This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/bf748d-c4ca-4fd1-a59d-4060f211f3c3/1/tFOis_uD2Gx4BswGYNgpEZ2TdbQ.mft File: tFOis_uD2Gx4BswGYNgpEZ2TdbQ.mft (raw, json) Hash identifier: fzdg/4FaqoDKa2buX9n5ERdJtXX6sZcjLALdGzPeZ+k= Subject key identifier: 5D:E3:62:FF:CF:81:57:22:81:6E:C3:42:45:44:D3:6C:62:A1:DF:AF Authority key identifier: B4:53:A2:B3:FB:83:D8:6C:78:06:CC:06:60:D8:29:11:9D:93:75:B4 Certificate issuer: /CN=b453a2b3fb83d86c7806cc0660d829119d9375b4 Certificate serial: 019BFC8A08FAA14E295957D34CA36DB47FD0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tFOis_uD2Gx4BswGYNgpEZ2TdbQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/bf748d-c4ca-4fd1-a59d-4060f211f3c3/1/tFOis_uD2Gx4BswGYNgpEZ2TdbQ.mft Manifest number: 08C3 Signing time: Mon 26 Jan 2026 23:01:03 +0000 Manifest this update: Mon 26 Jan 2026 23:01:03 +0000 Manifest next update: Tue 27 Jan 2026 23:01:03 +0000 Files and hashes: 1: pf4imHRU2e6GfZe8rQKhzIc5LBg.roa (hash: dsJgVjGxo4nm0IH9s2QS1ktYyvlCS7K764cL/mH8BNg=) 2: tFOis_uD2Gx4BswGYNgpEZ2TdbQ.crl (hash: 7sfNdo/zQD3UDB/co2KF0vE93/I0jz8Zm7GgEcySEms=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/bf748d-c4ca-4fd1-a59d-4060f211f3c3/1/tFOis_uD2Gx4BswGYNgpEZ2TdbQ.crl rsync://rpki.ripe.net/repository/DEFAULT/42/bf748d-c4ca-4fd1-a59d-4060f211f3c3/1/tFOis_uD2Gx4BswGYNgpEZ2TdbQ.mft rsync://rpki.ripe.net/repository/DEFAULT/tFOis_uD2Gx4BswGYNgpEZ2TdbQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 23:01:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fc:8a:08:fa:a1:4e:29:59:57:d3:4c:a3:6d:b4:7f:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b453a2b3fb83d86c7806cc0660d829119d9375b4 Validity Not Before: Jan 26 23:01:03 2026 GMT Not After : Jan 27 23:01:03 2026 GMT Subject: CN=5de362ffcf815722816ec3424544d36c62a1dfaf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:61:84:b4:c6:27:fc:e1:b2:af:dc:3e:b8:3e: e1:e2:3a:c8:3e:cb:c9:25:80:88:db:7b:55:e6:81: ee:46:3b:59:ed:55:23:7d:4a:2e:86:e4:6a:ce:04: 0e:92:41:4a:ea:b8:2a:70:e6:0c:3f:41:1e:f8:76: c5:56:3a:92:73:96:5b:d8:a0:1a:7a:b1:33:72:67: d5:cb:fe:34:02:68:1f:03:33:2c:46:a8:40:72:ca: f7:21:b6:be:10:a5:95:9b:55:67:69:b4:0c:6b:ed: 63:b6:68:99:3d:c7:a4:b6:aa:a1:97:6c:ff:6f:30: b3:ef:da:e0:0d:a4:c5:fd:3c:b7:d5:fd:25:95:1c: 04:ca:74:b1:3c:90:aa:39:f7:88:78:cc:0f:8e:40: 72:97:fc:cf:9a:14:9c:25:b9:a5:47:21:21:84:d3: fd:5e:18:1f:89:db:21:29:ef:c0:31:24:03:fa:17: 42:d1:5f:42:b3:81:66:08:2c:10:fd:f0:59:05:ed: 00:5f:89:cc:ed:02:cc:f2:81:96:f9:c2:a9:3a:0b: db:68:62:c0:6a:88:d4:81:69:96:14:3b:dd:02:28: 81:9d:be:b9:47:19:54:18:0c:1d:8f:02:b8:2d:be: cd:33:ac:7f:27:8d:ad:c4:d6:7d:9a:03:cb:91:85: 6d:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:E3:62:FF:CF:81:57:22:81:6E:C3:42:45:44:D3:6C:62:A1:DF:AF X509v3 Authority Key Identifier: