This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/e7b932-fc21-4a61-aef0-15a093e2bb8f/1/spIJTWkd9KfDjxa3VVfpwm1KxpI.mft File: spIJTWkd9KfDjxa3VVfpwm1KxpI.mft (raw, json) Hash identifier: 1NmcPgh5h3rF6aICnIc/yDA4M2sUfKw43AxjYahYoN4= Subject key identifier: 24:E5:CF:A9:DE:F4:6C:5C:CC:F7:50:6F:83:5B:46:3E:43:DC:F4:C3 Authority key identifier: B2:92:09:4D:69:1D:F4:A7:C3:8F:16:B7:55:57:E9:C2:6D:4A:C6:92 Certificate issuer: /CN=b292094d691df4a7c38f16b75557e9c26d4ac692 Certificate serial: 019C03D672779075942579F22BEAA556A0F1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/spIJTWkd9KfDjxa3VVfpwm1KxpI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/e7b932-fc21-4a61-aef0-15a093e2bb8f/1/spIJTWkd9KfDjxa3VVfpwm1KxpI.mft Manifest number: 16F5 Signing time: Wed 28 Jan 2026 09:01:51 +0000 Manifest this update: Wed 28 Jan 2026 09:01:51 +0000 Manifest next update: Thu 29 Jan 2026 09:01:51 +0000 Files and hashes: 1: 0E-nyOZ29zT4VlvH5MYeOKciQqI.roa (hash: n1KClvottVe9Rxjk6bmhkUknz6tneHeORGIxNcy3VKk=) 2: spIJTWkd9KfDjxa3VVfpwm1KxpI.crl (hash: EYiQarHbfD37dfsJ/RUMdq320rR+S3q7gmrXWaZH7iA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/e7b932-fc21-4a61-aef0-15a093e2bb8f/1/spIJTWkd9KfDjxa3VVfpwm1KxpI.crl rsync://rpki.ripe.net/repository/DEFAULT/1b/e7b932-fc21-4a61-aef0-15a093e2bb8f/1/spIJTWkd9KfDjxa3VVfpwm1KxpI.mft rsync://rpki.ripe.net/repository/DEFAULT/spIJTWkd9KfDjxa3VVfpwm1KxpI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 29 Jan 2026 09:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:03:d6:72:77:90:75:94:25:79:f2:2b:ea:a5:56:a0:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b292094d691df4a7c38f16b75557e9c26d4ac692 Validity Not Before: Jan 28 09:01:51 2026 GMT Not After : Jan 29 09:01:51 2026 GMT Subject: CN=24e5cfa9def46c5cccf7506f835b463e43dcf4c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:02:87:10:1e:0d:58:a3:88:4d:5d:1b:65:b1: c9:80:cc:3d:45:c9:f1:0c:dc:bf:92:d0:3c:8a:08: 3e:ca:2d:e9:8a:20:c3:14:7c:4a:86:d4:4f:ae:bb: e0:96:70:6d:8c:79:dd:13:30:a1:c4:5f:53:9c:64: 7a:05:2b:2c:7b:d1:19:41:a7:bc:3e:53:8a:f7:34: d7:a6:98:36:f5:26:70:6d:0f:bd:ab:36:98:75:85: 79:73:91:49:e9:29:e6:52:9e:e0:93:03:81:7c:0f: 41:60:2b:d0:72:93:c0:2c:1f:f0:c7:92:12:c8:4c: a3:e1:88:9e:4e:c4:bd:32:58:94:3d:b4:6d:74:21: 71:74:3b:45:fa:51:2a:80:82:00:10:69:d5:58:97: 83:06:64:17:2c:20:ea:cb:e2:56:83:0b:29:f6:1c: 70:cd:2d:27:b6:b7:14:22:23:e6:f1:8a:4a:1b:fa: 8a:21:03:97:e4:2f:cd:10:f9:c6:e0:80:3a:ec:f5: 7e:32:09:5a:ed:9a:b1:de:74:3c:42:1f:30:43:6f: 65:8e:4d:f2:47:dc:ab:a3:ff:e7:35:6f:11:3a:5e: 19:6a:9f:05:af:99:de:ef:9e:71:a2:d9:e8:77:08: e5:24:22:52:af:8b:46:c6:4f:61:5b:da:df:f7:3f: df:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:E5:CF:A9:DE:F4:6C:5C:CC:F7:50:6F:83:5B:46:3E:43:DC:F4:C3 X509v3 Authority Key Identifier: keyid:B2:92:09:4D:69:1D:F4:A7:C3:8F:16:B7:55:57:E9:C2:6D:4A:C6:92 