This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/4424ef-68aa-4b70-b2cc-0873e3994d0e/1/_32KebrU-YPQxJiVr1DqigPrxw0.mft File: _32KebrU-YPQxJiVr1DqigPrxw0.mft (raw, json) Hash identifier: HDWGpbJJe108CbH2eiMK/J3KZ2CNDxQhP5U7+9NLibg= Subject key identifier: 3A:36:51:7E:9E:A5:9B:A2:E2:1A:1B:22:5C:46:F8:67:B7:03:B1:06 Authority key identifier: FF:7D:8A:79:BA:D4:F9:83:D0:C4:98:95:AF:50:EA:8A:03:EB:C7:0D Certificate issuer: /CN=ff7d8a79bad4f983d0c49895af50ea8a03ebc70d Certificate serial: 019BF91B0F828124050EAEAA80021D12198A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_32KebrU-YPQxJiVr1DqigPrxw0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/4424ef-68aa-4b70-b2cc-0873e3994d0e/1/_32KebrU-YPQxJiVr1DqigPrxw0.mft Manifest number: 0E9A Signing time: Mon 26 Jan 2026 07:00:58 +0000 Manifest this update: Mon 26 Jan 2026 07:00:58 +0000 Manifest next update: Tue 27 Jan 2026 07:00:58 +0000 Files and hashes: 1: OMZJTfEMX_P-o40x7sNRJUiIL4c.roa (hash: +/OiISUXHSKCG7hFmdUA41onjdMcxoyC7Y6Vt6TTSZY=) 2: TcH4GIuktxSUfHtquYZnE0nBhtE.roa (hash: rpQl9MUfMf8qQcoJFxTK9nJpUXGjE7ncDisSQXNZN4E=) 3: _32KebrU-YPQxJiVr1DqigPrxw0.crl (hash: Zi3MVQckN5Z/PhQ5IFuI9Y/w/00POAqp2B/5X4rqkfM=) 4: f-YXM7BH83V0kvUXvW2GIs5BDg0.roa (hash: AsELevMPRLK8TdZ3qZnEEYe0IBvxlKOGzstiZBn5CSk=) 5: nkfXYoc4Mcgj_WnSgw1MfRAkUv8.roa (hash: uTw63Gl3rRgs6l5JsMFtSBnpBCOYFjYiM97n8RknJaU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/4424ef-68aa-4b70-b2cc-0873e3994d0e/1/_32KebrU-YPQxJiVr1DqigPrxw0.crl rsync://rpki.ripe.net/repository/DEFAULT/3b/4424ef-68aa-4b70-b2cc-0873e3994d0e/1/_32KebrU-YPQxJiVr1DqigPrxw0.mft rsync://rpki.ripe.net/repository/DEFAULT/_32KebrU-YPQxJiVr1DqigPrxw0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f9:1b:0f:82:81:24:05:0e:ae:aa:80:02:1d:12:19:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ff7d8a79bad4f983d0c49895af50ea8a03ebc70d Validity Not Before: Jan 26 07:00:58 2026 GMT Not After : Jan 27 07:00:58 2026 GMT Subject: CN=3a36517e9ea59ba2e21a1b225c46f867b703b106 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:1d:e8:e8:a4:01:48:4f:97:f5:61:cc:8b:cd: 4c:80:8f:a0:22:59:7d:c2:2d:64:07:f2:1a:38:ec: c9:40:e4:eb:63:f2:e1:00:cf:6d:a2:c2:92:f5:08: 8a:ca:93:e4:11:8b:7b:a0:59:2d:ec:99:a7:ed:3b: 20:75:00:dd:88:94:b2:90:ac:be:32:e5:5e:e6:9b: 88:54:84:bf:9c:b1:95:b4:ef:13:31:ec:e8:a1:fe: de:7b:0c:5c:9c:fc:fe:3d:6a:e9:2e:fe:26:b9:e7: 58:a3:f4:53:b2:6c:dd:9b:80:ea:db:a0:38:4b:45: ff:79:86:7c:04:f2:08:df:d9:62:a6:6d:52:76:16: cf:79:cc:19:9e:97:f1:de:06:19:bb:b1:00:0b:aa: 6c:7a:7a:f7:40:a6:32:3c:2e:c5:3c:d5:11:9f:cd: 81:ca:c0:39:97:0c:28:02:6a:0d:17:24:22:a0:fc: 51:3f:aa:14:f8:06:4e:49:01:f6:01:d3:04:8d:3f: 62:fd:c3:a5:17:79:85:60:5c:6e:69:05:01:8e:d4: b6:d0:fa:2d:e6:a3:6d:90:ab:46:1b:62:9c:f5:da: 93:72:44:69:37:d0:e8:c3:36:05:6f:3c:62:a3:56: cb:55:ae:9e:6a:ac:a7:8f:f5:dd:b2:a8:65:a6:76: b8:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:36:51:7E:9E:A5:9B:A2:E2:1A:1B:22:5C:46:F8:67:B7:03:B1:06 