This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/1d2788-da40-431a-97d0-fbd46d9ca372/1/Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.mft File: Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.mft (raw, json) Hash identifier: S22ksiALyA0+3tPUSmU/aCc9OAWuLN61IIPd+wXthyY= Subject key identifier: 49:D7:48:E0:25:D6:36:4B:7A:CD:15:D4:57:ED:D9:E1:48:6C:A8:15 Authority key identifier: 4D:BE:31:B6:BE:DC:51:F2:AA:2E:C0:A6:45:3F:2E:43:5E:80:8F:B5 Certificate issuer: /CN=4dbe31b6bedc51f2aa2ec0a6453f2e435e808fb5 Certificate serial: 019BFC89CC40DA845A006D89A1D2C6277364 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/1d2788-da40-431a-97d0-fbd46d9ca372/1/Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.mft Manifest number: 0ED2 Signing time: Mon 26 Jan 2026 23:00:47 +0000 Manifest this update: Mon 26 Jan 2026 23:00:47 +0000 Manifest next update: Tue 27 Jan 2026 23:00:47 +0000 Files and hashes: 1: Mw_jlWOX47w8ZEpuvWB3HZ4VYvQ.roa (hash: sfhBIh2mCq2mgYz96ptYyTEOfSgYQ6EGFDmjhxXGLyI=) 2: Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.crl (hash: 8Tkxx0xVEzgr7bjj+KZWKiiv2keZVxGeY1F4A97jvIg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/1d2788-da40-431a-97d0-fbd46d9ca372/1/Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.crl rsync://rpki.ripe.net/repository/DEFAULT/5a/1d2788-da40-431a-97d0-fbd46d9ca372/1/Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.mft rsync://rpki.ripe.net/repository/DEFAULT/Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 20:39:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fc:89:cc:40:da:84:5a:00:6d:89:a1:d2:c6:27:73:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4dbe31b6bedc51f2aa2ec0a6453f2e435e808fb5 Validity Not Before: Jan 26 23:00:47 2026 GMT Not After : Jan 27 23:00:47 2026 GMT Subject: CN=49d748e025d6364b7acd15d457edd9e1486ca815 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:d1:74:a5:20:25:19:83:2c:5c:da:f6:99:92: e8:9b:af:3f:90:9d:c5:ac:f3:75:ac:56:1b:47:79: 4f:77:96:c8:f9:a4:84:43:d4:67:3d:04:a7:db:10: 78:d1:64:a3:a4:9e:21:ba:58:b1:d6:82:79:7a:aa: 5d:6e:ab:33:b8:59:c7:27:f0:0f:7c:cf:ea:27:ec: 77:f1:d5:10:2c:9a:2a:f1:5c:c9:29:f6:34:a2:b2: 3c:f4:c3:68:7b:45:51:dc:dc:01:cc:44:e7:f3:b3: c6:fe:ce:e3:2c:7c:e5:1f:35:a6:4a:5f:f3:68:f8: 9e:98:e7:09:90:20:6b:24:2d:5d:d1:4d:56:fc:7e: e2:40:c1:e3:ec:83:44:e7:d2:54:fa:ad:e3:f5:92: 3d:7f:00:a2:de:ae:04:98:e4:2f:6e:71:66:83:1f: 3c:aa:14:84:9c:22:c1:b6:5d:fe:04:5a:04:df:a5: b1:71:da:cf:9f:9f:8a:a9:e2:2b:b5:d6:d5:f6:f7: 33:16:5e:c0:74:01:1a:0f:be:ea:44:19:92:ae:8f: 5c:dd:6b:ac:06:78:06:fd:dd:22:82:36:5f:84:7f: a1:05:2d:09:b2:4b:bc:cc:11:37:3c:bf:cc:1f:4f: 92:86:1c:ce:3d:ef:86:aa:ba:dc:ae:49:6a:00:fe: ae:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:D7:48:E0:25:D6:36:4B:7A:CD:15:D4:57:ED:D9:E1:48:6C:A8:15 X509v3 Authority