This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.mft File: 8zk0PMbVHduONjgpmhu0lfRYCSE.mft (raw, json) Hash identifier: bG7fWNZE1+P91S8smWfKIbw4Rt4UsnDHRk4I8w04HWk= Subject key identifier: EB:99:18:81:39:08:E6:98:F8:D2:FA:8D:E1:17:BF:CB:41:6B:BC:95 Authority key identifier: F3:39:34:3C:C6:D5:1D:DB:8E:36:38:29:9A:1B:B4:95:F4:58:09:21 Certificate issuer: /CN=f339343cc6d51ddb8e3638299a1bb495f4580921 Certificate serial: 019BFAD25DAB6D994B3ED449C47CCCB73813 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8zk0PMbVHduONjgpmhu0lfRYCSE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.mft Manifest number: 17EA Signing time: Mon 26 Jan 2026 15:00:49 +0000 Manifest this update: Mon 26 Jan 2026 15:00:49 +0000 Manifest next update: Tue 27 Jan 2026 15:00:49 +0000 Files and hashes: 1: 3ZbP8D4oyhCe4u5mlugxkhUP_G4.roa (hash: mYQ4ggMgVLrFbz01ZBuOhgHTwYfwTmz0/Kv0k+37TBo=) 2: 8zk0PMbVHduONjgpmhu0lfRYCSE.crl (hash: icgH4vUkuX0K9HeqNF2FQ0RUtkCzQAu20SLk8JvvMrU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.crl rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.mft rsync://rpki.ripe.net/repository/DEFAULT/8zk0PMbVHduONjgpmhu0lfRYCSE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fa:d2:5d:ab:6d:99:4b:3e:d4:49:c4:7c:cc:b7:38:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f339343cc6d51ddb8e3638299a1bb495f4580921 Validity Not Before: Jan 26 15:00:49 2026 GMT Not After : Jan 27 15:00:49 2026 GMT Subject: CN=eb9918813908e698f8d2fa8de117bfcb416bbc95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:71:b8:65:e3:fc:e6:70:c8:0d:dc:a4:15:44: 70:55:97:6e:95:0d:59:45:c3:8a:c7:52:78:d6:48: 81:aa:f2:42:d4:8a:a5:9e:f0:5f:bd:3b:af:18:fb: ce:18:16:f7:da:ce:af:70:b0:75:84:1d:da:0c:4a: af:5b:cc:de:a2:06:c4:cc:bf:a6:85:ab:f1:c7:87: 8c:d1:d9:81:72:a8:f9:e5:e5:1f:2a:91:df:3f:2c: 53:cc:cc:6f:d7:c3:4f:35:52:6b:31:99:a7:6e:bb: 55:62:a6:76:ff:df:20:13:e1:93:7c:c1:48:ea:e1: 9b:82:47:5f:87:07:e2:df:ab:cb:a9:e1:cf:8d:6e: 55:cd:59:34:67:ce:24:cd:05:0c:37:08:bb:28:1a: ca:71:bc:f1:ba:38:20:e2:d8:e5:52:20:fe:6f:c3: 8b:88:98:45:8f:4e:eb:af:ba:71:17:b0:43:51:a1: 81:b1:c9:42:ad:ec:8e:08:06:1b:e2:36:e9:d1:fc: b7:87:04:f0:92:e8:d6:91:27:8d:bd:68:ad:3c:6a: ca:da:51:02:84:09:04:71:fe:e6:c4:16:58:05:b5: e9:a4:0a:3a:08:90:dc:18:ed:2d:9d:c5:f4:ea:8e: ee:c8:16:e6:d3:63:ae:ed:88:4b:d3:3d:2e:92:b8: a5:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:99:18:81:39:08:E6:98:F8:D2:FA:8D:E1:17:BF:CB:41:6B:BC:95 X509v3 Authority Key Identifier: keyid:F3:39:34:3C:C6:D5:1D:DB:8E:36:38:29:9A:1B:B4:95:F4:58:09:21 