This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/3LZakO089K4EUlVO40uSqEdtzxA.mft File: 3LZakO089K4EUlVO40uSqEdtzxA.mft (raw, json) Hash identifier: BQEfi6iiNSBQgA7nrMpVO08+3+6sxAeWAnUerHdftX8= Subject key identifier: 68:2C:4D:4C:C5:77:4D:9D:7C:29:37:47:79:63:40:4D:83:3B:41:D0 Authority key identifier: DC:B6:5A:90:ED:3C:F4:AE:04:52:55:4E:E3:4B:92:A8:47:6D:CF:10 Certificate issuer: /CN=dcb65a90ed3cf4ae0452554ee34b92a8476dcf10 Certificate serial: 019BF4D00ECC3417E3965C13E3742199CAE5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3LZakO089K4EUlVO40uSqEdtzxA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/3LZakO089K4EUlVO40uSqEdtzxA.mft Manifest number: 17FC Signing time: Sun 25 Jan 2026 11:00:34 +0000 Manifest this update: Sun 25 Jan 2026 11:00:34 +0000 Manifest next update: Mon 26 Jan 2026 11:00:34 +0000 Files and hashes: 1: 2W3yWm1HMzPskIDqOBKTk5NLDnk.roa (hash: zkzysD/L4UIm9OcLl6P6Mv4weJO+FXhHhd0t2XLROjI=) 2: 3LZakO089K4EUlVO40uSqEdtzxA.crl (hash: uu4vrfykit3nQQiAWjG01ipjw1/UqgYjVe1l9sJZ9JY=) 3: K3l-f-R4fzp0JNI40Ow_kAwQElE.roa (hash: lzT7cfBjG064YjxJ7JvC+eelDCQdNhykEA7ZwxG3cvA=) 4: PKWl5L-Kf_6-uLjkK3IrLmDHIJ8.roa (hash: a8KnYbin0YfzPy81a2Ft5OJRitrpc3uTgAStWm8odkA=) 5: WVGS-uOqCUSz2p_N5CL2Cz4z-K0.roa (hash: IB5UKLk0ZZT7DbiIeOg9ZlXwRRXDT147MF0fykJ8TKI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/3LZakO089K4EUlVO40uSqEdtzxA.crl rsync://rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/3LZakO089K4EUlVO40uSqEdtzxA.mft rsync://rpki.ripe.net/repository/DEFAULT/3LZakO089K4EUlVO40uSqEdtzxA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 11:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f4:d0:0e:cc:34:17:e3:96:5c:13:e3:74:21:99:ca:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dcb65a90ed3cf4ae0452554ee34b92a8476dcf10 Validity Not Before: Jan 25 11:00:34 2026 GMT Not After : Jan 26 11:00:34 2026 GMT Subject: CN=682c4d4cc5774d9d7c2937477963404d833b41d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:a1:e6:51:57:7f:56:d4:65:96:39:bf:88:c2: 24:70:cf:18:ce:d4:8f:c4:bd:95:3a:5d:43:65:be: 1d:d3:95:f9:24:b6:95:8e:8f:3d:e8:0f:aa:da:63: 32:7d:8f:42:93:de:fc:29:c9:0d:2c:47:89:e4:f8: 36:95:08:05:7e:93:06:a5:b4:c0:78:f4:89:a5:21: 9c:c7:c1:dc:82:3d:1f:0f:5c:35:c4:44:11:a0:c4: a9:d4:1b:86:71:27:87:ab:b4:9b:cd:5c:20:26:f0: a5:34:02:40:17:75:dc:1c:9a:0e:81:2b:31:c2:91: 12:4e:19:18:9a:0a:35:ff:c5:47:a3:9f:1f:70:49: 3a:1a:d6:e4:7b:81:c0:8f:dc:dc:7d:be:97:cf:b6: f7:c1:cb:2f:99:cc:91:10:a9:38:96:8d:40:19:dd: cf:a9:09:9c:ae:e1:c5:1d:f0:65:dc:17:69:6a:25: 1a:35:f6:e3:93:9f:5b:d6:80:06:05:df:cb:d3:16: 62:9c:c2:dd:c7:c3:47:a1:b6:45:94:8e:eb:c7:8a: 9b:fb:63:21:36:72:0f:1e:8c:5f:31:15:3d:47:cb: ba:09:63:b7:e1:7d:4b:75:b4:0e:54:de:fb:32:10: b0:fe:a5:74:c9:c5:1f:68:b7:f8:65:76:1b:6e:0a: 21:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:2C:4D:4C:C5:77:4D:9D:7C:29:37:47:79:63:40:4D:83:3B:41:D0 X509v3 Authority