This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/70658b-377a-4915-b1e8-6af215bff1ce/1/cub9InHd4QiG2X_xRwPlgaIEtl4.mft File: cub9InHd4QiG2X_xRwPlgaIEtl4.mft (raw, json) Hash identifier: JHJsO7FbeJ114VrDrLF6F3okAQgjllBu4wwKf9I6pVs= Subject key identifier: E3:8E:C8:CA:43:2A:1F:19:32:2A:33:5C:D8:E7:9A:D9:11:E0:F8:55 Authority key identifier: 72:E6:FD:22:71:DD:E1:08:86:D9:7F:F1:47:03:E5:81:A2:04:B6:5E Certificate issuer: /CN=72e6fd2271dde10886d97ff14703e581a204b65e Certificate serial: 019BF3F55A3B3BC0A1B69AA2363354701F49 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cub9InHd4QiG2X_xRwPlgaIEtl4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/70658b-377a-4915-b1e8-6af215bff1ce/1/cub9InHd4QiG2X_xRwPlgaIEtl4.mft Manifest number: 07BD Signing time: Sun 25 Jan 2026 07:01:41 +0000 Manifest this update: Sun 25 Jan 2026 07:01:41 +0000 Manifest next update: Mon 26 Jan 2026 07:01:41 +0000 Files and hashes: 1: aMBkxohgXCBHlVf4cqZehB-dZl8.roa (hash: 52GsVdhZ9s3mGch2GNyJmZC5fofL+PlpDWV6v2/k90g=) 2: cub9InHd4QiG2X_xRwPlgaIEtl4.crl (hash: iWyw/pqI+RnLJBVddQNUbrwjHvmg5bEoacHDQmvU9V4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/70658b-377a-4915-b1e8-6af215bff1ce/1/cub9InHd4QiG2X_xRwPlgaIEtl4.crl rsync://rpki.ripe.net/repository/DEFAULT/db/70658b-377a-4915-b1e8-6af215bff1ce/1/cub9InHd4QiG2X_xRwPlgaIEtl4.mft rsync://rpki.ripe.net/repository/DEFAULT/cub9InHd4QiG2X_xRwPlgaIEtl4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f3:f5:5a:3b:3b:c0:a1:b6:9a:a2:36:33:54:70:1f:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=72e6fd2271dde10886d97ff14703e581a204b65e Validity Not Before: Jan 25 07:01:41 2026 GMT Not After : Jan 26 07:01:41 2026 GMT Subject: CN=e38ec8ca432a1f19322a335cd8e79ad911e0f855 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:b0:3b:7a:54:74:5c:28:4d:7c:9a:6a:7c:1f: 68:61:67:29:c9:a7:43:0f:70:e1:2f:6f:76:44:b7: 63:51:8b:00:20:18:ac:aa:34:53:f1:7b:d7:2b:5e: a5:fa:e9:40:cc:78:d5:ca:be:fd:48:36:37:32:62: 78:a1:b9:5a:d9:50:a6:8b:44:b2:1b:34:ee:49:dd: 28:1e:6c:95:2b:be:45:da:15:5e:1b:40:97:c5:5c: e4:95:a6:16:c3:41:87:d7:b0:42:00:33:2a:53:60: bb:33:a3:da:2d:44:43:d2:e5:a0:c2:ae:8d:75:48: ef:f4:5b:96:d4:43:0a:37:4c:26:4b:3b:0c:72:db: 64:8c:c5:34:57:a2:da:57:fd:9d:2d:a7:07:7c:d0: 8d:9f:f6:20:b4:f8:73:54:19:c4:d1:d2:45:71:ee: 10:2e:d8:58:98:0c:51:cb:8c:6c:93:90:bf:5c:7b: e6:14:5d:77:01:8c:d1:75:bf:37:a3:c7:09:42:64: e1:ef:44:78:64:ce:d1:62:80:0f:d8:36:d6:ef:bc: ff:8e:0e:dc:d2:a2:e8:4b:e0:3a:dc:8d:55:2e:0c: 84:f2:ad:bc:65:1d:81:2d:45:65:a0:9f:ae:ce:bc: f7:4f:e2:45:fa:8c:ef:e3:99:da:cd:ed:73:9a:76: 43:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:8E:C8:CA:43:2A:1F:19:32:2A:33:5C:D8:E7:9A:D9:11:E0:F8:55 X509v3 Authority Key Identifier: keyid:72:E6:FD:22:71:DD:E1:08:86:D9:7F:F1:47:03:E5:81:A2:04:B6:5E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cub9InHd4QiG2X_xRwPlgaIEtl4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/70658b-377a-4915-b1e8-6af215bff1ce/1/cub9InHd4QiG2X_xRwPlgaIEtl4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/db/70658b-377a-4915-b1e8-6af215bff1ce/1/cub9InHd4QiG2X_xRwPlgaIEtl4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 40:10:63:cb:7e:c9:eb:fa:c1:5c:e9:62:6f:9b:2c:c1:ea:d4: ce:4b:ed:9d:f8:21:4a:a6:cb:68:41:40:b3:40:c4:e0:11:e3: 05:7c:a6:7e:ef:ce:38:52:46:95:ab:13:43:e9:60:fe:6d:43: 24:40:9b:fa:5a:33:21:51:3c:80:9f:8d:d6:f2:28:7a:c2:b5: 09:b2:cf:be:34:db:22:5d:63:84:16:08:d8:57:3f:7b:00:48: 74:cc:f7:63:35:3b:45:bb:80:f1:44:df:a4:48:01:04:d4:25: 49:de:71:c5:78:8b:8e:95:0b:63:35:de:b7:4c:cb:da:0c:a7: a3:d2:7c:9a:10:4d:2a:6a:6c:45:ee:42:4e:0d:22:b6:96:71: 17:dd:19:b1:9e:1f:7b:ea:6f:c3:61:85:4c:56:56:8a:ac:80: fb:7f:fe:62:11:63:23:ea:b8:d4:c8:c0:a2:1f:2f:b6:92:cc: fc:6f:c9:9e:89:a9:b2:eb:c7:25:24:89:eb:06:77:ac:c5:6f: f3:86:59:ec:33:d0:43:df:3f:af:a0:1c:e8:fe:a3:41:8f:84: 51:ab:a1:09:a5:0c:ca:3d:90:61:fe:1f:58:8c:3e:f7:bf:4b: f6:c1:b9:b9:d0:15:34:de:70:9f:68:8e:a0:f8:2d:70:69:3d: 0f:07:20:a3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZvz9Vo7O8ChtpqiNjNUcB9JMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcyZTZmZDIyNzFkZGUxMDg4NmQ5N2ZmMTQ3MDNlNTgxYTIw NGI2NWUwHhcNMjYwMTI1MDcwMTQxWhcNMjYwMTI2MDcwMTQxWjAzMTEwLwYDVQQD EyhlMzhlYzhjYTQzMmExZjE5MzIyYTMzNWNkOGU3OWFkOTExZTBmODU1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx7A7elR0XChNfJpqfB9oYWcpyadD D3DhL292RLdjUYsAIBisqjRT8XvXK16l+ulAzHjVyr79SDY3MmJ4obla2VCmi0Sy GzTuSd0oHmyVK75F2hVeG0CXxVzklaYWw0GH17BCADMqU2C7M6PaLURD0uWgwq6N dUjv9FuW1EMKN0wmSzsMcttkjMU0V6LaV/2dLacHfNCNn/YgtPhzVBnE0dJFce4Q LthYmAxRy4xsk5C/XHvmFF13AYzRdb83o8cJQmTh70R4ZM7RYoAP2DbW77z/jg7c 0qLoS+A63I1VLgyE8q28ZR2BLUVloJ+uzrz3T+JF+ozv45naze1zmnZD7wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOOOyMpDKh8ZMiozXNjnmtkR4PhVMB8GA1UdIwQY MBaAFHLm/SJx3eEIhtl/8UcD5YGiBLZeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY3ViOUluSGQ0UWlHMlhfeFJ3UGxnYUlFdGw0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi83MDY1OGItMzc3YS00OTE1LWIxZTgt NmFmMjE1YmZmMWNlLzEvY3ViOUluSGQ0UWlHMlhfeFJ3UGxnYUlFdGw0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYi83MDY1OGItMzc3YS00OTE1LWIxZTgtNmFmMjE1YmZmMWNl LzEvY3ViOUluSGQ0UWlHMlhfeFJ3UGxnYUlFdGw0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQBBjy37J 6/rBXOlib5sswerUzkvtnfghSqbLaEFAs0DE4BHjBXymfu/OOFJGlasTQ+lg/m1D JECb+lozIVE8gJ+N1vIoesK1CbLPvjTbIl1jhBYI2Fc/ewBIdMz3YzU7RbuA8UTf pEgBBNQlSd5xxXiLjpULYzXet0zL2gyno9J8mhBNKmpsRe5CTg0itpZxF90ZsZ4f e+pvw2GFTFZWiqyA+3/+YhFjI+q41MjAoh8vtpLM/G/JnompsuvHJSSJ6wZ3rMVv 84ZZ7DPQQ98/r6Ac6P6jQY+EUauhCaUMyj2QYf4fWIw+979L9sG5udAVNN5wn2iO oPgtcGk9Dwcgow== -----END CERTIFICATE-----Generated at Sun Jan 25 16:24:46 2026 by rpki-client