This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/sUq6i2B0k5NHjoPDYObL110Vb4k.mft File: sUq6i2B0k5NHjoPDYObL110Vb4k.mft (raw, json) Hash identifier: CBDtcbl7tLrBhWcDpXVNdWTUVWpIzLJ9E3EhcVq2Z2c= Subject key identifier: 88:E0:11:66:47:78:58:33:5C:D5:F8:A0:E9:FF:77:F7:05:2F:21:0B Authority key identifier: B1:4A:BA:8B:60:74:93:93:47:8E:83:C3:60:E6:CB:D7:5D:15:6F:89 Certificate issuer: /CN=b14aba8b60749393478e83c360e6cbd75d156f89 Certificate serial: 019C044433FE07D8DE3B2892CDCEB0C770A7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sUq6i2B0k5NHjoPDYObL110Vb4k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/sUq6i2B0k5NHjoPDYObL110Vb4k.mft Manifest number: 1804 Signing time: Wed 28 Jan 2026 11:01:44 +0000 Manifest this update: Wed 28 Jan 2026 11:01:44 +0000 Manifest next update: Thu 29 Jan 2026 11:01:44 +0000 Files and hashes: 1: 4f2DxLMVStxmUYg88VDQQBtlZGE.roa (hash: Uz7D5fgERb2SSzXvqC8vei90mKOO6rRdvCUGo8Z1qrQ=) 2: JFY54QWecCHKfWOIhQ6eHfwQTI8.roa (hash: c6DsCEx7huHmXsJraso36n2V45N6eM42EXKuT1wNzh8=) 3: UaKvatt20WH9gQlIsSy6W-ufg50.roa (hash: sbiiw8/EVICmdfUZZ0B0j5ynOnqwjUcr4uhl+cHCvEs=) 4: W684H9ZjjArniCEjwC9yQkmGBu0.roa (hash: U9JAd0XMmzuPxuOF9oeLFcesJRjPBSGh98hvwqHnhgM=) 5: r0ZsIk8ecjQ268HGoGVXnQ10Cfg.roa (hash: GJiOlsWyLXx+juw5ogZOEjhwV9Y6Mjw80ZWfPi6BeNY=) 6: sUq6i2B0k5NHjoPDYObL110Vb4k.crl (hash: NSVgzhLUlLRDftVVT9VnQ9qCrm65uPT8DzuQrjv6oeo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/sUq6i2B0k5NHjoPDYObL110Vb4k.crl rsync://rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/sUq6i2B0k5NHjoPDYObL110Vb4k.mft rsync://rpki.ripe.net/repository/DEFAULT/sUq6i2B0k5NHjoPDYObL110Vb4k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 29 Jan 2026 09:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:04:44:33:fe:07:d8:de:3b:28:92:cd:ce:b0:c7:70:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b14aba8b60749393478e83c360e6cbd75d156f89 Validity Not Before: Jan 28 11:01:44 2026 GMT Not After : Jan 29 11:01:44 2026 GMT Subject: CN=88e01166477858335cd5f8a0e9ff77f7052f210b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:0f:06:18:08:d3:c0:23:92:e9:39:4a:66:b5: d3:fc:b5:cf:fd:6c:d8:cb:9d:63:6a:d8:f5:90:e5: 38:4e:48:3c:da:d4:76:87:7c:87:5a:43:9a:11:40: 1f:18:27:8e:42:f0:a0:b3:56:38:4f:7c:c4:80:df: 93:21:d7:21:1a:db:20:fb:27:7f:be:48:6e:99:d5: 51:d7:8b:5a:6c:49:6e:22:62:9e:91:b2:6a:b8:e1: 93:58:a2:b1:be:d6:9d:43:47:ad:8e:d2:43:f4:d3: 1a:43:95:02:30:b5:6e:09:69:3e:7c:47:47:bc:a4: 19:b7:a4:69:8e:7c:50:39:57:68:25:01:2a:e6:c3: 5f:e1:1a:af:f8:88:ff:56:15:bf:ad:44:0c:a9:6c: 6b:4c:59:a8:43:a9:71:f5:7e:60:72:44:31:14:6a: 9f:c6:bf:ba:5e:34:0a:a3:24:66:c6:5b:4d:61:fc: f9:4f:0e:c2:83:ac:d7:8d:a3:71:3f:5d:a6:8c:69: 08:ae:3a:3b:36:c7:71:32:d4:92:c0:02:cc:ec:5f: 5a:d0:72:ae:d6:f6:82:62:aa:7d:01:2d:c7:30:97: 86:a8:40:1c:04:93:ba:68:ca:bc:ca:3a:0c:b3:db: 44:62:0d:b1:3e:7d:90:9f:f4:90:ab:3b:2a:12:80: 80:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:E0:11:66:47:78:58:33:5C:D5:F8:A0:E9:FF:77:F7:05:2F:21:0B X509v3 Authority Key Identifier: keyid:B1:4A:BA:8B:60:74:93:93:47:8E:83:C3:60:E6:CB:D7:5D:15:6F:89 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sUq6i2B0k5NHjoPDYObL110Vb4k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/sUq6i2B0k5NHjoPDYObL110Vb4k.