This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.mft File: hdDnY_k1wXFpTxcgVutEIJ2y4s0.mft (raw, json) Hash identifier: 0ncDosvBv9kYQhorgzmfAMoQ9pIsDPMXx63lu8PBu98= Subject key identifier: 64:AD:AA:A5:85:3A:D7:84:70:D7:C7:35:7B:1B:34:80:63:21:11:7B Authority key identifier: 85:D0:E7:63:F9:35:C1:71:69:4F:17:20:56:EB:44:20:9D:B2:E2:CD Certificate issuer: /CN=85d0e763f935c171694f172056eb44209db2e2cd Certificate serial: 019BF3BE25DB9A757FDC769E78DE70927CDF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hdDnY_k1wXFpTxcgVutEIJ2y4s0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.mft Manifest number: 1408 Signing time: Sun 25 Jan 2026 06:01:23 +0000 Manifest this update: Sun 25 Jan 2026 06:01:23 +0000 Manifest next update: Mon 26 Jan 2026 06:01:23 +0000 Files and hashes: 1: 4xaEdixeinTNAew5f36B5ogFapc.roa (hash: U+lj7Po2vIYbjteMOk724C6A7iSVfdA9w8Qr+wSn2EY=) 2: 6bp5_uY1eTTE0FRpgy0dJ0tGIWA.roa (hash: JQ6e3y/UZad8zx3alMXWmLY2Cs0ywtM7PcyjG1jGvp0=) 3: 8rDvMkxptJnltjzzUCN1e7h2mu0.roa (hash: bN6iyJOU8RYfCqW0mfWStueUrIARdx585ED2RX3ioso=) 4: 9561YDYiFuwA3cK9_Ao81cqPzyw.roa (hash: sI0N1MtQFC1Bs34l2HPoGh51MHvRDzLlzChm4jYV9bI=) 5: IrFs_aYDL98DrBmqXNeImOXYqVs.roa (hash: /du+UzfxF5Oy69bwitaws2QcGuPpQ2q/PzP+2+rlKmc=) 6: Mpb5tIfxbf_t0TleDipa0dPzQfg.roa (hash: dlPOC3LjslO4GRq7Su9TrpsYGXUfWyZVAl7s4ntuJgI=) 7: SnpB0ExR-bCAJLKknHnesUTaAWU.roa (hash: wlr5EY83KcqFkovq8AptI/Jy70VxHPVKk3n5WEh7t3w=) 8: W-auLweCazJVGZa2RWm9KCu-wKE.roa (hash: KDvTseiWMAdzP9ZuSgmWkkWqgGW79SkpbkY25PFZ98s=) 9: ZNVLkE0Hncpo1bsQ8SqkvCmjNMs.roa (hash: ckctwOhfUle+O6fK0mnv5ZMxRNGqbUG5lJdOX3nwnlo=) 10: djAPpFOBLqUtxJOa9UwBPjNac1E.roa (hash: 7Rj31INl1FIcMdN33laOh9K9+J+bHShe/BZUzyt8PUg=) 11: ggV7rBXwprR59jciPQhDDTZxxmQ.roa (hash: I4MtXY7ClGvNcIjMAoHA2mKMcNbnijfTuvNa/n/j6Xw=) 12: hdDnY_k1wXFpTxcgVutEIJ2y4s0.crl (hash: Xf++zWnc4AXES+VH3+x5HKepeOzJSPewYIDJiEwmSDY=) 13: nkFmcbj5SRyrAXjUVz7jAMSoyJk.roa (hash: lYeXLJKim2pWsORoTqRVNykk1XTHGi948eQwJ6tFxj4=) 14: pnn2LDubyB-s2_PbTNDUNt7JA_8.roa (hash: vW3hxl2FPzWH44KmHJKXNpZV557F5Hczl/NZRDVCKlg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.crl rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.mft rsync://rpki.ripe.net/repository/DEFAULT/hdDnY_k1wXFpTxcgVutEIJ2y4s0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 06:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f3:be:25:db:9a:75:7f:dc:76:9e:78:de:70:92:7c:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85d0e763f935c171694f172056eb44209db2e2cd Validity Not Before: Jan 25 06:01:23 2026 GMT Not After : Jan 26 06:01:23 2026 GMT Subject: CN=64adaaa5853ad78470d7c7357b1b34806321117b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:26:9f:00:c6:1a:26:84:e7:f9:ac:9e:6d:6f: 84:10:51:6b:b9:94:b9:ed:5f:a4:59:75:99:dd:a3: 25:09:4d:45:58:0a:a8:cb:4e:59:f9:84:a2:4d:d9: 7b:f8:08:10:22:e4:35:9d:0e:76:10:c0:59:8d:2c: b7:fd:c9:12:28:0a:54:4e:1f:d7:1c:bf:05:d7:42: d1:58:51:23:fb:46:4c:63:9e:26:83:4d:e1:3f:9f: 2a:5f:2d:ba:dd:ea:a9:4f:27:a0:fe:3a:72:7d:bf: a5:85:ca:74:ad:a3:68:94:52:d2:ae:b4:10:a0:c8: 02:2c:6d:2d:5c:77:f7:a2:f5:ca:ce:7f:e1:f8:9d: 1a:f9:ea:1f:7d:39:ef:cf:4b:ea:10:36:84:8b:95: c2:6f:68:92:ef:28:ea:61:56:6b:c5:bf:a9:33:2a: d6:3a:98:f8:61:9f:d0:45:21:3d:c3:b1:b1:dc:8f: 24:56:39:69:4e:99:31:83:af:70:d4:c4:cf:ee:52: 35:4e:0d:0c:be:cb:43:66:af:f1:e6:43:ee:a9:88: 7f:75:45:67:36:54:d8:f9:19:a2:72:a0:76:ad:f0: 3b:ee:7c:6b:0c:1f:ad:bb:6a:de:86:ac:07:3a:58: 3e:1a:9f:76:91:e5:2c:ac:62:49:e0:6c:b4:d7:71: c9:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:AD:AA:A5:85:3A:D7:84:70:D7:C7:35:7B:1B:34:80:63:21:11:7B X509v3 Authority Key Identifier: keyid:85:D0:E7:63:F9:35:C1:71:69:4F:17:20:56:EB:44:20:9D:B2:E2:CD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hdDnY_k1wXFpTxcgVutEIJ2y4s0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 00:aa:bd:e8:76:4e:4f:96:32:68:22:fe:30:11:ef:49:76:7f: 68:35:10:a5:52:74:78:c3:9f:d2:ce:c8:5c:ce:18:21:c6:39: a0:d0:87:73:9d:c1:2f:65:3d:01:85:9a:48:16:52:65:bb:1d: 24:6a:16:59:f5:93:c5:c8:7e:6a:41:4c:54:e3:9d:e0:b4:4c: 5c:d1:a4:6b:63:50:0e:48:d9:c3:fe:75:a4:12:50:ca:5d:28: 3a:ed:fd:57:97:b8:b4:14:96:9f:5c:20:73:24:5d:50:a4:48: 9d:e9:8e:e3:d4:81:e0:7d:88:f1:5e:e1:64:1e:87:b7:34:c8: 22:c0:c5:2e:7a:b4:a4:07:d3:db:85:d2:b1:67:ec:b2:62:a8: 52:f4:2e:43:97:3a:59:f9:14:fa:d4:37:22:9f:39:50:b4:bf: 68:5a:67:72:28:36:e7:3b:c5:e2:df:a9:4f:87:99:cc:e2:2d: 43:1a:e3:7e:b7:bf:5c:96:37:64:e8:04:78:24:e6:72:85:9e: 49:8d:f8:b0:d0:21:47:38:49:ea:b8:b8:0f:5f:26:95:18:3c: b0:4c:51:15:9b:7c:a2:dc:3c:9e:d7:38:74:fe:7f:0e:7e:49: 0e:73:38:35:18:c8:4b:29:b6:bc:e7:2b:a6:a0:01:7c:a7:a0: d4:02:f4:a7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZvzviXbmnV/3HaeeN5wknzfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg1ZDBlNzYzZjkzNWMxNzE2OTRmMTcyMDU2ZWI0NDIwOWRi MmUyY2QwHhcNMjYwMTI1MDYwMTIzWhcNMjYwMTI2MDYwMTIzWjAzMTEwLwYDVQQD Eyg2NGFkYWFhNTg1M2FkNzg0NzBkN2M3MzU3YjFiMzQ4MDYzMjExMTdiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwCafAMYaJoTn+ayebW+EEFFruZS5 7V+kWXWZ3aMlCU1FWAqoy05Z+YSiTdl7+AgQIuQ1nQ52EMBZjSy3/ckSKApUTh/X HL8F10LRWFEj+0ZMY54mg03hP58qXy263eqpTyeg/jpyfb+lhcp0raNolFLSrrQQ oMgCLG0tXHf3ovXKzn/h+J0a+eoffTnvz0vqEDaEi5XCb2iS7yjqYVZrxb+pMyrW Opj4YZ/QRSE9w7Gx3I8kVjlpTpkxg69w1MTP7lI1Tg0MvstDZq/x5kPuqYh/dUVn NlTY+RmicqB2rfA77nxrDB+tu2rehqwHOlg+Gp92keUsrGJJ4Gy013HJDQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGStqqWFOteEcNfHNXsbNIBjIRF7MB8GA1UdIwQY MBaAFIXQ52P5NcFxaU8XIFbrRCCdsuLNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaGREbllfazF3WEZwVHhjZ1Z1dEVJSjJ5NHMwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi83NDY0MTAtMDI2Yi00NWM5LTgxY2Qt ZjEyODM1ZjAyNDdiLzEvaGREbllfazF3WEZwVHhjZ1Z1dEVJSjJ5NHMwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZi83NDY0MTAtMDI2Yi00NWM5LTgxY2QtZjEyODM1ZjAyNDdi LzEvaGREbllfazF3WEZwVHhjZ1Z1dEVJSjJ5NHMwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAKq96HZO T5YyaCL+MBHvSXZ/aDUQpVJ0eMOf0s7IXM4YIcY5oNCHc53BL2U9AYWaSBZSZbsd JGoWWfWTxch+akFMVOOd4LRMXNGka2NQDkjZw/51pBJQyl0oOu39V5e4tBSWn1wg cyRdUKRInemO49SB4H2I8V7hZB6HtzTIIsDFLnq0pAfT24XSsWfssmKoUvQuQ5c6 WfkU+tQ3Ip85ULS/aFpncig25zvF4t+pT4eZzOItQxrjfre/XJY3ZOgEeCTmcoWe SY34sNAhRzhJ6ri4D18mlRg8sExRFZt8otw8ntc4dP5/Dn5JDnM4NRjISym2vOcr pqABfKeg1AL0pw== -----END CERTIFICATE-----Generated at Sun Jan 25 14:51:25 2026 by rpki-client