This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/0f8ce7-ca96-435b-8574-ac620da2f87e/1/UFPH2pyP_-pc7ZenmQIA1L7uQXc.mft File: UFPH2pyP_-pc7ZenmQIA1L7uQXc.mft (raw, json) Hash identifier: Xe+ImtKMkiWGM5ATn38y7hL23HI3buzZWUHOdxtB+3w= Subject key identifier: A4:30:5C:BE:D1:DE:11:2E:D3:78:43:AA:7C:3C:89:8B:C9:3D:1A:7F Authority key identifier: 50:53:C7:DA:9C:8F:FF:EA:5C:ED:97:A7:99:02:00:D4:BE:EE:41:77 Certificate issuer: /CN=5053c7da9c8fffea5ced97a7990200d4beee4177 Certificate serial: 019BF72DB96154E54782F3F28633FEC0244E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UFPH2pyP_-pc7ZenmQIA1L7uQXc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/0f8ce7-ca96-435b-8574-ac620da2f87e/1/UFPH2pyP_-pc7ZenmQIA1L7uQXc.mft Manifest number: 0735 Signing time: Sun 25 Jan 2026 22:02:07 +0000 Manifest this update: Sun 25 Jan 2026 22:02:07 +0000 Manifest next update: Mon 26 Jan 2026 22:02:07 +0000 Files and hashes: 1: NRjE2ub-qyO1bTuX03Zvfc6I9B4.roa (hash: T1iZTA7aq3lUr9C6VWAbrTX5NRDe5+H29lpTIjZMGkc=) 2: UFPH2pyP_-pc7ZenmQIA1L7uQXc.crl (hash: IfHCEbBnfQ9qP2nBx1VXQJAJg/Q5I5vPSxzYvw2kVNQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/0f8ce7-ca96-435b-8574-ac620da2f87e/1/UFPH2pyP_-pc7ZenmQIA1L7uQXc.crl rsync://rpki.ripe.net/repository/DEFAULT/c7/0f8ce7-ca96-435b-8574-ac620da2f87e/1/UFPH2pyP_-pc7ZenmQIA1L7uQXc.mft rsync://rpki.ripe.net/repository/DEFAULT/UFPH2pyP_-pc7ZenmQIA1L7uQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f7:2d:b9:61:54:e5:47:82:f3:f2:86:33:fe:c0:24:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5053c7da9c8fffea5ced97a7990200d4beee4177 Validity Not Before: Jan 25 22:02:07 2026 GMT Not After : Jan 26 22:02:07 2026 GMT Subject: CN=a4305cbed1de112ed37843aa7c3c898bc93d1a7f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:00:4f:6a:2f:57:6a:44:b3:5b:49:7c:38:61: f5:2f:8e:21:c8:a0:0a:bd:ee:6d:9c:3c:44:05:9e: 76:38:46:89:4e:97:cf:c5:e3:5e:53:37:55:37:a5: 87:11:dc:c3:a3:85:28:70:c5:f5:2a:a0:09:b8:61: 80:cd:73:f2:f0:45:f5:e1:b2:53:49:5a:f2:87:12: db:55:a8:1f:aa:db:a6:34:75:88:bb:c5:c4:d3:54: b1:35:7e:75:02:f8:8a:c1:6f:b4:a4:f7:54:ca:bf: 1a:79:df:a1:75:77:a5:03:d3:58:2f:8b:cb:48:3f: 1b:3b:e9:40:54:38:e0:6b:ea:69:05:44:10:73:9f: 5e:30:71:01:73:08:43:84:84:fb:c6:e2:1d:aa:6c: a9:f2:18:85:77:f6:0d:68:87:2a:79:d6:c0:2a:70: 03:3a:b0:8f:0c:f3:2c:4d:da:5a:bc:34:73:f7:d7: 9f:59:e4:e3:47:e6:86:55:0c:39:d3:b8:72:27:23: 79:e2:1b:0a:73:03:10:b7:48:94:ce:ca:98:04:b1: b1:2f:55:15:41:84:b2:75:81:9c:b5:ce:c6:2d:0b: 00:09:f8:19:45:0c:d2:db:cf:81:fd:d8:67:7c:e7: 32:7c:f0:82:61:c0:9d:29:d2:93:38:09:fa:52:98: 06:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:30:5C:BE:D1:DE:11:2E:D3:78:43:AA:7C:3C:89:8B:C9:3D:1A:7F X509v3 Authority Key Identifier: keyid:50:53:C7:DA:9C:8F:FF:EA:5C:ED:97:A7:99:02:00:D4:BE:EE:41:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UFPH2pyP_-pc7ZenmQIA1L7uQXc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/0f8ce7-ca96-435b-8574-ac620da2f87e/1/UFPH2pyP_-pc7ZenmQIA1L7uQXc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/0f8ce7-ca96-435b-8574-ac620da2f87e/1/UFPH2pyP_-pc7ZenmQIA1L7uQXc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 94:f4:85:5b:b2:70:b2:4c:55:29:cd:2b:d8:80:be:f1:e6:f2: 9a:9a:ce:b0:fa:7c:39:cb:bb:f7:92:e9:8c:1c:ec:09:ea:d0: f7:49:65:0c:59:20:64:fd:dd:bc:02:25:cd:a3:a5:ac:bc:14: 5a:56:56:f7:ab:ae:78:60:d0:2a:d3:45:75:e7:20:9d:54:5b: 32:19:65:16:65:31:7f:94:37:ac:e1:1f:ff:f6:6e:56:c2:ed: fb:bd:9d:43:78:54:c9:47:9d:dd:df:13:9b:e1:05:f6:6a:aa: b0:a0:bb:9d:24:34:0b:a2:0e:75:6a:5f:fb:0e:5f:34:a0:1f: af:30:53:aa:6a:1e:27:63:cb:0b:34:42:5c:61:21:85:cb:4a: 84:6e:ab:8e:34:d5:05:f8:90:a3:a9:bf:03:3d:c3:0e:02:21: 72:11:e0:8f:8e:4f:1a:2d:af:93:dc:ed:31:9f:9e:54:27:99: 54:31:c8:92:79:33:13:21:cd:4a:dd:bf:b6:a8:b5:cd:84:9a: 2b:f2:6c:c1:3f:b3:c5:0e:aa:11:76:06:ea:76:9b:b4:a3:c7: 8c:cf:76:f4:ca:a8:52:53:d0:1f:67:a6:b0:a2:ef:48:bf:19: bb:bc:70:9c:55:4f:ae:80:cd:1c:e0:88:4b:31:c1:a5:a9:8e: 0d:c9:e5:60 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv3LblhVOVHgvPyhjP+wCROMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUwNTNjN2RhOWM4ZmZmZWE1Y2VkOTdhNzk5MDIwMGQ0YmVl ZTQxNzcwHhcNMjYwMTI1MjIwMjA3WhcNMjYwMTI2MjIwMjA3WjAzMTEwLwYDVQQD EyhhNDMwNWNiZWQxZGUxMTJlZDM3ODQzYWE3YzNjODk4YmM5M2QxYTdmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0ABPai9XakSzW0l8OGH1L44hyKAK ve5tnDxEBZ52OEaJTpfPxeNeUzdVN6WHEdzDo4UocMX1KqAJuGGAzXPy8EX14bJT SVryhxLbVagfqtumNHWIu8XE01SxNX51AviKwW+0pPdUyr8aed+hdXelA9NYL4vL SD8bO+lAVDjga+ppBUQQc59eMHEBcwhDhIT7xuIdqmyp8hiFd/YNaIcqedbAKnAD OrCPDPMsTdpavDRz99efWeTjR+aGVQw507hyJyN54hsKcwMQt0iUzsqYBLGxL1UV QYSydYGctc7GLQsACfgZRQzS28+B/dhnfOcyfPCCYcCdKdKTOAn6UpgG+QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKQwXL7R3hEu03hDqnw8iYvJPRp/MB8GA1UdIwQY MBaAFFBTx9qcj//qXO2Xp5kCANS+7kF3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVUZQSDJweVBfLXBjN1plbm1RSUExTDd1UVhjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy8wZjhjZTctY2E5Ni00MzViLTg1NzQt YWM2MjBkYTJmODdlLzEvVUZQSDJweVBfLXBjN1plbm1RSUExTDd1UVhjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNy8wZjhjZTctY2E5Ni00MzViLTg1NzQtYWM2MjBkYTJmODdl LzEvVUZQSDJweVBfLXBjN1plbm1RSUExTDd1UVhjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlPSFW7Jw skxVKc0r2IC+8ebymprOsPp8Ocu795LpjBzsCerQ90llDFkgZP3dvAIlzaOlrLwU WlZW96uueGDQKtNFdecgnVRbMhllFmUxf5Q3rOEf//ZuVsLt+72dQ3hUyUed3d8T m+EF9mqqsKC7nSQ0C6IOdWpf+w5fNKAfrzBTqmoeJ2PLCzRCXGEhhctKhG6rjjTV BfiQo6m/Az3DDgIhchHgj45PGi2vk9ztMZ+eVCeZVDHIknkzEyHNSt2/tqi1zYSa K/JswT+zxQ6qEXYG6nabtKPHjM929MqoUlPQH2emsKLvSL8Zu7xwnFVProDNHOCI SzHBpamODcnlYA== -----END CERTIFICATE-----Generated at Mon Jan 26 02:04:02 2026 by rpki-client