This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/a669b7-0779-459a-9220-4e32c8b8ee36/1/hGbpF0La0bn0x5ayOzfres2FgWE.mft File: hGbpF0La0bn0x5ayOzfres2FgWE.mft (raw, json) Hash identifier: GzjfuRtvBF+8QPc27A3Is8ciB9VkuKfkPP3/SOjqoog= Subject key identifier: 66:F1:3C:74:D3:71:BD:B5:66:EE:EE:DD:6A:8F:BF:65:21:43:8F:53 Authority key identifier: 84:66:E9:17:42:DA:D1:B9:F4:C7:96:B2:3B:37:EB:7A:CD:85:81:61 Certificate issuer: /CN=8466e91742dad1b9f4c796b23b37eb7acd858161 Certificate serial: 019BF6BE6D4E3D0FACF6783DAB2348AB89BD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hGbpF0La0bn0x5ayOzfres2FgWE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/a669b7-0779-459a-9220-4e32c8b8ee36/1/hGbpF0La0bn0x5ayOzfres2FgWE.mft Manifest number: 128A Signing time: Sun 25 Jan 2026 20:00:33 +0000 Manifest this update: Sun 25 Jan 2026 20:00:33 +0000 Manifest next update: Mon 26 Jan 2026 20:00:33 +0000 Files and hashes: 1: V6Mvsnc7Z774Ev5q6h6Mb-ytj-8.roa (hash: /GNFnTbzQDf+YRxBgnXt7mG8KTDdxxNld8mJ/4Y6skk=) 2: hGbpF0La0bn0x5ayOzfres2FgWE.crl (hash: jwl2Buq2VMBm9ktcnaUf2VaRIDphxQfZgc12N2ky874=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/a669b7-0779-459a-9220-4e32c8b8ee36/1/hGbpF0La0bn0x5ayOzfres2FgWE.crl rsync://rpki.ripe.net/repository/DEFAULT/b7/a669b7-0779-459a-9220-4e32c8b8ee36/1/hGbpF0La0bn0x5ayOzfres2FgWE.mft rsync://rpki.ripe.net/repository/DEFAULT/hGbpF0La0bn0x5ayOzfres2FgWE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f6:be:6d:4e:3d:0f:ac:f6:78:3d:ab:23:48:ab:89:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8466e91742dad1b9f4c796b23b37eb7acd858161 Validity Not Before: Jan 25 20:00:33 2026 GMT Not After : Jan 26 20:00:33 2026 GMT Subject: CN=66f13c74d371bdb566eeeedd6a8fbf6521438f53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:65:61:4e:d7:1b:68:28:ef:06:61:b1:03:1f: be:e7:cc:56:85:23:28:43:fc:df:89:50:77:aa:d4: 3c:06:ce:1c:7a:65:86:fc:2b:6b:37:78:e1:d8:0c: 34:b4:77:e2:80:2e:98:f3:c0:40:37:2c:24:b5:ef: e4:26:da:00:ec:95:df:e4:1e:92:c5:ab:2e:3a:dc: a7:97:0f:a0:3b:ed:35:c8:c8:cf:2c:2a:a2:c8:84: 15:49:55:d0:7e:1d:22:7e:1c:0f:ca:5a:23:d5:4a: b6:ef:9b:27:7f:19:31:f1:32:c4:c1:6e:40:49:6a: a3:71:60:91:db:bb:c1:c4:49:28:c9:a8:5c:a7:09: 6b:cb:de:42:2f:4c:66:78:5b:0f:9d:f3:5a:a6:73: 1d:70:e1:b4:bb:a6:03:02:e3:35:96:0b:63:43:f3: ce:04:f4:0d:df:6f:b8:e7:1a:fc:a9:82:b9:01:4e: 70:87:18:6c:cd:be:1a:f8:7d:17:d8:96:f9:18:04: 81:95:98:ad:78:20:4f:a9:de:7e:20:13:b5:45:5c: f0:83:39:c5:0e:80:98:41:2c:06:29:8a:77:14:e7: 82:4c:21:0e:58:dc:f3:09:8f:2d:32:f6:a3:72:cd: 62:18:c0:bb:fe:89:0c:82:dd:ab:ff:05:73:04:71: be:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:F1:3C:74:D3:71:BD:B5:66:EE:EE:DD:6A:8F:BF:65:21:43:8F:53 X509v3 Authority Key Identifier: keyid:84:66:E9:17:42:DA:D1:B9:F4:C7:96:B2:3B:37:EB:7A:CD:85:81:61 