This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/c3c13e-8f61-4dfe-952c-c804083e7d49/1/diY1mUnOzyQYxaLbIayrhd2Rk9g.mft File: diY1mUnOzyQYxaLbIayrhd2Rk9g.mft (raw, json) Hash identifier: y4NRgVuvqF1nOF1y5KKQR7P2OEaDCMq97NoliASKYDg= Subject key identifier: CE:8A:66:3E:9A:15:74:38:A7:98:6E:43:9E:74:9E:AC:8A:22:18:54 Authority key identifier: 76:26:35:99:49:CE:CF:24:18:C5:A2:DB:21:AC:AB:85:DD:91:93:D8 Certificate issuer: /CN=7626359949cecf2418c5a2db21acab85dd9193d8 Certificate serial: 019BFC1C1B2E5DA2706CE5B0C638D722B8A3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/diY1mUnOzyQYxaLbIayrhd2Rk9g.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/c3c13e-8f61-4dfe-952c-c804083e7d49/1/diY1mUnOzyQYxaLbIayrhd2Rk9g.mft Manifest number: 17EC Signing time: Mon 26 Jan 2026 21:00:58 +0000 Manifest this update: Mon 26 Jan 2026 21:00:58 +0000 Manifest next update: Tue 27 Jan 2026 21:00:58 +0000 Files and hashes: 1: Ra_O1tJPqxceyq_rAhiwFMOrKjw.roa (hash: Rmyhdy6TeiiXlYpWyq2MVfXDcJgMeLMhA0axqCrhBSg=) 2: diY1mUnOzyQYxaLbIayrhd2Rk9g.crl (hash: cN4NrYkqV16261ypfjKD62I+DdFR+vbQCAtvNf1zZoA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/c3c13e-8f61-4dfe-952c-c804083e7d49/1/diY1mUnOzyQYxaLbIayrhd2Rk9g.crl rsync://rpki.ripe.net/repository/DEFAULT/08/c3c13e-8f61-4dfe-952c-c804083e7d49/1/diY1mUnOzyQYxaLbIayrhd2Rk9g.mft rsync://rpki.ripe.net/repository/DEFAULT/diY1mUnOzyQYxaLbIayrhd2Rk9g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 20:39:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fc:1c:1b:2e:5d:a2:70:6c:e5:b0:c6:38:d7:22:b8:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7626359949cecf2418c5a2db21acab85dd9193d8 Validity Not Before: Jan 26 21:00:58 2026 GMT Not After : Jan 27 21:00:58 2026 GMT Subject: CN=ce8a663e9a157438a7986e439e749eac8a221854 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:54:93:ce:e9:44:68:06:f3:9f:69:55:fa:1e: f3:1b:4f:b5:c8:9e:e6:4e:93:a6:f4:ce:c0:d8:bc: 0e:d0:fa:5e:0b:43:42:d4:5e:5d:55:d7:e1:7e:4e: ee:c4:a8:09:65:12:1b:60:bc:3b:37:04:2c:83:30: 9d:1d:2e:15:80:2e:98:cc:ef:5b:7d:1f:21:92:77: 02:c1:e0:20:12:95:3b:6d:09:87:50:22:ef:4f:64: e6:8e:8a:c5:bb:27:d8:a7:99:47:f1:b4:4d:d7:c3: 6c:ad:2b:48:45:e3:1f:36:95:07:11:54:c8:d8:47: 79:d6:89:7a:80:a9:33:69:fc:71:38:d2:0c:58:98: ab:c2:9c:a5:58:ab:9c:f8:b3:cd:4a:6e:6f:b8:fc: 37:20:a5:9b:a7:de:fd:0d:f7:4a:fa:07:61:62:46: a5:1d:42:72:2d:40:06:3d:84:c6:90:a9:03:86:50: 2c:9f:7b:86:e3:60:49:4d:f8:49:89:16:75:44:1b: 09:58:ed:48:ee:cf:1a:2c:ac:a7:7e:4c:c4:52:ac: fc:14:31:90:d6:18:fc:3b:d3:35:7b:30:0b:ef:eb: 0a:cc:de:52:69:57:e9:a4:56:65:4a:7e:2d:96:c4: 48:12:8b:f2:3c:16:77:e1:c1:7f:78:91:5c:5c:56: 91:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:8A:66:3E:9A:15:74:38:A7:98:6E:43:9E:74:9E:AC:8A:22:18:54 X509v3 Authority Key Identifier: keyid:76:26:35:99:49:CE:CF:24:18:C5:A2:DB:21:AC:AB:85:DD:91:93:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/diY1mUnOzyQYxaLbIayrhd2Rk9g.