This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/48b407-6d94-49ae-a3d8-72c83128761b/1/rdNTkzZ0pWCPbR7i2rT2TIv_jzk.mft File: rdNTkzZ0pWCPbR7i2rT2TIv_jzk.mft (raw, json) Hash identifier: H/uHhFmr+Qgu7bkDIa8Q7ij7oqWz78sw+6Mv72KU750= Subject key identifier: 43:86:55:18:EF:C6:4C:E2:0F:83:CC:1D:E1:7B:F6:19:62:28:BD:B9 Authority key identifier: AD:D3:53:93:36:74:A5:60:8F:6D:1E:E2:DA:B4:F6:4C:8B:FF:8F:39 Certificate issuer: /CN=add353933674a5608f6d1ee2dab4f64c8bff8f39 Certificate serial: 019B76DC07DCB1FEBA3338DA0D3AD0438E38 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rdNTkzZ0pWCPbR7i2rT2TIv_jzk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/48b407-6d94-49ae-a3d8-72c83128761b/1/rdNTkzZ0pWCPbR7i2rT2TIv_jzk.mft Manifest number: 17C7 Signing time: Thu 01 Jan 2026 00:01:29 +0000 Manifest this update: Thu 01 Jan 2026 00:01:29 +0000 Manifest next update: Fri 02 Jan 2026 00:01:29 +0000 Files and hashes: 1: 2FhEmcxYfTh9K3J3avRiCdDc75E.roa (hash: tOhuHX2KWyFG2B0a0se5O81lEiJFRABFP38mxTII8TU=) 2: 8nUvj8lY7CMTGbwnkVwsxBWh6aw.roa (hash: Aix9ab5boOQSnVduDf/PzYb3KHZGbO4bW6Ul5fxfzk8=) 3: bdkHO-cMRs9yWZFdjBV-qe9nYgE.roa (hash: qubjkKMt0NactOF0nXU7jk7H1UZ/exx8oL0CEz67yU4=) 4: rdNTkzZ0pWCPbR7i2rT2TIv_jzk.crl (hash: UvGdyPfV5v1GKnyYtCb4q/+DJE6wp5gb9EwSLdEGvLw=) 5: yT5ungE9NAr5a95GJEQ0WzC2bc4.roa (hash: 3Q09eXeA/SVTTdlEZBa1ZfiKoZceB51s1iopXPbgTXw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7c/48b407-6d94-49ae-a3d8-72c83128761b/1/rdNTkzZ0pWCPbR7i2rT2TIv_jzk.crl rsync://rpki.ripe.net/repository/DEFAULT/7c/48b407-6d94-49ae-a3d8-72c83128761b/1/rdNTkzZ0pWCPbR7i2rT2TIv_jzk.mft rsync://rpki.ripe.net/repository/DEFAULT/rdNTkzZ0pWCPbR7i2rT2TIv_jzk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 02 Jan 2026 00:01:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:dc:07:dc:b1:fe:ba:33:38:da:0d:3a:d0:43:8e:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=add353933674a5608f6d1ee2dab4f64c8bff8f39 Validity Not Before: Jan 1 00:01:29 2026 GMT Not After : Jan 2 00:01:29 2026 GMT Subject: CN=43865518efc64ce20f83cc1de17bf6196228bdb9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:6e:db:5e:1c:ba:df:f3:ed:4f:7f:c8:87:2a: de:48:98:67:78:a5:1d:5d:ff:b8:b9:d8:1d:59:7a: 47:ea:a4:65:39:7a:52:ab:8f:63:30:78:ac:b6:f9: c5:b0:25:d9:dc:09:37:5d:2c:0f:92:66:cd:f5:49: ae:49:71:44:9c:20:73:d7:11:84:1a:2e:dc:13:b0: 84:05:7c:22:ba:55:d2:0c:64:a0:3f:5d:e3:a4:03: 95:2e:3e:13:08:42:68:da:24:19:86:7f:35:5b:ae: 1a:54:0d:e7:60:2a:19:ee:35:3b:fc:97:7b:51:0a: 4e:84:b5:4d:8e:1a:b9:8b:34:91:ad:5a:e0:9b:bb: 11:f0:c8:19:26:bf:d3:6a:ab:cf:7e:32:40:7f:7a: aa:76:3c:19:fe:23:7e:2f:7d:31:44:f8:20:9f:9e: cb:e7:3f:01:65:26:30:47:9f:53:b1:e3:57:fa:0d: c6:bb:76:76:dc:16:0d:1f:58:e6:1a:3d:8a:19:b5: 12:6a:f2:5e:1f:93:d1:94:0e:36:c8:6c:f4:3d:3a: 36:48:ea:96:50:86:53:f0:d0:df:fd:20:3c:46:6d: 37:fa:e3:8d:13:d4:db:07:f6:51:e1:cb:35:e9:d9: df:6f:2a:c9:83:cf:ad:b4:b7:56:49:53:77:17:d9: 53:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:86:55:18:EF:C6:4C:E2:0F:83:CC:1D:E1:7B:F6:19:62:28:BD:B9 