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/spIJTWkd9KfDjxa3VVfpwm1KxpI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/e7b932-fc21-4a61-aef0-15a093e2bb8f/1/spIJTWkd9KfDjxa3VVfpwm1KxpI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/e7b932-fc21-4a61-aef0-15a093e2bb8f/1/spIJTWkd9KfDjxa3VVfpwm1KxpI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 86:7e:91:06:df:25:b5:05:43:b5:ac:e5:f2:a2:a4:0d:da:8c: f1:67:d7:56:68:c6:44:27:fb:33:9b:93:f4:08:5e:10:28:8d: 52:90:0f:92:df:bd:82:26:0c:f5:e1:b0:dc:57:4e:7b:3a:b7: da:95:48:37:59:d0:32:69:d9:3b:6a:8e:c2:d8:99:42:65:2b: 58:94:2f:69:93:42:1e:2a:69:e3:29:a1:0d:b5:01:46:f9:83: 82:77:2a:73:d9:41:33:93:c5:b6:8d:d2:ab:77:ed:4a:2a:dd: 28:b9:61:b1:08:af:f6:64:e9:cd:02:c2:d6:12:8a:37:51:45: 2e:ac:8f:14:b5:02:c8:ef:2e:87:25:22:28:44:d1:05:10:06: 1e:a3:16:2e:36:a5:57:a5:aa:ef:74:10:aa:fc:b6:44:40:df: e2:ef:e5:ff:9d:82:30:97:28:70:e5:63:ed:20:81:4f:15:e2: ce:f4:71:3e:58:e5:bf:ab:8a:01:e4:63:7a:5a:38:8a:eb:3c: 00:32:9d:bc:52:02:db:e3:fd:f2:6c:40:41:40:ad:0c:4d:4c: 7e:a0:8c:75:72:ad:7e:22:2c:01:91:8b:18:b1:03:cf:e6:83: ec:8c:81:1b:e4:26:05:d0:f9:c0:7d:ea:59:63:91:5c:38:26: 48:69:0c:83 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZwD1nJ3kHWUJXnyK+qlVqDxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIyOTIwOTRkNjkxZGY0YTdjMzhmMTZiNzU1NTdlOWMyNmQ0 YWM2OTIwHhcNMjYwMTI4MDkwMTUxWhcNMjYwMTI5MDkwMTUxWjAzMTEwLwYDVQQD EygyNGU1Y2ZhOWRlZjQ2YzVjY2NmNzUwNmY4MzViNDYzZTQzZGNmNGMzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnwKHEB4NWKOITV0bZbHJgMw9Rcnx DNy/ktA8igg+yi3piiDDFHxKhtRPrrvglnBtjHndEzChxF9TnGR6BSsse9EZQae8 PlOK9zTXppg29SZwbQ+9qzaYdYV5c5FJ6SnmUp7gkwOBfA9BYCvQcpPALB/wx5IS yEyj4YieTsS9MliUPbRtdCFxdDtF+lEqgIIAEGnVWJeDBmQXLCDqy+JWgwsp9hxw zS0ntrcUIiPm8YpKG/qKIQOX5C/NEPnG4IA67PV+Mgla7Zqx3nQ8Qh8wQ29ljk3y R9yro//nNW8ROl4Zap8Fr5ne755xotnodwjlJCJSr4tGxk9hW9rf9z/fiwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCTlz6ne9GxczPdQb4NbRj5D3PTDMB8GA1UdIwQY MBaAFLKSCU1pHfSnw48Wt1VX6cJtSsaSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc3BJSlRXa2Q5S2ZEanhhM1ZWZnB3bTFLeHBJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYi9lN2I5MzItZmMyMS00YTYxLWFlZjAt MTVhMDkzZTJiYjhmLzEvc3BJSlRXa2Q5S2ZEanhhM1ZWZnB3bTFLeHBJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYi9lN2I5MzItZmMyMS00YTYxLWFlZjAtMTVhMDkzZTJiYjhm LzEvc3BJSlRXa2Q5S2ZEanhhM1ZWZnB3bTFLeHBJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhn6RBt8l tQVDtazl8qKkDdqM8WfXVmjGRCf7M5uT9AheECiNUpAPkt+9giYM9eGw3FdOezq3 2pVIN1nQMmnZO2qOwtiZQmUrWJQvaZNCHipp4ymhDbUBRvmDgncqc9lBM5PFto3S q3ftSirdKLlhsQiv9mTpzQLC1hKKN1FFLqyPFLUCyO8uhyUiKETRBRAGHqMWLjal V6Wq73QQqvy2REDf4u/l/52CMJcocOVj7SCBTxXizvRxPljlv6uKAeRjelo4ius8 ADKdvFIC2+P98mxAQUCtDE1MfqCMdXKtfiIsAZGLGLEDz+aD7IyBG+QmBdD5wH3q WWORXDgmSGkMgw== -----END CERTIFICATE-----Generated at Wed Jan 28 18:46:08 2026 by rpki-client