This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/8efa45-92a8-4513-9f9a-ad2b61380be1/1/VKzhXkXvtaAGDAZeJ06o46-wJes.mft File: VKzhXkXvtaAGDAZeJ06o46-wJes.mft (raw, json) Hash identifier: IJa/0WeiXooJ1oLrUrVrkI7yH6/4XkZ6Ia/VBZ0qOuY= Subject key identifier: ED:C8:09:56:76:16:88:12:48:93:1E:20:94:11:B1:35:89:7E:B5:92 Authority key identifier: 54:AC:E1:5E:45:EF:B5:A0:06:0C:06:5E:27:4E:A8:E3:AF:B0:25:EB Certificate issuer: /CN=54ace15e45efb5a0060c065e274ea8e3afb025eb Certificate serial: 019BFA646C72DD7D9F82D6DB0CE2C7BFDD39 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VKzhXkXvtaAGDAZeJ06o46-wJes.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/8efa45-92a8-4513-9f9a-ad2b61380be1/1/VKzhXkXvtaAGDAZeJ06o46-wJes.mft Manifest number: 17EA Signing time: Mon 26 Jan 2026 13:00:43 +0000 Manifest this update: Mon 26 Jan 2026 13:00:43 +0000 Manifest next update: Tue 27 Jan 2026 13:00:43 +0000 Files and hashes: 1: 7Br6QJMiBJoDhVb_EXiCriWN_AY.roa (hash: gsWLGvyw0Im/+vXwSUKiwI1f5wizI+ESV/TWVUu641o=) 2: VKzhXkXvtaAGDAZeJ06o46-wJes.crl (hash: VfD0ugy9k1zfhnWLyLB1WqKMG2+s0mG9zNo0p3FW3t8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/8efa45-92a8-4513-9f9a-ad2b61380be1/1/VKzhXkXvtaAGDAZeJ06o46-wJes.crl rsync://rpki.ripe.net/repository/DEFAULT/77/8efa45-92a8-4513-9f9a-ad2b61380be1/1/VKzhXkXvtaAGDAZeJ06o46-wJes.mft rsync://rpki.ripe.net/repository/DEFAULT/VKzhXkXvtaAGDAZeJ06o46-wJes.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 10:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fa:64:6c:72:dd:7d:9f:82:d6:db:0c:e2:c7:bf:dd:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=54ace15e45efb5a0060c065e274ea8e3afb025eb Validity Not Before: Jan 26 13:00:43 2026 GMT Not After : Jan 27 13:00:43 2026 GMT Subject: CN=edc809567616881248931e209411b135897eb592 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:56:f5:58:fa:37:e4:20:5f:04:03:95:7e:91: ad:2f:e1:f1:04:6f:82:53:f3:91:c2:3e:34:a7:48: 89:06:1e:f9:96:d9:cd:22:81:f7:ee:c3:16:fc:3f: 23:b1:c8:16:d6:48:30:68:62:ea:82:2e:4b:be:76: 9e:b5:7b:67:37:41:a8:47:6c:06:6a:dd:a2:0e:d1: a2:c2:4e:57:68:6a:e9:b6:8a:79:25:2d:a7:bc:e9: d5:dc:a9:08:c2:ed:d2:89:1c:54:68:63:4c:20:8c: 5b:da:4b:2c:e9:d5:b4:b1:87:7d:22:88:d1:d3:55: ce:36:53:32:14:2d:98:57:f4:95:7f:16:0b:a6:a7: c7:46:a6:a9:fb:e8:f1:7c:78:0b:a5:86:54:ff:12: c8:90:5d:f8:8a:bf:63:57:43:bb:6b:e3:2e:16:10: 7c:a3:e6:cf:b9:29:16:e5:5a:69:25:d9:e3:3d:7b: 84:89:96:6a:61:ea:d0:42:4a:35:1b:73:9c:9e:62: 76:85:7d:1d:b2:7b:4d:9f:aa:3a:e5:43:30:f6:3a: 1e:42:e2:73:b9:82:36:36:c4:17:ef:36:60:b0:6f: 32:f6:f5:a4:4f:ca:9e:ef:f7:1e:7c:c7:15:86:93: 81:c5:d2:d2:6b:13:58:30:70:4e:13:da:c9:fa:1a: ba:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:C8:09:56:76:16:88:12:48:93:1E:20:94:11:B1:35:89:7E:B5:92 X509v3 Authority Key Identifier: keyid:54:AC:E1:5E:45:EF:B5:A0:06:0C:06:5E:27:4E:A8:E3:AF:B0:25:EB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VKzhXkXvtaAGDAZeJ06o46-wJes.