This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/16c64b-b965-49cc-aa40-0dc20a7d82b9/1/9zHDObGGFyK__oZyGDFM4SlcPIU.mft File: 9zHDObGGFyK__oZyGDFM4SlcPIU.mft (raw, json) Hash identifier: p/N7PNEmVkWd1jfNIv86qFHCKI4IdlSgXnwZeoYUgPU= Subject key identifier: D2:3E:34:B2:4A:0F:31:10:4D:B8:CE:15:72:43:B7:4B:25:A0:11:57 Authority key identifier: F7:31:C3:39:B1:86:17:22:BF:FE:86:72:18:31:4C:E1:29:5C:3C:85 Certificate issuer: /CN=f731c339b1861722bffe867218314ce1295c3c85 Certificate serial: 019BFD9C711D59F9779D3589F5E2200F0CCF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9zHDObGGFyK__oZyGDFM4SlcPIU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/16c64b-b965-49cc-aa40-0dc20a7d82b9/1/9zHDObGGFyK__oZyGDFM4SlcPIU.mft Manifest number: 17ED Signing time: Tue 27 Jan 2026 04:00:46 +0000 Manifest this update: Tue 27 Jan 2026 04:00:46 +0000 Manifest next update: Wed 28 Jan 2026 04:00:46 +0000 Files and hashes: 1: 9zHDObGGFyK__oZyGDFM4SlcPIU.crl (hash: k/8QBKKalmp81OBb1e3P/jBTZW0iCXLSjqbBG+ZDCYY=) 2: DM0EXQBkZr0e7E2rftq5-TtNVUc.roa (hash: 4qPVGZtejJWXy8T9lJtHmIGF6CkNf88ym74PPqmxTh0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/16c64b-b965-49cc-aa40-0dc20a7d82b9/1/9zHDObGGFyK__oZyGDFM4SlcPIU.crl rsync://rpki.ripe.net/repository/DEFAULT/78/16c64b-b965-49cc-aa40-0dc20a7d82b9/1/9zHDObGGFyK__oZyGDFM4SlcPIU.mft rsync://rpki.ripe.net/repository/DEFAULT/9zHDObGGFyK__oZyGDFM4SlcPIU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 28 Jan 2026 00:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fd:9c:71:1d:59:f9:77:9d:35:89:f5:e2:20:0f:0c:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f731c339b1861722bffe867218314ce1295c3c85 Validity Not Before: Jan 27 04:00:46 2026 GMT Not After : Jan 28 04:00:46 2026 GMT Subject: CN=d23e34b24a0f31104db8ce157243b74b25a01157 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:03:56:e5:be:3e:1c:66:5f:5a:37:92:b5:72: 10:e1:87:2e:6f:d1:55:d8:32:4f:f0:78:48:39:88: c5:74:a9:0c:56:22:31:d6:0b:30:ec:de:e9:1b:c5: 91:3c:4c:78:43:be:97:c5:92:92:bb:92:57:da:00: 8e:51:31:0d:38:c9:6e:cd:83:3f:87:72:0a:80:7b: 0b:bb:da:54:7e:da:3a:25:64:9f:95:51:75:b4:78: e3:8b:3d:d4:a5:21:d6:ee:b6:2d:d9:b1:56:d6:d5: 75:f2:7b:cd:1a:87:62:8a:99:2e:18:dd:6c:5d:97: 6b:e5:ac:f9:c5:05:2a:27:2a:5b:0b:0e:55:77:4f: 40:2a:fd:04:ee:3d:02:b6:bd:52:79:cc:7c:03:ff: 61:0d:e0:ab:d8:aa:63:4d:9c:aa:70:71:f8:10:a1: 3d:ac:4f:a5:d3:fb:01:e1:7d:1f:ef:85:49:cf:74: 5f:48:74:e2:63:ed:ed:70:c0:c4:cf:ac:b5:3f:02: 79:28:2f:5d:ca:4a:aa:62:ce:c9:7f:f6:c2:d5:64: fa:5f:80:00:c9:02:58:32:84:e9:03:48:a0:31:eb: 4e:8e:36:0a:12:37:37:90:b8:a5:6d:55:6d:3b:fb: 9f:b9:58:3c:07:04:ce:65:0b:99:df:d4:d3:91:0d: 2d:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:3E:34:B2:4A:0F:31:10:4D:B8:CE:15:72:43:B7:4B:25:A0:11:57 X509v3 Authority Key Identifier: keyid:F7:31:C3:39:B1:86:17:22:BF:FE:86:72:18:31:4C:E1:29:5C:3C:85 