This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/59da50-aedb-4906-af19-090fe3da2433/1/koDT5GcpaPhuiVXbYgy3ZdudcUI.mft File: koDT5GcpaPhuiVXbYgy3ZdudcUI.mft (raw, json) Hash identifier: L3l+Rqt9DYouN/sP04ZBMe9sCx5IV5JJQ/u200ZgwOA= Subject key identifier: F8:2A:68:7D:1E:F9:F0:30:97:42:FF:2C:87:4E:B5:C6:58:94:36:D5 Authority key identifier: 92:80:D3:E4:67:29:68:F8:6E:89:55:DB:62:0C:B7:65:DB:9D:71:42 Certificate issuer: /CN=9280d3e4672968f86e8955db620cb765db9d7142 Certificate serial: 019BFA2D5CC14967F9E51A9EA7E22BC91F9B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/koDT5GcpaPhuiVXbYgy3ZdudcUI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/59da50-aedb-4906-af19-090fe3da2433/1/koDT5GcpaPhuiVXbYgy3ZdudcUI.mft Manifest number: 0C1A Signing time: Mon 26 Jan 2026 12:00:35 +0000 Manifest this update: Mon 26 Jan 2026 12:00:35 +0000 Manifest next update: Tue 27 Jan 2026 12:00:35 +0000 Files and hashes: 1: koDT5GcpaPhuiVXbYgy3ZdudcUI.crl (hash: P+tx2Hd7C4qx6xImyj2FNGvrTA2PzIj2voqClDLvSBc=) 2: lDc3tS_p7tCgEhrNKf_-eSIcLqg.roa (hash: kzElkKos01LmCGpTnk/MyVTZjZ5HsnG3CnANkjfIhL8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/59da50-aedb-4906-af19-090fe3da2433/1/koDT5GcpaPhuiVXbYgy3ZdudcUI.crl rsync://rpki.ripe.net/repository/DEFAULT/0b/59da50-aedb-4906-af19-090fe3da2433/1/koDT5GcpaPhuiVXbYgy3ZdudcUI.mft rsync://rpki.ripe.net/repository/DEFAULT/koDT5GcpaPhuiVXbYgy3ZdudcUI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 12:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fa:2d:5c:c1:49:67:f9:e5:1a:9e:a7:e2:2b:c9:1f:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9280d3e4672968f86e8955db620cb765db9d7142 Validity Not Before: Jan 26 12:00:35 2026 GMT Not After : Jan 27 12:00:35 2026 GMT Subject: CN=f82a687d1ef9f0309742ff2c874eb5c6589436d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:94:1c:bb:bc:38:a0:6e:6f:02:07:1e:a8:92: db:43:ef:4e:26:72:3e:40:cf:0e:c6:9e:b3:83:db: 0f:47:7f:a5:4e:f2:ed:10:9d:ec:8c:bd:02:85:bd: c1:c7:9c:5e:83:af:29:fa:1e:2e:fe:51:7c:4d:4d: 98:0a:c9:d5:cb:98:ab:8e:37:43:ba:8b:3d:16:1a: 14:0b:23:95:6b:e8:e1:48:9e:45:cd:d3:74:09:49: a0:0b:5d:3a:57:83:b9:c8:8b:c2:cc:d3:6f:4c:e4: 29:21:92:40:d7:f1:12:5b:2b:9b:1f:b4:11:9c:e6: 22:af:36:38:a4:6a:c5:1c:6a:a2:42:96:31:10:07: 68:7e:85:75:73:c2:3d:6c:fb:9a:e5:60:c7:6d:e3: 09:94:e6:ab:e0:0c:cf:70:36:98:37:fa:b6:34:2d: 12:a9:b8:c3:5f:c7:64:bb:87:54:c5:8f:8f:30:1d: 78:bb:5c:f6:c2:1f:c3:c8:7f:66:40:61:e4:bf:4b: de:70:bd:f9:ac:c0:5d:ac:44:ee:e9:75:63:26:63: fd:6d:b4:5b:1b:4f:36:fe:2b:af:24:59:0c:b3:3a: 52:25:b0:7d:da:7c:75:54:1a:1e:ed:f7:44:a0:26: 78:ea:74:ae:6a:fa:7b:ec:7d:2e:b9:60:af:31:04: f6:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:2A:68:7D:1E:F9:F0:30:97:42:FF:2C:87:4E:B5:C6:58:94:36:D5 X509v3 Authority Key Identifier: keyid:92:80:D3:E4:67:29:68:F8:6E:89:55:DB:62:0C:B7:65:DB:9D:71:42 