This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/d27ad0-55c2-4904-a8c5-ace180ff9b19/1/lRibFY2NYBG6X5YlLTAmanDT4GY.mft File: lRibFY2NYBG6X5YlLTAmanDT4GY.mft (raw, json) Hash identifier: uof/Ij/JO/0uDmtIP8f3gMqZK+VcWq+upLu/Bu0rXi8= Subject key identifier: 30:BB:24:23:C5:E1:D2:8A:DA:CB:16:B8:44:B9:88:F8:2A:F8:73:21 Authority key identifier: 95:18:9B:15:8D:8D:60:11:BA:5F:96:25:2D:30:26:6A:70:D3:E0:66 Certificate issuer: /CN=95189b158d8d6011ba5f96252d30266a70d3e066 Certificate serial: 019BF650A831F0C7D30216BEDB860FA20140 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lRibFY2NYBG6X5YlLTAmanDT4GY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/d27ad0-55c2-4904-a8c5-ace180ff9b19/1/lRibFY2NYBG6X5YlLTAmanDT4GY.mft Manifest number: 17E9 Signing time: Sun 25 Jan 2026 18:00:39 +0000 Manifest this update: Sun 25 Jan 2026 18:00:39 +0000 Manifest next update: Mon 26 Jan 2026 18:00:39 +0000 Files and hashes: 1: RZP_EJvUPRy8N5V44f-ykW1wgg8.roa (hash: LUUspyCZgfPy/9PXdd/3xbh9XNVlKFlsig4SSBadF24=) 2: lRibFY2NYBG6X5YlLTAmanDT4GY.crl (hash: ULIfCobuOtEVHYAUhGe+JdxGDJNd8JaQGILaEono35M=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/d27ad0-55c2-4904-a8c5-ace180ff9b19/1/lRibFY2NYBG6X5YlLTAmanDT4GY.crl rsync://rpki.ripe.net/repository/DEFAULT/db/d27ad0-55c2-4904-a8c5-ace180ff9b19/1/lRibFY2NYBG6X5YlLTAmanDT4GY.mft rsync://rpki.ripe.net/repository/DEFAULT/lRibFY2NYBG6X5YlLTAmanDT4GY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f6:50:a8:31:f0:c7:d3:02:16:be:db:86:0f:a2:01:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=95189b158d8d6011ba5f96252d30266a70d3e066 Validity Not Before: Jan 25 18:00:39 2026 GMT Not After : Jan 26 18:00:39 2026 GMT Subject: CN=30bb2423c5e1d28adacb16b844b988f82af87321 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:20:18:71:d1:6b:ec:71:f7:95:86:94:46:7c: 3f:e4:10:a2:1c:39:6c:1c:17:1e:96:a7:eb:54:5a: e8:14:8a:2e:4a:e2:d2:7e:a7:eb:c5:aa:6b:06:2a: 96:7d:fd:4a:59:72:5a:f0:6f:75:4c:f6:bc:51:f3: 7f:07:e6:37:be:39:2f:a9:68:92:05:68:13:84:ae: dd:b2:19:bf:72:cb:92:c8:28:53:ca:8e:35:a9:a1: f2:2e:ac:82:e6:8f:40:99:bf:5b:af:f2:07:35:4e: ac:d3:59:b6:90:08:02:c1:24:c3:f5:dc:c9:90:a6: 60:51:59:37:42:8d:d5:7a:31:9f:73:17:5f:df:a6: 61:0b:61:c6:46:14:d5:54:b8:6a:a0:af:25:3b:c3: c7:67:9d:c2:55:ea:72:6e:79:7f:97:19:45:55:bb: 2b:93:4e:01:c4:45:1d:d7:ad:d2:47:aa:df:3d:87: 32:d2:0e:85:00:e8:99:2e:73:55:2c:bd:42:50:1e: 59:85:ae:23:02:4e:01:19:ca:3d:44:58:fc:2f:92: fc:1e:8d:9e:f4:44:06:39:90:da:6a:ea:89:56:70: 79:4c:ca:de:ee:e9:ae:43:8d:04:fb:78:de:c1:27: 05:ef:3c:6b:c6:ca:f3:e8:41:67:d9:a0:f0:4d:f2: 6c:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:BB:24:23:C5:E1:D2:8A:DA:CB:16:B8:44:B9:88:F8:2A:F8:73:21 X509v3 Authority Key Identifier: keyid:95:18:9B:15:8D:8D:60:11:BA:5F:96:25:2D:30:26:6A:70:D3:E0:66 