This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/d9a01c-5c91-4d00-a09a-f8792f577b9a/1/dThqb64eVfV2pAW9dLfwjnpsRlM.mft File: dThqb64eVfV2pAW9dLfwjnpsRlM.mft (raw, json) Hash identifier: pp5RhNa5fLwmqm2tsT2PvLD3tzpM4ueZzo2kntVolVE= Subject key identifier: 2D:7A:F3:64:07:C7:8E:96:04:14:CE:8E:58:49:E8:B3:35:08:48:CC Authority key identifier: 75:38:6A:6F:AE:1E:55:F5:76:A4:05:BD:74:B7:F0:8E:7A:6C:46:53 Certificate issuer: /CN=75386a6fae1e55f576a405bd74b7f08e7a6c4653 Certificate serial: 019C0D7E313574997DA9C5FE19F03B5B88EA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dThqb64eVfV2pAW9dLfwjnpsRlM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/d9a01c-5c91-4d00-a09a-f8792f577b9a/1/dThqb64eVfV2pAW9dLfwjnpsRlM.mft Manifest number: 0AA1 Signing time: Fri 30 Jan 2026 06:01:39 +0000 Manifest this update: Fri 30 Jan 2026 06:01:39 +0000 Manifest next update: Sat 31 Jan 2026 06:01:39 +0000 Files and hashes: 1: YjThpUKY8dmKpHgsGQ94ajjW1mw.roa (hash: mU028HajfQlA+sa9l/YSlDKUMFBYx7IaDAclqqbnoIg=) 2: dThqb64eVfV2pAW9dLfwjnpsRlM.crl (hash: 4QSrmc6Ep/G3Ycx8j4PfrTBcVgfWgExjAjerLXQFXt4=) 3: iC9fUn104zY4OEHwbqWBMRhqfeY.roa (hash: G+diZWtaeUYf2mFGQ7Kk9MtmoUpwbZKTbE2sRgcMjNs=) 4: zyy7DFvxeNDAh4pOqGvmANgdfpY.roa (hash: hmel/U2e/Q6evOOJkJluvCudwlyZpvn4SGB/ShoJCY0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/d9a01c-5c91-4d00-a09a-f8792f577b9a/1/dThqb64eVfV2pAW9dLfwjnpsRlM.crl rsync://rpki.ripe.net/repository/DEFAULT/0a/d9a01c-5c91-4d00-a09a-f8792f577b9a/1/dThqb64eVfV2pAW9dLfwjnpsRlM.mft rsync://rpki.ripe.net/repository/DEFAULT/dThqb64eVfV2pAW9dLfwjnpsRlM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 31 Jan 2026 06:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:0d:7e:31:35:74:99:7d:a9:c5:fe:19:f0:3b:5b:88:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75386a6fae1e55f576a405bd74b7f08e7a6c4653 Validity Not Before: Jan 30 06:01:39 2026 GMT Not After : Jan 31 06:01:39 2026 GMT Subject: CN=2d7af36407c78e960414ce8e5849e8b3350848cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:eb:42:a1:9d:32:6a:9d:cc:42:98:5c:a2:4c: db:ee:0c:20:e8:01:c6:c7:85:b2:0f:72:40:46:ed: 66:f4:a3:70:98:4c:4d:3c:38:9c:4d:53:4d:86:00: ba:f2:86:82:23:8e:05:3f:af:01:4f:50:97:81:47: 47:9a:46:35:2b:76:3d:94:e8:e0:92:87:34:57:39: ae:f0:ad:77:73:25:20:33:94:1f:cc:c4:22:a5:d7: b1:41:d2:84:46:35:8c:85:d2:4b:0a:d6:00:e1:31: eb:fb:a9:f0:43:bd:ee:0f:34:ca:97:f0:84:9f:da: c2:ef:cb:e0:07:42:2d:3a:70:91:96:d2:46:b1:cf: 90:2b:c8:0e:f1:14:61:67:8d:9a:ce:cd:b2:51:e7: 6c:31:a0:bb:85:2b:9d:76:25:bb:eb:ee:28:eb:72: de:41:a4:fd:4f:c7:c0:b0:54:51:16:94:47:c4:e3: 30:a0:33:d6:22:2d:00:ad:53:0c:4c:a6:97:d1:6f: bd:7c:b2:a2:b3:21:9b:92:ea:b9:29:75:7a:0d:38: 9a:3d:82:76:06:a0:17:69:51:ff:dc:38:23:2b:eb: 3d:f8:8f:78:08:41:ae:a9:3a:e7:0e:18:55:0b:92: 6d:06:4a:11:35:00:a6:69:dd:56:47:57:67:82:db: c8:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:7A:F3:64:07:C7:8E:96:04:14:CE:8E:58:49:E8:B3:35:08:48:CC X509v3 