This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/b7d875-b12c-4ed8-b80f-41487f4d4171/1/32GikiI62a68itgsKlZHX72XqDQ.mft File: 32GikiI62a68itgsKlZHX72XqDQ.mft (raw, json) Hash identifier: 0Q66+YaUEqVL1jE8PNoH3+bf0mm44nQ2OeV+p2j+QCg= Subject key identifier: FD:B6:7A:12:A2:9A:93:85:4E:33:29:95:00:9B:25:F1:2E:71:4A:6E Authority key identifier: DF:61:A2:92:22:3A:D9:AE:BC:8A:D8:2C:2A:56:47:5F:BD:97:A8:34 Certificate issuer: /CN=df61a292223ad9aebc8ad82c2a56475fbd97a834 Certificate serial: 019BF65186BF51AAAAB2A8127A62F9B89E72 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/32GikiI62a68itgsKlZHX72XqDQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/b7d875-b12c-4ed8-b80f-41487f4d4171/1/32GikiI62a68itgsKlZHX72XqDQ.mft Manifest number: 0E97 Signing time: Sun 25 Jan 2026 18:01:36 +0000 Manifest this update: Sun 25 Jan 2026 18:01:36 +0000 Manifest next update: Mon 26 Jan 2026 18:01:36 +0000 Files and hashes: 1: 32GikiI62a68itgsKlZHX72XqDQ.crl (hash: P1wQKHL8DyS7r3wV5ZES9OWEb3F0k+9GnyYVItZfbWo=) 2: 3N8RjBOaHqysfsXcuS4moMiqHcA.roa (hash: iQaQoggeO3tLMHb/V/COJC4hr6BU8lu4S0DICLg++wE=) 3: QjEkoZ53NxBeCFxk_AcoQWsSsbc.roa (hash: F5UhzU9AKBT9nluGCkFBzLOXoDePYCyzrIATvKRbYOM=) 4: W_FOHMjyvQTaAri5A_zDlx2DY2k.roa (hash: njRnMCxu5gn2zsVJDrc4Nj/3Yt4VdpnpXJ0wh2X6tGk=) 5: fdth4-LheaAtkNOEJz6pHobfl_k.roa (hash: rTpg5aqyYW2RH+xhrSVpQRy6U3wJBueXqcjg7bGUFhI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/b7d875-b12c-4ed8-b80f-41487f4d4171/1/32GikiI62a68itgsKlZHX72XqDQ.crl rsync://rpki.ripe.net/repository/DEFAULT/d5/b7d875-b12c-4ed8-b80f-41487f4d4171/1/32GikiI62a68itgsKlZHX72XqDQ.mft rsync://rpki.ripe.net/repository/DEFAULT/32GikiI62a68itgsKlZHX72XqDQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f6:51:86:bf:51:aa:aa:b2:a8:12:7a:62:f9:b8:9e:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df61a292223ad9aebc8ad82c2a56475fbd97a834 Validity Not Before: Jan 25 18:01:36 2026 GMT Not After : Jan 26 18:01:36 2026 GMT Subject: CN=fdb67a12a29a93854e332995009b25f12e714a6e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:41:3e:13:6e:3d:ea:fe:ac:fb:c9:79:1b:9a: b0:eb:33:50:9f:ca:e0:24:9c:da:31:09:d9:9f:34: f4:0b:f4:2c:ee:c8:25:81:b9:38:39:36:f2:c7:3e: cf:10:36:35:3f:af:5a:09:11:b3:7e:d7:10:06:c7: 8a:77:24:09:8c:e6:f4:e6:9d:10:8e:39:61:88:9c: 6e:18:a0:d8:5a:ea:6f:79:2d:e2:84:11:30:ad:ba: 05:66:6f:a1:a3:c2:bc:5f:b9:37:96:dd:fb:dd:e2: d9:45:90:de:a1:6d:35:ca:bc:3f:c7:f9:13:25:cb: 64:46:cc:a4:a4:ea:0f:51:0a:50:4f:91:c8:46:0f: 49:6a:3b:b1:50:99:60:ba:c6:97:fd:c8:9a:63:bf: b9:33:bd:4f:03:4b:56:86:0a:53:4d:05:31:f7:10: 67:d0:e1:da:b5:fc:57:1b:04:c2:cf:f1:cb:33:44: 11:52:99:21:c0:dd:d1:f1:fa:bc:9e:4a:c9:e3:88: 04:f1:39:57:17:b6:d3:54:dc:77:ff:f9:ae:3f:06: ed:2c:ad:54:d6:83:2b:27:9c:06:a2:4a:fb:1e:de: 3b:e2:a5:ca:09:7b:51:96:e5:fa:78:45:d6:85:3f: fa:d3:38:02:40:4e:6c:f2:6e:3a:56:6d:89:4e:f7: 21:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:B6:7A:12:A2:9A:93:85:4E:33:29:95:00:9B:25:F1:2E:71:4A:6E