This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/c48b4c-0221-4646-bb72-05cf9db430b3/1/lUZGXKW4bCWgLlLsvwTEz7wHZU0.mft File: lUZGXKW4bCWgLlLsvwTEz7wHZU0.mft (raw, json) Hash identifier: 0LHgMqaf78yTbN7FD4fqS7vb5kvPJ6TqXaiIvGQQP4g= Subject key identifier: 33:FE:C9:82:3A:06:64:DB:3C:59:03:81:12:3C:D5:BB:F8:59:D2:EF Authority key identifier: 95:46:46:5C:A5:B8:6C:25:A0:2E:52:EC:BF:04:C4:CF:BC:07:65:4D Certificate issuer: /CN=9546465ca5b86c25a02e52ecbf04c4cfbc07654d Certificate serial: 019BF8E407ED1D45258CB36C1B2AB93CC74A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lUZGXKW4bCWgLlLsvwTEz7wHZU0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/c48b4c-0221-4646-bb72-05cf9db430b3/1/lUZGXKW4bCWgLlLsvwTEz7wHZU0.mft Manifest number: 0634 Signing time: Mon 26 Jan 2026 06:00:52 +0000 Manifest this update: Mon 26 Jan 2026 06:00:52 +0000 Manifest next update: Tue 27 Jan 2026 06:00:52 +0000 Files and hashes: 1: McifzUNxziI8WsCXgZeHNz10iWQ.roa (hash: 1R6rZYh+m87Flh7dOcMYHRsZeD59VMaEbBnj6Shuhfs=) 2: lUZGXKW4bCWgLlLsvwTEz7wHZU0.crl (hash: tIMx+ErSKsMktqSfHYpxE0SxsonDdyn+2+M9jwX+kec=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/c48b4c-0221-4646-bb72-05cf9db430b3/1/lUZGXKW4bCWgLlLsvwTEz7wHZU0.crl rsync://rpki.ripe.net/repository/DEFAULT/fa/c48b4c-0221-4646-bb72-05cf9db430b3/1/lUZGXKW4bCWgLlLsvwTEz7wHZU0.mft rsync://rpki.ripe.net/repository/DEFAULT/lUZGXKW4bCWgLlLsvwTEz7wHZU0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 06:00:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f8:e4:07:ed:1d:45:25:8c:b3:6c:1b:2a:b9:3c:c7:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9546465ca5b86c25a02e52ecbf04c4cfbc07654d Validity Not Before: Jan 26 06:00:52 2026 GMT Not After : Jan 27 06:00:52 2026 GMT Subject: CN=33fec9823a0664db3c590381123cd5bbf859d2ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:4c:45:f3:4c:35:26:d1:ae:37:f8:1c:8d:da: 86:d2:6a:c0:5e:83:ab:b1:83:77:9e:2e:1e:9f:ac: f3:0f:f5:f9:89:84:f8:6c:af:f0:ef:91:03:d3:73: 4a:9f:fd:0e:75:2d:cd:64:e1:18:7f:4d:bd:74:95: f0:b2:d8:c8:14:ef:46:3e:07:9f:aa:7c:bc:69:f1: d1:f9:55:4c:7b:c7:aa:8e:2f:5c:a0:71:1e:d0:51: 44:d3:62:48:85:9f:05:17:a1:a3:20:a7:f9:a0:6d: 90:ce:13:d1:9f:4a:a3:f4:81:3d:03:47:3c:ce:5a: 86:dc:45:59:a2:21:81:51:1f:83:c9:9b:62:ac:21: cd:d9:ee:67:7b:75:dc:b9:48:99:52:a3:bb:54:b1: 42:9e:3e:03:a6:73:0c:73:61:01:1c:82:79:6c:85: df:6b:af:30:3b:6e:ca:5e:6b:7f:39:b1:11:2f:bc: 9d:ce:f9:6b:c6:05:92:be:18:0a:24:22:44:b5:4e: 8e:24:35:7d:f7:ab:fd:87:53:81:b7:86:80:a9:d0: 95:13:00:5d:5e:72:98:9d:ec:12:cf:63:5d:73:a6: 20:4b:fc:02:09:2c:9a:ba:fd:7c:c5:3f:c5:33:63: ec:9c:3c:b6:3c:a0:04:af:54:b7:25:6b:ac:51:23: a8:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:FE:C9:82:3A:06:64:DB:3C:59:03:81:12:3C:D5:BB:F8:59:D2:EF X509v3 Authority Key Identifier: keyid:95:46:46:5C:A5:B8:6C:25:A0:2E:52:EC:BF:04:C4:CF:BC:07:65:4D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lUZGXKW4bCWgLlLsvwTEz7wHZU0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/c48b4c-0221-4646-bb72-05cf9db430b3/1/lUZGXKW4bCWgLlLsvwTEz7wHZU0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/c48b4c-0221-4646-bb72-05cf9db430b3/1/lUZGXKW4bCWgLlLsvwTEz7wHZU0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6d:67:1e:8f:4d:be:8c:3a:68:fe:93:ec:df:fb:07:cc:af:25: 6d:16:3a:09:c7:7d:f3:93:87:5b:e2:1a:46:50:0d:7c:53:b6: ac:bb:f0:f3:93:fa:12:9e:eb:ae:7b:ec:af:2b:54:0c:22:e5: 39:46:8f:6c:03:d7:96:28:1b:ff:4a:71:cf:15:fc:2f:ec:33: c5:d9:d0:50:3c:8c:3d:de:75:3c:62:bd:7d:54:5f:7c:e3:a7: e2:ae:17:d4:01:11:cc:73:7f:79:af:ed:27:26:20:c8:df:57: 79:16:a5:6a:e5:72:ba:75:92:63:45:9b:9d:ae:81:14:a3:59: 56:25:9d:4d:ca:62:0c:e9:d0:af:14:91:24:ee:02:1b:61:ac: 1b:9c:c8:fc:cb:6d:0e:9f:4f:c4:66:4a:e3:c9:60:16:c5:c5: ad:83:48:a9:d6:76:12:52:16:0d:f7:e0:74:dc:46:67:6e:9e: 32:76:8e:5f:f2:5f:a8:ab:74:e4:70:3b:f0:de:87:1a:c0:0d: 7d:51:79:8a:a3:be:d9:a9:c9:d0:59:e6:b7:a2:e9:22:4d:14: 23:c3:4d:2e:88:fb:2b:c4:fb:ed:7b:ea:c2:eb:10:ba:a0:ed: 16:ba:46:cf:9c:e8:03:2c:2d:c4:98:b1:e3:1b:eb:da:3c:a7: cc:cb:97:64 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv45AftHUUljLNsGyq5PMdKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk1NDY0NjVjYTViODZjMjVhMDJlNTJlY2JmMDRjNGNmYmMw NzY1NGQwHhcNMjYwMTI2MDYwMDUyWhcNMjYwMTI3MDYwMDUyWjAzMTEwLwYDVQQD EygzM2ZlYzk4MjNhMDY2NGRiM2M1OTAzODExMjNjZDViYmY4NTlkMmVmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1UxF80w1JtGuN/gcjdqG0mrAXoOr sYN3ni4en6zzD/X5iYT4bK/w75ED03NKn/0OdS3NZOEYf029dJXwstjIFO9GPgef qny8afHR+VVMe8eqji9coHEe0FFE02JIhZ8FF6GjIKf5oG2QzhPRn0qj9IE9A0c8 zlqG3EVZoiGBUR+DyZtirCHN2e5ne3XcuUiZUqO7VLFCnj4DpnMMc2EBHIJ5bIXf a68wO27KXmt/ObERL7ydzvlrxgWSvhgKJCJEtU6OJDV996v9h1OBt4aAqdCVEwBd XnKYnewSz2Ndc6YgS/wCCSyauv18xT/FM2PsnDy2PKAEr1S3JWusUSOorQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDP+yYI6BmTbPFkDgRI81bv4WdLvMB8GA1UdIwQY MBaAFJVGRlyluGwloC5S7L8ExM+8B2VNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbFVaR1hLVzRiQ1dnTGxMc3Z3VEV6N3dIWlUwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYS9jNDhiNGMtMDIyMS00NjQ2LWJiNzIt MDVjZjlkYjQzMGIzLzEvbFVaR1hLVzRiQ1dnTGxMc3Z3VEV6N3dIWlUwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mYS9jNDhiNGMtMDIyMS00NjQ2LWJiNzItMDVjZjlkYjQzMGIz LzEvbFVaR1hLVzRiQ1dnTGxMc3Z3VEV6N3dIWlUwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbWcej02+ jDpo/pPs3/sHzK8lbRY6Ccd985OHW+IaRlANfFO2rLvw85P6Ep7rrnvsrytUDCLl OUaPbAPXligb/0pxzxX8L+wzxdnQUDyMPd51PGK9fVRffOOn4q4X1AERzHN/ea/t JyYgyN9XeRalauVyunWSY0Wbna6BFKNZViWdTcpiDOnQrxSRJO4CG2GsG5zI/Mtt Dp9PxGZK48lgFsXFrYNIqdZ2ElIWDffgdNxGZ26eMnaOX/JfqKt05HA78N6HGsAN fVF5iqO+2anJ0Fnmt6LpIk0UI8NNLoj7K8T77XvqwusQuqDtFrpGz5zoAywtxJix 4xvr2jynzMuXZA== -----END CERTIFICATE-----Generated at Mon Jan 26 13:35:31 2026 by rpki-client