This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/85612a-de33-434b-8471-1801b544b9fe/1/m0FaAwWfspWkuWyc5erbWP6Y-oY.mft File: m0FaAwWfspWkuWyc5erbWP6Y-oY.mft (raw, json) Hash identifier: UDbtUzozQ1H+y6BWVW+cfsD0pMcIF0kkWzvI2S0jUsE= Subject key identifier: E9:1A:63:B1:A4:EB:E6:9F:49:0B:8D:AF:F3:4A:63:4F:CB:83:5F:53 Authority key identifier: 9B:41:5A:03:05:9F:B2:95:A4:B9:6C:9C:E5:EA:DB:58:FE:98:FA:86 Certificate issuer: /CN=9b415a03059fb295a4b96c9ce5eadb58fe98fa86 Certificate serial: 019BF687DF5F7B6854D6D711D631BB81F5A7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m0FaAwWfspWkuWyc5erbWP6Y-oY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/85612a-de33-434b-8471-1801b544b9fe/1/m0FaAwWfspWkuWyc5erbWP6Y-oY.mft Manifest number: 0A2C Signing time: Sun 25 Jan 2026 19:00:58 +0000 Manifest this update: Sun 25 Jan 2026 19:00:58 +0000 Manifest next update: Mon 26 Jan 2026 19:00:58 +0000 Files and hashes: 1: PyWCYQsc-RXqOD6ZcPJVeLZsTb0.roa (hash: So755h/YppAq4z9zJnxXyj3ozNgia1MYJ3MvAVJ9wDU=) 2: m0FaAwWfspWkuWyc5erbWP6Y-oY.crl (hash: RyUmSfoiOojObh48qJz12YLtLvv2ozEVgLzkNJz4++4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/85612a-de33-434b-8471-1801b544b9fe/1/m0FaAwWfspWkuWyc5erbWP6Y-oY.crl rsync://rpki.ripe.net/repository/DEFAULT/d7/85612a-de33-434b-8471-1801b544b9fe/1/m0FaAwWfspWkuWyc5erbWP6Y-oY.mft rsync://rpki.ripe.net/repository/DEFAULT/m0FaAwWfspWkuWyc5erbWP6Y-oY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f6:87:df:5f:7b:68:54:d6:d7:11:d6:31:bb:81:f5:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9b415a03059fb295a4b96c9ce5eadb58fe98fa86 Validity Not Before: Jan 25 19:00:58 2026 GMT Not After : Jan 26 19:00:58 2026 GMT Subject: CN=e91a63b1a4ebe69f490b8daff34a634fcb835f53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:81:8c:72:0b:65:e4:a0:dd:ac:27:79:ec:82: 32:86:4d:12:f5:a5:a6:ee:ab:1d:80:56:23:3b:41: fb:85:5e:ac:f7:dc:84:a3:2a:82:53:ab:49:54:a5: cb:b8:4f:bf:33:f2:20:9e:eb:81:d2:9b:57:1a:d1: 08:ed:60:94:ed:0f:de:18:43:4e:80:ee:18:e0:96: fe:de:c7:12:be:ed:bc:4c:18:a8:48:88:cd:dd:a5: 88:12:cf:9d:dc:88:1e:43:35:f3:4d:c0:69:b6:7a: 77:97:38:6d:b8:0a:15:d1:38:d8:a9:cb:4f:f4:7b: 53:90:89:1e:99:01:5b:8e:22:65:69:d0:25:5b:54: 56:1e:a5:85:79:5e:e5:82:a1:4a:d7:db:b4:4b:99: 1c:07:23:3c:b5:76:34:ab:0b:45:e2:7a:63:f3:6f: 83:4a:01:5f:71:56:04:90:58:38:10:ac:a6:37:1d: f7:53:b4:10:77:bb:e8:dd:ee:c6:d6:c3:7e:24:37: 9b:33:f0:e3:57:67:e0:a9:09:60:86:b9:8d:34:62: 8a:8e:fc:4d:13:9d:a3:60:68:d9:4d:aa:58:4c:92: dc:95:ac:f8:ea:c4:bd:ec:2f:e8:a1:ef:a0:fe:c4: cc:56:d6:a7:87:32:7a:61:bc:0e:65:ba:78:cf:98: 07:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:1A:63:B1:A4:EB:E6:9F:49:0B:8D:AF:F3:4A:63:4F:CB:83:5F:53 X509v3 Authority Key Identifier: keyid:9B:41:5A:03:05:9F:B2:95:A4:B9:6C:9C:E5:EA:DB:58:FE:98:FA:86 