This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/d68f7b-2df7-4aff-bd16-7624dd6d7d30/1/jDDYlvLF0HcPuNHJFAsFnxn_bOk.mft File: jDDYlvLF0HcPuNHJFAsFnxn_bOk.mft (raw, json) Hash identifier: FvY57muBuEUwIDLK4h8OM8wVbY4VnUwqmYXdXcVBHZw= Subject key identifier: BA:EC:6A:40:6D:F8:C2:AB:41:81:A0:65:19:F9:A4:4E:F2:04:08:9C Authority key identifier: 8C:30:D8:96:F2:C5:D0:77:0F:B8:D1:C9:14:0B:05:9F:19:FF:6C:E9 Certificate issuer: /CN=8c30d896f2c5d0770fb8d1c9140b059f19ff6ce9 Certificate serial: 019C04B243714BC0B59419C8D839D4823D9E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jDDYlvLF0HcPuNHJFAsFnxn_bOk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/d68f7b-2df7-4aff-bd16-7624dd6d7d30/1/jDDYlvLF0HcPuNHJFAsFnxn_bOk.mft Manifest number: 05 Signing time: Wed 28 Jan 2026 13:01:57 +0000 Manifest this update: Wed 28 Jan 2026 13:01:57 +0000 Manifest next update: Thu 29 Jan 2026 13:01:57 +0000 Files and hashes: 1: gBhIlR2Vy9wZybBnJlISzDPwKZ8.roa (hash: 1heXPqmld/OvbyWoLXACStGWieBaqsBslRtSrtYIOUw=) 2: jDDYlvLF0HcPuNHJFAsFnxn_bOk.crl (hash: KJVQY6x9sH8ujsPbvBW3mD6cGrLRbrhx+db1/8bGSjI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/d68f7b-2df7-4aff-bd16-7624dd6d7d30/1/jDDYlvLF0HcPuNHJFAsFnxn_bOk.crl rsync://rpki.ripe.net/repository/DEFAULT/68/d68f7b-2df7-4aff-bd16-7624dd6d7d30/1/jDDYlvLF0HcPuNHJFAsFnxn_bOk.mft rsync://rpki.ripe.net/repository/DEFAULT/jDDYlvLF0HcPuNHJFAsFnxn_bOk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 29 Jan 2026 09:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:04:b2:43:71:4b:c0:b5:94:19:c8:d8:39:d4:82:3d:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8c30d896f2c5d0770fb8d1c9140b059f19ff6ce9 Validity Not Before: Jan 28 13:01:57 2026 GMT Not After : Jan 29 13:01:57 2026 GMT Subject: CN=baec6a406df8c2ab4181a06519f9a44ef204089c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:43:01:f8:33:63:71:15:13:a0:4c:fd:79:f9: 92:19:ec:13:95:f2:9a:3e:27:4e:85:49:d8:ab:28: be:f5:d0:b7:95:2d:a8:d0:49:5f:62:c9:f2:5e:53: ab:79:3e:a9:e5:a3:98:33:75:f9:2a:e2:e0:96:27: c4:a7:54:c0:d7:ac:b1:d7:fd:c5:22:91:87:25:23: 4f:6e:05:b8:4d:49:36:2d:7b:b9:bb:3b:4d:19:b3: 53:3d:e6:a9:f7:63:d2:72:86:a2:47:1b:37:00:7a: 85:49:04:32:9f:e3:65:cc:1e:6d:d3:77:78:8e:a8: 64:05:4b:6d:cc:99:4f:6e:d6:8c:97:85:32:61:03: 25:8c:d6:4c:74:f9:37:e8:33:92:21:4c:94:6b:f8: 34:22:0f:dd:e7:14:f6:e0:62:1f:a1:1b:d6:ba:5f: 32:58:12:96:42:c6:51:7f:3d:f9:52:56:65:21:62: a7:29:e7:15:02:d2:2c:84:7c:53:7a:26:ae:26:23: 19:55:ae:b5:32:11:91:dd:08:0d:59:08:ea:f9:9f: 7b:37:c2:1b:02:c0:95:f0:83:1a:9d:71:c5:a0:71: 0b:1e:ba:8d:86:56:aa:73:60:29:9f:23:14:a1:14: ec:9b:03:14:1c:00:dc:a3:4b:95:df:4f:fe:5e:32: 09:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:EC:6A:40:6D:F8:C2:AB:41:81:A0:65:19:F9:A4:4E:F2:04:08:9C X509v3 Authority Key Identifier: keyid:8C:30:D8:96:F2:C5:D0:77:0F:B8:D1:C9:14:0B:05:9F:19:FF:6C:E9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jDDYlvLF0HcPuNHJFAsFnxn_bOk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/d68f7b-2df7-4aff-bd16-7624dd6d7d30/1/jDDYlvLF0HcPuNHJFAsFnxn_bOk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/68/d68f7b-2df7-4aff-bd16-7624dd6d7d30/1/jDDYlvLF0HcPuNHJFAsFnxn_bOk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 20:10:f5:9c:79:cb:25:7a:0e:8f:4f:99:57:fd:7f:89:47:f7: de:cd:ac:e6:6c:71:79:b8:93:30:21:e4:fa:ea:c8:01:1e:17: 72:d4:39:85:ca:b4:2c:80:63:c3:ba:fb:4f:7e:f8:29:68:cd: 10:79:2c:58:38:da:43:5b:eb:0e:71:29:6f:04:26:0a:72:99: 24:f5:b3:59:0a:1f:52:22:a7:43:24:5d:83:54:29:fe:0c:58: eb:01:87:dd:8e:dc:6b:e1:18:cf:24:1c:4d:33:ec:83:eb:87: 2c:89:de:b9:a1:0c:e0:6a:a8:65:a3:ad:5a:47:27:95:bb:81: 58:43:7b:23:d7:e6:fd:ec:58:92:0e:92:14:e1:03:7f:bd:54: 60:39:f1:d8:6c:1d:b8:6e:1c:6c:9b:a7:e6:f3:77:af:be:0d: 8d:23:54:83:08:ce:c5:cd:7b:12:51:1e:ec:fa:d9:d3:26:2a: a6:bf:45:d9:fa:79:a7:03:49:b2:fb:24:89:38:77:08:21:53: ee:62:93:7b:49:d7:9e:9f:40:88:60:fd:bf:fe:8d:95:97:ea: f3:3d:7d:d8:dc:50:92:70:ff:3f:7d:46:22:fe:fc:36:e4:7e: 72:92:ac:65:e3:f1:60:96:bb:94:41:0e:dc:ee:1d:e3:7f:88: a8:33:3d:df -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZwEskNxS8C1lBnI2DnUgj2eMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhjMzBkODk2ZjJjNWQwNzcwZmI4ZDFjOTE0MGIwNTlmMTlm ZjZjZTkwHhcNMjYwMTI4MTMwMTU3WhcNMjYwMTI5MTMwMTU3WjAzMTEwLwYDVQQD EyhiYWVjNmE0MDZkZjhjMmFiNDE4MWEwNjUxOWY5YTQ0ZWYyMDQwODljMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7kMB+DNjcRUToEz9efmSGewTlfKa PidOhUnYqyi+9dC3lS2o0ElfYsnyXlOreT6p5aOYM3X5KuLglifEp1TA16yx1/3F IpGHJSNPbgW4TUk2LXu5uztNGbNTPeap92PScoaiRxs3AHqFSQQyn+NlzB5t03d4 jqhkBUttzJlPbtaMl4UyYQMljNZMdPk36DOSIUyUa/g0Ig/d5xT24GIfoRvWul8y WBKWQsZRfz35UlZlIWKnKecVAtIshHxTeiauJiMZVa61MhGR3QgNWQjq+Z97N8Ib AsCV8IManXHFoHELHrqNhlaqc2ApnyMUoRTsmwMUHADco0uV30/+XjIJDwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLrsakBt+MKrQYGgZRn5pE7yBAicMB8GA1UdIwQY MBaAFIww2JbyxdB3D7jRyRQLBZ8Z/2zpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvakREWWx2TEYwSGNQdU5ISkZBc0ZueG5fYk9rLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OC9kNjhmN2ItMmRmNy00YWZmLWJkMTYt NzYyNGRkNmQ3ZDMwLzEvakREWWx2TEYwSGNQdU5ISkZBc0ZueG5fYk9rLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82OC9kNjhmN2ItMmRmNy00YWZmLWJkMTYtNzYyNGRkNmQ3ZDMw LzEvakREWWx2TEYwSGNQdU5ISkZBc0ZueG5fYk9rLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIBD1nHnL JXoOj0+ZV/1/iUf33s2s5mxxebiTMCHk+urIAR4XctQ5hcq0LIBjw7r7T374KWjN EHksWDjaQ1vrDnEpbwQmCnKZJPWzWQofUiKnQyRdg1Qp/gxY6wGH3Y7ca+EYzyQc TTPsg+uHLIneuaEM4GqoZaOtWkcnlbuBWEN7I9fm/exYkg6SFOEDf71UYDnx2Gwd uG4cbJun5vN3r74NjSNUgwjOxc17ElEe7PrZ0yYqpr9F2fp5pwNJsvskiTh3CCFT 7mKTe0nXnp9AiGD9v/6NlZfq8z192NxQknD/P31GIv78NuR+cpKsZePxYJa7lEEO 3O4d43+IqDM93w== -----END CERTIFICATE-----Generated at Wed Jan 28 18:28:48 2026 by rpki-client