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/c3c13e-8f61-4dfe-952c-c804083e7d49/1/diY1mUnOzyQYxaLbIayrhd2Rk9g.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/08/c3c13e-8f61-4dfe-952c-c804083e7d49/1/diY1mUnOzyQYxaLbIayrhd2Rk9g.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 75:fb:93:56:da:a3:ef:37:1b:1e:b3:e2:a3:62:03:08:77:c1: 4e:6b:a8:78:74:70:3d:6b:38:04:8c:b9:48:c7:21:41:d9:c9: d8:d9:90:a2:e2:eb:3f:d6:e9:b9:f0:33:b8:55:68:92:dd:5e: a5:9c:99:a2:71:bf:2b:fb:b9:23:b4:bf:13:5a:44:dc:99:68: 87:62:bb:c1:6a:a4:ce:b2:9b:e6:5c:0e:8d:f5:94:47:b4:70: 3f:ad:6b:97:cb:78:35:d4:0e:de:94:32:6d:ec:7a:1e:23:da: 83:96:4d:7b:d4:f1:35:6a:e0:bd:48:31:e2:c3:55:da:75:f3: b6:a6:8f:57:4c:d9:b7:2b:0a:f8:73:14:0a:c4:cb:17:ef:bc: c3:37:f7:66:ec:7b:1b:69:47:53:55:d3:f8:8f:df:7d:bd:88: bf:a0:bd:00:20:36:34:12:f6:d3:1a:92:db:7a:f1:89:19:9e: 9e:a0:a5:9f:83:17:b3:53:5b:61:0c:64:fc:79:58:33:7e:ae: 01:43:d9:29:d8:a5:cf:2b:7f:96:08:54:e3:a4:58:b3:e9:63: 93:ba:a8:26:d1:4e:65:37:07:7b:08:9f:f4:7c:67:c8:d1:3f: 23:fa:98:d2:9a:86:63:d4:68:48:fd:7e:6e:ec:73:08:c8:f0: 50:16:1a:33 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv8HBsuXaJwbOWwxjjXIrijMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc2MjYzNTk5NDljZWNmMjQxOGM1YTJkYjIxYWNhYjg1ZGQ5 MTkzZDgwHhcNMjYwMTI2MjEwMDU4WhcNMjYwMTI3MjEwMDU4WjAzMTEwLwYDVQQD EyhjZThhNjYzZTlhMTU3NDM4YTc5ODZlNDM5ZTc0OWVhYzhhMjIxODU0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr1STzulEaAbzn2lV+h7zG0+1yJ7m TpOm9M7A2LwO0PpeC0NC1F5dVdfhfk7uxKgJZRIbYLw7NwQsgzCdHS4VgC6YzO9b fR8hkncCweAgEpU7bQmHUCLvT2TmjorFuyfYp5lH8bRN18NsrStIReMfNpUHEVTI 2Ed51ol6gKkzafxxONIMWJirwpylWKuc+LPNSm5vuPw3IKWbp979DfdK+gdhYkal HUJyLUAGPYTGkKkDhlAsn3uG42BJTfhJiRZ1RBsJWO1I7s8aLKynfkzEUqz8FDGQ 1hj8O9M1ezAL7+sKzN5SaVfppFZlSn4tlsRIEovyPBZ34cF/eJFcXFaRuwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFM6KZj6aFXQ4p5huQ550nqyKIhhUMB8GA1UdIwQY MBaAFHYmNZlJzs8kGMWi2yGsq4XdkZPYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZGlZMW1Vbk96eVFZeGFMYklheXJoZDJSazlnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOC9jM2MxM2UtOGY2MS00ZGZlLTk1MmMt YzgwNDA4M2U3ZDQ5LzEvZGlZMW1Vbk96eVFZeGFMYklheXJoZDJSazlnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wOC9jM2MxM2UtOGY2MS00ZGZlLTk1MmMtYzgwNDA4M2U3ZDQ5 LzEvZGlZMW1Vbk96eVFZeGFMYklheXJoZDJSazlnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdfuTVtqj 7zcbHrPio2IDCHfBTmuoeHRwPWs4BIy5SMchQdnJ2NmQouLrP9bpufAzuFVokt1e pZyZonG/K/u5I7S/E1pE3Jloh2K7wWqkzrKb5lwOjfWUR7RwP61rl8t4NdQO3pQy bex6HiPag5ZNe9TxNWrgvUgx4sNV2nXztqaPV0zZtysK+HMUCsTLF++8wzf3Zux7 G2lHU1XT+I/ffb2Iv6C9ACA2NBL20xqS23rxiRmenqCln4MXs1NbYQxk/HlYM36u AUPZKdilzyt/lghU46RYs+ljk7qoJtFOZTcHewif9HxnyNE/I/qY0pqGY9RoSP1+ buxzCMjwUBYaMw== -----END CERTIFICATE-----Generated at Tue Jan 27 05:37:32 2026 by rpki-client