This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/85612a-de33-434b-8471-1801b544b9fe/1/m0FaAwWfspWkuWyc5erbWP6Y-oY.mft File: m0FaAwWfspWkuWyc5erbWP6Y-oY.mft (raw, json) Hash identifier: ZEJWgD9S4AbSQTnBZDL6YGgGpbYTm6VTZpEt/FCyfEo= Subject key identifier: 24:A7:24:17:FD:53:19:12:98:89:FA:49:24:48:09:AE:AB:C4:56:DA Authority key identifier: 9B:41:5A:03:05:9F:B2:95:A4:B9:6C:9C:E5:EA:DB:58:FE:98:FA:86 Certificate issuer: /CN=9b415a03059fb295a4b96c9ce5eadb58fe98fa86 Certificate serial: 019BF499C391146359D82BBC340D9FB5175A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m0FaAwWfspWkuWyc5erbWP6Y-oY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/85612a-de33-434b-8471-1801b544b9fe/1/m0FaAwWfspWkuWyc5erbWP6Y-oY.mft Manifest number: 0A2B Signing time: Sun 25 Jan 2026 10:01:16 +0000 Manifest this update: Sun 25 Jan 2026 10:01:16 +0000 Manifest next update: Mon 26 Jan 2026 10:01:16 +0000 Files and hashes: 1: PyWCYQsc-RXqOD6ZcPJVeLZsTb0.roa (hash: So755h/YppAq4z9zJnxXyj3ozNgia1MYJ3MvAVJ9wDU=) 2: m0FaAwWfspWkuWyc5erbWP6Y-oY.crl (hash: eSMYErjS/n5v2Frnzc27CCK6cJhYRj2pvt7NkVsBI/o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/85612a-de33-434b-8471-1801b544b9fe/1/m0FaAwWfspWkuWyc5erbWP6Y-oY.crl rsync://rpki.ripe.net/repository/DEFAULT/d7/85612a-de33-434b-8471-1801b544b9fe/1/m0FaAwWfspWkuWyc5erbWP6Y-oY.mft rsync://rpki.ripe.net/repository/DEFAULT/m0FaAwWfspWkuWyc5erbWP6Y-oY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f4:99:c3:91:14:63:59:d8:2b:bc:34:0d:9f:b5:17:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9b415a03059fb295a4b96c9ce5eadb58fe98fa86 Validity Not Before: Jan 25 10:01:16 2026 GMT Not After : Jan 26 10:01:16 2026 GMT Subject: CN=24a72417fd5319129889fa49244809aeabc456da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:8f:ce:43:8e:5f:fd:5e:83:2e:20:15:d4:11: 83:ad:1f:09:b7:99:1e:73:92:78:6c:c2:25:e2:9f: b6:10:05:94:fe:32:db:75:3f:9c:65:65:b8:3f:d2: c1:b6:fe:a3:3b:05:03:13:47:78:55:f7:14:58:97: 91:6a:41:f6:40:cc:9b:1e:0b:fd:00:bb:68:80:74: 73:11:69:f2:f6:8f:27:bd:0d:ac:91:0e:17:19:0a: 9c:c2:aa:9d:dd:0c:07:63:90:2c:0a:a2:68:4c:48: 85:f7:70:87:d2:f0:9c:d7:2a:95:fb:ce:77:a5:99: 52:48:2e:82:20:65:c0:6d:7b:76:89:eb:e1:0c:4e: 40:43:43:9f:3d:4e:e2:e4:d7:10:52:88:fa:d0:7d: dd:56:42:6f:9c:51:14:e3:bf:d9:17:7d:7a:88:b5: 93:04:fd:40:55:91:4e:2a:c3:5a:a5:39:c5:4c:0e: 9d:55:46:74:89:1b:c5:52:ad:3a:6a:2a:40:10:d7: c2:3c:8d:49:32:01:2e:ba:a6:97:18:60:07:0e:98: 7c:6d:1f:d1:50:d6:45:8c:1b:dd:10:9a:4d:02:ff: d6:b0:92:be:5b:99:60:af:e4:bf:33:da:7d:ec:63: f3:e3:6d:10:76:4c:34:f0:52:c7:e6:8f:1d:ae:68: ce:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:A7:24:17:FD:53:19:12:98:89:FA:49:24:48:09:AE:AB:C4:56:DA X509v3 Authority Key Identifier: keyid:9B:41:5A:03:05:9F:B2:95:A4:B9:6C:9C:E5:EA:DB:58:FE:98:FA:86 