This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/do0jVpP2hnxbOBPaHzb-EHvR14I.mft File: do0jVpP2hnxbOBPaHzb-EHvR14I.mft (raw, json) Hash identifier: k0y6xrYL6YBq+L9/JIqxPDZJ1doto0EqnVznW0oVcrE= Subject key identifier: F5:2D:A9:8F:8F:80:39:3B:E7:4B:E6:D9:54:E2:2E:C3:FF:CB:4A:CE Authority key identifier: 76:8D:23:56:93:F6:86:7C:5B:38:13:DA:1F:36:FE:10:7B:D1:D7:82 Certificate issuer: /CN=768d235693f6867c5b3813da1f36fe107bd1d782 Certificate serial: 019BF87698D6BCC70175723451BF6EFC44D2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/do0jVpP2hnxbOBPaHzb-EHvR14I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/do0jVpP2hnxbOBPaHzb-EHvR14I.mft Manifest number: 0EC1 Signing time: Mon 26 Jan 2026 04:01:20 +0000 Manifest this update: Mon 26 Jan 2026 04:01:20 +0000 Manifest next update: Tue 27 Jan 2026 04:01:20 +0000 Files and hashes: 1: KuefoOzdZ9vrXjVoaWqLBNOd8Fc.roa (hash: Tr2+OxM2L2vZYYtrtzp3JmsEgxHYlAlF0KBqV8P0L1o=) 2: do0jVpP2hnxbOBPaHzb-EHvR14I.crl (hash: TJZqOedHVUCTK5Y8+2jJHNKwyQZ4vqxY1sjPS8u29ng=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/do0jVpP2hnxbOBPaHzb-EHvR14I.crl rsync://rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/do0jVpP2hnxbOBPaHzb-EHvR14I.mft rsync://rpki.ripe.net/repository/DEFAULT/do0jVpP2hnxbOBPaHzb-EHvR14I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f8:76:98:d6:bc:c7:01:75:72:34:51:bf:6e:fc:44:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=768d235693f6867c5b3813da1f36fe107bd1d782 Validity Not Before: Jan 26 04:01:20 2026 GMT Not After : Jan 27 04:01:20 2026 GMT Subject: CN=f52da98f8f80393be74be6d954e22ec3ffcb4ace Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:a8:a9:7f:09:50:3a:04:01:27:6a:65:1c:2f: 78:84:49:48:76:49:fe:b5:df:77:ed:14:5c:a1:98: 86:85:b7:eb:1d:61:9b:be:f0:fe:07:74:20:2a:e3: d9:8f:b2:6a:12:3c:31:ef:f1:de:f7:c3:7f:00:5f: 07:29:2c:01:21:19:ae:a2:5b:02:7f:e6:04:f2:ce: 87:4a:65:e4:9c:02:2f:43:66:f4:2b:a3:49:57:11: 69:1d:a4:00:94:c5:e1:eb:b7:97:e0:ae:da:ad:44: 7e:ba:bf:7f:23:f9:da:70:87:65:78:f6:75:85:69: 4e:68:39:0f:6a:a1:3a:51:8c:dd:14:33:11:aa:69: f5:81:6e:c6:eb:13:f6:db:3d:89:1b:71:2d:77:bb: 5b:3e:54:0c:42:54:e0:35:1b:dc:b9:f6:45:a2:91: 8a:31:59:76:a9:12:19:bc:47:46:b3:65:95:59:08: c9:4b:a7:12:a7:54:27:bd:f3:98:51:2f:a8:eb:3c: eb:fd:8d:70:d8:15:b1:c7:c2:6f:5d:06:9d:2d:71: 3f:c4:bd:a6:8f:6d:90:81:2d:10:59:ce:55:c6:d0: ce:ad:87:63:6f:c7:b5:d7:7d:43:9a:79:75:90:a5: 84:aa:d8:25:94:51:68:72:69:18:0d:06:f0:22:67: 44:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:2D:A9:8F:8F:80:39:3B:E7:4B:E6:D9:54:E2:2E:C3:FF:CB:4A:CE X509v3 Authority Key Identifier: keyid:76:8D:23:56:93:F6:86:7C:5B:38:13:DA:1F:36:FE:10:7B:D1:D7:82 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/do0jVpP2hnxbOBPaHzb-EHvR14I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/do0jVpP2hnxbOBPaHzb-EHvR14I.