This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/dd062a-1319-4019-a551-876c7fca4b34/1/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.mft File: JVh2QS0g-7bKuCNIF4KsR3A7RAQ.mft (raw, json) Hash identifier: NKohe5oYb7ocPdXi2e4iR6WVtM3n7Iw92wm4cvllmG4= Subject key identifier: D2:42:A5:05:28:D7:E7:FF:8B:BA:9C:4E:5F:49:4A:E4:9C:E5:E8:C2 Authority key identifier: 25:58:76:41:2D:20:FB:B6:CA:B8:23:48:17:82:AC:47:70:3B:44:04 Certificate issuer: /CN=255876412d20fbb6cab823481782ac47703b4404 Certificate serial: 019BF8AD90E682442FDE0BE104C9CCEEC75E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/dd062a-1319-4019-a551-876c7fca4b34/1/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.mft Manifest number: 04BF Signing time: Mon 26 Jan 2026 05:01:22 +0000 Manifest this update: Mon 26 Jan 2026 05:01:22 +0000 Manifest next update: Tue 27 Jan 2026 05:01:22 +0000 Files and hashes: 1: AmdO1jA2vkBtxkn2vv7Y1wu4dFM.roa (hash: wY1LZtovvbzyHM2W8YhMwLuam5z9V3nwmwDqM8gEEF4=) 2: BYtnuImtTGdi14Pvw9xlRKAL65k.roa (hash: hUoeJXbJ5fZg7WKvqap5HxU1pLmROBa7LXCxisf4SP4=) 3: HrFuB2F4P326FdIKDHmR_z_oGqs.roa (hash: d1+J0bs8Jd4Tmg8E7c67C6CZ18CYNi+0jZ3ouxTsd3M=) 4: JVh2QS0g-7bKuCNIF4KsR3A7RAQ.crl (hash: mNsSHHWLgXkf45zbRqpEnYm2M9LoLWg9LeVhFr/CF4Q=) 5: RlmY2epIKRhq-2nW5GPMGi-42ho.roa (hash: P+PIwilqQ8xdGydeEaJcPqihgDM4ZC5j7iY8+NEd9i0=) 6: YlYX0-EwdZ0RjwlcesbIkWVsVTo.roa (hash: 12tzR601qVt1Vj7EME9V9wBl6cqsNdP8VmiHIJgAu5Q=) 7: ZIy83scPRt16H-jBNWuSeXwWJvM.roa (hash: 0BNufUNGwM8pxLnHngYQDTG7LK9cbACS4eSu797tG84=) 8: cNqycsZxVsHcATCP8JWqqaoM9SI.roa (hash: CX+xOUuMFEXPOxevDnRNct6cRUm/jc1q9b58M6PTWZo=) 9: gE3k0i8jHZvr5aE-wjNKPwzJxvE.roa (hash: CuCVWX3Bl6EYyE6nnbYJN+zyPfahHe62RUo//GoIy9o=) 10: lBlo6PUCc6IqER-nFwmpK7D7yqo.roa (hash: Z5uCFtdD3Jko3O/Znx9FA924V5ua0wn5UjLkJKE8KyE=) 11: qbksFEEwSTb2bBOnvyMaaJhR7Ss.roa (hash: qH3mt9TzRYD5CJqPjTYWZEejOSD69A/a1ZIdDauUkQo=) 12: urqr3QuscnM9Gexd4HqCzda04Hs.roa (hash: +eFtvrmvtLAGjqTjuO2JbNNCYDwjSBJV6qDXXX+HoPY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/dd062a-1319-4019-a551-876c7fca4b34/1/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.crl rsync://rpki.ripe.net/repository/DEFAULT/28/dd062a-1319-4019-a551-876c7fca4b34/1/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.mft rsync://rpki.ripe.net/repository/DEFAULT/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 05:01:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f8:ad:90:e6:82:44:2f:de:0b:e1:04:c9:cc:ee:c7:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=255876412d20fbb6cab823481782ac47703b4404 Validity Not Before: Jan 26 05:01:22 2026 GMT Not After : Jan 27 05:01:22 2026 GMT Subject: CN=d242a50528d7e7ff8bba9c4e5f494ae49ce5e8c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:42:a3:e2:93:e0:c2:b8:81:4c:94:e0:4e:98: 24:8a:39:92:84:b8:6b:91:38:10:d6:57:3c:62:35: 73:63:ca:55:40:a5:0d:0f:4b:e3:f8:4b:73:04:a1: 81:64:f4:32:a5:60:41:53:67:d1:2c:07:c0:97:6b: 55:2c:a9:90:62:c1:1a:6c:ca:4d:89:a8:36:25:f1: 47:18:6a:b8:78:a6:92:c5:3f:f5:ff:d1:5d:77:f6: 8b:9c:d6:51:be:58:54:1f:45:42:c9:05:09:37:e4: 2b:7b:b2:95:4f:62:73:33:06:a8:d9:22:4c:75:0b: fd:a6:43:9e:a6:70:77:70:da:12:94:f7:82:2e:2a: 95:d6:6a:37:78:97:44:12:f9:65:59:3f:1f:7b:5c: 3b:f2:45:ba:f9:6d:da:aa:ac:bb:8d:22:4d:12:34: 