This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/c62d13-7f03-4d19-8b46-fc91433d367d/1/TKE73qVPdrioVxKv22FRhrM4OME.mft File: TKE73qVPdrioVxKv22FRhrM4OME.mft (raw, json) Hash identifier: DDmMNoiHmUTQrriinhLmkk7cryA6Jfgi4CSzEa/wMpE= Subject key identifier: 74:8E:AB:6F:DD:90:98:2F:0F:00:E9:A6:B7:5C:0E:07:35:CC:4B:CC Authority key identifier: 4C:A1:3B:DE:A5:4F:76:B8:A8:57:12:AF:DB:61:51:86:B3:38:38:C1 Certificate issuer: /CN=4ca13bdea54f76b8a85712afdb615186b33838c1 Certificate serial: 019BFC52EF5E08EC47F1D6B512FD6E406E0B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TKE73qVPdrioVxKv22FRhrM4OME.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/c62d13-7f03-4d19-8b46-fc91433d367d/1/TKE73qVPdrioVxKv22FRhrM4OME.mft Manifest number: 17EE Signing time: Mon 26 Jan 2026 22:00:52 +0000 Manifest this update: Mon 26 Jan 2026 22:00:52 +0000 Manifest next update: Tue 27 Jan 2026 22:00:52 +0000 Files and hashes: 1: 8M8YMfi0h_G2D7NTU4bpPcwvRYU.roa (hash: CZCGZ/lTIHM50UQeqzvjgM1bhMMP8aMbAEQl+Vqm5GE=) 2: PNj9cF3Hsh3vfuNuwDWinad61dQ.roa (hash: V97LaZrx2hP3Un7Jqbk9Fjlhl5xWfP0hR0ApEyVRBVc=) 3: TKE73qVPdrioVxKv22FRhrM4OME.crl (hash: hXXf9ZLsOSv9UEwj3nOOyPA1KNiEeoA5XVp0jyWaX5A=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/c62d13-7f03-4d19-8b46-fc91433d367d/1/TKE73qVPdrioVxKv22FRhrM4OME.crl rsync://rpki.ripe.net/repository/DEFAULT/27/c62d13-7f03-4d19-8b46-fc91433d367d/1/TKE73qVPdrioVxKv22FRhrM4OME.mft rsync://rpki.ripe.net/repository/DEFAULT/TKE73qVPdrioVxKv22FRhrM4OME.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 20:39:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fc:52:ef:5e:08:ec:47:f1:d6:b5:12:fd:6e:40:6e:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4ca13bdea54f76b8a85712afdb615186b33838c1 Validity Not Before: Jan 26 22:00:52 2026 GMT Not After : Jan 27 22:00:52 2026 GMT Subject: CN=748eab6fdd90982f0f00e9a6b75c0e0735cc4bcc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:92:ad:f2:ce:8c:15:dc:20:b7:fc:ab:6a:a6: 6a:9f:b9:98:e3:e3:b8:92:53:4e:2d:0d:00:25:a6: 2f:a8:fa:c5:1d:2b:1d:f3:8e:25:79:67:cf:4b:a1: 15:c7:12:5f:72:ab:ed:23:3f:41:ee:0c:07:a8:5c: a3:35:9a:ea:2c:cc:33:fc:61:6d:e7:30:78:0b:4e: fb:ac:b3:9b:12:41:1f:f5:e3:3d:59:94:e2:13:1c: 8e:e5:4f:8c:a8:8e:e5:ec:63:82:12:9e:03:cd:8e: 81:d7:56:5a:60:88:13:7f:37:78:0e:6f:95:3f:7a: ea:d8:a8:e2:ba:9a:0e:f9:42:99:2c:d1:a8:c7:8f: 50:46:2d:f6:22:b5:b2:57:ff:48:6c:24:0e:a2:97: 5b:9f:ba:8b:cf:5d:eb:e0:1b:31:61:38:ee:9e:83: 89:d3:91:8e:ce:90:29:9c:03:c4:2b:cf:e4:76:1e: b3:86:57:4f:15:4f:89:61:34:94:9a:c6:3e:ab:02: 32:43:52:2e:7e:2c:e9:2e:98:2c:4a:72:c9:56:c1: 41:fd:88:04:bf:ed:1c:18:c7:44:2a:43:c4:8b:a1: d0:78:16:68:b3:31:18:b4:05:90:99:d5:02:76:d3: 51:6a:62:1b:b6:7d:8b:5e:67:25:60:07:70:2d:ea: 15:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:8E:AB:6F:DD:90:98:2F:0F:00:E9:A6:B7:5C:0E:07:35:CC:4B:CC X509v3 Authority Key Identifier: keyid:4C:A1:3B:DE:A5:4F:76:B8:A8:57:12:AF:DB:61:51:86:B3:38:38:C1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TKE73qVPdrioVxKv22FRhrM4OME.