This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/e4e07e-15fc-4942-842a-538509f3a789/1/TSPi7bMh4ailzp7j4tlapA8N6KA.mft File: TSPi7bMh4ailzp7j4tlapA8N6KA.mft (raw, json) Hash identifier: VuhamxJgCVSFS/qVHfGqJ+/xQ1DBB+zZK/x1OqtE7gE= Subject key identifier: 26:01:B7:5D:5B:1E:F6:C4:09:3B:89:20:EE:26:A0:7C:96:BC:95:7E Authority key identifier: 4D:23:E2:ED:B3:21:E1:A8:A5:CE:9E:E3:E2:D9:5A:A4:0F:0D:E8:A0 Certificate issuer: /CN=4d23e2edb321e1a8a5ce9ee3e2d95aa40f0de8a0 Certificate serial: 019BF72D99DE30759C376CE305CF1E74D4C8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TSPi7bMh4ailzp7j4tlapA8N6KA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/e4e07e-15fc-4942-842a-538509f3a789/1/TSPi7bMh4ailzp7j4tlapA8N6KA.mft Manifest number: 0C9F Signing time: Sun 25 Jan 2026 22:01:59 +0000 Manifest this update: Sun 25 Jan 2026 22:01:59 +0000 Manifest next update: Mon 26 Jan 2026 22:01:59 +0000 Files and hashes: 1: JXFUH416zwkJgWarbpHaBu4OjrM.roa (hash: 4a95XnQ0KPTukf9VV0SjrYCDAkfbYBMqoLt/hvW2kls=) 2: Ne3vXvFZfDJtHFxRi2iyMMXZXak.roa (hash: 90S1YKvYb+j9r5QawOi7WPQ7WUn8bPfBJqf4jlJtVS4=) 3: TSPi7bMh4ailzp7j4tlapA8N6KA.crl (hash: 9IZGUJ63ADmFQ50Gt54MioPF0DwpJ0g4cHxMXex0LXE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/e4e07e-15fc-4942-842a-538509f3a789/1/TSPi7bMh4ailzp7j4tlapA8N6KA.crl rsync://rpki.ripe.net/repository/DEFAULT/fd/e4e07e-15fc-4942-842a-538509f3a789/1/TSPi7bMh4ailzp7j4tlapA8N6KA.mft rsync://rpki.ripe.net/repository/DEFAULT/TSPi7bMh4ailzp7j4tlapA8N6KA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f7:2d:99:de:30:75:9c:37:6c:e3:05:cf:1e:74:d4:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4d23e2edb321e1a8a5ce9ee3e2d95aa40f0de8a0 Validity Not Before: Jan 25 22:01:59 2026 GMT Not After : Jan 26 22:01:59 2026 GMT Subject: CN=2601b75d5b1ef6c4093b8920ee26a07c96bc957e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:61:78:ed:dd:84:f3:0a:5e:f3:91:32:92:60: 63:ba:de:c1:ad:67:1b:0c:f3:bc:b7:62:77:96:fb: d2:38:c6:c7:63:f4:cd:eb:1b:4b:08:c9:1a:ce:36: f2:6c:9c:36:40:69:ae:a0:e3:73:ef:20:da:b3:ce: a4:e8:7e:32:65:ca:14:16:11:82:e9:b0:1b:5b:eb: a0:d1:be:b4:cf:92:b2:d5:ac:a1:f3:82:f8:53:a7: c2:6e:71:38:cd:17:8e:cc:a7:88:cb:89:6c:6d:b1: 86:1b:70:00:2c:1a:5a:79:de:70:ab:1a:92:fc:36: d5:80:72:7a:23:76:0f:8e:e0:f0:d2:e9:8d:ed:2d: 8e:7b:5f:54:a4:92:14:b2:4a:72:5b:19:ec:1d:17: 45:c5:4b:02:3c:ba:7c:2c:b7:24:2a:b1:a4:81:12: 13:86:fd:80:26:29:47:4d:c0:e9:94:24:7f:97:1c: c5:78:7a:3c:fb:f0:d3:36:17:be:f5:ac:e8:39:fc: c3:cf:c7:53:30:32:83:67:42:f0:ee:7f:4c:b3:e6: 25:85:a0:6d:58:cd:c6:6f:5c:15:26:0c:05:67:a2: de:70:d0:17:42:6e:8b:7c:90:63:34:7a:69:59:5c: bb:68:f7:b0:bd:0b:d7:5e:19:43:08:12:1a:03:99: 89:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:01:B7:5D:5B:1E:F6:C4:09:3B:89:20:EE:26:A0:7C:96:BC:95:7E X509v3 Authority Key Identifier: keyid:4D:23:E2:ED:B3:21:E1:A8:A5:CE:9E:E3:E2:D9:5A:A4:0F:0D:E8:A0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TSPi7bMh4ailzp7j4tlapA8N6KA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/e4e07e-15fc-4942-842a-538509f3a789/1/TSPi7bMh4ailzp7j4tlapA8N6KA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/e4e07e-15fc-4942-842a-538509f3a789/1/TSPi7bMh4ailzp7j4tlapA8N6KA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ad:b7:68:ab:11:68:80:35:19:9e:f6:cf:87:1f:bf:ce:d4:5a: fb:d1:64:b8:5f:ef:25:2f:b0:bb:68:8b:7c:2c:df:72:c8:a6: 51:1b:ad:61:66:15:6d:c0:28:14:ee:b9:68:3c:d7:e6:6b:9b: e7:cc:46:d8:ff:66:05:b7:df:94:57:a9:cc:73:6c:77:d0:35: fe:70:3b:6a:d9:93:9a:39:15:cf:43:5a:21:3a:79:25:74:cf: 26:a9:9b:c7:73:2b:fa:9a:3f:61:4e:d9:6a:2c:55:43:45:de: e3:2a:0f:f8:26:61:75:f9:f9:76:ac:d6:0d:0a:d9:10:f8:84: 44:6a:3d:ec:7f:84:dc:26:0f:4e:83:79:0f:4a:41:f0:cc:54: 38:9e:7c:67:f3:a9:a5:1a:75:17:62:bc:cd:58:49:46:41:6c: 3a:dd:3c:96:3a:c6:f1:65:33:63:82:a8:52:71:40:a7:3d:62: 57:80:5f:f6:84:9c:1f:05:12:00:84:5f:6b:06:c1:56:cb:c9: e8:71:46:8e:da:bb:36:90:6f:a7:59:75:bc:2f:33:9f:50:4b: 0a:97:f1:3d:2e:06:5d:d0:50:f6:fc:2e:a6:d8:31:48:c4:c6: df:cd:75:66:c9:aa:20:fd:5c:51:87:72:38:e0:7c:3a:05:f2: 64:34:f5:5d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv3LZneMHWcN2zjBc8edNTIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRkMjNlMmVkYjMyMWUxYThhNWNlOWVlM2UyZDk1YWE0MGYw ZGU4YTAwHhcNMjYwMTI1MjIwMTU5WhcNMjYwMTI2MjIwMTU5WjAzMTEwLwYDVQQD EygyNjAxYjc1ZDViMWVmNmM0MDkzYjg5MjBlZTI2YTA3Yzk2YmM5NTdlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqGF47d2E8wpe85EykmBjut7BrWcb DPO8t2J3lvvSOMbHY/TN6xtLCMkazjbybJw2QGmuoONz7yDas86k6H4yZcoUFhGC 6bAbW+ug0b60z5Ky1ayh84L4U6fCbnE4zReOzKeIy4lsbbGGG3AALBpaed5wqxqS /DbVgHJ6I3YPjuDw0umN7S2Oe19UpJIUskpyWxnsHRdFxUsCPLp8LLckKrGkgRIT hv2AJilHTcDplCR/lxzFeHo8+/DTNhe+9azoOfzDz8dTMDKDZ0Lw7n9Ms+YlhaBt WM3Gb1wVJgwFZ6LecNAXQm6LfJBjNHppWVy7aPewvQvXXhlDCBIaA5mJoQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCYBt11bHvbECTuJIO4moHyWvJV+MB8GA1UdIwQY MBaAFE0j4u2zIeGopc6e4+LZWqQPDeigMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVFNQaTdiTWg0YWlsenA3ajR0bGFwQThONktBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC9lNGUwN2UtMTVmYy00OTQyLTg0MmEt NTM4NTA5ZjNhNzg5LzEvVFNQaTdiTWg0YWlsenA3ajR0bGFwQThONktBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZC9lNGUwN2UtMTVmYy00OTQyLTg0MmEtNTM4NTA5ZjNhNzg5 LzEvVFNQaTdiTWg0YWlsenA3ajR0bGFwQThONktBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArbdoqxFo gDUZnvbPhx+/ztRa+9FkuF/vJS+wu2iLfCzfcsimURutYWYVbcAoFO65aDzX5mub 58xG2P9mBbfflFepzHNsd9A1/nA7atmTmjkVz0NaITp5JXTPJqmbx3Mr+po/YU7Z aixVQ0Xe4yoP+CZhdfn5dqzWDQrZEPiERGo97H+E3CYPToN5D0pB8MxUOJ58Z/Op pRp1F2K8zVhJRkFsOt08ljrG8WUzY4KoUnFApz1iV4Bf9oScHwUSAIRfawbBVsvJ 6HFGjtq7NpBvp1l1vC8zn1BLCpfxPS4GXdBQ9vwuptgxSMTG3811ZsmqIP1cUYdy OOB8OgXyZDT1XQ== -----END CERTIFICATE-----Generated at Mon Jan 26 02:15:17 2026 by rpki-client