This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/1e8d4d-53bf-4acb-bc0c-52cad6675fc6/1/nZoMhLMHIPTUzkvboB3QVE0Cjs0.mft File: nZoMhLMHIPTUzkvboB3QVE0Cjs0.mft (raw, json) Hash identifier: WrWTF/AiPr4vthvOldgLouo5GuqGCssv3gfeKm+sW7A= Subject key identifier: EA:7A:E8:1A:99:02:D6:13:19:41:B1:6D:E3:81:D7:F4:DE:FF:9D:B7 Authority key identifier: 9D:9A:0C:84:B3:07:20:F4:D4:CE:4B:DB:A0:1D:D0:54:4D:02:8E:CD Certificate issuer: /CN=9d9a0c84b30720f4d4ce4bdba01dd0544d028ecd Certificate serial: 019BDC23832E374D28CFF66CCC967ED4C393 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nZoMhLMHIPTUzkvboB3QVE0Cjs0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/1e8d4d-53bf-4acb-bc0c-52cad6675fc6/1/nZoMhLMHIPTUzkvboB3QVE0Cjs0.mft Manifest number: 17DB Signing time: Tue 20 Jan 2026 16:01:13 +0000 Manifest this update: Tue 20 Jan 2026 16:01:13 +0000 Manifest next update: Wed 21 Jan 2026 16:01:13 +0000 Files and hashes: 1: Q7VU1IAhmqh6QnPsRjKtqye9cFY.roa (hash: 5hCbvviVC6DjaUoU7fXbjYQV9Lo078pPrQ3MKFzmu/U=) 2: UMRm0dtRz3FJANd_M4r6isxg5pc.roa (hash: hL7WSRr8WKYlMsBe+yWHzd7U1Dc511hpxbpyKw8/AI8=) 3: cwpueJkAgwR--N1HcP66vBFBfHs.roa (hash: e4Ux6XpWYsR7DA/nLXViGlPPyLLw1PTyAUYLhKKvKpY=) 4: nZoMhLMHIPTUzkvboB3QVE0Cjs0.crl (hash: N7a6/ICeILHwsOG8awVuzRfDeyeJix2u3I2VmDFcVjw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/1e8d4d-53bf-4acb-bc0c-52cad6675fc6/1/nZoMhLMHIPTUzkvboB3QVE0Cjs0.crl rsync://rpki.ripe.net/repository/DEFAULT/3a/1e8d4d-53bf-4acb-bc0c-52cad6675fc6/1/nZoMhLMHIPTUzkvboB3QVE0Cjs0.mft rsync://rpki.ripe.net/repository/DEFAULT/nZoMhLMHIPTUzkvboB3QVE0Cjs0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 15:30:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:dc:23:83:2e:37:4d:28:cf:f6:6c:cc:96:7e:d4:c3:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9d9a0c84b30720f4d4ce4bdba01dd0544d028ecd Validity Not Before: Jan 20 16:01:13 2026 GMT Not After : Jan 21 16:01:13 2026 GMT Subject: CN=ea7ae81a9902d6131941b16de381d7f4deff9db7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:cc:de:18:c9:33:75:27:41:85:07:bc:f9:17: e3:19:fd:ad:a1:ce:2b:74:9a:05:10:6b:4b:a7:bd: fb:66:dc:32:22:bf:9e:89:3b:a6:4f:ee:83:c6:bd: f8:5c:cf:58:a8:ea:6c:3f:c3:26:f3:da:92:53:19: 46:80:39:77:64:5c:69:1c:b1:05:c5:25:a3:a4:03: 83:b4:3f:b6:c0:9e:a5:4b:5e:e0:6b:ca:01:b7:67: 38:3c:b5:57:7c:2d:1e:de:fe:28:b2:b7:a8:6f:99: 46:4f:a7:b2:bc:59:31:f6:be:d2:2a:e5:23:ae:32: 88:9e:4a:c2:5e:74:99:1a:7d:b0:32:82:f3:94:dd: c6:a7:b3:0b:fd:13:16:c3:a9:de:ac:70:4c:42:2b: 6f:82:57:56:6b:ef:18:7d:7f:70:21:af:3c:32:42: da:50:83:2e:97:0e:31:dc:cc:d0:4c:ed:dc:40:50: 60:de:a9:4a:c1:3e:38:7c:b2:ac:12:2d:ff:66:96: 9f:ba:92:ec:e5:b1:27:70:6c:5b:67:e6:b6:39:4d: 9c:2e:bb:ac:e7:6f:3a:fc:94:54:23:85:30:d7:a3: c7:8a:c0:a0:dc:3b:e7:2b:ce:2c:df:e9:ab:49:44: 56:09:24:83:f3:fa:30:fe:4f:35:79:59:a4:d7:ab: f4:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:7A:E8:1A:99:02:D6:13:19:41:B1:6D:E3:81:D7:F4:DE:FF:9D:B7 X509v3 