This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/a037b1-133a-4639-8c7f-636857ee1792/1/ES1lq7x-8AUScohER5KrhvsVwu4.mft File: ES1lq7x-8AUScohER5KrhvsVwu4.mft (raw, json) Hash identifier: 5q/gud3lywbLmrc8GvMIpH1uto2B3VVxsvglyUD9YM4= Subject key identifier: 43:30:F9:95:F3:4F:4E:89:CE:58:ED:99:0D:77:60:B0:06:CE:ED:AD Authority key identifier: 11:2D:65:AB:BC:7E:F0:05:12:72:88:44:47:92:AB:86:FB:15:C2:EE Certificate issuer: /CN=112d65abbc7ef005127288444792ab86fb15c2ee Certificate serial: 019BF46322BB13EF51B9AE900AA7009AC1FE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ES1lq7x-8AUScohER5KrhvsVwu4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/a037b1-133a-4639-8c7f-636857ee1792/1/ES1lq7x-8AUScohER5KrhvsVwu4.mft Manifest number: 096A Signing time: Sun 25 Jan 2026 09:01:35 +0000 Manifest this update: Sun 25 Jan 2026 09:01:35 +0000 Manifest next update: Mon 26 Jan 2026 09:01:35 +0000 Files and hashes: 1: ES1lq7x-8AUScohER5KrhvsVwu4.crl (hash: iYPvfeQrDXN9luKxGAYqVxVK5i+EIRNqmgL/NiJuBik=) 2: NyqJ3HcC-3DqTRjPEZHaf1vVpmk.roa (hash: kzMbI7FhKbCR9OfECdQk1NAYRQo9Ic9dt4s+QetZXtQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/a037b1-133a-4639-8c7f-636857ee1792/1/ES1lq7x-8AUScohER5KrhvsVwu4.crl rsync://rpki.ripe.net/repository/DEFAULT/f6/a037b1-133a-4639-8c7f-636857ee1792/1/ES1lq7x-8AUScohER5KrhvsVwu4.mft rsync://rpki.ripe.net/repository/DEFAULT/ES1lq7x-8AUScohER5KrhvsVwu4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 09:01:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f4:63:22:bb:13:ef:51:b9:ae:90:0a:a7:00:9a:c1:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=112d65abbc7ef005127288444792ab86fb15c2ee Validity Not Before: Jan 25 09:01:35 2026 GMT Not After : Jan 26 09:01:35 2026 GMT Subject: CN=4330f995f34f4e89ce58ed990d7760b006ceedad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:ae:d8:be:51:ed:eb:0b:94:38:15:4a:af:ff: b9:74:e5:1e:52:b5:79:af:d3:a6:4f:c9:dc:b6:c1: a5:5f:5a:9b:a1:e5:0c:00:a8:9e:ac:e8:0c:c4:f4: b6:ac:fc:cb:34:b5:7e:99:f2:a6:2e:be:c5:a9:f1: 1c:f8:61:2d:66:9b:59:86:34:7d:fd:59:39:39:33: 55:ed:40:90:a4:12:53:ba:54:a5:fe:a1:52:64:5b: f1:13:e8:fa:9a:f0:20:a7:58:44:68:7a:79:d1:93: 79:7d:bb:69:90:d4:83:e3:f8:89:73:a4:d2:7e:24: 5f:cc:91:2c:a3:c5:c5:13:b0:db:96:77:49:fc:a7: d7:db:ed:45:cd:e3:37:7a:0d:42:53:a1:21:c7:a5: b7:fb:b0:26:18:58:88:2c:e5:94:4d:0c:f2:7f:32: 6e:86:eb:5d:92:dd:77:17:af:de:21:a4:d8:8e:f4: 1c:f6:63:de:98:62:66:eb:c4:c4:ae:7a:f0:13:59: 05:de:44:f0:f6:dc:a1:63:ab:53:fd:b4:b8:a9:0a: b4:63:4f:b8:31:b0:1e:3c:b2:33:b3:d4:cd:3a:c3: e7:0b:be:bc:cc:76:05:b7:eb:ac:fc:17:f5:8b:5c: 4c:8e:d3:a3:6b:a4:a9:c6:56:24:78:35:c9:f9:24: 98:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:30:F9:95:F3:4F:4E:89:CE:58:ED:99:0D:77:60:B0:06:CE:ED:AD X509v3 Authority Key Identifier: