This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/05ce9d-6dae-4709-971f-341658243b4e/1/5k3j63dco74tVQPJyc07crvNpJs.mft File: 5k3j63dco74tVQPJyc07crvNpJs.mft (raw, json) Hash identifier: 3w2b7dpDoRtIh/JXwTnsD46WaOYGlFQJaI7DFKqhNdU= Subject key identifier: 3F:A5:73:5F:BD:26:4F:DE:65:01:6B:A9:C2:41:A6:9F:2F:BF:CC:4B Authority key identifier: E6:4D:E3:EB:77:5C:A3:BE:2D:55:03:C9:C9:CD:3B:72:BB:CD:A4:9B Certificate issuer: /CN=e64de3eb775ca3be2d5503c9c9cd3b72bbcda49b Certificate serial: 019BFAD2C7C5A23032F78A771CE7F4C93455 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5k3j63dco74tVQPJyc07crvNpJs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/05ce9d-6dae-4709-971f-341658243b4e/1/5k3j63dco74tVQPJyc07crvNpJs.mft Manifest number: 9E Signing time: Mon 26 Jan 2026 15:01:16 +0000 Manifest this update: Mon 26 Jan 2026 15:01:16 +0000 Manifest next update: Tue 27 Jan 2026 15:01:16 +0000 Files and hashes: 1: 5k3j63dco74tVQPJyc07crvNpJs.crl (hash: /jNo7q8z4RvGvVgdQ9SVxIq6NxZ+wkZPsWNvy+cLtAI=) 2: tfwhmbNUeb70v_DXkuhRwPo_elo.roa (hash: VbIkneiXqdXvw+KPGB3c+sh95KU6gx9gOTx0TPGcPy8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/05ce9d-6dae-4709-971f-341658243b4e/1/5k3j63dco74tVQPJyc07crvNpJs.crl rsync://rpki.ripe.net/repository/DEFAULT/6a/05ce9d-6dae-4709-971f-341658243b4e/1/5k3j63dco74tVQPJyc07crvNpJs.mft rsync://rpki.ripe.net/repository/DEFAULT/5k3j63dco74tVQPJyc07crvNpJs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:01:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fa:d2:c7:c5:a2:30:32:f7:8a:77:1c:e7:f4:c9:34:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e64de3eb775ca3be2d5503c9c9cd3b72bbcda49b Validity Not Before: Jan 26 15:01:16 2026 GMT Not After : Jan 27 15:01:16 2026 GMT Subject: CN=3fa5735fbd264fde65016ba9c241a69f2fbfcc4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:4a:9e:b7:3f:94:5c:07:fe:6a:f7:10:43:14: 96:45:71:19:e8:3d:24:14:35:58:56:61:51:00:82: cf:60:12:39:97:e9:14:9b:ab:2f:c3:b1:e7:75:ce: 19:0b:6e:26:5b:b3:44:af:2f:78:d1:ae:62:9a:96: 7a:46:17:6f:d6:f1:c5:e3:6b:5b:32:e8:6f:22:61: f5:96:16:3e:e0:41:35:57:c0:f7:78:cc:66:52:55: fc:b6:7b:2d:3c:e3:2f:a3:ce:0d:86:72:7a:3a:7b: cc:1c:5a:6b:b1:de:4c:55:7d:56:0a:36:7e:ad:29: bd:02:18:24:e1:d9:a9:69:b3:4e:0d:69:07:54:62: 8b:8a:10:63:3a:a4:cb:26:7d:fd:4a:53:09:cf:95: a5:22:bf:79:70:58:d3:10:46:48:b9:e2:a6:63:3f: 8d:a7:aa:15:8d:bf:4f:c4:3e:c7:77:02:c3:5b:96: 9d:76:5e:fb:af:00:55:12:b4:18:f0:3f:84:aa:1f: 3a:b2:a0:7b:6f:64:9e:5a:df:cf:c4:35:51:c6:b6: e6:99:b1:99:e2:e0:e8:cf:89:8b:a1:44:67:be:07: 10:08:90:4b:40:af:cf:f0:91:1f:37:c3:94:5e:c2: dd:9c:b3:70:ec:77:9f:37:b0:1e:b4:e5:f5:f0:ec: a3:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:A5:73:5F:BD:26:4F:DE:65:01:6B:A9:C2:41:A6:9F:2F:BF:CC:4B X509v3 Authority Key Identifier: keyid:E6:4D:E3:EB:77:5C:A3:BE:2D:55:03:C9:C9:CD:3B:72:BB:CD:A4:9B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5k3j63dco74tVQPJyc07crvNpJs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/05ce9d-6dae-4709-971f-341658243b4e/1/5k3j63dco74tVQPJyc07crvNpJs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/05ce9d-6dae-4709-971f-341658243b4e/1/5k3j63dco74tVQPJyc07crvNpJs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7e:5a:55:74:bf:84:6c:16:aa:a0:bd:6b:78:0f:81:7d:61:f1: 03:95:25:fd:f3:e9:31:06:af:bc:69:9b:1c:16:c4:5e:9a:de: 24:37:4d:1a:46:f2:f9:c6:75:a1:06:25:80:bf:5d:97:d6:a3: 66:74:03:d6:34:33:e0:39:df:48:d9:4e:13:a0:33:59:3f:0f: 9e:59:b0:4c:3e:b6:9b:5e:67:2f:1e:ff:55:6d:eb:f8:0f:a5: 81:53:fd:56:3e:d8:63:ae:96:72:fd:0b:df:d7:e0:83:a1:94: f5:00:12:ef:51:8a:96:36:ef:ec:a8:6e:c0:97:64:e0:14:6f: 6a:b7:7d:44:87:22:be:bb:05:c8:bd:6d:50:f9:31:50:d9:fd: 06:0b:0d:25:03:d1:24:bf:27:fb:1e:f2:f3:91:18:d7:10:1b: 5e:98:e9:f0:ad:f6:5b:f9:45:0e:1d:1d:1e:8a:77:d6:83:98: 9b:ca:7b:d0:b3:dd:c9:20:d6:da:04:b8:a1:a2:b8:30:22:b1: 21:1e:17:a9:f5:78:89:a0:16:a3:98:31:fe:6a:0a:a4:c6:d2: 9d:8a:20:7b:27:f3:d6:ac:91:41:b2:4a:9c:b1:06:78:e5:8a: 4d:09:86:c5:6e:03:a9:3f:ef:f2:67:c3:96:28:06:1f:a2:41: af:4d:89:d8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv60sfFojAy94p3HOf0yTRVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU2NGRlM2ViNzc1Y2EzYmUyZDU1MDNjOWM5Y2QzYjcyYmJj ZGE0OWIwHhcNMjYwMTI2MTUwMTE2WhcNMjYwMTI3MTUwMTE2WjAzMTEwLwYDVQQD EygzZmE1NzM1ZmJkMjY0ZmRlNjUwMTZiYTljMjQxYTY5ZjJmYmZjYzRiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx0qetz+UXAf+avcQQxSWRXEZ6D0k FDVYVmFRAILPYBI5l+kUm6svw7Hndc4ZC24mW7NEry940a5impZ6Rhdv1vHF42tb MuhvImH1lhY+4EE1V8D3eMxmUlX8tnstPOMvo84NhnJ6OnvMHFprsd5MVX1WCjZ+ rSm9Ahgk4dmpabNODWkHVGKLihBjOqTLJn39SlMJz5WlIr95cFjTEEZIueKmYz+N p6oVjb9PxD7HdwLDW5addl77rwBVErQY8D+Eqh86sqB7b2SeWt/PxDVRxrbmmbGZ 4uDoz4mLoURnvgcQCJBLQK/P8JEfN8OUXsLdnLNw7HefN7AetOX18Oyj7wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFD+lc1+9Jk/eZQFrqcJBpp8vv8xLMB8GA1UdIwQY MBaAFOZN4+t3XKO+LVUDycnNO3K7zaSbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNWszajYzZGNvNzR0VlFQSnljMDdjcnZOcEpzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82YS8wNWNlOWQtNmRhZS00NzA5LTk3MWYt MzQxNjU4MjQzYjRlLzEvNWszajYzZGNvNzR0VlFQSnljMDdjcnZOcEpzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82YS8wNWNlOWQtNmRhZS00NzA5LTk3MWYtMzQxNjU4MjQzYjRl LzEvNWszajYzZGNvNzR0VlFQSnljMDdjcnZOcEpzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAflpVdL+E bBaqoL1reA+BfWHxA5Ul/fPpMQavvGmbHBbEXpreJDdNGkby+cZ1oQYlgL9dl9aj ZnQD1jQz4DnfSNlOE6AzWT8PnlmwTD62m15nLx7/VW3r+A+lgVP9Vj7YY66Wcv0L 39fgg6GU9QAS71GKljbv7KhuwJdk4BRvard9RIcivrsFyL1tUPkxUNn9BgsNJQPR JL8n+x7y85EY1xAbXpjp8K32W/lFDh0dHop31oOYm8p70LPdySDW2gS4oaK4MCKx IR4XqfV4iaAWo5gx/moKpMbSnYogeyfz1qyRQbJKnLEGeOWKTQmGxW4DqT/v8mfD ligGH6JBr02J2A== -----END CERTIFICATE-----Generated at Tue Jan 27 01:19:20 2026 by rpki-client