This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/97d97e-6de9-4332-b4df-06e54dd92171/1/rm8YQW19RwqgStALyldoPHidhU0.mft File: rm8YQW19RwqgStALyldoPHidhU0.mft (raw, json) Hash identifier: PpAbi3FQ4Z7n9ohe7wfgCTBixvIcDOoZjWCKUULhwVs= Subject key identifier: F6:F6:2B:34:9B:C5:3C:4A:D7:74:3A:96:60:56:2C:A4:CB:E9:71:90 Authority key identifier: AE:6F:18:41:6D:7D:47:0A:A0:4A:D0:0B:CA:57:68:3C:78:9D:85:4D Certificate issuer: /CN=ae6f18416d7d470aa04ad00bca57683c789d854d Certificate serial: 019BF53E1A9D4260F389147767185508DA5F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rm8YQW19RwqgStALyldoPHidhU0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/97d97e-6de9-4332-b4df-06e54dd92171/1/rm8YQW19RwqgStALyldoPHidhU0.mft Manifest number: 0ECE Signing time: Sun 25 Jan 2026 13:00:46 +0000 Manifest this update: Sun 25 Jan 2026 13:00:46 +0000 Manifest next update: Mon 26 Jan 2026 13:00:46 +0000 Files and hashes: 1: 4FbUQPbInKsJV6tUxAOCJ09zMtA.roa (hash: XDmbXmDYXHXEEVlnrPjHgOg48u89KTGeW87AL4CNgDM=) 2: rm8YQW19RwqgStALyldoPHidhU0.crl (hash: Podew8u23m+Uq7dxnXgr4y3VyKc/88eCiO3bL+FCbB8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/97d97e-6de9-4332-b4df-06e54dd92171/1/rm8YQW19RwqgStALyldoPHidhU0.crl rsync://rpki.ripe.net/repository/DEFAULT/d4/97d97e-6de9-4332-b4df-06e54dd92171/1/rm8YQW19RwqgStALyldoPHidhU0.mft rsync://rpki.ripe.net/repository/DEFAULT/rm8YQW19RwqgStALyldoPHidhU0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:00:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f5:3e:1a:9d:42:60:f3:89:14:77:67:18:55:08:da:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ae6f18416d7d470aa04ad00bca57683c789d854d Validity Not Before: Jan 25 13:00:46 2026 GMT Not After : Jan 26 13:00:46 2026 GMT Subject: CN=f6f62b349bc53c4ad7743a9660562ca4cbe97190 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:cb:b4:b6:86:76:58:c8:6a:9a:71:90:20:27: 7c:49:30:e8:e0:3c:4f:89:ce:bc:39:6b:a6:5f:06: 78:18:75:56:62:82:49:ec:11:75:0d:8e:c2:98:a1: 32:74:0c:70:84:84:ea:31:ed:e8:1e:5d:0a:75:44: dc:d8:4e:47:62:f1:56:24:8c:ec:02:9e:07:8e:22: 6a:b3:ad:92:c0:1b:82:86:b8:6c:d3:77:5a:b7:4d: 86:f9:b9:07:64:08:ef:76:19:e9:ad:37:2a:32:29: 7b:1d:bd:10:94:94:3b:96:7e:4c:a1:3c:97:59:ac: 2b:65:36:4b:29:51:4b:84:f7:03:21:09:f6:1f:23: e2:53:ef:ae:4d:02:54:f4:b5:44:58:c9:5c:dc:e5: 37:ee:dd:83:cc:f3:2b:fd:35:86:e4:01:63:1b:ca: b5:17:57:cc:2c:55:4c:26:9a:8f:88:e6:b3:4c:da: f6:a6:51:d3:80:ce:cd:1d:cb:8c:84:3d:d6:21:ad: c6:b2:20:32:5b:d6:9f:72:da:b2:b8:6f:27:27:d9: 2c:74:a7:13:d1:1c:b2:92:3c:b2:b0:32:ce:5d:f9: 7e:79:93:b1:b7:21:0c:94:1e:e6:0f:2c:82:8d:ec: 29:d6:f6:a9:ed:70:66:e6:54:8c:46:0b:4a:7a:0c: 46:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:F6:2B:34:9B:C5:3C:4A:D7:74:3A:96:60:56:2C:A4:CB:E9:71:90 X509v3 Authority Key Identifier: keyid:AE:6F:18:41:6D:7D:47:0A:A0:4A:D0:0B:CA:57:68:3C:78:9D:85:4D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rm8YQW19RwqgStALyldoPHidhU0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/97d97e-6de9-4332-b4df-06e54dd92171/1/rm8YQW19RwqgStALyldoPHidhU0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/97d97e-6de9-4332-b4df-06e54dd92171/1/rm8YQW19RwqgStALyldoPHidhU0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 83:5e:a5:0c:43:a3:ea:0f:43:4b:a4:de:00:13:68:12:38:df: f8:d8:ba:f1:73:4b:07:09:98:c1:47:2f:7c:9a:4b:64:ad:64: 26:7d:e0:18:88:98:4a:2d:fd:6d:31:ef:bb:b2:7c:9e:9c:14: 3f:87:23:dc:84:7c:74:da:22:49:8a:98:14:8f:b5:64:8a:8c: 00:d7:be:fd:77:f6:81:c8:52:6a:6d:67:d9:2d:64:96:b4:f5: 2f:2a:e6:c1:d6:7c:5f:d7:fa:a0:d0:10:5b:2f:21:9c:4a:18: 89:86:20:86:9d:1a:48:3f:35:db:e9:ad:6f:39:e3:31:3c:f1: b6:87:d2:48:9a:6b:2e:00:31:35:10:c3:c2:fc:1c:03:4d:7c: ca:b9:40:94:ac:a5:ba:bb:ae:3e:c9:22:ea:76:16:2e:e0:57: 7c:5f:b0:80:4c:31:71:70:c1:d8:d3:4f:d2:3e:db:90:17:e1: 4a:aa:58:96:2c:73:08:9f:ab:86:ec:1a:8b:34:67:5c:5c:e1: b1:78:47:1f:21:d5:02:97:1a:17:89:b5:1d:20:d9:cf:40:24: 5b:b7:4e:18:99:c3:16:b5:c6:49:4e:7d:a4:f9:a6:38:07:e5: dc:5c:eb:99:b7:f5:07:8f:7f:47:fb:a7:47:b5:ef:9b:f0:31: c8:53:ae:ed -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv1PhqdQmDziRR3ZxhVCNpfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFlNmYxODQxNmQ3ZDQ3MGFhMDRhZDAwYmNhNTc2ODNjNzg5 ZDg1NGQwHhcNMjYwMTI1MTMwMDQ2WhcNMjYwMTI2MTMwMDQ2WjAzMTEwLwYDVQQD EyhmNmY2MmIzNDliYzUzYzRhZDc3NDNhOTY2MDU2MmNhNGNiZTk3MTkwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt8u0toZ2WMhqmnGQICd8STDo4DxP ic68OWumXwZ4GHVWYoJJ7BF1DY7CmKEydAxwhITqMe3oHl0KdUTc2E5HYvFWJIzs Ap4HjiJqs62SwBuChrhs03dat02G+bkHZAjvdhnprTcqMil7Hb0QlJQ7ln5MoTyX WawrZTZLKVFLhPcDIQn2HyPiU++uTQJU9LVEWMlc3OU37t2DzPMr/TWG5AFjG8q1 F1fMLFVMJpqPiOazTNr2plHTgM7NHcuMhD3WIa3GsiAyW9afctqyuG8nJ9ksdKcT 0RyykjyysDLOXfl+eZOxtyEMlB7mDyyCjewp1vap7XBm5lSMRgtKegxGIwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPb2KzSbxTxK13Q6lmBWLKTL6XGQMB8GA1UdIwQY MBaAFK5vGEFtfUcKoErQC8pXaDx4nYVNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcm04WVFXMTlSd3FnU3RBTHlsZG9QSGlkaFUwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC85N2Q5N2UtNmRlOS00MzMyLWI0ZGYt MDZlNTRkZDkyMTcxLzEvcm04WVFXMTlSd3FnU3RBTHlsZG9QSGlkaFUwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNC85N2Q5N2UtNmRlOS00MzMyLWI0ZGYtMDZlNTRkZDkyMTcx LzEvcm04WVFXMTlSd3FnU3RBTHlsZG9QSGlkaFUwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAg16lDEOj 6g9DS6TeABNoEjjf+Ni68XNLBwmYwUcvfJpLZK1kJn3gGIiYSi39bTHvu7J8npwU P4cj3IR8dNoiSYqYFI+1ZIqMANe+/Xf2gchSam1n2S1klrT1LyrmwdZ8X9f6oNAQ Wy8hnEoYiYYghp0aSD812+mtbznjMTzxtofSSJprLgAxNRDDwvwcA018yrlAlKyl uruuPski6nYWLuBXfF+wgEwxcXDB2NNP0j7bkBfhSqpYlixzCJ+rhuwaizRnXFzh sXhHHyHVApcaF4m1HSDZz0AkW7dOGJnDFrXGSU59pPmmOAfl3Fzrmbf1B49/R/un R7Xvm/AxyFOu7Q== -----END CERTIFICATE-----Generated at Sun Jan 25 22:00:17 2026 by rpki-client