This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/049ab2-9226-4b40-ab8a-51e4a5eafc8e/1/hZjLxOjf8YUkBKmSddIwpWERBV8.mft File: hZjLxOjf8YUkBKmSddIwpWERBV8.mft (raw, json) Hash identifier: G1GeubjHQHu+FoiQCR0k/rLnd4rvhH8lFV3lqm7qhvI= Subject key identifier: 14:94:BC:E3:C4:92:47:A7:E8:D4:4F:01:01:CF:EC:8B:58:C7:9A:73 Authority key identifier: 85:98:CB:C4:E8:DF:F1:85:24:04:A9:92:75:D2:30:A5:61:11:05:5F Certificate issuer: /CN=8598cbc4e8dff1852404a99275d230a56111055f Certificate serial: 019BF53EF189C2C14115AB3B8203130F84F4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hZjLxOjf8YUkBKmSddIwpWERBV8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/049ab2-9226-4b40-ab8a-51e4a5eafc8e/1/hZjLxOjf8YUkBKmSddIwpWERBV8.mft Manifest number: 0837 Signing time: Sun 25 Jan 2026 13:01:41 +0000 Manifest this update: Sun 25 Jan 2026 13:01:41 +0000 Manifest next update: Mon 26 Jan 2026 13:01:41 +0000 Files and hashes: 1: 6Zls-m6M9cBINWFd4w7uZTmGtY8.roa (hash: G1IdsClkRwxJrpDcDQsqLk4FP+v4Gfd2cicmc4XSPyc=) 2: hZjLxOjf8YUkBKmSddIwpWERBV8.crl (hash: 4QKjG2nc8Ro5bkUWjnWrPuKS4W4X0d+8qVJiFH0IwXA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/049ab2-9226-4b40-ab8a-51e4a5eafc8e/1/hZjLxOjf8YUkBKmSddIwpWERBV8.crl rsync://rpki.ripe.net/repository/DEFAULT/be/049ab2-9226-4b40-ab8a-51e4a5eafc8e/1/hZjLxOjf8YUkBKmSddIwpWERBV8.mft rsync://rpki.ripe.net/repository/DEFAULT/hZjLxOjf8YUkBKmSddIwpWERBV8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:01:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f5:3e:f1:89:c2:c1:41:15:ab:3b:82:03:13:0f:84:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8598cbc4e8dff1852404a99275d230a56111055f Validity Not Before: Jan 25 13:01:41 2026 GMT Not After : Jan 26 13:01:41 2026 GMT Subject: CN=1494bce3c49247a7e8d44f0101cfec8b58c79a73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:c6:e4:d6:a9:a2:84:f6:1b:60:34:31:28:0b: 8d:7b:a2:6d:c0:59:97:dd:2f:01:80:13:64:19:21: d1:8d:cd:cd:ac:89:e8:c0:c3:7e:85:45:11:b1:8f: 96:c1:8e:62:dd:56:e4:be:f2:a7:49:25:e5:27:29: 14:98:5c:a4:62:7f:62:23:dd:29:70:03:17:95:0e: 65:56:2b:a1:5b:92:b6:fe:7a:07:19:64:52:d9:ba: 83:c6:b1:de:27:16:06:e1:57:f9:c7:04:94:b5:39: 55:b7:30:19:4d:2f:19:ca:70:44:c0:8b:62:16:77: ac:c7:b2:d1:af:f2:4d:42:cb:62:a5:73:17:66:d0: 61:c4:34:83:99:f2:4d:b8:75:47:ee:a9:4a:3a:2d: 25:9c:b9:06:51:bb:9e:58:9f:7b:45:ed:39:c3:0a: 0f:b4:c5:a6:2b:a1:26:db:e3:ba:8e:25:7a:db:ce: a1:67:7a:92:7a:42:d0:ec:f0:bd:8c:93:cc:32:18: 76:e9:57:b0:56:5c:b6:72:12:41:69:4a:5c:cf:60: 31:71:a4:a7:86:13:1a:1b:c4:19:5b:36:f7:8e:dd: 21:64:df:04:b5:24:6d:0f:d0:b8:7d:31:b9:bd:d1: fe:3c:90:b9:18:6d:13:50:8d:32:0a:28:44:62:fa: 37:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:94:BC:E3:C4:92:47:A7:E8:D4:4F:01:01:CF:EC:8B:58:C7:9A:73 X509v3 Authority Key Identifier: keyid:85:98:CB:C4:E8:DF:F1:85:24:04:A9:92:75:D2:30:A5:61:11:05:5F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hZjLxOjf8YUkBKmSddIwpWERBV8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/049ab2-9226-4b40-ab8a-51e4a5eafc8e/1/hZjLxOjf8YUkBKmSddIwpWERBV8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/be/049ab2-9226-4b40-ab8a-51e4a5eafc8e/1/hZjLxOjf8YUkBKmSddIwpWERBV8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9e:8b:0a:2c:e7:ad:58:c5:ef:05:48:14:d9:f7:74:ea:0f:d0: 7e:a3:80:45:85:7c:21:24:e9:8d:7a:71:72:84:cf:08:19:56: b0:23:89:ff:a4:7f:bf:b7:61:7d:9b:0a:d4:2c:f3:bb:3b:3d: 5f:e5:3e:a2:db:21:5d:e6:49:86:8d:ba:2a:35:bc:fd:ae:3a: ea:ae:cf:fb:1f:91:7d:81:26:91:9e:f1:f3:8b:ce:9a:32:3d: 53:bd:6d:12:87:ee:bb:06:6b:14:f2:a4:d7:eb:b7:1b:85:a5: da:1e:22:d0:a9:f5:09:ce:7a:a0:55:f8:bb:9a:a4:1c:41:1d: a3:36:00:ea:ee:2e:f0:8a:89:0d:f9:80:42:14:49:d6:a3:24: 70:e4:35:ea:f1:a0:4b:5e:e3:2e:5f:34:b6:e9:90:7c:9c:19: 0d:4c:e5:8e:4f:5f:d3:02:63:8b:11:6c:a2:ee:0f:2e:7b:3b: a4:93:ed:4f:e6:8d:34:82:d4:11:d5:e6:14:bc:04:47:37:e1: 74:ab:0f:9f:e8:41:24:f3:ac:d4:6a:27:75:b3:d1:61:8c:0e: 23:a0:61:bd:21:5f:e1:c8:12:48:80:70:c6:ce:18:f7:86:14: 5a:36:28:ec:62:96:c7:69:74:c9:4f:c8:1f:75:26:6b:5c:0d: 34:77:d5:69 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv1PvGJwsFBFas7ggMTD4T0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg1OThjYmM0ZThkZmYxODUyNDA0YTk5Mjc1ZDIzMGE1NjEx MTA1NWYwHhcNMjYwMTI1MTMwMTQxWhcNMjYwMTI2MTMwMTQxWjAzMTEwLwYDVQQD EygxNDk0YmNlM2M0OTI0N2E3ZThkNDRmMDEwMWNmZWM4YjU4Yzc5YTczMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApsbk1qmihPYbYDQxKAuNe6JtwFmX 3S8BgBNkGSHRjc3NrInowMN+hUURsY+WwY5i3VbkvvKnSSXlJykUmFykYn9iI90p cAMXlQ5lViuhW5K2/noHGWRS2bqDxrHeJxYG4Vf5xwSUtTlVtzAZTS8ZynBEwIti Fnesx7LRr/JNQstipXMXZtBhxDSDmfJNuHVH7qlKOi0lnLkGUbueWJ97Re05wwoP tMWmK6Em2+O6jiV6286hZ3qSekLQ7PC9jJPMMhh26VewVly2chJBaUpcz2AxcaSn hhMaG8QZWzb3jt0hZN8EtSRtD9C4fTG5vdH+PJC5GG0TUI0yCihEYvo3IwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBSUvOPEkken6NRPAQHP7ItYx5pzMB8GA1UdIwQY MBaAFIWYy8To3/GFJASpknXSMKVhEQVfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaFpqTHhPamY4WVVrQkttU2RkSXdwV0VSQlY4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZS8wNDlhYjItOTIyNi00YjQwLWFiOGEt NTFlNGE1ZWFmYzhlLzEvaFpqTHhPamY4WVVrQkttU2RkSXdwV0VSQlY4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZS8wNDlhYjItOTIyNi00YjQwLWFiOGEtNTFlNGE1ZWFmYzhl LzEvaFpqTHhPamY4WVVrQkttU2RkSXdwV0VSQlY4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnosKLOet WMXvBUgU2fd06g/QfqOARYV8ISTpjXpxcoTPCBlWsCOJ/6R/v7dhfZsK1Czzuzs9 X+U+otshXeZJho26KjW8/a466q7P+x+RfYEmkZ7x84vOmjI9U71tEofuuwZrFPKk 1+u3G4Wl2h4i0Kn1Cc56oFX4u5qkHEEdozYA6u4u8IqJDfmAQhRJ1qMkcOQ16vGg S17jLl80tumQfJwZDUzljk9f0wJjixFsou4PLns7pJPtT+aNNILUEdXmFLwERzfh dKsPn+hBJPOs1GondbPRYYwOI6BhvSFf4cgSSIBwxs4Y94YUWjYo7GKWx2l0yU/I H3Uma1wNNHfVaQ== -----END CERTIFICATE-----Generated at Sun Jan 25 22:01:34 2026 by rpki-client