This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/041b9f-1a07-42e5-b487-29b97a1877fb/1/vnIqmXMsnDy8ILCkcpKoI3gmA6w.mft File: vnIqmXMsnDy8ILCkcpKoI3gmA6w.mft (raw, json) Hash identifier: y7XaMgbN5ltrQ0wnf5Vyfyq0HyUozP6wpTunPZvBId4= Subject key identifier: 36:1D:CF:BB:DF:71:2C:9E:FC:98:AF:08:C7:87:FF:82:F0:CC:41:12 Authority key identifier: BE:72:2A:99:73:2C:9C:3C:BC:20:B0:A4:72:92:A8:23:78:26:03:AC Certificate issuer: /CN=be722a99732c9c3cbc20b0a47292a823782603ac Certificate serial: 019BFA9BD912D40056E770DBA74065EA1287 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vnIqmXMsnDy8ILCkcpKoI3gmA6w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/041b9f-1a07-42e5-b487-29b97a1877fb/1/vnIqmXMsnDy8ILCkcpKoI3gmA6w.mft Manifest number: 177C Signing time: Mon 26 Jan 2026 14:01:16 +0000 Manifest this update: Mon 26 Jan 2026 14:01:16 +0000 Manifest next update: Tue 27 Jan 2026 14:01:16 +0000 Files and hashes: 1: J9YAUFwPteiNE41P-B9PZesABw4.roa (hash: aWHkIvoqLm8EJJK/XFEsvikfiT0fdWpAKa84pZKqHPU=) 2: vnIqmXMsnDy8ILCkcpKoI3gmA6w.crl (hash: IOfcrbvXUANjq2aNEdm7IhptlHKgYIOjnf9BVzCQkUo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/041b9f-1a07-42e5-b487-29b97a1877fb/1/vnIqmXMsnDy8ILCkcpKoI3gmA6w.crl rsync://rpki.ripe.net/repository/DEFAULT/5c/041b9f-1a07-42e5-b487-29b97a1877fb/1/vnIqmXMsnDy8ILCkcpKoI3gmA6w.mft rsync://rpki.ripe.net/repository/DEFAULT/vnIqmXMsnDy8ILCkcpKoI3gmA6w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 14:01:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fa:9b:d9:12:d4:00:56:e7:70:db:a7:40:65:ea:12:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=be722a99732c9c3cbc20b0a47292a823782603ac Validity Not Before: Jan 26 14:01:16 2026 GMT Not After : Jan 27 14:01:16 2026 GMT Subject: CN=361dcfbbdf712c9efc98af08c787ff82f0cc4112 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:85:be:33:ff:de:8f:c4:4a:2d:5b:68:23:59:b9: 29:b0:b1:5d:01:e9:aa:57:df:cb:b9:21:de:74:21: 95:47:db:4b:c2:c2:43:ab:8a:2d:45:10:9b:6d:e0: 91:0c:76:d8:fc:32:f4:99:7a:b5:6a:8f:2a:fc:1d: de:cf:ea:af:8a:93:e0:6f:08:5f:ec:9b:d4:d9:66: b3:4b:8b:d9:6c:c2:c5:78:50:d3:41:43:ba:9e:27: a6:7c:f0:b6:36:4e:6b:d1:7a:36:93:14:3e:8b:94: dc:ac:a4:bd:ab:44:b5:9b:e1:30:01:74:ab:83:19: 39:0d:5b:f6:92:86:45:8a:6e:a5:5b:e8:15:a4:8a: ff:93:80:65:df:5e:ab:e2:87:ac:6f:cc:a2:1d:05: e8:e3:62:94:76:ed:d1:f3:85:f8:72:d9:da:35:85: 4d:25:2b:63:92:92:78:64:20:4c:e0:c6:63:f8:c7: 7a:f6:ae:da:a9:60:6b:80:f4:b4:fd:ac:27:8a:0e: 93:88:81:51:0b:3d:8e:fa:d6:b6:8b:70:91:c7:af: 38:6a:f8:1d:4f:f0:4a:e4:09:cd:78:d4:2b:9c:59: 49:4b:f9:ee:a5:0a:ad:ec:8b:45:34:16:f3:16:a6: 6e:55:f3:29:9c:47:a4:65:7b:d2:87:ad:dd:41:dc: a9:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:1D:CF:BB:DF:71:2C:9E:FC:98:AF:08:C7:87:FF:82:F0:CC:41:12 X509v3 Authority Key Identifier: keyid:BE:72:2A:99:73:2C:9C:3C:BC:20:B0:A4:72:92:A8:23:78:26:03:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vnIqmXMsnDy8ILCkcpKoI3gmA6w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/041b9f-1a07-42e5-b487-29b97a1877fb/1/vnIqmXMsnDy8ILCkcpKoI3gmA6w.