This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/058aa5-6494-4595-819b-f08d71c4f3db/1/zTCHzHAsjZNT_nj3kyRAt-hC_G4.mft File: zTCHzHAsjZNT_nj3kyRAt-hC_G4.mft (raw, json) Hash identifier: w+7dZXt61JKWqazFJF/l885OKd7g2D9XTxUsXkFtTxA= Subject key identifier: 9E:AF:2D:2F:20:68:72:98:61:58:2E:36:4A:7E:D0:F0:ED:10:6B:F6 Authority key identifier: CD:30:87:CC:70:2C:8D:93:53:FE:78:F7:93:24:40:B7:E8:42:FC:6E Certificate issuer: /CN=cd3087cc702c8d9353fe78f7932440b7e842fc6e Certificate serial: 019BD9C7FB87045244CF5A4D31312EE38EA2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zTCHzHAsjZNT_nj3kyRAt-hC_G4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/058aa5-6494-4595-819b-f08d71c4f3db/1/zTCHzHAsjZNT_nj3kyRAt-hC_G4.mft Manifest number: 1158 Signing time: Tue 20 Jan 2026 05:02:00 +0000 Manifest this update: Tue 20 Jan 2026 05:02:00 +0000 Manifest next update: Wed 21 Jan 2026 05:02:00 +0000 Files and hashes: 1: a0kN2gfK01wMuqhoW-MZjPAbstc.roa (hash: mmiujuewrIIcuNRFw3juwDDGpDhJAvUuobcjAggyfUE=) 2: zTCHzHAsjZNT_nj3kyRAt-hC_G4.crl (hash: zb8fO7gMYaRQ3LnD13fPRdNknQnSNjOmcfb2zQwGxVU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/058aa5-6494-4595-819b-f08d71c4f3db/1/zTCHzHAsjZNT_nj3kyRAt-hC_G4.crl rsync://rpki.ripe.net/repository/DEFAULT/00/058aa5-6494-4595-819b-f08d71c4f3db/1/zTCHzHAsjZNT_nj3kyRAt-hC_G4.mft rsync://rpki.ripe.net/repository/DEFAULT/zTCHzHAsjZNT_nj3kyRAt-hC_G4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 03:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:d9:c7:fb:87:04:52:44:cf:5a:4d:31:31:2e:e3:8e:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cd3087cc702c8d9353fe78f7932440b7e842fc6e Validity Not Before: Jan 20 05:02:00 2026 GMT Not After : Jan 21 05:02:00 2026 GMT Subject: CN=9eaf2d2f2068729861582e364a7ed0f0ed106bf6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:e5:28:bb:4d:58:d0:2e:93:84:8b:d9:e0:9a: 0e:c4:83:2f:ae:7a:f0:e5:39:89:a5:d8:99:af:c7: 91:0f:ba:29:a3:d1:15:c6:71:da:cd:8e:21:8e:38: 0a:19:9b:3f:1c:6b:13:06:c3:b5:4c:19:c8:5f:d9: 82:d7:8a:28:02:55:b2:24:c0:f9:b3:46:e0:1e:0c: c7:9d:23:26:b6:c2:b5:3c:d8:c9:1a:b8:16:c4:32: ef:9a:d6:03:fd:29:c9:3c:0e:00:af:39:20:1d:f4: d3:0d:ea:9a:12:c2:e8:52:e4:75:6b:e7:30:bc:ad: 4a:3f:72:8f:9d:74:a9:4f:4b:05:d8:0c:6e:b6:81: c2:18:1e:42:c0:a4:7b:80:99:ad:37:29:de:ae:e6: ef:14:53:8e:21:92:6d:da:bd:8d:c7:15:de:d6:9d: 85:0d:70:20:3b:ab:5b:27:8b:fd:70:3f:99:cf:00: 37:80:fd:df:01:d4:66:cf:7a:64:db:ea:a4:db:46: 8e:a1:f9:79:9f:67:5a:e1:51:76:cc:da:2c:95:cf: 89:7a:bf:e9:a2:5c:0c:f5:f3:dc:02:19:fd:05:de: 27:53:01:0d:bb:b3:35:d1:0e:0c:53:17:44:9d:3e: 90:27:41:01:93:a8:7a:28:c9:42:29:12:80:74:c0: 41:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:AF:2D:2F:20:68:72:98:61:58:2E:36:4A:7E:D0:F0:ED:10:6B:F6 X509v3 Authority Key Identifier: keyid:CD:30:87:CC:70:2C:8D:93:53:FE:78:F7:93:24:40:B7:E8:42:FC:6E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zTCHzHAsjZNT_nj3kyRAt-hC_G4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/058aa5-6494-4595-819b-f08d71c4f3db/1/zTCHzHAsjZNT_nj3kyRAt-hC_G4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/00/058aa5-6494-4595-819b-f08d71c4f3db/1/zTCHzHAsjZNT_nj3kyRAt-hC_G4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 92:96:9a:52:f1:7d:69:12:8a:65:96:ba:ea:b7:da:9f:8d:a1: 04:7d:1d:c8:78:34:fb:0d:8b:da:89:9f:e5:6d:fb:82:91:51: b3:83:4a:d0:fc:45:dd:cf:77:91:4b:b9:92:eb:40:41:a6:31: 2b:b5:83:c5:3e:aa:95:2a:b1:9e:17:28:8f:c0:cf:9e:42:11: 09:f9:3c:5a:94:2b:e7:91:28:4e:69:ed:c9:f7:80:c7:fc:ad: e9:f8:1b:03:25:6d:dd:c0:16:c8:9c:c1:40:04:f1:72:90:6b: 3e:b3:c5:18:0d:aa:e0:cf:15:2e:80:05:48:4a:fe:97:13:c3: 4d:f5:ee:97:95:02:39:ae:7c:4b:b7:34:d5:32:62:e4:ec:e1: b7:17:f4:8a:c1:29:dd:7b:a1:08:86:7d:75:de:07:20:c6:81: d4:40:0c:bb:f8:50:cf:c1:45:6c:2c:b5:75:df:b2:f5:94:ea: b4:f2:30:1d:ea:ee:01:c0:70:06:41:f1:16:51:52:25:7a:f6: 1d:bc:d9:c4:e4:8f:d3:8a:90:80:73:3c:2d:91:a5:55:46:27: 4f:99:34:8f:fa:14:21:c9:c2:5b:af:36:30:f2:d2:7b:9f:23: 7a:4b:13:7d:1a:b2:7c:af:ff:33:da:b9:c0:4d:be:43:c8:fc: 52:aa:44:f6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZvZx/uHBFJEz1pNMTEu446iMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNkMzA4N2NjNzAyYzhkOTM1M2ZlNzhmNzkzMjQ0MGI3ZTg0 MmZjNmUwHhcNMjYwMTIwMDUwMjAwWhcNMjYwMTIxMDUwMjAwWjAzMTEwLwYDVQQD Eyg5ZWFmMmQyZjIwNjg3Mjk4NjE1ODJlMzY0YTdlZDBmMGVkMTA2YmY2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArOUou01Y0C6ThIvZ4JoOxIMvrnrw 5TmJpdiZr8eRD7opo9EVxnHazY4hjjgKGZs/HGsTBsO1TBnIX9mC14ooAlWyJMD5 s0bgHgzHnSMmtsK1PNjJGrgWxDLvmtYD/SnJPA4ArzkgHfTTDeqaEsLoUuR1a+cw vK1KP3KPnXSpT0sF2AxutoHCGB5CwKR7gJmtNynerubvFFOOIZJt2r2NxxXe1p2F DXAgO6tbJ4v9cD+ZzwA3gP3fAdRmz3pk2+qk20aOofl5n2da4VF2zNoslc+Jer/p olwM9fPcAhn9Bd4nUwENu7M10Q4MUxdEnT6QJ0EBk6h6KMlCKRKAdMBBVwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJ6vLS8gaHKYYVguNkp+0PDtEGv2MB8GA1UdIwQY MBaAFM0wh8xwLI2TU/5495MkQLfoQvxuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvelRDSHpIQXNqWk5UX25qM2t5UkF0LWhDX0c0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC8wNThhYTUtNjQ5NC00NTk1LTgxOWIt ZjA4ZDcxYzRmM2RiLzEvelRDSHpIQXNqWk5UX25qM2t5UkF0LWhDX0c0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMC8wNThhYTUtNjQ5NC00NTk1LTgxOWItZjA4ZDcxYzRmM2Ri LzEvelRDSHpIQXNqWk5UX25qM2t5UkF0LWhDX0c0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkpaaUvF9 aRKKZZa66rfan42hBH0dyHg0+w2L2omf5W37gpFRs4NK0PxF3c93kUu5kutAQaYx K7WDxT6qlSqxnhcoj8DPnkIRCfk8WpQr55EoTmntyfeAx/yt6fgbAyVt3cAWyJzB QATxcpBrPrPFGA2q4M8VLoAFSEr+lxPDTfXul5UCOa58S7c01TJi5Ozhtxf0isEp 3XuhCIZ9dd4HIMaB1EAMu/hQz8FFbCy1dd+y9ZTqtPIwHeruAcBwBkHxFlFSJXr2 HbzZxOSP04qQgHM8LZGlVUYnT5k0j/oUIcnCW682MPLSe58jeksTfRqyfK//M9q5 wE2+Q8j8UqpE9g== -----END CERTIFICATE-----Generated at Tue Jan 20 07:51:30 2026 by rpki-client