This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/ed7c8a-3952-4401-9dd4-44692dbccb32/1/mk123S9GBosIca1FAKxuV3r-Rpw.mft File: mk123S9GBosIca1FAKxuV3r-Rpw.mft (raw, json) Hash identifier: XtHJFjzQx0XzMGGyDXJVNUf2MK6aCUvuwsy/ZUWaZ7U= Subject key identifier: F8:56:7B:BD:B5:2E:F2:B3:C8:2C:22:87:97:D9:C6:28:99:78:4C:87 Authority key identifier: 9A:4D:76:DD:2F:46:06:8B:08:71:AD:45:00:AC:6E:57:7A:FE:46:9C Certificate issuer: /CN=9a4d76dd2f46068b0871ad4500ac6e577afe469c Certificate serial: 019BF9BFE2A853C2DDB047DB7E18326E1A0C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mk123S9GBosIca1FAKxuV3r-Rpw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/ed7c8a-3952-4401-9dd4-44692dbccb32/1/mk123S9GBosIca1FAKxuV3r-Rpw.mft Manifest number: 17F5 Signing time: Mon 26 Jan 2026 10:01:00 +0000 Manifest this update: Mon 26 Jan 2026 10:01:00 +0000 Manifest next update: Tue 27 Jan 2026 10:01:00 +0000 Files and hashes: 1: SYtSh6MgqpX8fZ4WHojx0wxmwAU.roa (hash: qfAbswAstxuSdJu35mimEN1jiqsDnLeGp+g0coBMNag=) 2: YIp8U7durT_VOWJi51t_EhaEZmc.roa (hash: uqZNroUU2FsZFyQ6iEi3c3DU2XeoL0O/vrop/BVrvjs=) 3: mk123S9GBosIca1FAKxuV3r-Rpw.crl (hash: 10vGpE2JSFVsEp3tEEQoKdjWqzwssvjHRYGgBCeERyQ=) 4: pEE9oryUWOVeetd5uFrgO_cdrpE.roa (hash: jDaM82TLaH8oaB0vSE3Avb/s35Fb5rQ5AgRFhpcBjks=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/ed7c8a-3952-4401-9dd4-44692dbccb32/1/mk123S9GBosIca1FAKxuV3r-Rpw.crl rsync://rpki.ripe.net/repository/DEFAULT/d4/ed7c8a-3952-4401-9dd4-44692dbccb32/1/mk123S9GBosIca1FAKxuV3r-Rpw.mft rsync://rpki.ripe.net/repository/DEFAULT/mk123S9GBosIca1FAKxuV3r-Rpw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 10:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f9:bf:e2:a8:53:c2:dd:b0:47:db:7e:18:32:6e:1a:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9a4d76dd2f46068b0871ad4500ac6e577afe469c Validity Not Before: Jan 26 10:01:00 2026 GMT Not After : Jan 27 10:01:00 2026 GMT Subject: CN=f8567bbdb52ef2b3c82c228797d9c62899784c87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:b9:56:25:f7:57:ee:39:7c:81:b5:2c:31:c5: f3:4c:12:88:fa:12:d1:39:36:58:2b:f6:83:8a:7e: 57:a2:28:75:d5:6b:5e:02:8f:ea:35:e6:64:81:d6: 43:ff:d0:eb:f7:fe:76:f1:f8:45:b0:f2:ef:29:34: 10:55:d0:61:9f:1f:1c:5d:2d:87:be:46:94:48:9d: 03:68:80:1f:e3:6e:7e:e8:fd:56:00:a3:3f:74:88: 40:6c:1f:2e:38:85:66:54:99:b0:86:b3:fd:65:c2: e9:d0:5d:0b:15:54:85:e7:b1:19:41:0e:9d:a9:29: f4:1b:5b:99:7f:d1:e9:04:e5:e7:82:70:a0:7d:f6: 06:0d:45:9c:8e:62:b6:71:81:f5:9e:a4:4a:f5:e7: 8d:b7:63:9d:8a:4a:7a:c7:26:51:a7:22:96:09:15: 66:9b:bb:86:96:3b:a6:70:88:c2:85:bf:05:8a:15: 16:81:67:d0:b2:e7:00:b9:55:8e:82:5c:a9:f6:71: 5b:5b:cb:d2:e9:93:a9:7f:2f:7a:90:f2:88:33:c7: 8c:80:4f:18:fc:c2:6c:f3:9f:fa:6b:d3:4b:9d:87: e6:55:eb:42:cf:28:9e:45:f8:5c:5d:0a:cd:58:bf: a0:d2:12:d7:cf:68:7a:66:a6:3f:53:9a:96:64:e4: ed:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:56:7B:BD:B5:2E:F2:B3:C8:2C:22:87:97:D9:C6:28:99:78:4C:87 X509v3 