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m0FaAwWfspWkuWyc5erbWP6Y-oY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/85612a-de33-434b-8471-1801b544b9fe/1/m0FaAwWfspWkuWyc5erbWP6Y-oY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/85612a-de33-434b-8471-1801b544b9fe/1/m0FaAwWfspWkuWyc5erbWP6Y-oY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 62:14:47:f5:45:76:67:eb:61:c8:d5:28:83:18:a6:45:c3:0a: 98:48:00:03:17:ac:98:b0:84:dc:95:ff:56:38:52:10:4b:fe: fe:34:5f:c6:89:bd:61:55:71:8d:30:ce:51:d9:e0:b3:d9:31: 78:f5:1a:e4:6e:6a:9c:07:bb:1e:e5:c2:80:8e:bb:50:97:e2: a7:91:f4:a5:eb:0b:83:d7:59:46:2c:83:ee:cb:85:31:71:35: f8:8d:ea:a7:78:0a:a2:d5:34:8a:75:c5:9e:d6:f0:ba:cd:ce: 4d:8a:8f:f0:4b:ec:1b:87:c9:8e:a8:90:ee:c3:0a:f1:fb:9c: 3c:ff:ca:69:57:66:49:52:97:ff:2d:22:b9:9b:76:1a:bc:56: cd:d9:90:1b:95:da:f1:3f:c7:61:45:10:5f:c0:b3:c4:75:10: 28:e3:3c:ab:49:9c:21:bd:96:e4:d6:f2:bf:52:18:92:d6:61: 5c:d9:1d:2e:2e:3d:22:ce:42:16:20:26:1d:b8:db:56:6b:e6: e5:b7:5c:0e:43:58:0d:a3:4f:b3:da:8e:62:d5:69:d3:35:2b: 2a:ad:ff:1f:97:2a:d0:77:06:4c:4d:5b:93:a2:de:1c:25:b1: 1d:8a:4c:00:b4:96:c4:e7:d9:60:87:c1:ac:97:63:88:30:ab: be:51:e0:27 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv0mcORFGNZ2Cu8NA2ftRdaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDliNDE1YTAzMDU5ZmIyOTVhNGI5NmM5Y2U1ZWFkYjU4ZmU5 OGZhODYwHhcNMjYwMTI1MTAwMTE2WhcNMjYwMTI2MTAwMTE2WjAzMTEwLwYDVQQD EygyNGE3MjQxN2ZkNTMxOTEyOTg4OWZhNDkyNDQ4MDlhZWFiYzQ1NmRhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1I/OQ45f/V6DLiAV1BGDrR8Jt5ke c5J4bMIl4p+2EAWU/jLbdT+cZWW4P9LBtv6jOwUDE0d4VfcUWJeRakH2QMybHgv9 ALtogHRzEWny9o8nvQ2skQ4XGQqcwqqd3QwHY5AsCqJoTEiF93CH0vCc1yqV+853 pZlSSC6CIGXAbXt2ievhDE5AQ0OfPU7i5NcQUoj60H3dVkJvnFEU47/ZF316iLWT BP1AVZFOKsNapTnFTA6dVUZ0iRvFUq06aipAENfCPI1JMgEuuqaXGGAHDph8bR/R UNZFjBvdEJpNAv/WsJK+W5lgr+S/M9p97GPz420Qdkw08FLH5o8drmjOcwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCSnJBf9UxkSmIn6SSRICa6rxFbaMB8GA1UdIwQY MBaAFJtBWgMFn7KVpLlsnOXq21j+mPqGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbTBGYUF3V2ZzcFdrdVd5YzVlcmJXUDZZLW9ZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy84NTYxMmEtZGUzMy00MzRiLTg0NzEt MTgwMWI1NDRiOWZlLzEvbTBGYUF3V2ZzcFdrdVd5YzVlcmJXUDZZLW9ZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNy84NTYxMmEtZGUzMy00MzRiLTg0NzEtMTgwMWI1NDRiOWZl LzEvbTBGYUF3V2ZzcFdrdVd5YzVlcmJXUDZZLW9ZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYhRH9UV2 Z+thyNUogximRcMKmEgAAxesmLCE3JX/VjhSEEv+/jRfxom9YVVxjTDOUdngs9kx ePUa5G5qnAe7HuXCgI67UJfip5H0pesLg9dZRiyD7suFMXE1+I3qp3gKotU0inXF ntbwus3OTYqP8EvsG4fJjqiQ7sMK8fucPP/KaVdmSVKX/y0iuZt2GrxWzdmQG5Xa 8T/HYUUQX8CzxHUQKOM8q0mcIb2W5Nbyv1IYktZhXNkdLi49Is5CFiAmHbjbVmvm 5bdcDkNYDaNPs9qOYtVp0zUrKq3/H5cq0HcGTE1bk6LeHCWxHYpMALSWxOfZYIfB rJdjiDCrvlHgJw== -----END CERTIFICATE-----Generated at Sun Jan 25 16:45:14 2026 by rpki-client