This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.mft File: do_utqkKhqzxGHHk5Xii6n7Cgdk.mft (raw, json) Hash identifier: 19hADgRsQDlK8QldnJ6g/7yi5d0t8Dvgvsu0XvXYGdI= Subject key identifier: DC:1B:82:A1:99:BC:1E:9A:19:D5:6D:DB:A7:5F:50:72:A2:4D:90:02 Authority key identifier: 76:8F:EE:B6:A9:0A:86:AC:F1:18:71:E4:E5:78:A2:EA:7E:C2:81:D9 Certificate issuer: /CN=768feeb6a90a86acf11871e4e578a2ea7ec281d9 Certificate serial: 019BF6F5B0225D3A46AD175C72EDC6FA0FD2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/do_utqkKhqzxGHHk5Xii6n7Cgdk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.mft Manifest number: 02F4 Signing time: Sun 25 Jan 2026 21:00:55 +0000 Manifest this update: Sun 25 Jan 2026 21:00:55 +0000 Manifest next update: Mon 26 Jan 2026 21:00:55 +0000 Files and hashes: 1: W-L9Z-et_hk_ElQE4x3JidtYxJ8.roa (hash: H+ygr+3swIT2aBvGxAFeyCAkH1uxCN9KnvrpdAVtIB8=) 2: do_utqkKhqzxGHHk5Xii6n7Cgdk.crl (hash: mR0mJPTtUjEXggkT5PR2reo7VcBdNY91k8E2uCQklQA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.crl rsync://rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.mft rsync://rpki.ripe.net/repository/DEFAULT/do_utqkKhqzxGHHk5Xii6n7Cgdk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f6:f5:b0:22:5d:3a:46:ad:17:5c:72:ed:c6:fa:0f:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=768feeb6a90a86acf11871e4e578a2ea7ec281d9 Validity Not Before: Jan 25 21:00:55 2026 GMT Not After : Jan 26 21:00:55 2026 GMT Subject: CN=dc1b82a199bc1e9a19d56ddba75f5072a24d9002 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:f6:25:cb:17:66:a2:b0:49:1b:da:b7:9c:80: e5:f5:bb:55:4e:3f:96:e4:6b:91:22:f1:13:1f:fd: 52:38:dc:49:94:70:3d:7d:05:38:d9:98:c7:f6:c5: 4b:b7:7d:e6:d0:b9:59:a9:f5:88:a2:f1:60:55:7d: 38:4e:22:68:b6:72:62:87:59:b6:d1:2a:7b:4d:4f: fd:8b:c3:84:68:f3:b1:70:fe:23:e7:6c:30:7f:0f: c8:a4:bf:d4:bf:63:ae:7b:81:0a:33:a2:c9:9e:43: e4:e4:2e:87:f6:05:fd:b7:2b:b7:ec:29:93:2c:2b: c1:1a:4e:9e:8b:09:0a:ce:d9:50:dd:53:e8:b7:a7: a9:d8:a7:f6:4b:7b:02:3a:49:95:38:a1:b2:11:76: 23:1b:fc:12:da:bc:65:13:d3:bb:8b:1d:39:84:3d: 4b:51:17:53:c0:80:b1:a0:7b:03:be:c5:d7:d7:31: 05:50:46:bf:93:01:c4:d9:17:47:7e:b9:ae:13:87: 73:97:37:a9:41:57:51:54:22:d0:3f:c4:2b:29:9e: 6d:f4:e3:91:d2:88:14:37:17:30:10:d4:d5:0e:c7: 94:68:6c:75:f4:e8:28:ad:8d:33:c1:89:22:d6:6d: 3c:3d:fe:06:6d:ee:27:57:73:4d:72:bd:bd:72:ea: 2f:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:1B:82:A1:99:BC:1E:9A:19:D5:6D:DB:A7:5F:50:72:A2:4D:90:02 X509v3 Authority Key Identifier: keyid:76:8F:EE:B6:A9:0A:86:AC:F1:18:71:E4:E5:78:A2:EA:7E:C2:81:D9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/do_utqkKhqzxGHHk5Xii6n7Cgdk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6f:49:7f:5e:4c:b9:19:0b:48:15:4c:24:6b:16:f2:cf:34:d1: 5b:c2:7c:5f:d7:59:2d:d6:81:b5:d4:3e:af:bf:7a:ec:02:b5: 48:9f:d2:9c:05:b5:ac:1a:6e:de:4c:2a:12:5d:1c:66:21:6b: 9c:14:d3:61:78:b7:44:21:11:c1:fe:fd:dd:3c:ac:ae:69:d5: 26:69:99:88:67:3a:b7:76:bc:71:6f:3d:85:ba:23:5b:69:20: ee:65:68:ec:2d:87:95:c1:71:86:1b:50:65:4a:81:56:59:e4: 73:23:6f:58:7a:2d:31:f9:3a:1a:33:d2:23:33:42:42:a2:b7: f1:e9:e2:1f:11:80:50:f1:e6:aa:8d:ac:ce:21:e7:ad:a2:3a: 08:99:f1:b9:1d:29:b2:28:da:56:8a:d0:60:80:ca:66:f0:3b: c6:31:54:ab:8d:c4:af:cf:2a:ed:31:36:75:af:9a:7d:af:ed: 0e:6d:25:b9:c1:e6:9c:a7:01:d1:93:b3:8b:c7:f0:ae:04:82: ca:a9:01:1b:76:64:22:0f:f5:1d:63:1a:1a:2c:ee:39:d5:63: 5a:94:23:ba:ab:27:9b:6d:32:ab:8c:e4:33:99:3f:76:4e:bf: 22:93:18:5e:bf:1b:7e:b9:e3:26:45:b5:a8:e1:a7:c5:06:76: 2a:60:63:52 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv29bAiXTpGrRdccu3G+g/SMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc2OGZlZWI2YTkwYTg2YWNmMTE4NzFlNGU1NzhhMmVhN2Vj MjgxZDkwHhcNMjYwMTI1MjEwMDU1WhcNMjYwMTI2MjEwMDU1WjAzMTEwLwYDVQQD EyhkYzFiODJhMTk5YmMxZTlhMTlkNTZkZGJhNzVmNTA3MmEyNGQ5MDAyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk/YlyxdmorBJG9q3nIDl9btVTj+W 5GuRIvETH/1SONxJlHA9fQU42ZjH9sVLt33m0LlZqfWIovFgVX04TiJotnJih1m2 0Sp7TU/9i8OEaPOxcP4j52wwfw/IpL/Uv2Oue4EKM6LJnkPk5C6H9gX9tyu37CmT LCvBGk6eiwkKztlQ3VPot6ep2Kf2S3sCOkmVOKGyEXYjG/wS2rxlE9O7ix05hD1L URdTwICxoHsDvsXX1zEFUEa/kwHE2RdHfrmuE4dzlzepQVdRVCLQP8QrKZ5t9OOR 0ogUNxcwENTVDseUaGx19OgorY0zwYki1m08Pf4Gbe4nV3NNcr29cuovaQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNwbgqGZvB6aGdVt26dfUHKiTZACMB8GA1UdIwQY MBaAFHaP7rapCoas8Rhx5OV4oup+woHZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZG9fdXRxa0tocXp4R0hIazVYaWk2bjdDZ2RrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi82NjY2M2EtZWFmMS00YTg5LTgwNGMt MGMxZjRkMzM3ODNlLzEvZG9fdXRxa0tocXp4R0hIazVYaWk2bjdDZ2RrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMi82NjY2M2EtZWFmMS00YTg5LTgwNGMtMGMxZjRkMzM3ODNl LzEvZG9fdXRxa0tocXp4R0hIazVYaWk2bjdDZ2RrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAb0l/Xky5 GQtIFUwkaxbyzzTRW8J8X9dZLdaBtdQ+r7967AK1SJ/SnAW1rBpu3kwqEl0cZiFr nBTTYXi3RCERwf793TysrmnVJmmZiGc6t3a8cW89hbojW2kg7mVo7C2HlcFxhhtQ ZUqBVlnkcyNvWHotMfk6GjPSIzNCQqK38eniHxGAUPHmqo2sziHnraI6CJnxuR0p sijaVorQYIDKZvA7xjFUq43Er88q7TE2da+afa/tDm0lucHmnKcB0ZOzi8fwrgSC yqkBG3ZkIg/1HWMaGizuOdVjWpQjuqsnm20yq4zkM5k/dk6/IpMYXr8bfrnjJkW1 qOGnxQZ2KmBjUg== -----END CERTIFICATE-----Generated at Sun Jan 25 23:55:28 2026 by rpki-client