This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/496525-2c0d-43e4-8188-5fbc230abdc2/1/bs1crU0zBsT3LEKvwG5c0fuv46M.mft File: bs1crU0zBsT3LEKvwG5c0fuv46M.mft (raw, json) Hash identifier: FlxN3PhtKBlvg8nj7DWhNSbLxDIV88O7i3r/ejNRNVE= Subject key identifier: A5:F8:AC:C1:71:21:ED:33:1F:61:2F:E4:4B:8F:16:B2:E1:A9:3C:1F Authority key identifier: 6E:CD:5C:AD:4D:33:06:C4:F7:2C:42:AF:C0:6E:5C:D1:FB:AF:E3:A3 Certificate issuer: /CN=6ecd5cad4d3306c4f72c42afc06e5cd1fbafe3a3 Certificate serial: 019C0857599BE26DE4A026F85ADF86173257 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bs1crU0zBsT3LEKvwG5c0fuv46M.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/496525-2c0d-43e4-8188-5fbc230abdc2/1/bs1crU0zBsT3LEKvwG5c0fuv46M.mft Manifest number: 17F6 Signing time: Thu 29 Jan 2026 06:01:08 +0000 Manifest this update: Thu 29 Jan 2026 06:01:08 +0000 Manifest next update: Fri 30 Jan 2026 06:01:08 +0000 Files and hashes: 1: 67JbtkLl_lydrJEUs03-aJCfJu8.roa (hash: 7jfLLjxy8JsvhI7ber+RL+ELuddGL4nRXFUSNScrgW0=) 2: bs1crU0zBsT3LEKvwG5c0fuv46M.crl (hash: soochtQDFRdusQv7VTHBrKfUVnneE7lCcyIUBGFFFLI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/496525-2c0d-43e4-8188-5fbc230abdc2/1/bs1crU0zBsT3LEKvwG5c0fuv46M.crl rsync://rpki.ripe.net/repository/DEFAULT/1b/496525-2c0d-43e4-8188-5fbc230abdc2/1/bs1crU0zBsT3LEKvwG5c0fuv46M.mft rsync://rpki.ripe.net/repository/DEFAULT/bs1crU0zBsT3LEKvwG5c0fuv46M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 30 Jan 2026 06:01:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:08:57:59:9b:e2:6d:e4:a0:26:f8:5a:df:86:17:32:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ecd5cad4d3306c4f72c42afc06e5cd1fbafe3a3 Validity Not Before: Jan 29 06:01:08 2026 GMT Not After : Jan 30 06:01:08 2026 GMT Subject: CN=a5f8acc17121ed331f612fe44b8f16b2e1a93c1f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:15:7a:d1:4d:fb:4e:8a:3b:a3:fd:58:ee:26: 13:47:52:89:39:d3:af:85:0a:d7:8a:3b:73:a2:3f: 6f:76:b5:c4:4a:10:6a:43:06:fa:8e:0e:9f:a2:3f: 52:13:3e:9b:7a:f5:fa:78:77:ea:09:7f:1c:db:1b: 78:f7:59:64:26:db:31:eb:9b:e0:6b:9d:ec:1c:54: dd:bc:3f:e9:f9:0b:84:55:5c:29:e7:40:d0:39:3c: bd:21:ec:f9:66:2a:ec:4f:cf:5a:73:cf:19:15:82: c9:89:de:2c:a8:f7:75:7a:70:51:98:86:6b:6e:6b: ae:5c:19:70:34:e9:87:d6:d2:5f:59:96:ca:65:84: df:1a:2c:8b:2b:92:4a:cf:6f:08:db:f1:3a:88:4a: 7a:da:f1:13:fd:4c:e3:f6:76:bb:27:23:df:33:1b: de:ab:c9:25:d4:83:49:ac:04:3d:25:8e:c6:99:28: 31:6f:b6:6e:59:b5:69:d8:0b:de:a3:4f:ad:0f:66: fa:42:53:09:2a:ba:dc:54:a9:5f:fe:38:54:0f:17: 28:0b:db:9d:b3:49:c4:7d:1d:5c:e7:04:03:e5:85: 07:da:2e:ff:d0:0c:35:f7:0f:94:d9:9b:7f:7e:e8: 56:4a:ea:f8:7f:a6:91:ad:3d:a1:3a:d9:2a:cd:83: 6b:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:F8:AC:C1:71:21:ED:33:1F:61:2F:E4:4B:8F:16:B2:E1:A9:3C:1F X509v3 Authority Key Identifier: keyid:6E:CD:5C:AD:4D:33:06:C4:F7:2C:42:AF:C0:6E:5C:D1:FB:AF:E3:A3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bs1crU0zBsT3LEKvwG5c0fuv46M.