This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/974749-4d7e-4450-9793-df854f47baf4/1/sPoMerwQeWkV4zW6GXgORz4CeWk.mft File: sPoMerwQeWkV4zW6GXgORz4CeWk.mft (raw, json) Hash identifier: 6Zld97Z6C0kXt/EQ0W6pJCwX/vWwpkSTq3SrkhTi5dU= Subject key identifier: FF:59:AF:88:F0:D9:8B:BF:AF:1F:E5:1A:D1:B7:45:3A:3A:92:30:7B Authority key identifier: B0:FA:0C:7A:BC:10:79:69:15:E3:35:BA:19:78:0E:47:3E:02:79:69 Certificate issuer: /CN=b0fa0c7abc10796915e335ba19780e473e027969 Certificate serial: 019BF687C060DC31FFCA4FC5CEA2C2D68132 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sPoMerwQeWkV4zW6GXgORz4CeWk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/974749-4d7e-4450-9793-df854f47baf4/1/sPoMerwQeWkV4zW6GXgORz4CeWk.mft Manifest number: 12DB Signing time: Sun 25 Jan 2026 19:00:50 +0000 Manifest this update: Sun 25 Jan 2026 19:00:50 +0000 Manifest next update: Mon 26 Jan 2026 19:00:50 +0000 Files and hashes: 1: LefKdaCkJCuLWYomPbn7aYaCwt8.roa (hash: dTxOv7XhsigiPPaBEnDTEGV1JBMdxI+S2HXrs+TPL+s=) 2: sPoMerwQeWkV4zW6GXgORz4CeWk.crl (hash: 1QifAvt912vH2I3OQizFCRncgpiT2WbWP4jxnMRw2Q4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/974749-4d7e-4450-9793-df854f47baf4/1/sPoMerwQeWkV4zW6GXgORz4CeWk.crl rsync://rpki.ripe.net/repository/DEFAULT/f0/974749-4d7e-4450-9793-df854f47baf4/1/sPoMerwQeWkV4zW6GXgORz4CeWk.mft rsync://rpki.ripe.net/repository/DEFAULT/sPoMerwQeWkV4zW6GXgORz4CeWk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 19:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f6:87:c0:60:dc:31:ff:ca:4f:c5:ce:a2:c2:d6:81:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b0fa0c7abc10796915e335ba19780e473e027969 Validity Not Before: Jan 25 19:00:50 2026 GMT Not After : Jan 26 19:00:50 2026 GMT Subject: CN=ff59af88f0d98bbfaf1fe51ad1b7453a3a92307b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:80:d7:d0:64:6a:f7:1a:7b:7b:93:1c:f2:eb: 18:09:7c:1a:4a:d1:a7:85:4b:ed:45:91:ba:c1:60: fb:94:bb:4d:1b:94:92:63:ad:f6:e2:c9:62:ed:bb: 60:19:69:61:52:39:a0:b1:22:67:63:66:ba:39:14: 62:d6:1f:99:83:f7:f2:07:06:dd:37:3e:8e:f1:36: ff:7f:61:bd:78:14:11:95:93:62:dc:7c:26:9a:69: 64:02:56:7a:c5:7e:da:c5:c5:6e:4d:53:77:b7:80: 9a:e9:62:ff:24:6d:9e:56:39:cf:f3:41:73:d9:4e: 61:80:8a:ac:aa:69:05:3b:d1:2a:cd:25:15:d0:e5: a3:97:a0:d7:40:8b:fe:4b:51:40:e3:bd:cd:c4:49: 0d:a2:da:17:18:4d:35:6a:70:b0:fe:9c:d3:37:9e: a8:6f:9d:b7:8c:85:c9:55:b9:0e:de:b7:d9:41:5c: 13:c3:c9:54:62:2e:b7:9a:b0:45:09:d3:1c:57:c5: 3c:d6:fd:07:31:ac:2b:b8:19:5e:4a:8f:1e:23:81: 18:0d:7f:61:9d:54:1b:79:c0:5f:26:4b:30:16:32: 09:70:0c:64:f0:a3:ad:17:8e:7c:f5:57:47:57:e4: 1f:b9:cf:f7:ca:d5:53:b7:dd:bd:e3:4e:df:1c:b3: ed:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:59:AF:88:F0:D9:8B:BF:AF:1F:E5:1A:D1:B7:45:3A:3A:92:30:7B X509v3 Authority Key Identifier: keyid:B0:FA:0C:7A:BC:10:79:69:15:E3:35:BA:19:78:0E:47:3E:02:79:69 