Key Identifier: keyid:DC:B6:5A:90:ED:3C:F4:AE:04:52:55:4E:E3:4B:92:A8:47:6D:CF:10 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3LZakO089K4EUlVO40uSqEdtzxA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/3LZakO089K4EUlVO40uSqEdtzxA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/09200e-999d-4b45-a741-85a955f2163b/1/3LZakO089K4EUlVO40uSqEdtzxA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4e:0d:4f:0d:49:d1:98:5b:2e:45:4c:b5:a3:13:23:bc:53:6a: 41:1c:46:08:f1:74:39:2b:2a:b4:b2:ad:49:0f:06:2e:91:ac: 1d:2e:99:40:b9:bc:f5:45:e4:27:c7:91:cd:32:0c:5e:5e:5f: 0f:1a:ec:f2:24:b8:70:b0:9f:4a:1b:26:cc:a3:a6:1f:45:15: ac:ef:c8:1a:88:52:db:26:b7:0a:5c:f8:9f:2c:e6:b4:2d:47: 0d:51:2d:9d:8b:59:c2:c5:82:23:8b:d1:cf:85:ff:fd:fc:69: 1a:c2:9c:d8:e5:da:f1:6c:0d:78:09:78:4f:4d:09:2d:d3:f5: c2:d1:9c:2e:bf:51:a5:d7:0f:45:97:3d:1f:41:fa:93:81:7e: ce:31:98:68:5d:1a:61:2d:50:47:73:85:54:25:c0:f5:f6:2e: 4b:8a:bc:2f:59:c8:c6:39:06:30:2c:42:b0:98:d5:ba:bd:98: 48:bd:fb:12:30:af:bf:4e:4b:d4:6e:44:0d:2f:c2:71:9b:ee: 11:93:1c:1c:00:69:0d:88:e9:3d:ab:a5:a9:bc:44:11:97:c5: bd:c4:08:3e:a4:48:c9:f7:ff:51:17:da:f0:33:27:2e:fe:f7: 22:50:16:93:1f:a6:8e:eb:4a:71:7d:96:1b:36:06:f1:ae:82: 9f:0a:67:8b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv00A7MNBfjllwT43QhmcrlMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRjYjY1YTkwZWQzY2Y0YWUwNDUyNTU0ZWUzNGI5MmE4NDc2 ZGNmMTAwHhcNMjYwMTI1MTEwMDM0WhcNMjYwMTI2MTEwMDM0WjAzMTEwLwYDVQQD Eyg2ODJjNGQ0Y2M1Nzc0ZDlkN2MyOTM3NDc3OTYzNDA0ZDgzM2I0MWQwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuaHmUVd/VtRlljm/iMIkcM8YztSP xL2VOl1DZb4d05X5JLaVjo896A+q2mMyfY9Ck978KckNLEeJ5Pg2lQgFfpMGpbTA ePSJpSGcx8Hcgj0fD1w1xEQRoMSp1BuGcSeHq7SbzVwgJvClNAJAF3XcHJoOgSsx wpESThkYmgo1/8VHo58fcEk6Gtbke4HAj9zcfb6Xz7b3wcsvmcyREKk4lo1AGd3P qQmcruHFHfBl3BdpaiUaNfbjk59b1oAGBd/L0xZinMLdx8NHobZFlI7rx4qb+2Mh NnIPHoxfMRU9R8u6CWO34X1LdbQOVN77MhCw/qV0ycUfaLf4ZXYbbgohPQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGgsTUzFd02dfCk3R3ljQE2DO0HQMB8GA1UdIwQY MBaAFNy2WpDtPPSuBFJVTuNLkqhHbc8QMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM0xaYWtPMDg5SzRFVWxWTzQwdVNxRWR0enhBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMi8wOTIwMGUtOTk5ZC00YjQ1LWE3NDEt ODVhOTU1ZjIxNjNiLzEvM0xaYWtPMDg5SzRFVWxWTzQwdVNxRWR0enhBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMi8wOTIwMGUtOTk5ZC00YjQ1LWE3NDEtODVhOTU1ZjIxNjNi LzEvM0xaYWtPMDg5SzRFVWxWTzQwdVNxRWR0enhBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATg1PDUnR mFsuRUy1oxMjvFNqQRxGCPF0OSsqtLKtSQ8GLpGsHS6ZQLm89UXkJ8eRzTIMXl5f Dxrs8iS4cLCfShsmzKOmH0UVrO/IGohS2ya3Clz4nyzmtC1HDVEtnYtZwsWCI4vR z4X//fxpGsKc2OXa8WwNeAl4T00JLdP1wtGcLr9RpdcPRZc9H0H6k4F+zjGYaF0a YS1QR3OFVCXA9fYuS4q8L1nIxjkGMCxCsJjVur2YSL37EjCvv05L1G5EDS/CcZvu EZMcHABpDYjpPaulqbxEEZfFvcQIPqRIyff/URfa8DMnLv73IlAWkx+mjutKcX2W GzYG8a6Cnwpniw== -----END CERTIFICATE-----Generated at Sun Jan 25 19:15:27 2026 by rpki-client