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hGbpF0La0bn0x5ayOzfres2FgWE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/a669b7-0779-459a-9220-4e32c8b8ee36/1/hGbpF0La0bn0x5ayOzfres2FgWE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/a669b7-0779-459a-9220-4e32c8b8ee36/1/hGbpF0La0bn0x5ayOzfres2FgWE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 15:b6:ee:9b:6d:b2:e7:33:0e:76:31:0a:6c:16:eb:fd:14:10: 43:2f:5b:e4:27:90:6c:31:15:84:54:ac:71:4e:42:75:6a:f6: f8:9e:73:f4:4b:a4:d6:2a:79:02:0a:7f:8e:9a:27:2a:bf:92: a5:6e:87:78:73:b9:34:06:7c:02:03:3b:86:bc:32:f9:68:76: a8:58:7a:fe:40:9a:88:65:3b:49:4a:3a:95:9c:64:38:db:a0: d3:c3:dc:e9:0e:43:79:02:de:9f:80:53:9f:d7:f5:2b:ca:ec: 09:12:dc:7a:4c:4d:5c:5f:5b:d5:3a:cc:47:50:fb:6e:36:75: 3a:2b:25:b5:94:89:31:f7:38:c5:73:e0:79:26:6e:c1:b0:10: 3e:db:d2:28:62:f0:07:b1:22:38:0f:03:61:6b:22:2c:54:73: cd:35:0e:a3:5a:40:e4:d2:b7:33:ab:d3:f2:b4:71:12:5f:e1: b2:0a:d2:98:28:6f:4b:c5:ae:46:f2:6e:58:62:86:59:88:e5: 18:47:de:37:36:69:c4:1d:36:6c:40:71:a7:da:62:d2:68:3c: a5:17:e5:a9:95:24:40:f3:9f:fb:5a:ab:a5:7d:f0:09:ff:14: ad:48:9b:fb:27:f1:4b:7e:d9:cf:6a:2e:77:23:89:de:13:ce: d2:be:59:a8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv2vm1OPQ+s9ng9qyNIq4m9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg0NjZlOTE3NDJkYWQxYjlmNGM3OTZiMjNiMzdlYjdhY2Q4 NTgxNjEwHhcNMjYwMTI1MjAwMDMzWhcNMjYwMTI2MjAwMDMzWjAzMTEwLwYDVQQD Eyg2NmYxM2M3NGQzNzFiZGI1NjZlZWVlZGQ2YThmYmY2NTIxNDM4ZjUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqmVhTtcbaCjvBmGxAx++58xWhSMo Q/zfiVB3qtQ8Bs4cemWG/CtrN3jh2Aw0tHfigC6Y88BANywkte/kJtoA7JXf5B6S xasuOtynlw+gO+01yMjPLCqiyIQVSVXQfh0ifhwPyloj1Uq275snfxkx8TLEwW5A SWqjcWCR27vBxEkoyahcpwlry95CL0xmeFsPnfNapnMdcOG0u6YDAuM1lgtjQ/PO BPQN32+45xr8qYK5AU5whxhszb4a+H0X2Jb5GASBlZiteCBPqd5+IBO1RVzwgznF DoCYQSwGKYp3FOeCTCEOWNzzCY8tMvajcs1iGMC7/okMgt2r/wVzBHG+7QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGbxPHTTcb21Zu7u3WqPv2UhQ49TMB8GA1UdIwQY MBaAFIRm6RdC2tG59MeWsjs363rNhYFhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaEdicEYwTGEwYm4weDVheU96ZnJlczJGZ1dFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNy9hNjY5YjctMDc3OS00NTlhLTkyMjAt NGUzMmM4YjhlZTM2LzEvaEdicEYwTGEwYm4weDVheU96ZnJlczJGZ1dFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNy9hNjY5YjctMDc3OS00NTlhLTkyMjAtNGUzMmM4YjhlZTM2 LzEvaEdicEYwTGEwYm4weDVheU96ZnJlczJGZ1dFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFbbum22y 5zMOdjEKbBbr/RQQQy9b5CeQbDEVhFSscU5CdWr2+J5z9Euk1ip5Agp/jponKr+S pW6HeHO5NAZ8AgM7hrwy+Wh2qFh6/kCaiGU7SUo6lZxkONug08Pc6Q5DeQLen4BT n9f1K8rsCRLcekxNXF9b1TrMR1D7bjZ1OisltZSJMfc4xXPgeSZuwbAQPtvSKGLw B7EiOA8DYWsiLFRzzTUOo1pA5NK3M6vT8rRxEl/hsgrSmChvS8WuRvJuWGKGWYjl GEfeNzZpxB02bEBxp9pi0mg8pRflqZUkQPOf+1qrpX3wCf8UrUib+yfxS37Zz2ou dyOJ3hPO0r5ZqA== -----END CERTIFICATE-----Generated at Sun Jan 25 22:52:47 2026 by rpki-client