This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7eb7c3-e34a-4fbc-9272-4c1c57a81ffd/1/uFnbfywuOzq9i_QV8M4f_zNDKew.mft File: uFnbfywuOzq9i_QV8M4f_zNDKew.mft (raw, json) Hash identifier: D/032HzMSVgSQ0ph5zBhxleQINkTj77q3EJOOsE1yL0= Subject key identifier: E8:C0:5B:A2:F5:AA:5D:F8:E6:BA:06:43:FD:89:DA:75:66:F7:C9:F1 Authority key identifier: B8:59:DB:7F:2C:2E:3B:3A:BD:8B:F4:15:F0:CE:1F:FF:33:43:29:EC Certificate issuer: /CN=b859db7f2c2e3b3abd8bf415f0ce1fff334329ec Certificate serial: 019BFA2D829F2707D22B0F5BC7105340A7D7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uFnbfywuOzq9i_QV8M4f_zNDKew.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7eb7c3-e34a-4fbc-9272-4c1c57a81ffd/1/uFnbfywuOzq9i_QV8M4f_zNDKew.mft Manifest number: 0F46 Signing time: Mon 26 Jan 2026 12:00:44 +0000 Manifest this update: Mon 26 Jan 2026 12:00:44 +0000 Manifest next update: Tue 27 Jan 2026 12:00:44 +0000 Files and hashes: 1: lWdEpowAzHConUoYGbrc4-nSOV4.roa (hash: 9/NPZ8xgxrX7894j4qUQTxzBQ0X/YCJM81igBGzxaPE=) 2: uFnbfywuOzq9i_QV8M4f_zNDKew.crl (hash: eKl+R71ezPABsbc4btDSF7JNqzb4JaMSUNkw3CSH9/A=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/7eb7c3-e34a-4fbc-9272-4c1c57a81ffd/1/uFnbfywuOzq9i_QV8M4f_zNDKew.crl rsync://rpki.ripe.net/repository/DEFAULT/5b/7eb7c3-e34a-4fbc-9272-4c1c57a81ffd/1/uFnbfywuOzq9i_QV8M4f_zNDKew.mft rsync://rpki.ripe.net/repository/DEFAULT/uFnbfywuOzq9i_QV8M4f_zNDKew.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 12:00:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fa:2d:82:9f:27:07:d2:2b:0f:5b:c7:10:53:40:a7:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b859db7f2c2e3b3abd8bf415f0ce1fff334329ec Validity Not Before: Jan 26 12:00:44 2026 GMT Not After : Jan 27 12:00:44 2026 GMT Subject: CN=e8c05ba2f5aa5df8e6ba0643fd89da7566f7c9f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:86:a1:bc:2e:4f:23:df:8a:9f:d0:26:13:d6: 25:02:3c:38:f0:16:2a:b7:d1:7f:16:ca:9a:65:f2: 35:8d:6d:8f:e6:47:ee:38:0f:13:e0:3e:95:fa:09: 1e:b0:35:69:46:bd:d3:27:24:02:a5:51:60:9e:7f: 5d:5b:3d:a8:1f:44:e6:05:32:8a:e6:97:56:48:20: 5d:15:27:1b:01:5e:1a:a0:35:32:4e:d7:a7:8a:49: 86:e5:1b:28:1e:9d:d5:ea:b7:a5:3d:86:59:24:e1: 9a:13:47:ff:43:f0:23:92:97:38:ab:7b:1b:e7:70: 0b:97:89:2e:bf:d0:65:e1:eb:41:f9:2f:09:af:5b: bd:48:fe:d2:1b:07:90:e1:01:2f:81:f0:df:a5:1d: 17:c3:b4:55:c0:d0:d0:1e:d5:1f:ec:97:3d:18:9e: 16:3c:34:e6:1c:cf:3e:e4:a3:42:30:e5:b1:e8:24: 05:39:7f:df:96:f9:87:5d:6e:95:be:19:d3:6a:c7: ba:03:6b:a6:0b:04:ef:9f:39:44:4d:e0:ba:4f:ce: 86:84:08:3e:8a:e7:46:39:c2:34:79:c9:d7:1d:b9: d6:2f:90:df:cf:58:87:20:ce:5c:05:6b:b6:25:40: 7b:62:2a:de:1c:53:1c:63:e2:08:1f:78:29:2e:49: fc:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:C0:5B:A2:F5:AA:5D:F8:E6:BA:06:43:FD:89:DA:75:66:F7:C9:F1 X509v3 Authority Key Identifier: keyid:B8:59:DB:7F:2C:2E:3B:3A:BD:8B:F4:15:F0:CE:1F:FF:33:43:29:EC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uFnbfywuOzq9i_QV8M4f_zNDKew.