This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/095ac9-c3fa-465d-831d-47c950336e2f/1/hdBeAX4zPRezrrjF1JQ76NxnwIQ.mft File: hdBeAX4zPRezrrjF1JQ76NxnwIQ.mft (raw, json) Hash identifier: cdfMTdWkCJTNQxVkcN4Yhey3DDNSmwHW0gHsKzxuJ2s= Subject key identifier: FD:2E:8E:4D:41:E5:F3:E3:21:56:B4:D0:47:90:D6:0D:2F:97:CE:1D Authority key identifier: 85:D0:5E:01:7E:33:3D:17:B3:AE:B8:C5:D4:94:3B:E8:DC:67:C0:84 Certificate issuer: /CN=85d05e017e333d17b3aeb8c5d4943be8dc67c084 Certificate serial: 019BF763D4CE716807BBC8F8D74AC3462FCD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hdBeAX4zPRezrrjF1JQ76NxnwIQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/095ac9-c3fa-465d-831d-47c950336e2f/1/hdBeAX4zPRezrrjF1JQ76NxnwIQ.mft Manifest number: 0F0F Signing time: Sun 25 Jan 2026 23:01:13 +0000 Manifest this update: Sun 25 Jan 2026 23:01:13 +0000 Manifest next update: Mon 26 Jan 2026 23:01:13 +0000 Files and hashes: 1: Mm3cGWuzg7gyTt25MrA_Cb8WYyU.roa (hash: QSO9mmv4K2NyhZinj8I/GzIYb/RrAcM6Y8mv7blhZ40=) 2: hdBeAX4zPRezrrjF1JQ76NxnwIQ.crl (hash: yEJ0jeYrWi0Oee+kM28Dk+ROk1FPWr0AKlSDtv0IJbM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/095ac9-c3fa-465d-831d-47c950336e2f/1/hdBeAX4zPRezrrjF1JQ76NxnwIQ.crl rsync://rpki.ripe.net/repository/DEFAULT/e5/095ac9-c3fa-465d-831d-47c950336e2f/1/hdBeAX4zPRezrrjF1JQ76NxnwIQ.mft rsync://rpki.ripe.net/repository/DEFAULT/hdBeAX4zPRezrrjF1JQ76NxnwIQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 23:01:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f7:63:d4:ce:71:68:07:bb:c8:f8:d7:4a:c3:46:2f:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85d05e017e333d17b3aeb8c5d4943be8dc67c084 Validity Not Before: Jan 25 23:01:13 2026 GMT Not After : Jan 26 23:01:13 2026 GMT Subject: CN=fd2e8e4d41e5f3e32156b4d04790d60d2f97ce1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:06:51:d0:63:66:5c:a2:38:a1:9c:62:a8:b5: 71:5b:b2:3e:82:c9:15:de:8a:7c:72:9e:cf:51:98: 4d:7d:d3:ef:53:75:2e:63:d4:5a:3f:c9:ba:9d:0c: 1d:12:fd:ea:75:45:8e:e3:47:8b:b6:2a:77:9b:8b: 47:c0:1c:27:4c:60:6e:37:3f:5f:b0:d2:cf:c9:e8: b0:f0:f0:5f:4a:fb:e6:61:8c:ea:b2:16:98:36:6b: 16:72:da:c2:16:6a:a8:fd:ba:02:0d:24:4c:f0:f2: 2a:49:e1:8f:72:9b:36:92:78:b5:d7:5f:f8:30:01: e1:ce:40:61:15:a9:68:b1:8f:31:7a:8a:7b:d3:75: 58:0a:6e:05:3c:3d:cf:e4:88:c2:69:cd:70:c0:e0: 56:e8:ed:0c:f9:2e:a8:dd:2b:13:10:48:90:47:c2: 67:55:22:ef:d6:7e:49:1d:56:27:aa:fc:6a:51:97: ff:5b:e4:cc:a7:42:1f:9e:cd:a9:9b:14:10:fc:91: 61:71:87:14:38:b1:44:a0:65:8a:74:39:f9:07:49: b8:0e:c1:43:06:0a:cd:04:4a:b9:08:80:dd:27:03: 9c:ac:a4:99:82:2c:57:ed:09:e4:c9:60:74:91:9f: a9:52:7a:8b:13:54:d1:26:04:46:a9:76:49:0b:b8: ac:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:2E:8E:4D:41:E5:F3:E3:21:56:B4:D0:47:90:D6:0D:2F:97:CE:1D X509v3 Authority Key Identifier: keyid:85:D0:5E:01:7E:33:3D:17:B3:AE:B8:C5:D4:94:3B:E8:DC:67:C0:84 