:3e:1f:6b:59:6a:74:ec: 31:7d:54:01:16:8b:76:35:f5:83:1d:4a:99:49:72: a1:24:0f:35:7b:b9:61:2f:8a:1a:68:73:0b:a7:b2: 7e:28:8f:fb:e6:c5:28:03:7e:a1:9f:d6:b6:09:38: 6b:f4:b2:0a:bb:86:a9:e5:c7:d1:48:6e:e9:8d:e8: ab:01:8b:da:a4:e2:ac:00:27:74:a6:a3:5b:04:ef: e7:a6:38:34:38:20:04:d3:83:db:11:16:f4:44:2f: a5:f5:5e:2b:02:56:7a:f7:6c:e8:f2:c3:ff:51:ef: b7:70:27:82:76:16:1f:3b:71:e9:e4:e7:dc:70:8d: ab:50:4b:01:46:37:e7:5f:57:86:57:a7:b7:e4:24: da:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:D9:CA:AE:EB:15:D3:ED:3C:62:E9:4F:75:5B:1F:4C:93:1C:98:CA X509v3 Authority Key Identifier: keyid:2B:C8:69:57:72:F0:E6:4F:3B:9A:16:21:73:3C:C0:25:06:F7:47:02 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K8hpV3Lw5k87mhYhczzAJQb3RwI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/cbfa9b-0291-48e3-805c-43d66a0331ec/1/K8hpV3Lw5k87mhYhczzAJQb3RwI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/cbfa9b-0291-48e3-805c-43d66a0331ec/1/K8hpV3Lw5k87mhYhczzAJQb3RwI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 01:19:13:19:77:c1:fa:96:e3:d0:68:d9:8f:69:e0:b8:f2:c9: c6:32:68:50:37:77:e0:e9:35:5f:69:e7:4f:95:a0:98:18:93: 3e:2c:63:fa:c8:eb:c1:0f:80:28:d1:ec:7e:45:f1:30:f3:f3: 35:f4:ab:11:24:14:dd:db:f4:11:d7:86:f7:63:ea:6a:d7:d8: 23:4d:13:6e:ec:5c:f9:21:97:30:70:35:ef:c9:3d:e7:cc:b1: 42:11:45:f7:3f:22:6b:e5:0d:05:79:69:a0:a4:e2:7a:0f:c3: 1f:99:83:3c:16:31:fe:91:86:38:d9:e5:3e:58:29:b1:13:72: 3f:d3:92:65:e9:02:27:e3:a6:a5:dd:c2:b2:24:4e:0f:91:ef: f4:bb:05:d3:82:c6:1e:3d:ca:4a:fe:4f:5c:26:33:43:3e:e1: f8:71:03:10:16:47:f0:43:c6:02:0b:11:b1:17:ce:57:cd:04: 06:79:4e:e5:94:83:75:54:87:87:6d:2f:0e:e6:22:2c:47:8d: 06:f0:d5:ad:37:1c:15:0e:21:bc:02:5d:9e:fc:23:61:15:94: d7:17:b0:a8:15:ce:60:e7:f1:f6:1b:cc:74:9e:33:bf:cf:1c: e1:1f:f3:d6:98:06:d7:21:3a:3b:b0:d2:26:20:03:d5:72:c8: 42:68:74:2a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv4dn3wM6ZgmIvtLeOTW/GrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJiYzg2OTU3NzJmMGU2NGYzYjlhMTYyMTczM2NjMDI1MDZm NzQ3MDIwHhcNMjYwMTI2MDQwMTEzWhcNMjYwMTI3MDQwMTEzWjAzMTEwLwYDVQQD EyhmOGQ5Y2FhZWViMTVkM2VkM2M2MmU5NGY3NTViMWY0YzkzMWM5OGNhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3AbnOT0dtIgPN+qLJ7/DEWri8053 PBijzRh+VNSO3TPRebE7LksQoDQFe50eTktMN7vdVd8aNtwGwUk+OXrBlo5PQNNn /7wLi8E2/MVE9Cr5o/m044fqytgJHVvGw+KXPh+RYbkOGLRFDwFAc7Ac+T4fa1lq dOwxfVQBFot2NfWDHUqZSXKhJA81e7lhL4oaaHMLp7J+KI/75sUoA36hn9a2CThr 9LIKu4ap5cfRSG7pjeirAYvapOKsACd0pqNbBO/npjg0OCAE04PbERb0RC+l9V4r AlZ692zo8sP/Ue+3cCeCdhYfO3Hp5OfccI2rUEsBRjfnX1eGV6e35CTa8QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPjZyq7rFdPtPGLpT3VbH0yTHJjKMB8GA1UdIwQY MBaAFCvIaVdy8OZPO5oWIXM8wCUG90cCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSzhocFYzTHc1azg3bWhZaGN6ekFKUWIzUndJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOS9jYmZhOWItMDI5MS00OGUzLTgwNWMt NDNkNjZhMDMzMWVjLzEvSzhocFYzTHc1azg3bWhZaGN6ekFKUWIzUndJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hOS9jYmZhOWItMDI5MS00OGUzLTgwNWMtNDNkNjZhMDMzMWVj LzEvSzhocFYzTHc1azg3bWhZaGN6ekFKUWIzUndJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAARkTGXfB +pbj0GjZj2nguPLJxjJoUDd34Ok1X2nnT5WgmBiTPixj+sjrwQ+AKNHsfkXxMPPz NfSrESQU3dv0EdeG92PqatfYI00Tbuxc+SGXMHA178k958yxQhFF9z8ia+UNBXlp oKTieg/DH5mDPBYx/pGGONnlPlgpsRNyP9OSZekCJ+Ompd3CsiROD5Hv9LsF04LG Hj3KSv5PXCYzQz7h+HEDEBZH8EPGAgsRsRfOV80EBnlO5ZSDdVSHh20vDuYiLEeN BvDVrTccFQ4hvAJdnvwjYRWU1xewqBXOYOfx9hvMdJ4zv88c4R/z1pgG1yE6O7DS JiAD1XLIQmh0Kg== -----END CERTIFICATE-----Generated at Mon Jan 26 07:49:43 2026 by rpki-client