This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/1b512b-2159-4f9c-a0bf-9d28bf5ef3c1/1/k7Hqu-XuDASWgOKryVU0OexkPAs.mft File: k7Hqu-XuDASWgOKryVU0OexkPAs.mft (raw, json) Hash identifier: edR/w4TcjOjpnZbLp7Y4ESzghFTfG0SumW5nmLhJKJ8= Subject key identifier: 18:93:34:DA:2B:7A:90:30:72:EC:EB:46:B7:5A:62:1D:EB:BB:A2:5E Authority key identifier: 93:B1:EA:BB:E5:EE:0C:04:96:80:E2:AB:C9:55:34:39:EC:64:3C:0B Certificate issuer: /CN=93b1eabbe5ee0c049680e2abc9553439ec643c0b Certificate serial: 019BF91BE14211317364B089D1948922CCDA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k7Hqu-XuDASWgOKryVU0OexkPAs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/1b512b-2159-4f9c-a0bf-9d28bf5ef3c1/1/k7Hqu-XuDASWgOKryVU0OexkPAs.mft Manifest number: 119D Signing time: Mon 26 Jan 2026 07:01:52 +0000 Manifest this update: Mon 26 Jan 2026 07:01:52 +0000 Manifest next update: Tue 27 Jan 2026 07:01:52 +0000 Files and hashes: 1: bk8tPJ9EOMV75C2mivaFUdSxCIg.roa (hash: nYMoXp5QMpQVkLvKRSTUqVzpxbW4FhsK/wY7jqg9tKs=) 2: k7Hqu-XuDASWgOKryVU0OexkPAs.crl (hash: sIg4EFjgt6bqip57ursolFMgY7sfl0L1QV7NLgWv2hY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/1b512b-2159-4f9c-a0bf-9d28bf5ef3c1/1/k7Hqu-XuDASWgOKryVU0OexkPAs.crl rsync://rpki.ripe.net/repository/DEFAULT/36/1b512b-2159-4f9c-a0bf-9d28bf5ef3c1/1/k7Hqu-XuDASWgOKryVU0OexkPAs.mft rsync://rpki.ripe.net/repository/DEFAULT/k7Hqu-XuDASWgOKryVU0OexkPAs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 07:01:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f9:1b:e1:42:11:31:73:64:b0:89:d1:94:89:22:cc:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=93b1eabbe5ee0c049680e2abc9553439ec643c0b Validity Not Before: Jan 26 07:01:52 2026 GMT Not After : Jan 27 07:01:52 2026 GMT Subject: CN=189334da2b7a903072eceb46b75a621debbba25e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:90:db:4c:7f:7f:53:68:8b:35:ba:30:42:77: c3:5d:c1:5b:12:08:a1:a7:d9:a5:93:d4:9e:db:87: 65:6b:ff:5d:d7:fa:5e:63:8e:17:83:d3:6e:39:03: 0b:73:db:27:b7:3b:fc:0a:31:03:ea:96:24:15:66: d5:d4:eb:9e:d4:06:af:48:42:d6:09:c9:02:0f:d9: ab:b4:79:76:8c:c6:df:7f:02:20:e7:44:ae:18:43: cd:6d:e8:bd:65:f3:c7:40:ae:f0:c9:85:48:a8:9e: 78:f1:b2:2a:f3:c7:dc:8c:9f:86:d6:f4:51:75:de: 5c:a3:a7:c0:bf:bf:8e:c0:a7:4a:9c:64:75:99:67: 89:9f:72:16:29:a3:59:b4:5b:3d:7b:67:14:5c:e9: 96:95:fc:7d:89:0f:f6:d8:65:48:14:af:36:e2:75: b5:a5:46:a5:1e:d7:18:ac:4f:51:d1:fe:ec:7d:49: 98:b1:00:66:c6:70:97:49:63:8c:30:18:a7:cd:64: 51:fe:72:6e:07:c2:35:31:59:e2:76:d2:66:70:90: 05:d6:53:fd:24:fa:d9:0e:0a:9e:2c:62:fa:1a:f5: f8:f4:2d:89:a7:9d:07:68:77:0e:38:88:49:ed:32: 6a:c9:4b:9c:0d:33:45:41:13:df:30:e8:12:02:74: 97:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:93:34:DA:2B:7A:90:30:72:EC:EB:46:B7:5A:62:1D:EB:BB:A2:5E X509v3 Authority Key Identifier: keyid:93:B1:EA:BB:E5:EE:0C:04:96:80:E2:AB:C9:55:34:39:EC:64:3C:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k7Hqu-XuDASWgOKryVU0OexkPAs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/1b512b-2159-4f9c-a0bf-9d28bf5ef3c1/1/k7Hqu-XuDASWgOKryVU0OexkPAs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/36/1b512b-2159-4f9c-a0bf-9d28bf5ef3c1/1/k7Hqu-XuDASWgOKryVU0OexkPAs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4c:8f:b8:77:d0:82:12:47:78:96:f5:14:35:9e:07:36:b6:3d: b2:af:90:be:32:20:88:82:33:4e:20:95:5f:f3:dd:54:4a:01: b5:e7:0d:7a:cc:de:f1:c3:89:5d:90:e0:0f:33:98:6a:07:7a: fe:06:34:21:4b:39:45:43:36:8b:eb:51:06:12:69:2c:11:45: bb:ef:9d:c3:c2:35:6f:53:20:f3:00:db:90:74:61:b2:88:e0: ad:35:7f:9a:d2:9d:6b:34:7d:81:45:f8:96:27:28:6f:28:4d: c5:6f:e5:f4:b6:8c:5c:b4:7c:59:29:1b:7b:80:31:a9:72:93: 87:16:27:21:79:9a:1c:89:eb:46:9b:0f:f5:9f:21:60:bd:12: 4a:65:4e:50:74:0e:a4:b0:c6:10:8d:b8:f9:78:36:0b:b3:54: 07:a9:7e:ef:0b:81:73:bf:56:cc:d9:7c:1c:05:42:52:ea:ab: 41:d8:65:22:32:35:1a:5e:1d:77:28:ad:84:de:6c:e2:51:95: 9f:17:0d:42:e8:eb:08:53:32:45:74:a7:87:bf:60:76:c7:cf: c8:86:2c:f9:fc:8d:f4:8e:f6:4b:82:b8:84:78:3b:35:13:77: 04:f1:5a:c5:27:e3:db:17:2c:1c:bf:4c:8f:45:25:8c:92:fc: c1:9c:e3:99 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv5G+FCETFzZLCJ0ZSJIszaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkzYjFlYWJiZTVlZTBjMDQ5NjgwZTJhYmM5NTUzNDM5ZWM2 NDNjMGIwHhcNMjYwMTI2MDcwMTUyWhcNMjYwMTI3MDcwMTUyWjAzMTEwLwYDVQQD EygxODkzMzRkYTJiN2E5MDMwNzJlY2ViNDZiNzVhNjIxZGViYmJhMjVlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7ZDbTH9/U2iLNbowQnfDXcFbEgih p9mlk9Se24dla/9d1/peY44Xg9NuOQMLc9sntzv8CjED6pYkFWbV1Oue1AavSELW CckCD9mrtHl2jMbffwIg50SuGEPNbei9ZfPHQK7wyYVIqJ548bIq88fcjJ+G1vRR dd5co6fAv7+OwKdKnGR1mWeJn3IWKaNZtFs9e2cUXOmWlfx9iQ/22GVIFK824nW1 pUalHtcYrE9R0f7sfUmYsQBmxnCXSWOMMBinzWRR/nJuB8I1MVnidtJmcJAF1lP9 JPrZDgqeLGL6GvX49C2Jp50HaHcOOIhJ7TJqyUucDTNFQRPfMOgSAnSXBwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBiTNNorepAwcuzrRrdaYh3ru6JeMB8GA1UdIwQY MBaAFJOx6rvl7gwEloDiq8lVNDnsZDwLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvazdIcXUtWHVEQVNXZ09LcnlWVTBPZXhrUEFzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi8xYjUxMmItMjE1OS00ZjljLWEwYmYt OWQyOGJmNWVmM2MxLzEvazdIcXUtWHVEQVNXZ09LcnlWVTBPZXhrUEFzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNi8xYjUxMmItMjE1OS00ZjljLWEwYmYtOWQyOGJmNWVmM2Mx LzEvazdIcXUtWHVEQVNXZ09LcnlWVTBPZXhrUEFzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATI+4d9CC Ekd4lvUUNZ4HNrY9sq+QvjIgiIIzTiCVX/PdVEoBtecNesze8cOJXZDgDzOYagd6 /gY0IUs5RUM2i+tRBhJpLBFFu++dw8I1b1Mg8wDbkHRhsojgrTV/mtKdazR9gUX4 licobyhNxW/l9LaMXLR8WSkbe4AxqXKThxYnIXmaHInrRpsP9Z8hYL0SSmVOUHQO pLDGEI24+Xg2C7NUB6l+7wuBc79WzNl8HAVCUuqrQdhlIjI1Gl4ddyithN5s4lGV nxcNQujrCFMyRXSnh79gdsfPyIYs+fyN9I72S4K4hHg7NRN3BPFaxSfj2xcsHL9M j0UljJL8wZzjmQ== -----END CERTIFICATE-----Generated at Mon Jan 26 16:27:06 2026 by rpki-client