This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/TDfyfrSZezvvnygmajlpQFD-dPk.mft File: TDfyfrSZezvvnygmajlpQFD-dPk.mft (raw, json) Hash identifier: BD6bh5piDh/uJTWw6eK8agQcXKJ8D+IONlz7MRYSRyE= Subject key identifier: 2D:34:6C:84:4B:F3:22:D1:90:50:11:F6:35:47:E6:6D:73:C0:A0:1E Authority key identifier: 4C:37:F2:7E:B4:99:7B:3B:EF:9F:28:26:6A:39:69:40:50:FE:74:F9 Certificate issuer: /CN=4c37f27eb4997b3bef9f28266a39694050fe74f9 Certificate serial: 019BFD2E791FBD043388BC8FD8839814DD71 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TDfyfrSZezvvnygmajlpQFD-dPk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/TDfyfrSZezvvnygmajlpQFD-dPk.mft Manifest number: 184C Signing time: Tue 27 Jan 2026 02:00:39 +0000 Manifest this update: Tue 27 Jan 2026 02:00:39 +0000 Manifest next update: Wed 28 Jan 2026 02:00:39 +0000 Files and hashes: 1: 3mj4BF15-QsrQeXNqlhp9O0RF8Q.roa (hash: vXL9dy1/SgEnnpISMc/F/t6U8c7+bWH7fiwFFAUniPU=) 2: TDfyfrSZezvvnygmajlpQFD-dPk.crl (hash: CLjiGn/1fs9d5ESh2t0GNG23/kyfo30XkDgSGfCr6j0=) 3: dDIM-ljTCDKhWIxv1515WUGeQvk.roa (hash: /ksxNXhqwhx98qeq21Eca7WB/KLYXy3qx2dkD35mKTc=) 4: i6gAOaaWdEjygKv3yzfVHTmBR5s.roa (hash: jK1Yhe3ibqhPTKxiBNM7KW7h9KKeRctQT02L1qcBze8=) 5: kFLjuN4_tRjI-IILkJq8lcLpDdc.roa (hash: lQTRIEBvMUBY3vX80dFs9U0bSNDBYvB6Uew+srrzZ9A=) 6: qrG9XLPl84E40eGjaluMQlHH30g.roa (hash: JZCVwj3aTdfzcFTKEfr0xBq4Umu2aHhpSpk1hh5GgSQ=) 7: sNbxwr_VlMceIOoORfjNh48fthg.roa (hash: og1IfOlO+B5tux3x/JdwIjbchpmcSQUOsvTa4SrXgws=) 8: sPyU_Xm3Mi4DrCYd-xCPHCu7Yj8.roa (hash: R+jYi2MX3/3kpxkJYiEg+3YO+SpdTf42NvPMvZti0mw=) 9: yjcAiOmQGkj7hTD0MZWHr2J1Je4.roa (hash: S7VwEQTFRcxL/FXQlqzu5pVh1KvvK3fwPwSXMI469EY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/TDfyfrSZezvvnygmajlpQFD-dPk.crl rsync://rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/TDfyfrSZezvvnygmajlpQFD-dPk.mft rsync://rpki.ripe.net/repository/DEFAULT/TDfyfrSZezvvnygmajlpQFD-dPk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 20:39:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fd:2e:79:1f:bd:04:33:88:bc:8f:d8:83:98:14:dd:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4c37f27eb4997b3bef9f28266a39694050fe74f9 Validity Not Before: Jan 27 02:00:39 2026 GMT Not After : Jan 28 02:00:39 2026 GMT Subject: CN=2d346c844bf322d1905011f63547e66d73c0a01e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:8e:e5:09:15:1f:02:36:69:c0:40:9b:1d:81: 40:6a:82:4b:e2:0b:d9:5e:65:1c:32:9a:ef:40:b2: 9c:39:3f:a6:38:b3:15:1e:88:c0:b4:1e:05:7a:19: 43:90:d2:3b:30:15:23:4a:52:ac:d2:dc:96:37:ef: 06:dc:0f:c1:d0:5f:26:5b:cd:2f:00:51:fa:2d:6d: e0:d2:00:6f:51:c8:89:35:d9:3c:00:e9:61:52:50: a6:20:cd:ff:b8:c9:1e:ea:4a:9a:d8:a4:fc:ee:ff: 35:f4:ab:21:ff:0e:6c:98:4f:41:7a:b4:01:a3:bd: 71:cf:0d:27:a6:cd:64:8e:15:c8:5f:1e:13:39:31: 99:1d:ef:7c:67:4e:28:d2:70:21:51:d2:88:bd:72: 62:60:f1:a6:04:d0:12:49:ca:93:d9:5b:db:65:bf: f6:0c:dd:57:d5:6e:0c:fd:bc:d4:42:39:b4:02:52: ba:2c:ed:29:cd:75:ee:57:f6:c6:a2:35:56:3c:2d: d4:e7:08:fd:e9:f3:c0:ba:a8:7a:29:c1:a3:c0:da: 1a:3b:45:c0:85:c4:61:99:60:13:4d:d5:07:18:61: 71:a8:23:93:99:e2:c5:22:01:57:2c:0f:2a:a8:ac: 