X509v3 Authority Key Identifier: keyid:AD:D3:53:93:36:74:A5:60:8F:6D:1E:E2:DA:B4:F6:4C:8B:FF:8F:39 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rdNTkzZ0pWCPbR7i2rT2TIv_jzk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/48b407-6d94-49ae-a3d8-72c83128761b/1/rdNTkzZ0pWCPbR7i2rT2TIv_jzk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/48b407-6d94-49ae-a3d8-72c83128761b/1/rdNTkzZ0pWCPbR7i2rT2TIv_jzk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7d:b3:87:b0:d6:c3:af:48:9e:b3:37:91:3c:c1:20:19:9f:32: ad:d7:94:0f:bc:bf:6f:4c:63:16:2d:ea:b5:b4:ec:11:9d:a7: 3d:36:46:da:57:bf:97:bb:17:1c:e7:10:0c:7b:6a:22:c2:77: 4f:fb:53:31:87:eb:22:a1:36:99:74:78:47:9b:62:ed:6e:77: c8:28:b1:3e:9b:cf:ca:0e:3e:f3:b1:1c:78:75:a1:c5:f4:1c: 22:25:68:62:87:b3:97:1e:9f:2a:c6:f7:ab:d9:6f:32:e4:9b: 2d:24:9e:61:b8:3c:d1:1d:7b:62:aa:52:1a:1a:64:1c:9e:48: 31:2b:30:ae:c3:1a:ce:41:0a:f7:da:0e:80:92:e2:bf:6d:a3: ed:bc:8c:2e:ab:28:ac:bf:8c:29:01:51:67:e7:c4:c7:be:3a: 23:ad:3b:1d:7b:88:2a:8b:2c:f3:bd:ec:ae:16:d2:5e:6c:6e: 4c:7e:fa:a5:ed:80:99:c4:65:a7:87:fa:ea:6c:ae:49:e4:f6: ec:c1:ef:78:40:18:24:ec:29:09:cd:35:e2:0a:d4:fd:18:21: eb:88:88:57:35:c0:5e:13:c5:c7:ab:b4:11:93:be:bc:c9:86: 3a:77:a4:00:09:7e:a3:3e:b3:31:b6:83:68:99:cb:45:75:9f: 41:7b:df:c5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZt23Afcsf66MzjaDTrQQ444MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFkZDM1MzkzMzY3NGE1NjA4ZjZkMWVlMmRhYjRmNjRjOGJm ZjhmMzkwHhcNMjYwMTAxMDAwMTI5WhcNMjYwMTAyMDAwMTI5WjAzMTEwLwYDVQQD Eyg0Mzg2NTUxOGVmYzY0Y2UyMGY4M2NjMWRlMTdiZjYxOTYyMjhiZGI5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl27bXhy63/PtT3/IhyreSJhneKUd Xf+4udgdWXpH6qRlOXpSq49jMHistvnFsCXZ3Ak3XSwPkmbN9UmuSXFEnCBz1xGE Gi7cE7CEBXwiulXSDGSgP13jpAOVLj4TCEJo2iQZhn81W64aVA3nYCoZ7jU7/Jd7 UQpOhLVNjhq5izSRrVrgm7sR8MgZJr/TaqvPfjJAf3qqdjwZ/iN+L30xRPggn57L 5z8BZSYwR59TseNX+g3Gu3Z23BYNH1jmGj2KGbUSavJeH5PRlA42yGz0PTo2SOqW UIZT8NDf/SA8Rm03+uONE9TbB/ZR4cs16dnfbyrJg8+ttLdWSVN3F9lTawIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEOGVRjvxkziD4PMHeF79hliKL25MB8GA1UdIwQY MBaAFK3TU5M2dKVgj20e4tq09kyL/485MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcmROVGt6WjBwV0NQYlI3aTJyVDJUSXZfanprLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yy80OGI0MDctNmQ5NC00OWFlLWEzZDgt NzJjODMxMjg3NjFiLzEvcmROVGt6WjBwV0NQYlI3aTJyVDJUSXZfanprLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Yy80OGI0MDctNmQ5NC00OWFlLWEzZDgtNzJjODMxMjg3NjFi LzEvcmROVGt6WjBwV0NQYlI3aTJyVDJUSXZfanprLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfbOHsNbD r0ieszeRPMEgGZ8yrdeUD7y/b0xjFi3qtbTsEZ2nPTZG2le/l7sXHOcQDHtqIsJ3 T/tTMYfrIqE2mXR4R5ti7W53yCixPpvPyg4+87EceHWhxfQcIiVoYoezlx6fKsb3 q9lvMuSbLSSeYbg80R17YqpSGhpkHJ5IMSswrsMazkEK99oOgJLiv22j7byMLqso rL+MKQFRZ+fEx746I607HXuIKoss873srhbSXmxuTH76pe2AmcRlp4f66myuSeT2 7MHveEAYJOwpCc014grU/Rgh64iIVzXAXhPFx6u0EZO+vMmGOnekAAl+oz6zMbaD aJnLRXWfQXvfxQ== -----END CERTIFICATE-----Generated at Thu Jan 1 02:05:43 2026 by rpki-client