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7eb7c3-e34a-4fbc-9272-4c1c57a81ffd/1/uFnbfywuOzq9i_QV8M4f_zNDKew.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7eb7c3-e34a-4fbc-9272-4c1c57a81ffd/1/uFnbfywuOzq9i_QV8M4f_zNDKew.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1a:d9:e1:06:c0:ba:73:c7:5c:6b:c7:c3:2a:87:cb:03:1b:ab: bd:95:e5:ba:04:cf:fc:3f:96:54:db:49:21:9d:aa:5e:72:0d: ea:51:e7:fd:37:cc:39:28:07:78:60:eb:8c:3d:c1:bb:3e:01: 5d:3f:f9:18:a8:55:80:f2:96:26:4d:36:d1:a1:a1:ec:a0:08: 65:68:d2:27:fa:22:ba:4f:61:93:61:79:0c:36:1b:9b:b6:45: f7:2c:44:76:ae:7b:97:63:3b:68:15:81:e5:1f:98:2d:49:77: ca:de:c7:6d:9f:d6:a4:a9:ae:3e:54:a1:31:1b:2d:df:00:c2: 59:18:7a:98:12:aa:88:97:36:9b:d6:85:31:5b:ef:c6:8e:b0: fe:f5:97:7e:f6:0d:eb:c5:f8:d2:d0:e5:e4:5a:bb:5e:17:36: 1c:a7:3b:5c:7b:14:3f:0e:15:7c:96:58:63:98:40:23:98:0d: d8:5f:2b:09:2c:cd:30:12:ab:1b:c3:3c:a1:2f:a8:2a:ac:bb: f0:4f:54:2b:24:9a:08:ed:bf:58:ea:bb:a4:56:99:47:6d:78: 17:68:44:d7:ed:b1:aa:14:a8:9b:a3:4a:35:fa:3d:60:01:fe: 8c:ac:51:f1:3c:ed:e9:cb:d1:5e:f0:39:91:c9:39:f0:be:1c: 6a:db:b4:09 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv6LYKfJwfSKw9bxxBTQKfXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI4NTlkYjdmMmMyZTNiM2FiZDhiZjQxNWYwY2UxZmZmMzM0 MzI5ZWMwHhcNMjYwMTI2MTIwMDQ0WhcNMjYwMTI3MTIwMDQ0WjAzMTEwLwYDVQQD EyhlOGMwNWJhMmY1YWE1ZGY4ZTZiYTA2NDNmZDg5ZGE3NTY2ZjdjOWYxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8YahvC5PI9+Kn9AmE9YlAjw48BYq t9F/FsqaZfI1jW2P5kfuOA8T4D6V+gkesDVpRr3TJyQCpVFgnn9dWz2oH0TmBTKK 5pdWSCBdFScbAV4aoDUyTtenikmG5RsoHp3V6relPYZZJOGaE0f/Q/Ajkpc4q3sb 53ALl4kuv9Bl4etB+S8Jr1u9SP7SGweQ4QEvgfDfpR0Xw7RVwNDQHtUf7Jc9GJ4W PDTmHM8+5KNCMOWx6CQFOX/flvmHXW6VvhnTase6A2umCwTvnzlETeC6T86GhAg+ iudGOcI0ecnXHbnWL5Dfz1iHIM5cBWu2JUB7YireHFMcY+IIH3gpLkn8NQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOjAW6L1ql345roGQ/2J2nVm98nxMB8GA1UdIwQY MBaAFLhZ238sLjs6vYv0FfDOH/8zQynsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdUZuYmZ5d3VPenE5aV9RVjhNNGZfek5ES2V3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi83ZWI3YzMtZTM0YS00ZmJjLTkyNzIt NGMxYzU3YTgxZmZkLzEvdUZuYmZ5d3VPenE5aV9RVjhNNGZfek5ES2V3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yi83ZWI3YzMtZTM0YS00ZmJjLTkyNzItNGMxYzU3YTgxZmZk LzEvdUZuYmZ5d3VPenE5aV9RVjhNNGZfek5ES2V3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGtnhBsC6 c8dca8fDKofLAxurvZXlugTP/D+WVNtJIZ2qXnIN6lHn/TfMOSgHeGDrjD3Buz4B XT/5GKhVgPKWJk020aGh7KAIZWjSJ/oiuk9hk2F5DDYbm7ZF9yxEdq57l2M7aBWB 5R+YLUl3yt7HbZ/WpKmuPlShMRst3wDCWRh6mBKqiJc2m9aFMVvvxo6w/vWXfvYN 68X40tDl5Fq7Xhc2HKc7XHsUPw4VfJZYY5hAI5gN2F8rCSzNMBKrG8M8oS+oKqy7 8E9UKySaCO2/WOq7pFaZR214F2hE1+2xqhSom6NKNfo9YAH+jKxR8Tzt6cvRXvA5 kck58L4catu0CQ== -----END CERTIFICATE-----Generated at Mon Jan 26 22:27:40 2026 by rpki-client