keyid:11:2D:65:AB:BC:7E:F0:05:12:72:88:44:47:92:AB:86:FB:15:C2:EE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ES1lq7x-8AUScohER5KrhvsVwu4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/a037b1-133a-4639-8c7f-636857ee1792/1/ES1lq7x-8AUScohER5KrhvsVwu4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/a037b1-133a-4639-8c7f-636857ee1792/1/ES1lq7x-8AUScohER5KrhvsVwu4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4c:e8:74:23:d3:5b:e2:fa:ce:37:58:5e:72:c9:4c:88:35:8f: ac:45:6d:98:1a:b6:a5:94:85:1e:28:af:ab:74:a6:d2:25:9a: 1f:44:51:aa:d3:b2:c4:ed:a1:42:4a:cf:28:44:ea:31:34:56: 31:32:30:0b:62:7b:79:8c:76:c4:35:32:4e:17:14:37:dc:50: 1a:6a:f9:7f:56:ec:e9:64:35:00:9b:a2:a1:c8:cc:a3:a2:a8: c8:76:33:43:06:f8:21:27:f6:e5:77:9b:1b:0c:42:4c:ac:4e: 01:3f:c6:01:df:96:a4:ba:59:64:1e:58:97:f7:45:1d:ab:67: c7:32:e0:64:68:14:d1:be:8e:9c:6a:49:8d:54:5a:cc:80:57: c1:6b:b5:38:5e:e4:9c:76:65:e9:3e:20:80:b6:3c:d9:7a:65: 6a:ad:11:09:d8:c9:59:23:5b:f9:24:85:b7:ae:4f:cc:26:fd: 79:a3:cc:42:37:f6:1c:b8:aa:c0:a7:f8:2b:34:b4:7e:9e:fb: 54:e4:c7:bd:bd:fe:8f:c4:73:28:c8:26:d8:9e:1d:60:51:6d: 00:22:94:eb:5b:f6:33:a9:a3:f2:c3:e2:db:39:87:8f:85:7f: b7:29:9a:bb:bc:c0:4b:af:25:36:af:8e:bd:77:7a:e7:da:2b: 34:3d:18:fd -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv0YyK7E+9Rua6QCqcAmsH+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDExMmQ2NWFiYmM3ZWYwMDUxMjcyODg0NDQ3OTJhYjg2ZmIx NWMyZWUwHhcNMjYwMTI1MDkwMTM1WhcNMjYwMTI2MDkwMTM1WjAzMTEwLwYDVQQD Eyg0MzMwZjk5NWYzNGY0ZTg5Y2U1OGVkOTkwZDc3NjBiMDA2Y2VlZGFkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArq7YvlHt6wuUOBVKr/+5dOUeUrV5 r9OmT8nctsGlX1qboeUMAKierOgMxPS2rPzLNLV+mfKmLr7FqfEc+GEtZptZhjR9 /Vk5OTNV7UCQpBJTulSl/qFSZFvxE+j6mvAgp1hEaHp50ZN5fbtpkNSD4/iJc6TS fiRfzJEso8XFE7DblndJ/KfX2+1FzeM3eg1CU6Ehx6W3+7AmGFiILOWUTQzyfzJu hutdkt13F6/eIaTYjvQc9mPemGJm68TErnrwE1kF3kTw9tyhY6tT/bS4qQq0Y0+4 MbAePLIzs9TNOsPnC768zHYFt+us/Bf1i1xMjtOja6SpxlYkeDXJ+SSYjQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEMw+ZXzT06JzljtmQ13YLAGzu2tMB8GA1UdIwQY MBaAFBEtZau8fvAFEnKIREeSq4b7FcLuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRVMxbHE3eC04QVVTY29oRVI1S3JodnNWd3U0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNi9hMDM3YjEtMTMzYS00NjM5LThjN2Yt NjM2ODU3ZWUxNzkyLzEvRVMxbHE3eC04QVVTY29oRVI1S3JodnNWd3U0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNi9hMDM3YjEtMTMzYS00NjM5LThjN2YtNjM2ODU3ZWUxNzky LzEvRVMxbHE3eC04QVVTY29oRVI1S3JodnNWd3U0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATOh0I9Nb 4vrON1hecslMiDWPrEVtmBq2pZSFHiivq3Sm0iWaH0RRqtOyxO2hQkrPKETqMTRW MTIwC2J7eYx2xDUyThcUN9xQGmr5f1bs6WQ1AJuiocjMo6KoyHYzQwb4ISf25Xeb GwxCTKxOAT/GAd+WpLpZZB5Yl/dFHatnxzLgZGgU0b6OnGpJjVRazIBXwWu1OF7k nHZl6T4ggLY82Xplaq0RCdjJWSNb+SSFt65PzCb9eaPMQjf2HLiqwKf4KzS0fp77 VOTHvb3+j8RzKMgm2J4dYFFtACKU61v2M6mj8sPi2zmHj4V/tymau7zAS68lNq+O vXd659orND0Y/Q== -----END CERTIFICATE-----Generated at Sun Jan 25 20:36:22 2026 by rpki-client