03:31:06:81:1a:a0:bb:c1:dc:fe:79:07:31:f0:98: e7:eb:b5:86:7a:70:f6:fe:a5:23:6b:64:94:3f:05: 53:57:9b:bc:9a:25:fc:cb:9e:e1:b6:e1:7a:ab:c8: 8f:89:61:d7:cb:46:5f:ca:40:b2:77:c6:03:5f:56: 17:49:43:4f:46:cb:40:c0:0c:4f:13:eb:74:14:ec: fc:48:61:15:bc:82:80:61:e7:9d:c8:94:79:d1:6d: a3:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:42:A5:05:28:D7:E7:FF:8B:BA:9C:4E:5F:49:4A:E4:9C:E5:E8:C2 X509v3 Authority Key Identifier: keyid:25:58:76:41:2D:20:FB:B6:CA:B8:23:48:17:82:AC:47:70:3B:44:04 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/dd062a-1319-4019-a551-876c7fca4b34/1/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/28/dd062a-1319-4019-a551-876c7fca4b34/1/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 74:7a:71:1b:52:fc:53:ed:ae:2e:05:f1:90:33:4a:22:0c:38: b9:12:1a:bd:15:e7:d6:ce:5d:b4:fc:e6:29:ca:99:5f:5d:54: 7d:94:df:45:c5:33:25:d2:cd:47:53:2b:a3:1a:2e:20:ff:f5: 49:7a:78:bb:a4:d5:6b:33:56:87:d9:e8:b7:9a:6f:1d:15:06: ac:43:d7:df:9e:77:0f:bb:6d:c8:88:69:6b:d0:e7:29:e5:9c: f6:5a:fd:54:87:27:a2:fe:02:d1:48:33:74:dd:c8:47:de:14: f4:28:0c:b5:5d:63:22:d0:b5:a0:ff:0b:d9:f9:0a:3a:91:48: bc:6d:8c:e3:ac:a8:71:c0:ec:df:17:92:0f:86:e6:c9:4a:7e: e6:3c:d6:b1:0c:c2:53:da:5c:a5:15:c4:4f:00:f3:0c:0d:d6: 59:54:eb:b1:63:8a:48:8b:57:a4:8c:eb:ce:d0:a0:e6:74:04: b5:f4:6b:5b:7a:6c:b1:06:1a:88:7d:ba:6f:98:59:a6:5f:7a: dd:15:97:19:08:5e:ad:85:a5:8f:3d:9b:14:a2:ad:06:9d:58: 49:c7:50:1d:58:4b:02:28:cf:2f:47:e9:76:84:3d:c1:7d:85: 3d:d2:28:21:7a:ad:02:be:d4:97:2b:73:b4:33:fd:68:4e:cb: 07:ad:66:63 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv4rZDmgkQv3gvhBMnM7sdeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI1NTg3NjQxMmQyMGZiYjZjYWI4MjM0ODE3ODJhYzQ3NzAz YjQ0MDQwHhcNMjYwMTI2MDUwMTIyWhcNMjYwMTI3MDUwMTIyWjAzMTEwLwYDVQQD EyhkMjQyYTUwNTI4ZDdlN2ZmOGJiYTljNGU1ZjQ5NGFlNDljZTVlOGMyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr0Kj4pPgwriBTJTgTpgkijmShLhr kTgQ1lc8YjVzY8pVQKUND0vj+EtzBKGBZPQypWBBU2fRLAfAl2tVLKmQYsEabMpN iag2JfFHGGq4eKaSxT/1/9Fdd/aLnNZRvlhUH0VCyQUJN+Qre7KVT2JzMwao2SJM dQv9pkOepnB3cNoSlPeCLiqV1mo3eJdEEvllWT8fe1w78kW6+W3aqqy7jSJNEjQD MQaBGqC7wdz+eQcx8Jjn67WGenD2/qUja2SUPwVTV5u8miX8y57htuF6q8iPiWHX y0ZfykCyd8YDX1YXSUNPRstAwAxPE+t0FOz8SGEVvIKAYeedyJR50W2j+wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNJCpQUo1+f/i7qcTl9JSuSc5ejCMB8GA1UdIwQY MBaAFCVYdkEtIPu2yrgjSBeCrEdwO0QEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSlZoMlFTMGctN2JLdUNOSUY0S3NSM0E3UkFRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOC9kZDA2MmEtMTMxOS00MDE5LWE1NTEt ODc2YzdmY2E0YjM0LzEvSlZoMlFTMGctN2JLdUNOSUY0S3NSM0E3UkFRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOC9kZDA2MmEtMTMxOS00MDE5LWE1NTEtODc2YzdmY2E0YjM0 LzEvSlZoMlFTMGctN2JLdUNOSUY0S3NSM0E3UkFRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdHpxG1L8 U+2uLgXxkDNKIgw4uRIavRXn1s5dtPzmKcqZX11UfZTfRcUzJdLNR1MroxouIP/1 SXp4u6TVazNWh9not5pvHRUGrEPX3553D7ttyIhpa9DnKeWc9lr9VIcnov4C0Ugz dN3IR94U9CgMtV1jItC1oP8L2fkKOpFIvG2M46yoccDs3xeSD4bmyUp+5jzWsQzC U9pcpRXETwDzDA3WWVTrsWOKSItXpIzrztCg5nQEtfRrW3pssQYaiH26b5hZpl96 3RWXGQherYWljz2bFKKtBp1YScdQHVhLAijPL0fpdoQ9wX2FPdIoIXqtAr7Ulytz tDP9aE7LB61mYw== -----END CERTIFICATE-----Generated at Mon Jan 26 14:25:55 2026 by rpki-client