This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/b92d9d-21a8-4522-97de-0fbe2de0636d/1/97FD9k1RC6MSl8uuVoL9QbLIEZY.mft File: 97FD9k1RC6MSl8uuVoL9QbLIEZY.mft (raw, json) Hash identifier: mhhHlkTOCzmlNSoJRElDakE/VJKPyiZIXJQbCK4oXBQ= Subject key identifier: 51:2F:70:A3:57:3D:88:54:96:E9:10:EB:60:1D:5C:2B:EF:21:54:F0 Authority key identifier: F7:B1:43:F6:4D:51:0B:A3:12:97:CB:AE:56:82:FD:41:B2:C8:11:96 Certificate issuer: /CN=f7b143f64d510ba31297cbae5682fd41b2c81196 Certificate serial: 019BF9F6B3265DF1C28BCFD08C7A87FF9705 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/97FD9k1RC6MSl8uuVoL9QbLIEZY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/b92d9d-21a8-4522-97de-0fbe2de0636d/1/97FD9k1RC6MSl8uuVoL9QbLIEZY.mft Manifest number: 0B87 Signing time: Mon 26 Jan 2026 11:00:53 +0000 Manifest this update: Mon 26 Jan 2026 11:00:53 +0000 Manifest next update: Tue 27 Jan 2026 11:00:53 +0000 Files and hashes: 1: 97FD9k1RC6MSl8uuVoL9QbLIEZY.crl (hash: sl7YwyRrSDn1mcI8z/DhPc55neU8EuLpjN9ACpgKYTQ=) 2: uIJ0IS79WDVVxYIbBz_R4fqspJQ.roa (hash: h35WdtQ05WmybDkYDylEfj+xzINWR/bUtvARmeLtlc8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/b92d9d-21a8-4522-97de-0fbe2de0636d/1/97FD9k1RC6MSl8uuVoL9QbLIEZY.crl rsync://rpki.ripe.net/repository/DEFAULT/fb/b92d9d-21a8-4522-97de-0fbe2de0636d/1/97FD9k1RC6MSl8uuVoL9QbLIEZY.mft rsync://rpki.ripe.net/repository/DEFAULT/97FD9k1RC6MSl8uuVoL9QbLIEZY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 10:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f9:f6:b3:26:5d:f1:c2:8b:cf:d0:8c:7a:87:ff:97:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f7b143f64d510ba31297cbae5682fd41b2c81196 Validity Not Before: Jan 26 11:00:53 2026 GMT Not After : Jan 27 11:00:53 2026 GMT Subject: CN=512f70a3573d885496e910eb601d5c2bef2154f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:f1:8e:e0:13:3d:27:e1:7a:19:33:20:02:ae: a3:68:9a:29:e0:61:7b:fe:ce:27:b3:b6:d3:fd:74: 00:f6:49:be:3f:c7:30:49:7e:14:30:e4:fa:66:20: 5e:62:4d:24:a2:7d:1f:ff:ea:09:7c:9c:4b:2c:69: 95:52:43:dd:48:c5:c9:c6:03:7f:05:d8:62:b6:fd: e5:76:7a:ec:85:a5:21:c4:c9:9d:bb:76:ce:c2:3c: a2:95:08:80:a7:30:05:a5:f5:d6:6c:c2:3c:91:db: f5:35:f1:eb:47:5b:36:c0:1a:45:37:63:5f:71:16: e7:6e:e5:20:b9:03:14:5e:f5:62:2c:41:b7:33:b7: a2:a1:f0:f1:31:58:1f:60:8c:98:b5:89:62:63:b2: e5:5d:50:71:86:e1:28:ef:8d:7d:ad:b3:7a:32:d3: 65:89:7a:81:3a:7a:4e:b0:69:53:53:10:27:00:2c: b8:41:c1:04:39:25:fb:3d:90:45:db:28:ef:f5:d8: 8f:e8:cd:ab:12:2a:d0:76:1e:db:7c:ff:c7:08:a5: 58:90:b4:48:7a:8c:a7:b6:e8:d8:f3:5f:51:a6:5e: d1:ca:ef:fa:b6:76:4e:91:99:6f:8e:f6:40:e9:58: 5f:c8:b9:88:3f:31:21:ec:4a:25:4d:24:de:98:f1: ac:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:2F:70:A3:57:3D:88:54:96:E9:10:EB:60:1D:5C:2B:EF:21:54:F0 X509v3 Authority Key Identifier: keyid:F7:B1:43:F6:4D:51:0B:A3:12:97:CB:AE:56:82:FD:41:B2:C8:11:96 