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/do0jVpP2hnxbOBPaHzb-EHvR14I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7f:9b:92:a3:7d:a2:cc:14:91:67:97:dc:ec:8e:4b:c6:b4:48: 37:f5:36:a9:e1:06:95:c8:63:f8:fe:c2:ff:94:c7:8d:52:39: bb:bc:c7:02:b0:35:7c:f6:c6:5a:67:06:24:d5:4d:8c:22:ed: 64:4a:2c:75:d6:18:58:cb:e6:c4:b0:4b:54:d4:7f:52:ea:44: 50:d7:7f:3f:5d:ed:2f:d2:82:78:14:f3:12:88:18:b6:81:94: b7:ec:d7:b9:56:3b:b6:e9:4e:ad:6f:40:4c:ac:f7:64:e3:d7: b8:73:ad:fc:26:3d:73:44:8f:a7:80:e7:43:db:9a:0a:66:55: 53:68:1a:1c:02:1e:97:76:20:bd:19:97:15:dd:85:5f:0d:d7: c3:0e:b4:72:66:fe:9d:3b:6b:fb:1c:6b:49:8f:eb:ed:f3:50: 8b:90:d6:1f:a0:cc:d6:d0:bb:ed:3f:67:ae:52:e2:81:80:5c: e9:a3:53:b1:ef:2e:ac:d1:25:2b:85:d7:ca:d7:e2:ca:da:b4: 53:74:8d:74:04:b1:e2:3d:2b:f6:69:96:eb:31:cf:64:a0:0e: 1a:a4:aa:28:1f:08:8b:d9:0a:dc:5a:4e:8a:0c:c0:51:41:77: 22:84:32:7a:67:86:a7:4f:77:ee:32:75:67:4f:17:c1:27:83: 99:ab:e3:23 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv4dpjWvMcBdXI0Ub9u/ETSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc2OGQyMzU2OTNmNjg2N2M1YjM4MTNkYTFmMzZmZTEwN2Jk MWQ3ODIwHhcNMjYwMTI2MDQwMTIwWhcNMjYwMTI3MDQwMTIwWjAzMTEwLwYDVQQD EyhmNTJkYTk4ZjhmODAzOTNiZTc0YmU2ZDk1NGUyMmVjM2ZmY2I0YWNlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsKipfwlQOgQBJ2plHC94hElIdkn+ td937RRcoZiGhbfrHWGbvvD+B3QgKuPZj7JqEjwx7/He98N/AF8HKSwBIRmuolsC f+YE8s6HSmXknAIvQ2b0K6NJVxFpHaQAlMXh67eX4K7arUR+ur9/I/nacIdlePZ1 hWlOaDkPaqE6UYzdFDMRqmn1gW7G6xP22z2JG3Etd7tbPlQMQlTgNRvcufZFopGK MVl2qRIZvEdGs2WVWQjJS6cSp1QnvfOYUS+o6zzr/Y1w2BWxx8JvXQadLXE/xL2m j22QgS0QWc5VxtDOrYdjb8e1131Dmnl1kKWEqtgllFFocmkYDQbwImdESwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPUtqY+PgDk750vm2VTiLsP/y0rOMB8GA1UdIwQY MBaAFHaNI1aT9oZ8WzgT2h82/hB70deCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZG8walZwUDJobnhiT0JQYUh6Yi1FSHZSMTRJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNS9lMTIwZWYtMTQzMC00NWVhLWI3N2Yt ZTM3NmI5MjQyZWE3LzEvZG8walZwUDJobnhiT0JQYUh6Yi1FSHZSMTRJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNS9lMTIwZWYtMTQzMC00NWVhLWI3N2YtZTM3NmI5MjQyZWE3 LzEvZG8walZwUDJobnhiT0JQYUh6Yi1FSHZSMTRJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAf5uSo32i zBSRZ5fc7I5LxrRIN/U2qeEGlchj+P7C/5THjVI5u7zHArA1fPbGWmcGJNVNjCLt ZEosddYYWMvmxLBLVNR/UupEUNd/P13tL9KCeBTzEogYtoGUt+zXuVY7tulOrW9A TKz3ZOPXuHOt/CY9c0SPp4DnQ9uaCmZVU2gaHAIel3YgvRmXFd2FXw3Xww60cmb+ nTtr+xxrSY/r7fNQi5DWH6DM1tC77T9nrlLigYBc6aNTse8urNElK4XXytfiytq0 U3SNdASx4j0r9mmW6zHPZKAOGqSqKB8Ii9kK3FpOigzAUUF3IoQyemeGp0937jJ1 Z08XwSeDmavjIw== -----END CERTIFICATE-----Generated at Mon Jan 26 07:11:30 2026 by rpki-client