This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/c9c030-553e-430a-987d-1c057552691e/1/dbzZGxsvmvS3QhSm1njOBxlo4c8.mft File: dbzZGxsvmvS3QhSm1njOBxlo4c8.mft (raw, json) Hash identifier: wnDl1Rj6ERusitH85+eGDB/RQr58pkvyj//5x2gGN8c= Subject key identifier: 37:43:D1:44:04:02:A5:93:E2:C6:00:89:CF:B7:7D:AD:D0:80:62:FC Authority key identifier: 75:BC:D9:1B:1B:2F:9A:F4:B7:42:14:A6:D6:78:CE:07:19:68:E1:CF Certificate issuer: /CN=75bcd91b1b2f9af4b74214a6d678ce071968e1cf Certificate serial: 019BF5E3BFBF84E35F5E7AF202DD56230753 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dbzZGxsvmvS3QhSm1njOBxlo4c8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/c9c030-553e-430a-987d-1c057552691e/1/dbzZGxsvmvS3QhSm1njOBxlo4c8.mft Manifest number: 0A12 Signing time: Sun 25 Jan 2026 16:01:42 +0000 Manifest this update: Sun 25 Jan 2026 16:01:42 +0000 Manifest next update: Mon 26 Jan 2026 16:01:42 +0000 Files and hashes: 1: Vqb24fiotLZOBuA1uv8cf7EHAOs.asa (hash: kL0LJuS+v//eRSQwWEOD6aFsJj9u86Nma+Ehm7jeQWc=) 2: dbzZGxsvmvS3QhSm1njOBxlo4c8.crl (hash: ALrvo2WabvRvODukb86E/DPPzxzVdjrMccAqQmxAFEU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/c9c030-553e-430a-987d-1c057552691e/1/dbzZGxsvmvS3QhSm1njOBxlo4c8.crl rsync://rpki.ripe.net/repository/DEFAULT/ca/c9c030-553e-430a-987d-1c057552691e/1/dbzZGxsvmvS3QhSm1njOBxlo4c8.mft rsync://rpki.ripe.net/repository/DEFAULT/dbzZGxsvmvS3QhSm1njOBxlo4c8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f5:e3:bf:bf:84:e3:5f:5e:7a:f2:02:dd:56:23:07:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75bcd91b1b2f9af4b74214a6d678ce071968e1cf Validity Not Before: Jan 25 16:01:42 2026 GMT Not After : Jan 26 16:01:42 2026 GMT Subject: CN=3743d1440402a593e2c60089cfb77dadd08062fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:98:a3:ab:8d:4f:c1:21:a6:54:3e:16:f7:47: 17:23:32:35:54:4a:20:b2:f1:04:63:fe:ad:d7:76: e2:6f:3b:1e:f5:af:ad:2e:7b:13:37:84:74:8f:68: c0:bf:5a:8e:24:2d:30:c1:47:c5:25:79:1a:fa:45: d6:ef:fc:fa:0c:52:f4:cd:99:c4:43:36:d3:67:44: c8:c4:8d:e5:0a:0d:75:e7:04:a5:85:d6:5e:0b:42: 24:84:5f:79:9f:fc:7a:19:e6:6f:9d:97:f6:b4:b7: bb:d2:e1:3f:54:08:fc:8b:a9:20:5d:83:02:cd:9f: 7c:d7:84:db:8d:27:5e:9b:af:41:09:52:d6:7b:e6: e5:c5:44:3b:13:0b:9f:0f:de:d6:b9:87:03:3f:30: 90:69:dc:92:28:4e:dc:d8:51:23:15:17:16:7e:82: ff:85:73:34:9e:f3:f8:58:3c:d2:f6:f8:a7:73:4a: 26:36:df:b4:42:59:ad:53:40:b2:cd:9e:c9:17:2a: 46:51:ef:5f:7a:d4:c6:c1:fa:d1:d6:cf:b7:df:e0: 75:ec:dc:31:2a:4e:8e:64:b9:4c:63:97:48:b4:a3: f0:85:a6:ec:6b:ec:d9:41:d7:d3:37:d6:d6:6c:95: 35:da:58:02:89:97:da:4f:35:2f:e4:60:21:bd:91: 12:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:43:D1:44:04:02:A5:93:E2:C6:00:89:CF:B7:7D:AD:D0:80:62:FC X509v3 Authority Key Identifier: keyid:75:BC:D9:1B:1B:2F:9A:F4:B7:42:14:A6:D6:78:CE:07:19:68:E1:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dbzZGxsvmvS3QhSm1njOBxlo4c8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/c9c030-553e-430a-987d-1c057552691e/1/dbzZGxsvmvS3QhSm1njOBxlo4c8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/c9c030-553e-430a-987d-1c057552691e/1/dbzZGxsvmvS3QhSm1njOBxlo4c8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 39:d6:dc:d4:84:28:b4:16:3f:c9:29:98:df:00:3d:aa:91:86: 86:3e:fb:83:0f:92:c6:14:71:00:1b:de:27:72:c8:68:15:7f: 97:dd:e4:5f:86:80:f9:b1:23:a0:52:1b:1f:4d:63:17:9b:2b: 82:34:b5:de:5a:ee:59:51:bf:f1:86:9d:ed:35:5c:5e:e2:12: bb:00:d0:b8:ce:6c:d9:5d:3c:ce:73:b4:16:f9:b7:ad:1e:dc: f4:ce:29:31:91:49:b9:7c:a6:ad:ca:da:9f:ce:a4:29:e7:da: 69:cb:e9:ae:6a:4d:eb:42:0b:a7:fb:97:c9:5c:70:5a:86:92: 60:39:f7:77:a4:2c:e3:3f:a2:aa:40:02:f3:21:ba:03:cc:9c: f6:81:98:91:62:ee:cd:a8:07:13:a7:58:2e:88:e2:20:c7:24: 85:3b:d0:de:92:70:d2:30:2a:64:76:93:32:4e:c6:1a:d0:e2: 9f:7c:b4:97:05:b5:5b:60:a3:e9:5b:8c:ee:f6:6a:be:b4:e9: 0a:5b:05:7e:ef:93:d5:d0:0d:97:39:06:96:e8:8c:c5:dc:81: 5c:e7:ac:ad:1c:08:3e:63:fd:45:21:c8:8c:35:de:50:a5:e5: 3b:e7:fc:8a:96:8e:28:6b:f9:f9:6e:c8:6f:cb:a8:4c:85:d0: 98:a4:b3:6e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv147+/hONfXnryAt1WIwdTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc1YmNkOTFiMWIyZjlhZjRiNzQyMTRhNmQ2NzhjZTA3MTk2 OGUxY2YwHhcNMjYwMTI1MTYwMTQyWhcNMjYwMTI2MTYwMTQyWjAzMTEwLwYDVQQD EygzNzQzZDE0NDA0MDJhNTkzZTJjNjAwODljZmI3N2RhZGQwODA2MmZjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvpijq41PwSGmVD4W90cXIzI1VEog svEEY/6t13bibzse9a+tLnsTN4R0j2jAv1qOJC0wwUfFJXka+kXW7/z6DFL0zZnE QzbTZ0TIxI3lCg115wSlhdZeC0IkhF95n/x6GeZvnZf2tLe70uE/VAj8i6kgXYMC zZ9814TbjSdem69BCVLWe+blxUQ7EwufD97WuYcDPzCQadySKE7c2FEjFRcWfoL/ hXM0nvP4WDzS9vinc0omNt+0QlmtU0CyzZ7JFypGUe9fetTGwfrR1s+33+B17Nwx Kk6OZLlMY5dItKPwhabsa+zZQdfTN9bWbJU12lgCiZfaTzUv5GAhvZES6QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDdD0UQEAqWT4sYAic+3fa3QgGL8MB8GA1UdIwQY MBaAFHW82RsbL5r0t0IUptZ4zgcZaOHPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZGJ6Wkd4c3ZtdlMzUWhTbTFuak9CeGxvNGM4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYS9jOWMwMzAtNTUzZS00MzBhLTk4N2Qt MWMwNTc1NTI2OTFlLzEvZGJ6Wkd4c3ZtdlMzUWhTbTFuak9CeGxvNGM4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYS9jOWMwMzAtNTUzZS00MzBhLTk4N2QtMWMwNTc1NTI2OTFl LzEvZGJ6Wkd4c3ZtdlMzUWhTbTFuak9CeGxvNGM4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOdbc1IQo tBY/ySmY3wA9qpGGhj77gw+SxhRxABveJ3LIaBV/l93kX4aA+bEjoFIbH01jF5sr gjS13lruWVG/8Yad7TVcXuISuwDQuM5s2V08znO0Fvm3rR7c9M4pMZFJuXymrcra n86kKefaacvprmpN60ILp/uXyVxwWoaSYDn3d6Qs4z+iqkAC8yG6A8yc9oGYkWLu zagHE6dYLojiIMckhTvQ3pJw0jAqZHaTMk7GGtDin3y0lwW1W2Cj6VuM7vZqvrTp ClsFfu+T1dANlzkGluiMxdyBXOesrRwIPmP9RSHIjDXeUKXlO+f8ipaOKGv5+W7I b8uoTIXQmKSzbg== -----END CERTIFICATE-----Generated at Sun Jan 25 19:15:27 2026 by rpki-client