This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/8e0efd-e5de-4df5-a551-4cd3e73216f1/1/7sMTGXauon0XHGwmepjT84KmGio.mft File: 7sMTGXauon0XHGwmepjT84KmGio.mft (raw, json) Hash identifier: GvK8aFiLjdk45eq4aI8n1AJl1hjwes+JgtDCM3xujGg= Subject key identifier: D6:7F:9F:96:01:6C:EA:6D:FE:AF:8F:9B:03:7E:CE:F2:9B:C5:E6:61 Authority key identifier: EE:C3:13:19:76:AE:A2:7D:17:1C:6C:26:7A:98:D3:F3:82:A6:1A:2A Certificate issuer: /CN=eec3131976aea27d171c6c267a98d3f382a61a2a Certificate serial: 019BF72CC53754C3CCAF2B6348CAA5F3D38F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7sMTGXauon0XHGwmepjT84KmGio.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/8e0efd-e5de-4df5-a551-4cd3e73216f1/1/7sMTGXauon0XHGwmepjT84KmGio.mft Manifest number: 11E0 Signing time: Sun 25 Jan 2026 22:01:04 +0000 Manifest this update: Sun 25 Jan 2026 22:01:04 +0000 Manifest next update: Mon 26 Jan 2026 22:01:04 +0000 Files and hashes: 1: 7sMTGXauon0XHGwmepjT84KmGio.crl (hash: DmJ1HzqK5yBAOL66iqyfpl0h5k8wxNj/TC83Ypb82uM=) 2: L_bdGxJHykWkh6lnI23znPb9ZRc.roa (hash: ZEX+GgljqjjHrDsG1Iee4BuX7n/kzIjwqN8LRfjYRoY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/8e0efd-e5de-4df5-a551-4cd3e73216f1/1/7sMTGXauon0XHGwmepjT84KmGio.crl rsync://rpki.ripe.net/repository/DEFAULT/cd/8e0efd-e5de-4df5-a551-4cd3e73216f1/1/7sMTGXauon0XHGwmepjT84KmGio.mft rsync://rpki.ripe.net/repository/DEFAULT/7sMTGXauon0XHGwmepjT84KmGio.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f7:2c:c5:37:54:c3:cc:af:2b:63:48:ca:a5:f3:d3:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=eec3131976aea27d171c6c267a98d3f382a61a2a Validity Not Before: Jan 25 22:01:04 2026 GMT Not After : Jan 26 22:01:04 2026 GMT Subject: CN=d67f9f96016cea6dfeaf8f9b037ecef29bc5e661 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:81:74:45:5c:b6:bc:a5:2e:f3:07:0d:8d:77:de: 23:01:fa:70:91:46:d8:09:72:f5:52:87:82:41:1f: 21:3d:fc:de:f4:58:dd:08:89:3c:61:1b:7a:24:5f: 9c:9c:2e:c8:ad:50:3e:9f:e4:1e:96:44:10:d9:c3: 37:92:91:86:60:2e:01:02:ac:76:be:19:55:0c:4c: 2b:fd:84:92:28:0d:7d:6e:69:8a:bf:fa:80:0c:29: 66:f0:44:dd:e0:21:7b:ef:a6:a6:0c:fa:b9:ff:8a: 16:fc:74:57:35:98:de:85:17:00:7f:8b:db:68:91: 2b:9b:56:44:d7:2e:01:71:cb:2f:80:41:7b:ec:fc: 7d:7c:97:6f:90:19:12:db:78:0c:84:d6:71:70:79: a1:a2:75:ce:d8:5d:74:1a:f8:03:7e:e5:7f:68:cd: a2:e1:e7:0d:dd:b8:4e:07:ab:3f:92:b2:07:7f:a7: d3:16:eb:4f:c9:8a:17:56:d6:b1:d0:12:33:1a:02: e5:15:e7:22:bc:aa:9f:05:5f:e3:ab:ef:28:8c:fd: 98:c0:76:ef:0f:fd:67:69:ce:7e:65:d2:f9:cb:ad: eb:d2:4a:58:6f:42:63:cf:91:a6:fc:cc:db:b5:f5: 97:a9:ca:a4:16:80:c0:ee:a4:41:de:b3:45:36:81: 14:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:7F:9F:96:01:6C:EA:6D:FE:AF:8F:9B:03:7E:CE:F2:9B:C5:E6:61 X509v3 Authority Key Identifier: keyid:EE:C3:13:19:76:AE:A2:7D:17:1C:6C:26:7A:98:D3:F3:82:A6:1A:2A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7sMTGXauon0XHGwmepjT84KmGio.