This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/fefc12-2fc2-430d-9606-f4946f03f542/1/NADZSQmD598yx88Xyh6tTwX3lkY.mft File: NADZSQmD598yx88Xyh6tTwX3lkY.mft (raw, json) Hash identifier: SiWzotyN0bZdmpkX8Pkg0WrBDgu7yvmjgBpQNBWYd9k= Subject key identifier: 07:FB:DA:8B:C7:D7:F7:5B:E1:EB:B0:AE:D9:05:2A:44:A0:3E:F7:F4 Authority key identifier: 34:00:D9:49:09:83:E7:DF:32:C7:CF:17:CA:1E:AD:4F:05:F7:96:46 Certificate issuer: /CN=3400d9490983e7df32c7cf17ca1ead4f05f79646 Certificate serial: 019BFC899DEE589DA923F69D362C5816FDE6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NADZSQmD598yx88Xyh6tTwX3lkY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/fefc12-2fc2-430d-9606-f4946f03f542/1/NADZSQmD598yx88Xyh6tTwX3lkY.mft Manifest number: 095E Signing time: Mon 26 Jan 2026 23:00:35 +0000 Manifest this update: Mon 26 Jan 2026 23:00:35 +0000 Manifest next update: Tue 27 Jan 2026 23:00:35 +0000 Files and hashes: 1: NADZSQmD598yx88Xyh6tTwX3lkY.crl (hash: X5na3R+fgrC9lGeQx9CKuaDrcReg7rjVCFoz84MmXUc=) 2: uaapElHUAVaZCvTQWY96RRO1BmE.roa (hash: YoDD+GqIi7yXJNJvp1uQ/eykR6jqDrzcDx3qks2vpKk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/fefc12-2fc2-430d-9606-f4946f03f542/1/NADZSQmD598yx88Xyh6tTwX3lkY.crl rsync://rpki.ripe.net/repository/DEFAULT/4c/fefc12-2fc2-430d-9606-f4946f03f542/1/NADZSQmD598yx88Xyh6tTwX3lkY.mft rsync://rpki.ripe.net/repository/DEFAULT/NADZSQmD598yx88Xyh6tTwX3lkY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 20:39:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fc:89:9d:ee:58:9d:a9:23:f6:9d:36:2c:58:16:fd:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3400d9490983e7df32c7cf17ca1ead4f05f79646 Validity Not Before: Jan 26 23:00:35 2026 GMT Not After : Jan 27 23:00:35 2026 GMT Subject: CN=07fbda8bc7d7f75be1ebb0aed9052a44a03ef7f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:60:0f:36:da:dc:8e:7f:e8:2c:fe:f1:f0:1d: ae:52:41:9e:c8:fb:a0:ea:e5:69:6e:83:d9:54:0e: 5b:23:28:c4:28:c3:66:03:03:98:d3:d1:c2:b7:a2: 19:03:73:80:52:3f:7e:8d:0c:50:b1:5a:d3:9d:1e: 25:ae:47:10:ea:24:b9:01:22:6a:1c:1f:ea:d7:03: d6:08:e6:68:37:fd:5a:f5:f9:f6:f5:33:df:e6:a5: b8:a8:c9:97:0c:8c:3d:57:7c:a7:a7:7c:dd:5f:5b: 47:f2:06:c9:8f:91:84:08:f0:69:4d:ed:78:a7:e1: b0:3e:9b:07:4c:fc:b2:d5:ac:b6:57:a5:d3:61:77: 06:4d:fe:71:20:d5:ac:c0:c7:ed:f9:c1:6a:09:10: 46:b6:99:6b:ab:92:6c:06:8b:ac:5d:6a:03:12:f2: c2:52:23:16:21:23:28:e6:41:19:be:e6:98:0d:6b: 0e:60:0e:b7:0d:6f:88:72:a1:f4:0d:77:cb:9c:0a: 5b:0e:4e:49:e4:bd:2a:28:81:22:66:ad:7a:d0:97: 1c:75:2a:fa:34:06:9e:e2:c5:2b:16:cf:3d:3c:d7: d0:90:64:89:dc:87:3d:7d:6d:1c:27:a4:3a:f2:d7: fc:90:a6:d9:1c:8f:4b:a7:ce:04:05:e6:1a:e2:b8: 12:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:FB:DA:8B:C7:D7:F7:5B:E1:EB:B0:AE:D9:05:2A:44:A0:3E:F7:F4 X509v3 Authority Key Identifier: keyid:34:00:D9:49:09:83:E7:DF:32:C7:CF:17:CA:1E:AD:4F:05:F7:96:46 