This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/2995cd-465f-4b40-a455-16d3cd352f2e/1/m9o0FBNxKfo4psYcSWq4thQJzgI.mft File: m9o0FBNxKfo4psYcSWq4thQJzgI.mft (raw, json) Hash identifier: svtADvFYwPa2q1DP3fEdp36eHESjdToN2XntkLVoK/8= Subject key identifier: 09:40:0F:92:A3:BD:77:2F:8C:4E:2C:65:52:E4:85:95:CA:45:BB:98 Authority key identifier: 9B:DA:34:14:13:71:29:FA:38:A6:C6:1C:49:6A:B8:B6:14:09:CE:02 Certificate issuer: /CN=9bda3414137129fa38a6c61c496ab8b61409ce02 Certificate serial: 019BFC89D18F1A3E3834910F427CBC8B237A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9o0FBNxKfo4psYcSWq4thQJzgI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/2995cd-465f-4b40-a455-16d3cd352f2e/1/m9o0FBNxKfo4psYcSWq4thQJzgI.mft Manifest number: 17EA Signing time: Mon 26 Jan 2026 23:00:48 +0000 Manifest this update: Mon 26 Jan 2026 23:00:48 +0000 Manifest next update: Tue 27 Jan 2026 23:00:48 +0000 Files and hashes: 1: m9o0FBNxKfo4psYcSWq4thQJzgI.crl (hash: 1Ego4R5ZYybxiEvsTCxRqJNrDp9jGUoLs2gNzLRlVkw=) 2: oNy7iyROhmf7k1QXS1fyOykVhms.roa (hash: 7ICki/NejOefHux3d5CNCzujTTJwY1H52uKM23OBmV4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/2995cd-465f-4b40-a455-16d3cd352f2e/1/m9o0FBNxKfo4psYcSWq4thQJzgI.crl rsync://rpki.ripe.net/repository/DEFAULT/52/2995cd-465f-4b40-a455-16d3cd352f2e/1/m9o0FBNxKfo4psYcSWq4thQJzgI.mft rsync://rpki.ripe.net/repository/DEFAULT/m9o0FBNxKfo4psYcSWq4thQJzgI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fc:89:d1:8f:1a:3e:38:34:91:0f:42:7c:bc:8b:23:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9bda3414137129fa38a6c61c496ab8b61409ce02 Validity Not Before: Jan 26 23:00:48 2026 GMT Not After : Jan 27 23:00:48 2026 GMT Subject: CN=09400f92a3bd772f8c4e2c6552e48595ca45bb98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:f6:e0:a3:07:eb:ab:a4:e7:25:11:92:f9:f4: ca:63:f2:0b:19:a3:99:72:16:13:af:fc:2e:04:f6: f8:68:1e:e9:65:21:cc:45:c9:19:9a:ce:a8:f2:ba: df:74:5c:ed:de:8e:96:4a:72:66:c8:cc:bd:7c:c0: a4:3e:ef:b2:4c:d3:6f:cc:24:5a:6e:2d:fc:55:ea: 74:50:ad:51:c9:bf:ed:6e:e2:7e:a5:6d:0b:c4:74: f6:26:4b:f9:6a:65:dd:d6:15:f9:de:40:05:d4:40: de:09:fc:f4:75:da:06:bd:c9:e0:9a:18:53:01:39: 5f:3a:5a:e2:d6:30:a5:db:47:c4:78:42:e5:91:f0: b5:77:b7:d7:49:ea:e7:6a:5d:af:00:8e:42:50:41: 78:8c:a9:9b:7e:50:3e:62:16:1d:e5:5a:b3:8d:98: b9:e9:35:cd:dd:34:d8:09:61:a3:5b:ad:fc:2e:26: 36:d6:4a:dc:05:55:ad:55:31:50:80:92:f3:c2:c0: fc:75:79:7f:c3:25:6f:09:fa:f2:37:f2:0d:77:c9: a3:b8:1d:db:ff:de:29:2b:7a:32:e9:17:bc:59:13: 09:ad:2a:e1:5b:ba:0b:81:81:fb:a9:4a:cf:5a:97: 70:83:92:20:67:90:da:d0:09:54:ad:9d:e0:27:0a: 9a:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:40:0F:92:A3:BD:77:2F:8C:4E:2C:65:52:E4:85:95:CA:45:BB:98 X509v3 Authority Key Identifier: keyid:9B:DA:34:14:13:71:29:FA:38:A6:C6:1C:49:6A:B8:B6:14:09:CE:02 