This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/c3289f-76e9-4893-9cd1-a65fbd830358/1/e20oQEBEI571gkLyEOCxZmfrQNA.mft File: e20oQEBEI571gkLyEOCxZmfrQNA.mft (raw, json) Hash identifier: hOMxTrCeCscjvjR5nyEfb1zofWYgIPVUjQ9kuMZMvas= Subject key identifier: FF:5A:F2:5A:63:38:73:94:10:9D:89:EC:BC:DB:16:17:2A:82:DF:17 Authority key identifier: 7B:6D:28:40:40:44:23:9E:F5:82:42:F2:10:E0:B1:66:67:EB:40:D0 Certificate issuer: /CN=7b6d28404044239ef58242f210e0b16667eb40d0 Certificate serial: 019BF619FF274285BD5B6317DE5805589D0B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e20oQEBEI571gkLyEOCxZmfrQNA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/c3289f-76e9-4893-9cd1-a65fbd830358/1/e20oQEBEI571gkLyEOCxZmfrQNA.mft Manifest number: 1778 Signing time: Sun 25 Jan 2026 17:00:57 +0000 Manifest this update: Sun 25 Jan 2026 17:00:57 +0000 Manifest next update: Mon 26 Jan 2026 17:00:57 +0000 Files and hashes: 1: AWdnvO_fGYURQMiK3WsDBvu78og.roa (hash: xYb7mnfBNaWhh8LFpOFQkvNwUNvj1x9GSJ76i4T9ScE=) 2: e20oQEBEI571gkLyEOCxZmfrQNA.crl (hash: FyPLnk3pc1F2OGlgfCo16Fx0c5+hjGenoUcFzTxmCg8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/c3289f-76e9-4893-9cd1-a65fbd830358/1/e20oQEBEI571gkLyEOCxZmfrQNA.crl rsync://rpki.ripe.net/repository/DEFAULT/d4/c3289f-76e9-4893-9cd1-a65fbd830358/1/e20oQEBEI571gkLyEOCxZmfrQNA.mft rsync://rpki.ripe.net/repository/DEFAULT/e20oQEBEI571gkLyEOCxZmfrQNA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f6:19:ff:27:42:85:bd:5b:63:17:de:58:05:58:9d:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7b6d28404044239ef58242f210e0b16667eb40d0 Validity Not Before: Jan 25 17:00:57 2026 GMT Not After : Jan 26 17:00:57 2026 GMT Subject: CN=ff5af25a63387394109d89ecbcdb16172a82df17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:f6:b4:8e:7a:2a:ff:5b:5c:3f:2d:20:46:72: 25:1a:98:42:c2:f4:c0:fd:2c:99:95:0b:b3:b3:99: f0:00:a2:16:f5:ef:e8:c6:cf:38:97:0c:82:5f:d6: 7a:ec:c1:51:8c:42:3e:6d:a0:5b:cf:2d:43:0b:4b: 41:20:75:49:f4:ca:0f:9e:61:d1:ee:16:88:8d:9c: a4:11:ce:d3:e8:8b:43:73:d4:81:1b:95:ec:cd:d8: 3a:5a:e6:70:b8:8b:e8:f6:81:43:f6:3d:fc:2c:a3: 1f:0b:d7:76:73:c0:fa:e1:7e:cd:c7:6e:97:af:47: 39:44:2a:fa:0f:c1:12:63:55:6c:ec:c3:4a:1d:35: 7a:0e:0b:b9:1b:3e:68:73:ad:1a:c1:8a:70:3d:14: 4c:80:9a:2a:a2:da:5c:f2:49:5b:1e:c9:87:67:81: f3:3b:f6:27:6e:9d:d4:b5:cf:71:7e:8b:fa:92:96: b5:9b:7a:61:dc:61:86:5d:53:1b:ed:08:06:4f:14: 97:6b:b4:0e:08:a4:00:6c:10:84:de:fe:42:23:9e: e5:63:47:da:ec:99:64:8f:45:9b:3a:e1:70:f9:9a: fe:2b:f6:78:6c:73:45:25:36:b1:ed:01:7d:45:76: 08:fa:f4:d1:01:48:97:45:cf:8c:99:ad:56:be:82: a5:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:5A:F2:5A:63:38:73:94:10:9D:89:EC:BC:DB:16:17:2A:82:DF:17 X509v3 Authority Key Identifier: keyid:7B:6D:28:40:40:44:23:9E:F5:82:42:F2:10:E0:B1:66:67:EB:40:D0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e20oQEBEI571gkLyEOCxZmfrQNA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/c3289f-76e9-4893-9cd1-a65fbd830358/1/e20oQEBEI571gkLyEOCxZmfrQNA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/c3289f-76e9-4893-9cd1-a65fbd830358/1/e20oQEBEI571gkLyEOCxZmfrQNA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0a:26:42:ad:d3:67:38:3c:2b:09:08:a9:5f:1c:f0:92:3b:c1: e1:a1:88:31:0f:95:9e:96:22:ee:6e:44:ee:76:ea:f0:73:e7: f2:9a:57:e7:d8:76:dd:0d:54:c8:2a:22:af:15:2b:a4:25:69: 38:c6:81:c0:3a:9a:21:af:da:25:4c:33:d9:22:24:4d:22:57: f5:23:a1:e5:59:10:e5:7b:f5:d0:e4:cb:38:d4:f9:1d:3c:12: 34:56:60:2d:e8:3d:d2:fb:a7:cd:fb:da:d0:c9:e8:0f:ef:18: ae:18:d9:42:b1:a4:12:a1:94:e6:5c:be:51:85:14:1a:f5:c6: 9f:5d:6f:cd:96:8e:25:39:de:7c:6f:88:f7:3d:c0:54:42:f2: ba:4a:81:64:a3:3a:81:21:c3:8c:94:e5:0e:38:bd:5d:60:85: 45:ac:53:03:82:ff:5e:7a:5b:bd:0e:57:0f:4f:8b:4a:31:20: 35:ba:1d:00:27:1d:c2:81:f5:e4:5f:1c:16:b6:1c:fe:2d:0b: d9:48:7b:97:07:e9:5c:02:87:7a:cd:87:5c:03:f6:32:39:51: 68:40:35:d1:69:15:db:d3:c1:53:bc:4e:11:30:ac:f9:1f:bd: c4:ac:2c:a4:86:5a:ae:96:7d:25:49:49:05:64:22:74:f6:d0: a2:4f:c3:d5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv2Gf8nQoW9W2MX3lgFWJ0LMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdiNmQyODQwNDA0NDIzOWVmNTgyNDJmMjEwZTBiMTY2Njdl YjQwZDAwHhcNMjYwMTI1MTcwMDU3WhcNMjYwMTI2MTcwMDU3WjAzMTEwLwYDVQQD EyhmZjVhZjI1YTYzMzg3Mzk0MTA5ZDg5ZWNiY2RiMTYxNzJhODJkZjE3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqPa0jnoq/1tcPy0gRnIlGphCwvTA /SyZlQuzs5nwAKIW9e/oxs84lwyCX9Z67MFRjEI+baBbzy1DC0tBIHVJ9MoPnmHR 7haIjZykEc7T6ItDc9SBG5Xszdg6WuZwuIvo9oFD9j38LKMfC9d2c8D64X7Nx26X r0c5RCr6D8ESY1Vs7MNKHTV6Dgu5Gz5oc60awYpwPRRMgJoqotpc8klbHsmHZ4Hz O/Ynbp3Utc9xfov6kpa1m3ph3GGGXVMb7QgGTxSXa7QOCKQAbBCE3v5CI57lY0fa 7Jlkj0WbOuFw+Zr+K/Z4bHNFJTax7QF9RXYI+vTRAUiXRc+Mma1WvoKlQQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFP9a8lpjOHOUEJ2J7LzbFhcqgt8XMB8GA1UdIwQY MBaAFHttKEBARCOe9YJC8hDgsWZn60DQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZTIwb1FFQkVJNTcxZ2tMeUVPQ3habWZyUU5BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC9jMzI4OWYtNzZlOS00ODkzLTljZDEt YTY1ZmJkODMwMzU4LzEvZTIwb1FFQkVJNTcxZ2tMeUVPQ3habWZyUU5BLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNC9jMzI4OWYtNzZlOS00ODkzLTljZDEtYTY1ZmJkODMwMzU4 LzEvZTIwb1FFQkVJNTcxZ2tMeUVPQ3habWZyUU5BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACiZCrdNn ODwrCQipXxzwkjvB4aGIMQ+VnpYi7m5E7nbq8HPn8ppX59h23Q1UyCoirxUrpCVp OMaBwDqaIa/aJUwz2SIkTSJX9SOh5VkQ5Xv10OTLONT5HTwSNFZgLeg90vunzfva 0MnoD+8YrhjZQrGkEqGU5ly+UYUUGvXGn11vzZaOJTnefG+I9z3AVELyukqBZKM6 gSHDjJTlDji9XWCFRaxTA4L/XnpbvQ5XD0+LSjEgNbodACcdwoH15F8cFrYc/i0L 2Uh7lwfpXAKHes2HXAP2MjlRaEA10WkV29PBU7xOETCs+R+9xKwspIZarpZ9JUlJ BWQidPbQok/D1Q== -----END CERTIFICATE-----Generated at Mon Jan 26 01:48:00 2026 by rpki-client