Authority Key Identifier: keyid:9A:4D:76:DD:2F:46:06:8B:08:71:AD:45:00:AC:6E:57:7A:FE:46:9C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mk123S9GBosIca1FAKxuV3r-Rpw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/ed7c8a-3952-4401-9dd4-44692dbccb32/1/mk123S9GBosIca1FAKxuV3r-Rpw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/ed7c8a-3952-4401-9dd4-44692dbccb32/1/mk123S9GBosIca1FAKxuV3r-Rpw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3e:dc:fb:b1:21:be:31:e1:fe:6c:d7:ea:94:db:4c:e6:77:f7: c8:f5:48:d7:8a:8f:72:c4:08:98:a9:65:80:48:73:b6:ee:f1: 18:90:24:7c:9d:4b:16:ca:0d:09:23:b7:79:91:4f:6e:ee:79: 83:41:8c:2e:5b:3a:2e:17:74:2a:42:11:66:eb:6c:62:ae:98: ef:bd:62:18:ec:da:c3:d3:5c:a0:aa:11:88:c5:82:6f:0e:23: 46:28:3a:55:be:9d:fb:82:0f:d2:8b:ad:62:b2:5b:f0:b7:b2: f6:0c:3e:31:6d:1a:2d:71:1f:3a:a6:ae:d2:81:12:3b:41:2a: 39:63:70:a3:0d:a0:c1:05:52:da:2b:1e:2f:c9:1c:c7:39:de: bc:c4:87:73:74:04:49:c0:5e:b2:27:5e:df:6a:10:a7:23:47: cc:af:98:1b:2c:d0:6a:63:92:91:23:20:ea:f7:3e:1a:87:df: 80:7c:91:47:50:e9:dd:49:a6:f9:1a:34:ea:7c:9d:8b:24:e9: 57:f6:0f:e6:a5:30:04:63:2f:b0:62:13:4e:93:1b:1c:1b:f4: d4:f2:6c:76:1c:e2:b0:80:4b:1b:00:5c:33:fd:a5:44:dd:2d: dc:66:2d:67:68:5a:41:7d:89:99:e9:f5:1f:6e:9a:0f:50:53: d5:66:61:99 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv5v+KoU8LdsEfbfhgybhoMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlhNGQ3NmRkMmY0NjA2OGIwODcxYWQ0NTAwYWM2ZTU3N2Fm ZTQ2OWMwHhcNMjYwMTI2MTAwMTAwWhcNMjYwMTI3MTAwMTAwWjAzMTEwLwYDVQQD EyhmODU2N2JiZGI1MmVmMmIzYzgyYzIyODc5N2Q5YzYyODk5Nzg0Yzg3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvrlWJfdX7jl8gbUsMcXzTBKI+hLR OTZYK/aDin5Xoih11WteAo/qNeZkgdZD/9Dr9/528fhFsPLvKTQQVdBhnx8cXS2H vkaUSJ0DaIAf425+6P1WAKM/dIhAbB8uOIVmVJmwhrP9ZcLp0F0LFVSF57EZQQ6d qSn0G1uZf9HpBOXngnCgffYGDUWcjmK2cYH1nqRK9eeNt2Odikp6xyZRpyKWCRVm m7uGljumcIjChb8FihUWgWfQsucAuVWOglyp9nFbW8vS6ZOpfy96kPKIM8eMgE8Y /MJs85/6a9NLnYfmVetCzyieRfhcXQrNWL+g0hLXz2h6ZqY/U5qWZOTthQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPhWe721LvKzyCwih5fZxiiZeEyHMB8GA1UdIwQY MBaAFJpNdt0vRgaLCHGtRQCsbld6/kacMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbWsxMjNTOUdCb3NJY2ExRkFLeHVWM3ItUnB3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC9lZDdjOGEtMzk1Mi00NDAxLTlkZDQt NDQ2OTJkYmNjYjMyLzEvbWsxMjNTOUdCb3NJY2ExRkFLeHVWM3ItUnB3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNC9lZDdjOGEtMzk1Mi00NDAxLTlkZDQtNDQ2OTJkYmNjYjMy LzEvbWsxMjNTOUdCb3NJY2ExRkFLeHVWM3ItUnB3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPtz7sSG+ MeH+bNfqlNtM5nf3yPVI14qPcsQImKllgEhztu7xGJAkfJ1LFsoNCSO3eZFPbu55 g0GMLls6Lhd0KkIRZutsYq6Y771iGOzaw9NcoKoRiMWCbw4jRig6Vb6d+4IP0out YrJb8Ley9gw+MW0aLXEfOqau0oESO0EqOWNwow2gwQVS2iseL8kcxznevMSHc3QE ScBeside32oQpyNHzK+YGyzQamOSkSMg6vc+GoffgHyRR1Dp3Umm+Ro06nydiyTp V/YP5qUwBGMvsGITTpMbHBv01PJsdhzisIBLGwBcM/2lRN0t3GYtZ2haQX2Jmen1 H26aD1BT1WZhmQ== -----END CERTIFICATE-----Generated at Mon Jan 26 12:24:43 2026 by rpki-client