This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/252761-019a-4de5-957d-c320e50a3c79/1/KvXkhmugmCASSm5REQT8QfpUGZU.mft File: KvXkhmugmCASSm5REQT8QfpUGZU.mft (raw, json) Hash identifier: DXtop4ZXsni7lyNYcOb8bL/zC2UeN5qzuDuspT1SdAs= Subject key identifier: 7F:1F:24:83:71:55:52:B8:B8:7A:88:B8:B7:76:78:F3:B8:41:DA:FF Authority key identifier: 2A:F5:E4:86:6B:A0:98:20:12:4A:6E:51:11:04:FC:41:FA:54:19:95 Certificate issuer: /CN=2af5e4866ba09820124a6e511104fc41fa541995 Certificate serial: 019BFC1C007F26439D3D4A70FD46D7E5417D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KvXkhmugmCASSm5REQT8QfpUGZU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/252761-019a-4de5-957d-c320e50a3c79/1/KvXkhmugmCASSm5REQT8QfpUGZU.mft Manifest number: 152B Signing time: Mon 26 Jan 2026 21:00:52 +0000 Manifest this update: Mon 26 Jan 2026 21:00:52 +0000 Manifest next update: Tue 27 Jan 2026 21:00:52 +0000 Files and hashes: 1: 1-z20vDfkn7oH-6wUhtZ7pUOpXYs.roa (hash: 4MFRLpbPJz7onF3ec6CHT+GVAOztKot1i4cNl9/RUGQ=) 2: KvXkhmugmCASSm5REQT8QfpUGZU.crl (hash: lSx+BGgTtF1TRazq0VbeiyrwREJjSus/3CissF/6eiA=) 3: O21Shcq_z6RKIQVhghQ8x3iEUgo.roa (hash: PftCITy+sH9MILDPnvPA0rgTafRE24Enke6NGZ2wU40=) 4: kip9OEz8XKCqejVGiyHb4UeVJqw.roa (hash: 2JQk1BgdQDCMPFy2Bnpli4/vgD3QHxPKM4wyX0aSciw=) 5: qFN4BBxdmHy_3BcnNOupfLTZLMo.roa (hash: BnnmcXeCam4+KhT/CdouCX5HwDOQfbwphY/d8ikHz1E=) 6: uak-SP6C0SdGYf4Tcy5QLvzCEvQ.roa (hash: 5hi2l5GuzQIHHEKLjg//xukNKdrAlFGmuJKbjmJZ2aY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/252761-019a-4de5-957d-c320e50a3c79/1/KvXkhmugmCASSm5REQT8QfpUGZU.crl rsync://rpki.ripe.net/repository/DEFAULT/0b/252761-019a-4de5-957d-c320e50a3c79/1/KvXkhmugmCASSm5REQT8QfpUGZU.mft rsync://rpki.ripe.net/repository/DEFAULT/KvXkhmugmCASSm5REQT8QfpUGZU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 20:39:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fc:1c:00:7f:26:43:9d:3d:4a:70:fd:46:d7:e5:41:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2af5e4866ba09820124a6e511104fc41fa541995 Validity Not Before: Jan 26 21:00:52 2026 GMT Not After : Jan 27 21:00:52 2026 GMT Subject: CN=7f1f2483715552b8b87a88b8b77678f3b841daff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:1c:7b:0d:22:d4:df:2a:84:3a:cf:eb:80:54: 99:85:21:96:68:ae:21:6c:25:ab:01:88:b3:48:80: 78:ef:24:12:68:9b:77:f9:20:57:ec:5f:b1:77:7c: 7c:b7:ad:c3:40:e4:68:43:50:dd:0b:c6:3c:40:7e: 2e:15:78:be:6d:54:ef:23:56:4d:c9:de:3b:bc:18: f9:73:5d:34:65:6b:f6:7d:f2:c2:87:0c:88:6f:c8: a2:1e:18:3e:e8:0b:41:d7:bd:ff:76:aa:43:f1:9e: 80:2f:d0:1a:83:2b:4d:34:9b:2b:0c:06:48:53:13: 33:15:d1:8d:92:62:7a:f7:2d:74:be:24:80:9e:07: 8f:14:5e:11:3a:aa:31:4a:94:bb:8c:74:38:4e:a6: ec:73:4a:9c:ab:a7:47:8b:0e:b3:fa:e4:12:eb:84: a9:48:13:e3:9f:ce:3f:70:04:7c:dc:cc:55:b0:07: 9f:b1:50:4f:b0:24:16:5e:bb:47:21:75:f2:bd:19: d5:15:62:e7:bc:f8:76:9d:74:17:79:67:9b:79:ed: 59:6d:68:d4:ec:be:f6:3d:6f:80:09:d3:f5:83:60: 60:0b:8e:75:89:a8:74:ab:9c:31:bc:36:46:df:ed: cd:4a:ce:1c:06:87:36:39:f8:fa:c2:e0:c1:f8:b7: 