This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/1c72c5-299a-4f70-812c-25c5f05aeb5f/1/hVBZemBkyIKuKvP6V1nxP4vR3fw.mft File: hVBZemBkyIKuKvP6V1nxP4vR3fw.mft (raw, json) Hash identifier: CEN/jPwKpvlixzORRNrM5hBx/AfGcjNJkwW1ey3xbfk= Subject key identifier: 32:97:D1:93:10:93:10:C6:46:B2:F7:BA:09:6B:FB:88:DA:C7:DD:0A Authority key identifier: 85:50:59:7A:60:64:C8:82:AE:2A:F3:FA:57:59:F1:3F:8B:D1:DD:FC Certificate issuer: /CN=8550597a6064c882ae2af3fa5759f13f8bd1ddfc Certificate serial: 019BF6F5BA8B358BF6368BB3EF801086DF8E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hVBZemBkyIKuKvP6V1nxP4vR3fw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/1c72c5-299a-4f70-812c-25c5f05aeb5f/1/hVBZemBkyIKuKvP6V1nxP4vR3fw.mft Manifest number: 121D Signing time: Sun 25 Jan 2026 21:00:57 +0000 Manifest this update: Sun 25 Jan 2026 21:00:57 +0000 Manifest next update: Mon 26 Jan 2026 21:00:57 +0000 Files and hashes: 1: Kj0HsXicjlUn-679OFq2n6YXriA.roa (hash: oCViwBHC3VWx+KMwr83UJNJcJLGK68aAWyXoMhEGcUQ=) 2: hVBZemBkyIKuKvP6V1nxP4vR3fw.crl (hash: 6MWgf/AOId6+fftej42ybEQCJzBRaJbGh+xoRfldNW4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/1c72c5-299a-4f70-812c-25c5f05aeb5f/1/hVBZemBkyIKuKvP6V1nxP4vR3fw.crl rsync://rpki.ripe.net/repository/DEFAULT/e8/1c72c5-299a-4f70-812c-25c5f05aeb5f/1/hVBZemBkyIKuKvP6V1nxP4vR3fw.mft rsync://rpki.ripe.net/repository/DEFAULT/hVBZemBkyIKuKvP6V1nxP4vR3fw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 21:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f6:f5:ba:8b:35:8b:f6:36:8b:b3:ef:80:10:86:df:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8550597a6064c882ae2af3fa5759f13f8bd1ddfc Validity Not Before: Jan 25 21:00:57 2026 GMT Not After : Jan 26 21:00:57 2026 GMT Subject: CN=3297d193109310c646b2f7ba096bfb88dac7dd0a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:2e:03:66:28:b5:37:aa:7f:87:10:10:de:cb: 83:f9:7e:4c:34:39:a4:17:4b:ac:4b:a4:df:3d:a1: 9f:a1:fb:ec:00:ec:1a:3d:d2:ec:aa:4d:83:c0:87: e6:9d:ca:74:8b:87:4a:41:23:f7:78:79:eb:c1:c2: 48:5a:65:2b:6e:ab:12:c9:49:f2:44:1c:fe:31:d3: f7:04:ab:ca:ab:ed:d0:07:0d:56:53:b5:11:bd:cc: b8:e2:a7:ac:55:e7:00:d7:c7:76:43:d4:54:98:86: 29:e6:f5:a1:b2:84:e2:2b:1e:24:54:46:ac:97:c3: 20:4d:bc:c7:10:05:2a:b9:42:b3:1e:88:3b:2b:d0: cc:d5:84:bb:4a:4e:e3:8c:bd:0b:e6:86:36:87:14: be:1d:f1:f3:76:aa:8e:16:d5:41:60:0c:51:f0:98: f2:b2:80:47:83:13:dd:c8:71:f5:58:88:85:e7:1a: a2:e0:9a:d7:30:b5:3e:58:fc:49:eb:c2:6b:a0:08: 9c:f8:ff:99:53:e6:72:5c:6f:23:88:00:44:38:3d: 3c:a0:f4:19:48:4c:fb:f6:d3:9d:5e:77:19:67:2e: f3:0f:14:c1:64:7f:be:27:bd:85:eb:73:ef:1f:d1: b5:12:74:e8:da:70:3d:25:b1:87:71:48:ec:7f:e4: 78:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:97:D1:93:10:93:10:C6:46:B2:F7:BA:09:6B:FB:88:DA:C7:DD:0A X509v3 Authority Key Identifier: keyid:85:50:59:7A:60:64:C8:82:AE:2A:F3:FA:57:59:F1:3F:8B:D1:DD:FC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hVBZemBkyIKuKvP6V1nxP4vR3fw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/1c72c5-299a-4f70-812c-25c5f05aeb5f/1/hVBZemBkyIKuKvP6V1nxP4vR3fw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/1c72c5-299a-4f70-812c-25c5f05aeb5f/1/hVBZemBkyIKuKvP6V1nxP4vR3fw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0a:78:bb:99:28:eb:0d:e2:5e:3d:f9:2d:25:be:96:d9:d7:eb: 78:f1:cc:73:88:e5:cb:ad:06:81:99:9c:2a:3a:a5:a9:0d:86: 8d:cd:d4:a5:99:27:57:81:e5:a3:e7:bc:72:1f:b8:3d:97:22: 0c:9e:0e:91:c7:59:45:fd:28:1e:9c:02:02:4c:fd:9e:71:69: cc:0d:cb:d1:e9:d4:74:83:96:84:dd:07:cb:27:a7:0b:bb:f1: ca:af:96:75:f2:a9:fb:bd:a6:2b:86:42:5d:87:6b:27:a5:7b: 42:34:63:6f:89:a2:7e:29:dd:99:ed:5e:40:c9:7a:01:a9:f3: 1e:2b:08:44:cd:c9:bc:c3:81:c3:74:25:84:ac:a7:12:92:8e: be:c7:ef:3b:6a:8b:db:ef:1b:4f:8e:33:fe:5a:d0:f6:12:1b: 90:d1:70:45:b9:b1:7b:0e:cd:78:f9:63:35:a5:38:24:2e:87: ee:c6:8b:61:d1:92:da:f6:9f:ac:c9:bd:df:c4:57:a7:fc:6a: 8e:43:8d:1d:86:ce:52:da:df:c0:05:9e:8a:c2:52:f0:85:81: b3:16:50:2f:19:d0:da:59:68:8f:19:6c:1d:ea:01:94:49:ac: 3f:67:16:bf:63:6a:6b:e2:df:94:c1:8c:49:32:b7:32:19:fa: 43:aa:8b:1f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv29bqLNYv2Nouz74AQht+OMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg1NTA1OTdhNjA2NGM4ODJhZTJhZjNmYTU3NTlmMTNmOGJk MWRkZmMwHhcNMjYwMTI1MjEwMDU3WhcNMjYwMTI2MjEwMDU3WjAzMTEwLwYDVQQD EygzMjk3ZDE5MzEwOTMxMGM2NDZiMmY3YmEwOTZiZmI4OGRhYzdkZDBhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkS4DZii1N6p/hxAQ3suD+X5MNDmk F0usS6TfPaGfofvsAOwaPdLsqk2DwIfmncp0i4dKQSP3eHnrwcJIWmUrbqsSyUny RBz+MdP3BKvKq+3QBw1WU7URvcy44qesVecA18d2Q9RUmIYp5vWhsoTiKx4kVEas l8MgTbzHEAUquUKzHog7K9DM1YS7Sk7jjL0L5oY2hxS+HfHzdqqOFtVBYAxR8Jjy soBHgxPdyHH1WIiF5xqi4JrXMLU+WPxJ68JroAic+P+ZU+ZyXG8jiABEOD08oPQZ SEz79tOdXncZZy7zDxTBZH++J72F63PvH9G1EnTo2nA9JbGHcUjsf+R4eQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDKX0ZMQkxDGRrL3uglr+4jax90KMB8GA1UdIwQY MBaAFIVQWXpgZMiCrirz+ldZ8T+L0d38MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaFZCWmVtQmt5SUt1S3ZQNlYxbnhQNHZSM2Z3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOC8xYzcyYzUtMjk5YS00ZjcwLTgxMmMt MjVjNWYwNWFlYjVmLzEvaFZCWmVtQmt5SUt1S3ZQNlYxbnhQNHZSM2Z3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lOC8xYzcyYzUtMjk5YS00ZjcwLTgxMmMtMjVjNWYwNWFlYjVm LzEvaFZCWmVtQmt5SUt1S3ZQNlYxbnhQNHZSM2Z3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACni7mSjr DeJePfktJb6W2dfrePHMc4jly60GgZmcKjqlqQ2Gjc3UpZknV4Hlo+e8ch+4PZci DJ4OkcdZRf0oHpwCAkz9nnFpzA3L0enUdIOWhN0HyyenC7vxyq+WdfKp+72mK4ZC XYdrJ6V7QjRjb4mifindme1eQMl6AanzHisIRM3JvMOBw3QlhKynEpKOvsfvO2qL 2+8bT44z/lrQ9hIbkNFwRbmxew7NePljNaU4JC6H7saLYdGS2vafrMm938RXp/xq jkONHYbOUtrfwAWeisJS8IWBsxZQLxnQ2llojxlsHeoBlEmsP2cWv2Nqa+LflMGM STK3Mhn6Q6qLHw== -----END CERTIFICATE-----Generated at Mon Jan 26 03:11:49 2026 by rpki-client