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/97FD9k1RC6MSl8uuVoL9QbLIEZY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/b92d9d-21a8-4522-97de-0fbe2de0636d/1/97FD9k1RC6MSl8uuVoL9QbLIEZY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/b92d9d-21a8-4522-97de-0fbe2de0636d/1/97FD9k1RC6MSl8uuVoL9QbLIEZY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 33:26:a7:1b:f7:24:51:7a:b2:01:da:74:e3:67:77:de:e6:5b: 37:f5:d0:fe:ee:99:c1:da:36:c2:5b:94:8f:c5:9e:1a:d1:95: 93:d8:c6:23:20:e6:c9:01:ba:3a:0e:db:29:5c:10:6e:18:a5: 82:a7:c9:a2:e5:4b:22:7b:29:c4:2e:47:fc:28:fc:8c:f0:ee: 3f:15:44:1a:77:4c:f5:98:39:6d:0c:70:b2:78:c2:ad:0b:85: e7:43:34:91:61:7b:11:14:2b:7f:34:8e:9f:ca:48:81:88:82: ab:b1:df:c4:ed:8c:dd:7f:18:39:45:d1:07:ae:83:45:e7:15: 32:2d:d6:f1:a2:63:36:a4:5e:e9:f3:9e:1f:20:44:3f:b8:70: 32:4d:ef:f0:17:a7:06:de:6f:82:97:a4:d7:7c:be:1b:12:37: 09:cb:4a:d3:26:6b:8f:25:cf:21:2d:b2:49:48:eb:78:c5:4d: 26:15:0c:56:4b:91:46:da:70:09:48:be:7f:4c:67:36:28:20: 02:ae:b5:8d:4d:dc:b7:41:cd:ea:c7:db:0c:63:28:64:34:7a: 74:b4:a7:86:0f:3d:03:d5:f1:b5:af:d9:99:93:b1:81:49:15: 01:73:e7:a5:d9:22:a0:1a:30:c2:4e:11:25:41:da:e9:2a:55: 2b:73:69:8f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv59rMmXfHCi8/QjHqH/5cFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY3YjE0M2Y2NGQ1MTBiYTMxMjk3Y2JhZTU2ODJmZDQxYjJj ODExOTYwHhcNMjYwMTI2MTEwMDUzWhcNMjYwMTI3MTEwMDUzWjAzMTEwLwYDVQQD Eyg1MTJmNzBhMzU3M2Q4ODU0OTZlOTEwZWI2MDFkNWMyYmVmMjE1NGYwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApPGO4BM9J+F6GTMgAq6jaJop4GF7 /s4ns7bT/XQA9km+P8cwSX4UMOT6ZiBeYk0kon0f/+oJfJxLLGmVUkPdSMXJxgN/ Bdhitv3ldnrshaUhxMmdu3bOwjyilQiApzAFpfXWbMI8kdv1NfHrR1s2wBpFN2Nf cRbnbuUguQMUXvViLEG3M7eiofDxMVgfYIyYtYliY7LlXVBxhuEo7419rbN6MtNl iXqBOnpOsGlTUxAnACy4QcEEOSX7PZBF2yjv9diP6M2rEirQdh7bfP/HCKVYkLRI eoyntujY819Rpl7Ryu/6tnZOkZlvjvZA6VhfyLmIPzEh7EolTSTemPGsGQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFEvcKNXPYhUlukQ62AdXCvvIVTwMB8GA1UdIwQY MBaAFPexQ/ZNUQujEpfLrlaC/UGyyBGWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOTdGRDlrMVJDNk1TbDh1dVZvTDlRYkxJRVpZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYi9iOTJkOWQtMjFhOC00NTIyLTk3ZGUt MGZiZTJkZTA2MzZkLzEvOTdGRDlrMVJDNk1TbDh1dVZvTDlRYkxJRVpZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mYi9iOTJkOWQtMjFhOC00NTIyLTk3ZGUtMGZiZTJkZTA2MzZk LzEvOTdGRDlrMVJDNk1TbDh1dVZvTDlRYkxJRVpZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMyanG/ck UXqyAdp042d33uZbN/XQ/u6Zwdo2wluUj8WeGtGVk9jGIyDmyQG6Og7bKVwQbhil gqfJouVLInspxC5H/Cj8jPDuPxVEGndM9Zg5bQxwsnjCrQuF50M0kWF7ERQrfzSO n8pIgYiCq7HfxO2M3X8YOUXRB66DRecVMi3W8aJjNqRe6fOeHyBEP7hwMk3v8Ben Bt5vgpek13y+GxI3CctK0yZrjyXPIS2ySUjreMVNJhUMVkuRRtpwCUi+f0xnNigg Aq61jU3ct0HN6sfbDGMoZDR6dLSnhg89A9Xxta/ZmZOxgUkVAXPnpdkioBowwk4R JUHa6SpVK3Npjw== -----END CERTIFICATE-----Generated at Mon Jan 26 13:05:15 2026 by rpki-client