This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/b067db-9ab1-4b13-9b70-a13237613459/1/hB6IIdAaloi57nryrruVnLvtBys.mft File: hB6IIdAaloi57nryrruVnLvtBys.mft (raw, json) Hash identifier: mIBWS/RwCA9Pjlm5r28Ky7wJ/B+Uo/SUIzC0Ga4UHeI= Subject key identifier: 2A:C2:80:C9:16:8E:32:F1:3F:78:2F:C3:7A:98:FB:19:D9:02:18:B3 Authority key identifier: 84:1E:88:21:D0:1A:96:88:B9:EE:7A:F2:AE:BB:95:9C:BB:ED:07:2B Certificate issuer: /CN=841e8821d01a9688b9ee7af2aebb959cbbed072b Certificate serial: 019BF651C17BF2338243E8525C53447C3FA7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hB6IIdAaloi57nryrruVnLvtBys.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/b067db-9ab1-4b13-9b70-a13237613459/1/hB6IIdAaloi57nryrruVnLvtBys.mft Manifest number: 1D Signing time: Sun 25 Jan 2026 18:01:51 +0000 Manifest this update: Sun 25 Jan 2026 18:01:51 +0000 Manifest next update: Mon 26 Jan 2026 18:01:51 +0000 Files and hashes: 1: eQ8pUqqadp9cp4FYzeNplhCqiz8.roa (hash: RF09/EJZQF5XIgJSe7QHfYgaZkhCRVhxSpLB2BRdPks=) 2: hB6IIdAaloi57nryrruVnLvtBys.crl (hash: BwQudXx6WebeiF6LB75RsgXisN2sP4sMrSGZ/UBjNK0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/b067db-9ab1-4b13-9b70-a13237613459/1/hB6IIdAaloi57nryrruVnLvtBys.crl rsync://rpki.ripe.net/repository/DEFAULT/b4/b067db-9ab1-4b13-9b70-a13237613459/1/hB6IIdAaloi57nryrruVnLvtBys.mft rsync://rpki.ripe.net/repository/DEFAULT/hB6IIdAaloi57nryrruVnLvtBys.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 18:01:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f6:51:c1:7b:f2:33:82:43:e8:52:5c:53:44:7c:3f:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=841e8821d01a9688b9ee7af2aebb959cbbed072b Validity Not Before: Jan 25 18:01:51 2026 GMT Not After : Jan 26 18:01:51 2026 GMT Subject: CN=2ac280c9168e32f13f782fc37a98fb19d90218b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:f1:55:a8:78:c2:6f:4b:66:8f:f8:7e:7a:2e: ce:16:d1:02:6d:52:80:ba:e9:d9:f7:0d:39:e5:f2: 8e:7d:56:d3:ca:47:2d:79:22:39:48:bc:86:04:ed: 56:b4:72:33:78:d8:32:49:9d:c2:b4:b7:63:6e:4f: fa:5b:14:01:29:f3:f1:6a:25:91:a2:db:f0:05:8f: 6f:29:d8:8e:d0:fc:6e:4e:b6:ba:a2:e7:d8:7b:0f: 5f:b7:ad:40:29:d5:df:a3:dd:dc:59:06:35:ff:b6: 6e:27:98:04:1e:4c:32:8c:1d:71:55:da:a2:aa:7f: 2e:24:38:0c:98:33:8d:86:49:5e:cd:70:8b:d1:74: a3:db:d9:05:ca:02:6b:28:b7:33:36:be:35:c5:67: 81:b6:ac:ff:58:78:39:f3:18:45:b7:ec:9c:95:60: f8:f8:86:3b:31:89:87:25:7f:09:47:90:6b:09:b9: 21:b8:fa:6b:fb:fc:41:75:4e:b0:99:e5:81:d6:0d: 36:f4:c3:f0:08:69:6e:c7:34:9c:93:63:fa:4c:38: 86:74:15:b5:ea:73:29:46:ac:2b:bf:3e:f8:67:49: d9:f6:aa:5d:85:7e:e6:c8:33:fe:f9:ff:72:96:f6: dd:da:f8:13:1b:85:6d:05:9c:ac:e4:5b:88:61:5a: 73:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:C2:80:C9:16:8E:32:F1:3F:78:2F:C3:7A:98:FB:19:D9:02:18:B3 X509v3 Authority Key Identifier: keyid:84:1E:88:21:D0:1A:96:88:B9:EE:7A:F2:AE:BB:95:9C:BB:ED:07:2B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hB6IIdAaloi57nryrruVnLvtBys.