This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.mft File: PfikDGosaZPJ--gd8-p903L5bew.mft (raw, json) Hash identifier: tzIeccmzJNXIkZOdGh4bRu7c8E+Ia2FEHdtmmdVep6c= Subject key identifier: D3:67:5C:0A:FC:D4:15:C9:AB:6C:70:05:8A:A9:2E:5C:D1:15:25:80 Authority key identifier: 3D:F8:A4:0C:6A:2C:69:93:C9:FB:E8:1D:F3:EA:7D:D3:72:F9:6D:EC Certificate issuer: /CN=3df8a40c6a2c6993c9fbe81df3ea7dd372f96dec Certificate serial: 019BF1CF2BA0F70E987DDE8B6EBEB48E9525 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PfikDGosaZPJ--gd8-p903L5bew.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.mft Manifest number: 0BEE Signing time: Sat 24 Jan 2026 21:00:44 +0000 Manifest this update: Sat 24 Jan 2026 21:00:44 +0000 Manifest next update: Sun 25 Jan 2026 21:00:44 +0000 Files and hashes: 1: Ewp2Al5ax1LZmRmmNwpqPtsvCR8.roa (hash: PsSncA5sbwhm+qYpwUvXOsucHxELXyU7nMC4Byz/38I=) 2: NiXEkFa2OyOUnxfMEcQON6yPoNg.roa (hash: dVvuF0RyYBJRRTECbqhrE8YUyCue+Lh92GIKr6FebqU=) 3: PfikDGosaZPJ--gd8-p903L5bew.crl (hash: V1lS4PS0BUr5zsNZSHN+2OABIlZhgBh+DBZWq4ygzP8=) 4: gQD3MU7TBpEiOjF9SqTJkR2Y3Hk.roa (hash: yBwTOvwiLlTbqshsC+5AZzg1Ya/CKAPiEghYIW9dRIk=) 5: q_r4ijQpjXZ8n9KPTw-0C5wgwwQ.roa (hash: zq7FtPgWzADBU+GCudKPhOXhQRXlPBFiAI7EZtoOa+g=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.crl rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.mft rsync://rpki.ripe.net/repository/DEFAULT/PfikDGosaZPJ--gd8-p903L5bew.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 21:00:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f1:cf:2b:a0:f7:0e:98:7d:de:8b:6e:be:b4:8e:95:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3df8a40c6a2c6993c9fbe81df3ea7dd372f96dec Validity Not Before: Jan 24 21:00:44 2026 GMT Not After : Jan 25 21:00:44 2026 GMT Subject: CN=d3675c0afcd415c9ab6c70058aa92e5cd1152580 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:7c:b8:cf:36:93:f1:ec:98:a4:a4:a4:38:59: 9c:c5:47:ba:71:ad:d1:9f:5f:5e:d9:bb:0c:35:7d: c9:5b:09:1e:82:cf:93:9d:f6:c8:9a:f6:e0:c7:76: f4:30:69:9e:f1:8f:be:00:da:9e:7d:cb:c4:a6:c8: 97:b9:ac:2a:54:9d:9b:e0:cc:f1:cb:57:eb:35:81: 16:5e:c3:d8:29:33:35:f0:6f:7b:bc:02:c3:a5:09: 26:04:d0:50:5d:69:a4:a6:db:de:41:0b:4d:4f:41: f0:a4:21:7e:ac:23:6f:5b:c7:34:a3:f7:87:36:e2: 2e:0e:98:10:00:f4:2e:1f:cc:68:28:b0:9d:1f:91: 1b:04:f1:97:b1:6d:69:bc:89:81:7e:0f:d6:fe:99: e2:a1:0a:37:2c:b5:64:8f:7d:13:a5:48:88:d3:7b: f4:05:23:51:45:5d:22:77:eb:7e:f3:7d:2f:26:7b: c1:03:49:05:d3:3e:cf:ba:ab:91:4e:c5:f3:d5:3b: f0:68:e5:3e:12:bc:ea:e3:6c:95:40:6f:c3:54:b1: 2d:c9:2c:85:42:93:59:a4:e6:05:5f:5c:3f:1c:ed: 30:13:ba:82:1c:e7:8f:75:af:34:23:d6:65:ac:8e: cc:3c:1c:ec:33:d1:1d:86:29:ca:de:02:32:84:1a: 1b:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:67:5C:0A:FC:D4:15:C9:AB:6C:70:05:8A:A9:2E:5C:D1:15:25:80 X509v3 Authority Key Identifier: keyid:3D:F8:A4:0C:6A:2C:69:93:C9:FB:E8:1D:F3:EA:7D:D3:72:F9:6D:EC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PfikDGosaZPJ--gd8-p903L5bew.