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hdBeAX4zPRezrrjF1JQ76NxnwIQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/095ac9-c3fa-465d-831d-47c950336e2f/1/hdBeAX4zPRezrrjF1JQ76NxnwIQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/095ac9-c3fa-465d-831d-47c950336e2f/1/hdBeAX4zPRezrrjF1JQ76NxnwIQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6e:78:4f:06:22:c2:bd:a6:68:9f:38:69:ef:53:62:be:55:98: 5c:fb:ae:68:9d:92:61:16:4d:0e:15:d4:17:30:ec:d7:d5:6f: 40:dc:cd:fa:99:31:c4:53:80:0b:64:4d:37:d6:08:75:99:fd: cb:bb:de:4f:ab:d8:9a:36:cb:bb:12:f2:4e:35:07:4f:95:97: 08:c4:3f:78:1a:f8:dc:9b:25:d5:a2:13:43:35:83:75:ac:d6: 1c:b9:e7:ed:08:23:0c:2b:50:71:66:88:44:ef:16:01:f9:aa: 86:0e:58:ea:76:de:ae:bf:bd:ed:9b:2c:85:80:66:50:6e:23: 40:5e:c5:60:26:48:1b:79:fa:4a:e9:87:61:d5:f8:0c:09:1f: c8:db:55:7a:d7:11:0e:29:ec:cc:00:fc:d1:a0:5a:5c:b6:c7: f0:ea:53:09:c9:2a:bd:94:57:c9:b2:68:f9:57:b7:a7:7f:6f: 3c:7b:eb:45:66:69:77:d6:ec:bf:81:ed:79:87:47:48:c4:df: fa:1a:46:28:23:06:20:a1:78:b3:52:62:c8:08:75:d9:01:71: cb:f1:7a:6b:b5:07:09:6f:23:fd:86:f9:5b:31:76:96:8d:5c: b6:e7:ab:ad:15:81:9d:0e:9e:87:1f:3a:a3:b4:f5:07:3c:2d: 64:70:5e:1b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv3Y9TOcWgHu8j410rDRi/NMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg1ZDA1ZTAxN2UzMzNkMTdiM2FlYjhjNWQ0OTQzYmU4ZGM2 N2MwODQwHhcNMjYwMTI1MjMwMTEzWhcNMjYwMTI2MjMwMTEzWjAzMTEwLwYDVQQD EyhmZDJlOGU0ZDQxZTVmM2UzMjE1NmI0ZDA0NzkwZDYwZDJmOTdjZTFkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1QZR0GNmXKI4oZxiqLVxW7I+gskV 3op8cp7PUZhNfdPvU3UuY9RaP8m6nQwdEv3qdUWO40eLtip3m4tHwBwnTGBuNz9f sNLPyeiw8PBfSvvmYYzqshaYNmsWctrCFmqo/boCDSRM8PIqSeGPcps2kni111/4 MAHhzkBhFalosY8xeop703VYCm4FPD3P5IjCac1wwOBW6O0M+S6o3SsTEEiQR8Jn VSLv1n5JHVYnqvxqUZf/W+TMp0Ifns2pmxQQ/JFhcYcUOLFEoGWKdDn5B0m4DsFD BgrNBEq5CIDdJwOcrKSZgixX7QnkyWB0kZ+pUnqLE1TRJgRGqXZJC7isZQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFP0ujk1B5fPjIVa00EeQ1g0vl84dMB8GA1UdIwQY MBaAFIXQXgF+Mz0Xs664xdSUO+jcZ8CEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaGRCZUFYNHpQUmV6cnJqRjFKUTc2Tnhud0lRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNS8wOTVhYzktYzNmYS00NjVkLTgzMWQt NDdjOTUwMzM2ZTJmLzEvaGRCZUFYNHpQUmV6cnJqRjFKUTc2Tnhud0lRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNS8wOTVhYzktYzNmYS00NjVkLTgzMWQtNDdjOTUwMzM2ZTJm LzEvaGRCZUFYNHpQUmV6cnJqRjFKUTc2Tnhud0lRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbnhPBiLC vaZonzhp71NivlWYXPuuaJ2SYRZNDhXUFzDs19VvQNzN+pkxxFOAC2RNN9YIdZn9 y7veT6vYmjbLuxLyTjUHT5WXCMQ/eBr43Jsl1aITQzWDdazWHLnn7QgjDCtQcWaI RO8WAfmqhg5Y6nberr+97ZsshYBmUG4jQF7FYCZIG3n6SumHYdX4DAkfyNtVetcR DinszAD80aBaXLbH8OpTCckqvZRXybJo+Ve3p39vPHvrRWZpd9bsv4HteYdHSMTf +hpGKCMGIKF4s1JiyAh12QFxy/F6a7UHCW8j/Yb5WzF2lo1ctuerrRWBnQ6ehx86 o7T1BzwtZHBeGw== -----END CERTIFICATE-----Generated at Mon Jan 26 09:02:07 2026 by rpki-client