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lRibFY2NYBG6X5YlLTAmanDT4GY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/d27ad0-55c2-4904-a8c5-ace180ff9b19/1/lRibFY2NYBG6X5YlLTAmanDT4GY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/db/d27ad0-55c2-4904-a8c5-ace180ff9b19/1/lRibFY2NYBG6X5YlLTAmanDT4GY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 80:92:fe:c9:6d:4f:bd:db:d1:4e:ee:52:dd:f3:7d:85:fb:23: f0:96:68:9c:47:35:ff:81:de:eb:9b:a5:d1:68:df:06:9f:cd: e7:17:f9:9b:7a:2e:0f:2f:83:e4:cb:d0:db:d9:ee:d7:fb:8c: e3:48:04:c7:c1:9b:d6:86:a7:26:22:44:36:6d:30:53:5d:92: 04:63:93:fd:88:27:aa:a0:1a:93:33:25:6c:a7:af:c0:ff:60: 88:78:54:ef:36:95:14:7e:74:36:21:c0:a5:e4:8a:c5:f5:9a: da:7b:6f:6f:1f:a3:56:eb:7a:87:ac:81:53:d5:99:9b:77:dd: 89:94:25:ac:ae:a5:ed:0c:b8:60:89:5d:a5:d5:ab:fb:ad:19: ff:41:4d:82:72:67:58:f6:22:a9:89:00:37:b0:38:fb:ee:54: a4:32:a0:43:27:91:e9:39:67:ab:2c:8a:f0:4e:3f:0d:5d:e8: d1:6a:8a:f6:ac:03:bd:a3:73:65:66:55:d8:41:af:fc:47:62: 67:8a:2e:b2:2b:e3:9c:22:6c:ca:c7:f0:b6:7b:0c:72:8b:5c: 9b:d9:8c:ac:42:f0:04:70:7c:6a:cd:68:84:e1:f2:dd:50:0f: 05:1f:83:03:69:31:ee:3d:96:3d:89:a7:4f:9f:35:94:bf:94: 14:88:0f:44 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv2UKgx8MfTAha+24YPogFAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk1MTg5YjE1OGQ4ZDYwMTFiYTVmOTYyNTJkMzAyNjZhNzBk M2UwNjYwHhcNMjYwMTI1MTgwMDM5WhcNMjYwMTI2MTgwMDM5WjAzMTEwLwYDVQQD EygzMGJiMjQyM2M1ZTFkMjhhZGFjYjE2Yjg0NGI5ODhmODJhZjg3MzIxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvSAYcdFr7HH3lYaURnw/5BCiHDls HBcelqfrVFroFIouSuLSfqfrxaprBiqWff1KWXJa8G91TPa8UfN/B+Y3vjkvqWiS BWgThK7dshm/csuSyChTyo41qaHyLqyC5o9Amb9br/IHNU6s01m2kAgCwSTD9dzJ kKZgUVk3Qo3VejGfcxdf36ZhC2HGRhTVVLhqoK8lO8PHZ53CVepybnl/lxlFVbsr k04BxEUd163SR6rfPYcy0g6FAOiZLnNVLL1CUB5Zha4jAk4BGco9RFj8L5L8Ho2e 9EQGOZDaauqJVnB5TMre7umuQ40E+3jewScF7zxrxsrz6EFn2aDwTfJsVQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDC7JCPF4dKK2ssWuES5iPgq+HMhMB8GA1UdIwQY MBaAFJUYmxWNjWARul+WJS0wJmpw0+BmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbFJpYkZZMk5ZQkc2WDVZbExUQW1hbkRUNEdZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi9kMjdhZDAtNTVjMi00OTA0LWE4YzUt YWNlMTgwZmY5YjE5LzEvbFJpYkZZMk5ZQkc2WDVZbExUQW1hbkRUNEdZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYi9kMjdhZDAtNTVjMi00OTA0LWE4YzUtYWNlMTgwZmY5YjE5 LzEvbFJpYkZZMk5ZQkc2WDVZbExUQW1hbkRUNEdZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgJL+yW1P vdvRTu5S3fN9hfsj8JZonEc1/4He65ul0WjfBp/N5xf5m3ouDy+D5MvQ29nu1/uM 40gEx8Gb1oanJiJENm0wU12SBGOT/YgnqqAakzMlbKevwP9giHhU7zaVFH50NiHA peSKxfWa2ntvbx+jVut6h6yBU9WZm3fdiZQlrK6l7Qy4YIldpdWr+60Z/0FNgnJn WPYiqYkAN7A4++5UpDKgQyeR6TlnqyyK8E4/DV3o0WqK9qwDvaNzZWZV2EGv/Edi Z4ousivjnCJsysfwtnsMcotcm9mMrELwBHB8as1ohOHy3VAPBR+DA2kx7j2WPYmn T581lL+UFIgPRA== -----END CERTIFICATE-----Generated at Sun Jan 25 21:11:47 2026 by rpki-client