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/496525-2c0d-43e4-8188-5fbc230abdc2/1/bs1crU0zBsT3LEKvwG5c0fuv46M.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/496525-2c0d-43e4-8188-5fbc230abdc2/1/bs1crU0zBsT3LEKvwG5c0fuv46M.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8d:bd:fc:96:29:6b:96:dc:98:0b:7e:c2:6a:1f:62:05:d7:97: 15:f2:ad:19:f8:4c:ae:f1:73:56:ca:e5:cd:88:fd:54:1d:60: b0:ef:c9:54:4e:d2:ff:47:9a:83:50:60:37:e4:eb:55:0b:ff: 0c:b2:61:30:a6:c4:82:b7:2d:66:d5:d7:cb:85:76:db:97:33: 71:87:03:83:1e:be:39:97:0c:c0:2d:a5:b8:2f:04:91:cc:43: 92:85:99:10:1d:53:3e:c8:ac:23:df:0c:4d:69:30:3d:37:24: 77:60:2b:a6:e5:1c:a6:d7:3c:7c:a7:dc:1e:d8:c2:42:f5:80: c0:dc:c6:37:24:5f:21:30:96:79:58:46:f1:dc:34:64:7a:95: b6:6b:e3:82:fd:92:82:10:51:22:7d:1c:99:4e:6c:70:72:65: eb:19:77:39:7e:c4:b1:dd:4c:aa:49:9c:3d:73:c1:95:0f:de: 04:6e:98:13:8e:33:27:48:d0:60:7d:80:ed:f7:3e:d8:32:f7: ea:72:ee:a4:ca:84:b5:4b:a1:11:51:e7:05:8a:fe:fe:dc:3e: 4b:94:15:ac:4f:65:db:fc:46:2c:d1:08:b9:92:38:66:41:b7: b6:f8:bf:f4:71:77:cc:00:6d:13:31:e7:80:22:d9:2d:08:7b: bb:08:b9:c4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZwIV1mb4m3koCb4Wt+GFzJXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZlY2Q1Y2FkNGQzMzA2YzRmNzJjNDJhZmMwNmU1Y2QxZmJh ZmUzYTMwHhcNMjYwMTI5MDYwMTA4WhcNMjYwMTMwMDYwMTA4WjAzMTEwLwYDVQQD EyhhNWY4YWNjMTcxMjFlZDMzMWY2MTJmZTQ0YjhmMTZiMmUxYTkzYzFmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyBV60U37Too7o/1Y7iYTR1KJOdOv hQrXijtzoj9vdrXEShBqQwb6jg6foj9SEz6bevX6eHfqCX8c2xt491lkJtsx65vg a53sHFTdvD/p+QuEVVwp50DQOTy9Iez5ZirsT89ac88ZFYLJid4sqPd1enBRmIZr bmuuXBlwNOmH1tJfWZbKZYTfGiyLK5JKz28I2/E6iEp62vET/Uzj9na7JyPfMxve q8kl1INJrAQ9JY7GmSgxb7ZuWbVp2Aveo0+tD2b6QlMJKrrcVKlf/jhUDxcoC9ud s0nEfR1c5wQD5YUH2i7/0Aw19w+U2Zt/fuhWSur4f6aRrT2hOtkqzYNr5QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKX4rMFxIe0zH2Ev5EuPFrLhqTwfMB8GA1UdIwQY MBaAFG7NXK1NMwbE9yxCr8BuXNH7r+OjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYnMxY3JVMHpCc1QzTEVLdndHNWMwZnV2NDZNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYi80OTY1MjUtMmMwZC00M2U0LTgxODgt NWZiYzIzMGFiZGMyLzEvYnMxY3JVMHpCc1QzTEVLdndHNWMwZnV2NDZNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYi80OTY1MjUtMmMwZC00M2U0LTgxODgtNWZiYzIzMGFiZGMy LzEvYnMxY3JVMHpCc1QzTEVLdndHNWMwZnV2NDZNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjb38lilr ltyYC37Cah9iBdeXFfKtGfhMrvFzVsrlzYj9VB1gsO/JVE7S/0eag1BgN+TrVQv/ DLJhMKbEgrctZtXXy4V225czcYcDgx6+OZcMwC2luC8EkcxDkoWZEB1TPsisI98M TWkwPTckd2ArpuUcptc8fKfcHtjCQvWAwNzGNyRfITCWeVhG8dw0ZHqVtmvjgv2S ghBRIn0cmU5scHJl6xl3OX7Esd1MqkmcPXPBlQ/eBG6YE44zJ0jQYH2A7fc+2DL3 6nLupMqEtUuhEVHnBYr+/tw+S5QVrE9l2/xGLNEIuZI4ZkG3tvi/9HF3zABtEzHn gCLZLQh7uwi5xA== -----END CERTIFICATE-----Generated at Thu Jan 29 14:14:49 2026 by rpki-client