This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/ace9bd-f33d-486e-b394-f0d075a437f1/1/fWbRnlOI8SwdKKFsMo2Gw2TpzHk.mft File: fWbRnlOI8SwdKKFsMo2Gw2TpzHk.mft (raw, json) Hash identifier: GyvAer9sqUaPWSaVD7/ab/lzcu8Yjv72HHnARXdLw74= Subject key identifier: 3F:D1:6A:82:8A:3D:A0:66:29:06:FA:F6:3B:95:2C:E7:E4:78:C6:09 Authority key identifier: 7D:66:D1:9E:53:88:F1:2C:1D:28:A1:6C:32:8D:86:C3:64:E9:CC:79 Certificate issuer: /CN=7d66d19e5388f12c1d28a16c328d86c364e9cc79 Certificate serial: 019BEC04BC22649044B132345B14C2B2394C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fWbRnlOI8SwdKKFsMo2Gw2TpzHk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/ace9bd-f33d-486e-b394-f0d075a437f1/1/fWbRnlOI8SwdKKFsMo2Gw2TpzHk.mft Manifest number: 10BC Signing time: Fri 23 Jan 2026 18:01:31 +0000 Manifest this update: Fri 23 Jan 2026 18:01:31 +0000 Manifest next update: Sat 24 Jan 2026 18:01:31 +0000 Files and hashes: 1: MSIj_pvmmWV611TPzznzhVyMajg.roa (hash: lcZd6Vsmhq0WpZpZ2lk/ey8tKSzoVTxP11Cj84fNRNQ=) 2: fWbRnlOI8SwdKKFsMo2Gw2TpzHk.crl (hash: OnP69amKtGK0FtmrLahuI6A6Y71XApbwC3K6vPI4NYc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/ace9bd-f33d-486e-b394-f0d075a437f1/1/fWbRnlOI8SwdKKFsMo2Gw2TpzHk.crl rsync://rpki.ripe.net/repository/DEFAULT/58/ace9bd-f33d-486e-b394-f0d075a437f1/1/fWbRnlOI8SwdKKFsMo2Gw2TpzHk.mft rsync://rpki.ripe.net/repository/DEFAULT/fWbRnlOI8SwdKKFsMo2Gw2TpzHk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 24 Jan 2026 18:01:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:ec:04:bc:22:64:90:44:b1:32:34:5b:14:c2:b2:39:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7d66d19e5388f12c1d28a16c328d86c364e9cc79 Validity Not Before: Jan 23 18:01:31 2026 GMT Not After : Jan 24 18:01:31 2026 GMT Subject: CN=3fd16a828a3da0662906faf63b952ce7e478c609 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:5e:db:77:39:0b:e5:0d:95:61:54:a7:4c:f6: 6d:e8:a6:08:c4:0a:51:b7:37:cc:c2:49:db:3d:97: d6:a5:d4:a4:4e:72:84:d2:7e:0f:f2:7e:f8:39:f9: 20:e7:14:68:22:cd:31:0f:7c:cb:26:37:97:80:21: 31:9d:92:b0:c4:0b:88:01:40:e0:0b:74:c2:3b:92: 40:61:f7:ee:98:af:d4:31:cc:a9:e8:58:e5:ae:5d: 8f:9a:21:b3:b6:12:bb:02:fc:89:f0:74:ec:eb:34: 8c:8a:11:03:0e:26:58:19:7a:f2:5a:d6:6f:53:de: 35:50:3f:df:cc:0b:fc:00:ea:50:eb:b4:2a:08:72: 36:fa:11:a6:1b:f1:f0:4b:c1:58:f9:73:02:e7:27: 4a:8a:f0:e3:62:b8:46:cd:cb:9c:64:9f:fe:da:67: 57:88:d5:41:c1:4a:93:eb:c6:ee:a5:7c:48:f0:be: 51:8d:5a:d0:31:f1:f2:43:57:bc:71:a7:cd:ed:c2: de:ad:e0:82:c7:fa:70:c6:2e:c6:ec:89:a8:09:08: b3:66:87:e6:4f:d9:ec:bb:94:1e:1b:d3:de:14:1d: 44:df:31:87:37:83:a4:59:4c:b4:82:04:14:83:20: 5f:97:e5:6a:b2:8b:32:de:e2:3c:f0:ab:46:bd:9f: cc:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:D1:6A:82:8A:3D:A0:66:29:06:FA:F6:3B:95:2C:E7:E4:78:C6:09 X509v3 Authority Key Identifier: keyid:7D:66:D1:9E:53:88:F1:2C:1D:28:A1:6C:32:8D:86:C3:64:E9:CC:79 