This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/fa79cf-8c4c-4094-a1f5-44171b2f599e/1/PN4kcMhWOUlIej54dDxUTJnsimQ.mft File: PN4kcMhWOUlIej54dDxUTJnsimQ.mft (raw, json) Hash identifier: zISlRy/qbrJneSHwvNsyv4raI3aaM2oABbcCYA6BPjQ= Subject key identifier: 8F:8D:90:40:95:73:A9:D9:3A:AD:20:35:36:C5:C5:BD:4E:D6:EB:BB Authority key identifier: 3C:DE:24:70:C8:56:39:49:48:7A:3E:78:74:3C:54:4C:99:EC:8A:64 Certificate issuer: /CN=3cde2470c8563949487a3e78743c544c99ec8a64 Certificate serial: 019BD76AC4911ADF2EBF029C089B76060F6A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PN4kcMhWOUlIej54dDxUTJnsimQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/fa79cf-8c4c-4094-a1f5-44171b2f599e/1/PN4kcMhWOUlIej54dDxUTJnsimQ.mft Manifest number: 0A5B Signing time: Mon 19 Jan 2026 18:00:57 +0000 Manifest this update: Mon 19 Jan 2026 18:00:57 +0000 Manifest next update: Tue 20 Jan 2026 18:00:57 +0000 Files and hashes: 1: 6dIzMwo0G6tAhuml4GfIJNjdjVQ.roa (hash: wpsN0tsYTVD9eZ1wIkFPmbb5yPxiazJ0MhFoB9FJQW4=) 2: DR9MoQCYtXaLoml4Dm1_5qJwPs4.roa (hash: nXlN3VKxLNyqdBBXWDPV2SzM6R5K4D1KJpMD50qdg/A=) 3: PN4kcMhWOUlIej54dDxUTJnsimQ.crl (hash: 79rjkXKOdcD46qJOsA+GDPNqkY05K7q5k7x27M/vkYA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/fa79cf-8c4c-4094-a1f5-44171b2f599e/1/PN4kcMhWOUlIej54dDxUTJnsimQ.crl rsync://rpki.ripe.net/repository/DEFAULT/24/fa79cf-8c4c-4094-a1f5-44171b2f599e/1/PN4kcMhWOUlIej54dDxUTJnsimQ.mft rsync://rpki.ripe.net/repository/DEFAULT/PN4kcMhWOUlIej54dDxUTJnsimQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:d7:6a:c4:91:1a:df:2e:bf:02:9c:08:9b:76:06:0f:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3cde2470c8563949487a3e78743c544c99ec8a64 Validity Not Before: Jan 19 18:00:57 2026 GMT Not After : Jan 20 18:00:57 2026 GMT Subject: CN=8f8d90409573a9d93aad203536c5c5bd4ed6ebbb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:c4:67:c7:e3:77:54:fe:8a:32:9a:69:a7:97: 59:d9:71:40:76:38:2b:a2:a7:43:a9:16:6d:b9:b2: ce:e1:39:51:e2:3f:d2:cd:5d:36:19:49:2d:6d:f0: 9a:ac:62:d0:4e:86:0b:f5:4a:ee:12:29:37:91:f1: 20:9b:83:9b:c1:66:8a:d0:6a:bc:02:b0:26:08:48: 6a:a9:16:ea:44:5d:ed:18:06:cc:4c:9f:30:2e:da: 0d:e3:32:1b:88:43:b8:7d:4d:e0:27:4d:45:8f:6c: dd:6e:c7:55:be:9b:5c:7c:6d:87:67:cb:bc:69:ba: 8d:60:c2:d3:bb:49:85:44:2c:aa:ec:5c:34:43:7f: de:3e:c0:1f:43:e4:78:b4:58:58:a1:1b:91:d1:0f: eb:b1:a2:6e:e9:78:92:3b:cc:f9:e6:fc:d1:1f:de: 73:4d:df:fb:ac:2a:6a:9c:3a:5d:59:d3:83:65:2d: 76:ef:e3:8c:bf:75:c7:d8:b0:4a:c4:9f:09:58:17: 60:3f:53:8e:9c:74:32:b7:1f:e5:49:d5:6b:5d:54: be:1a:08:21:a3:98:05:02:95:2c:e5:bd:31:da:9f: 2d:1f:53:be:35:6b:49:99:e9:f0:01:1f:c0:d7:5f: d3:57:54:1b:b7:85:c5:36:b5:6e:90:54:c2:0e:5d: eb:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:8D:90:40:95:73:A9:D9:3A:AD:20:35:36:C5:C5:BD:4E:D6:EB:BB X509v3 Authority Key Identifier: keyid:3C:DE:24:70:C8:56:39:49:48:7A:3E:78:74:3C:54:4C:99:EC:8A:64 