This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/944f2a-f673-42bf-9e3d-edcef7451ef4/1/zUBlln3sCStfyQFS5KlTObodIok.mft File: zUBlln3sCStfyQFS5KlTObodIok.mft (raw, json) Hash identifier: D1FoveJvfXr58iQ3JPmtNBh9H6f7H8lohk5RiU0GQEk= Subject key identifier: 89:16:6F:0C:37:3E:29:13:95:43:E1:11:D4:19:E3:EC:FC:3C:04:7C Authority key identifier: CD:40:65:96:7D:EC:09:2B:5F:C9:01:52:E4:A9:53:39:BA:1D:22:89 Certificate issuer: /CN=cd4065967dec092b5fc90152e4a95339ba1d2289 Certificate serial: 019BF574F5BEE528D06B1E096C16E72D2C15 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zUBlln3sCStfyQFS5KlTObodIok.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/944f2a-f673-42bf-9e3d-edcef7451ef4/1/zUBlln3sCStfyQFS5KlTObodIok.mft Manifest number: 0E3E Signing time: Sun 25 Jan 2026 14:00:41 +0000 Manifest this update: Sun 25 Jan 2026 14:00:41 +0000 Manifest next update: Mon 26 Jan 2026 14:00:41 +0000 Files and hashes: 1: XrmmbPIgnA61rh6z_5Wfj4vJ374.roa (hash: DtOM3AG98xq9adArrqetx0s2cyFgsSbYyCzOOvAoXqc=) 2: zUBlln3sCStfyQFS5KlTObodIok.crl (hash: YX5C45wWij+4LvHjDfbjdEKVhxp3qzc87hn6A6MvmVo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c5/944f2a-f673-42bf-9e3d-edcef7451ef4/1/zUBlln3sCStfyQFS5KlTObodIok.crl rsync://rpki.ripe.net/repository/DEFAULT/c5/944f2a-f673-42bf-9e3d-edcef7451ef4/1/zUBlln3sCStfyQFS5KlTObodIok.mft rsync://rpki.ripe.net/repository/DEFAULT/zUBlln3sCStfyQFS5KlTObodIok.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f5:74:f5:be:e5:28:d0:6b:1e:09:6c:16:e7:2d:2c:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cd4065967dec092b5fc90152e4a95339ba1d2289 Validity Not Before: Jan 25 14:00:41 2026 GMT Not After : Jan 26 14:00:41 2026 GMT Subject: CN=89166f0c373e29139543e111d419e3ecfc3c047c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:b7:dd:51:6a:8c:ce:46:a5:b4:25:38:48:f6: 9e:75:b7:ac:93:28:cc:75:2e:fc:81:75:54:ac:a1: d2:23:b8:b5:65:4e:d5:5c:23:f8:01:c8:1d:3b:cf: c7:99:b0:2b:3c:73:dd:05:15:5d:4a:71:57:8e:0e: be:b4:0b:6e:ff:4e:f6:92:94:a3:46:fd:c7:41:34: 3c:65:a1:40:45:28:dd:88:22:e0:1c:bd:31:77:ad: 3f:13:00:43:b2:80:67:99:02:ab:c3:41:c2:57:51: 79:26:b4:1c:ea:a8:37:23:1c:c4:07:13:b7:9a:73: 6b:8e:fa:8c:0b:c7:5e:fc:08:43:73:e8:45:0f:36: 5b:ea:04:30:49:01:2b:01:4f:fa:86:6f:33:a9:57: ab:f9:6d:c2:65:4e:f3:20:c2:31:38:2e:1c:b7:d0: f0:f9:e9:00:0e:f7:13:9b:a5:45:34:a1:99:01:bc: 39:47:24:c5:52:58:6f:a8:f4:37:5b:6e:d1:3e:a0: 24:e9:a5:c7:64:d9:8a:18:61:be:88:a2:5b:d7:51: 95:bc:77:ef:31:33:af:36:19:27:9c:57:50:ec:68: 52:85:f3:44:cf:c9:24:d7:9d:92:5b:41:37:89:ad: 72:8d:90:97:a4:91:d2:69:f8:50:2f:7b:d0:4b:f4: d6:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:16:6F:0C:37:3E:29:13:95:43:E1:11:D4:19:E3:EC:FC:3C:04:7C X509v3 Authority Key Identifier: keyid:CD:40:65:96:7D:EC:09:2B:5F:C9:01:52:E4:A9:53:39:BA:1D:22:89 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zUBlln3sCStfyQFS5KlTObodIok.