This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/58f45f-8b07-4e6a-9548-d5b0f91d97c2/1/K5didVR7dd8rBMT5spHAcQxQd0A.mft File: K5didVR7dd8rBMT5spHAcQxQd0A.mft (raw, json) Hash identifier: dW/dbZCY0bwB+hxt48eu9BrsqHtSNRc0bKeYtnZDj80= Subject key identifier: 99:F9:CD:22:EF:F5:E7:D0:DE:3D:0E:EE:CC:C1:DA:0E:5D:C5:52:5B Authority key identifier: 2B:97:62:75:54:7B:75:DF:2B:04:C4:F9:B2:91:C0:71:0C:50:77:40 Certificate issuer: /CN=2b976275547b75df2b04c4f9b291c0710c507740 Certificate serial: 019BFDD41162C1C43A661164B609F28DF432 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K5didVR7dd8rBMT5spHAcQxQd0A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/58f45f-8b07-4e6a-9548-d5b0f91d97c2/1/K5didVR7dd8rBMT5spHAcQxQd0A.mft Manifest number: 17EF Signing time: Tue 27 Jan 2026 05:01:32 +0000 Manifest this update: Tue 27 Jan 2026 05:01:32 +0000 Manifest next update: Wed 28 Jan 2026 05:01:32 +0000 Files and hashes: 1: 267NH16MzH47Zyj0K4t3Pr0uSro.roa (hash: mBBDPMXvF9insE4ynTzv2acZX93bp3bRK4WTLefzCSs=) 2: K5didVR7dd8rBMT5spHAcQxQd0A.crl (hash: a/4X+i+nmhUmge2kxCn2QL0QVoSlAHf7PKr7V79MLQk=) 3: u8GJzQSAm-GKtJeGy5swVGHnmuw.roa (hash: XBITkt7W+EBNbhhroLYYPKNKyDfk5alZ3rm7ik7fTf4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/58f45f-8b07-4e6a-9548-d5b0f91d97c2/1/K5didVR7dd8rBMT5spHAcQxQd0A.crl rsync://rpki.ripe.net/repository/DEFAULT/42/58f45f-8b07-4e6a-9548-d5b0f91d97c2/1/K5didVR7dd8rBMT5spHAcQxQd0A.mft rsync://rpki.ripe.net/repository/DEFAULT/K5didVR7dd8rBMT5spHAcQxQd0A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 28 Jan 2026 00:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fd:d4:11:62:c1:c4:3a:66:11:64:b6:09:f2:8d:f4:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2b976275547b75df2b04c4f9b291c0710c507740 Validity Not Before: Jan 27 05:01:32 2026 GMT Not After : Jan 28 05:01:32 2026 GMT Subject: CN=99f9cd22eff5e7d0de3d0eeeccc1da0e5dc5525b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:c0:ef:42:c4:e2:dd:0c:6c:31:38:dd:f2:1c: d0:55:73:14:e8:ce:df:50:21:86:c7:18:83:be:12: 25:b5:39:10:4a:44:d2:d1:b8:f0:7d:9d:97:c2:f8: 72:8c:e6:55:d3:11:1d:b0:86:c5:2f:02:80:12:f9: cb:b7:1a:c8:92:ef:69:45:6e:00:c8:03:0c:84:d1: b0:39:ee:de:99:75:ed:a8:9d:6b:36:80:52:48:bf: 20:52:77:7e:cb:58:18:9f:1c:08:4d:a5:89:93:57: 35:cc:12:46:30:66:42:f7:46:31:24:99:2f:0b:1a: 90:80:3d:fa:c9:9e:d7:12:94:b0:c5:f4:b4:48:23: b8:73:84:0d:85:06:ca:60:c4:1b:70:3d:13:e6:5d: a6:f3:85:07:47:b9:08:ad:5f:d7:d3:63:4b:a8:54: 2f:89:74:84:6f:5c:f7:91:39:d6:39:b8:bb:0a:24: 69:b5:f5:84:1c:c8:70:e0:bb:13:0d:7e:28:c7:9d: e6:90:6f:ff:e7:d6:05:b0:32:9c:15:b0:76:89:03: 02:17:69:6e:60:e9:ab:06:7b:61:d4:8c:f4:66:44: 73:7c:61:a9:a3:a5:35:8a:05:3f:ce:5b:9b:1a:ea: 9b:65:28:b9:78:8d:77:2d:46:c8:be:29:ce:31:80: 9b:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:F9:CD:22:EF:F5:E7:D0:DE:3D:0E:EE:CC:C1:DA:0E:5D:C5:52:5B X509v3 Authority Key Identifier: keyid:2B:97:62:75:54:7B:75:DF:2B:04:C4:F9:B2:91:C0:71:0C:50:77:40 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K5didVR7dd8rBMT5spHAcQxQd0A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/58f45f-8b07-4e6a-9548-d5b0f91d97c2/1/K5didVR7dd8rBMT5spHAcQxQd0A.