This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/107fdd-d2a5-450c-b031-25bf25018489/1/rFxTEhWE19himH8m_3vtWuE4FqE.mft File: rFxTEhWE19himH8m_3vtWuE4FqE.mft (raw, json) Hash identifier: YJl8SlMmt/VawX8oJJsgTslC/wHMff9KmLDSbVMu6Xw= Subject key identifier: C2:A0:E5:C9:44:8B:6A:67:6C:4C:17:E3:FB:9B:19:6F:06:8A:E0:2E Authority key identifier: AC:5C:53:12:15:84:D7:D8:62:98:7F:26:FF:7B:ED:5A:E1:38:16:A1 Certificate issuer: /CN=ac5c53121584d7d862987f26ff7bed5ae13816a1 Certificate serial: 019BF499CB68E5BF17F94048C6621B865A44 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rFxTEhWE19himH8m_3vtWuE4FqE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/107fdd-d2a5-450c-b031-25bf25018489/1/rFxTEhWE19himH8m_3vtWuE4FqE.mft Manifest number: 01AD Signing time: Sun 25 Jan 2026 10:01:18 +0000 Manifest this update: Sun 25 Jan 2026 10:01:18 +0000 Manifest next update: Mon 26 Jan 2026 10:01:18 +0000 Files and hashes: 1: Ln3OJ6zDWx7Blw5HCll4po4CH-M.roa (hash: BZd7Kwg87H/bospWBtm/c29GcUHDV3xSrqHEL2bm8Hg=) 2: rFxTEhWE19himH8m_3vtWuE4FqE.crl (hash: Xn18BqsNXAsObQsw3L1gCg8TWkF3FU1WnhJnYxcjlTw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/107fdd-d2a5-450c-b031-25bf25018489/1/rFxTEhWE19himH8m_3vtWuE4FqE.crl rsync://rpki.ripe.net/repository/DEFAULT/b4/107fdd-d2a5-450c-b031-25bf25018489/1/rFxTEhWE19himH8m_3vtWuE4FqE.mft rsync://rpki.ripe.net/repository/DEFAULT/rFxTEhWE19himH8m_3vtWuE4FqE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 10:01:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f4:99:cb:68:e5:bf:17:f9:40:48:c6:62:1b:86:5a:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ac5c53121584d7d862987f26ff7bed5ae13816a1 Validity Not Before: Jan 25 10:01:18 2026 GMT Not After : Jan 26 10:01:18 2026 GMT Subject: CN=c2a0e5c9448b6a676c4c17e3fb9b196f068ae02e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:b7:d3:55:e0:51:c0:60:50:a0:52:a8:19:d6: 92:d4:6d:35:8e:3b:ea:20:eb:e4:e9:bd:68:2f:60: a3:6c:03:59:c5:1c:11:62:00:82:7a:4f:2b:d1:91: 2c:2a:95:bf:63:97:28:48:4f:ed:92:1f:de:26:58: 1d:1d:35:ca:3d:1b:89:4a:af:c8:b7:00:7c:a2:05: ef:58:76:d2:ac:ed:a7:0d:a2:2b:6c:a4:78:82:90: 75:41:b6:41:9c:5d:e1:5d:e8:f5:0c:f3:f6:d7:15: 28:dd:5b:c2:da:82:e2:1b:45:80:8d:8d:ea:36:c7: b5:1d:92:cc:5f:a1:a2:91:a3:71:a3:3c:63:8a:a0: 7b:67:d7:7a:f3:ce:5b:84:21:06:58:a2:f2:dd:f4: 8a:67:e7:f4:ac:0d:b5:5b:3a:82:00:1a:9d:66:f2: d3:7c:d8:11:94:b5:c3:0d:9d:41:f3:82:57:d5:16: 77:06:88:28:ae:00:34:af:c8:de:13:56:8e:8f:6a: 96:62:a9:a6:8f:44:a0:af:31:a3:3e:69:aa:8a:cd: 0f:b4:b5:71:28:f5:fd:6b:ed:e3:0d:dc:38:ee:01: fc:f1:27:19:28:8a:f9:e8:21:94:1d:31:72:fa:76: 2a:69:60:4f:75:44:6a:a0:90:14:44:c0:d3:53:73: 9f:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:A0:E5:C9:44:8B:6A:67:6C:4C:17:E3:FB:9B:19:6F:06:8A:E0:2E X509v3 Authority Key Identifier: keyid:AC:5C:53:12:15:84:D7:D8:62:98:7F:26:FF:7B:ED:5A:E1:38:16:A1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rFxTEhWE19himH8m_3vtWuE4FqE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/107fdd-d2a5-450c-b031-25bf25018489/1/rFxTEhWE19himH8m_3vtWuE4FqE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/107fdd-d2a5-450c-b031-25bf25018489/1/rFxTEhWE19himH8m_3vtWuE4FqE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 26:dd:b0:eb:59:6e:01:5a:90:26:d3:c0:c8:9b:e4:6e:88:65: 20:ba:be:17:ac:ca:a2:43:cd:aa:69:7c:49:88:1f:e8:27:5b: 39:b7:3c:41:d5:e0:bd:e8:72:1a:62:a3:41:a0:ec:1e:e0:08: 29:be:ce:88:37:67:3e:c1:bb:d2:f5:99:ad:22:05:02:e2:f2: d3:2b:e8:c1:e3:4d:ce:8d:45:25:f6:4c:70:7d:4b:78:98:65: ee:ba:b2:b7:85:c0:4c:c7:72:6b:c2:ea:53:8c:3e:69:82:0a: b1:02:f8:6a:69:bd:c3:9e:d2:05:ad:b5:4c:57:2f:f4:d5:8e: ce:d0:fa:c0:7c:1c:38:5c:2c:0f:56:0f:3a:57:d6:a6:eb:3d: cd:c7:81:00:05:bb:72:4d:a6:8f:18:b1:3e:34:98:84:6f:ae: 69:1c:77:67:fd:2e:aa:f7:5f:a9:54:0e:27:04:0c:b3:44:0d: ee:29:76:32:1d:12:77:af:81:6f:ec:ba:3a:08:d4:f1:28:4b: 64:4f:4e:53:70:7d:e8:32:c9:c2:cd:a1:41:30:32:22:95:79: f5:5c:91:c4:3f:62:3a:fb:e2:fc:15:4f:46:18:4d:6c:40:ba: 28:0d:7e:99:5c:de:28:93:e0:a7:6e:c0:66:f6:16:a5:6b:8c: 7e:d7:7b:6d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv0mcto5b8X+UBIxmIbhlpEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFjNWM1MzEyMTU4NGQ3ZDg2Mjk4N2YyNmZmN2JlZDVhZTEz ODE2YTEwHhcNMjYwMTI1MTAwMTE4WhcNMjYwMTI2MTAwMTE4WjAzMTEwLwYDVQQD EyhjMmEwZTVjOTQ0OGI2YTY3NmM0YzE3ZTNmYjliMTk2ZjA2OGFlMDJlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtrfTVeBRwGBQoFKoGdaS1G01jjvq IOvk6b1oL2CjbANZxRwRYgCCek8r0ZEsKpW/Y5coSE/tkh/eJlgdHTXKPRuJSq/I twB8ogXvWHbSrO2nDaIrbKR4gpB1QbZBnF3hXej1DPP21xUo3VvC2oLiG0WAjY3q Nse1HZLMX6GikaNxozxjiqB7Z9d6885bhCEGWKLy3fSKZ+f0rA21WzqCABqdZvLT fNgRlLXDDZ1B84JX1RZ3BogorgA0r8jeE1aOj2qWYqmmj0SgrzGjPmmqis0PtLVx KPX9a+3jDdw47gH88ScZKIr56CGUHTFy+nYqaWBPdURqoJAURMDTU3OfUQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMKg5clEi2pnbEwX4/ubGW8GiuAuMB8GA1UdIwQY MBaAFKxcUxIVhNfYYph/Jv977VrhOBahMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvckZ4VEVoV0UxOWhpbUg4bV8zdnRXdUU0RnFFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC8xMDdmZGQtZDJhNS00NTBjLWIwMzEt MjViZjI1MDE4NDg5LzEvckZ4VEVoV0UxOWhpbUg4bV8zdnRXdUU0RnFFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNC8xMDdmZGQtZDJhNS00NTBjLWIwMzEtMjViZjI1MDE4NDg5 LzEvckZ4VEVoV0UxOWhpbUg4bV8zdnRXdUU0RnFFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJt2w61lu AVqQJtPAyJvkbohlILq+F6zKokPNqml8SYgf6CdbObc8QdXgvehyGmKjQaDsHuAI Kb7OiDdnPsG70vWZrSIFAuLy0yvoweNNzo1FJfZMcH1LeJhl7rqyt4XATMdya8Lq U4w+aYIKsQL4amm9w57SBa21TFcv9NWOztD6wHwcOFwsD1YPOlfWpus9zceBAAW7 ck2mjxixPjSYhG+uaRx3Z/0uqvdfqVQOJwQMs0QN7il2Mh0Sd6+Bb+y6OgjU8ShL ZE9OU3B96DLJws2hQTAyIpV59VyRxD9iOvvi/BVPRhhNbEC6KA1+mVzeKJPgp27A ZvYWpWuMftd7bQ== -----END CERTIFICATE-----Generated at Sun Jan 25 19:15:28 2026 by rpki-client