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9o0FBNxKfo4psYcSWq4thQJzgI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/2995cd-465f-4b40-a455-16d3cd352f2e/1/m9o0FBNxKfo4psYcSWq4thQJzgI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/52/2995cd-465f-4b40-a455-16d3cd352f2e/1/m9o0FBNxKfo4psYcSWq4thQJzgI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0a:2b:0b:8c:c8:6f:dd:bd:f8:80:7a:2d:cf:fe:69:9c:0d:81: 5f:ec:05:32:97:23:f7:66:0d:d2:37:19:b5:3f:e2:ae:fa:da: 35:8b:c3:cb:ef:64:39:db:f0:c2:07:38:84:7b:2b:ce:e6:34: 59:2a:3e:6f:03:aa:ee:96:11:ec:e8:05:77:42:52:f2:85:50: 6c:f4:d0:11:68:1a:47:0b:ad:6f:07:01:61:89:f9:02:4b:4c: 5d:ba:e0:dd:c8:0c:22:a7:23:da:07:0b:73:94:de:6d:f8:c7: c0:d0:44:15:0a:c1:d0:75:f5:1f:b0:1e:22:f7:fd:67:37:78: c7:07:4d:38:75:92:ae:f8:60:e1:c2:32:e7:9b:03:00:95:16: ca:45:b3:ea:9b:b3:66:f9:9f:4d:7b:d4:1f:7b:a1:9d:93:47: 8b:f7:85:c0:d5:44:1d:49:59:e8:a5:78:1a:88:b9:04:1f:73: a0:91:51:55:b7:b7:b9:0d:2c:79:6d:ad:88:9f:2e:fd:52:67: 4d:32:0b:b7:92:2a:31:41:a1:d7:0d:b7:4b:49:00:54:9b:37: 22:83:82:ea:71:ec:20:2a:c6:75:ed:88:15:1c:ad:a4:c3:da: 67:0e:6d:ef:a9:9e:44:b1:3b:07:c6:97:f3:5b:77:62:27:6b: 46:ab:e9:d9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv8idGPGj44NJEPQny8iyN6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDliZGEzNDE0MTM3MTI5ZmEzOGE2YzYxYzQ5NmFiOGI2MTQw OWNlMDIwHhcNMjYwMTI2MjMwMDQ4WhcNMjYwMTI3MjMwMDQ4WjAzMTEwLwYDVQQD EygwOTQwMGY5MmEzYmQ3NzJmOGM0ZTJjNjU1MmU0ODU5NWNhNDViYjk4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2Pbgowfrq6TnJRGS+fTKY/ILGaOZ chYTr/wuBPb4aB7pZSHMRckZms6o8rrfdFzt3o6WSnJmyMy9fMCkPu+yTNNvzCRa bi38Vep0UK1Ryb/tbuJ+pW0LxHT2Jkv5amXd1hX53kAF1EDeCfz0ddoGvcngmhhT ATlfOlri1jCl20fEeELlkfC1d7fXSernal2vAI5CUEF4jKmbflA+YhYd5VqzjZi5 6TXN3TTYCWGjW638LiY21krcBVWtVTFQgJLzwsD8dXl/wyVvCfryN/INd8mjuB3b /94pK3oy6Re8WRMJrSrhW7oLgYH7qUrPWpdwg5IgZ5Da0AlUrZ3gJwqapQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAlAD5KjvXcvjE4sZVLkhZXKRbuYMB8GA1UdIwQY MBaAFJvaNBQTcSn6OKbGHElquLYUCc4CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbTlvMEZCTnhLZm80cHNZY1NXcTR0aFFKemdJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi8yOTk1Y2QtNDY1Zi00YjQwLWE0NTUt MTZkM2NkMzUyZjJlLzEvbTlvMEZCTnhLZm80cHNZY1NXcTR0aFFKemdJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Mi8yOTk1Y2QtNDY1Zi00YjQwLWE0NTUtMTZkM2NkMzUyZjJl LzEvbTlvMEZCTnhLZm80cHNZY1NXcTR0aFFKemdJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACisLjMhv 3b34gHotz/5pnA2BX+wFMpcj92YN0jcZtT/irvraNYvDy+9kOdvwwgc4hHsrzuY0 WSo+bwOq7pYR7OgFd0JS8oVQbPTQEWgaRwutbwcBYYn5AktMXbrg3cgMIqcj2gcL c5TebfjHwNBEFQrB0HX1H7AeIvf9Zzd4xwdNOHWSrvhg4cIy55sDAJUWykWz6puz ZvmfTXvUH3uhnZNHi/eFwNVEHUlZ6KV4Goi5BB9zoJFRVbe3uQ0seW2tiJ8u/VJn TTILt5IqMUGh1w23S0kAVJs3IoOC6nHsICrGde2IFRytpMPaZw5t76meRLE7B8aX 81t3YidrRqvp2Q== -----END CERTIFICATE-----Generated at Tue Jan 27 01:19:31 2026 by rpki-client