This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.mft File: 3Hgh4by_bgdOpIFKqlxj47qBPF8.mft (raw, json) Hash identifier: fRuv2QHxLQoPDQ50F0a3jumHY2t85N/RWdx9TAQKxeA= Subject key identifier: 4A:D3:32:C2:75:CF:46:DC:D4:27:8C:20:97:86:99:0F:2B:A9:01:18 Authority key identifier: DC:78:21:E1:BC:BF:6E:07:4E:A4:81:4A:AA:5C:63:E3:BA:81:3C:5F Certificate issuer: /CN=dc7821e1bcbf6e074ea4814aaa5c63e3ba813c5f Certificate serial: 019BF4D0AC3365A37F2B9C19C35775987C16 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3Hgh4by_bgdOpIFKqlxj47qBPF8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.mft Manifest number: 17FA Signing time: Sun 25 Jan 2026 11:01:14 +0000 Manifest this update: Sun 25 Jan 2026 11:01:14 +0000 Manifest next update: Mon 26 Jan 2026 11:01:14 +0000 Files and hashes: 1: 32lYY6uEr5NQiZ36Yw1PDpEB0LE.roa (hash: nbIrlyDfM/OsIW8q6DxR5+MKnNJS4Cwv/h7ugS3W6kw=) 2: 3Hgh4by_bgdOpIFKqlxj47qBPF8.crl (hash: 3KJheCpBXtOiWmDsRrGMHolc0EfmKcbgW4blRbDznMw=) 3: 4brBRSXd-3J0XI6W1cQMml969rM.roa (hash: HAAIbdurASwhGqOl0EqIaoNlObK5qBtHlNL6sAbPYAw=) 4: CV0Da0hDhTImPAfNEKg1Zmq-t4Y.roa (hash: gRQv5O+XgMBfojo8WrrSJ295oJBia/Hac6oJn0s/JA4=) 5: CcbOPSFowzuVmbQQQVUT4gQZao4.roa (hash: QoVwdK39dtT9IvoLSexiLLdImyTyxwcjHq7QNn6fGOA=) 6: Nmra5MQ90P6ykkpupDiPaVY1kco.roa (hash: iXU9Ga0vhV6ku1r3OaZ+HmJepE5UeaNFpriSH+GfUVo=) 7: YorSmVSKuGvPWA7DA6m1cRcL1FY.roa (hash: qU63ylCGxnEyiZbz76RKuCXngXRAm2RLSoEhfEzs9Wk=) 8: hsVsux8sHzZqQOz9MIXAz_SM6VI.roa (hash: 3Hc4odb8fRJz6qv0eC3Z9gpTtQGDv+DPG+2jWtEDSs8=) 9: vulmYW4p9PU9wnTvn-jVp44qOCM.roa (hash: MXgO5bfy+NsKZlh8zhQJtMRiH5fhuEIemBIGiWuNsdY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.crl rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.mft rsync://rpki.ripe.net/repository/DEFAULT/3Hgh4by_bgdOpIFKqlxj47qBPF8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 11:01:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f4:d0:ac:33:65:a3:7f:2b:9c:19:c3:57:75:98:7c:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dc7821e1bcbf6e074ea4814aaa5c63e3ba813c5f Validity Not Before: Jan 25 11:01:14 2026 GMT Not After : Jan 26 11:01:14 2026 GMT Subject: CN=4ad332c275cf46dcd4278c209786990f2ba90118 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:da:a5:bf:d3:74:31:b3:9e:f6:e3:62:16:c0: 50:7e:6e:0d:bd:7a:aa:c1:5c:c9:c8:3f:23:e6:da: 9b:76:a6:5c:b0:3b:a6:b4:dc:31:2e:be:23:4b:23: 8d:8c:8e:c6:4f:75:5c:98:30:69:2d:79:20:bc:e7: 20:d8:75:26:b2:29:d4:96:d8:36:90:5e:ca:9e:ac: d0:62:bc:7a:d7:4b:71:a2:62:4d:9e:43:40:dd:07: e3:43:dd:78:b2:34:fe:2d:b9:df:8e:05:18:96:47: 28:95:c9:e8:4f:ff:97:ef:3f:b6:7c:cb:59:24:65: f8:f3:9e:66:ad:c3:0b:0a:50:9d:f7:d1:23:59:ee: 91:49:52:6c:85:59:6c:c3:32:c9:23:af:c5:b4:b7: 86:20:01:ad:ce:22:24:ba:36:9b:5c:c1:b4:95:90: fe:e7:3a:dc:8a:1e:a8:98:7e:ec:f5:92:0f:25:06: 5d:d6:51:85:c8:fe:64:b1:7b:29:9b:02:21:82:37: 4d:a8:d1:ff:23:a9:dc:86:35:7a:92:6d:48:60:a3: 9d:de:8d:d2:ea:a8:a2:ec:6e:95:06:87:b1:c0:45: 