Authority Key Identifier: keyid:9D:9A:0C:84:B3:07:20:F4:D4:CE:4B:DB:A0:1D:D0:54:4D:02:8E:CD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nZoMhLMHIPTUzkvboB3QVE0Cjs0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/1e8d4d-53bf-4acb-bc0c-52cad6675fc6/1/nZoMhLMHIPTUzkvboB3QVE0Cjs0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/1e8d4d-53bf-4acb-bc0c-52cad6675fc6/1/nZoMhLMHIPTUzkvboB3QVE0Cjs0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1f:b9:c9:e6:03:eb:51:67:2c:33:f2:90:ff:23:1f:db:61:d4: 63:a7:fb:80:43:2f:d9:f1:09:eb:f8:a5:ac:b7:29:32:91:09: be:d5:96:8b:9c:cb:ca:4f:47:9e:5c:b5:fb:1a:20:09:11:4e: 31:d0:37:27:c4:d9:56:c7:4d:36:b5:d2:e2:8e:49:f7:18:b1: af:e8:ff:86:af:6a:4b:3e:0d:a3:38:54:99:13:ec:40:53:2a: b2:f7:31:f5:88:06:51:b4:f1:8e:f1:29:71:b4:ec:87:8a:7d: b5:78:3b:6d:85:a3:90:5e:5d:4b:ba:5c:46:34:16:25:05:c9: 94:2c:cb:06:20:ad:64:7b:e6:f7:1b:22:61:1d:d6:f6:ff:c9: 5c:e6:84:19:5c:d3:1f:11:48:b8:22:8f:de:97:86:05:4f:27: 36:01:a7:ee:72:e4:6d:ff:38:29:1a:cc:20:cc:b6:47:ce:e5: b8:75:75:c4:05:42:8e:5e:3d:72:99:19:41:f4:f6:0a:3b:bb: c7:60:1a:c4:54:d2:46:f6:a4:5d:9b:6c:e0:da:33:b5:de:4a: 48:42:ad:d3:f6:fd:98:c5:af:e3:2d:c9:c3:18:fb:0d:cb:6c: 23:82:57:0b:b3:97:98:1e:f5:f9:99:d7:0e:ab:d6:4a:e9:ef: 61:42:8e:64 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZvcI4MuN00oz/ZszJZ+1MOTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlkOWEwYzg0YjMwNzIwZjRkNGNlNGJkYmEwMWRkMDU0NGQw MjhlY2QwHhcNMjYwMTIwMTYwMTEzWhcNMjYwMTIxMTYwMTEzWjAzMTEwLwYDVQQD EyhlYTdhZTgxYTk5MDJkNjEzMTk0MWIxNmRlMzgxZDdmNGRlZmY5ZGI3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmszeGMkzdSdBhQe8+RfjGf2toc4r dJoFEGtLp737ZtwyIr+eiTumT+6Dxr34XM9YqOpsP8Mm89qSUxlGgDl3ZFxpHLEF xSWjpAODtD+2wJ6lS17ga8oBt2c4PLVXfC0e3v4osreob5lGT6eyvFkx9r7SKuUj rjKInkrCXnSZGn2wMoLzlN3Gp7ML/RMWw6nerHBMQitvgldWa+8YfX9wIa88MkLa UIMulw4x3MzQTO3cQFBg3qlKwT44fLKsEi3/ZpafupLs5bEncGxbZ+a2OU2cLrus 5286/JRUI4Uw16PHisCg3DvnK84s3+mrSURWCSSD8/ow/k81eVmk16v0twIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOp66BqZAtYTGUGxbeOB1/Te/523MB8GA1UdIwQY MBaAFJ2aDISzByD01M5L26Ad0FRNAo7NMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvblpvTWhMTUhJUFRVemt2Ym9CM1FWRTBDanMwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS8xZThkNGQtNTNiZi00YWNiLWJjMGMt NTJjYWQ2Njc1ZmM2LzEvblpvTWhMTUhJUFRVemt2Ym9CM1FWRTBDanMwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYS8xZThkNGQtNTNiZi00YWNiLWJjMGMtNTJjYWQ2Njc1ZmM2 LzEvblpvTWhMTUhJUFRVemt2Ym9CM1FWRTBDanMwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAH7nJ5gPr UWcsM/KQ/yMf22HUY6f7gEMv2fEJ6/ilrLcpMpEJvtWWi5zLyk9Hnly1+xogCRFO MdA3J8TZVsdNNrXS4o5J9xixr+j/hq9qSz4NozhUmRPsQFMqsvcx9YgGUbTxjvEp cbTsh4p9tXg7bYWjkF5dS7pcRjQWJQXJlCzLBiCtZHvm9xsiYR3W9v/JXOaEGVzT HxFIuCKP3peGBU8nNgGn7nLkbf84KRrMIMy2R87luHV1xAVCjl49cpkZQfT2Cju7 x2AaxFTSRvakXZts4Noztd5KSEKt0/b9mMWv4y3Jwxj7DctsI4JXC7OXmB71+ZnX DqvWSunvYUKOZA== -----END CERTIFICATE-----Generated at Tue Jan 20 19:51:16 2026 by rpki-client