04:12:a3:b4:4d:f2:c4:b1:b7:8c:64:f5:e9:0e:4c: 22:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:34:6C:84:4B:F3:22:D1:90:50:11:F6:35:47:E6:6D:73:C0:A0:1E X509v3 Authority Key Identifier: keyid:4C:37:F2:7E:B4:99:7B:3B:EF:9F:28:26:6A:39:69:40:50:FE:74:F9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TDfyfrSZezvvnygmajlpQFD-dPk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/TDfyfrSZezvvnygmajlpQFD-dPk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/09cea0-ef2b-4f20-a19a-eb5a627e76a3/1/TDfyfrSZezvvnygmajlpQFD-dPk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 41:09:99:58:df:35:b6:57:69:28:f8:d6:04:78:e6:76:0e:ab: a8:f9:95:fa:e4:eb:68:aa:f4:b8:b3:07:70:91:81:5f:f2:d1: c5:85:fa:8b:39:9d:d4:c1:05:17:e6:b9:58:74:5e:57:be:21: 99:2c:b1:a2:c8:bd:71:56:78:7d:5f:89:c3:0f:48:3d:b0:9f: fc:12:f6:84:48:b7:e6:cd:bf:b3:e4:f1:1a:d0:2f:d8:20:fa: b1:52:7e:32:4a:c3:8d:42:8c:16:7a:3d:4b:9e:52:48:ae:3e: f6:55:53:e8:7b:d1:f0:79:2a:f1:26:69:98:e1:66:e7:ea:73: b0:c5:df:37:05:7c:37:3f:ae:ac:0f:4f:f4:8e:b9:d1:5d:1f: 4c:1f:71:55:3d:7b:fa:37:f8:83:bb:e0:6b:5f:99:49:59:67: 0b:7b:31:a1:3f:69:11:29:cb:5a:8f:dd:60:ff:5e:a9:24:aa: ae:0f:9a:05:cb:92:a6:54:ac:b6:6f:43:75:70:f2:6a:3c:ea: 72:e8:a4:f8:3e:eb:34:58:f4:ed:5f:39:fc:3b:7e:4b:2f:1f: f1:5d:7b:de:f2:ec:34:11:d5:62:ba:11:6f:f9:92:eb:63:b4: 78:64:06:e5:d9:10:40:26:ac:7f:86:06:16:0c:f3:f8:3b:7a: 7f:2e:7c:ea -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv9LnkfvQQziLyP2IOYFN1xMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRjMzdmMjdlYjQ5OTdiM2JlZjlmMjgyNjZhMzk2OTQwNTBm ZTc0ZjkwHhcNMjYwMTI3MDIwMDM5WhcNMjYwMTI4MDIwMDM5WjAzMTEwLwYDVQQD EygyZDM0NmM4NDRiZjMyMmQxOTA1MDExZjYzNTQ3ZTY2ZDczYzBhMDFlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyo7lCRUfAjZpwECbHYFAaoJL4gvZ XmUcMprvQLKcOT+mOLMVHojAtB4FehlDkNI7MBUjSlKs0tyWN+8G3A/B0F8mW80v AFH6LW3g0gBvUciJNdk8AOlhUlCmIM3/uMke6kqa2KT87v819Ksh/w5smE9BerQB o71xzw0nps1kjhXIXx4TOTGZHe98Z04o0nAhUdKIvXJiYPGmBNASScqT2VvbZb/2 DN1X1W4M/bzUQjm0AlK6LO0pzXXuV/bGojVWPC3U5wj96fPAuqh6KcGjwNoaO0XA hcRhmWATTdUHGGFxqCOTmeLFIgFXLA8qqKwEEqO0TfLEsbeMZPXpDkwilQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFC00bIRL8yLRkFAR9jVH5m1zwKAeMB8GA1UdIwQY MBaAFEw38n60mXs7758oJmo5aUBQ/nT5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVERmeWZyU1plenZ2bnlnbWFqbHBRRkQtZFBrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC8wOWNlYTAtZWYyYi00ZjIwLWExOWEt ZWI1YTYyN2U3NmEzLzEvVERmeWZyU1plenZ2bnlnbWFqbHBRRkQtZFBrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81ZC8wOWNlYTAtZWYyYi00ZjIwLWExOWEtZWI1YTYyN2U3NmEz LzEvVERmeWZyU1plenZ2bnlnbWFqbHBRRkQtZFBrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQQmZWN81 tldpKPjWBHjmdg6rqPmV+uTraKr0uLMHcJGBX/LRxYX6izmd1MEFF+a5WHReV74h mSyxosi9cVZ4fV+Jww9IPbCf/BL2hEi35s2/s+TxGtAv2CD6sVJ+MkrDjUKMFno9 S55SSK4+9lVT6HvR8Hkq8SZpmOFm5+pzsMXfNwV8Nz+urA9P9I650V0fTB9xVT17 +jf4g7vga1+ZSVlnC3sxoT9pESnLWo/dYP9eqSSqrg+aBcuSplSstm9DdXDyajzq cuik+D7rNFj07V85/Dt+Sy8f8V173vLsNBHVYroRb/mS62O0eGQG5dkQQCasf4YG Fgzz+Dt6fy586g== -----END CERTIFICATE-----Generated at Tue Jan 27 07:16:59 2026 by rpki-client