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fWbRnlOI8SwdKKFsMo2Gw2TpzHk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/ace9bd-f33d-486e-b394-f0d075a437f1/1/fWbRnlOI8SwdKKFsMo2Gw2TpzHk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/58/ace9bd-f33d-486e-b394-f0d075a437f1/1/fWbRnlOI8SwdKKFsMo2Gw2TpzHk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a6:76:a9:e8:e0:db:e1:3c:be:b0:56:8d:f2:74:9d:09:85:5b: 05:35:b1:86:1c:cf:39:b8:0b:74:7e:cd:51:c7:71:18:75:8c: d8:9e:ba:58:80:08:ab:9a:b1:8c:87:76:b7:fd:4a:20:17:c1: 4a:5c:1f:5f:c4:81:6d:5b:3e:69:81:2f:c7:2a:e0:cf:67:79: e7:f8:51:3d:d2:80:83:03:d2:c4:fb:d0:c1:f9:72:fb:0f:7d: c7:15:57:44:8e:ea:4a:64:6d:0e:56:7b:4f:e6:45:5d:f7:58: 51:ca:e6:d3:29:f9:0c:c9:c9:9a:24:2b:36:57:5b:03:4c:cb: df:64:ba:5f:f6:a9:d4:f4:b5:6a:17:8e:8e:53:87:53:34:e5: bd:dd:ae:3c:f0:98:db:85:c4:97:3f:91:bd:bf:32:c1:c7:b1: 46:6e:d3:4f:e1:5f:98:0a:04:7a:b6:f3:11:06:7b:25:a9:24: d7:c7:7f:4a:16:29:e5:f4:96:1f:27:95:32:ad:aa:f7:b2:92: 69:f2:9c:58:d2:41:48:f2:01:e0:9c:5c:d5:49:46:01:b8:f8: 2a:73:c5:86:0a:02:33:f6:e1:2e:3d:10:f3:e6:c9:c8:12:f0: ad:16:1f:e2:e9:9d:52:43:62:42:c8:59:e5:5d:4b:11:21:c9: 21:69:f1:9c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZvsBLwiZJBEsTI0WxTCsjlMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdkNjZkMTllNTM4OGYxMmMxZDI4YTE2YzMyOGQ4NmMzNjRl OWNjNzkwHhcNMjYwMTIzMTgwMTMxWhcNMjYwMTI0MTgwMTMxWjAzMTEwLwYDVQQD EygzZmQxNmE4MjhhM2RhMDY2MjkwNmZhZjYzYjk1MmNlN2U0NzhjNjA5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4V7bdzkL5Q2VYVSnTPZt6KYIxApR tzfMwknbPZfWpdSkTnKE0n4P8n74Ofkg5xRoIs0xD3zLJjeXgCExnZKwxAuIAUDg C3TCO5JAYffumK/UMcyp6Fjlrl2PmiGzthK7AvyJ8HTs6zSMihEDDiZYGXryWtZv U941UD/fzAv8AOpQ67QqCHI2+hGmG/HwS8FY+XMC5ydKivDjYrhGzcucZJ/+2mdX iNVBwUqT68bupXxI8L5RjVrQMfHyQ1e8cafN7cLereCCx/pwxi7G7ImoCQizZofm T9nsu5QeG9PeFB1E3zGHN4OkWUy0ggQUgyBfl+Vqsosy3uI88KtGvZ/MNQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFD/RaoKKPaBmKQb69juVLOfkeMYJMB8GA1UdIwQY MBaAFH1m0Z5TiPEsHSihbDKNhsNk6cx5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZldiUm5sT0k4U3dkS0tGc01vMkd3MlRwekhrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC9hY2U5YmQtZjMzZC00ODZlLWIzOTQt ZjBkMDc1YTQzN2YxLzEvZldiUm5sT0k4U3dkS0tGc01vMkd3MlRwekhrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OC9hY2U5YmQtZjMzZC00ODZlLWIzOTQtZjBkMDc1YTQzN2Yx LzEvZldiUm5sT0k4U3dkS0tGc01vMkd3MlRwekhrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApnap6ODb 4Ty+sFaN8nSdCYVbBTWxhhzPObgLdH7NUcdxGHWM2J66WIAIq5qxjId2t/1KIBfB SlwfX8SBbVs+aYEvxyrgz2d55/hRPdKAgwPSxPvQwfly+w99xxVXRI7qSmRtDlZ7 T+ZFXfdYUcrm0yn5DMnJmiQrNldbA0zL32S6X/ap1PS1aheOjlOHUzTlvd2uPPCY 24XElz+Rvb8ywcexRm7TT+FfmAoEerbzEQZ7Jakk18d/ShYp5fSWHyeVMq2q97KS afKcWNJBSPIB4Jxc1UlGAbj4KnPFhgoCM/bhLj0Q8+bJyBLwrRYf4umdUkNiQshZ 5V1LESHJIWnxnA== -----END CERTIFICATE-----Generated at Sat Jan 24 02:23:56 2026 by rpki-client