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/c62d13-7f03-4d19-8b46-fc91433d367d/1/TKE73qVPdrioVxKv22FRhrM4OME.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/27/c62d13-7f03-4d19-8b46-fc91433d367d/1/TKE73qVPdrioVxKv22FRhrM4OME.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 69:3a:0d:db:ae:00:35:ff:37:25:d6:db:6b:21:19:02:26:ab: 1f:20:55:d1:a7:1b:fc:08:f4:2c:dd:71:f5:8a:99:ad:1b:fe: 36:d6:c9:ff:c2:d0:b8:9d:c5:22:f0:81:45:c5:52:3e:8b:1b: d4:af:38:9c:2a:02:fa:87:52:f9:a7:d9:45:48:2f:d5:17:d3: 9a:f0:55:11:ae:0a:08:a9:ac:12:0d:ac:ec:87:60:51:7a:aa: 52:a7:38:34:15:80:00:7a:0f:7a:8f:40:e2:b9:8c:54:d4:7b: e9:50:ee:b1:04:56:88:82:a0:e6:0e:a6:ae:ac:54:aa:6c:c9: dc:f5:f7:62:9f:e2:b1:e1:9b:d8:8e:53:fb:f9:58:d3:14:14: 61:9a:ce:60:c1:21:87:1d:80:0c:d7:1e:22:a5:0a:bf:30:cb: 40:7b:36:0b:58:98:56:64:a1:2c:34:14:94:3a:a1:90:bd:40: 91:4b:78:bc:d4:73:22:59:1e:a0:a0:f6:3a:76:34:7c:f9:55: 2d:d1:38:56:f7:a2:26:37:5c:5a:2a:f7:62:a6:f8:e5:d6:a3: b0:b8:da:b4:f6:98:0a:d4:ee:a5:cd:aa:cb:94:56:cc:7c:cf: ae:16:a5:e7:f0:93:81:8d:b1:3d:ce:c7:f8:22:cd:10:ec:27: 64:ed:91:3b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv8Uu9eCOxH8da1Ev1uQG4LMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRjYTEzYmRlYTU0Zjc2YjhhODU3MTJhZmRiNjE1MTg2YjMz ODM4YzEwHhcNMjYwMTI2MjIwMDUyWhcNMjYwMTI3MjIwMDUyWjAzMTEwLwYDVQQD Eyg3NDhlYWI2ZmRkOTA5ODJmMGYwMGU5YTZiNzVjMGUwNzM1Y2M0YmNjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz5Kt8s6MFdwgt/yraqZqn7mY4+O4 klNOLQ0AJaYvqPrFHSsd844leWfPS6EVxxJfcqvtIz9B7gwHqFyjNZrqLMwz/GFt 5zB4C077rLObEkEf9eM9WZTiExyO5U+MqI7l7GOCEp4DzY6B11ZaYIgTfzd4Dm+V P3rq2KjiupoO+UKZLNGox49QRi32IrWyV/9IbCQOopdbn7qLz13r4BsxYTjunoOJ 05GOzpApnAPEK8/kdh6zhldPFU+JYTSUmsY+qwIyQ1IufizpLpgsSnLJVsFB/YgE v+0cGMdEKkPEi6HQeBZoszEYtAWQmdUCdtNRamIbtn2LXmclYAdwLeoVyQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHSOq2/dkJgvDwDpprdcDgc1zEvMMB8GA1UdIwQY MBaAFEyhO96lT3a4qFcSr9thUYazODjBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVEtFNzNxVlBkcmlvVnhLdjIyRlJock00T01FLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNy9jNjJkMTMtN2YwMy00ZDE5LThiNDYt ZmM5MTQzM2QzNjdkLzEvVEtFNzNxVlBkcmlvVnhLdjIyRlJock00T01FLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNy9jNjJkMTMtN2YwMy00ZDE5LThiNDYtZmM5MTQzM2QzNjdk LzEvVEtFNzNxVlBkcmlvVnhLdjIyRlJock00T01FLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaToN264A Nf83JdbbayEZAiarHyBV0acb/Aj0LN1x9YqZrRv+NtbJ/8LQuJ3FIvCBRcVSPosb 1K84nCoC+odS+afZRUgv1RfTmvBVEa4KCKmsEg2s7IdgUXqqUqc4NBWAAHoPeo9A 4rmMVNR76VDusQRWiIKg5g6mrqxUqmzJ3PX3Yp/iseGb2I5T+/lY0xQUYZrOYMEh hx2ADNceIqUKvzDLQHs2C1iYVmShLDQUlDqhkL1AkUt4vNRzIlkeoKD2OnY0fPlV LdE4VveiJjdcWir3Yqb45dajsLjatPaYCtTupc2qy5RWzHzPrhal5/CTgY2xPc7H +CLNEOwnZO2ROw== -----END CERTIFICATE-----Generated at Tue Jan 27 05:37:24 2026 by rpki-client