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/42/58f45f-8b07-4e6a-9548-d5b0f91d97c2/1/K5didVR7dd8rBMT5spHAcQxQd0A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a1:5f:2e:7b:07:9e:06:3d:05:db:4c:85:f0:47:99:7c:a1:6f: d2:a2:3a:e9:f6:f0:c5:bb:4c:da:1b:9c:05:1e:37:3a:1e:e4: e3:40:81:d6:50:24:95:82:58:e0:09:6f:bf:2c:31:77:c0:9c: 18:f2:28:5b:ba:e0:3c:07:41:d0:94:d0:2e:70:42:e9:00:d7: 5f:b2:b1:16:ac:c8:56:2b:37:00:89:a3:ee:b8:47:68:30:e8: 60:c1:13:ab:ae:c7:e0:2d:d2:ba:6a:8a:5b:86:1c:3f:5d:96: d7:b1:b2:63:da:de:8b:de:71:fd:3d:0b:86:23:4c:3b:e8:d3: 7a:35:dc:89:23:ee:e0:e9:71:ff:c5:2f:8a:f9:94:eb:fa:2e: 0b:78:76:19:2d:6d:51:9e:bb:12:fb:50:42:b4:95:14:8d:44: dd:c8:2c:ab:f1:51:b3:56:bd:3e:d5:93:c9:43:3f:5a:da:07: 50:55:9a:0f:74:30:77:f5:03:8b:1c:5a:a2:fb:ef:92:bb:57: ec:cf:3e:a5:9c:9c:c9:bd:c3:aa:bf:b3:48:7f:62:4f:15:5d: 5d:b6:56:ce:07:b2:0f:a7:59:9d:5e:4e:11:50:a9:d3:be:1c: 4d:cd:4b:06:5d:c1:22:9a:73:86:ef:77:6b:03:05:36:1d:57: da:94:52:71 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv91BFiwcQ6ZhFktgnyjfQyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJiOTc2Mjc1NTQ3Yjc1ZGYyYjA0YzRmOWIyOTFjMDcxMGM1 MDc3NDAwHhcNMjYwMTI3MDUwMTMyWhcNMjYwMTI4MDUwMTMyWjAzMTEwLwYDVQQD Eyg5OWY5Y2QyMmVmZjVlN2QwZGUzZDBlZWVjY2MxZGEwZTVkYzU1MjViMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3cDvQsTi3QxsMTjd8hzQVXMU6M7f UCGGxxiDvhIltTkQSkTS0bjwfZ2XwvhyjOZV0xEdsIbFLwKAEvnLtxrIku9pRW4A yAMMhNGwOe7emXXtqJ1rNoBSSL8gUnd+y1gYnxwITaWJk1c1zBJGMGZC90YxJJkv CxqQgD36yZ7XEpSwxfS0SCO4c4QNhQbKYMQbcD0T5l2m84UHR7kIrV/X02NLqFQv iXSEb1z3kTnWObi7CiRptfWEHMhw4LsTDX4ox53mkG//59YFsDKcFbB2iQMCF2lu YOmrBnth1Iz0ZkRzfGGpo6U1igU/zlubGuqbZSi5eI13LUbIvinOMYCbiwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJn5zSLv9efQ3j0O7szB2g5dxVJbMB8GA1UdIwQY MBaAFCuXYnVUe3XfKwTE+bKRwHEMUHdAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSzVkaWRWUjdkZDhyQk1UNXNwSEFjUXhRZDBBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi81OGY0NWYtOGIwNy00ZTZhLTk1NDgt ZDViMGY5MWQ5N2MyLzEvSzVkaWRWUjdkZDhyQk1UNXNwSEFjUXhRZDBBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Mi81OGY0NWYtOGIwNy00ZTZhLTk1NDgtZDViMGY5MWQ5N2My LzEvSzVkaWRWUjdkZDhyQk1UNXNwSEFjUXhRZDBBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoV8uewee Bj0F20yF8EeZfKFv0qI66fbwxbtM2hucBR43Oh7k40CB1lAklYJY4Alvvywxd8Cc GPIoW7rgPAdB0JTQLnBC6QDXX7KxFqzIVis3AImj7rhHaDDoYMETq67H4C3SumqK W4YcP12W17GyY9rei95x/T0LhiNMO+jTejXciSPu4Olx/8UvivmU6/ouC3h2GS1t UZ67EvtQQrSVFI1E3cgsq/FRs1a9PtWTyUM/WtoHUFWaD3Qwd/UDixxaovvvkrtX 7M8+pZycyb3Dqr+zSH9iTxVdXbZWzgeyD6dZnV5OEVCp074cTc1LBl3BIppzhu93 awMFNh1X2pRScQ== -----END CERTIFICATE-----Generated at Tue Jan 27 09:59:10 2026 by rpki-client