Key Identifier: keyid:4D:BE:31:B6:BE:DC:51:F2:AA:2E:C0:A6:45:3F:2E:43:5E:80:8F:B5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/1d2788-da40-431a-97d0-fbd46d9ca372/1/Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/1d2788-da40-431a-97d0-fbd46d9ca372/1/Tb4xtr7cUfKqLsCmRT8uQ16Aj7U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0e:f6:e5:90:b6:5a:15:39:f1:aa:b9:72:e1:6d:1c:8c:87:fd: cc:67:00:e8:62:f1:c4:8b:4b:dd:d4:46:f6:5e:ae:43:1a:90: 82:f4:16:7d:8f:cf:6c:56:a3:8e:04:ae:99:c3:2e:0a:00:55: cd:03:d4:ab:b6:a7:f5:36:a9:d2:d3:a8:89:48:3f:0e:9e:37: e5:b8:fa:87:b4:f9:1c:21:bb:45:d7:b1:53:b4:23:ed:0b:07: 6b:72:b8:2c:f7:67:6a:5b:12:69:51:ce:4d:65:92:28:ed:20: 4c:be:16:38:b2:b1:14:11:f2:70:75:bb:15:0b:a2:bc:a8:d5: 4c:af:d2:12:54:dd:4c:fd:2d:3c:fd:7e:66:66:a1:83:80:0c: cb:b2:36:14:35:bd:7e:b4:b3:e0:78:39:09:42:68:46:0e:17: ea:5f:77:dc:2a:52:99:34:64:a8:ef:82:8c:3a:29:ca:39:59: 7a:b9:3c:58:a3:8a:d5:43:f0:9a:9b:3a:90:d7:ab:c8:cd:99: be:bb:bf:04:be:10:f8:23:df:09:c8:b1:41:b6:56:47:c4:e1: 64:c5:09:a5:11:b9:be:b1:10:03:d5:ca:33:22:23:f3:eb:48: 21:71:70:4d:df:9f:ff:40:41:cf:57:db:3c:99:a8:b9:d2:30: 00:42:eb:1d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv8icxA2oRaAG2JodLGJ3NkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRkYmUzMWI2YmVkYzUxZjJhYTJlYzBhNjQ1M2YyZTQzNWU4 MDhmYjUwHhcNMjYwMTI2MjMwMDQ3WhcNMjYwMTI3MjMwMDQ3WjAzMTEwLwYDVQQD Eyg0OWQ3NDhlMDI1ZDYzNjRiN2FjZDE1ZDQ1N2VkZDllMTQ4NmNhODE1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvdF0pSAlGYMsXNr2mZLom68/kJ3F rPN1rFYbR3lPd5bI+aSEQ9RnPQSn2xB40WSjpJ4hulix1oJ5eqpdbqszuFnHJ/AP fM/qJ+x38dUQLJoq8VzJKfY0orI89MNoe0VR3NwBzETn87PG/s7jLHzlHzWmSl/z aPiemOcJkCBrJC1d0U1W/H7iQMHj7INE59JU+q3j9ZI9fwCi3q4EmOQvbnFmgx88 qhSEnCLBtl3+BFoE36WxcdrPn5+KqeIrtdbV9vczFl7AdAEaD77qRBmSro9c3Wus BngG/d0igjZfhH+hBS0Jsku8zBE3PL/MH0+ShhzOPe+GqrrcrklqAP6uEwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEnXSOAl1jZLes0V1Fft2eFIbKgVMB8GA1UdIwQY MBaAFE2+Mba+3FHyqi7ApkU/LkNegI+1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVGI0eHRyN2NVZktxTHNDbVJUOHVRMTZBajdVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS8xZDI3ODgtZGE0MC00MzFhLTk3ZDAt ZmJkNDZkOWNhMzcyLzEvVGI0eHRyN2NVZktxTHNDbVJUOHVRMTZBajdVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81YS8xZDI3ODgtZGE0MC00MzFhLTk3ZDAtZmJkNDZkOWNhMzcy LzEvVGI0eHRyN2NVZktxTHNDbVJUOHVRMTZBajdVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADvblkLZa FTnxqrly4W0cjIf9zGcA6GLxxItL3dRG9l6uQxqQgvQWfY/PbFajjgSumcMuCgBV zQPUq7an9Tap0tOoiUg/Dp435bj6h7T5HCG7RdexU7Qj7QsHa3K4LPdnalsSaVHO TWWSKO0gTL4WOLKxFBHycHW7FQuivKjVTK/SElTdTP0tPP1+Zmahg4AMy7I2FDW9 frSz4Hg5CUJoRg4X6l933CpSmTRkqO+CjDopyjlZerk8WKOK1UPwmps6kNeryM2Z vru/BL4Q+CPfCcixQbZWR8ThZMUJpRG5vrEQA9XKMyIj8+tIIXFwTd+f/0BBz1fb PJmoudIwAELrHQ== -----END CERTIFICATE-----Generated at Tue Jan 27 03:55:51 2026 by rpki-client