This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/59e8c3-626b-4ece-8e39-df793a940bab/1/HjbeJ5dHJ6oARrPpyNBiRnRUElU.mft File: HjbeJ5dHJ6oARrPpyNBiRnRUElU.mft (raw, json) Hash identifier: zNNDG9dua6WdAPpqI0ngoNLPgNn1nSr8a6+PzPo/VSg= Subject key identifier: 61:D2:FD:E3:24:2A:24:A0:E0:B0:3E:D9:E1:7E:E4:6D:E4:05:46:B0 Authority key identifier: 1E:36:DE:27:97:47:27:AA:00:46:B3:E9:C8:D0:62:46:74:54:12:55 Certificate issuer: /CN=1e36de27974727aa0046b3e9c8d0624674541255 Certificate serial: 019BF3188DC0E16E128A71922C9258571A94 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HjbeJ5dHJ6oARrPpyNBiRnRUElU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/59e8c3-626b-4ece-8e39-df793a940bab/1/HjbeJ5dHJ6oARrPpyNBiRnRUElU.mft Manifest number: 0D93 Signing time: Sun 25 Jan 2026 03:00:31 +0000 Manifest this update: Sun 25 Jan 2026 03:00:31 +0000 Manifest next update: Mon 26 Jan 2026 03:00:31 +0000 Files and hashes: 1: 9LdPykNZeXV9TgPfmM-EGl7Gtyg.roa (hash: A15KaO5jS+sOax5wrVIE6LFbgUntOJ9pEvZQVObAuXI=) 2: HjbeJ5dHJ6oARrPpyNBiRnRUElU.crl (hash: BFef+e96R5sSzEXsQPfcyAlgYzNN30/8z88hU1sdrGk=) 3: KLpxcziAIHIxQSEYpd_o6PvM4vE.roa (hash: itbhxLzSGakvliHpbibpLq6gl91E3V9yH4QUfsh7/Gk=) 4: Sgc_Gnaj8DBJHADUAweAsgC-9Hs.roa (hash: SsfE892wv31doCM1yCrfDrfn/qQfmDFe4kz7AyxvqoI=) 5: TA_UQQnUzcyb4z4VNBXIFoSiKOQ.roa (hash: 5coZuaEZYCG1SDhEG5622pcijd3TmgMAYuwLwdnG3Xk=) 6: ThxZ_zz0qI-5X_9-MC23lXGeW4c.roa (hash: v+wF6wFf27Ypcfgbcy3yS1RY4Bsxs0fkYYHyrIRuiQE=) 7: rT_Kt6pwMc_Vos1dQ4JEbXZXE6Y.roa (hash: MbMjgVirW/O9r5VhnuSLEFmJXnKto2qtS9XCt9qnLmw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/59e8c3-626b-4ece-8e39-df793a940bab/1/HjbeJ5dHJ6oARrPpyNBiRnRUElU.crl rsync://rpki.ripe.net/repository/DEFAULT/c7/59e8c3-626b-4ece-8e39-df793a940bab/1/HjbeJ5dHJ6oARrPpyNBiRnRUElU.mft rsync://rpki.ripe.net/repository/DEFAULT/HjbeJ5dHJ6oARrPpyNBiRnRUElU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 03:00:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f3:18:8d:c0:e1:6e:12:8a:71:92:2c:92:58:57:1a:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1e36de27974727aa0046b3e9c8d0624674541255 Validity Not Before: Jan 25 03:00:31 2026 GMT Not After : Jan 26 03:00:31 2026 GMT Subject: CN=61d2fde3242a24a0e0b03ed9e17ee46de40546b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:ac:e9:f2:89:3b:f0:7e:80:bc:b0:f2:da:2d: b9:0e:fe:0c:f3:80:0e:b7:03:aa:87:14:4e:e7:38: c8:51:d0:68:22:2e:6f:57:e6:22:5a:ea:26:61:b1: 0e:43:5b:ff:ba:6a:d3:b8:83:ea:12:51:8d:10:cd: 58:a4:f2:07:c2:5c:26:c2:4f:1a:7a:19:01:d0:ef: b5:46:b0:42:ce:1f:3d:cb:21:12:3d:1b:51:05:91: 09:11:98:d4:bd:23:62:d4:2e:43:bd:35:6d:34:e4: 53:17:a0:72:0f:ed:3f:a8:82:2e:2b:22:fb:74:ef: 4e:c5:7a:c9:0b:de:fb:96:ce:e8:b3:6e:ec:70:bc: b1:1d:9f:85:2d:0e:45:64:71:22:aa:26:db:f5:d4: e0:85:79:4e:86:09:e2:28:3d:80:5b:62:d4:6c:d7: ae:7d:26:77:84:86:15:4c:42:6a:9f:0f:21:f1:c2: 65:c0:b6:87:87:56:b1:0a:4a:cf:9a:25:ce:42:72: 0d:17:e6:c9:61:f3:94:6e:80:f2:d8:de:79:b9:a9: 53:dc:08:48:1b:96:8a:52:45:e5:d3:fa:9d:41:15: da:74:e8:25:05:9f:13:a4:0f:19:6d:b8:41:7e:ea: d5:a7:92:83:39:51:bc:24:44:50:ee:47:46:90:05: 47:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:D2:FD:E3:24:2A:24:A0:E0:B0:3E:D9:E1:7E:E4:6D:E4:05:46:B0 X509v3 Authority Key Identifier: keyid:1E:36:DE:27:97:47:27:AA:00:46:B3:E9:C8:D0:62:46:74:54:12:55 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HjbeJ5dHJ6oARrPpyNBiRnRUElU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/59e8c3-626b-4ece-8e39-df793a940bab/1/HjbeJ5dHJ6oARrPpyNBiRnRUElU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/59e8c3-626b-4ece-8e39-df793a940bab/1/HjbeJ5dHJ6oARrPpyNBiRnRUElU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 56:e3:d4:9b:d9:59:1e:5e:95:5e:a1:13:aa:d9:e1:5b:bb:93: 78:a3:c1:46:2d:8e:40:0b:34:45:5c:d5:98:99:e1:fe:4f:f3: 22:54:eb:ee:4c:61:0a:57:33:36:70:58:92:d6:80:19:ea:c6: b2:50:c0:ee:22:e4:14:5a:85:86:4e:1f:b2:51:ea:b4:5e:06: 9f:04:3e:39:00:9a:53:ce:36:61:0e:28:24:10:c5:b2:23:bb: 6f:28:e2:1d:1b:3e:a0:14:62:d3:ea:97:16:36:d3:55:52:e3: 89:33:14:43:a2:6e:20:7b:45:88:3d:b1:f3:f1:49:30:b1:c9: 5e:f1:a0:47:e4:c1:f8:6e:96:52:cc:ea:a2:82:b7:28:64:08: 0f:41:1f:e4:d0:1f:7f:d6:f7:da:aa:cc:8d:11:1c:56:a1:6f: 65:05:1c:b2:85:59:d6:03:62:10:ed:e9:78:af:58:48:03:ae: e8:c3:82:be:91:32:ea:43:0a:32:d8:2d:e3:d4:d7:c2:5a:0f: 90:7b:da:22:20:7f:b1:fb:3d:3f:97:30:55:25:e4:a1:25:f7: 7a:82:84:c9:5f:95:aa:c7:f3:56:fa:ea:26:da:1c:cf:65:3f: b6:57:2c:18:4f:1c:2e:0a:6d:c1:3e:32:f6:76:76:ca:98:2b: 72:da:cd:79 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZvzGI3A4W4SinGSLJJYVxqUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFlMzZkZTI3OTc0NzI3YWEwMDQ2YjNlOWM4ZDA2MjQ2NzQ1 NDEyNTUwHhcNMjYwMTI1MDMwMDMxWhcNMjYwMTI2MDMwMDMxWjAzMTEwLwYDVQQD Eyg2MWQyZmRlMzI0MmEyNGEwZTBiMDNlZDllMTdlZTQ2ZGU0MDU0NmIwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArqzp8ok78H6AvLDy2i25Dv4M84AO twOqhxRO5zjIUdBoIi5vV+YiWuomYbEOQ1v/umrTuIPqElGNEM1YpPIHwlwmwk8a ehkB0O+1RrBCzh89yyESPRtRBZEJEZjUvSNi1C5DvTVtNORTF6ByD+0/qIIuKyL7 dO9OxXrJC977ls7os27scLyxHZ+FLQ5FZHEiqibb9dTghXlOhgniKD2AW2LUbNeu fSZ3hIYVTEJqnw8h8cJlwLaHh1axCkrPmiXOQnINF+bJYfOUboDy2N55ualT3AhI G5aKUkXl0/qdQRXadOglBZ8TpA8ZbbhBfurVp5KDOVG8JERQ7kdGkAVHGQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGHS/eMkKiSg4LA+2eF+5G3kBUawMB8GA1UdIwQY MBaAFB423ieXRyeqAEaz6cjQYkZ0VBJVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSGpiZUo1ZEhKNm9BUnJQcHlOQmlSblJVRWxVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy81OWU4YzMtNjI2Yi00ZWNlLThlMzkt ZGY3OTNhOTQwYmFiLzEvSGpiZUo1ZEhKNm9BUnJQcHlOQmlSblJVRWxVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNy81OWU4YzMtNjI2Yi00ZWNlLThlMzktZGY3OTNhOTQwYmFi LzEvSGpiZUo1ZEhKNm9BUnJQcHlOQmlSblJVRWxVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVuPUm9lZ Hl6VXqETqtnhW7uTeKPBRi2OQAs0RVzVmJnh/k/zIlTr7kxhClczNnBYktaAGerG slDA7iLkFFqFhk4fslHqtF4GnwQ+OQCaU842YQ4oJBDFsiO7byjiHRs+oBRi0+qX FjbTVVLjiTMUQ6JuIHtFiD2x8/FJMLHJXvGgR+TB+G6WUszqooK3KGQID0Ef5NAf f9b32qrMjREcVqFvZQUcsoVZ1gNiEO3peK9YSAOu6MOCvpEy6kMKMtgt49TXwloP kHvaIiB/sfs9P5cwVSXkoSX3eoKEyV+VqsfzVvrqJtocz2U/tlcsGE8cLgptwT4y 9nZ2ypgrctrNeQ== -----END CERTIFICATE-----Generated at Sun Jan 25 11:46:48 2026 by rpki-client