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NADZSQmD598yx88Xyh6tTwX3lkY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/fefc12-2fc2-430d-9606-f4946f03f542/1/NADZSQmD598yx88Xyh6tTwX3lkY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/fefc12-2fc2-430d-9606-f4946f03f542/1/NADZSQmD598yx88Xyh6tTwX3lkY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 32:d6:93:1c:66:82:6d:14:ff:d0:c4:99:34:f6:c8:d5:ef:e1: 22:d9:68:e7:b5:2e:9d:18:81:8f:8b:f9:ff:ea:39:f1:6b:03: 25:fe:32:87:6e:9e:56:c8:19:b7:e8:4c:cc:ac:93:c7:ca:07: 0b:77:28:26:eb:e9:e4:f8:ff:1b:b7:a3:a1:4a:3d:5d:d6:2b: 21:60:20:3e:e7:76:d9:10:b5:a4:27:7f:cf:7a:d3:bc:a4:55: fd:ef:a7:c3:f1:c9:c4:b2:84:b5:3f:10:a2:ea:f9:82:ef:36: eb:9f:e9:60:b8:00:50:42:b4:5b:87:2c:e1:f1:b9:fa:96:af: 7b:fa:2c:01:e1:b4:b3:c2:44:69:a8:59:43:78:d3:b4:f3:62: 6e:8e:86:75:23:47:b2:b6:cf:d6:22:c8:3c:fe:4d:f1:a0:c4: 26:cf:5d:00:5a:05:a0:35:0f:a0:7d:55:67:11:68:1b:1f:d5: be:3c:39:8d:55:30:18:60:8a:8f:98:24:4e:aa:8f:2b:7b:4b: 2e:ee:5c:73:2a:a0:3b:70:3c:e7:1e:26:96:ea:8e:c5:c6:b0: 4e:34:91:c2:48:91:82:28:d0:a5:4b:23:8d:3a:ad:69:b2:33: 96:a2:5b:17:b2:82:9d:04:51:71:fd:12:ec:73:73:65:54:ca: b5:b2:b2:ef -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv8iZ3uWJ2pI/adNixYFv3mMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM0MDBkOTQ5MDk4M2U3ZGYzMmM3Y2YxN2NhMWVhZDRmMDVm Nzk2NDYwHhcNMjYwMTI2MjMwMDM1WhcNMjYwMTI3MjMwMDM1WjAzMTEwLwYDVQQD EygwN2ZiZGE4YmM3ZDdmNzViZTFlYmIwYWVkOTA1MmE0NGEwM2VmN2Y0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA02APNtrcjn/oLP7x8B2uUkGeyPug 6uVpboPZVA5bIyjEKMNmAwOY09HCt6IZA3OAUj9+jQxQsVrTnR4lrkcQ6iS5ASJq HB/q1wPWCOZoN/1a9fn29TPf5qW4qMmXDIw9V3ynp3zdX1tH8gbJj5GECPBpTe14 p+GwPpsHTPyy1ay2V6XTYXcGTf5xINWswMft+cFqCRBGtplrq5JsBousXWoDEvLC UiMWISMo5kEZvuaYDWsOYA63DW+IcqH0DXfLnApbDk5J5L0qKIEiZq160JccdSr6 NAae4sUrFs89PNfQkGSJ3Ic9fW0cJ6Q68tf8kKbZHI9Lp84EBeYa4rgS/QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAf72ovH1/db4euwrtkFKkSgPvf0MB8GA1UdIwQY MBaAFDQA2UkJg+ffMsfPF8oerU8F95ZGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTkFEWlNRbUQ1OTh5eDg4WHloNnRUd1gzbGtZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy9mZWZjMTItMmZjMi00MzBkLTk2MDYt ZjQ5NDZmMDNmNTQyLzEvTkFEWlNRbUQ1OTh5eDg4WHloNnRUd1gzbGtZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Yy9mZWZjMTItMmZjMi00MzBkLTk2MDYtZjQ5NDZmMDNmNTQy LzEvTkFEWlNRbUQ1OTh5eDg4WHloNnRUd1gzbGtZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMtaTHGaC bRT/0MSZNPbI1e/hItlo57UunRiBj4v5/+o58WsDJf4yh26eVsgZt+hMzKyTx8oH C3coJuvp5Pj/G7ejoUo9XdYrIWAgPud22RC1pCd/z3rTvKRV/e+nw/HJxLKEtT8Q our5gu8265/pYLgAUEK0W4cs4fG5+pave/osAeG0s8JEaahZQ3jTtPNibo6GdSNH srbP1iLIPP5N8aDEJs9dAFoFoDUPoH1VZxFoGx/Vvjw5jVUwGGCKj5gkTqqPK3tL Lu5ccyqgO3A85x4mluqOxcawTjSRwkiRgijQpUsjjTqtabIzlqJbF7KCnQRRcf0S 7HNzZVTKtbKy7w== -----END CERTIFICATE-----Generated at Tue Jan 27 02:17:46 2026 by rpki-client