This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/59d4e9-662c-435a-b351-4aa539a30d21/1/0fbkNwERz7-WhASFQie4CShRRQ0.mft File: 0fbkNwERz7-WhASFQie4CShRRQ0.mft (raw, json) Hash identifier: Xp5HZAP1CdZNGgC2mTf89H5OzGqYPsn7cCqpIxPVRmw= Subject key identifier: 59:63:18:75:21:D1:29:A1:E1:F7:08:C3:FB:0D:8F:0E:63:EC:2E:51 Authority key identifier: D1:F6:E4:37:01:11:CF:BF:96:84:04:85:42:27:B8:09:28:51:45:0D Certificate issuer: /CN=d1f6e4370111cfbf968404854227b8092851450d Certificate serial: 019BFD654DAC99FA7DACCE262DB7F0B12336 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0fbkNwERz7-WhASFQie4CShRRQ0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/59d4e9-662c-435a-b351-4aa539a30d21/1/0fbkNwERz7-WhASFQie4CShRRQ0.mft Manifest number: 104E Signing time: Tue 27 Jan 2026 03:00:33 +0000 Manifest this update: Tue 27 Jan 2026 03:00:33 +0000 Manifest next update: Wed 28 Jan 2026 03:00:33 +0000 Files and hashes: 1: 0fbkNwERz7-WhASFQie4CShRRQ0.crl (hash: anZTOxcDgfDLcJ8kI0CTzftRS6HyofTUM1118ZoWzFA=) 2: b6CRhvSRccrFASwHzAqv1fJ2-PM.roa (hash: /4u/ccQkL47poEfRTb46UuOnLyPJ5g8IGlvoOu1fxd4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/59d4e9-662c-435a-b351-4aa539a30d21/1/0fbkNwERz7-WhASFQie4CShRRQ0.crl rsync://rpki.ripe.net/repository/DEFAULT/57/59d4e9-662c-435a-b351-4aa539a30d21/1/0fbkNwERz7-WhASFQie4CShRRQ0.mft rsync://rpki.ripe.net/repository/DEFAULT/0fbkNwERz7-WhASFQie4CShRRQ0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 20:39:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fd:65:4d:ac:99:fa:7d:ac:ce:26:2d:b7:f0:b1:23:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d1f6e4370111cfbf968404854227b8092851450d Validity Not Before: Jan 27 03:00:33 2026 GMT Not After : Jan 28 03:00:33 2026 GMT Subject: CN=5963187521d129a1e1f708c3fb0d8f0e63ec2e51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:50:e1:10:bf:e9:f3:3a:3b:0c:ab:08:fc:c9: 0a:0f:51:16:fb:cb:b4:cd:54:f3:04:a1:06:86:fd: f3:94:2a:c3:6e:f5:87:77:19:29:16:56:f5:ca:27: ba:f7:fc:cf:4d:3b:40:4b:83:d0:bb:32:e9:f6:7e: 6d:87:e9:fb:7b:97:27:34:40:76:e5:a2:ce:c3:d2: 81:c7:47:42:94:ca:8a:9d:b0:08:55:af:4e:37:58: c2:fa:6f:d6:69:32:1a:f6:0e:b1:c9:50:c6:5f:ed: 62:75:d6:ea:2d:d6:0f:77:a1:34:9f:21:f9:2c:8f: a9:af:63:aa:13:9c:1f:36:25:45:a1:a0:be:06:2a: 60:fd:35:77:1d:c0:72:c4:c9:df:ed:63:a0:9d:36: 20:f1:4c:6e:d1:eb:3b:0b:a2:7d:fc:78:99:93:a3: e3:fe:66:30:9c:1a:3b:f0:89:ba:91:bc:6b:52:57: aa:2f:a0:2e:08:45:14:88:ab:26:6f:57:61:38:86: 1c:1a:0f:9d:e0:a4:2f:49:c4:c7:9d:20:7b:ac:72: 74:be:04:14:97:b0:cc:90:c9:f5:b8:82:1a:fd:ef: c3:5b:94:ed:b7:08:c3:8f:43:d6:44:87:27:be:86: 00:0e:89:be:0a:fa:4b:6f:2a:98:fa:69:71:77:0e: 4a:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:63:18:75:21:D1:29:A1:E1:F7:08:C3:FB:0D:8F:0E:63:EC:2E:51 X509v3 Authority Key Identifier: keyid:D1:F6:E4:37:01:11:CF:BF:96:84:04:85:42:27:B8:09:28:51:45:0D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0fbkNwERz7-WhASFQie4CShRRQ0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/59d4e9-662c-435a-b351-4aa539a30d21/1/0fbkNwERz7-WhASFQie4CShRRQ0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/57/59d4e9-662c-435a-b351-4aa539a30d21/1/0fbkNwERz7-WhASFQie4CShRRQ0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8e:23:f0:c4:15:a2:69:6c:46:f9:92:f5:5f:ba:e7:0a:37:6d: 83:40:6f:a8:32:12:e7:7e:b8:06:73:5a:a1:e4:8a:cc:17:77: 64:ee:ca:ad:61:01:24:a4:25:1c:75:3f:4c:03:ec:a6:1b:cf: a8:f8:1e:3e:21:0b:29:54:36:d9:dc:e8:79:87:58:69:e8:6d: 4b:f8:c2:88:46:e1:bb:ff:05:5d:ed:ab:e1:be:ca:02:d5:76: 5b:67:59:ed:94:2c:4f:fa:d7:bb:87:83:9f:ec:3f:07:87:a3: 18:29:1a:a9:33:4e:e5:78:1c:78:f0:53:67:f0:13:4d:6e:15: 04:a8:0f:03:9c:cc:86:c4:c2:91:06:35:88:80:59:e1:87:96: 65:74:5a:22:4c:fd:a3:3a:c7:6f:c5:a5:e6:28:aa:a3:3c:00: 72:d4:a6:5c:f8:3e:0e:dc:ce:55:89:88:4b:32:d7:3c:5e:be: ff:25:5e:86:3e:5d:f8:b0:d0:47:95:1f:69:8e:29:8e:8a:cc: 49:2d:fd:d0:c6:42:9b:67:8a:97:28:eb:01:26:f4:ff:c3:c3: 2a:ca:12:e2:47:e0:18:13:c3:4c:38:da:74:ed:7d:ff:a0:44: de:02:0e:10:0d:90:27:b7:9e:f9:29:1d:aa:82:5a:89:ea:b5: b0:f9:47:73 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv9ZU2smfp9rM4mLbfwsSM2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQxZjZlNDM3MDExMWNmYmY5Njg0MDQ4NTQyMjdiODA5Mjg1 MTQ1MGQwHhcNMjYwMTI3MDMwMDMzWhcNMjYwMTI4MDMwMDMzWjAzMTEwLwYDVQQD Eyg1OTYzMTg3NTIxZDEyOWExZTFmNzA4YzNmYjBkOGYwZTYzZWMyZTUxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsVDhEL/p8zo7DKsI/MkKD1EW+8u0 zVTzBKEGhv3zlCrDbvWHdxkpFlb1yie69/zPTTtAS4PQuzLp9n5th+n7e5cnNEB2 5aLOw9KBx0dClMqKnbAIVa9ON1jC+m/WaTIa9g6xyVDGX+1iddbqLdYPd6E0nyH5 LI+pr2OqE5wfNiVFoaC+Bipg/TV3HcByxMnf7WOgnTYg8Uxu0es7C6J9/HiZk6Pj /mYwnBo78Im6kbxrUleqL6AuCEUUiKsmb1dhOIYcGg+d4KQvScTHnSB7rHJ0vgQU l7DMkMn1uIIa/e/DW5TttwjDj0PWRIcnvoYADom+CvpLbyqY+mlxdw5K3QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFljGHUh0Smh4fcIw/sNjw5j7C5RMB8GA1UdIwQY MBaAFNH25DcBEc+/loQEhUInuAkoUUUNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMGZia053RVJ6Ny1XaEFTRlFpZTRDU2hSUlEwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ny81OWQ0ZTktNjYyYy00MzVhLWIzNTEt NGFhNTM5YTMwZDIxLzEvMGZia053RVJ6Ny1XaEFTRlFpZTRDU2hSUlEwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Ny81OWQ0ZTktNjYyYy00MzVhLWIzNTEtNGFhNTM5YTMwZDIx LzEvMGZia053RVJ6Ny1XaEFTRlFpZTRDU2hSUlEwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjiPwxBWi aWxG+ZL1X7rnCjdtg0BvqDIS5364BnNaoeSKzBd3ZO7KrWEBJKQlHHU/TAPsphvP qPgePiELKVQ22dzoeYdYaehtS/jCiEbhu/8FXe2r4b7KAtV2W2dZ7ZQsT/rXu4eD n+w/B4ejGCkaqTNO5XgcePBTZ/ATTW4VBKgPA5zMhsTCkQY1iIBZ4YeWZXRaIkz9 ozrHb8Wl5iiqozwActSmXPg+DtzOVYmISzLXPF6+/yVehj5d+LDQR5UfaY4pjorM SS390MZCm2eKlyjrASb0/8PDKsoS4kfgGBPDTDjadO19/6BE3gIOEA2QJ7ee+Skd qoJaieq1sPlHcw== -----END CERTIFICATE-----Generated at Tue Jan 27 06:06:53 2026 by rpki-client