This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/f07fbc-4c32-4d87-a429-86ea19d29163/1/hdycVeFZfohWTa9WflpGZZeMe4U.mft File: hdycVeFZfohWTa9WflpGZZeMe4U.mft (raw, json) Hash identifier: YqKmmP/CgJTPhhk7gfEfdFOQVe8nv/kbKJ48Xm/srCU= Subject key identifier: E2:2F:3D:C0:A3:C3:6D:46:29:36:C3:57:55:CB:BB:31:D7:D4:33:5E Authority key identifier: 85:DC:9C:55:E1:59:7E:88:56:4D:AF:56:7E:5A:46:65:97:8C:7B:85 Certificate issuer: /CN=85dc9c55e1597e88564daf567e5a4665978c7b85 Certificate serial: 019BF5078444C3E1349D7D1CA8B57E5531D5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hdycVeFZfohWTa9WflpGZZeMe4U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/f07fbc-4c32-4d87-a429-86ea19d29163/1/hdycVeFZfohWTa9WflpGZZeMe4U.mft Manifest number: 122A Signing time: Sun 25 Jan 2026 12:01:09 +0000 Manifest this update: Sun 25 Jan 2026 12:01:09 +0000 Manifest next update: Mon 26 Jan 2026 12:01:09 +0000 Files and hashes: 1: 41gdFH-JudL678u_D6BB_y7EfU0.roa (hash: VnQDTpZib3x3twc60ulDPL39Qe1IesXf9+CLXJ4WNxw=) 2: Mpj_3kOIb_YBREm4CDGbZoT8R1s.roa (hash: WSgFrdqhjjGW3gBXPEw9RNID+Xo3I/t20meQJF7GgZg=) 3: X0C-jW-JvrYRehOUZc1q8qR_Alg.roa (hash: kkuwe92elfxQBb6MWA1wN1ame7fs+u6hfUmN0ZMLiZQ=) 4: a-1eulbURZwYdTXjQHmSQrhkepg.roa (hash: dU6/8b7jh8wXrhRwwYJ+BZWPnCRt/iCI6b/zuZGMbbY=) 5: bR0NHkHbblmEtwb2_nY_6Q1NAmE.roa (hash: KrJc5AmVNKuLrZUthurXLuq1KgVncKQfKVwT8ndsj4c=) 6: hdycVeFZfohWTa9WflpGZZeMe4U.crl (hash: AQTU8xsMmb44c8Co1s5OQ4ARx8TeLXroy6uRQAUV0/M=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/f07fbc-4c32-4d87-a429-86ea19d29163/1/hdycVeFZfohWTa9WflpGZZeMe4U.crl rsync://rpki.ripe.net/repository/DEFAULT/df/f07fbc-4c32-4d87-a429-86ea19d29163/1/hdycVeFZfohWTa9WflpGZZeMe4U.mft rsync://rpki.ripe.net/repository/DEFAULT/hdycVeFZfohWTa9WflpGZZeMe4U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f5:07:84:44:c3:e1:34:9d:7d:1c:a8:b5:7e:55:31:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85dc9c55e1597e88564daf567e5a4665978c7b85 Validity Not Before: Jan 25 12:01:09 2026 GMT Not After : Jan 26 12:01:09 2026 GMT Subject: CN=e22f3dc0a3c36d462936c35755cbbb31d7d4335e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:87:f7:76:e3:67:bf:0d:e4:86:80:09:f2:23: 4c:08:03:2d:cb:fa:3d:37:7c:04:0d:4e:d9:28:e9: e9:22:0c:9b:8d:cb:49:14:2a:37:44:09:bb:8c:e1: 06:f9:eb:20:df:29:b9:26:02:c7:ac:c0:11:41:b3: e4:27:c2:b5:a9:95:25:f8:57:71:19:df:c3:c6:5d: 15:f0:90:e1:ea:e1:08:d2:1e:24:34:75:51:37:f7: c5:62:43:57:7e:6d:41:36:91:b2:96:15:7a:e9:05: d5:1e:11:e0:cf:87:62:00:12:a6:92:ff:f9:76:17: 46:21:f4:bc:c0:fb:c1:5f:34:18:45:5e:a7:8e:06: dc:e1:88:52:e8:c5:51:ce:bc:3d:60:85:03:14:8b: bd:b6:b3:b9:f9:5e:ed:16:d4:97:d9:c6:e1:2e:8c: 16:a2:ed:f6:6d:47:87:c3:68:ea:80:fb:ff:92:b1: 79:a9:02:f8:1a:b1:6f:16:dc:5a:47:e3:18:8c:99: ba:0c:f2:db:3b:58:02:4e:ee:99:f3:81:c9:67:12: e9:54:b2:2b:2d:25:5d:cd:23:9c:2f:20:1b:be:99: 7b:9d:0e:5a:de:29:59:01:6f:56:57:c3:15:ff:23: 58:65:1e:ef:6e:82:b2:b9:57:05:39:6a:35:90:bc: 99:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:2F:3D:C0:A3:C3:6D:46:29:36:C3:57:55:CB:BB:31:D7:D4:33:5E X509v3 Authority Key Identifier: keyid:85:DC:9C:55:E1:59:7E:88:56:4D:AF:56:7E:5A:46:65:97:8C:7B:85 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hdycVeFZfohWTa9WflpGZZeMe4U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/f07fbc-4c32-4d87-a429-86ea19d29163/1/hdycVeFZfohWTa9WflpGZZeMe4U.