This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.mft File: mZKB6H1em4dY8kDnju9xAsQBIYk.mft (raw, json) Hash identifier: QHZv9L7oHCA/mxvzki2c4yjsqsKrLTiiYp9GCcylGOI= Subject key identifier: DE:30:BA:37:C8:C6:7E:8A:0E:6D:3F:43:92:AE:5C:A3:B0:9B:11:78 Authority key identifier: 99:92:81:E8:7D:5E:9B:87:58:F2:40:E7:8E:EF:71:02:C4:01:21:89 Certificate issuer: /CN=999281e87d5e9b8758f240e78eef7102c4012189 Certificate serial: 019BFDD36923FF17247C55972FEB6BC777B1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mZKB6H1em4dY8kDnju9xAsQBIYk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.mft Manifest number: 177E Signing time: Tue 27 Jan 2026 05:00:49 +0000 Manifest this update: Tue 27 Jan 2026 05:00:49 +0000 Manifest next update: Wed 28 Jan 2026 05:00:49 +0000 Files and hashes: 1: 84a_5dunO5tT13Gn8_j3cCElA5U.roa (hash: myvurQJ8o/9M7JEPK/Rdbm3h4MrG2xioG91InHNEhRU=) 2: mZKB6H1em4dY8kDnju9xAsQBIYk.crl (hash: pxJws7L6909vakOp7Oq9YOQOCDNgREoa14Snht5BKws=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.crl rsync://rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.mft rsync://rpki.ripe.net/repository/DEFAULT/mZKB6H1em4dY8kDnju9xAsQBIYk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 28 Jan 2026 05:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fd:d3:69:23:ff:17:24:7c:55:97:2f:eb:6b:c7:77:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=999281e87d5e9b8758f240e78eef7102c4012189 Validity Not Before: Jan 27 05:00:49 2026 GMT Not After : Jan 28 05:00:49 2026 GMT Subject: CN=de30ba37c8c67e8a0e6d3f4392ae5ca3b09b1178 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:69:76:2f:62:33:e7:ba:69:02:5a:64:c9:a8: c6:3f:a4:df:11:27:b4:ac:28:20:fc:fd:c8:00:dd: 50:fa:d0:96:59:37:27:f9:cc:1f:03:ba:a4:38:6e: bb:f0:c8:08:78:60:47:35:4b:23:fb:23:67:df:6e: bd:a6:1a:ed:e5:88:e1:15:b7:74:f1:f4:27:d6:d9: 56:8d:61:a2:3f:1b:5f:47:0f:88:55:c7:b9:5b:e1: d9:5c:40:ed:42:e9:ba:30:47:15:ab:e0:72:16:22: 5d:6e:e1:10:d3:0a:d6:9f:7f:4c:c6:06:0d:bb:98: 1f:e7:f2:e2:a7:ec:8e:57:3b:e0:ef:f4:a6:30:8e: 70:7e:6c:cb:4c:1b:4e:84:44:d2:12:bd:ff:0a:cd: 22:44:29:b4:1f:3b:88:48:66:53:30:a5:0b:42:27: f3:d5:7d:c1:83:95:4f:94:47:50:a8:9e:a2:7f:6b: 8e:93:26:e0:15:8a:0f:db:ec:3a:dc:93:b6:1e:78: 70:e7:2c:e3:78:84:42:e2:09:31:72:42:51:0e:f9: 52:4e:69:79:a7:aa:75:b6:6e:b2:7e:49:12:ab:c7: d4:06:ed:71:ca:41:66:07:71:0f:98:45:63:0e:98: 63:be:56:ff:c8:ad:33:25:03:29:22:08:9a:36:a3: 62:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:30:BA:37:C8:C6:7E:8A:0E:6D:3F:43:92:AE:5C:A3:B0:9B:11:78 X509v3 Authority Key Identifier: keyid:99:92:81:E8:7D:5E:9B:87:58:F2:40:E7:8E:EF:71:02:C4:01:21:89 