This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.mft File: hWhAcEemLmSDAMUYKik1P_WOsF8.mft (raw, json) Hash identifier: CKiB1rzGBqtE8aTFttTlMaEI9tL9l6MfzfpnZEGr6vI= Subject key identifier: D5:11:8E:F0:6E:AC:96:B4:C9:BA:BC:1C:E6:1F:1A:61:CF:83:D0:EE Authority key identifier: 85:68:40:70:47:A6:2E:64:83:00:C5:18:2A:29:35:3F:F5:8E:B0:5F Certificate issuer: /CN=8568407047a62e648300c5182a29353ff58eb05f Certificate serial: 019BFD2EF09B88BD9986C96324A80FFA7AC6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hWhAcEemLmSDAMUYKik1P_WOsF8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.mft Manifest number: 053D Signing time: Tue 27 Jan 2026 02:01:10 +0000 Manifest this update: Tue 27 Jan 2026 02:01:10 +0000 Manifest next update: Wed 28 Jan 2026 02:01:10 +0000 Files and hashes: 1: _3SsPoZz4ndBlE9FKTU4o6A47bQ.roa (hash: YLTYKbUjdWoX7zGu97DHQcaZdG5VUWTXRbFjuRFb06w=) 2: hWhAcEemLmSDAMUYKik1P_WOsF8.crl (hash: dvhhGZEBTDYgpHfBgvfH5MUeuW3m3GH1KARXZeHpsjo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.crl rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.mft rsync://rpki.ripe.net/repository/DEFAULT/hWhAcEemLmSDAMUYKik1P_WOsF8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 20:39:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fd:2e:f0:9b:88:bd:99:86:c9:63:24:a8:0f:fa:7a:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8568407047a62e648300c5182a29353ff58eb05f Validity Not Before: Jan 27 02:01:10 2026 GMT Not After : Jan 28 02:01:10 2026 GMT Subject: CN=d5118ef06eac96b4c9babc1ce61f1a61cf83d0ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:d1:3b:71:f0:4b:b5:0d:c2:0c:91:86:60:9d: 9c:ee:3b:c4:d1:e1:ac:47:09:d1:62:76:75:22:f9: 35:65:4d:92:15:50:3d:b6:4c:13:1a:90:e3:02:c7: c9:6c:a1:9b:fb:d1:bb:fd:f1:c6:0d:e8:b7:38:64: be:b3:b4:92:44:67:aa:c4:fd:7c:33:ec:ae:94:a3: b7:b4:97:cf:3f:76:69:9c:f7:03:9c:63:d0:fa:d5: e6:b1:43:cf:da:17:99:61:5b:22:24:c0:e2:25:c8: e2:b0:5d:39:49:ee:08:f3:b9:dc:da:56:fb:70:76: 0b:37:f6:11:87:a1:0a:0a:af:bc:a3:ae:83:30:7b: 82:59:08:59:2f:c5:c5:f3:88:73:ca:41:5d:d7:93: 99:40:1a:58:2b:7f:9f:32:38:da:89:d3:c7:44:02: 35:dd:06:f5:da:08:e7:11:41:de:9d:8a:b1:db:09: e9:a1:92:3f:a6:fd:63:d6:70:f4:f3:df:a5:e2:92: 5e:36:59:62:ab:11:99:0c:ec:a0:fd:15:9b:87:35: b6:03:b1:22:47:ed:6e:d3:d1:d9:10:75:de:61:01: 82:e9:47:5b:79:6b:36:09:2c:a2:24:40:a9:2a:81: 17:2c:ce:d5:d3:f8:07:7d:4d:00:72:2e:dc:63:f1: c4:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:11:8E:F0:6E:AC:96:B4:C9:BA:BC:1C:E6:1F:1A:61:CF:83:D0:EE X509v3 Authority Key Identifier: keyid:85:68:40:70:47:A6:2E:64:83:00:C5:18:2A:29:35:3F:F5:8E:B0:5F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hWhAcEemLmSDAMUYKik1P_WOsF8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/320395-70c0-4002-a362-ed3e98c656e1/1/hWhAcEemLmSDAMUYKik1P_WOsF8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a6:59:19:d4:52:eb:22:55:33:04:7c:3c:f7:04:60:60:0d:0c: 36:05:b7:c6:71:c7:2e:07:21:84:83:64:2a:52:7a:ab:49:e4: 91:c3:86:a4:ce:96:27:5c:a4:b9:95:09:de:9e:51:e1:ed:65: 15:59:82:df:07:c3:80:9d:58:e7:ec:9f:cd:8c:fc:02:d1:36: f3:bd:4f:db:0c:fb:43:bf:53:32:62:08:96:ee:a8:a8:46:fa: 77:53:ff:9c:11:4a:86:60:19:af:78:42:82:dd:08:5b:6a:c9: a1:b2:b4:85:0d:55:37:b5:ad:4d:d1:28:df:55:b9:24:9d:8d: 12:4a:b1:ff:ab:05:b7:04:6c:aa:f7:84:e1:84:2d:1a:f4:19: 41:d3:6a:00:d3:af:ff:a5:45:c7:8d:cd:ea:f7:4e:60:37:35: 7d:da:d3:3a:ae:f3:be:64:41:bd:7f:28:76:87:2f:06:8e:50: d7:f6:3c:2a:72:cd:3c:44:fa:10:0a:32:94:4e:9c:5a:1a:e1: 17:59:b7:d8:45:16:8a:b7:a6:bd:b5:5b:fa:2d:54:f1:5d:fc: b9:f9:e8:da:f6:7d:c9:d9:58:87:a1:c4:20:ca:3c:d9:ab:5c: 1c:16:2e:1f:bc:23:7e:8f:8f:50:07:8c:a3:8b:ed:eb:7b:b3: fb:cb:20:c9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv9LvCbiL2ZhsljJKgP+nrGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg1Njg0MDcwNDdhNjJlNjQ4MzAwYzUxODJhMjkzNTNmZjU4 ZWIwNWYwHhcNMjYwMTI3MDIwMTEwWhcNMjYwMTI4MDIwMTEwWjAzMTEwLwYDVQQD EyhkNTExOGVmMDZlYWM5NmI0YzliYWJjMWNlNjFmMWE2MWNmODNkMGVlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqtE7cfBLtQ3CDJGGYJ2c7jvE0eGs RwnRYnZ1Ivk1ZU2SFVA9tkwTGpDjAsfJbKGb+9G7/fHGDei3OGS+s7SSRGeqxP18 M+yulKO3tJfPP3ZpnPcDnGPQ+tXmsUPP2heZYVsiJMDiJcjisF05Se4I87nc2lb7 cHYLN/YRh6EKCq+8o66DMHuCWQhZL8XF84hzykFd15OZQBpYK3+fMjjaidPHRAI1 3Qb12gjnEUHenYqx2wnpoZI/pv1j1nD089+l4pJeNlliqxGZDOyg/RWbhzW2A7Ei R+1u09HZEHXeYQGC6UdbeWs2CSyiJECpKoEXLM7V0/gHfU0Aci7cY/HEJQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNURjvBurJa0ybq8HOYfGmHPg9DuMB8GA1UdIwQY MBaAFIVoQHBHpi5kgwDFGCopNT/1jrBfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaFdoQWNFZW1MbVNEQU1VWUtpazFQX1dPc0Y4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS8zMjAzOTUtNzBjMC00MDAyLWEzNjIt ZWQzZTk4YzY1NmUxLzEvaFdoQWNFZW1MbVNEQU1VWUtpazFQX1dPc0Y4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYS8zMjAzOTUtNzBjMC00MDAyLWEzNjItZWQzZTk4YzY1NmUx LzEvaFdoQWNFZW1MbVNEQU1VWUtpazFQX1dPc0Y4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAplkZ1FLr IlUzBHw89wRgYA0MNgW3xnHHLgchhINkKlJ6q0nkkcOGpM6WJ1ykuZUJ3p5R4e1l FVmC3wfDgJ1Y5+yfzYz8AtE2871P2wz7Q79TMmIIlu6oqEb6d1P/nBFKhmAZr3hC gt0IW2rJobK0hQ1VN7WtTdEo31W5JJ2NEkqx/6sFtwRsqveE4YQtGvQZQdNqANOv /6VFx43N6vdOYDc1fdrTOq7zvmRBvX8odocvBo5Q1/Y8KnLNPET6EAoylE6cWhrh F1m32EUWiremvbVb+i1U8V38ufno2vZ9ydlYh6HEIMo82atcHBYuH7wjfo+PUAeM o4vt63uz+8sgyQ== -----END CERTIFICATE-----Generated at Tue Jan 27 07:16:54 2026 by rpki-client