This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.mft File: CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.mft (raw, json) Hash identifier: +9kYykngjXHOIcuLiref+L4fOeg0nRbYOLhkNj/ZvyA= Subject key identifier: CB:D0:BF:AE:99:E3:22:FF:6C:86:8B:A8:43:F0:ED:F4:24:0F:35:9D Authority key identifier: 08:42:75:9A:04:FC:FD:9D:D3:86:48:6F:04:82:0E:4A:06:03:97:F2 Certificate issuer: /CN=0842759a04fcfd9dd386486f04820e4a060397f2 Certificate serial: 019BFFC22BE0C8AE39CC47197A0B7DAE6F6D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.mft Manifest number: 045E Signing time: Tue 27 Jan 2026 14:01:13 +0000 Manifest this update: Tue 27 Jan 2026 14:01:13 +0000 Manifest next update: Wed 28 Jan 2026 14:01:13 +0000 Files and hashes: 1: CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.crl (hash: MYwgOELdP77mmhazODNbRql84LqJXCbv4JVxjxcG3KY=) 2: N-nhcmtf4VXbPG95Fke-T4y6cxE.roa (hash: xYYYsHBj06laIvHrXkIBEGVHR61QyHRwXKsgeQHiEUo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.crl rsync://rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.mft rsync://rpki.ripe.net/repository/DEFAULT/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 28 Jan 2026 14:01:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:ff:c2:2b:e0:c8:ae:39:cc:47:19:7a:0b:7d:ae:6f:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0842759a04fcfd9dd386486f04820e4a060397f2 Validity Not Before: Jan 27 14:01:13 2026 GMT Not After : Jan 28 14:01:13 2026 GMT Subject: CN=cbd0bfae99e322ff6c868ba843f0edf4240f359d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:db:e7:9d:ef:51:e3:da:a5:b1:ed:be:f0:17: 56:f0:97:1a:12:1b:48:85:09:ce:c4:94:d6:b9:5b: 3b:87:1e:9f:9e:86:3c:f3:b3:c5:10:7c:ab:15:43: 97:00:f2:40:d4:ca:bb:f8:2b:2c:6e:6c:ef:5b:ad: 6f:18:9d:b6:d3:bc:a6:13:c9:33:2e:a0:b7:cd:03: a6:a6:c9:e2:a8:f6:6c:0f:16:2e:2a:57:0b:9e:35: a1:73:ed:43:91:07:6f:a8:4c:c0:28:cf:9c:d3:0d: 3c:ca:ac:8e:b8:6a:2b:d3:93:cd:9b:fa:5d:5f:f4: 26:ac:0f:8e:98:86:ed:7e:c9:45:e2:82:ea:c5:b3: 6c:87:2b:5d:96:02:0d:d9:f9:5c:d6:7b:11:5e:1b: f9:f6:bb:7e:ce:a0:a3:e1:a5:72:77:53:61:01:6a: a3:63:28:c1:81:bb:a1:2b:2b:f7:be:3b:8c:78:d3: 72:da:74:f7:44:ae:9f:62:c7:d5:b7:94:61:c9:cf: f2:e0:2a:45:9a:9a:3f:0c:3e:cc:1b:60:2b:50:9d: 22:86:ba:98:5e:80:41:c3:eb:0b:30:68:09:56:76: 0f:98:3b:42:9f:4f:dc:a8:8f:ef:d8:db:20:3b:29: 45:42:d1:37:d9:3a:df:58:d3:aa:c2:20:45:6f:d6: 9a:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:D0:BF:AE:99:E3:22:FF:6C:86:8B:A8:43:F0:ED:F4:24:0F:35:9D X509v3 Authority Key Identifier: keyid:08:42:75:9A:04:FC:FD:9D:D3:86:48:6F:04:82:0E:4A:06:03:97:F2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/41/3dfe7f-57ae-450c-92e1-7025e188068c/1/CEJ1mgT8_Z3ThkhvBIIOSgYDl_I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9a:20:ec:eb:84:82:5b:eb:4c:8e:9b:01:5a:49:fc:62:93:4e: 72:29:b0:c3:d0:88:ca:9a:56:ca:4b:2d:d2:1c:f9:2a:35:d2: 0e:ce:08:55:73:fb:23:47:34:57:c9:e3:94:99:61:04:a9:d6: 4c:37:bc:a2:f6:de:f4:62:3f:f0:35:c3:c3:80:f2:87:47:a5: eb:92:5f:70:b2:ce:c5:76:65:3d:19:8f:7c:41:1d:70:79:b0: c6:9a:c9:b2:92:cc:5c:1f:04:58:28:fd:af:4f:85:98:ef:61: 0c:73:3f:3c:7a:0e:24:54:f7:9f:61:35:72:f1:03:04:d8:45: af:33:ca:3b:10:35:ba:f1:44:4e:a9:f4:67:76:da:01:43:59: f4:9b:82:6c:7e:22:22:0e:24:30:e2:9a:13:63:2c:13:24:fe: 32:47:50:58:07:54:45:59:ae:3a:cb:0e:42:61:f7:7b:95:98: cc:7c:d6:8e:cf:f1:78:17:8f:2b:a5:be:54:45:1e:63:47:bb: 49:02:a3:3e:c3:00:ab:ca:18:30:61:bd:38:14:da:3e:6c:01: ff:25:ad:6a:d3:f3:da:7d:64:bf:e6:0d:27:b0:6e:5a:84:00: b8:36:fd:8f:8b:06:0c:c1:aa:bc:24:cf:81:1b:1d:d0:ab:aa: 21:6d:aa:70 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv/wivgyK45zEcZegt9rm9tMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA4NDI3NTlhMDRmY2ZkOWRkMzg2NDg2ZjA0ODIwZTRhMDYw Mzk3ZjIwHhcNMjYwMTI3MTQwMTEzWhcNMjYwMTI4MTQwMTEzWjAzMTEwLwYDVQQD EyhjYmQwYmZhZTk5ZTMyMmZmNmM4NjhiYTg0M2YwZWRmNDI0MGYzNTlkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu9vnne9R49qlse2+8BdW8JcaEhtI hQnOxJTWuVs7hx6fnoY887PFEHyrFUOXAPJA1Mq7+CssbmzvW61vGJ2207ymE8kz LqC3zQOmpsniqPZsDxYuKlcLnjWhc+1DkQdvqEzAKM+c0w08yqyOuGor05PNm/pd X/QmrA+OmIbtfslF4oLqxbNshytdlgIN2flc1nsRXhv59rt+zqCj4aVyd1NhAWqj YyjBgbuhKyv3vjuMeNNy2nT3RK6fYsfVt5Rhyc/y4CpFmpo/DD7MG2ArUJ0ihrqY XoBBw+sLMGgJVnYPmDtCn0/cqI/v2NsgOylFQtE32TrfWNOqwiBFb9aazwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMvQv66Z4yL/bIaLqEPw7fQkDzWdMB8GA1UdIwQY MBaAFAhCdZoE/P2d04ZIbwSCDkoGA5fyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ0VKMW1nVDhfWjNUaGtodkJJSU9TZ1lEbF9JLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS8zZGZlN2YtNTdhZS00NTBjLTkyZTEt NzAyNWUxODgwNjhjLzEvQ0VKMW1nVDhfWjNUaGtodkJJSU9TZ1lEbF9JLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MS8zZGZlN2YtNTdhZS00NTBjLTkyZTEtNzAyNWUxODgwNjhj LzEvQ0VKMW1nVDhfWjNUaGtodkJJSU9TZ1lEbF9JLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmiDs64SC W+tMjpsBWkn8YpNOcimww9CIyppWykst0hz5KjXSDs4IVXP7I0c0V8njlJlhBKnW TDe8ovbe9GI/8DXDw4Dyh0el65JfcLLOxXZlPRmPfEEdcHmwxprJspLMXB8EWCj9 r0+FmO9hDHM/PHoOJFT3n2E1cvEDBNhFrzPKOxA1uvFETqn0Z3baAUNZ9JuCbH4i Ig4kMOKaE2MsEyT+MkdQWAdURVmuOssOQmH3e5WYzHzWjs/xeBePK6W+VEUeY0e7 SQKjPsMAq8oYMGG9OBTaPmwB/yWtatPz2n1kv+YNJ7BuWoQAuDb9j4sGDMGqvCTP gRsd0KuqIW2qcA== -----END CERTIFICATE-----Generated at Tue Jan 27 17:50:56 2026 by rpki-client