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/koDT5GcpaPhuiVXbYgy3ZdudcUI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/59da50-aedb-4906-af19-090fe3da2433/1/koDT5GcpaPhuiVXbYgy3ZdudcUI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/59da50-aedb-4906-af19-090fe3da2433/1/koDT5GcpaPhuiVXbYgy3ZdudcUI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 77:60:5a:66:e4:68:b4:61:88:9b:a6:55:4b:b7:f7:40:f6:b7: a2:96:a0:48:02:53:0d:17:8b:b1:d0:c9:78:61:59:fc:27:fe: 01:dc:65:2b:b9:92:67:14:b7:ff:ba:64:51:13:b6:77:22:3a: 0c:5e:b3:ed:47:a4:d7:c8:25:87:40:52:c0:0c:d3:c7:1c:d5: fc:b4:a6:0b:55:30:c2:aa:81:35:b5:cb:45:63:47:55:14:a0: 31:d5:2d:c2:4f:c8:96:d8:d5:65:da:dc:da:e9:cb:e3:41:fd: 09:20:1b:90:b7:db:e7:f6:68:67:11:cc:6b:31:a9:59:2e:e8: 4d:d5:d6:92:de:54:13:83:2c:6e:9c:a8:4f:f3:fc:54:55:b5: 23:f7:eb:da:cd:bd:f3:1d:6c:28:c4:49:8e:b7:60:2c:8f:57: fc:08:a7:17:43:7d:e3:d1:d4:e7:e7:74:bf:94:89:02:ae:27: 7f:c0:88:22:87:8f:2b:47:35:e0:4d:52:d9:03:a4:91:53:a4: b2:0a:8d:26:a6:7a:73:1a:34:0c:a2:33:a3:36:29:f2:c2:d1: b3:b2:ac:4c:e5:90:1a:16:29:5d:7b:34:48:f0:b3:1a:62:98: 74:28:32:b5:d6:ba:45:b1:ed:d7:40:5a:c7:d3:7e:99:78:34: 72:b0:d4:cd -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv6LVzBSWf55Rqep+IryR+bMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkyODBkM2U0NjcyOTY4Zjg2ZTg5NTVkYjYyMGNiNzY1ZGI5 ZDcxNDIwHhcNMjYwMTI2MTIwMDM1WhcNMjYwMTI3MTIwMDM1WjAzMTEwLwYDVQQD EyhmODJhNjg3ZDFlZjlmMDMwOTc0MmZmMmM4NzRlYjVjNjU4OTQzNmQ1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA45Qcu7w4oG5vAgceqJLbQ+9OJnI+ QM8Oxp6zg9sPR3+lTvLtEJ3sjL0Chb3Bx5xeg68p+h4u/lF8TU2YCsnVy5irjjdD uos9FhoUCyOVa+jhSJ5FzdN0CUmgC106V4O5yIvCzNNvTOQpIZJA1/ESWyubH7QR nOYirzY4pGrFHGqiQpYxEAdofoV1c8I9bPua5WDHbeMJlOar4AzPcDaYN/q2NC0S qbjDX8dku4dUxY+PMB14u1z2wh/DyH9mQGHkv0vecL35rMBdrETu6XVjJmP9bbRb G082/iuvJFkMszpSJbB92nx1VBoe7fdEoCZ46nSuavp77H0uuWCvMQT2AQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPgqaH0e+fAwl0L/LIdOtcZYlDbVMB8GA1UdIwQY MBaAFJKA0+RnKWj4bolV22IMt2XbnXFCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva29EVDVHY3BhUGh1aVZYYllneTNaZHVkY1VJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi81OWRhNTAtYWVkYi00OTA2LWFmMTkt MDkwZmUzZGEyNDMzLzEva29EVDVHY3BhUGh1aVZYYllneTNaZHVkY1VJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYi81OWRhNTAtYWVkYi00OTA2LWFmMTktMDkwZmUzZGEyNDMz LzEva29EVDVHY3BhUGh1aVZYYllneTNaZHVkY1VJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAd2BaZuRo tGGIm6ZVS7f3QPa3opagSAJTDReLsdDJeGFZ/Cf+AdxlK7mSZxS3/7pkURO2dyI6 DF6z7Uek18glh0BSwAzTxxzV/LSmC1UwwqqBNbXLRWNHVRSgMdUtwk/IltjVZdrc 2unL40H9CSAbkLfb5/ZoZxHMazGpWS7oTdXWkt5UE4MsbpyoT/P8VFW1I/fr2s29 8x1sKMRJjrdgLI9X/AinF0N949HU5+d0v5SJAq4nf8CIIoePK0c14E1S2QOkkVOk sgqNJqZ6cxo0DKIzozYp8sLRs7KsTOWQGhYpXXs0SPCzGmKYdCgytda6RbHt10Ba x9N+mXg0crDUzQ== -----END CERTIFICATE-----Generated at Mon Jan 26 19:22:40 2026 by rpki-client