This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.mft File: S1KaTSL67yMTXW7_iRImZiPEklU.mft (raw, json) Hash identifier: RKmM1xXtDzYE0URJ6LiKFpRxp5K3tAPgVBYfi9pZwn4= Subject key identifier: 90:90:30:3C:40:CB:CB:0D:3C:E8:99:5F:2B:31:27:80:E0:EE:C1:51 Authority key identifier: 4B:52:9A:4D:22:FA:EF:23:13:5D:6E:FF:89:12:26:66:23:C4:92:55 Certificate issuer: /CN=4b529a4d22faef23135d6eff8912266623c49255 Certificate serial: 019BF2748E2BFB913A229BE36B3621577EF7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S1KaTSL67yMTXW7_iRImZiPEklU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.mft Manifest number: 1804 Signing time: Sun 25 Jan 2026 00:01:23 +0000 Manifest this update: Sun 25 Jan 2026 00:01:23 +0000 Manifest next update: Mon 26 Jan 2026 00:01:23 +0000 Files and hashes: 1: 8JTBQJyqUxIFa2P7t0W6NdfJ7CI.roa (hash: bvR7uwT6CerdByDmx1xzty2bHjJMPuqJsJHdeopKM9Y=) 2: IAcgHGi2lFpmozwldAdI6otCCf8.roa (hash: BMvZpTPd4wPptVWAuFWagP2MsiisY343W0Dlxwe5jk8=) 3: PGdzQPbVNWOAAR-X1BVXtgxofwg.roa (hash: dnLVHCkUAzZBzW5KJgWgdjrJ3f9Bmjq6lfV0HEQ9YaI=) 4: S1KaTSL67yMTXW7_iRImZiPEklU.crl (hash: D1EO2wgV0cDS8DLmF3I5WBAOlerlrPy3lWUEJEq81q8=) 5: UeKejWBuRMBTzBVkphHiwU6F1G4.roa (hash: 4Va/WDHUaUbqMZBtGC/uemvvWN5D2KRgvotniu/r8z8=) 6: bspFglFUNNfB3BfctmrtidkBJJ0.roa (hash: b4qzed65X33LBM+fRSUuJ6eNd3msfTHJCKt5GOuVSMY=) 7: qz9PIkYKwP9WQn8ECobRGBHsRvQ.roa (hash: UZfIONpLoP6LhX/7gUJb7axOulXZjtNAWJUg7Z+a+S4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.crl rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.mft rsync://rpki.ripe.net/repository/DEFAULT/S1KaTSL67yMTXW7_iRImZiPEklU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 23:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f2:74:8e:2b:fb:91:3a:22:9b:e3:6b:36:21:57:7e:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4b529a4d22faef23135d6eff8912266623c49255 Validity Not Before: Jan 25 00:01:23 2026 GMT Not After : Jan 26 00:01:23 2026 GMT Subject: CN=9090303c40cbcb0d3ce8995f2b312780e0eec151 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:f1:3b:c6:12:24:e6:1d:93:20:32:bc:23:ab: 25:db:ca:38:42:e4:3b:8f:c0:1f:83:96:16:94:84: 53:63:4d:0c:32:75:9c:50:69:30:23:2e:34:af:67: f3:22:aa:88:ae:2e:71:1f:81:97:74:4c:9f:f9:f4: e1:3a:39:43:02:d4:7e:a2:e8:10:59:4b:86:cf:7c: 7a:55:22:c5:33:51:4b:c1:27:b9:69:e2:5a:e2:c8: bc:35:b5:37:57:96:b6:bd:6d:b8:c3:f2:7a:1d:f1: f3:a1:e7:ec:3a:d1:a3:07:7a:d5:47:ef:57:d1:87: 7e:81:d1:81:aa:fd:4c:ee:6e:12:6b:cf:ee:f1:f3: 4b:97:c3:bb:aa:eb:35:14:a9:da:75:14:1a:ec:64: 36:4a:06:8b:e7:ba:fa:1d:a2:b9:1c:c1:d6:65:f4: 1b:3d:c6:85:2d:7f:6f:b6:61:d2:48:da:40:72:34: 80:c1:72:1f:c3:9e:d4:ee:da:4e:84:22:cf:aa:cf: a9:f3:79:5f:b2:74:0b:1e:dd:8b:4b:73:61:20:66: 04:1a:ae:1a:76:48:cb:cb:e7:5f:f4:4a:72:49:ba: 2d:89:04:f1:9b:85:aa:d0:90:b2:85:60:23:79:6e: 27:cd:b3:ec:41:ba:3b:cd:77:19:0a:41:16:09:ae: 05:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:90:30:3C:40:CB:CB:0D:3C:E8:99:5F:2B:31:27:80:E0:EE:C1:51 X509v3 Authority Key Identifier: keyid:4B:52:9A:4D:22:FA:EF:23:13:5D:6E:FF:89:12:26:66:23:C4:92:55 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S1KaTSL67yMTXW7_iRImZiPEklU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b8:82:a3:c3:cc:45:3e:f2:ad:f0:0c:8b:54:77:f8:01:6c:f8: 76:bc:ab:b1:2e:96:c2:56:7b:97:cd:b3:60:99:6e:21:93:aa: 08:ad:82:6d:96:3e:7d:58:7f:99:da:45:0e:55:57:30:bc:4d: f8:16:49:1b:5b:41:ac:34:cd:8a:7f:a2:45:60:ab:9e:0e:9d: 82:27:26:ee:ad:2f:d9:c7:a6:50:01:5b:ce:81:92:58:98:04: 30:a2:9d:54:33:cc:42:2c:87:d5:28:1c:a3:b8:ca:76:2d:74: fd:be:39:57:f0:7b:f6:84:59:60:50:a2:9c:07:ed:23:21:f5: ff:d8:75:0a:11:0c:0b:d6:54:41:17:69:c4:b4:4f:90:23:a5: cb:27:ac:00:a1:21:4f:b0:d6:30:31:58:01:88:87:b9:10:a1: 2a:17:a4:42:c8:b7:54:9a:44:61:8f:2d:33:a9:b3:d5:a2:97: a9:c7:cb:59:e7:82:d7:dc:44:e8:0e:e3:5c:f3:ad:da:f4:bb: 49:c9:f7:ec:d3:f0:49:f1:f5:17:f7:03:d7:e5:af:11:a6:12: 9a:e2:c9:cb:67:6e:d1:34:76:cf:9f:14:c8:6a:bf:b2:32:3e: e2:c9:4e:df:ba:a8:02:1f:b6:5e:b2:c1:da:bc:48:79:25:00: f6:04:a2:61 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZvydI4r+5E6IpvjazYhV373MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRiNTI5YTRkMjJmYWVmMjMxMzVkNmVmZjg5MTIyNjY2MjNj NDkyNTUwHhcNMjYwMTI1MDAwMTIzWhcNMjYwMTI2MDAwMTIzWjAzMTEwLwYDVQQD Eyg5MDkwMzAzYzQwY2JjYjBkM2NlODk5NWYyYjMxMjc4MGUwZWVjMTUxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvPE7xhIk5h2TIDK8I6sl28o4QuQ7 j8Afg5YWlIRTY00MMnWcUGkwIy40r2fzIqqIri5xH4GXdEyf+fThOjlDAtR+ougQ WUuGz3x6VSLFM1FLwSe5aeJa4si8NbU3V5a2vW24w/J6HfHzoefsOtGjB3rVR+9X 0Yd+gdGBqv1M7m4Sa8/u8fNLl8O7qus1FKnadRQa7GQ2SgaL57r6HaK5HMHWZfQb PcaFLX9vtmHSSNpAcjSAwXIfw57U7tpOhCLPqs+p83lfsnQLHt2LS3NhIGYEGq4a dkjLy+df9EpySbotiQTxm4Wq0JCyhWAjeW4nzbPsQbo7zXcZCkEWCa4FxQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJCQMDxAy8sNPOiZXysxJ4Dg7sFRMB8GA1UdIwQY MBaAFEtSmk0i+u8jE11u/4kSJmYjxJJVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUzFLYVRTTDY3eU1UWFc3X2lSSW1aaVBFa2xVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy8xZDliMDUtZWM2MS00YzMzLWEwOTct MzZhZTc2ZWU5ODNlLzEvUzFLYVRTTDY3eU1UWFc3X2lSSW1aaVBFa2xVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMy8xZDliMDUtZWM2MS00YzMzLWEwOTctMzZhZTc2ZWU5ODNl LzEvUzFLYVRTTDY3eU1UWFc3X2lSSW1aaVBFa2xVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAuIKjw8xF PvKt8AyLVHf4AWz4dryrsS6WwlZ7l82zYJluIZOqCK2CbZY+fVh/mdpFDlVXMLxN +BZJG1tBrDTNin+iRWCrng6dgicm7q0v2cemUAFbzoGSWJgEMKKdVDPMQiyH1Sgc o7jKdi10/b45V/B79oRZYFCinAftIyH1/9h1ChEMC9ZUQRdpxLRPkCOlyyesAKEh T7DWMDFYAYiHuRChKhekQsi3VJpEYY8tM6mz1aKXqcfLWeeC19xE6A7jXPOt2vS7 Scn37NPwSfH1F/cD1+WvEaYSmuLJy2du0TR2z58UyGq/sjI+4slO37qoAh+2XrLB 2rxIeSUA9gSiYQ== -----END CERTIFICATE-----Generated at Sun Jan 25 10:43:10 2026 by rpki-client