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/sUq6i2B0k5NHjoPDYObL110Vb4k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 34:f2:1c:26:e1:e9:b3:11:dc:88:9b:94:3a:72:8f:ad:b4:97: 96:88:d4:2a:8d:28:d4:41:e5:28:eb:01:64:c5:9b:a6:20:ca: 74:7c:c3:69:d3:5e:73:f0:06:07:c5:eb:10:d1:5f:7e:92:e0: 80:e7:8e:25:f7:6a:11:de:62:f3:82:56:00:3e:4e:e4:a8:01: 65:4f:e3:2a:d9:fb:79:da:2e:97:41:17:bb:99:c5:c6:5d:cd: e7:76:f8:dc:d9:24:65:13:f8:3b:38:c3:60:95:12:91:f9:4f: fe:3e:1d:25:c1:76:f5:86:c3:8f:ab:29:eb:10:0d:17:a5:3c: 83:92:13:82:01:5f:94:21:6d:b8:88:d8:12:da:18:b5:5f:2a: 45:64:cd:2b:4b:22:b6:89:b3:b4:27:59:f3:cc:0d:cd:97:4a: 69:8d:f5:4b:d3:e3:12:15:93:b6:61:45:de:56:2f:d0:d3:1c: 6d:25:5a:54:f6:c3:1a:65:b1:8a:60:e9:79:f4:9f:c7:c5:d8: 45:22:cd:19:07:4b:fe:59:6e:41:e6:d1:59:eb:43:26:a6:06: 05:b9:af:85:6b:49:37:af:93:34:f5:b0:cd:1b:82:10:d6:b4: 21:8d:08:4b:3a:3e:ac:b7:bd:76:13:d8:47:1e:73:06:92:c3: 67:73:7a:20 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZwERDP+B9jeOyiSzc6wx3CnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIxNGFiYThiNjA3NDkzOTM0NzhlODNjMzYwZTZjYmQ3NWQx NTZmODkwHhcNMjYwMTI4MTEwMTQ0WhcNMjYwMTI5MTEwMTQ0WjAzMTEwLwYDVQQD Eyg4OGUwMTE2NjQ3Nzg1ODMzNWNkNWY4YTBlOWZmNzdmNzA1MmYyMTBiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0Q8GGAjTwCOS6TlKZrXT/LXP/WzY y51jatj1kOU4Tkg82tR2h3yHWkOaEUAfGCeOQvCgs1Y4T3zEgN+TIdchGtsg+yd/ vkhumdVR14tabEluImKekbJquOGTWKKxvtadQ0etjtJD9NMaQ5UCMLVuCWk+fEdH vKQZt6RpjnxQOVdoJQEq5sNf4Rqv+Ij/VhW/rUQMqWxrTFmoQ6lx9X5gckQxFGqf xr+6XjQKoyRmxltNYfz5Tw7Cg6zXjaNxP12mjGkIrjo7NsdxMtSSwALM7F9a0HKu 1vaCYqp9AS3HMJeGqEAcBJO6aMq8yjoMs9tEYg2xPn2Qn/SQqzsqEoCAWQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIjgEWZHeFgzXNX4oOn/d/cFLyELMB8GA1UdIwQY MBaAFLFKuotgdJOTR46Dw2Dmy9ddFW+JMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc1VxNmkyQjBrNU5Iam9QRFlPYkwxMTBWYjRrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYi80NjE2ODUtMDczZS00MWFmLTliYjYt Y2Y2YzMwNTIxMmViLzEvc1VxNmkyQjBrNU5Iam9QRFlPYkwxMTBWYjRrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYi80NjE2ODUtMDczZS00MWFmLTliYjYtY2Y2YzMwNTIxMmVi LzEvc1VxNmkyQjBrNU5Iam9QRFlPYkwxMTBWYjRrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANPIcJuHp sxHciJuUOnKPrbSXlojUKo0o1EHlKOsBZMWbpiDKdHzDadNec/AGB8XrENFffpLg gOeOJfdqEd5i84JWAD5O5KgBZU/jKtn7edoul0EXu5nFxl3N53b43NkkZRP4OzjD YJUSkflP/j4dJcF29YbDj6sp6xANF6U8g5ITggFflCFtuIjYEtoYtV8qRWTNK0si tomztCdZ88wNzZdKaY31S9PjEhWTtmFF3lYv0NMcbSVaVPbDGmWximDpefSfx8XY RSLNGQdL/lluQebRWetDJqYGBbmvhWtJN6+TNPWwzRuCENa0IY0ISzo+rLe9dhPY Rx5zBpLDZ3N6IA== -----END CERTIFICATE-----Generated at Wed Jan 28 18:35:04 2026 by rpki-client