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/3e6687-7a44-40d8-993f-895a5a392438/1/PfikDGosaZPJ--gd8-p903L5bew.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6a:6b:aa:60:9e:9a:4e:0d:57:15:6c:4d:0e:c4:e0:35:8d:1c: c2:8d:90:ab:e7:b7:03:f5:46:e1:4b:9c:fc:b3:7a:31:a2:5e: e0:b6:fd:6d:e7:61:30:9c:1c:31:74:6c:ed:81:7d:fa:50:c0: 66:50:53:e6:89:4f:3b:23:76:5f:cf:8f:25:54:af:71:cb:c4: 0b:28:84:f2:e9:16:9d:a9:99:bd:39:03:89:86:1b:bd:4f:1b: db:11:53:38:9a:d5:82:45:3c:3d:b1:5d:57:f7:9a:8a:d6:e3: ce:97:e8:60:48:b5:e3:88:ef:ea:81:b9:01:44:85:aa:81:cb: c6:5e:70:6b:dc:50:01:7c:13:30:2c:29:09:f2:00:2c:86:58: 1b:33:f8:24:ab:0c:44:72:7d:8a:8c:29:0f:cb:31:b9:dd:f9: 24:87:cf:2a:8a:5c:06:27:15:90:1b:2e:16:db:c1:3c:6d:21: f4:be:52:e4:58:d1:41:12:3f:ac:4b:7a:c7:6c:21:d4:91:6d: 92:00:79:5e:f7:c0:79:82:69:52:da:eb:a2:54:47:fa:e2:e8: dc:90:5e:17:75:2d:5c:f6:bc:34:a5:87:87:78:45:ec:d3:11: f3:f3:4e:22:d6:ff:f9:34:a7:0d:d4:10:52:0a:a7:c1:2f:77: 6f:53:e7:7a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZvxzyug9w6Yfd6Lbr60jpUlMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNkZjhhNDBjNmEyYzY5OTNjOWZiZTgxZGYzZWE3ZGQzNzJm OTZkZWMwHhcNMjYwMTI0MjEwMDQ0WhcNMjYwMTI1MjEwMDQ0WjAzMTEwLwYDVQQD EyhkMzY3NWMwYWZjZDQxNWM5YWI2YzcwMDU4YWE5MmU1Y2QxMTUyNTgwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArHy4zzaT8eyYpKSkOFmcxUe6ca3R n19e2bsMNX3JWwkegs+TnfbImvbgx3b0MGme8Y++ANqefcvEpsiXuawqVJ2b4Mzx y1frNYEWXsPYKTM18G97vALDpQkmBNBQXWmkptveQQtNT0HwpCF+rCNvW8c0o/eH NuIuDpgQAPQuH8xoKLCdH5EbBPGXsW1pvImBfg/W/pnioQo3LLVkj30TpUiI03v0 BSNRRV0id+t+830vJnvBA0kF0z7PuquRTsXz1TvwaOU+Erzq42yVQG/DVLEtySyF QpNZpOYFX1w/HO0wE7qCHOePda80I9ZlrI7MPBzsM9EdhinK3gIyhBobjwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNNnXAr81BXJq2xwBYqpLlzRFSWAMB8GA1UdIwQY MBaAFD34pAxqLGmTyfvoHfPqfdNy+W3sMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUGZpa0RHb3NhWlBKLS1nZDgtcDkwM0w1YmV3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMy8zZTY2ODctN2E0NC00MGQ4LTk5M2Yt ODk1YTVhMzkyNDM4LzEvUGZpa0RHb3NhWlBKLS1nZDgtcDkwM0w1YmV3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMy8zZTY2ODctN2E0NC00MGQ4LTk5M2YtODk1YTVhMzkyNDM4 LzEvUGZpa0RHb3NhWlBKLS1nZDgtcDkwM0w1YmV3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAamuqYJ6a Tg1XFWxNDsTgNY0cwo2Qq+e3A/VG4Uuc/LN6MaJe4Lb9bedhMJwcMXRs7YF9+lDA ZlBT5olPOyN2X8+PJVSvccvECyiE8ukWnamZvTkDiYYbvU8b2xFTOJrVgkU8PbFd V/eaitbjzpfoYEi144jv6oG5AUSFqoHLxl5wa9xQAXwTMCwpCfIALIZYGzP4JKsM RHJ9iowpD8sxud35JIfPKopcBicVkBsuFtvBPG0h9L5S5FjRQRI/rEt6x2wh1JFt kgB5XvfAeYJpUtrrolRH+uLo3JBeF3UtXPa8NKWHh3hF7NMR8/NOItb/+TSnDdQQ UgqnwS93b1Pneg== -----END CERTIFICATE-----Generated at Sun Jan 25 07:37:51 2026 by rpki-client