This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/0b55ab-acc8-41da-9c80-e8f20aadde99/1/3RWKDaAyZt8UTImntuNadhxJmPc.mft File: 3RWKDaAyZt8UTImntuNadhxJmPc.mft (raw, json) Hash identifier: 6JcZ2RS08Lh0hMPiD44uznztevRRdPKNhP4lAQKfDTQ= Subject key identifier: 5A:D7:66:FB:00:0E:33:6C:EC:9E:C9:87:4D:E3:55:DC:A5:56:04:CD Authority key identifier: DD:15:8A:0D:A0:32:66:DF:14:4C:89:A7:B6:E3:5A:76:1C:49:98:F7 Certificate issuer: /CN=dd158a0da03266df144c89a7b6e35a761c4998f7 Certificate serial: 019BF6F609804FCBD23CED45D10E0C530A1A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3RWKDaAyZt8UTImntuNadhxJmPc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/0b55ab-acc8-41da-9c80-e8f20aadde99/1/3RWKDaAyZt8UTImntuNadhxJmPc.mft Manifest number: 04E2 Signing time: Sun 25 Jan 2026 21:01:17 +0000 Manifest this update: Sun 25 Jan 2026 21:01:17 +0000 Manifest next update: Mon 26 Jan 2026 21:01:17 +0000 Files and hashes: 1: 3RWKDaAyZt8UTImntuNadhxJmPc.crl (hash: XM+FqhzjIk4YJKpJQyIKH4+9Qwh31typsKKrwvfAAe0=) 2: KspZGEs5E9kBto-BDRNBpwgMozk.roa (hash: fEFWOKz8D3otbrIF7eDSpQJCGfc9dNpOBoympwBaaIo=) 3: _u0GYQJkGDKJGQy_cIUVysNdl-Y.roa (hash: NS2H85YUlo/0gpq3fxBfbH1id4mYTnAFlnyWNFbuJ2A=) 4: jBPPic1_WDiPKVrnfNcPILaGEPs.roa (hash: UZz5IRcSRwfo/4r9rh5sOcK5GPeqYQtDEcdC/J2p/UU=) 5: lwH0nqYhX__-20vFmPdqHfNDIrg.roa (hash: wCraYk4JI+EHVkIbds0t6IzfVaol6i4LvLzpJq3OoSk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/0b55ab-acc8-41da-9c80-e8f20aadde99/1/3RWKDaAyZt8UTImntuNadhxJmPc.crl rsync://rpki.ripe.net/repository/DEFAULT/d5/0b55ab-acc8-41da-9c80-e8f20aadde99/1/3RWKDaAyZt8UTImntuNadhxJmPc.mft rsync://rpki.ripe.net/repository/DEFAULT/3RWKDaAyZt8UTImntuNadhxJmPc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 21:01:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f6:f6:09:80:4f:cb:d2:3c:ed:45:d1:0e:0c:53:0a:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dd158a0da03266df144c89a7b6e35a761c4998f7 Validity Not Before: Jan 25 21:01:17 2026 GMT Not After : Jan 26 21:01:17 2026 GMT Subject: CN=5ad766fb000e336cec9ec9874de355dca55604cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:0b:30:85:73:8f:4d:74:a6:64:e9:2f:c1:3d: 71:9a:f3:66:05:48:c6:dd:88:23:e6:c4:de:1d:01: ec:64:7a:bd:8e:cc:27:ff:f8:2c:65:3d:f6:33:e3: 3e:8d:1b:48:5e:bd:fd:74:a5:c6:66:20:ae:be:90: 73:df:2e:05:1e:24:88:8a:4e:fe:e6:11:da:b3:f4: 37:fa:c5:e7:ad:c3:a5:81:54:a9:c9:7c:8a:68:b5: 74:ce:e0:69:1e:7c:50:b6:8d:5f:ba:9b:1a:08:12: e2:d0:46:88:0b:81:a2:70:c4:8f:88:c8:33:d5:22: 4a:23:9c:1d:b0:13:3a:6b:bf:12:50:ba:fd:42:db: 05:87:19:12:4d:a2:e4:9e:4c:80:47:ce:8e:06:27: e7:f4:48:ce:10:81:1e:f3:cc:82:c9:3f:f0:c3:b9: 82:10:f2:0c:1b:fb:16:f6:99:75:4e:0f:33:83:88: ec:92:3d:56:1a:03:72:df:0b:45:25:33:65:f7:32: 0d:e6:e4:66:2b:96:9a:a3:56:df:b0:c1:92:c3:74: cd:31:1e:4e:d3:3f:40:c8:90:0c:9b:d1:ed:70:37: 59:60:9e:4e:ff:76:f3:29:ef:72:0b:26:fd:fe:11: 0d:4a:56:a3:49:75:ea:28:60:cc:d0:d1:be:29:0e: ed:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:D7:66:FB:00:0E:33:6C:EC:9E:C9:87:4D:E3:55:DC:A5:56:04:CD