This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/551847-332d-4e27-b47a-1d591bbd4060/1/KcmwQBb28CGDMHwX32MKAonsW7U.mft File: KcmwQBb28CGDMHwX32MKAonsW7U.mft (raw, json) Hash identifier: I/c4Xo/7gPar4PFqZ4/oS/BF9LK+tcOPWrIINgd9cDs= Subject key identifier: 3E:67:03:BF:44:BB:A8:45:F6:C4:3E:D3:EA:F9:40:51:72:BE:1B:32 Authority key identifier: 29:C9:B0:40:16:F6:F0:21:83:30:7C:17:DF:63:0A:02:89:EC:5B:B5 Certificate issuer: /CN=29c9b04016f6f02183307c17df630a0289ec5bb5 Certificate serial: 019BF5E31172A3183C94ABCF3FA6077AB3BA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KcmwQBb28CGDMHwX32MKAonsW7U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/551847-332d-4e27-b47a-1d591bbd4060/1/KcmwQBb28CGDMHwX32MKAonsW7U.mft Manifest number: 104A Signing time: Sun 25 Jan 2026 16:00:57 +0000 Manifest this update: Sun 25 Jan 2026 16:00:57 +0000 Manifest next update: Mon 26 Jan 2026 16:00:57 +0000 Files and hashes: 1: KcmwQBb28CGDMHwX32MKAonsW7U.crl (hash: /vYSr69jXeyEgcrb5vmUnpoHxv24I1gXqRA+ZR3osmg=) 2: hTiJ6cCS_TiS4eI7qxisMIha6WA.roa (hash: RYMk/98nEg7OxXi5y6LpcIy05kfPWnp4XSK+7SVu8ys=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ac/551847-332d-4e27-b47a-1d591bbd4060/1/KcmwQBb28CGDMHwX32MKAonsW7U.crl rsync://rpki.ripe.net/repository/DEFAULT/ac/551847-332d-4e27-b47a-1d591bbd4060/1/KcmwQBb28CGDMHwX32MKAonsW7U.mft rsync://rpki.ripe.net/repository/DEFAULT/KcmwQBb28CGDMHwX32MKAonsW7U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f5:e3:11:72:a3:18:3c:94:ab:cf:3f:a6:07:7a:b3:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29c9b04016f6f02183307c17df630a0289ec5bb5 Validity Not Before: Jan 25 16:00:57 2026 GMT Not After : Jan 26 16:00:57 2026 GMT Subject: CN=3e6703bf44bba845f6c43ed3eaf9405172be1b32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:a9:40:96:2a:61:df:1d:cd:54:46:42:e4:ff: 2d:f8:22:9f:66:cb:62:2f:64:f4:6a:5b:82:ef:4f: 9c:33:7c:70:f6:b9:af:27:46:81:11:56:aa:6a:9b: b6:90:3f:3a:46:6e:7e:7c:fa:fe:32:d3:f7:4d:6c: 89:ec:11:c8:f1:ab:7d:ee:ba:f9:21:51:66:81:19: e5:55:fb:1b:51:55:e9:0c:bb:62:e7:75:b3:9c:5c: 74:09:54:7d:c3:c8:90:76:33:34:25:65:9a:4b:14: b3:41:05:a9:b2:c7:84:e5:22:8d:04:82:f5:58:f8: 44:1c:42:9b:8d:09:70:87:7b:3c:90:18:a7:46:65: f1:f1:77:65:49:3d:00:84:f6:1f:6d:eb:0e:a0:af: d8:3b:57:e2:20:9b:bc:70:19:62:c2:5a:24:c3:c3: 87:37:7c:30:b6:64:d2:ba:d0:4d:e5:99:74:ec:2f: e7:1d:85:89:0b:75:0a:bb:99:54:1b:cf:e2:05:14: bf:65:72:7c:eb:54:b2:6d:6b:66:25:f5:f3:d6:48: fd:f8:92:6c:d8:ed:ba:48:c9:85:f9:29:0d:f1:9f: f1:4c:bb:b1:3c:db:75:09:d2:18:76:5b:d4:2e:17: a8:62:d3:29:f7:a5:d7:1e:ff:97:f5:2c:ce:85:be: d7:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:67:03:BF:44:BB:A8:45:F6:C4:3E:D3:EA:F9:40:51:72:BE:1B:32 X509v3 Authority Key Identifier: keyid:29:C9:B0:40:16:F6:F0:21:83:30:7C:17:DF:63:0A:02:89:EC:5B:B5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KcmwQBb28CGDMHwX32MKAonsW7U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/551847-332d-4e27-b47a-1d591bbd4060/1/KcmwQBb28CGDMHwX32MKAonsW7U.