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/8e0efd-e5de-4df5-a551-4cd3e73216f1/1/7sMTGXauon0XHGwmepjT84KmGio.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/8e0efd-e5de-4df5-a551-4cd3e73216f1/1/7sMTGXauon0XHGwmepjT84KmGio.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 06:4e:ca:33:a0:5e:6b:33:26:0d:e2:36:95:5e:14:44:ea:e2: f3:6c:be:c7:30:4c:14:52:44:20:b0:31:60:90:df:a2:e3:42: a1:47:97:9e:e3:4c:1a:07:43:e6:e5:65:8f:ab:17:a9:a7:66: c5:86:a9:8b:2d:7d:fc:f6:aa:15:f2:92:17:af:54:4c:8d:e9: 3f:6f:d1:00:0d:c1:38:23:ac:ee:05:df:6b:46:d5:67:82:52: 60:06:e8:0a:19:73:e1:c8:d8:6e:fe:14:f9:14:d2:21:0a:39: 76:a0:9e:b1:65:20:bd:1d:a7:04:ae:c1:86:28:24:48:34:7b: 84:55:d9:89:7f:9d:c1:b0:8e:3b:b5:51:76:30:22:52:73:b4: 05:eb:89:6e:68:98:b9:d0:ef:f1:c6:96:ce:4a:ad:4f:de:ec: ae:2c:51:68:87:f9:7c:2d:1c:aa:a5:55:c2:82:2b:04:ab:0f: 66:77:f2:4f:d5:24:01:6c:68:be:29:56:b8:44:2e:9c:a2:59: 65:b3:18:10:3c:73:ec:01:a2:c7:e0:0c:dc:1e:58:9c:76:9e: 1c:f9:c1:45:f1:62:39:5f:1e:e9:b0:77:b9:b9:39:fa:bc:ea: d8:39:a8:b2:32:4c:37:89:81:fc:29:5f:56:e2:b8:4c:07:5c: 74:d2:a5:50 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv3LMU3VMPMrytjSMql89OPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVlYzMxMzE5NzZhZWEyN2QxNzFjNmMyNjdhOThkM2YzODJh NjFhMmEwHhcNMjYwMTI1MjIwMTA0WhcNMjYwMTI2MjIwMTA0WjAzMTEwLwYDVQQD EyhkNjdmOWY5NjAxNmNlYTZkZmVhZjhmOWIwMzdlY2VmMjliYzVlNjYxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgXRFXLa8pS7zBw2Nd94jAfpwkUbY CXL1UoeCQR8hPfze9FjdCIk8YRt6JF+cnC7IrVA+n+QelkQQ2cM3kpGGYC4BAqx2 vhlVDEwr/YSSKA19bmmKv/qADClm8ETd4CF776amDPq5/4oW/HRXNZjehRcAf4vb aJErm1ZE1y4BccsvgEF77Px9fJdvkBkS23gMhNZxcHmhonXO2F10GvgDfuV/aM2i 4ecN3bhOB6s/krIHf6fTFutPyYoXVtax0BIzGgLlFecivKqfBV/jq+8ojP2YwHbv D/1nac5+ZdL5y63r0kpYb0Jjz5Gm/MzbtfWXqcqkFoDA7qRB3rNFNoEUSwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNZ/n5YBbOpt/q+PmwN+zvKbxeZhMB8GA1UdIwQY MBaAFO7DExl2rqJ9FxxsJnqY0/OCphoqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvN3NNVEdYYXVvbjBYSEd3bWVwalQ4NEttR2lvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC84ZTBlZmQtZTVkZS00ZGY1LWE1NTEt NGNkM2U3MzIxNmYxLzEvN3NNVEdYYXVvbjBYSEd3bWVwalQ4NEttR2lvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jZC84ZTBlZmQtZTVkZS00ZGY1LWE1NTEtNGNkM2U3MzIxNmYx LzEvN3NNVEdYYXVvbjBYSEd3bWVwalQ4NEttR2lvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABk7KM6Be azMmDeI2lV4UROri82y+xzBMFFJEILAxYJDfouNCoUeXnuNMGgdD5uVlj6sXqadm xYapiy19/PaqFfKSF69UTI3pP2/RAA3BOCOs7gXfa0bVZ4JSYAboChlz4cjYbv4U +RTSIQo5dqCesWUgvR2nBK7BhigkSDR7hFXZiX+dwbCOO7VRdjAiUnO0BeuJbmiY udDv8caWzkqtT97srixRaIf5fC0cqqVVwoIrBKsPZnfyT9UkAWxovilWuEQunKJZ ZbMYEDxz7AGix+AM3B5YnHaeHPnBRfFiOV8e6bB3ubk5+rzq2DmosjJMN4mB/Clf VuK4TAdcdNKlUA== -----END CERTIFICATE-----Generated at Mon Jan 26 05:37:00 2026 by rpki-client