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mZKB6H1em4dY8kDnju9xAsQBIYk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/77/b83863-5f4b-42e3-b822-a0f00be3bce1/1/mZKB6H1em4dY8kDnju9xAsQBIYk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8e:48:7c:e4:67:39:f7:a2:60:47:ee:c4:93:46:42:33:c1:46: e4:67:2e:5c:7a:46:8d:e5:3b:8c:8e:cb:13:8d:3c:13:ae:79: d0:3e:33:d8:86:d6:57:5f:d3:10:07:bf:25:39:8f:bd:9d:5f: 9e:d5:8c:14:05:4f:ec:24:01:bd:6a:c4:92:de:46:71:ea:9d: 7e:81:2b:16:08:18:a2:10:8b:4d:ff:6d:a3:ef:f4:ab:6d:30: 83:4e:ea:8e:44:55:d9:cf:cf:44:19:29:c2:33:39:d2:58:f2: fa:94:c7:14:a8:59:c1:02:74:56:b9:38:1a:cc:15:b3:e2:55: ff:a9:ae:a8:19:0a:bb:85:ff:71:79:1b:58:b1:f2:6e:19:31: 6b:82:52:cb:73:6c:49:8d:4d:af:58:6a:f4:5b:8f:ed:70:7d: 92:a3:0b:76:dd:30:b4:47:a5:fb:d2:da:11:ad:80:3a:fb:85: 6b:d8:b3:bd:de:fe:e3:51:74:c0:c1:05:6a:02:32:e3:f9:6b: 0b:db:12:72:2e:09:f8:fe:b7:37:7e:ae:60:f8:41:91:fb:e2: 0e:55:ee:09:c8:d7:88:90:74:4d:1b:59:49:3a:d9:a9:6e:22: b3:e9:5e:0a:3d:dc:18:d8:e4:ec:de:57:fe:38:57:af:04:1b: 41:0a:34:b3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv902kj/xckfFWXL+trx3exMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk5OTI4MWU4N2Q1ZTliODc1OGYyNDBlNzhlZWY3MTAyYzQw MTIxODkwHhcNMjYwMTI3MDUwMDQ5WhcNMjYwMTI4MDUwMDQ5WjAzMTEwLwYDVQQD EyhkZTMwYmEzN2M4YzY3ZThhMGU2ZDNmNDM5MmFlNWNhM2IwOWIxMTc4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtml2L2Iz57ppAlpkyajGP6TfESe0 rCgg/P3IAN1Q+tCWWTcn+cwfA7qkOG678MgIeGBHNUsj+yNn3269phrt5YjhFbd0 8fQn1tlWjWGiPxtfRw+IVce5W+HZXEDtQum6MEcVq+ByFiJdbuEQ0wrWn39MxgYN u5gf5/Lip+yOVzvg7/SmMI5wfmzLTBtOhETSEr3/Cs0iRCm0HzuISGZTMKULQifz 1X3Bg5VPlEdQqJ6if2uOkybgFYoP2+w63JO2Hnhw5yzjeIRC4gkxckJRDvlSTml5 p6p1tm6yfkkSq8fUBu1xykFmB3EPmEVjDphjvlb/yK0zJQMpIgiaNqNiNQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFN4wujfIxn6KDm0/Q5KuXKOwmxF4MB8GA1UdIwQY MBaAFJmSgeh9XpuHWPJA547vcQLEASGJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbVpLQjZIMWVtNGRZOGtEbmp1OXhBc1FCSVlrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ny9iODM4NjMtNWY0Yi00MmUzLWI4MjIt YTBmMDBiZTNiY2UxLzEvbVpLQjZIMWVtNGRZOGtEbmp1OXhBc1FCSVlrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Ny9iODM4NjMtNWY0Yi00MmUzLWI4MjItYTBmMDBiZTNiY2Ux LzEvbVpLQjZIMWVtNGRZOGtEbmp1OXhBc1FCSVlrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjkh85Gc5 96JgR+7Ek0ZCM8FG5GcuXHpGjeU7jI7LE408E6550D4z2IbWV1/TEAe/JTmPvZ1f ntWMFAVP7CQBvWrEkt5GceqdfoErFggYohCLTf9to+/0q20wg07qjkRV2c/PRBkp wjM50ljy+pTHFKhZwQJ0Vrk4GswVs+JV/6muqBkKu4X/cXkbWLHybhkxa4JSy3Ns SY1Nr1hq9FuP7XB9kqMLdt0wtEel+9LaEa2AOvuFa9izvd7+41F0wMEFagIy4/lr C9sSci4J+P63N36uYPhBkfviDlXuCcjXiJB0TRtZSTrZqW4is+leCj3cGNjk7N5X /jhXrwQbQQo0sw== -----END CERTIFICATE-----Generated at Tue Jan 27 12:44:22 2026 by rpki-client