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PN4kcMhWOUlIej54dDxUTJnsimQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/fa79cf-8c4c-4094-a1f5-44171b2f599e/1/PN4kcMhWOUlIej54dDxUTJnsimQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/24/fa79cf-8c4c-4094-a1f5-44171b2f599e/1/PN4kcMhWOUlIej54dDxUTJnsimQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7f:6c:0e:8e:9d:68:43:73:68:c4:29:1e:4b:c1:4e:39:cb:ee: 35:4a:e3:7e:ce:1e:66:af:98:69:a3:f6:65:3f:38:e8:d5:54: 9a:1f:c3:51:51:21:53:94:5f:ed:16:be:e9:fc:a4:df:97:f1: 28:a6:a8:fe:06:9d:74:12:b6:f2:ef:5b:fd:66:3a:09:7a:56: 49:c1:71:3d:f2:d1:a0:fe:24:ad:ee:51:db:c9:5f:5c:a9:7a: 90:28:48:ec:cb:55:f5:c7:74:13:7a:c1:a7:ad:07:9d:3f:91: 51:af:9b:bb:39:3a:36:7e:9a:cb:d9:0c:15:3b:33:ab:4c:e6: 20:5a:51:71:8b:2b:dc:3d:f3:db:f3:42:6f:bf:87:87:bb:3a: 89:5a:28:d0:d0:47:e5:89:fc:8a:87:b5:36:f8:a5:f7:f8:0a: 95:db:91:1f:88:6a:af:db:73:73:f9:11:c9:9b:43:f6:71:6b: df:56:bf:c8:85:6e:a6:f1:81:73:d5:0f:4c:c7:27:ed:01:ad: 30:8f:c6:31:74:93:80:33:cb:1b:41:d6:9d:39:9d:d4:0e:10: 2f:97:1c:57:2b:74:67:51:c3:96:62:74:7c:99:7a:55:13:42: 0d:7a:92:8d:ee:7d:1b:9e:28:ae:41:fd:58:bf:99:81:b0:7e: 1f:86:03:dd -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZvXasSRGt8uvwKcCJt2Bg9qMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNjZGUyNDcwYzg1NjM5NDk0ODdhM2U3ODc0M2M1NDRjOTll YzhhNjQwHhcNMjYwMTE5MTgwMDU3WhcNMjYwMTIwMTgwMDU3WjAzMTEwLwYDVQQD Eyg4ZjhkOTA0MDk1NzNhOWQ5M2FhZDIwMzUzNmM1YzViZDRlZDZlYmJiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtcRnx+N3VP6KMpppp5dZ2XFAdjgr oqdDqRZtubLO4TlR4j/SzV02GUktbfCarGLQToYL9UruEik3kfEgm4ObwWaK0Gq8 ArAmCEhqqRbqRF3tGAbMTJ8wLtoN4zIbiEO4fU3gJ01Fj2zdbsdVvptcfG2HZ8u8 abqNYMLTu0mFRCyq7Fw0Q3/ePsAfQ+R4tFhYoRuR0Q/rsaJu6XiSO8z55vzRH95z Td/7rCpqnDpdWdODZS127+OMv3XH2LBKxJ8JWBdgP1OOnHQytx/lSdVrXVS+Gggh o5gFApUs5b0x2p8tH1O+NWtJmenwAR/A11/TV1Qbt4XFNrVukFTCDl3rIQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFI+NkECVc6nZOq0gNTbFxb1O1uu7MB8GA1UdIwQY MBaAFDzeJHDIVjlJSHo+eHQ8VEyZ7IpkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUE40a2NNaFdPVWxJZWo1NGREeFVUSm5zaW1RLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC9mYTc5Y2YtOGM0Yy00MDk0LWExZjUt NDQxNzFiMmY1OTllLzEvUE40a2NNaFdPVWxJZWo1NGREeFVUSm5zaW1RLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNC9mYTc5Y2YtOGM0Yy00MDk0LWExZjUtNDQxNzFiMmY1OTll LzEvUE40a2NNaFdPVWxJZWo1NGREeFVUSm5zaW1RLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAf2wOjp1o Q3NoxCkeS8FOOcvuNUrjfs4eZq+YaaP2ZT846NVUmh/DUVEhU5Rf7Ra+6fyk35fx KKao/gaddBK28u9b/WY6CXpWScFxPfLRoP4kre5R28lfXKl6kChI7MtV9cd0E3rB p60HnT+RUa+buzk6Nn6ay9kMFTszq0zmIFpRcYsr3D3z2/NCb7+Hh7s6iVoo0NBH 5Yn8ioe1Nvil9/gKlduRH4hqr9tzc/kRyZtD9nFr31a/yIVupvGBc9UPTMcn7QGt MI/GMXSTgDPLG0HWnTmd1A4QL5ccVyt0Z1HDlmJ0fJl6VRNCDXqSje59G54orkH9 WL+ZgbB+H4YD3Q== -----END CERTIFICATE-----Generated at Tue Jan 20 03:00:39 2026 by rpki-client