This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/0bed52-b7cc-414a-9c88-6d77f065a2c3/1/haz7mtOlDOFTMc_066iLzAe3ooI.mft File: haz7mtOlDOFTMc_066iLzAe3ooI.mft (raw, json) Hash identifier: 4RQQjTAdrZsdjWdh+mxw0vtqe8TKTd19I5IDGsdbTCI= Subject key identifier: 89:17:22:8C:01:8D:D7:52:2E:0A:47:D5:57:36:93:8F:6B:89:E4:47 Authority key identifier: 85:AC:FB:9A:D3:A5:0C:E1:53:31:CF:F4:EB:A8:8B:CC:07:B7:A2:82 Certificate issuer: /CN=85acfb9ad3a50ce15331cff4eba88bcc07b7a282 Certificate serial: 019BF79A27C831CCC1FC0D38E013E38FEF78 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/haz7mtOlDOFTMc_066iLzAe3ooI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/0bed52-b7cc-414a-9c88-6d77f065a2c3/1/haz7mtOlDOFTMc_066iLzAe3ooI.mft Manifest number: 076C Signing time: Mon 26 Jan 2026 00:00:33 +0000 Manifest this update: Mon 26 Jan 2026 00:00:33 +0000 Manifest next update: Tue 27 Jan 2026 00:00:33 +0000 Files and hashes: 1: LVJLyRNkzYXWrFPMXDuqL1cx3r0.roa (hash: /6VNNRjnmK1nx7DLPoyOKEbtFH+S0vHKlP1nyDqaMBk=) 2: haz7mtOlDOFTMc_066iLzAe3ooI.crl (hash: Z1IgtwqL2RwrNGMFuE3PaFV1LNqkp8GqNbqsnRnRF2Y=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/0bed52-b7cc-414a-9c88-6d77f065a2c3/1/haz7mtOlDOFTMc_066iLzAe3ooI.crl rsync://rpki.ripe.net/repository/DEFAULT/ef/0bed52-b7cc-414a-9c88-6d77f065a2c3/1/haz7mtOlDOFTMc_066iLzAe3ooI.mft rsync://rpki.ripe.net/repository/DEFAULT/haz7mtOlDOFTMc_066iLzAe3ooI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 00:00:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f7:9a:27:c8:31:cc:c1:fc:0d:38:e0:13:e3:8f:ef:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85acfb9ad3a50ce15331cff4eba88bcc07b7a282 Validity Not Before: Jan 26 00:00:33 2026 GMT Not After : Jan 27 00:00:33 2026 GMT Subject: CN=8917228c018dd7522e0a47d55736938f6b89e447 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:39:d6:1d:c4:5b:30:18:08:19:96:50:94:7e: 6b:a9:fd:80:d0:9a:45:20:3c:d3:69:89:f3:93:47: 60:dd:07:d3:b7:96:a3:76:87:ac:0b:36:60:c8:16: 24:3f:d7:59:7f:a2:6c:b7:3b:79:9a:6c:7f:fd:a9: 01:0c:e8:4a:f5:cc:4e:62:7d:d6:49:a6:e1:de:19: 98:9c:14:dd:4c:c6:d5:83:2a:b4:6c:ea:01:a1:7d: 45:b4:11:5a:ec:ab:fd:1c:e7:70:b6:78:74:0c:ac: 22:0f:f2:8a:97:dc:fa:ae:6b:d5:58:eb:59:0c:69: 46:c6:d3:28:53:a2:ab:b4:10:e5:45:0a:73:81:c9: 01:ac:85:61:af:e7:96:f3:41:b0:f0:de:33:53:96: 00:f6:c0:b9:ac:09:16:02:01:5b:9e:b2:b7:ea:f3: 3d:d7:f7:5f:e7:db:bf:7a:cd:a0:96:57:a6:c3:a8: ec:4f:3b:31:47:78:21:b5:dc:ea:b7:8c:d0:9a:3f: 58:41:8e:6d:11:0b:2f:02:88:c7:66:a0:5a:18:56: f1:b6:77:71:e6:a1:43:0b:da:fe:2b:1f:ce:15:e5: ee:a7:4f:cb:61:04:9d:ba:0f:0c:71:61:6b:10:19: 76:cf:99:fa:cd:22:dc:97:db:e0:82:3a:23:a5:a0: f1:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:17:22:8C:01:8D:D7:52:2E:0A:47:D5:57:36:93:8F:6B:89:E4:47 X509v3 Authority Key Identifier: keyid:85:AC:FB:9A:D3:A5:0C:E1:53:31:CF:F4:EB:A8:8B:CC:07:B7:A2:82 