X509v3 Authority Key Identifier: keyid:FF:7D:8A:79:BA:D4:F9:83:D0:C4:98:95:AF:50:EA:8A:03:EB:C7:0D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_32KebrU-YPQxJiVr1DqigPrxw0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/4424ef-68aa-4b70-b2cc-0873e3994d0e/1/_32KebrU-YPQxJiVr1DqigPrxw0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/4424ef-68aa-4b70-b2cc-0873e3994d0e/1/_32KebrU-YPQxJiVr1DqigPrxw0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9d:52:68:07:09:d8:e0:db:26:a8:9f:c2:02:1f:d5:cc:a7:6b: a2:f9:67:1b:96:4e:5c:8c:a7:75:a2:64:f2:45:52:b3:55:84: ac:58:5d:9e:e4:59:89:d6:78:29:1f:d6:c2:22:ba:93:64:34: 31:35:2f:67:9a:94:f0:a4:a6:13:76:41:20:05:4c:56:b4:87: 2d:7f:32:2a:82:b0:40:ed:bf:17:88:72:1b:17:7e:d0:9d:e7: 09:73:10:49:f6:f9:14:e4:73:22:6d:40:bc:da:da:08:2f:a7: 5c:f5:73:fa:17:6d:7f:63:1d:b2:5b:ff:8d:d7:3e:07:c2:a1: 4b:5a:6a:61:a0:bf:77:f0:f3:0e:c2:d0:17:30:87:4c:a2:d7: 05:17:0f:79:f4:5b:ad:2a:0e:e3:7b:fd:43:fc:0e:8c:8f:6f: 1a:fd:0c:9a:3f:12:43:fd:e0:12:35:f0:9c:75:ae:45:f3:89: 16:b2:25:14:a5:f0:1e:a7:be:75:72:02:3d:d9:4c:6f:85:ab: b1:8e:40:15:7f:00:3f:89:82:90:4a:0c:a4:b3:3a:ec:61:c8: 94:37:59:bd:10:0f:fb:3b:6c:f7:9f:01:f5:38:ca:c7:69:de: 23:31:cc:1e:7b:9d:64:d3:4a:11:be:64:d9:44:1e:76:9c:4d: 94:4d:cc:a5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv5Gw+CgSQFDq6qgAIdEhmKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZmN2Q4YTc5YmFkNGY5ODNkMGM0OTg5NWFmNTBlYThhMDNl YmM3MGQwHhcNMjYwMTI2MDcwMDU4WhcNMjYwMTI3MDcwMDU4WjAzMTEwLwYDVQQD EygzYTM2NTE3ZTllYTU5YmEyZTIxYTFiMjI1YzQ2Zjg2N2I3MDNiMTA2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAux3o6KQBSE+X9WHMi81MgI+gIll9 wi1kB/IaOOzJQOTrY/LhAM9tosKS9QiKypPkEYt7oFkt7Jmn7TsgdQDdiJSykKy+ MuVe5puIVIS/nLGVtO8TMezoof7eewxcnPz+PWrpLv4muedYo/RTsmzdm4Dq26A4 S0X/eYZ8BPII39lipm1SdhbPecwZnpfx3gYZu7EAC6psenr3QKYyPC7FPNURn82B ysA5lwwoAmoNFyQioPxRP6oU+AZOSQH2AdMEjT9i/cOlF3mFYFxuaQUBjtS20Pot 5qNtkKtGG2Kc9dqTckRpN9DowzYFbzxio1bLVa6eaqynj/Xdsqhlpna4cwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDo2UX6epZui4hobIlxG+Ge3A7EGMB8GA1UdIwQY MBaAFP99inm61PmD0MSYla9Q6ooD68cNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvXzMyS2ViclUtWVBReEppVnIxRHFpZ1ByeHcwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYi80NDI0ZWYtNjhhYS00YjcwLWIyY2Mt MDg3M2UzOTk0ZDBlLzEvXzMyS2ViclUtWVBReEppVnIxRHFpZ1ByeHcwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYi80NDI0ZWYtNjhhYS00YjcwLWIyY2MtMDg3M2UzOTk0ZDBl LzEvXzMyS2ViclUtWVBReEppVnIxRHFpZ1ByeHcwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnVJoBwnY 4NsmqJ/CAh/VzKdrovlnG5ZOXIyndaJk8kVSs1WErFhdnuRZidZ4KR/WwiK6k2Q0 MTUvZ5qU8KSmE3ZBIAVMVrSHLX8yKoKwQO2/F4hyGxd+0J3nCXMQSfb5FORzIm1A vNraCC+nXPVz+hdtf2Mdslv/jdc+B8KhS1pqYaC/d/DzDsLQFzCHTKLXBRcPefRb rSoO43v9Q/wOjI9vGv0Mmj8SQ/3gEjXwnHWuRfOJFrIlFKXwHqe+dXICPdlMb4Wr sY5AFX8AP4mCkEoMpLM67GHIlDdZvRAP+zts958B9TjKx2neIzHMHnudZNNKEb5k 2UQedpxNlE3MpQ== -----END CERTIFICATE-----Generated at Mon Jan 26 09:02:19 2026 by rpki-client