This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/395684-c872-4217-b27c-8b5ea6648176/1/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.mft File: sEPmIf4QCXAfY2aEPAq8QeGAwUQ.mft (raw, json) Hash identifier: 5y+MVXD8NV6CodCcC2AajfQjFpZU6SABE1mostOVakc= Subject key identifier: 6E:95:C2:85:18:03:2C:26:FC:53:E8:17:80:11:08:33:DE:11:C4:DF Authority key identifier: B0:43:E6:21:FE:10:09:70:1F:63:66:84:3C:0A:BC:41:E1:80:C1:44 Certificate issuer: /CN=b043e621fe1009701f6366843c0abc41e180c144 Certificate serial: 019BFA2D5F69588A8FBBFCA86186E93B1761 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/395684-c872-4217-b27c-8b5ea6648176/1/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.mft Manifest number: 0ED2 Signing time: Mon 26 Jan 2026 12:00:36 +0000 Manifest this update: Mon 26 Jan 2026 12:00:36 +0000 Manifest next update: Tue 27 Jan 2026 12:00:36 +0000 Files and hashes: 1: OgmO1-eTgD9dDZrWj316OjI4JBA.roa (hash: 2J65qaET21q0mAcovvv6olsnYJM+JIut2vJCZjhvWr4=) 2: sEPmIf4QCXAfY2aEPAq8QeGAwUQ.crl (hash: FkOXPGFnCWiaoh9Rv0l4cvJOFJJt+irZG5VBeMvJAfo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/395684-c872-4217-b27c-8b5ea6648176/1/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.crl rsync://rpki.ripe.net/repository/DEFAULT/00/395684-c872-4217-b27c-8b5ea6648176/1/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.mft rsync://rpki.ripe.net/repository/DEFAULT/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 10:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fa:2d:5f:69:58:8a:8f:bb:fc:a8:61:86:e9:3b:17:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b043e621fe1009701f6366843c0abc41e180c144 Validity Not Before: Jan 26 12:00:36 2026 GMT Not After : Jan 27 12:00:36 2026 GMT Subject: CN=6e95c28518032c26fc53e81780110833de11c4df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:af:36:04:1a:4d:03:71:56:1d:2e:c8:af:ac: 2c:16:b2:63:30:83:14:20:85:49:74:e3:e2:6f:2d: a0:7a:dc:16:c1:f8:83:81:e1:9a:95:a8:b8:38:17: 7d:ae:df:39:a4:13:88:85:56:a0:f4:15:db:25:5c: a9:a7:ec:83:1b:ae:a8:b5:0e:04:38:ca:9a:49:bc: 63:80:b7:5e:db:5e:f8:7c:ed:75:8e:a4:c4:8f:66: 00:dc:bc:db:cf:d2:97:c6:9b:6e:95:31:d4:c5:49: bf:24:0c:e4:7e:ec:e3:ff:53:61:f8:34:b5:06:ff: 3d:b2:ce:a5:fd:c2:11:3f:a8:82:f2:52:56:c5:15: 31:6d:35:fc:2c:f2:96:89:de:9a:03:0a:72:26:a9: e9:26:41:7b:bc:c5:73:56:22:19:6c:9d:3a:92:23: ef:e1:2d:94:1f:9a:19:81:83:56:aa:c9:60:2f:bc: 98:50:44:41:73:3f:35:ba:1d:71:4b:9e:d1:ba:a3: 6f:99:55:da:f7:83:04:b2:26:ee:6b:c0:99:43:72: 62:14:8b:fd:55:41:ea:8a:24:34:d2:25:a0:c2:aa: 53:1d:56:c6:d8:00:83:cc:13:25:da:de:02:fb:95: 88:c1:78:db:ce:bb:73:57:91:a8:95:1d:38:ab:1d: 3c:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:95:C2:85:18:03:2C:26:FC:53:E8:17:80:11:08:33:DE:11:C4:DF X509v3 Authority Key Identifier: keyid:B0:43:E6:21:FE:10:09:70:1F:63:66:84:3C:0A:BC:41:E1:80:C1:44 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/395684-c872-4217-b27c-8b5ea6648176/1/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/00/395684-c872-4217-b27c-8b5ea6648176/1/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a0:ff:4e:03:0a:f4:fd:a7:8f:e6:f4:00:62:54:16:60:8f:5f: b6:ac:e8:b9:7e:0c:ba:ad:c9:2d:e8:55:a7:6d:b9:54:01:db: c2:27:90:38:ac:19:5c:20:4a:0a:d3:54:3f:18:d7:74:32:cf: f4:36:fd:da:73:ae:78:e4:c3:00:7d:78:a6:db:06:2d:98:34: 3c:b4:66:41:93:20:86:74:c6:df:99:05:96:47:de:00:e8:0c: ba:62:2c:58:c7:ab:ee:e9:46:09:6a:e1:ef:6e:8a:3a:1b:3d: 69:c6:61:df:13:eb:98:9e:4e:e1:38:b3:41:a1:62:9d:0d:86: 91:fb:10:0a:5b:c4:df:ec:76:ab:35:c3:09:9b:81:bb:29:17: 08:51:21:d5:36:ba:e1:c7:2d:cb:ee:1c:27:f3:9e:4f:a5:2f: 63:b9:a1:52:72:bb:4f:28:42:ff:23:c0:8e:cb:59:71:27:0b: fd:35:e2:2a:69:f6:39:18:d6:b0:5f:c2:40:ff:e4:7c:70:33: 4e:4b:49:d6:68:0f:97:12:3b:db:51:dd:71:67:a8:a2:35:cc: 87:e1:a9:df:88:83:58:d3:3a:a6:be:57:47:8d:7c:b4:52:b3: 6c:42:36:56:a1:0f:7f:09:84:72:0c:f1:59:b8:c7:d0:d3:f4: 67:6b:ec:3a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv6LV9pWIqPu/yoYYbpOxdhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIwNDNlNjIxZmUxMDA5NzAxZjYzNjY4NDNjMGFiYzQxZTE4 MGMxNDQwHhcNMjYwMTI2MTIwMDM2WhcNMjYwMTI3MTIwMDM2WjAzMTEwLwYDVQQD Eyg2ZTk1YzI4NTE4MDMyYzI2ZmM1M2U4MTc4MDExMDgzM2RlMTFjNGRmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzq82BBpNA3FWHS7Ir6wsFrJjMIMU IIVJdOPiby2getwWwfiDgeGalai4OBd9rt85pBOIhVag9BXbJVypp+yDG66otQ4E OMqaSbxjgLde2174fO11jqTEj2YA3Lzbz9KXxptulTHUxUm/JAzkfuzj/1Nh+DS1 Bv89ss6l/cIRP6iC8lJWxRUxbTX8LPKWid6aAwpyJqnpJkF7vMVzViIZbJ06kiPv 4S2UH5oZgYNWqslgL7yYUERBcz81uh1xS57RuqNvmVXa94MEsibua8CZQ3JiFIv9 VUHqiiQ00iWgwqpTHVbG2ACDzBMl2t4C+5WIwXjbzrtzV5GolR04qx08JwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFG6VwoUYAywm/FPoF4ARCDPeEcTfMB8GA1UdIwQY MBaAFLBD5iH+EAlwH2NmhDwKvEHhgMFEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc0VQbUlmNFFDWEFmWTJhRVBBcThRZUdBd1VRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC8zOTU2ODQtYzg3Mi00MjE3LWIyN2Mt OGI1ZWE2NjQ4MTc2LzEvc0VQbUlmNFFDWEFmWTJhRVBBcThRZUdBd1VRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMC8zOTU2ODQtYzg3Mi00MjE3LWIyN2MtOGI1ZWE2NjQ4MTc2 LzEvc0VQbUlmNFFDWEFmWTJhRVBBcThRZUdBd1VRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoP9OAwr0 /aeP5vQAYlQWYI9ftqzouX4Muq3JLehVp225VAHbwieQOKwZXCBKCtNUPxjXdDLP 9Db92nOueOTDAH14ptsGLZg0PLRmQZMghnTG35kFlkfeAOgMumIsWMer7ulGCWrh 726KOhs9acZh3xPrmJ5O4TizQaFinQ2GkfsQClvE3+x2qzXDCZuBuykXCFEh1Ta6 4ccty+4cJ/OeT6UvY7mhUnK7TyhC/yPAjstZcScL/TXiKmn2ORjWsF/CQP/kfHAz TktJ1mgPlxI721HdcWeoojXMh+Gp34iDWNM6pr5XR418tFKzbEI2VqEPfwmEcgzx WbjH0NP0Z2vsOg== -----END CERTIFICATE-----Generated at Mon Jan 26 15:30:03 2026 by rpki-client