This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/48b407-6d94-49ae-a3d8-72c83128761b/1/rdNTkzZ0pWCPbR7i2rT2TIv_jzk.mft File: rdNTkzZ0pWCPbR7i2rT2TIv_jzk.mft (raw, json) Hash identifier: IatyGZlpvyrrKruPkNU5vf2t3X4l1GFG/ZInMAT+fVo= Subject key identifier: BD:E5:88:A3:10:0B:56:50:F3:D1:3B:D0:EE:FA:AF:1D:01:95:12:22 Authority key identifier: AD:D3:53:93:36:74:A5:60:8F:6D:1E:E2:DA:B4:F6:4C:8B:FF:8F:39 Certificate issuer: /CN=add353933674a5608f6d1ee2dab4f64c8bff8f39 Certificate serial: 019B9E581A70E37D71893DB4729C77E81923 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rdNTkzZ0pWCPbR7i2rT2TIv_jzk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/48b407-6d94-49ae-a3d8-72c83128761b/1/rdNTkzZ0pWCPbR7i2rT2TIv_jzk.mft Manifest number: 17DC Signing time: Thu 08 Jan 2026 16:02:12 +0000 Manifest this update: Thu 08 Jan 2026 16:02:12 +0000 Manifest next update: Fri 09 Jan 2026 16:02:12 +0000 Files and hashes: 1: 16oj0KN5oVRu5RHVQyd660OcQhs.roa (hash: TLQlSbdPdjZyztttOHY25ysKwRVnJ6KupToVN+WGfno=) 2: 3vf-Yp-2fomUCGxxsuFuZBkPGGQ.roa (hash: LZ4veM7bkOEXkp7bq57kS6QDZIvIWlhUv4Gp6OCzQzs=) 3: mJc1uOIr1hw4GTVUxLc2mBswysw.roa (hash: diUF/JvZyAKF5uqv3TnUWrIHgd/X2LtxFoqD530JnlA=) 4: rdNTkzZ0pWCPbR7i2rT2TIv_jzk.crl (hash: uGg8tN8KZ6ZdJfSlrV31ylScft0eAe52tctvsnEUZdA=) 5: wLjgY2YgiPJPNkwqWCfj8Fua7KE.roa (hash: DmNGe8jEay8LOtA+IZOJs6FHJm88udn1LG9+DVbdkxA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7c/48b407-6d94-49ae-a3d8-72c83128761b/1/rdNTkzZ0pWCPbR7i2rT2TIv_jzk.crl rsync://rpki.ripe.net/repository/DEFAULT/7c/48b407-6d94-49ae-a3d8-72c83128761b/1/rdNTkzZ0pWCPbR7i2rT2TIv_jzk.mft rsync://rpki.ripe.net/repository/DEFAULT/rdNTkzZ0pWCPbR7i2rT2TIv_jzk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 09 Jan 2026 16:02:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:9e:58:1a:70:e3:7d:71:89:3d:b4:72:9c:77:e8:19:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=add353933674a5608f6d1ee2dab4f64c8bff8f39 Validity Not Before: Jan 8 16:02:12 2026 GMT Not After : Jan 9 16:02:12 2026 GMT Subject: CN=bde588a3100b5650f3d13bd0eefaaf1d01951222 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:57:c7:a1:eb:96:70:ec:b3:9c:4c:79:6b:b1: c3:fa:45:93:d9:c8:87:d3:88:83:a1:8a:39:09:5d: 78:1e:83:fb:5f:e4:3e:e9:31:90:7d:08:38:6f:4a: 9a:7f:53:8d:d4:2c:a7:c8:5c:6e:11:d7:72:bb:99: 75:e2:a4:e3:a8:3f:80:84:f4:9f:4e:d9:98:31:f8: 34:f6:48:28:5d:7e:ac:63:e2:5a:02:a5:ed:26:45: c2:33:61:de:78:06:b8:43:fe:76:91:fe:54:60:47: aa:82:fb:b4:d5:95:60:5b:04:4e:17:2b:82:2b:6d: 1b:0e:2b:cf:f6:58:6f:82:35:be:4f:df:fb:a3:b0: 52:89:af:a2:b1:35:1a:cb:63:d0:e4:43:30:b7:74: 49:2b:29:f8:7e:15:8f:e3:ec:4c:68:41:b1:1f:05: 77:ad:39:bc:4a:50:b8:e1:4d:8a:b5:0a:14:09:e1: 62:d4:02:04:2f:75:5d:04:b2:8e:a6:c6:6a:7a:41: 7b:75:51:d7:f0:e7:18:1c:28:67:e5:51:0e:42:e7: 76:f7:a8:47:a7:51:bd:dc:49:75:7a:26:36:c6:e9: b4:c1:2d:6d:1c:c6:49:22:7f:03:de:21:02:da:4a: d3:d7:5b:a4:9c:9e:fb:0c:ff:fd:80:e9:00:c7:e3: 83:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:E5:88:A3:10:0B:56:50:F3:D1:3B:D0:EE:FA:AF:1D:01:95:12:22 