25:1a:ab:1a:ed:f0:0f:b3:ab:80:1e:fa:7e:dc:96: 0e:39:68:af:68:77:66:52:8f:81:dc:fa:2f:4f:9e: 0a:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:D3:32:C2:75:CF:46:DC:D4:27:8C:20:97:86:99:0F:2B:A9:01:18 X509v3 Authority Key Identifier: keyid:DC:78:21:E1:BC:BF:6E:07:4E:A4:81:4A:AA:5C:63:E3:BA:81:3C:5F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3Hgh4by_bgdOpIFKqlxj47qBPF8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 56:76:99:f0:02:c0:a8:57:8c:81:88:e1:5c:2d:f7:58:82:43: ea:d2:1f:c2:15:98:6e:00:cb:9b:1c:fb:fb:1d:e0:bf:80:aa: 17:9f:11:a1:b8:e5:cc:46:14:dd:59:fc:7d:4f:37:d7:86:59: dc:96:dd:40:5a:0f:e9:29:e5:3b:9f:bd:35:6b:fb:04:ed:ce: 3d:5c:9a:ad:c8:fd:14:83:ad:ff:77:ea:28:c6:c1:39:a9:9d: 0b:9a:43:f1:fe:26:56:8f:d9:55:2e:35:05:bb:41:b7:81:ed: bc:de:48:19:e2:2f:88:8c:29:98:48:21:11:fa:4d:2f:71:a3: 58:a0:2f:5e:51:0d:5e:7a:ca:ea:5f:7c:70:50:4b:7a:fd:b7: 37:96:90:76:0b:b1:80:99:a9:2b:56:d6:8e:c2:90:19:94:f0: 38:49:0f:64:07:07:bd:19:3f:2a:96:50:88:6b:66:9a:6f:9e: d5:32:e3:a5:f7:63:a1:f1:01:ae:9e:ee:08:ca:61:7b:34:39: 55:07:10:fd:0c:26:f9:6e:e6:b1:33:3d:73:12:f1:31:e4:91: bb:33:52:6d:0a:c3:8c:86:2d:dd:32:21:6d:8b:8a:d5:08:b8: d8:9f:5f:2e:2e:8c:a0:5d:f6:b0:5c:d3:53:9a:76:6a:8e:ea: ac:fd:23:df -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv00KwzZaN/K5wZw1d1mHwWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRjNzgyMWUxYmNiZjZlMDc0ZWE0ODE0YWFhNWM2M2UzYmE4 MTNjNWYwHhcNMjYwMTI1MTEwMTE0WhcNMjYwMTI2MTEwMTE0WjAzMTEwLwYDVQQD Eyg0YWQzMzJjMjc1Y2Y0NmRjZDQyNzhjMjA5Nzg2OTkwZjJiYTkwMTE4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAktqlv9N0MbOe9uNiFsBQfm4NvXqq wVzJyD8j5tqbdqZcsDumtNwxLr4jSyONjI7GT3VcmDBpLXkgvOcg2HUmsinUltg2 kF7KnqzQYrx610txomJNnkNA3QfjQ914sjT+LbnfjgUYlkcolcnoT/+X7z+2fMtZ JGX4855mrcMLClCd99EjWe6RSVJshVlswzLJI6/FtLeGIAGtziIkujabXMG0lZD+ 5zrcih6omH7s9ZIPJQZd1lGFyP5ksXspmwIhgjdNqNH/I6nchjV6km1IYKOd3o3S 6qii7G6VBoexwEUlGqsa7fAPs6uAHvp+3JYOOWivaHdmUo+B3PovT54K+QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFErTMsJ1z0bc1CeMIJeGmQ8rqQEYMB8GA1UdIwQY MBaAFNx4IeG8v24HTqSBSqpcY+O6gTxfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM0hnaDRieV9iZ2RPcElGS3FseGo0N3FCUEY4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC85ZGFmZjQtZjE1OC00ODBmLWI0MWYt ZDQ4YjQyZWYxNTliLzEvM0hnaDRieV9iZ2RPcElGS3FseGo0N3FCUEY4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZC85ZGFmZjQtZjE1OC00ODBmLWI0MWYtZDQ4YjQyZWYxNTli LzEvM0hnaDRieV9iZ2RPcElGS3FseGo0N3FCUEY4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVnaZ8ALA qFeMgYjhXC33WIJD6tIfwhWYbgDLmxz7+x3gv4CqF58RobjlzEYU3Vn8fU8314ZZ 3JbdQFoP6SnlO5+9NWv7BO3OPVyarcj9FIOt/3fqKMbBOamdC5pD8f4mVo/ZVS41 BbtBt4HtvN5IGeIviIwpmEghEfpNL3GjWKAvXlENXnrK6l98cFBLev23N5aQdgux gJmpK1bWjsKQGZTwOEkPZAcHvRk/KpZQiGtmmm+e1TLjpfdjofEBrp7uCMphezQ5 VQcQ/Qwm+W7msTM9cxLxMeSRuzNSbQrDjIYt3TIhbYuK1Qi42J9fLi6MoF32sFzT U5p2ao7qrP0j3w== -----END CERTIFICATE-----Generated at Sun Jan 25 21:10:26 2026 by rpki-client