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/944f2a-f673-42bf-9e3d-edcef7451ef4/1/zUBlln3sCStfyQFS5KlTObodIok.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/944f2a-f673-42bf-9e3d-edcef7451ef4/1/zUBlln3sCStfyQFS5KlTObodIok.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 01:a4:d4:65:cd:1c:58:6b:2d:d7:b7:3e:12:58:d6:19:6b:15: e0:57:06:bc:bc:0f:68:75:46:db:00:c5:ef:1b:f3:11:68:eb: 50:03:9b:44:8c:8c:7e:be:58:e4:a6:6c:0f:a5:c0:78:8a:35: 0d:e6:e0:76:68:22:f9:2c:94:64:6c:3b:f1:51:ff:55:de:9d: fe:c8:54:bc:71:d9:0c:28:a9:f9:77:50:2d:ef:09:26:ad:92: c9:fb:a5:5a:bb:70:aa:57:37:8c:a5:c9:01:4d:ad:13:3f:b5: 7b:8e:f7:ac:cc:46:bc:9c:bd:a2:b9:af:fb:b9:e5:d3:d3:cb: 69:46:11:f7:24:3d:40:36:27:84:ce:a0:89:30:0a:3a:4a:9a: 14:bf:70:62:53:6b:91:be:bd:5d:9c:3f:5a:0e:91:60:03:29: 93:3a:4a:52:f5:8a:b8:ee:87:16:1b:64:35:4f:f0:0f:3f:91: bc:7c:60:64:d1:94:1d:ea:0c:6d:70:d8:41:49:02:ec:73:3e: a0:fe:92:6a:0e:79:f0:f1:b7:3d:1e:0f:88:fa:ed:72:d9:e8: db:c9:30:ee:21:02:94:17:90:05:86:81:ec:44:45:06:5a:0b: c8:3c:61:e4:d4:0c:50:77:d9:87:76:32:f8:1a:95:c7:32:83: d6:57:87:e5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv1dPW+5SjQax4JbBbnLSwVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNkNDA2NTk2N2RlYzA5MmI1ZmM5MDE1MmU0YTk1MzM5YmEx ZDIyODkwHhcNMjYwMTI1MTQwMDQxWhcNMjYwMTI2MTQwMDQxWjAzMTEwLwYDVQQD Eyg4OTE2NmYwYzM3M2UyOTEzOTU0M2UxMTFkNDE5ZTNlY2ZjM2MwNDdjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnLfdUWqMzkaltCU4SPaedbeskyjM dS78gXVUrKHSI7i1ZU7VXCP4AcgdO8/HmbArPHPdBRVdSnFXjg6+tAtu/072kpSj Rv3HQTQ8ZaFARSjdiCLgHL0xd60/EwBDsoBnmQKrw0HCV1F5JrQc6qg3IxzEBxO3 mnNrjvqMC8de/AhDc+hFDzZb6gQwSQErAU/6hm8zqVer+W3CZU7zIMIxOC4ct9Dw +ekADvcTm6VFNKGZAbw5RyTFUlhvqPQ3W27RPqAk6aXHZNmKGGG+iKJb11GVvHfv MTOvNhknnFdQ7GhShfNEz8kk152SW0E3ia1yjZCXpJHSafhQL3vQS/TWfwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIkWbww3PikTlUPhEdQZ4+z8PAR8MB8GA1UdIwQY MBaAFM1AZZZ97AkrX8kBUuSpUzm6HSKJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvelVCbGxuM3NDU3RmeVFGUzVLbFRPYm9kSW9rLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNS85NDRmMmEtZjY3My00MmJmLTllM2Qt ZWRjZWY3NDUxZWY0LzEvelVCbGxuM3NDU3RmeVFGUzVLbFRPYm9kSW9rLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNS85NDRmMmEtZjY3My00MmJmLTllM2QtZWRjZWY3NDUxZWY0 LzEvelVCbGxuM3NDU3RmeVFGUzVLbFRPYm9kSW9rLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAaTUZc0c WGst17c+EljWGWsV4FcGvLwPaHVG2wDF7xvzEWjrUAObRIyMfr5Y5KZsD6XAeIo1 Debgdmgi+SyUZGw78VH/Vd6d/shUvHHZDCip+XdQLe8JJq2SyfulWrtwqlc3jKXJ AU2tEz+1e473rMxGvJy9ormv+7nl09PLaUYR9yQ9QDYnhM6giTAKOkqaFL9wYlNr kb69XZw/Wg6RYAMpkzpKUvWKuO6HFhtkNU/wDz+RvHxgZNGUHeoMbXDYQUkC7HM+ oP6Sag558PG3PR4PiPrtctno28kw7iEClBeQBYaB7ERFBloLyDxh5NQMUHfZh3Yy +BqVxzKD1leH5Q== -----END CERTIFICATE-----Generated at Sun Jan 25 19:04:00 2026 by rpki-client