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/8efa45-92a8-4513-9f9a-ad2b61380be1/1/VKzhXkXvtaAGDAZeJ06o46-wJes.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/77/8efa45-92a8-4513-9f9a-ad2b61380be1/1/VKzhXkXvtaAGDAZeJ06o46-wJes.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 99:e1:d7:d4:5d:68:f0:94:27:94:34:dc:4d:2b:db:e0:dd:b2: ae:a4:dd:b6:6d:05:e6:99:31:37:14:af:b4:95:9d:66:c9:12: 9a:0d:59:22:47:29:2b:55:29:5e:80:3b:38:22:ae:18:94:67: d5:99:ae:fa:3d:30:3c:96:10:b5:8c:90:40:cf:02:9e:ab:13: 0c:23:0b:7f:9e:e9:88:18:6e:7d:2c:ef:31:c2:88:51:4e:dd: 92:4b:6c:63:04:57:60:ca:5b:b4:09:e0:04:67:22:1d:4a:ff: a1:07:ad:7b:17:ed:44:e1:8f:cd:52:e4:3e:7c:00:ae:c2:b6: 45:aa:76:98:17:82:73:ac:bc:8e:59:32:11:66:69:d0:c4:60: e2:82:36:ac:37:a9:1d:c8:13:8f:f0:54:0f:6b:22:d3:f4:7c: 52:d5:b0:a2:63:c4:a3:46:9f:e4:8b:d7:95:9a:bd:7c:45:44: 1e:4c:b8:96:d1:e0:47:95:c9:e5:65:09:2e:27:28:8c:ca:69: ba:be:5f:c3:29:e2:29:d7:79:ec:8c:02:6d:9a:7c:e5:43:d3: 5b:6b:2c:f2:88:f8:ce:10:43:01:22:53:5e:82:97:14:cc:de: 0d:f8:13:49:4b:3a:a0:81:29:bb:4d:56:e8:1a:d7:f4:e1:66: 72:d6:d2:e8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv6ZGxy3X2fgtbbDOLHv905MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU0YWNlMTVlNDVlZmI1YTAwNjBjMDY1ZTI3NGVhOGUzYWZi MDI1ZWIwHhcNMjYwMTI2MTMwMDQzWhcNMjYwMTI3MTMwMDQzWjAzMTEwLwYDVQQD EyhlZGM4MDk1Njc2MTY4ODEyNDg5MzFlMjA5NDExYjEzNTg5N2ViNTkyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu1b1WPo35CBfBAOVfpGtL+HxBG+C U/ORwj40p0iJBh75ltnNIoH37sMW/D8jscgW1kgwaGLqgi5LvnaetXtnN0GoR2wG at2iDtGiwk5XaGrptop5JS2nvOnV3KkIwu3SiRxUaGNMIIxb2kss6dW0sYd9IojR 01XONlMyFC2YV/SVfxYLpqfHRqap++jxfHgLpYZU/xLIkF34ir9jV0O7a+MuFhB8 o+bPuSkW5VppJdnjPXuEiZZqYerQQko1G3OcnmJ2hX0dsntNn6o65UMw9joeQuJz uYI2NsQX7zZgsG8y9vWkT8qe7/cefMcVhpOBxdLSaxNYMHBOE9rJ+hq60wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFO3ICVZ2FogSSJMeIJQRsTWJfrWSMB8GA1UdIwQY MBaAFFSs4V5F77WgBgwGXidOqOOvsCXrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVkt6aFhrWHZ0YUFHREFaZUowNm80Ni13SmVzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ny84ZWZhNDUtOTJhOC00NTEzLTlmOWEt YWQyYjYxMzgwYmUxLzEvVkt6aFhrWHZ0YUFHREFaZUowNm80Ni13SmVzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Ny84ZWZhNDUtOTJhOC00NTEzLTlmOWEtYWQyYjYxMzgwYmUx LzEvVkt6aFhrWHZ0YUFHREFaZUowNm80Ni13SmVzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmeHX1F1o 8JQnlDTcTSvb4N2yrqTdtm0F5pkxNxSvtJWdZskSmg1ZIkcpK1UpXoA7OCKuGJRn 1Zmu+j0wPJYQtYyQQM8CnqsTDCMLf57piBhufSzvMcKIUU7dkktsYwRXYMpbtAng BGciHUr/oQetexftROGPzVLkPnwArsK2Rap2mBeCc6y8jlkyEWZp0MRg4oI2rDep HcgTj/BUD2si0/R8UtWwomPEo0af5IvXlZq9fEVEHky4ltHgR5XJ5WUJLicojMpp ur5fwyniKdd57IwCbZp85UPTW2ss8oj4zhBDASJTXoKXFMzeDfgTSUs6oIEpu01W 6BrX9OFmctbS6A== -----END CERTIFICATE-----Generated at Mon Jan 26 15:39:53 2026 by rpki-client