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sPoMerwQeWkV4zW6GXgORz4CeWk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/974749-4d7e-4450-9793-df854f47baf4/1/sPoMerwQeWkV4zW6GXgORz4CeWk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/974749-4d7e-4450-9793-df854f47baf4/1/sPoMerwQeWkV4zW6GXgORz4CeWk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5b:cc:8c:4d:89:59:d8:b4:ad:73:bb:12:56:ad:b2:23:88:24: 95:db:99:c9:10:ce:d1:65:4d:ad:91:6d:68:06:45:c0:30:ef: e1:66:ee:09:d6:f7:7a:2e:9f:7c:2c:f6:9a:60:0f:50:0a:0c: 3a:db:85:19:db:58:de:79:15:03:fa:f0:4e:16:0c:1e:b8:d1: 35:19:d2:df:d9:9a:6c:64:3a:3e:32:ed:5c:47:bb:0b:12:f8: 94:80:d8:f6:7f:76:52:53:62:5c:65:2e:14:ab:ff:93:81:a5: 27:06:66:1a:62:0b:d8:25:f9:eb:96:39:c5:0d:33:9c:d7:94: bb:e1:3a:02:ab:fe:c6:dc:0d:a6:b6:84:0e:df:83:76:4d:22: 96:4a:f9:dc:44:0f:11:07:63:c7:2b:8b:d3:66:cd:3e:f1:65: 21:9b:93:65:4a:e6:82:24:f2:40:ea:0c:65:8b:f1:8c:c4:21: 2a:79:dd:95:13:9c:97:49:84:91:6a:f3:d7:cf:99:ee:7a:03: de:9a:d8:2c:a6:0b:e7:77:d1:8c:c4:f4:59:ad:8b:86:9f:fb: 32:9c:16:34:e2:52:a8:79:26:95:4b:56:09:ee:68:b7:89:f6: b7:83:39:8c:23:aa:bf:79:15:83:60:92:21:fb:91:d5:7e:d3: 7f:fd:0a:6e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv2h8Bg3DH/yk/FzqLC1oEyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIwZmEwYzdhYmMxMDc5NjkxNWUzMzViYTE5NzgwZTQ3M2Uw Mjc5NjkwHhcNMjYwMTI1MTkwMDUwWhcNMjYwMTI2MTkwMDUwWjAzMTEwLwYDVQQD EyhmZjU5YWY4OGYwZDk4YmJmYWYxZmU1MWFkMWI3NDUzYTNhOTIzMDdiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvYDX0GRq9xp7e5Mc8usYCXwaStGn hUvtRZG6wWD7lLtNG5SSY6324sli7btgGWlhUjmgsSJnY2a6ORRi1h+Zg/fyBwbd Nz6O8Tb/f2G9eBQRlZNi3HwmmmlkAlZ6xX7axcVuTVN3t4Ca6WL/JG2eVjnP80Fz 2U5hgIqsqmkFO9EqzSUV0OWjl6DXQIv+S1FA473NxEkNotoXGE01anCw/pzTN56o b523jIXJVbkO3rfZQVwTw8lUYi63mrBFCdMcV8U81v0HMawruBleSo8eI4EYDX9h nVQbecBfJkswFjIJcAxk8KOtF4589VdHV+Qfuc/3ytVTt929407fHLPtIQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFP9Zr4jw2Yu/rx/lGtG3RTo6kjB7MB8GA1UdIwQY MBaAFLD6DHq8EHlpFeM1uhl4Dkc+AnlpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc1BvTWVyd1FlV2tWNHpXNkdYZ09SejRDZVdrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMC85NzQ3NDktNGQ3ZS00NDUwLTk3OTMt ZGY4NTRmNDdiYWY0LzEvc1BvTWVyd1FlV2tWNHpXNkdYZ09SejRDZVdrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMC85NzQ3NDktNGQ3ZS00NDUwLTk3OTMtZGY4NTRmNDdiYWY0 LzEvc1BvTWVyd1FlV2tWNHpXNkdYZ09SejRDZVdrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAW8yMTYlZ 2LStc7sSVq2yI4gklduZyRDO0WVNrZFtaAZFwDDv4WbuCdb3ei6ffCz2mmAPUAoM OtuFGdtY3nkVA/rwThYMHrjRNRnS39mabGQ6PjLtXEe7CxL4lIDY9n92UlNiXGUu FKv/k4GlJwZmGmIL2CX565Y5xQ0znNeUu+E6Aqv+xtwNpraEDt+Ddk0ilkr53EQP EQdjxyuL02bNPvFlIZuTZUrmgiTyQOoMZYvxjMQhKnndlROcl0mEkWrz18+Z7noD 3prYLKYL53fRjMT0Wa2Lhp/7MpwWNOJSqHkmlUtWCe5ot4n2t4M5jCOqv3kVg2CS IfuR1X7Tf/0Kbg== -----END CERTIFICATE-----Generated at Mon Jan 26 05:08:54 2026 by rpki-client