This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/db75db-25b2-43dc-aa12-ed001a2889ad/1/CtBt0nvZOjgNpMddGovwdoKP1ko.mft File: CtBt0nvZOjgNpMddGovwdoKP1ko.mft (raw, json) Hash identifier: PAjHtjGWGKrvdYaTOEzrIXbvxicbWKZwdjPjj15ANPE= Subject key identifier: 94:22:90:39:FD:74:4F:5D:3C:9D:70:63:6F:41:A3:B2:02:99:D6:82 Authority key identifier: 0A:D0:6D:D2:7B:D9:3A:38:0D:A4:C7:5D:1A:8B:F0:76:82:8F:D6:4A Certificate issuer: /CN=0ad06dd27bd93a380da4c75d1a8bf076828fd64a Certificate serial: 019BFA2DD72EC7FEA310BE2F990F9C8D1111 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CtBt0nvZOjgNpMddGovwdoKP1ko.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/db75db-25b2-43dc-aa12-ed001a2889ad/1/CtBt0nvZOjgNpMddGovwdoKP1ko.mft Manifest number: 0AE3 Signing time: Mon 26 Jan 2026 12:01:06 +0000 Manifest this update: Mon 26 Jan 2026 12:01:06 +0000 Manifest next update: Tue 27 Jan 2026 12:01:06 +0000 Files and hashes: 1: CtBt0nvZOjgNpMddGovwdoKP1ko.crl (hash: IDAwQZ3bLiTlerxoJRcPNX+HGtHi4joNkRlJA9ZEZuo=) 2: rRTCz9gdKZmCD2CPH7ZEPITaxno.roa (hash: IkdpUdMuuhLbUbcbS19kzqtq8+mEc9r+5ZSOWumJXFc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/db75db-25b2-43dc-aa12-ed001a2889ad/1/CtBt0nvZOjgNpMddGovwdoKP1ko.crl rsync://rpki.ripe.net/repository/DEFAULT/0d/db75db-25b2-43dc-aa12-ed001a2889ad/1/CtBt0nvZOjgNpMddGovwdoKP1ko.mft rsync://rpki.ripe.net/repository/DEFAULT/CtBt0nvZOjgNpMddGovwdoKP1ko.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 12:01:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fa:2d:d7:2e:c7:fe:a3:10:be:2f:99:0f:9c:8d:11:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0ad06dd27bd93a380da4c75d1a8bf076828fd64a Validity Not Before: Jan 26 12:01:06 2026 GMT Not After : Jan 27 12:01:06 2026 GMT Subject: CN=94229039fd744f5d3c9d70636f41a3b20299d682 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:88:59:e1:22:db:35:0b:11:87:5e:41:6d:34: ec:63:28:02:4e:0b:85:23:0f:f7:be:1e:9e:7b:32: c8:dd:19:1f:af:a5:76:30:a2:58:0f:5b:0a:47:b6: c9:78:a4:2f:89:09:58:4f:61:84:b6:47:b4:47:c7: 48:7b:d7:f7:74:4b:7b:a3:f8:6b:cc:68:4b:f1:1f: 87:29:14:7c:b9:72:8c:af:9a:22:58:98:f7:c3:bf: 9c:0f:72:64:49:32:e2:93:49:38:a6:03:1d:e8:83: 0b:a4:c5:3d:92:50:b2:17:c6:55:68:cf:d9:51:31: 8f:a5:6a:23:e7:dd:7b:19:d2:9a:c9:3e:14:3b:39: 75:8c:6b:39:49:2a:a2:b5:aa:d5:65:7c:0c:a9:93: 8c:ff:49:cd:79:98:af:72:20:07:3e:d4:6d:1b:a5: 5c:df:3d:a6:c1:e1:ae:80:f1:cf:39:39:15:88:6d: 2e:4d:73:99:70:b8:4d:e0:bd:83:17:b7:ac:72:4c: 9d:b4:76:2e:d6:6e:a2:10:c9:cf:33:05:7b:0e:33: 42:59:0f:6f:da:27:22:43:4b:22:18:5b:e9:ac:9e: 96:38:33:69:89:7b:98:62:d7:b1:e8:2e:67:67:31: 00:d4:9b:7a:a9:9c:7d:43:1e:8e:01:a8:0b:97:34: 8c:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:22:90:39:FD:74:4F:5D:3C:9D:70:63:6F:41:A3:B2:02:99:D6:82 X509v3 Authority Key Identifier: keyid:0A:D0:6D:D2:7B:D9:3A:38:0D:A4:C7:5D:1A:8B:F0:76:82:8F:D6:4A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CtBt0nvZOjgNpMddGovwdoKP1ko.