This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/70959b-d79b-42dc-b893-5f2d0e2ae714/1/sK3wWv729l-hmmHDCuT7EcfPJbY.mft File: sK3wWv729l-hmmHDCuT7EcfPJbY.mft (raw, json) Hash identifier: cwSWbisGWzdRBedST9tAFg8piG5kw/mvF0Wsfy2D6aA= Subject key identifier: 47:59:8C:EE:FB:9F:F6:3D:01:15:ED:7C:60:89:4D:D1:1F:81:DF:F2 Authority key identifier: B0:AD:F0:5A:FE:F6:F6:5F:A1:9A:61:C3:0A:E4:FB:11:C7:CF:25:B6 Certificate issuer: /CN=b0adf05afef6f65fa19a61c30ae4fb11c7cf25b6 Certificate serial: 019BF687EC8FA773D4FC3E7C3C53EABD5A9E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sK3wWv729l-hmmHDCuT7EcfPJbY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/70959b-d79b-42dc-b893-5f2d0e2ae714/1/sK3wWv729l-hmmHDCuT7EcfPJbY.mft Manifest number: 17EA Signing time: Sun 25 Jan 2026 19:01:01 +0000 Manifest this update: Sun 25 Jan 2026 19:01:01 +0000 Manifest next update: Mon 26 Jan 2026 19:01:01 +0000 Files and hashes: 1: cJdPxb0RSH0QMcbmsxnfVVZLI9o.roa (hash: 7Mc+8VOQ2R5S9UUsL5A35++MoKrgCRu3M3X3wsPiNFQ=) 2: sK3wWv729l-hmmHDCuT7EcfPJbY.crl (hash: VEAmAEBQ2pZoYThHbRlrgWXw7X9SrTfVh47uBE9DAgM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e9/70959b-d79b-42dc-b893-5f2d0e2ae714/1/sK3wWv729l-hmmHDCuT7EcfPJbY.crl rsync://rpki.ripe.net/repository/DEFAULT/e9/70959b-d79b-42dc-b893-5f2d0e2ae714/1/sK3wWv729l-hmmHDCuT7EcfPJbY.mft rsync://rpki.ripe.net/repository/DEFAULT/sK3wWv729l-hmmHDCuT7EcfPJbY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 19:01:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f6:87:ec:8f:a7:73:d4:fc:3e:7c:3c:53:ea:bd:5a:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b0adf05afef6f65fa19a61c30ae4fb11c7cf25b6 Validity Not Before: Jan 25 19:01:01 2026 GMT Not After : Jan 26 19:01:01 2026 GMT Subject: CN=47598ceefb9ff63d0115ed7c60894dd11f81dff2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:c7:e5:50:26:63:da:a8:fe:bc:2d:eb:80:c4: 86:2a:41:73:93:bd:4e:8a:3b:e3:5f:ee:7e:3c:cb: d6:7e:39:14:c5:ff:b4:ad:91:62:39:f1:eb:77:03: ec:67:96:08:9c:62:2a:fa:81:63:13:b9:a8:7f:dd: 53:9d:a9:9b:58:fc:d0:1d:9e:57:e4:b8:88:c0:d7: 41:b7:6e:50:26:d5:3f:8d:a1:77:12:70:3d:05:22: 40:e7:fa:55:98:47:0e:4b:f2:8a:fd:a7:fa:ac:39: 67:53:a8:e4:52:e6:6b:bf:0d:8b:8e:00:eb:60:25: d3:d7:ec:4d:13:a6:64:a6:bb:ad:83:2f:3f:b8:81: e6:9c:04:c4:67:4e:aa:52:7f:0a:81:1d:06:f9:78: a2:c6:49:b7:a4:9e:4b:8a:ed:05:09:25:bd:8e:68: e4:70:99:9f:14:87:3a:6a:d6:3c:3b:f2:d5:8b:95: b1:3b:a9:92:06:9a:19:9c:73:18:b6:bc:76:47:3f: 5d:62:9e:9d:0a:18:e7:d6:14:fe:65:7a:d9:c6:64: da:47:4d:89:63:52:ee:2e:97:13:46:fd:05:54:5f: cd:b8:b3:f0:c6:7f:e6:18:0e:63:f9:57:6b:52:fe: 96:67:13:76:2b:dd:67:a1:3a:bd:53:6f:9f:09:49: e8:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:59:8C:EE:FB:9F:F6:3D:01:15:ED:7C:60:89:4D:D1:1F:81:DF:F2 X509v3 Authority Key Identifier: keyid:B0:AD:F0:5A:FE:F6:F6:5F:A1:9A:61:C3:0A:E4:FB:11:C7:CF:25:B6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sK3wWv729l-hmmHDCuT7EcfPJbY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/70959b-d79b-42dc-b893-5f2d0e2ae714/1/sK3wWv729l-hmmHDCuT7EcfPJbY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/70959b-d79b-42dc-b893-5f2d0e2ae714/1/sK3wWv729l-hmmHDCuT7EcfPJbY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 86:94:b2:9d:38:0c:01:05:60:45:1f:9a:45:d1:64:83:25:c8: 05:0a:cc:47:a2:1b:85:fe:fb:db:7a:7f:af:6c:bd:59:3b:87: b5:62:fa:11:ae:f7:51:6c:cf:ae:01:6a:8f:77:7b:45:a7:74: 7e:33:ef:b5:4a:c5:04:e0:ec:87:75:5d:66:d7:d6:0c:55:8a: e9:1e:c5:ae:97:09:08:03:ca:2b:30:dc:47:51:d8:5e:42:72: 38:ce:f5:a7:a8:b9:6e:f9:49:06:e5:dc:4a:46:56:3e:ac:28: 7c:c2:bf:7b:fe:fc:20:45:97:ac:ee:dd:de:7d:78:63:3c:24: b0:b6:95:fa:05:45:8f:9f:5a:a4:12:79:d2:96:a1:a2:79:8d: b4:9a:8a:c0:ce:5a:07:0b:f0:9f:a8:82:15:bd:ba:44:e1:42: ef:49:97:de:74:db:1b:b1:c5:4a:70:fe:de:e2:50:ad:d5:dc: ff:61:dc:ca:79:30:b9:da:90:80:40:33:6c:39:50:68:00:87: d8:4c:ea:40:e8:c8:2a:e7:91:ab:4d:c9:44:82:3b:d1:3b:bd: 69:17:53:07:6e:6b:1e:10:21:df:7b:4b:70:63:37:c7:16:97: 98:e0:93:08:c9:4d:20:0b:61:6d:ed:8f:21:2f:35:e0:71:7c: 23:3e:86:6c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv2h+yPp3PU/D58PFPqvVqeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIwYWRmMDVhZmVmNmY2NWZhMTlhNjFjMzBhZTRmYjExYzdj ZjI1YjYwHhcNMjYwMTI1MTkwMTAxWhcNMjYwMTI2MTkwMTAxWjAzMTEwLwYDVQQD Eyg0NzU5OGNlZWZiOWZmNjNkMDExNWVkN2M2MDg5NGRkMTFmODFkZmYyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAusflUCZj2qj+vC3rgMSGKkFzk71O ijvjX+5+PMvWfjkUxf+0rZFiOfHrdwPsZ5YInGIq+oFjE7mof91TnambWPzQHZ5X 5LiIwNdBt25QJtU/jaF3EnA9BSJA5/pVmEcOS/KK/af6rDlnU6jkUuZrvw2LjgDr YCXT1+xNE6Zkprutgy8/uIHmnATEZ06qUn8KgR0G+Xiixkm3pJ5Liu0FCSW9jmjk cJmfFIc6atY8O/LVi5WxO6mSBpoZnHMYtrx2Rz9dYp6dChjn1hT+ZXrZxmTaR02J Y1LuLpcTRv0FVF/NuLPwxn/mGA5j+VdrUv6WZxN2K91noTq9U2+fCUnoIQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEdZjO77n/Y9ARXtfGCJTdEfgd/yMB8GA1UdIwQY MBaAFLCt8Fr+9vZfoZphwwrk+xHHzyW2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc0szd1d2NzI5bC1obW1IREN1VDdFY2ZQSmJZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOS83MDk1OWItZDc5Yi00MmRjLWI4OTMt NWYyZDBlMmFlNzE0LzEvc0szd1d2NzI5bC1obW1IREN1VDdFY2ZQSmJZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lOS83MDk1OWItZDc5Yi00MmRjLWI4OTMtNWYyZDBlMmFlNzE0 LzEvc0szd1d2NzI5bC1obW1IREN1VDdFY2ZQSmJZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhpSynTgM AQVgRR+aRdFkgyXIBQrMR6Ibhf7723p/r2y9WTuHtWL6Ea73UWzPrgFqj3d7Rad0 fjPvtUrFBODsh3VdZtfWDFWK6R7FrpcJCAPKKzDcR1HYXkJyOM71p6i5bvlJBuXc SkZWPqwofMK/e/78IEWXrO7d3n14YzwksLaV+gVFj59apBJ50pahonmNtJqKwM5a Bwvwn6iCFb26ROFC70mX3nTbG7HFSnD+3uJQrdXc/2HcynkwudqQgEAzbDlQaACH 2EzqQOjIKueRq03JRII70Tu9aRdTB25rHhAh33tLcGM3xxaXmOCTCMlNIAthbe2P IS814HF8Iz6GbA== -----END CERTIFICATE-----Generated at Mon Jan 26 05:56:40 2026 by rpki-client