This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/320512-91cb-4383-9761-a52dc9c2207c/1/tfD4OK-8EyJoBUTtHJxaKwmWXZ8.mft File: tfD4OK-8EyJoBUTtHJxaKwmWXZ8.mft (raw, json) Hash identifier: 19l0zOCsStwHUaOsu8ZU32X5jXVyjEPoXbuY8OWNc34= Subject key identifier: B7:CC:1C:C0:1D:FD:2C:79:B2:0D:86:92:87:DF:2A:5D:4F:84:95:81 Authority key identifier: B5:F0:F8:38:AF:BC:13:22:68:05:44:ED:1C:9C:5A:2B:09:96:5D:9F Certificate issuer: /CN=b5f0f838afbc1322680544ed1c9c5a2b09965d9f Certificate serial: 019BCFE81C2F19F6FD0BBA9D94B6B3B7C636 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tfD4OK-8EyJoBUTtHJxaKwmWXZ8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/320512-91cb-4383-9761-a52dc9c2207c/1/tfD4OK-8EyJoBUTtHJxaKwmWXZ8.mft Manifest number: 17D9 Signing time: Sun 18 Jan 2026 07:00:53 +0000 Manifest this update: Sun 18 Jan 2026 07:00:53 +0000 Manifest next update: Mon 19 Jan 2026 07:00:53 +0000 Files and hashes: 1: VIjK-dF1RkU8oL9JO5ackgQvQqk.roa (hash: EuZj5CNsImrt381xNpJVt+ICs2RyaQvBUySYpPa5Un8=) 2: tBz0by2NzKIkh_m261Gzm8WL1fA.roa (hash: HsCmK+FnFFM5EN4UPd625pAFTouSWoOu/R7Evk3aoN0=) 3: tfD4OK-8EyJoBUTtHJxaKwmWXZ8.crl (hash: VfqS0RUrzzCVOYeE+aza9UDM4P3R+qy8vSzevFMOIVI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/320512-91cb-4383-9761-a52dc9c2207c/1/tfD4OK-8EyJoBUTtHJxaKwmWXZ8.crl rsync://rpki.ripe.net/repository/DEFAULT/6a/320512-91cb-4383-9761-a52dc9c2207c/1/tfD4OK-8EyJoBUTtHJxaKwmWXZ8.mft rsync://rpki.ripe.net/repository/DEFAULT/tfD4OK-8EyJoBUTtHJxaKwmWXZ8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 06:00:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:cf:e8:1c:2f:19:f6:fd:0b:ba:9d:94:b6:b3:b7:c6:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5f0f838afbc1322680544ed1c9c5a2b09965d9f Validity Not Before: Jan 18 07:00:53 2026 GMT Not After : Jan 19 07:00:53 2026 GMT Subject: CN=b7cc1cc01dfd2c79b20d869287df2a5d4f849581 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:6b:d7:e0:00:cd:34:51:b6:60:1d:c2:63:28: 00:ea:e3:cd:ec:c8:c5:fc:8d:ef:7e:85:18:2c:85: d6:11:9a:a6:e3:65:c4:46:d8:10:b1:a8:a4:44:a4: 06:b2:b1:29:f9:1f:a5:73:3b:78:2d:c3:b0:25:bb: 80:35:2e:b8:3b:d2:c8:68:80:e9:94:64:56:d4:c8: ae:79:ac:9c:aa:f2:9f:c8:18:37:d0:c8:04:f7:96: 63:47:d0:69:aa:2e:5a:5d:ee:ab:ce:e9:d6:1f:c6: ba:09:16:dc:0c:8f:0b:2f:68:bc:79:8c:f9:ee:e8: 2d:c4:c8:25:08:1a:20:e1:7e:a9:fd:03:ec:be:17: b0:d9:2c:93:4f:3c:2e:79:e8:0e:9c:12:52:03:a5: a3:ef:00:cd:e3:80:cb:9f:f6:b2:3b:fb:84:1e:a1: e4:bf:4b:f8:d7:82:37:c9:d7:72:66:63:23:ab:9e: e0:fc:a2:41:72:ed:c9:85:1f:74:33:fd:89:a5:01: 3c:01:0a:0a:bb:4e:c6:0f:11:87:bc:96:9b:c6:8d: 05:66:11:7f:cd:27:e7:68:28:77:d6:fe:9a:de:37: 03:a9:28:c4:7b:f5:05:95:e5:7f:8d:25:d3:24:3f: 66:d1:65:dc:a9:47:3a:a2:89:5c:58:76:5e:ed:c1: aa:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:CC:1C:C0:1D:FD:2C:79:B2:0D:86:92:87:DF:2A:5D:4F:84:95:81 X509v3 Authority Key Identifier: keyid:B5:F0:F8:38:AF:BC:13:22:68:05:44:ED:1C:9C:5A:2B:09:96:5D:9F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tfD4OK-8EyJoBUTtHJxaKwmWXZ8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/320512-91cb-4383-9761-a52dc9c2207c/1/tfD4OK-8EyJoBUTtHJxaKwmWXZ8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/320512-91cb-4383-9761-a52dc9c2207c/1/tfD4OK-8EyJoBUTtHJxaKwmWXZ8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 42:00:84:29:cb:48:7a:53:f2:b6:9d:69:e3:da:2e:29:10:a9: 41:24:11:a0:0e:51:be:0e:37:d9:ed:53:7e:47:ba:8c:9b:e8: c7:de:79:8f:d8:09:85:f4:58:02:7e:f1:c0:22:fb:93:f6:68: 1a:83:3c:74:56:66:5c:60:31:a1:99:de:25:a4:e8:fb:f5:0a: 0f:4a:33:a1:f7:08:37:8b:57:48:8c:22:1b:66:96:ef:8e:a3: 9b:a6:4c:56:2d:4a:c3:ed:f7:96:1a:f5:14:57:f4:63:a1:ef: 56:70:cb:e1:16:bd:13:44:a9:8a:b8:34:d7:5c:d3:13:b0:e3: cc:b1:86:e4:3e:bc:c7:94:19:d3:ba:5d:8b:62:5c:5a:b4:e2: 9b:4a:47:76:38:e2:16:a1:07:38:13:db:33:dd:4a:d7:e0:37: be:f0:c8:b5:6b:cc:68:41:cf:53:a5:b1:1c:3f:44:75:bf:75: 10:9f:9a:b4:5a:6d:31:8a:05:2d:a4:86:b2:57:db:06:a3:a9: 85:d1:37:71:8a:b1:e0:76:ea:c2:35:c4:c0:93:7e:e7:76:a0: 91:1f:12:42:6e:b1:42:1e:ee:56:b6:c6:1f:3c:f7:29:45:db: 99:9c:57:8e:6c:87:ac:1b:75:43:e4:bc:64:61:4b:18:26:82: d6:7f:8f:28 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZvP6BwvGfb9C7qdlLazt8Y2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI1ZjBmODM4YWZiYzEzMjI2ODA1NDRlZDFjOWM1YTJiMDk5 NjVkOWYwHhcNMjYwMTE4MDcwMDUzWhcNMjYwMTE5MDcwMDUzWjAzMTEwLwYDVQQD EyhiN2NjMWNjMDFkZmQyYzc5YjIwZDg2OTI4N2RmMmE1ZDRmODQ5NTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwWvX4ADNNFG2YB3CYygA6uPN7MjF /I3vfoUYLIXWEZqm42XERtgQsaikRKQGsrEp+R+lczt4LcOwJbuANS64O9LIaIDp lGRW1MiueaycqvKfyBg30MgE95ZjR9Bpqi5aXe6rzunWH8a6CRbcDI8LL2i8eYz5 7ugtxMglCBog4X6p/QPsvhew2SyTTzwueegOnBJSA6Wj7wDN44DLn/ayO/uEHqHk v0v414I3yddyZmMjq57g/KJBcu3JhR90M/2JpQE8AQoKu07GDxGHvJabxo0FZhF/ zSfnaCh31v6a3jcDqSjEe/UFleV/jSXTJD9m0WXcqUc6oolcWHZe7cGqHwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLfMHMAd/Sx5sg2GkoffKl1PhJWBMB8GA1UdIwQY MBaAFLXw+DivvBMiaAVE7RycWisJll2fMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdGZENE9LLThFeUpvQlVUdEhKeGFLd21XWFo4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82YS8zMjA1MTItOTFjYi00MzgzLTk3NjEt YTUyZGM5YzIyMDdjLzEvdGZENE9LLThFeUpvQlVUdEhKeGFLd21XWFo4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82YS8zMjA1MTItOTFjYi00MzgzLTk3NjEtYTUyZGM5YzIyMDdj LzEvdGZENE9LLThFeUpvQlVUdEhKeGFLd21XWFo4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQgCEKctI elPytp1p49ouKRCpQSQRoA5Rvg432e1Tfke6jJvox955j9gJhfRYAn7xwCL7k/Zo GoM8dFZmXGAxoZneJaTo+/UKD0ozofcIN4tXSIwiG2aW746jm6ZMVi1Kw+33lhr1 FFf0Y6HvVnDL4Ra9E0Spirg011zTE7DjzLGG5D68x5QZ07pdi2JcWrTim0pHdjji FqEHOBPbM91K1+A3vvDItWvMaEHPU6WxHD9Edb91EJ+atFptMYoFLaSGslfbBqOp hdE3cYqx4HbqwjXEwJN+53agkR8SQm6xQh7uVrbGHzz3KUXbmZxXjmyHrBt1Q+S8 ZGFLGCaC1n+PKA== -----END CERTIFICATE-----Generated at Sun Jan 18 12:07:54 2026 by rpki-client