keyid:B4:53:A2:B3:FB:83:D8:6C:78:06:CC:06:60:D8:29:11:9D:93:75:B4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tFOis_uD2Gx4BswGYNgpEZ2TdbQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/bf748d-c4ca-4fd1-a59d-4060f211f3c3/1/tFOis_uD2Gx4BswGYNgpEZ2TdbQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/42/bf748d-c4ca-4fd1-a59d-4060f211f3c3/1/tFOis_uD2Gx4BswGYNgpEZ2TdbQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 26:85:a2:67:02:fd:7c:25:97:20:67:b1:68:90:f5:4d:e1:66: 64:5c:0e:9e:4f:26:82:fd:ce:3e:e7:3a:19:16:75:f1:3b:37: 36:e2:a4:d6:fc:5e:42:5a:7b:12:ca:f6:ff:0a:62:f3:9b:81: 76:7a:26:35:7b:e5:e0:45:4b:59:f9:cd:10:7d:8e:c0:8f:97: 95:4d:1d:f4:34:09:dc:d6:27:83:3f:61:4d:16:1d:25:c1:3c: e2:18:31:e0:e0:55:4f:f9:7c:e0:29:56:87:40:c3:a3:2a:91: be:d7:28:5b:f5:12:33:fe:50:0c:b5:27:06:ba:65:8f:31:90: 95:d7:c4:84:90:64:e0:dc:07:05:f5:2a:49:44:ea:85:c3:e5: a4:2b:9e:8a:b5:0a:a2:4b:89:cd:7a:03:1e:72:9a:10:b0:a3: f3:1d:41:36:b4:73:eb:f0:f8:52:94:e1:65:88:05:02:73:6f: 28:41:db:fc:d8:ae:e2:e4:47:f1:03:4f:3c:3f:6f:66:ea:32: e0:10:63:72:3e:b6:c8:79:b7:23:83:5e:67:50:a3:11:ab:96: c2:83:6f:f4:3e:ae:9c:b9:d5:35:e0:73:47:10:29:0d:a3:cf: 4b:e5:1f:16:27:9e:9f:e2:ff:3f:f4:dc:b0:e3:05:ff:bf:4b: a6:a7:da:d3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv8igj6oU4pWVfTTKNttH/QMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI0NTNhMmIzZmI4M2Q4NmM3ODA2Y2MwNjYwZDgyOTExOWQ5 Mzc1YjQwHhcNMjYwMTI2MjMwMTAzWhcNMjYwMTI3MjMwMTAzWjAzMTEwLwYDVQQD Eyg1ZGUzNjJmZmNmODE1NzIyODE2ZWMzNDI0NTQ0ZDM2YzYyYTFkZmFmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3GGEtMYn/OGyr9w+uD7h4jrIPsvJ JYCI23tV5oHuRjtZ7VUjfUouhuRqzgQOkkFK6rgqcOYMP0Ee+HbFVjqSc5Zb2KAa erEzcmfVy/40AmgfAzMsRqhAcsr3Iba+EKWVm1VnabQMa+1jtmiZPcektqqhl2z/ bzCz79rgDaTF/Ty31f0llRwEynSxPJCqOfeIeMwPjkByl/zPmhScJbmlRyEhhNP9 XhgfidshKe/AMSQD+hdC0V9Cs4FmCCwQ/fBZBe0AX4nM7QLM8oGW+cKpOgvbaGLA aojUgWmWFDvdAiiBnb65RxlUGAwdjwK4Lb7NM6x/J42txNZ9mgPLkYVtvwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFF3jYv/PgVcigW7DQkVE02xiod+vMB8GA1UdIwQY MBaAFLRTorP7g9hseAbMBmDYKRGdk3W0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdEZPaXNfdUQyR3g0QnN3R1lOZ3BFWjJUZGJRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi9iZjc0OGQtYzRjYS00ZmQxLWE1OWQt NDA2MGYyMTFmM2MzLzEvdEZPaXNfdUQyR3g0QnN3R1lOZ3BFWjJUZGJRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Mi9iZjc0OGQtYzRjYS00ZmQxLWE1OWQtNDA2MGYyMTFmM2Mz LzEvdEZPaXNfdUQyR3g0QnN3R1lOZ3BFWjJUZGJRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJoWiZwL9 fCWXIGexaJD1TeFmZFwOnk8mgv3OPuc6GRZ18Ts3NuKk1vxeQlp7Esr2/wpi85uB dnomNXvl4EVLWfnNEH2OwI+XlU0d9DQJ3NYngz9hTRYdJcE84hgx4OBVT/l84ClW h0DDoyqRvtcoW/USM/5QDLUnBrpljzGQldfEhJBk4NwHBfUqSUTqhcPlpCueirUK okuJzXoDHnKaELCj8x1BNrRz6/D4UpThZYgFAnNvKEHb/Niu4uRH8QNPPD9vZuoy 4BBjcj62yHm3I4NeZ1CjEauWwoNv9D6unLnVNeBzRxApDaPPS+UfFieen+L/P/Tc sOMF/79Lpqfa0w== -----END CERTIFICATE-----Generated at Tue Jan 27 07:16:51 2026 by rpki-client