This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/deebb8-ae86-4694-a972-827a0ac04a9d/1/4toj07kw1MHzrHMGXXGmB8NdKQA.mft File: 4toj07kw1MHzrHMGXXGmB8NdKQA.mft (raw, json) Hash identifier: sdS9Gn96iIwoQIjnRl8daQ+LhhC2orHyVlRYr53tX30= Subject key identifier: 8D:F0:B9:40:C8:BB:22:A9:50:D8:A2:13:50:07:E8:F3:76:2C:1F:50 Authority key identifier: E2:DA:23:D3:B9:30:D4:C1:F3:AC:73:06:5D:71:A6:07:C3:5D:29:00 Certificate issuer: /CN=e2da23d3b930d4c1f3ac73065d71a607c35d2900 Certificate serial: 019BD92262F5294248D2E8958B9125A3DB73 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4toj07kw1MHzrHMGXXGmB8NdKQA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/deebb8-ae86-4694-a972-827a0ac04a9d/1/4toj07kw1MHzrHMGXXGmB8NdKQA.mft Manifest number: 17DD Signing time: Tue 20 Jan 2026 02:01:07 +0000 Manifest this update: Tue 20 Jan 2026 02:01:07 +0000 Manifest next update: Wed 21 Jan 2026 02:01:07 +0000 Files and hashes: 1: 1-ZObGXZbr8QMqAx61fUCBd3oEIk.roa (hash: mNfBmy+QZavj44C/mg50P1ETt/knXxq4fEIaA8TAW1A=) 2: 4toj07kw1MHzrHMGXXGmB8NdKQA.crl (hash: aY9GzgZ5ypL8KlZ3r3GavfwGhCoQlOEkzPO3PHsSzKw=) 3: 5aSu5rDgohcAcFRBlVeL4KQf-Bc.roa (hash: TBrAPV4bOwpXI3ikK/+R0NLpPd2CyHMsQiSsoHb0Hng=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/deebb8-ae86-4694-a972-827a0ac04a9d/1/4toj07kw1MHzrHMGXXGmB8NdKQA.crl rsync://rpki.ripe.net/repository/DEFAULT/12/deebb8-ae86-4694-a972-827a0ac04a9d/1/4toj07kw1MHzrHMGXXGmB8NdKQA.mft rsync://rpki.ripe.net/repository/DEFAULT/4toj07kw1MHzrHMGXXGmB8NdKQA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 20:29:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:d9:22:62:f5:29:42:48:d2:e8:95:8b:91:25:a3:db:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e2da23d3b930d4c1f3ac73065d71a607c35d2900 Validity Not Before: Jan 20 02:01:07 2026 GMT Not After : Jan 21 02:01:07 2026 GMT Subject: CN=8df0b940c8bb22a950d8a2135007e8f3762c1f50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:8a:ed:70:bd:3a:9a:a4:a1:05:3d:84:68:91: ff:5e:79:29:af:ae:4c:21:7f:4f:ca:c0:e1:d7:82: 75:65:95:83:6d:7d:32:f6:61:cf:39:d0:df:8e:93: 7f:8c:98:ee:8c:6d:42:3f:cd:e5:21:95:1a:49:ef: 39:37:9d:ed:2b:a4:a8:3f:5f:83:f8:f4:de:94:68: e0:e8:b3:a9:02:69:e9:a4:45:26:5c:0e:f6:aa:f6: 26:f2:42:aa:27:76:1c:d0:10:49:6a:ac:88:2b:11: 1e:10:4a:24:d9:6f:13:de:8a:34:7a:42:da:bb:60: bd:f8:ab:dc:5c:32:44:31:7c:dc:4e:80:1e:62:2d: 0c:24:a5:79:d4:d0:6a:d5:88:d3:bb:aa:45:b7:c4: a9:87:42:f4:af:97:bc:31:ef:04:bc:f6:b9:d3:b9: de:37:aa:ca:29:01:d5:a2:c6:dc:ec:04:e2:82:71: 27:b4:d5:9f:28:26:6c:3e:fd:c0:ba:b3:63:3d:f5: b8:fb:5a:6b:69:b5:fe:bf:31:dd:de:25:75:14:27: 33:52:d7:97:45:76:9a:85:5a:b3:c9:d1:78:12:4b: 53:07:83:b7:41:c5:24:b7:42:58:71:9c:22:77:df: 93:da:8e:09:66:fb:2a:13:e2:08:b2:00:7e:64:e0: 57:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:F0:B9:40:C8:BB:22:A9:50:D8:A2:13:50:07:E8:F3:76:2C:1F:50 X509v3 Authority Key Identifier: keyid:E2:DA:23:D3:B9:30:D4:C1:F3:AC:73:06:5D:71:A6:07:C3:5D:29:00 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4toj07kw1MHzrHMGXXGmB8NdKQA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/deebb8-ae86-4694-a972-827a0ac04a9d/1/4toj07kw1MHzrHMGXXGmB8NdKQA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/deebb8-ae86-4694-a972-827a0ac04a9d/1/4toj07kw1MHzrHMGXXGmB8NdKQA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 66:2c:5e:5d:06:a0:28:de:22:30:b6:d7:65:33:9e:45:50:f1: a1:9e:99:72:38:44:a5:96:8b:b2:be:cf:37:96:3e:d2:d6:42: 11:a9:56:94:fa:af:25:8b:15:1d:6c:23:bb:9e:06:0b:ad:ec: 49:81:3f:cd:fe:33:6a:90:08:12:a6:a0:fe:b4:08:b9:72:5b: d7:f5:13:56:f0:5c:5a:79:24:b1:7d:f5:0e:9a:17:7a:75:d6: b9:7a:a6:81:c3:64:8a:b8:a8:12:80:5d:27:d9:82:b9:d0:94: 6f:4b:74:18:28:42:d7:0e:7b:37:bb:69:ce:8d:27:c7:19:00: 87:4b:15:63:8f:27:ab:09:37:9d:66:00:2a:47:06:43:5d:03: 10:20:c1:d6:58:94:cc:3a:31:4f:3d:cd:e4:33:2f:e3:da:48: f6:cc:c5:0a:c5:47:be:5e:cb:bf:f7:38:99:ab:7e:51:af:fc: 77:a0:50:a8:cd:72:ef:44:be:f8:97:ea:db:8f:c0:e7:a8:6b: 20:70:a2:d5:9e:d7:fd:91:e1:bd:f2:ab:3a:54:49:1f:e6:5f: 4f:ed:89:99:f6:71:22:90:d6:b8:b0:78:a4:eb:80:85:20:95: cf:ca:22:ba:16:8b:8f:ab:58:83:5d:f6:ab:11:5f:cf:4f:f7: 5d:32:3a:8e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZvZImL1KUJI0uiVi5Elo9tzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUyZGEyM2QzYjkzMGQ0YzFmM2FjNzMwNjVkNzFhNjA3YzM1 ZDI5MDAwHhcNMjYwMTIwMDIwMTA3WhcNMjYwMTIxMDIwMTA3WjAzMTEwLwYDVQQD Eyg4ZGYwYjk0MGM4YmIyMmE5NTBkOGEyMTM1MDA3ZThmMzc2MmMxZjUwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2YrtcL06mqShBT2EaJH/Xnkpr65M IX9PysDh14J1ZZWDbX0y9mHPOdDfjpN/jJjujG1CP83lIZUaSe85N53tK6SoP1+D +PTelGjg6LOpAmnppEUmXA72qvYm8kKqJ3Yc0BBJaqyIKxEeEEok2W8T3oo0ekLa u2C9+KvcXDJEMXzcToAeYi0MJKV51NBq1YjTu6pFt8Sph0L0r5e8Me8EvPa507ne N6rKKQHVosbc7ATignEntNWfKCZsPv3AurNjPfW4+1prabX+vzHd3iV1FCczUteX RXaahVqzydF4EktTB4O3QcUkt0JYcZwid9+T2o4JZvsqE+IIsgB+ZOBXgwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFI3wuUDIuyKpUNiiE1AH6PN2LB9QMB8GA1UdIwQY MBaAFOLaI9O5MNTB86xzBl1xpgfDXSkAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNHRvajA3a3cxTUh6ckhNR1hYR21COE5kS1FBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9kZWViYjgtYWU4Ni00Njk0LWE5NzIt ODI3YTBhYzA0YTlkLzEvNHRvajA3a3cxTUh6ckhNR1hYR21COE5kS1FBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi9kZWViYjgtYWU4Ni00Njk0LWE5NzItODI3YTBhYzA0YTlk LzEvNHRvajA3a3cxTUh6ckhNR1hYR21COE5kS1FBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZixeXQag KN4iMLbXZTOeRVDxoZ6ZcjhEpZaLsr7PN5Y+0tZCEalWlPqvJYsVHWwju54GC63s SYE/zf4zapAIEqag/rQIuXJb1/UTVvBcWnkksX31DpoXenXWuXqmgcNkirioEoBd J9mCudCUb0t0GChC1w57N7tpzo0nxxkAh0sVY48nqwk3nWYAKkcGQ10DECDB1liU zDoxTz3N5DMv49pI9szFCsVHvl7Lv/c4mat+Ua/8d6BQqM1y70S++Jfq24/A56hr IHCi1Z7X/ZHhvfKrOlRJH+ZfT+2JmfZxIpDWuLB4pOuAhSCVz8oiuhaLj6tYg132 qxFfz0/3XTI6jg== -----END CERTIFICATE-----Generated at Tue Jan 20 04:34:36 2026 by rpki-client