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8zk0PMbVHduONjgpmhu0lfRYCSE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/5de6df-ce4f-4b09-82d2-377d25be594d/1/8zk0PMbVHduONjgpmhu0lfRYCSE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5a:fe:64:7a:df:d5:e0:cf:5d:ab:53:57:7a:52:4b:3b:58:3c: d4:36:04:04:e3:fc:85:40:4c:2a:f6:78:d7:9e:dd:56:86:7f: 24:c0:76:f4:b7:48:27:23:dd:f5:59:2c:8c:10:3d:31:fd:d2: 5a:7a:bc:84:ab:ac:65:fc:d7:25:06:96:b0:82:57:8f:c0:9d: 3c:18:95:4e:12:fb:67:d5:1a:45:9e:6d:8c:ac:fe:9c:46:d3: 3e:28:60:d4:0d:fa:cb:c2:33:02:e5:fe:a5:8a:cc:42:79:aa: a2:fd:3c:80:61:ba:8e:e3:a9:d0:eb:f9:a9:dd:2b:99:8e:7a: 13:fd:75:25:cd:26:85:8e:4c:39:01:3e:86:d2:a9:88:43:30: 9a:9e:e1:34:40:e5:e9:0e:8a:70:97:6c:03:02:36:ff:dc:d1: a6:11:75:dd:91:c3:04:17:ca:ea:e0:e6:31:9b:95:05:f0:7a: 77:13:ca:58:cf:37:2f:b7:49:0d:04:6d:3f:88:b4:61:b2:be: 59:58:46:93:88:44:6b:21:79:3d:bb:dd:12:a8:6d:59:61:8a: cb:bc:23:57:22:f6:5b:f5:1d:c2:7b:fb:d4:e0:0d:1c:1a:d0: 8c:97:09:51:a9:9f:46:f1:a2:3c:d5:3a:99:40:42:dd:b6:9a: 7e:ce:cb:51 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv60l2rbZlLPtRJxHzMtzgTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYzMzkzNDNjYzZkNTFkZGI4ZTM2MzgyOTlhMWJiNDk1ZjQ1 ODA5MjEwHhcNMjYwMTI2MTUwMDQ5WhcNMjYwMTI3MTUwMDQ5WjAzMTEwLwYDVQQD EyhlYjk5MTg4MTM5MDhlNjk4ZjhkMmZhOGRlMTE3YmZjYjQxNmJiYzk1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnHG4ZeP85nDIDdykFURwVZdulQ1Z RcOKx1J41kiBqvJC1IqlnvBfvTuvGPvOGBb32s6vcLB1hB3aDEqvW8zeogbEzL+m havxx4eM0dmBcqj55eUfKpHfPyxTzMxv18NPNVJrMZmnbrtVYqZ2/98gE+GTfMFI 6uGbgkdfhwfi36vLqeHPjW5VzVk0Z84kzQUMNwi7KBrKcbzxujgg4tjlUiD+b8OL iJhFj07rr7pxF7BDUaGBsclCreyOCAYb4jbp0fy3hwTwkujWkSeNvWitPGrK2lEC hAkEcf7mxBZYBbXppAo6CJDcGO0tncX06o7uyBbm02Ou7YhL0z0ukrilXQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOuZGIE5COaY+NL6jeEXv8tBa7yVMB8GA1UdIwQY MBaAFPM5NDzG1R3bjjY4KZobtJX0WAkhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOHprMFBNYlZIZHVPTmpncG1odTBsZlJZQ1NFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC81ZGU2ZGYtY2U0Zi00YjA5LTgyZDIt Mzc3ZDI1YmU1OTRkLzEvOHprMFBNYlZIZHVPTmpncG1odTBsZlJZQ1NFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81ZC81ZGU2ZGYtY2U0Zi00YjA5LTgyZDItMzc3ZDI1YmU1OTRk LzEvOHprMFBNYlZIZHVPTmpncG1odTBsZlJZQ1NFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWv5ket/V 4M9dq1NXelJLO1g81DYEBOP8hUBMKvZ4157dVoZ/JMB29LdIJyPd9VksjBA9Mf3S Wnq8hKusZfzXJQaWsIJXj8CdPBiVThL7Z9UaRZ5tjKz+nEbTPihg1A36y8IzAuX+ pYrMQnmqov08gGG6juOp0Ov5qd0rmY56E/11Jc0mhY5MOQE+htKpiEMwmp7hNEDl 6Q6KcJdsAwI2/9zRphF13ZHDBBfK6uDmMZuVBfB6dxPKWM83L7dJDQRtP4i0YbK+ WVhGk4hEayF5PbvdEqhtWWGKy7wjVyL2W/Udwnv71OANHBrQjJcJUamfRvGiPNU6 mUBC3baafs7LUQ== -----END CERTIFICATE-----Generated at Tue Jan 27 01:28:39 2026 by rpki-client