1c:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:1F:24:83:71:55:52:B8:B8:7A:88:B8:B7:76:78:F3:B8:41:DA:FF X509v3 Authority Key Identifier: keyid:2A:F5:E4:86:6B:A0:98:20:12:4A:6E:51:11:04:FC:41:FA:54:19:95 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KvXkhmugmCASSm5REQT8QfpUGZU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/252761-019a-4de5-957d-c320e50a3c79/1/KvXkhmugmCASSm5REQT8QfpUGZU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/252761-019a-4de5-957d-c320e50a3c79/1/KvXkhmugmCASSm5REQT8QfpUGZU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 29:68:cb:09:59:a5:75:b7:56:e7:3f:2a:07:ac:e3:81:b3:20: 6a:8e:c9:e7:dc:2b:2f:ae:60:db:53:66:6b:66:20:d5:7b:24: e2:15:c3:40:95:50:0f:ec:fc:d0:f9:59:aa:03:34:e2:dc:f1: 30:b5:39:04:fb:97:17:28:bb:04:b4:bb:8d:90:43:fa:dd:32: 96:bb:e9:49:c1:50:55:93:37:52:45:89:d3:87:62:a1:18:2d: b6:80:cc:a1:39:6e:01:b6:40:f0:43:f9:45:34:25:8f:f4:f3: d8:9f:83:a2:2c:ef:46:ac:3a:16:53:2b:79:3f:27:10:ad:06: f2:29:56:85:a0:ea:5e:3c:3b:eb:eb:2d:25:50:04:5e:f4:51: ad:5f:8b:ef:dd:a9:84:69:ce:a8:08:b5:15:14:a9:ee:86:6c: ac:3e:ee:dc:f7:96:ed:26:3e:29:15:b0:02:32:29:a9:c1:0c: 1f:39:65:a7:f7:24:0f:17:ec:8f:f4:1c:9d:c9:86:ab:08:7b: 07:9f:27:76:19:ca:ac:ec:fe:17:8d:73:5f:dc:9c:80:99:d3: 21:38:fa:b3:23:a0:87:4d:46:a3:0e:f4:c0:f7:66:ac:8b:b9: fd:6e:31:56:c2:b1:9e:ef:99:6a:79:ea:c1:49:3f:df:4a:54: bc:dc:a3:81 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv8HAB/JkOdPUpw/UbX5UF9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhZjVlNDg2NmJhMDk4MjAxMjRhNmU1MTExMDRmYzQxZmE1 NDE5OTUwHhcNMjYwMTI2MjEwMDUyWhcNMjYwMTI3MjEwMDUyWjAzMTEwLwYDVQQD Eyg3ZjFmMjQ4MzcxNTU1MmI4Yjg3YTg4YjhiNzc2NzhmM2I4NDFkYWZmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlhx7DSLU3yqEOs/rgFSZhSGWaK4h bCWrAYizSIB47yQSaJt3+SBX7F+xd3x8t63DQORoQ1DdC8Y8QH4uFXi+bVTvI1ZN yd47vBj5c100ZWv2ffLChwyIb8iiHhg+6AtB173/dqpD8Z6AL9AagytNNJsrDAZI UxMzFdGNkmJ69y10viSAngePFF4ROqoxSpS7jHQ4Tqbsc0qcq6dHiw6z+uQS64Sp SBPjn84/cAR83MxVsAefsVBPsCQWXrtHIXXyvRnVFWLnvPh2nXQXeWebee1ZbWjU 7L72PW+ACdP1g2BgC451iah0q5wxvDZG3+3NSs4cBoc2Ofj6wuDB+Lcc2wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFH8fJINxVVK4uHqIuLd2ePO4Qdr/MB8GA1UdIwQY MBaAFCr15IZroJggEkpuUREE/EH6VBmVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS3ZYa2htdWdtQ0FTU201UkVRVDhRZnBVR1pVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi8yNTI3NjEtMDE5YS00ZGU1LTk1N2Qt YzMyMGU1MGEzYzc5LzEvS3ZYa2htdWdtQ0FTU201UkVRVDhRZnBVR1pVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYi8yNTI3NjEtMDE5YS00ZGU1LTk1N2QtYzMyMGU1MGEzYzc5 LzEvS3ZYa2htdWdtQ0FTU201UkVRVDhRZnBVR1pVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKWjLCVml dbdW5z8qB6zjgbMgao7J59wrL65g21Nma2Yg1Xsk4hXDQJVQD+z80PlZqgM04tzx MLU5BPuXFyi7BLS7jZBD+t0ylrvpScFQVZM3UkWJ04dioRgttoDMoTluAbZA8EP5 RTQlj/Tz2J+DoizvRqw6FlMreT8nEK0G8ilWhaDqXjw76+stJVAEXvRRrV+L792p hGnOqAi1FRSp7oZsrD7u3PeW7SY+KRWwAjIpqcEMHzllp/ckDxfsj/QcncmGqwh7 B58ndhnKrOz+F41zX9ycgJnTITj6syOgh01Gow70wPdmrIu5/W4xVsKxnu+Zannq wUk/30pUvNyjgQ== -----END CERTIFICATE-----Generated at Tue Jan 27 02:52:26 2026 by rpki-client