X509v3 Authority Key Identifier: keyid:DD:15:8A:0D:A0:32:66:DF:14:4C:89:A7:B6:E3:5A:76:1C:49:98:F7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3RWKDaAyZt8UTImntuNadhxJmPc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/0b55ab-acc8-41da-9c80-e8f20aadde99/1/3RWKDaAyZt8UTImntuNadhxJmPc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/0b55ab-acc8-41da-9c80-e8f20aadde99/1/3RWKDaAyZt8UTImntuNadhxJmPc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 28:45:1f:2b:a9:5a:39:7c:e8:3d:9e:b2:c9:82:18:46:e9:98: 15:55:a0:d0:6c:aa:51:d7:43:fa:75:43:f0:c3:36:36:26:1b: 9f:3b:f3:7f:43:5b:27:df:68:41:e3:55:de:bb:8b:5b:4a:f6: a2:9f:8d:5d:d0:e7:c1:27:ff:af:d0:25:60:b5:c3:d5:50:3f: 18:79:9b:d5:be:02:1a:6b:a5:55:7d:1b:cc:00:75:83:c1:e8: 90:19:76:10:bf:30:4c:d2:77:f0:e8:7b:00:fe:fb:c6:28:a4: 54:51:f1:36:f6:b3:46:a2:9c:f0:4b:76:9c:2c:09:e1:43:66: af:8f:c8:d7:78:b0:af:29:7d:86:47:64:d7:2d:24:59:59:9d: 38:e6:e8:9d:8e:f2:2b:59:6c:4c:af:5d:fc:d7:0b:27:2d:6a: 83:98:11:b4:8c:05:07:e5:c8:a7:40:27:71:55:9c:e1:7d:88: db:56:4e:98:db:96:a1:8a:75:a0:9b:cb:52:37:4a:67:38:79: b7:8c:59:8f:48:49:44:c9:41:2c:32:36:68:be:06:da:9c:fa: d4:09:db:a1:a8:4b:57:21:46:fc:fb:fe:be:19:3d:b5:23:a8: 05:33:ab:d2:da:2b:30:fa:54:e2:7a:e3:3d:56:c9:d3:5f:c2: fb:fb:84:a3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv29gmAT8vSPO1F0Q4MUwoaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRkMTU4YTBkYTAzMjY2ZGYxNDRjODlhN2I2ZTM1YTc2MWM0 OTk4ZjcwHhcNMjYwMTI1MjEwMTE3WhcNMjYwMTI2MjEwMTE3WjAzMTEwLwYDVQQD Eyg1YWQ3NjZmYjAwMGUzMzZjZWM5ZWM5ODc0ZGUzNTVkY2E1NTYwNGNkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuQswhXOPTXSmZOkvwT1xmvNmBUjG 3Ygj5sTeHQHsZHq9jswn//gsZT32M+M+jRtIXr39dKXGZiCuvpBz3y4FHiSIik7+ 5hHas/Q3+sXnrcOlgVSpyXyKaLV0zuBpHnxQto1fupsaCBLi0EaIC4GicMSPiMgz 1SJKI5wdsBM6a78SULr9QtsFhxkSTaLknkyAR86OBifn9EjOEIEe88yCyT/ww7mC EPIMG/sW9pl1Tg8zg4jskj1WGgNy3wtFJTNl9zIN5uRmK5aao1bfsMGSw3TNMR5O 0z9AyJAMm9HtcDdZYJ5O/3bzKe9yCyb9/hENSlajSXXqKGDM0NG+KQ7tyQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFrXZvsADjNs7J7Jh03jVdylVgTNMB8GA1UdIwQY MBaAFN0Vig2gMmbfFEyJp7bjWnYcSZj3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM1JXS0RhQXladDhVVEltbnR1TmFkaHhKbVBjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNS8wYjU1YWItYWNjOC00MWRhLTljODAt ZThmMjBhYWRkZTk5LzEvM1JXS0RhQXladDhVVEltbnR1TmFkaHhKbVBjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNS8wYjU1YWItYWNjOC00MWRhLTljODAtZThmMjBhYWRkZTk5 LzEvM1JXS0RhQXladDhVVEltbnR1TmFkaHhKbVBjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKEUfK6la OXzoPZ6yyYIYRumYFVWg0GyqUddD+nVD8MM2NiYbnzvzf0NbJ99oQeNV3ruLW0r2 op+NXdDnwSf/r9AlYLXD1VA/GHmb1b4CGmulVX0bzAB1g8HokBl2EL8wTNJ38Oh7 AP77xiikVFHxNvazRqKc8Et2nCwJ4UNmr4/I13iwryl9hkdk1y0kWVmdOObonY7y K1lsTK9d/NcLJy1qg5gRtIwFB+XIp0AncVWc4X2I21ZOmNuWoYp1oJvLUjdKZzh5 t4xZj0hJRMlBLDI2aL4G2pz61AnboahLVyFG/Pv+vhk9tSOoBTOr0torMPpU4nrj PVbJ01/C+/uEow== -----END CERTIFICATE-----Generated at Mon Jan 26 03:31:50 2026 by rpki-client