This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/deebb8-ae86-4694-a972-827a0ac04a9d/1/4toj07kw1MHzrHMGXXGmB8NdKQA.mft File: 4toj07kw1MHzrHMGXXGmB8NdKQA.mft (raw, json) Hash identifier: 1Ox30O3QR1WpAZB0ArWs8AZLOcKxDK7fH8fJ8yE3YXM= Subject key identifier: D7:9E:E3:2A:54:0C:00:7F:46:5D:FF:6F:AB:66:10:CB:D2:3C:CA:00 Authority key identifier: E2:DA:23:D3:B9:30:D4:C1:F3:AC:73:06:5D:71:A6:07:C3:5D:29:00 Certificate issuer: /CN=e2da23d3b930d4c1f3ac73065d71a607c35d2900 Certificate serial: 019BD73408C08F23A549301DAD20B985257C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4toj07kw1MHzrHMGXXGmB8NdKQA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/deebb8-ae86-4694-a972-827a0ac04a9d/1/4toj07kw1MHzrHMGXXGmB8NdKQA.mft Manifest number: 17DC Signing time: Mon 19 Jan 2026 17:01:10 +0000 Manifest this update: Mon 19 Jan 2026 17:01:10 +0000 Manifest next update: Tue 20 Jan 2026 17:01:10 +0000 Files and hashes: 1: 1-ZObGXZbr8QMqAx61fUCBd3oEIk.roa (hash: mNfBmy+QZavj44C/mg50P1ETt/knXxq4fEIaA8TAW1A=) 2: 4toj07kw1MHzrHMGXXGmB8NdKQA.crl (hash: YSn9cGUYzFhpk113tq0zeW6sL8QdDQH4ggQu/agQHV0=) 3: 5aSu5rDgohcAcFRBlVeL4KQf-Bc.roa (hash: TBrAPV4bOwpXI3ikK/+R0NLpPd2CyHMsQiSsoHb0Hng=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/deebb8-ae86-4694-a972-827a0ac04a9d/1/4toj07kw1MHzrHMGXXGmB8NdKQA.crl rsync://rpki.ripe.net/repository/DEFAULT/12/deebb8-ae86-4694-a972-827a0ac04a9d/1/4toj07kw1MHzrHMGXXGmB8NdKQA.mft rsync://rpki.ripe.net/repository/DEFAULT/4toj07kw1MHzrHMGXXGmB8NdKQA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 17:01:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:d7:34:08:c0:8f:23:a5:49:30:1d:ad:20:b9:85:25:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e2da23d3b930d4c1f3ac73065d71a607c35d2900 Validity Not Before: Jan 19 17:01:10 2026 GMT Not After : Jan 20 17:01:10 2026 GMT Subject: CN=d79ee32a540c007f465dff6fab6610cbd23cca00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:94:32:ee:e6:f0:9b:d3:d7:84:c0:43:ef:f5: cb:d2:2f:2c:f3:ff:76:c5:a9:15:3e:72:e9:1b:54: 58:17:d7:3c:92:81:71:9e:ff:73:d6:7e:2a:c4:38: 84:bf:73:c2:07:60:9f:1c:9a:12:09:69:d5:9a:30: 9a:94:bb:67:7c:45:a0:ba:63:d5:56:3f:38:03:94: cb:4e:fa:2c:32:11:26:51:8a:4d:ca:b8:cd:e0:57: 03:33:fe:24:49:53:1b:f7:38:7e:d6:ef:b1:62:0b: 31:fb:28:ee:c5:1a:5e:3f:46:64:f1:5e:41:ff:ac: b0:59:70:47:de:4e:a6:c8:03:3b:fe:b7:9c:1c:e2: db:af:a1:79:ef:21:ae:12:6d:22:16:94:3d:4f:11: 1f:62:6a:41:e7:fc:83:70:e7:31:a1:67:7d:53:a3: 7c:17:2b:50:c1:62:48:76:63:be:a4:b6:f4:d1:ad: 40:70:dd:b1:dd:5b:17:b7:9b:58:0d:d3:d4:3f:51: 85:54:65:81:52:58:09:6b:4b:af:d7:6b:16:40:93: 8c:ec:56:92:99:94:6f:91:2e:78:7c:7c:01:54:1d: 47:20:82:1f:b4:4f:00:7e:41:46:01:fb:d4:8b:1c: 6e:23:1f:b1:5b:67:be:31:4d:96:23:e9:6d:fe:d3: 21:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:9E:E3:2A:54:0C:00:7F:46:5D:FF:6F:AB:66:10:CB:D2:3C:CA:00 X509v3 Authority Key Identifier: keyid:E2:DA:23:D3:B9:30:D4:C1:F3:AC:73:06:5D:71:A6:07:C3:5D:29:00 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4toj07kw1MHzrHMGXXGmB8NdKQA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/deebb8-ae86-4694-a972-827a0ac04a9d/1/4toj07kw1MHzrHMGXXGmB8NdKQA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/deebb8-ae86-4694-a972-827a0ac04a9d/1/4toj07kw1MHzrHMGXXGmB8NdKQA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 35:49:7a:57:ba:8d:42:9f:fb:3a:00:88:91:19:2d:c9:2e:eb: 1a:6e:bc:53:d3:bb:23:c6:1f:76:34:04:aa:64:fb:5d:ce:94: 58:2b:1e:0a:80:ea:17:f7:a8:30:41:8b:22:22:76:25:4f:9f: 11:4c:5e:b8:d0:43:73:34:b9:00:97:f8:63:b8:58:b4:48:b0: 0e:46:01:42:06:03:d1:26:be:cd:ac:28:ab:35:50:e6:9d:f3: 11:b9:08:fe:38:36:ae:cc:e4:a0:9a:24:b9:d9:8e:04:83:eb: 9e:a7:16:5a:17:d9:1a:73:ee:48:aa:ee:90:44:2d:61:32:d3: b5:96:44:b9:2a:f3:a2:40:99:bf:47:89:81:47:02:37:9a:4f: 54:8f:90:c0:ec:ac:65:cc:43:80:76:c1:d6:c0:a9:e5:d0:30: 96:94:cb:60:0f:52:09:83:2f:39:f1:02:74:1e:bd:f9:2a:8b: 6d:e9:72:0b:a2:56:b9:92:3b:b0:0c:7b:43:ac:fd:b7:47:5a: e3:f4:85:39:4e:7e:04:a6:f8:5a:cf:15:b1:b7:17:a7:7d:cb: a2:3a:8e:a9:3e:1f:6a:0c:9f:83:e0:9c:bb:43:6d:da:2d:a6: d7:55:b9:cd:7c:57:65:75:22:38:37:53:e3:14:fb:93:8f:96: 10:01:be:1c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZvXNAjAjyOlSTAdrSC5hSV8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUyZGEyM2QzYjkzMGQ0YzFmM2FjNzMwNjVkNzFhNjA3YzM1 ZDI5MDAwHhcNMjYwMTE5MTcwMTEwWhcNMjYwMTIwMTcwMTEwWjAzMTEwLwYDVQQD EyhkNzllZTMyYTU0MGMwMDdmNDY1ZGZmNmZhYjY2MTBjYmQyM2NjYTAwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvJQy7ubwm9PXhMBD7/XL0i8s8/92 xakVPnLpG1RYF9c8koFxnv9z1n4qxDiEv3PCB2CfHJoSCWnVmjCalLtnfEWgumPV Vj84A5TLTvosMhEmUYpNyrjN4FcDM/4kSVMb9zh+1u+xYgsx+yjuxRpeP0Zk8V5B /6ywWXBH3k6myAM7/recHOLbr6F57yGuEm0iFpQ9TxEfYmpB5/yDcOcxoWd9U6N8 FytQwWJIdmO+pLb00a1AcN2x3VsXt5tYDdPUP1GFVGWBUlgJa0uv12sWQJOM7FaS mZRvkS54fHwBVB1HIIIftE8AfkFGAfvUixxuIx+xW2e+MU2WI+lt/tMhbQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNee4ypUDAB/Rl3/b6tmEMvSPMoAMB8GA1UdIwQY MBaAFOLaI9O5MNTB86xzBl1xpgfDXSkAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNHRvajA3a3cxTUh6ckhNR1hYR21COE5kS1FBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9kZWViYjgtYWU4Ni00Njk0LWE5NzIt ODI3YTBhYzA0YTlkLzEvNHRvajA3a3cxTUh6ckhNR1hYR21COE5kS1FBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi9kZWViYjgtYWU4Ni00Njk0LWE5NzItODI3YTBhYzA0YTlk LzEvNHRvajA3a3cxTUh6ckhNR1hYR21COE5kS1FBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANUl6V7qN Qp/7OgCIkRktyS7rGm68U9O7I8YfdjQEqmT7Xc6UWCseCoDqF/eoMEGLIiJ2JU+f EUxeuNBDczS5AJf4Y7hYtEiwDkYBQgYD0Sa+zawoqzVQ5p3zEbkI/jg2rszkoJok udmOBIPrnqcWWhfZGnPuSKrukEQtYTLTtZZEuSrzokCZv0eJgUcCN5pPVI+QwOys ZcxDgHbB1sCp5dAwlpTLYA9SCYMvOfECdB69+SqLbelyC6JWuZI7sAx7Q6z9t0da 4/SFOU5+BKb4Ws8VsbcXp33LojqOqT4fagyfg+Ccu0Nt2i2m11W5zXxXZXUiODdT 4xT7k4+WEAG+HA== -----END CERTIFICATE-----Generated at Tue Jan 20 03:02:02 2026 by rpki-client