X509v3 Authority Key Identifier: keyid:DF:61:A2:92:22:3A:D9:AE:BC:8A:D8:2C:2A:56:47:5F:BD:97:A8:34 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/32GikiI62a68itgsKlZHX72XqDQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/b7d875-b12c-4ed8-b80f-41487f4d4171/1/32GikiI62a68itgsKlZHX72XqDQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/b7d875-b12c-4ed8-b80f-41487f4d4171/1/32GikiI62a68itgsKlZHX72XqDQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 68:2c:cb:04:0f:b3:54:8b:5c:fc:1f:2e:61:2f:24:69:d6:39: 59:6b:83:48:b2:7e:34:8a:9e:6e:5f:f7:af:f6:9f:79:43:86: 44:c6:e2:f2:88:eb:18:fd:9f:24:03:2c:eb:96:76:2d:62:5a: 4a:8a:1e:f5:5b:cc:96:76:6c:4b:d6:4b:42:52:b9:73:49:e1: 2e:8a:57:e0:29:d5:c3:a5:6e:be:64:b1:9e:00:f3:4c:11:6c: 6d:81:4c:7e:6d:07:24:9f:a7:d9:15:6f:92:24:ab:06:fb:24: 49:aa:4e:16:44:8e:c6:e0:55:16:fd:1b:b4:8c:38:d7:1f:60: 8f:32:4a:ad:7c:d4:dd:ca:e2:c5:ce:d8:bf:16:4c:a4:8c:38: f9:a3:b9:30:fb:a3:47:e8:6b:22:3d:a6:4a:72:87:ae:4c:6f: 96:e1:07:af:e8:b0:63:a8:81:48:b8:fd:1e:de:8a:67:20:e1: 5e:70:77:25:3c:db:88:84:74:9e:e4:a7:42:32:99:98:48:25: 38:2b:fb:48:6b:d2:6c:e4:19:ec:18:a5:8a:e4:e5:2d:e4:3f: 58:ed:6b:1a:41:5c:cb:63:a7:46:90:06:f1:f5:cb:90:f1:4e: e5:8b:ff:b0:54:04:40:79:0e:fa:cd:bb:d5:a3:16:d3:28:e1: 6e:e1:cd:72 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv2UYa/UaqqsqgSemL5uJ5yMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRmNjFhMjkyMjIzYWQ5YWViYzhhZDgyYzJhNTY0NzVmYmQ5 N2E4MzQwHhcNMjYwMTI1MTgwMTM2WhcNMjYwMTI2MTgwMTM2WjAzMTEwLwYDVQQD EyhmZGI2N2ExMmEyOWE5Mzg1NGUzMzI5OTUwMDliMjVmMTJlNzE0YTZlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1EE+E2496v6s+8l5G5qw6zNQn8rg JJzaMQnZnzT0C/Qs7sglgbk4OTbyxz7PEDY1P69aCRGzftcQBseKdyQJjOb05p0Q jjlhiJxuGKDYWupveS3ihBEwrboFZm+ho8K8X7k3lt373eLZRZDeoW01yrw/x/kT JctkRsykpOoPUQpQT5HIRg9JajuxUJlgusaX/ciaY7+5M71PA0tWhgpTTQUx9xBn 0OHatfxXGwTCz/HLM0QRUpkhwN3R8fq8nkrJ44gE8TlXF7bTVNx3//muPwbtLK1U 1oMrJ5wGokr7Ht474qXKCXtRluX6eEXWhT/60zgCQE5s8m46Vm2JTvchdQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFP22ehKimpOFTjMplQCbJfEucUpuMB8GA1UdIwQY MBaAFN9hopIiOtmuvIrYLCpWR1+9l6g0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMzJHaWtpSTYyYTY4aXRnc0tsWkhYNzJYcURRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNS9iN2Q4NzUtYjEyYy00ZWQ4LWI4MGYt NDE0ODdmNGQ0MTcxLzEvMzJHaWtpSTYyYTY4aXRnc0tsWkhYNzJYcURRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNS9iN2Q4NzUtYjEyYy00ZWQ4LWI4MGYtNDE0ODdmNGQ0MTcx LzEvMzJHaWtpSTYyYTY4aXRnc0tsWkhYNzJYcURRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaCzLBA+z VItc/B8uYS8kadY5WWuDSLJ+NIqebl/3r/afeUOGRMbi8ojrGP2fJAMs65Z2LWJa Sooe9VvMlnZsS9ZLQlK5c0nhLopX4CnVw6VuvmSxngDzTBFsbYFMfm0HJJ+n2RVv kiSrBvskSapOFkSOxuBVFv0btIw41x9gjzJKrXzU3crixc7YvxZMpIw4+aO5MPuj R+hrIj2mSnKHrkxvluEHr+iwY6iBSLj9Ht6KZyDhXnB3JTzbiIR0nuSnQjKZmEgl OCv7SGvSbOQZ7BiliuTlLeQ/WO1rGkFcy2OnRpAG8fXLkPFO5Yv/sFQEQHkO+s27 1aMW0yjhbuHNcg== -----END CERTIFICATE-----Generated at Mon Jan 26 00:19:23 2026 by rpki-client