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/041b9f-1a07-42e5-b487-29b97a1877fb/1/vnIqmXMsnDy8ILCkcpKoI3gmA6w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 60:bb:23:b4:ea:08:53:47:88:38:76:cd:f2:3f:eb:4d:a0:5a: 91:1f:d5:9e:bf:76:e7:a5:ba:d6:48:c1:92:a4:ee:0d:b4:58: 90:5a:c5:36:c5:64:18:71:dd:3e:56:79:4f:4a:07:d5:e7:20: 90:0b:a7:31:94:9c:61:6b:9a:03:6e:70:94:8e:22:2d:b4:1d: 81:0b:25:f7:9b:d5:de:4c:a4:88:ad:f4:bb:83:24:2e:60:ec: 68:41:ae:3a:a4:1d:14:96:a6:91:f6:c8:d2:64:6e:c8:8a:e0: b8:31:e6:5b:fa:28:ea:e7:b7:b8:aa:c6:30:c2:2b:fb:3f:04: 37:fe:e5:b5:b6:cf:85:92:31:45:9a:64:3b:c3:da:20:4d:42: 85:a2:35:11:7c:db:b8:06:e9:74:bf:f0:75:28:e5:c7:8e:e9: 9a:b0:ea:ef:08:36:b5:cc:f3:7a:2f:7b:14:b4:61:ce:e1:62: d6:a9:f2:5b:14:15:a8:cd:55:5b:d1:00:0d:2a:4c:48:c7:86: 62:ba:e0:d7:db:34:28:ff:bb:9c:f3:c3:16:fe:53:4d:f4:2c: 83:eb:e8:46:77:e1:66:de:33:c2:45:4e:dd:6a:2f:29:00:33: e3:24:29:18:17:e9:04:97:06:a4:d9:90:96:66:c2:94:64:de: 0a:c9:c7:75 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv6m9kS1ABW53Dbp0Bl6hKHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJlNzIyYTk5NzMyYzljM2NiYzIwYjBhNDcyOTJhODIzNzgy NjAzYWMwHhcNMjYwMTI2MTQwMTE2WhcNMjYwMTI3MTQwMTE2WjAzMTEwLwYDVQQD EygzNjFkY2ZiYmRmNzEyYzllZmM5OGFmMDhjNzg3ZmY4MmYwY2M0MTEyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhb4z/96PxEotW2gjWbkpsLFdAemq V9/LuSHedCGVR9tLwsJDq4otRRCbbeCRDHbY/DL0mXq1ao8q/B3ez+qvipPgbwhf 7JvU2WazS4vZbMLFeFDTQUO6niemfPC2Nk5r0Xo2kxQ+i5TcrKS9q0S1m+EwAXSr gxk5DVv2koZFim6lW+gVpIr/k4Bl316r4oesb8yiHQXo42KUdu3R84X4ctnaNYVN JStjkpJ4ZCBM4MZj+Md69q7aqWBrgPS0/awnig6TiIFRCz2O+ta2i3CRx684avgd T/BK5AnNeNQrnFlJS/nupQqt7ItFNBbzFqZuVfMpnEekZXvSh63dQdypqQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDYdz7vfcSye/JivCMeH/4LwzEESMB8GA1UdIwQY MBaAFL5yKplzLJw8vCCwpHKSqCN4JgOsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdm5JcW1YTXNuRHk4SUxDa2NwS29JM2dtQTZ3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yy8wNDFiOWYtMWEwNy00MmU1LWI0ODct MjliOTdhMTg3N2ZiLzEvdm5JcW1YTXNuRHk4SUxDa2NwS29JM2dtQTZ3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yy8wNDFiOWYtMWEwNy00MmU1LWI0ODctMjliOTdhMTg3N2Zi LzEvdm5JcW1YTXNuRHk4SUxDa2NwS29JM2dtQTZ3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYLsjtOoI U0eIOHbN8j/rTaBakR/Vnr9256W61kjBkqTuDbRYkFrFNsVkGHHdPlZ5T0oH1ecg kAunMZScYWuaA25wlI4iLbQdgQsl95vV3kykiK30u4MkLmDsaEGuOqQdFJamkfbI 0mRuyIrguDHmW/oo6ue3uKrGMMIr+z8EN/7ltbbPhZIxRZpkO8PaIE1ChaI1EXzb uAbpdL/wdSjlx47pmrDq7wg2tczzei97FLRhzuFi1qnyWxQVqM1VW9EADSpMSMeG Yrrg19s0KP+7nPPDFv5TTfQsg+voRnfhZt4zwkVO3WovKQAz4yQpGBfpBJcGpNmQ lmbClGTeCsnHdQ== -----END CERTIFICATE-----Generated at Mon Jan 26 22:40:34 2026 by rpki-client