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/db75db-25b2-43dc-aa12-ed001a2889ad/1/CtBt0nvZOjgNpMddGovwdoKP1ko.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/db75db-25b2-43dc-aa12-ed001a2889ad/1/CtBt0nvZOjgNpMddGovwdoKP1ko.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8a:e7:9e:79:2c:b3:01:ce:53:b7:2c:da:2d:6c:39:7f:2a:6d: d1:4f:1a:19:5f:23:1c:4d:47:90:28:30:c3:10:e6:f1:db:ba: 73:7d:b1:80:6e:71:7f:47:b4:11:88:88:44:3d:25:c0:09:d3: bb:eb:16:05:b6:1f:fc:49:ab:43:38:20:c2:3d:3d:b0:a6:cb: 05:98:f7:f7:20:20:35:b9:ad:46:45:26:39:ce:9f:25:d1:c8: b4:91:57:0e:01:5a:4c:44:0c:45:e1:58:32:aa:e4:04:77:cd: 6b:64:78:b7:b3:40:d5:a4:48:5f:47:20:44:1e:19:5f:67:92: 60:5a:0d:1f:87:a4:0d:12:ea:5b:93:68:db:29:ac:f4:6c:6a: 5a:99:1c:fb:b7:20:92:f2:11:cd:ff:11:dc:93:1b:36:06:bf: 29:cf:75:cd:84:c8:34:81:1b:03:22:29:81:31:c6:bc:5c:e7: 48:61:b3:00:4b:2d:2f:8a:78:cb:e0:8c:90:3e:80:49:ba:02: 25:3d:46:42:b7:2d:64:e3:b8:78:a7:ef:b1:dd:51:16:2a:3a: c4:c3:c8:9d:57:d8:0a:37:55:67:29:d1:dd:5f:9c:83:c2:30: 87:f3:bb:00:5e:80:e3:21:8b:d2:06:b0:13:0a:e3:f4:98:56: 96:81:7c:ca -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv6Ldcux/6jEL4vmQ+cjRERMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBhZDA2ZGQyN2JkOTNhMzgwZGE0Yzc1ZDFhOGJmMDc2ODI4 ZmQ2NGEwHhcNMjYwMTI2MTIwMTA2WhcNMjYwMTI3MTIwMTA2WjAzMTEwLwYDVQQD Eyg5NDIyOTAzOWZkNzQ0ZjVkM2M5ZDcwNjM2ZjQxYTNiMjAyOTlkNjgyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApYhZ4SLbNQsRh15BbTTsYygCTguF Iw/3vh6eezLI3Rkfr6V2MKJYD1sKR7bJeKQviQlYT2GEtke0R8dIe9f3dEt7o/hr zGhL8R+HKRR8uXKMr5oiWJj3w7+cD3JkSTLik0k4pgMd6IMLpMU9klCyF8ZVaM/Z UTGPpWoj5917GdKayT4UOzl1jGs5SSqitarVZXwMqZOM/0nNeZivciAHPtRtG6Vc 3z2mweGugPHPOTkViG0uTXOZcLhN4L2DF7esckydtHYu1m6iEMnPMwV7DjNCWQ9v 2iciQ0siGFvprJ6WODNpiXuYYtex6C5nZzEA1Jt6qZx9Qx6OAagLlzSMpQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJQikDn9dE9dPJ1wY29Bo7ICmdaCMB8GA1UdIwQY MBaAFArQbdJ72To4DaTHXRqL8HaCj9ZKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ3RCdDBudlpPamdOcE1kZEdvdndkb0tQMWtvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC9kYjc1ZGItMjViMi00M2RjLWFhMTIt ZWQwMDFhMjg4OWFkLzEvQ3RCdDBudlpPamdOcE1kZEdvdndkb0tQMWtvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZC9kYjc1ZGItMjViMi00M2RjLWFhMTItZWQwMDFhMjg4OWFk LzEvQ3RCdDBudlpPamdOcE1kZEdvdndkb0tQMWtvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiueeeSyz Ac5TtyzaLWw5fypt0U8aGV8jHE1HkCgwwxDm8du6c32xgG5xf0e0EYiIRD0lwAnT u+sWBbYf/EmrQzggwj09sKbLBZj39yAgNbmtRkUmOc6fJdHItJFXDgFaTEQMReFY MqrkBHfNa2R4t7NA1aRIX0cgRB4ZX2eSYFoNH4ekDRLqW5No2yms9GxqWpkc+7cg kvIRzf8R3JMbNga/Kc91zYTINIEbAyIpgTHGvFznSGGzAEstL4p4y+CMkD6ASboC JT1GQrctZOO4eKfvsd1RFio6xMPInVfYCjdVZynR3V+cg8Iwh/O7AF6A4yGL0gaw Ewrj9JhWloF8yg== -----END CERTIFICATE-----Generated at Mon Jan 26 18:23:18 2026 by rpki-client