X509v3 Authority Key Identifier: keyid:AD:D3:53:93:36:74:A5:60:8F:6D:1E:E2:DA:B4:F6:4C:8B:FF:8F:39 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rdNTkzZ0pWCPbR7i2rT2TIv_jzk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/48b407-6d94-49ae-a3d8-72c83128761b/1/rdNTkzZ0pWCPbR7i2rT2TIv_jzk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/48b407-6d94-49ae-a3d8-72c83128761b/1/rdNTkzZ0pWCPbR7i2rT2TIv_jzk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 83:5e:23:00:d4:f4:c4:40:68:11:6f:51:95:83:03:7d:47:a4: 8b:b2:32:d6:50:fe:a5:8b:15:b7:2b:84:45:97:81:3a:78:df: 43:24:38:02:44:9b:37:7b:60:11:0e:03:07:f6:cd:e1:aa:03: 50:a9:48:9c:de:ab:b6:82:c8:89:35:14:30:2f:fc:5e:09:74: 9e:af:0c:52:df:07:9e:f2:b3:ed:cc:74:4c:25:99:0f:ce:ab: d5:8b:78:51:70:e7:04:7f:1f:4d:dc:cc:48:17:ce:13:48:57: 94:7f:d7:b8:71:79:4c:91:9c:0a:61:7a:a0:8a:41:7c:f7:97: 40:e3:25:04:c2:fe:84:0f:63:9f:6d:60:8c:ef:9d:99:75:0d: 9b:fd:27:9b:bd:fd:31:ec:19:ea:38:9b:c1:52:0c:52:e9:07: 7c:a5:c1:db:1e:ff:11:49:32:32:02:f2:06:15:5c:06:b0:4b: b6:2a:29:64:68:2c:42:24:ed:57:e3:2a:90:00:62:2b:0a:82: 39:c8:d4:bb:33:3b:4e:ed:8c:98:d6:8a:72:44:21:c0:e3:db: 69:58:25:ef:c1:dc:60:5f:b7:ea:c9:f2:0c:06:ec:09:58:ec: d5:03:bc:1d:7f:35:a7:a1:e2:45:a9:bf:64:66:20:2a:f4:6a: f1:28:f0:42 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZueWBpw431xiT20cpx36BkjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFkZDM1MzkzMzY3NGE1NjA4ZjZkMWVlMmRhYjRmNjRjOGJm ZjhmMzkwHhcNMjYwMTA4MTYwMjEyWhcNMjYwMTA5MTYwMjEyWjAzMTEwLwYDVQQD EyhiZGU1ODhhMzEwMGI1NjUwZjNkMTNiZDBlZWZhYWYxZDAxOTUxMjIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjFfHoeuWcOyznEx5a7HD+kWT2ciH 04iDoYo5CV14HoP7X+Q+6TGQfQg4b0qaf1ON1CynyFxuEddyu5l14qTjqD+AhPSf TtmYMfg09kgoXX6sY+JaAqXtJkXCM2HeeAa4Q/52kf5UYEeqgvu01ZVgWwROFyuC K20bDivP9lhvgjW+T9/7o7BSia+isTUay2PQ5EMwt3RJKyn4fhWP4+xMaEGxHwV3 rTm8SlC44U2KtQoUCeFi1AIEL3VdBLKOpsZqekF7dVHX8OcYHChn5VEOQud296hH p1G93El1eiY2xum0wS1tHMZJIn8D3iEC2krT11uknJ77DP/9gOkAx+ODzQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFL3liKMQC1ZQ89E70O76rx0BlRIiMB8GA1UdIwQY MBaAFK3TU5M2dKVgj20e4tq09kyL/485MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcmROVGt6WjBwV0NQYlI3aTJyVDJUSXZfanprLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yy80OGI0MDctNmQ5NC00OWFlLWEzZDgt NzJjODMxMjg3NjFiLzEvcmROVGt6WjBwV0NQYlI3aTJyVDJUSXZfanprLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Yy80OGI0MDctNmQ5NC00OWFlLWEzZDgtNzJjODMxMjg3NjFi LzEvcmROVGt6WjBwV0NQYlI3aTJyVDJUSXZfanprLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAg14jANT0 xEBoEW9RlYMDfUeki7Iy1lD+pYsVtyuERZeBOnjfQyQ4AkSbN3tgEQ4DB/bN4aoD UKlInN6rtoLIiTUUMC/8Xgl0nq8MUt8HnvKz7cx0TCWZD86r1Yt4UXDnBH8fTdzM SBfOE0hXlH/XuHF5TJGcCmF6oIpBfPeXQOMlBML+hA9jn21gjO+dmXUNm/0nm739 MewZ6jibwVIMUukHfKXB2x7/EUkyMgLyBhVcBrBLtiopZGgsQiTtV+MqkABiKwqC OcjUuzM7Tu2MmNaKckQhwOPbaVgl78HcYF+36snyDAbsCVjs1QO8HX81p6HiRam/ ZGYgKvRq8SjwQg== -----END CERTIFICATE-----Generated at Fri Jan 9 02:20:24 2026 by rpki-client