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9zHDObGGFyK__oZyGDFM4SlcPIU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/16c64b-b965-49cc-aa40-0dc20a7d82b9/1/9zHDObGGFyK__oZyGDFM4SlcPIU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/78/16c64b-b965-49cc-aa40-0dc20a7d82b9/1/9zHDObGGFyK__oZyGDFM4SlcPIU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 18:98:93:12:80:d6:8e:92:82:e6:2d:4a:be:7f:9f:64:7d:0b: 2b:6f:d6:53:e1:37:03:b6:2f:84:bb:b1:67:e8:29:b9:96:2c: 49:8d:bd:70:7a:51:68:6e:55:b8:e9:88:34:05:26:f2:9d:c9: b3:67:c8:d6:1a:28:44:30:37:70:db:d2:86:42:b1:7d:e6:0e: 49:90:e2:c1:ca:4c:e9:84:1d:cc:bf:4c:ea:09:f2:b4:bd:9d: 8c:94:4d:6d:f8:7f:6b:8a:19:48:25:d0:6e:93:c6:32:e5:4c: f6:98:2c:6b:c8:ed:91:04:19:e3:28:f0:14:4c:bb:6c:17:22: 2b:4e:30:b7:12:91:3a:fc:e2:b2:89:38:54:36:da:95:54:c5: bc:00:98:01:bd:83:4d:19:0d:33:83:f2:0b:da:c0:bb:38:bc: 66:a9:ec:ed:0f:2e:fc:29:2e:1c:8f:42:9b:3a:8d:e9:fa:0c: fa:c7:89:39:e9:e9:7a:50:1e:f3:22:c9:f2:1d:8b:3e:73:c6: ef:76:01:33:2a:08:8b:ef:34:e7:25:7e:da:0e:1c:47:69:42: 3d:16:82:1c:0d:d3:f2:24:17:08:df:c2:32:b1:d9:75:6f:d6: 63:97:a1:48:ed:cb:68:76:14:42:e0:6a:54:99:40:bb:c1:d7: f3:f7:fa:7b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv9nHEdWfl3nTWJ9eIgDwzPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY3MzFjMzM5YjE4NjE3MjJiZmZlODY3MjE4MzE0Y2UxMjk1 YzNjODUwHhcNMjYwMTI3MDQwMDQ2WhcNMjYwMTI4MDQwMDQ2WjAzMTEwLwYDVQQD EyhkMjNlMzRiMjRhMGYzMTEwNGRiOGNlMTU3MjQzYjc0YjI1YTAxMTU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7QNW5b4+HGZfWjeStXIQ4Ycub9FV 2DJP8HhIOYjFdKkMViIx1gsw7N7pG8WRPEx4Q76XxZKSu5JX2gCOUTENOMluzYM/ h3IKgHsLu9pUfto6JWSflVF1tHjjiz3UpSHW7rYt2bFW1tV18nvNGodiipkuGN1s XZdr5az5xQUqJypbCw5Vd09AKv0E7j0Ctr1Secx8A/9hDeCr2KpjTZyqcHH4EKE9 rE+l0/sB4X0f74VJz3RfSHTiY+3tcMDEz6y1PwJ5KC9dykqqYs7Jf/bC1WT6X4AA yQJYMoTpA0igMetOjjYKEjc3kLilbVVtO/ufuVg8BwTOZQuZ39TTkQ0trwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNI+NLJKDzEQTbjOFXJDt0sloBFXMB8GA1UdIwQY MBaAFPcxwzmxhhciv/6GchgxTOEpXDyFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOXpIRE9iR0dGeUtfX29aeUdERk00U2xjUElVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OC8xNmM2NGItYjk2NS00OWNjLWFhNDAt MGRjMjBhN2Q4MmI5LzEvOXpIRE9iR0dGeUtfX29aeUdERk00U2xjUElVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83OC8xNmM2NGItYjk2NS00OWNjLWFhNDAtMGRjMjBhN2Q4MmI5 LzEvOXpIRE9iR0dGeUtfX29aeUdERk00U2xjUElVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGJiTEoDW jpKC5i1Kvn+fZH0LK2/WU+E3A7YvhLuxZ+gpuZYsSY29cHpRaG5VuOmINAUm8p3J s2fI1hooRDA3cNvShkKxfeYOSZDiwcpM6YQdzL9M6gnytL2djJRNbfh/a4oZSCXQ bpPGMuVM9pgsa8jtkQQZ4yjwFEy7bBciK04wtxKROvzisok4VDbalVTFvACYAb2D TRkNM4PyC9rAuzi8Zqns7Q8u/CkuHI9CmzqN6foM+seJOenpelAe8yLJ8h2LPnPG 73YBMyoIi+805yV+2g4cR2lCPRaCHA3T8iQXCN/CMrHZdW/WY5ehSO3LaHYUQuBq VJlAu8HX8/f6ew== -----END CERTIFICATE-----Generated at Tue Jan 27 08:29:14 2026 by rpki-client