This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/deebb8-ae86-4694-a972-827a0ac04a9d/1/4toj07kw1MHzrHMGXXGmB8NdKQA.mft
File: 4toj07kw1MHzrHMGXXGmB8NdKQA.mft (raw, json)
Hash identifier: sdS9Gn96iIwoQIjnRl8daQ+LhhC2orHyVlRYr53tX30=
Subject key identifier: 8D:F0:B9:40:C8:BB:22:A9:50:D8:A2:13:50:07:E8:F3:76:2C:1F:50
Authority key identifier: E2:DA:23:D3:B9:30:D4:C1:F3:AC:73:06:5D:71:A6:07:C3:5D:29:00
Certificate issuer: /CN=e2da23d3b930d4c1f3ac73065d71a607c35d2900
Certificate serial: 019BD92262F5294248D2E8958B9125A3DB73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4toj07kw1MHzrHMGXXGmB8NdKQA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/deebb8-ae86-4694-a972-827a0ac04a9d/1/4toj07kw1MHzrHMGXXGmB8NdKQA.mft
Manifest number: 17DD
Signing time: Tue 20 Jan 2026 02:01:07 +0000
Manifest this update: Tue 20 Jan 2026 02:01:07 +0000
Manifest next update: Wed 21 Jan 2026 02:01:07 +0000
Files and hashes: 1: 1-ZObGXZbr8QMqAx61fUCBd3oEIk.roa (hash: mNfBmy+QZavj44C/mg50P1ETt/knXxq4fEIaA8TAW1A=)
2: 4toj07kw1MHzrHMGXXGmB8NdKQA.crl (hash: aY9GzgZ5ypL8KlZ3r3GavfwGhCoQlOEkzPO3PHsSzKw=)
3: 5aSu5rDgohcAcFRBlVeL4KQf-Bc.roa (hash: TBrAPV4bOwpXI3ikK/+R0NLpPd2CyHMsQiSsoHb0Hng=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/deebb8-ae86-4694-a972-827a0ac04a9d/1/4toj07kw1MHzrHMGXXGmB8NdKQA.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/deebb8-ae86-4694-a972-827a0ac04a9d/1/4toj07kw1MHzrHMGXXGmB8NdKQA.mft
rsync://rpki.ripe.net/repository/DEFAULT/4toj07kw1MHzrHMGXXGmB8NdKQA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 20 Jan 2026 20:29:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9b:d9:22:62:f5:29:42:48:d2:e8:95:8b:91:25:a3:db:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2da23d3b930d4c1f3ac73065d71a607c35d2900
Validity
Not Before: Jan 20 02:01:07 2026 GMT
Not After : Jan 21 02:01:07 2026 GMT
Subject: CN=8df0b940c8bb22a950d8a2135007e8f3762c1f50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:8a:ed:70:bd:3a:9a:a4:a1:05:3d:84:68:91:
ff:5e:79:29:af:ae:4c:21:7f:4f:ca:c0:e1:d7:82:
75:65:95:83:6d:7d:32:f6:61:cf:39:d0:df:8e:93:
7f:8c:98:ee:8c:6d:42:3f:cd:e5:21:95:1a:49:ef:
39:37:9d:ed:2b:a4:a8:3f:5f:83:f8:f4:de:94:68:
e0:e8:b3:a9:02:69:e9:a4:45:26:5c:0e:f6:aa:f6:
26:f2:42:aa:27:76:1c:d0:10:49:6a:ac:88:2b:11:
1e:10:4a:24:d9:6f:13:de:8a:34:7a:42:da:bb:60:
bd:f8:ab:dc:5c:32:44:31:7c:dc:4e:80:1e:62:2d:
0c:24:a5:79:d4:d0:6a:d5:88:d3:bb:aa:45:b7:c4:
a9:87:42:f4:af:97:bc:31:ef:04:bc:f6:b9:d3:b9:
de:37:aa:ca:29:01:d5:a2:c6:dc:ec:04:e2:82:71:
27:b4:d5:9f:28:26:6c:3e:fd:c0:ba:b3:63:3d:f5:
b8:fb:5a:6b:69:b5:fe:bf:31:dd:de:25:75:14:27:
33:52:d7:97:45:76:9a:85:5a:b3:c9:d1:78:12:4b:
53:07:83:b7:41:c5:24:b7:42:58:71:9c:22:77:df:
93:da:8e:09:66:fb:2a:13:e2:08:b2:00:7e:64:e0:
57:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:F0:B9:40:C8:BB:22:A9:50:D8:A2:13:50:07:E8:F3:76:2C:1F:50
X509v3 Authority Key Identifier:
keyid:E2:DA:23:D3:B9:30:D4:C1:F3:AC:73:06:5D:71:A6:07:C3:5D:29:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4toj07kw1MHzrHMGXXGmB8NdKQA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/deebb8-ae86-4694-a972-827a0ac04a9d/1/4toj07kw1MHzrHMGXXGmB8NdKQA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/deebb8-ae86-4694-a972-827a0ac04a9d/1/4toj07kw1MHzrHMGXXGmB8NdKQA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:2c:5e:5d:06:a0:28:de:22:30:b6:d7:65:33:9e:45:50:f1:
a1:9e:99:72:38:44:a5:96:8b:b2:be:cf:37:96:3e:d2:d6:42:
11:a9:56:94:fa:af:25:8b:15:1d:6c:23:bb:9e:06:0b:ad:ec:
49:81:3f:cd:fe:33:6a:90:08:12:a6:a0:fe:b4:08:b9:72:5b:
d7:f5:13:56:f0:5c:5a:79:24:b1:7d:f5:0e:9a:17:7a:75:d6:
b9:7a:a6:81:c3:64:8a:b8:a8:12:80:5d:27:d9:82:b9:d0:94:
6f:4b:74:18:28:42:d7:0e:7b:37:bb:69:ce:8d:27:c7:19:00:
87:4b:15:63:8f:27:ab:09:37:9d:66:00:2a:47:06:43:5d:03:
10:20:c1:d6:58:94:cc:3a:31:4f:3d:cd:e4:33:2f:e3:da:48:
f6:cc:c5:0a:c5:47:be:5e:cb:bf:f7:38:99:ab:7e:51:af:fc:
77:a0:50:a8:cd:72:ef:44:be:f8:97:ea:db:8f:c0:e7:a8:6b:
20:70:a2:d5:9e:d7:fd:91:e1:bd:f2:ab:3a:54:49:1f:e6:5f:
4f:ed:89:99:f6:71:22:90:d6:b8:b0:78:a4:eb:80:85:20:95:
cf:ca:22:ba:16:8b:8f:ab:58:83:5d:f6:ab:11:5f:cf:4f:f7:
5d:32:3a:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 20 04:34:36 2026 by rpki-client