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/b067db-9ab1-4b13-9b70-a13237613459/1/hB6IIdAaloi57nryrruVnLvtBys.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/b067db-9ab1-4b13-9b70-a13237613459/1/hB6IIdAaloi57nryrruVnLvtBys.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 26:bc:0a:1d:b3:06:39:a0:a8:d6:e5:f0:c4:36:4f:7e:23:de: 2a:82:b7:37:d5:66:a4:e5:0f:64:58:c2:35:4a:8b:fd:09:c6: 2a:4f:42:12:92:c1:cb:13:8a:ef:eb:80:94:9f:39:2d:be:54: e3:a2:14:4d:4c:b4:43:bc:16:f9:bb:c8:37:0f:42:9d:44:99: 5f:1e:62:a3:2d:d2:91:68:6b:f9:ea:86:37:13:9b:02:8f:38: 3a:c9:0e:d0:ec:cb:30:aa:31:a4:35:db:f9:c6:56:03:f4:64: 60:a5:9a:d4:96:5c:02:d4:d3:3d:7b:1c:20:47:73:1a:85:da: e7:1f:be:87:2b:a7:c6:51:83:4e:4f:79:77:06:e4:89:5b:79: 63:fb:ec:72:5f:91:db:0a:94:72:64:0c:8d:0b:01:26:37:c0: 6c:cc:46:60:56:1b:19:b2:56:67:3f:da:16:bb:76:7a:8b:3d: e0:72:ac:8e:95:b6:6e:a1:e0:07:fe:ec:7b:7a:e4:48:8e:02: 46:e1:d0:6d:3f:7d:e7:da:31:26:a9:99:29:ab:87:c9:b3:bf: 40:7a:b0:95:37:f4:30:b1:7e:cd:e0:0f:14:d3:6f:ab:cb:61: 7b:d7:f5:55:59:79:29:98:d0:42:2e:e1:37:ea:98:cb:3b:ac: 94:89:eb:45 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv2UcF78jOCQ+hSXFNEfD+nMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg0MWU4ODIxZDAxYTk2ODhiOWVlN2FmMmFlYmI5NTljYmJl ZDA3MmIwHhcNMjYwMTI1MTgwMTUxWhcNMjYwMTI2MTgwMTUxWjAzMTEwLwYDVQQD EygyYWMyODBjOTE2OGUzMmYxM2Y3ODJmYzM3YTk4ZmIxOWQ5MDIxOGIzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnfFVqHjCb0tmj/h+ei7OFtECbVKA uunZ9w055fKOfVbTykcteSI5SLyGBO1WtHIzeNgySZ3CtLdjbk/6WxQBKfPxaiWR otvwBY9vKdiO0PxuTra6oufYew9ft61AKdXfo93cWQY1/7ZuJ5gEHkwyjB1xVdqi qn8uJDgMmDONhklezXCL0XSj29kFygJrKLczNr41xWeBtqz/WHg58xhFt+yclWD4 +IY7MYmHJX8JR5BrCbkhuPpr+/xBdU6wmeWB1g029MPwCGluxzSck2P6TDiGdBW1 6nMpRqwrvz74Z0nZ9qpdhX7myDP++f9ylvbd2vgTG4VtBZys5FuIYVpz6wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCrCgMkWjjLxP3gvw3qY+xnZAhizMB8GA1UdIwQY MBaAFIQeiCHQGpaIue568q67lZy77QcrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaEI2SUlkQWFsb2k1N25yeXJydVZuTHZ0QnlzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC9iMDY3ZGItOWFiMS00YjEzLTliNzAt YTEzMjM3NjEzNDU5LzEvaEI2SUlkQWFsb2k1N25yeXJydVZuTHZ0QnlzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNC9iMDY3ZGItOWFiMS00YjEzLTliNzAtYTEzMjM3NjEzNDU5 LzEvaEI2SUlkQWFsb2k1N25yeXJydVZuTHZ0QnlzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJrwKHbMG OaCo1uXwxDZPfiPeKoK3N9VmpOUPZFjCNUqL/QnGKk9CEpLByxOK7+uAlJ85Lb5U 46IUTUy0Q7wW+bvINw9CnUSZXx5ioy3SkWhr+eqGNxObAo84OskO0OzLMKoxpDXb +cZWA/RkYKWa1JZcAtTTPXscIEdzGoXa5x++hyunxlGDTk95dwbkiVt5Y/vscl+R 2wqUcmQMjQsBJjfAbMxGYFYbGbJWZz/aFrt2eos94HKsjpW2bqHgB/7se3rkSI4C RuHQbT9959oxJqmZKauHybO/QHqwlTf0MLF+zeAPFNNvq8the9f1VVl5KZjQQi7h N+qYyzuslInrRQ== -----END CERTIFICATE-----Generated at Mon Jan 26 04:22:17 2026 by rpki-client