Authority Key Identifier: keyid:75:38:6A:6F:AE:1E:55:F5:76:A4:05:BD:74:B7:F0:8E:7A:6C:46:53 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dThqb64eVfV2pAW9dLfwjnpsRlM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/d9a01c-5c91-4d00-a09a-f8792f577b9a/1/dThqb64eVfV2pAW9dLfwjnpsRlM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/d9a01c-5c91-4d00-a09a-f8792f577b9a/1/dThqb64eVfV2pAW9dLfwjnpsRlM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 01:dd:52:58:e7:dc:c2:6c:51:b0:3f:7e:00:56:1d:14:d6:3b: 2d:6a:a4:a7:b6:df:fe:ac:55:c7:e2:c8:31:17:5e:3e:80:ec: 68:c7:ec:a1:87:59:82:ed:f6:89:30:12:a3:92:9b:83:4a:c0: 4e:0a:a6:83:1f:56:a5:f3:22:ce:25:15:28:df:f6:89:af:7c: 99:c2:59:39:c9:d0:be:e1:c1:f8:83:89:41:cf:da:b9:65:ea: 6d:2e:28:13:36:e8:0f:ec:9c:07:80:89:fb:71:8f:a4:0b:26: a0:c7:65:73:8f:55:57:b8:93:9e:3d:d6:17:09:bc:e8:f8:15: fa:87:96:21:9b:6d:f4:82:e3:7f:b8:eb:90:1b:86:cb:83:f0: 07:cf:3e:13:3e:65:7e:b1:8f:0e:fd:6b:9b:c5:2e:d9:d5:34: 02:16:5d:59:c3:73:38:d0:41:4f:e5:a9:15:3e:6a:64:10:54: a9:98:2b:0a:d6:6d:08:c3:73:a7:ce:d1:a8:ef:ae:49:30:f7: 70:8c:e3:cd:7b:b0:20:9d:e8:3a:a1:ef:e2:2f:17:9e:97:28: 0a:28:fb:91:48:4a:2d:bb:17:f2:81:60:af:3b:f4:c2:bd:43: 3b:ee:5f:3b:6a:1b:cd:3a:ae:59:b1:a5:4a:17:68:67:12:6d: 7e:40:d1:0d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZwNfjE1dJl9qcX+GfA7W4jqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc1Mzg2YTZmYWUxZTU1ZjU3NmE0MDViZDc0YjdmMDhlN2E2 YzQ2NTMwHhcNMjYwMTMwMDYwMTM5WhcNMjYwMTMxMDYwMTM5WjAzMTEwLwYDVQQD EygyZDdhZjM2NDA3Yzc4ZTk2MDQxNGNlOGU1ODQ5ZThiMzM1MDg0OGNjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt+tCoZ0yap3MQphcokzb7gwg6AHG x4WyD3JARu1m9KNwmExNPDicTVNNhgC68oaCI44FP68BT1CXgUdHmkY1K3Y9lOjg koc0Vzmu8K13cyUgM5QfzMQipdexQdKERjWMhdJLCtYA4THr+6nwQ73uDzTKl/CE n9rC78vgB0ItOnCRltJGsc+QK8gO8RRhZ42azs2yUedsMaC7hSuddiW76+4o63Le QaT9T8fAsFRRFpRHxOMwoDPWIi0ArVMMTKaX0W+9fLKisyGbkuq5KXV6DTiaPYJ2 BqAXaVH/3DgjK+s9+I94CEGuqTrnDhhVC5JtBkoRNQCmad1WR1dngtvI2wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFC1682QHx46WBBTOjlhJ6LM1CEjMMB8GA1UdIwQY MBaAFHU4am+uHlX1dqQFvXS38I56bEZTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZFRocWI2NGVWZlYycEFXOWRMZndqbnBzUmxNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYS9kOWEwMWMtNWM5MS00ZDAwLWEwOWEt Zjg3OTJmNTc3YjlhLzEvZFRocWI2NGVWZlYycEFXOWRMZndqbnBzUmxNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYS9kOWEwMWMtNWM5MS00ZDAwLWEwOWEtZjg3OTJmNTc3Yjlh LzEvZFRocWI2NGVWZlYycEFXOWRMZndqbnBzUmxNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAd1SWOfc wmxRsD9+AFYdFNY7LWqkp7bf/qxVx+LIMRdePoDsaMfsoYdZgu32iTASo5Kbg0rA Tgqmgx9WpfMiziUVKN/2ia98mcJZOcnQvuHB+IOJQc/auWXqbS4oEzboD+ycB4CJ +3GPpAsmoMdlc49VV7iTnj3WFwm86PgV+oeWIZtt9ILjf7jrkBuGy4PwB88+Ez5l frGPDv1rm8Uu2dU0AhZdWcNzONBBT+WpFT5qZBBUqZgrCtZtCMNzp87RqO+uSTD3 cIzjzXuwIJ3oOqHv4i8XnpcoCij7kUhKLbsX8oFgrzv0wr1DO+5fO2obzTquWbGl ShdoZxJtfkDRDQ== -----END CERTIFICATE-----Generated at Fri Jan 30 14:31:10 2026 by rpki-client