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m0FaAwWfspWkuWyc5erbWP6Y-oY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/85612a-de33-434b-8471-1801b544b9fe/1/m0FaAwWfspWkuWyc5erbWP6Y-oY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/85612a-de33-434b-8471-1801b544b9fe/1/m0FaAwWfspWkuWyc5erbWP6Y-oY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 83:a1:2a:8b:28:b6:5f:52:40:38:f3:c1:f6:1d:00:69:2e:68: a0:b9:e2:dc:9e:b9:ff:3d:98:36:b8:e4:8a:b8:e9:43:46:ee: 23:69:8c:65:5b:43:1a:62:8c:ab:0e:7e:77:dc:0d:e8:a0:40: 3b:40:b9:4c:e0:71:d4:17:e5:d2:12:4d:f7:50:9b:13:ca:27: fd:f3:31:bc:83:cc:d0:6a:fa:c8:ad:29:2f:81:81:d0:47:26: 21:62:24:98:b7:98:e0:d1:ca:5e:10:ff:33:47:d7:5e:ba:61: dd:0a:b4:ee:77:c5:1f:ae:76:f5:46:08:03:f8:c2:85:c4:36: 7c:10:d9:49:6a:bc:35:3b:ff:e8:ee:e8:d4:d5:6e:5e:81:ca: bf:91:6b:f0:1d:00:57:a6:3a:66:79:e8:82:2b:8b:de:27:10: 76:c7:2a:93:b4:94:6f:88:d3:46:8c:74:e6:46:84:c9:33:82: ea:9a:b9:63:d0:c0:b3:f8:8a:3b:f6:4a:20:e4:6a:57:b6:fa: 5a:49:2c:8f:82:8c:e0:9b:51:59:f5:6a:b8:f3:20:05:ff:9a: 3b:a3:10:f2:2b:1a:98:89:06:73:65:bf:b8:15:f5:88:0d:da: 85:c1:69:fa:13:c9:98:18:fe:43:fe:a0:06:b7:c3:11:61:5c: e1:33:7e:f5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv2h99fe2hU1tcR1jG7gfWnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDliNDE1YTAzMDU5ZmIyOTVhNGI5NmM5Y2U1ZWFkYjU4ZmU5 OGZhODYwHhcNMjYwMTI1MTkwMDU4WhcNMjYwMTI2MTkwMDU4WjAzMTEwLwYDVQQD EyhlOTFhNjNiMWE0ZWJlNjlmNDkwYjhkYWZmMzRhNjM0ZmNiODM1ZjUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwYGMcgtl5KDdrCd57IIyhk0S9aWm 7qsdgFYjO0H7hV6s99yEoyqCU6tJVKXLuE+/M/IgnuuB0ptXGtEI7WCU7Q/eGENO gO4Y4Jb+3scSvu28TBioSIjN3aWIEs+d3IgeQzXzTcBptnp3lzhtuAoV0TjYqctP 9HtTkIkemQFbjiJladAlW1RWHqWFeV7lgqFK19u0S5kcByM8tXY0qwtF4npj82+D SgFfcVYEkFg4EKymNx33U7QQd7vo3e7G1sN+JDebM/DjV2fgqQlghrmNNGKKjvxN E52jYGjZTapYTJLclaz46sS97C/ooe+g/sTMVtanhzJ6YbwOZbp4z5gHTwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOkaY7Gk6+afSQuNr/NKY0/Lg19TMB8GA1UdIwQY MBaAFJtBWgMFn7KVpLlsnOXq21j+mPqGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbTBGYUF3V2ZzcFdrdVd5YzVlcmJXUDZZLW9ZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy84NTYxMmEtZGUzMy00MzRiLTg0NzEt MTgwMWI1NDRiOWZlLzEvbTBGYUF3V2ZzcFdrdVd5YzVlcmJXUDZZLW9ZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNy84NTYxMmEtZGUzMy00MzRiLTg0NzEtMTgwMWI1NDRiOWZl LzEvbTBGYUF3V2ZzcFdrdVd5YzVlcmJXUDZZLW9ZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAg6Eqiyi2 X1JAOPPB9h0AaS5ooLni3J65/z2YNrjkirjpQ0buI2mMZVtDGmKMqw5+d9wN6KBA O0C5TOBx1Bfl0hJN91CbE8on/fMxvIPM0Gr6yK0pL4GB0EcmIWIkmLeY4NHKXhD/ M0fXXrph3Qq07nfFH6529UYIA/jChcQ2fBDZSWq8NTv/6O7o1NVuXoHKv5Fr8B0A V6Y6ZnnogiuL3icQdscqk7SUb4jTRox05kaEyTOC6pq5Y9DAs/iKO/ZKIORqV7b6 Wkksj4KM4JtRWfVquPMgBf+aO6MQ8isamIkGc2W/uBX1iA3ahcFp+hPJmBj+Q/6g BrfDEWFc4TN+9Q== -----END CERTIFICATE-----Generated at Sun Jan 25 21:10:29 2026 by rpki-client