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/551847-332d-4e27-b47a-1d591bbd4060/1/KcmwQBb28CGDMHwX32MKAonsW7U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6d:da:d2:26:a7:ba:fd:52:61:45:fe:c0:ca:ab:9d:71:4f:fd: 51:6f:00:ba:6f:33:04:1f:15:61:6f:35:c0:19:6c:b4:d5:37: 0d:d2:18:ab:22:6d:cc:b3:2f:0d:42:4f:41:97:24:6c:bf:4b: 35:db:84:6b:80:e7:c6:2e:14:f5:1c:00:9d:e3:90:0b:fc:23: 65:d3:6b:52:5f:b0:22:8d:17:0a:03:25:4b:78:bf:25:34:ec: 05:79:09:b5:e8:6c:3d:12:de:0f:7e:59:ea:22:9a:15:15:b8: b4:83:46:c0:ec:a2:8d:1b:f0:10:e5:db:69:2e:65:5e:99:d2: 01:eb:dc:e6:30:eb:7e:91:da:4e:bc:84:5f:37:6c:56:2e:d4: 83:52:71:7e:22:d4:2d:25:70:35:9b:48:1c:ac:e5:5a:c7:23: de:40:e1:ce:f5:6e:96:79:c3:d3:de:86:89:e4:79:ed:0a:1e: 7a:7a:c4:6f:1b:57:b0:2d:03:ac:3c:fe:1b:53:85:c3:bd:ae: bc:d0:2d:48:6a:1d:ad:c7:ee:d5:87:50:ac:ce:79:da:8b:ff: d3:24:c3:ef:fa:53:d9:a8:00:ae:e4:a5:6a:1d:e1:48:9d:d4: c2:39:ce:92:88:01:53:c3:32:6a:8c:f6:5f:f7:b4:2c:90:50: 73:97:3a:de -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv14xFyoxg8lKvPP6YHerO6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5YzliMDQwMTZmNmYwMjE4MzMwN2MxN2RmNjMwYTAyODll YzViYjUwHhcNMjYwMTI1MTYwMDU3WhcNMjYwMTI2MTYwMDU3WjAzMTEwLwYDVQQD EygzZTY3MDNiZjQ0YmJhODQ1ZjZjNDNlZDNlYWY5NDA1MTcyYmUxYjMyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArKlAliph3x3NVEZC5P8t+CKfZsti L2T0aluC70+cM3xw9rmvJ0aBEVaqapu2kD86Rm5+fPr+MtP3TWyJ7BHI8at97rr5 IVFmgRnlVfsbUVXpDLti53WznFx0CVR9w8iQdjM0JWWaSxSzQQWpsseE5SKNBIL1 WPhEHEKbjQlwh3s8kBinRmXx8XdlST0AhPYfbesOoK/YO1fiIJu8cBliwlokw8OH N3wwtmTSutBN5Zl07C/nHYWJC3UKu5lUG8/iBRS/ZXJ861SybWtmJfXz1kj9+JJs 2O26SMmF+SkN8Z/xTLuxPNt1CdIYdlvULheoYtMp96XXHv+X9SzOhb7XJwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFD5nA79Eu6hF9sQ+0+r5QFFyvhsyMB8GA1UdIwQY MBaAFCnJsEAW9vAhgzB8F99jCgKJ7Fu1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS2Ntd1FCYjI4Q0dETUh3WDMyTUtBb25zVzdVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYy81NTE4NDctMzMyZC00ZTI3LWI0N2Et MWQ1OTFiYmQ0MDYwLzEvS2Ntd1FCYjI4Q0dETUh3WDMyTUtBb25zVzdVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYy81NTE4NDctMzMyZC00ZTI3LWI0N2EtMWQ1OTFiYmQ0MDYw LzEvS2Ntd1FCYjI4Q0dETUh3WDMyTUtBb25zVzdVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbdrSJqe6 /VJhRf7AyqudcU/9UW8Aum8zBB8VYW81wBlstNU3DdIYqyJtzLMvDUJPQZckbL9L NduEa4Dnxi4U9RwAneOQC/wjZdNrUl+wIo0XCgMlS3i/JTTsBXkJtehsPRLeD35Z 6iKaFRW4tINGwOyijRvwEOXbaS5lXpnSAevc5jDrfpHaTryEXzdsVi7Ug1JxfiLU LSVwNZtIHKzlWscj3kDhzvVulnnD096GieR57QoeenrEbxtXsC0DrDz+G1OFw72u vNAtSGodrcfu1YdQrM552ov/0yTD7/pT2agAruSlah3hSJ3UwjnOkogBU8Myaoz2 X/e0LJBQc5c63g== -----END CERTIFICATE-----Generated at Sun Jan 25 22:01:23 2026 by rpki-client