This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/8daa29-c857-40c2-b97a-839ad7d093ed/1/uqSm69s4PhGdaVPHfxaGbnPvLbU.mft File: uqSm69s4PhGdaVPHfxaGbnPvLbU.mft (raw, json) Hash identifier: 6ctuq3c7Eab1lIZeUuZV9GkUkZ0fliAP7EJbsLs/Ls8= Subject key identifier: D1:18:11:2B:E1:8C:95:07:83:63:56:E9:E5:8B:5E:DE:E3:48:6A:FB Authority key identifier: BA:A4:A6:EB:DB:38:3E:11:9D:69:53:C7:7F:16:86:6E:73:EF:2D:B5 Certificate issuer: /CN=baa4a6ebdb383e119d6953c77f16866e73ef2db5 Certificate serial: 019BF4D0F7C1E1CE621448AB1E10F4D29AA4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uqSm69s4PhGdaVPHfxaGbnPvLbU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/8daa29-c857-40c2-b97a-839ad7d093ed/1/uqSm69s4PhGdaVPHfxaGbnPvLbU.mft Manifest number: 33 Signing time: Sun 25 Jan 2026 11:01:34 +0000 Manifest this update: Sun 25 Jan 2026 11:01:34 +0000 Manifest next update: Mon 26 Jan 2026 11:01:34 +0000 Files and hashes: 1: 3GF4RweBnJwOd-6nUT5PiBsu4pA.asa (hash: DpP48tndWTlvXIujf26AwodQv/G4yY8pTSdg8bAtIy4=) 2: uqSm69s4PhGdaVPHfxaGbnPvLbU.crl (hash: fdh7UfAk0VYJdG/5Bqgm4tiH6EOGSowjhZOs5VTACPI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/8daa29-c857-40c2-b97a-839ad7d093ed/1/uqSm69s4PhGdaVPHfxaGbnPvLbU.crl rsync://rpki.ripe.net/repository/DEFAULT/fa/8daa29-c857-40c2-b97a-839ad7d093ed/1/uqSm69s4PhGdaVPHfxaGbnPvLbU.mft rsync://rpki.ripe.net/repository/DEFAULT/uqSm69s4PhGdaVPHfxaGbnPvLbU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 11:01:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f4:d0:f7:c1:e1:ce:62:14:48:ab:1e:10:f4:d2:9a:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=baa4a6ebdb383e119d6953c77f16866e73ef2db5 Validity Not Before: Jan 25 11:01:34 2026 GMT Not After : Jan 26 11:01:34 2026 GMT Subject: CN=d118112be18c9507836356e9e58b5edee3486afb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:a3:32:81:e7:34:d4:11:00:2e:06:5d:4b:0b: 36:d6:38:72:32:83:47:da:1c:0e:15:51:f8:e2:31: bc:f0:bf:bc:9a:8a:49:95:97:eb:82:fa:77:fd:44: 44:ce:ab:a9:63:02:2c:92:f7:ea:4e:6a:55:1b:e3: 01:89:fa:9c:d4:fe:a2:51:59:58:3f:cc:81:8d:8a: 47:cd:61:9b:ba:fe:61:d0:f2:b3:e8:e3:45:24:9c: d8:f1:35:7a:49:04:d4:6d:1b:fb:17:15:2a:3b:af: 43:67:e9:ef:29:fd:8a:bf:b7:5c:58:bd:98:34:5f: 57:90:a0:53:d7:13:c2:54:f3:f3:fc:5a:b4:ac:e1: 07:87:3d:af:53:ea:be:17:07:64:f3:9b:ad:ec:2d: 6b:76:be:67:56:2a:43:f9:9b:e1:43:f3:c6:b1:51: a9:bd:ad:a1:20:a0:16:64:74:0d:fd:57:49:bd:a0: bb:df:15:8f:b8:33:0b:44:e8:df:e3:b6:1b:c1:6a: cc:f8:b4:38:75:6d:97:aa:c6:66:39:72:08:dd:d0: 78:e3:fa:a5:69:51:0b:73:1c:33:af:7c:fc:a9:52: 82:fe:63:84:12:52:f9:f4:a7:f1:d0:b4:1c:aa:97: c8:17:0a:5d:ea:db:39:80:ca:97:b6:d1:5e:d0:d1: 17:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:18:11:2B:E1:8C:95:07:83:63:56:E9:E5:8B:5E:DE:E3:48:6A:FB X509v3 Authority Key Identifier: keyid:BA:A4:A6:EB:DB:38:3E:11:9D:69:53:C7:7F:16:86:6E:73:EF:2D:B5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uqSm69s4PhGdaVPHfxaGbnPvLbU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/8daa29-c857-40c2-b97a-839ad7d093ed/1/uqSm69s4PhGdaVPHfxaGbnPvLbU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/8daa29-c857-40c2-b97a-839ad7d093ed/1/uqSm69s4PhGdaVPHfxaGbnPvLbU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 39:e9:a7:2b:f1:bb:f3:7e:41:08:42:da:4e:8e:ed:6a:11:af: 47:8e:5a:7c:15:bd:a5:6c:a0:42:73:15:0c:f1:3b:06:8a:a6: 7b:6f:fd:7e:c2:ea:37:d8:9b:bb:03:2d:1d:e1:90:fa:cf:3b: 42:d1:52:ec:75:6b:de:cf:55:63:5a:a6:8b:92:fd:59:1a:ca: 18:d5:31:b3:36:59:50:5c:07:82:e0:ad:1d:54:21:47:36:92: b0:4f:58:1c:b7:e2:e7:4a:fa:d7:7b:a7:42:3e:7a:0f:0f:1b: 95:cc:63:f7:b9:b0:64:90:35:f5:cd:7b:b9:bd:f9:93:d9:38: a1:de:67:43:a4:a3:49:11:6d:66:d5:a1:90:00:d1:c8:08:2f: 83:e9:76:77:53:c2:22:2b:e6:01:41:df:ea:0a:28:5a:3b:f9: e1:a5:6c:ec:e2:3e:c7:c2:47:68:d4:5f:d9:21:db:1e:8a:a3: 8c:a5:d3:ee:6f:37:5c:af:84:d7:01:48:69:a0:86:e4:ed:c5: 84:50:4a:e2:93:3d:05:b4:cf:39:51:81:32:d7:93:38:af:33: ef:be:8a:50:2a:1c:3d:cb:b6:72:75:df:b6:a0:08:a5:d4:1a: 98:76:79:cc:7a:b7:77:63:71:29:f3:e2:f7:6c:90:ed:2b:b9: 5d:c6:d7:85 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv00PfB4c5iFEirHhD00pqkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJhYTRhNmViZGIzODNlMTE5ZDY5NTNjNzdmMTY4NjZlNzNl ZjJkYjUwHhcNMjYwMTI1MTEwMTM0WhcNMjYwMTI2MTEwMTM0WjAzMTEwLwYDVQQD EyhkMTE4MTEyYmUxOGM5NTA3ODM2MzU2ZTllNThiNWVkZWUzNDg2YWZiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw6Mygec01BEALgZdSws21jhyMoNH 2hwOFVH44jG88L+8mopJlZfrgvp3/UREzqupYwIskvfqTmpVG+MBifqc1P6iUVlY P8yBjYpHzWGbuv5h0PKz6ONFJJzY8TV6SQTUbRv7FxUqO69DZ+nvKf2Kv7dcWL2Y NF9XkKBT1xPCVPPz/Fq0rOEHhz2vU+q+Fwdk85ut7C1rdr5nVipD+ZvhQ/PGsVGp va2hIKAWZHQN/VdJvaC73xWPuDMLROjf47YbwWrM+LQ4dW2XqsZmOXII3dB44/ql aVELcxwzr3z8qVKC/mOEElL59Kfx0LQcqpfIFwpd6ts5gMqXttFe0NEXNwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNEYESvhjJUHg2NW6eWLXt7jSGr7MB8GA1UdIwQY MBaAFLqkpuvbOD4RnWlTx38Whm5z7y21MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdXFTbTY5czRQaEdkYVZQSGZ4YUdiblB2TGJVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYS84ZGFhMjktYzg1Ny00MGMyLWI5N2Et ODM5YWQ3ZDA5M2VkLzEvdXFTbTY5czRQaEdkYVZQSGZ4YUdiblB2TGJVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mYS84ZGFhMjktYzg1Ny00MGMyLWI5N2EtODM5YWQ3ZDA5M2Vk LzEvdXFTbTY5czRQaEdkYVZQSGZ4YUdiblB2TGJVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOemnK/G7 835BCELaTo7tahGvR45afBW9pWygQnMVDPE7Boqme2/9fsLqN9ibuwMtHeGQ+s87 QtFS7HVr3s9VY1qmi5L9WRrKGNUxszZZUFwHguCtHVQhRzaSsE9YHLfi50r613un Qj56Dw8blcxj97mwZJA19c17ub35k9k4od5nQ6SjSRFtZtWhkADRyAgvg+l2d1PC IivmAUHf6gooWjv54aVs7OI+x8JHaNRf2SHbHoqjjKXT7m83XK+E1wFIaaCG5O3F hFBK4pM9BbTPOVGBMteTOK8z776KUCocPcu2cnXftqAIpdQamHZ5zHq3d2NxKfPi 92yQ7Su5XcbXhQ== -----END CERTIFICATE-----Generated at Sun Jan 25 21:26:01 2026 by rpki-client