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/haz7mtOlDOFTMc_066iLzAe3ooI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/0bed52-b7cc-414a-9c88-6d77f065a2c3/1/haz7mtOlDOFTMc_066iLzAe3ooI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/0bed52-b7cc-414a-9c88-6d77f065a2c3/1/haz7mtOlDOFTMc_066iLzAe3ooI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 96:6c:29:c6:36:7e:2a:3b:51:53:83:9f:2e:ef:c2:f6:ef:05: 3a:bb:e9:4a:17:2e:15:36:87:55:43:c6:cc:21:0c:6f:a3:5d: 98:c6:1b:1e:4a:a2:e4:02:f3:bc:d7:87:e7:04:13:45:47:14: 0d:0b:4f:75:10:12:e3:22:a4:54:f6:88:97:df:d1:5a:58:c7: 54:67:98:40:fb:da:7f:a2:66:4c:af:27:b0:87:33:df:5d:9a: 33:0b:95:53:45:f4:33:56:13:d2:d4:58:3f:84:2f:00:a2:62: d8:ad:57:2a:0f:1c:5e:15:24:59:2a:ae:c5:64:36:39:ff:e1: 35:cc:1e:41:a8:b1:91:6c:ad:96:11:62:d2:23:fc:89:f7:e7: 21:96:a5:04:49:91:dc:54:cd:a5:44:01:8c:94:ee:1e:98:90: 3b:04:54:bb:f0:58:9c:4d:b2:cb:6b:87:b7:5e:6c:04:cb:f0: 86:5d:a4:98:12:0b:29:3b:4b:cb:ba:68:97:77:3b:fa:2b:c7: 50:c9:ec:ac:32:c3:14:7a:a1:28:e2:0d:31:b4:86:82:db:8d: b1:f5:08:9d:38:18:bf:e6:26:9a:65:02:99:d7:7b:cb:8d:cb: 7d:64:c8:04:e8:49:28:71:dd:18:c9:71:cd:38:ea:4d:ff:c7: 77:e9:78:cb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv3mifIMczB/A044BPjj+94MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg1YWNmYjlhZDNhNTBjZTE1MzMxY2ZmNGViYTg4YmNjMDdi N2EyODIwHhcNMjYwMTI2MDAwMDMzWhcNMjYwMTI3MDAwMDMzWjAzMTEwLwYDVQQD Eyg4OTE3MjI4YzAxOGRkNzUyMmUwYTQ3ZDU1NzM2OTM4ZjZiODllNDQ3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmTnWHcRbMBgIGZZQlH5rqf2A0JpF IDzTaYnzk0dg3QfTt5ajdoesCzZgyBYkP9dZf6Jstzt5mmx//akBDOhK9cxOYn3W Sabh3hmYnBTdTMbVgyq0bOoBoX1FtBFa7Kv9HOdwtnh0DKwiD/KKl9z6rmvVWOtZ DGlGxtMoU6KrtBDlRQpzgckBrIVhr+eW80Gw8N4zU5YA9sC5rAkWAgFbnrK36vM9 1/df59u/es2gllemw6jsTzsxR3ghtdzqt4zQmj9YQY5tEQsvAojHZqBaGFbxtndx 5qFDC9r+Kx/OFeXup0/LYQSdug8McWFrEBl2z5n6zSLcl9vggjojpaDxYQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIkXIowBjddSLgpH1Vc2k49rieRHMB8GA1UdIwQY MBaAFIWs+5rTpQzhUzHP9Ouoi8wHt6KCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaGF6N210T2xET0ZUTWNfMDY2aUx6QWUzb29JLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZi8wYmVkNTItYjdjYy00MTRhLTljODgt NmQ3N2YwNjVhMmMzLzEvaGF6N210T2xET0ZUTWNfMDY2aUx6QWUzb29JLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZi8wYmVkNTItYjdjYy00MTRhLTljODgtNmQ3N2YwNjVhMmMz LzEvaGF6N210T2xET0ZUTWNfMDY2aUx6QWUzb29JLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlmwpxjZ+ KjtRU4OfLu/C9u8FOrvpShcuFTaHVUPGzCEMb6NdmMYbHkqi5ALzvNeH5wQTRUcU DQtPdRAS4yKkVPaIl9/RWljHVGeYQPvaf6JmTK8nsIcz312aMwuVU0X0M1YT0tRY P4QvAKJi2K1XKg8cXhUkWSquxWQ2Of/hNcweQaixkWytlhFi0iP8iffnIZalBEmR 3FTNpUQBjJTuHpiQOwRUu/BYnE2yy2uHt15sBMvwhl2kmBILKTtLy7pol3c7+ivH UMnsrDLDFHqhKOINMbSGgtuNsfUInTgYv+YmmmUCmdd7y43LfWTIBOhJKHHdGMlx zTjqTf/Hd+l4yw== -----END CERTIFICATE-----Generated at Mon Jan 26 09:02:01 2026 by rpki-client