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/df/f07fbc-4c32-4d87-a429-86ea19d29163/1/hdycVeFZfohWTa9WflpGZZeMe4U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 02:0c:44:b0:88:d9:73:cd:2a:17:bc:83:f9:e1:cc:48:0b:5b: 19:b9:3f:e9:d8:44:43:79:a3:74:1f:2f:df:e8:b2:ae:b6:50: 9a:74:5e:ed:08:94:2c:0c:a0:78:e7:61:07:81:15:87:c5:5b: ce:ef:d0:c5:48:8f:36:ce:48:4b:24:9a:28:1f:61:93:5e:07: 8b:aa:1d:68:31:e4:9c:3f:a8:02:c6:d8:4b:09:48:c4:d0:b5: e9:74:ba:b9:f7:60:4f:db:e7:0e:56:e5:0e:ca:fc:56:bb:f9: 00:09:21:73:a5:31:cb:26:25:0e:d7:6d:e4:6f:01:8c:29:99: e9:56:4e:0b:e4:7f:f9:81:b0:a8:dc:9f:0f:73:ae:52:bb:82: 6d:69:83:5e:61:9b:42:b0:f7:37:34:1e:89:9d:ea:00:9d:84: 2b:e2:0b:b1:84:be:0d:ff:c9:b8:0a:f2:36:5d:b1:c8:b3:2e: 4b:9a:47:eb:47:ac:65:3e:57:67:2c:10:b4:f7:09:fd:7f:75: 19:69:0d:70:57:c7:06:d4:c9:b4:4b:af:8e:03:d0:b6:ca:b6: 39:6f:6b:11:6f:82:ff:6b:0a:a4:bb:12:30:85:88:68:93:42: de:c1:a9:e2:bc:89:61:86:1d:22:39:ee:9f:ec:1d:d8:7c:2f: 62:aa:74:46 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv1B4REw+E0nX0cqLV+VTHVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg1ZGM5YzU1ZTE1OTdlODg1NjRkYWY1NjdlNWE0NjY1OTc4 YzdiODUwHhcNMjYwMTI1MTIwMTA5WhcNMjYwMTI2MTIwMTA5WjAzMTEwLwYDVQQD EyhlMjJmM2RjMGEzYzM2ZDQ2MjkzNmMzNTc1NWNiYmIzMWQ3ZDQzMzVlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuof3duNnvw3khoAJ8iNMCAMty/o9 N3wEDU7ZKOnpIgybjctJFCo3RAm7jOEG+esg3ym5JgLHrMARQbPkJ8K1qZUl+Fdx Gd/Dxl0V8JDh6uEI0h4kNHVRN/fFYkNXfm1BNpGylhV66QXVHhHgz4diABKmkv/5 dhdGIfS8wPvBXzQYRV6njgbc4YhS6MVRzrw9YIUDFIu9trO5+V7tFtSX2cbhLowW ou32bUeHw2jqgPv/krF5qQL4GrFvFtxaR+MYjJm6DPLbO1gCTu6Z84HJZxLpVLIr LSVdzSOcLyAbvpl7nQ5a3ilZAW9WV8MV/yNYZR7vboKyuVcFOWo1kLyZkQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOIvPcCjw21GKTbDV1XLuzHX1DNeMB8GA1UdIwQY MBaAFIXcnFXhWX6IVk2vVn5aRmWXjHuFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaGR5Y1ZlRlpmb2hXVGE5V2ZscEdaWmVNZTRVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi9mMDdmYmMtNGMzMi00ZDg3LWE0Mjkt ODZlYTE5ZDI5MTYzLzEvaGR5Y1ZlRlpmb2hXVGE5V2ZscEdaWmVNZTRVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZi9mMDdmYmMtNGMzMi00ZDg3LWE0MjktODZlYTE5ZDI5MTYz LzEvaGR5Y1ZlRlpmb2hXVGE5V2ZscEdaWmVNZTRVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAgxEsIjZ c80qF7yD+eHMSAtbGbk/6dhEQ3mjdB8v3+iyrrZQmnRe7QiULAygeOdhB4EVh8Vb zu/QxUiPNs5ISySaKB9hk14Hi6odaDHknD+oAsbYSwlIxNC16XS6ufdgT9vnDlbl Dsr8Vrv5AAkhc6UxyyYlDtdt5G8BjCmZ6VZOC+R/+YGwqNyfD3OuUruCbWmDXmGb QrD3NzQeiZ3qAJ2EK+ILsYS+Df/JuAryNl2xyLMuS5pH60esZT5XZywQtPcJ/X91 GWkNcFfHBtTJtEuvjgPQtsq2OW9rEW+C/2sKpLsSMIWIaJNC3sGp4ryJYYYdIjnu n+wd2HwvYqp0Rg== -----END CERTIFICATE-----Generated at Sun Jan 25 16:19:33 2026 by rpki-client