This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/242911-93c0-45e7-9012-4939bbfdfb86/1/KMaADXS8QQW0DnfqCFugJtvuw18.mft File: KMaADXS8QQW0DnfqCFugJtvuw18.mft (raw, json) Hash identifier: DXN581ggNfxNKhqpwoR61zwYL5DJN6EdXonkzss1HsM= Subject key identifier: 84:74:3F:77:6C:E2:94:F6:27:DB:BA:EF:5E:FE:61:C0:18:14:1D:EE Authority key identifier: 28:C6:80:0D:74:BC:41:05:B4:0E:77:EA:08:5B:A0:26:DB:EE:C3:5F Certificate issuer: /CN=28c6800d74bc4105b40e77ea085ba026dbeec35f Certificate serial: 019BD50E772F7E164AC37C9D2D896B9114F4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KMaADXS8QQW0DnfqCFugJtvuw18.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/242911-93c0-45e7-9012-4939bbfdfb86/1/KMaADXS8QQW0DnfqCFugJtvuw18.mft Manifest number: 1217 Signing time: Mon 19 Jan 2026 07:00:53 +0000 Manifest this update: Mon 19 Jan 2026 07:00:53 +0000 Manifest next update: Tue 20 Jan 2026 07:00:53 +0000 Files and hashes: 1: KMaADXS8QQW0DnfqCFugJtvuw18.crl (hash: RPYLezjNyyi75eDZeS59Asi+z5UjTlK5RoYKETGM3BE=) 2: QSEA24W-jJh0kwyMga3SDhfm0mU.roa (hash: oB/S9QQ/OX6lPuAGVG5qR2duSEJnIXuFNYHPn1v0/Ps=) 3: qU2Uxsa9OcphCZGNqnBFa2jyqCY.roa (hash: aLe2FX6wmJtGZLPPBo86FvVeGPLBBM9MJiBEGdjzEKA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/242911-93c0-45e7-9012-4939bbfdfb86/1/KMaADXS8QQW0DnfqCFugJtvuw18.crl rsync://rpki.ripe.net/repository/DEFAULT/7d/242911-93c0-45e7-9012-4939bbfdfb86/1/KMaADXS8QQW0DnfqCFugJtvuw18.mft rsync://rpki.ripe.net/repository/DEFAULT/KMaADXS8QQW0DnfqCFugJtvuw18.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 07:00:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:d5:0e:77:2f:7e:16:4a:c3:7c:9d:2d:89:6b:91:14:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28c6800d74bc4105b40e77ea085ba026dbeec35f Validity Not Before: Jan 19 07:00:53 2026 GMT Not After : Jan 20 07:00:53 2026 GMT Subject: CN=84743f776ce294f627dbbaef5efe61c018141dee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:67:b4:bc:19:ad:52:d3:01:3c:91:e1:29:89: a8:66:32:47:d2:2d:18:c0:5b:9d:3e:42:91:8d:9a: f7:c6:24:d6:91:3f:28:6d:9d:95:e7:62:9f:7c:6e: ef:fe:66:f3:8b:4b:61:c2:e7:c3:e2:03:11:9f:95: 97:dc:18:37:54:95:f7:4b:54:e0:91:1d:45:9a:2e: 3f:d2:58:84:e8:5c:f3:bb:4c:37:d5:a9:28:74:59: 38:c4:67:fd:7e:db:a2:e8:01:5d:a3:93:93:53:2e: c3:1c:68:fc:04:c2:ac:cf:ab:c4:2a:d2:32:c9:77: f9:e8:86:ec:b8:fb:52:d1:61:a5:bb:eb:e1:2d:b1: d7:92:39:86:74:c7:d1:79:24:4a:fe:07:b6:f1:2e: 93:42:ef:49:70:7c:ca:14:27:23:55:90:3e:28:a5: 28:83:b9:5d:62:39:fd:bc:77:6f:c0:69:ce:05:0e: b3:d8:ca:4b:8d:5d:f9:8d:b7:a7:63:b1:da:49:d5: 54:1e:f4:a3:db:cd:53:74:4e:23:84:ea:2b:cf:54: 97:9b:0e:2d:fb:56:4d:dc:ed:bd:09:66:a7:d0:2f: 02:00:57:c5:6e:61:d3:67:41:7f:59:e4:ae:59:ed: 11:21:7d:d9:1e:b7:fe:56:9f:b2:d9:18:77:1f:e6: 7c:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:74:3F:77:6C:E2:94:F6:27:DB:BA:EF:5E:FE:61:C0:18:14:1D:EE X509v3 Authority Key Identifier: keyid:28:C6:80:0D:74:BC:41:05:B4:0E:77:EA:08:5B:A0:26:DB:EE:C3:5F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KMaADXS8QQW0DnfqCFugJtvuw18.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/242911-93c0-45e7-9012-4939bbfdfb86/1/KMaADXS8QQW0DnfqCFugJtvuw18.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/242911-93c0-45e7-9012-4939bbfdfb86/1/KMaADXS8QQW0DnfqCFugJtvuw18.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 88:46:b3:66:61:9e:7a:41:88:8d:a7:91:33:75:f3:6e:d1:4a: dc:a0:9e:48:f7:9f:9a:1f:be:2d:19:0a:68:3b:74:a4:88:e2: 8c:67:a1:66:b3:64:81:ed:1e:2a:32:b6:a7:fc:30:9e:99:05: 28:86:4c:8f:91:87:e9:1e:34:29:7d:0c:09:dc:9c:7a:f4:9b: 80:0b:b4:4f:41:b3:d7:84:b8:0d:47:a3:ed:74:7e:5a:ba:d9: 0c:f3:fa:cd:27:b3:1e:3c:55:e1:a9:b6:2f:17:83:4a:26:1e: 51:20:a8:91:d3:ac:8d:34:9f:96:27:2a:51:c1:9b:31:d5:fc: 2f:e9:91:31:94:6e:27:d5:1d:5a:36:00:0d:02:ea:9d:bf:bf: dd:ce:a6:a3:1c:5e:d7:8d:4d:27:cc:7f:7d:6d:70:d1:46:85: f8:51:4a:99:d9:4a:3d:b4:e2:43:e2:1f:f2:56:df:59:c5:18: c1:e8:ae:d7:40:eb:3d:1c:e0:1c:17:56:35:ab:71:62:fe:89: a6:7c:bd:98:d3:7a:1c:3c:a5:0e:c1:82:39:41:c7:96:8b:1f: 73:53:4e:79:70:d3:2b:7c:6d:ff:a6:11:f5:be:ac:69:3c:10: 00:dd:4a:7d:c8:f8:97:4f:25:6b:fc:78:d2:ab:14:f4:e0:77: 6e:d2:8d:2d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZvVDncvfhZKw3ydLYlrkRT0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI4YzY4MDBkNzRiYzQxMDViNDBlNzdlYTA4NWJhMDI2ZGJl ZWMzNWYwHhcNMjYwMTE5MDcwMDUzWhcNMjYwMTIwMDcwMDUzWjAzMTEwLwYDVQQD Eyg4NDc0M2Y3NzZjZTI5NGY2MjdkYmJhZWY1ZWZlNjFjMDE4MTQxZGVlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmGe0vBmtUtMBPJHhKYmoZjJH0i0Y wFudPkKRjZr3xiTWkT8obZ2V52KffG7v/mbzi0thwufD4gMRn5WX3Bg3VJX3S1Tg kR1Fmi4/0liE6Fzzu0w31akodFk4xGf9ftui6AFdo5OTUy7DHGj8BMKsz6vEKtIy yXf56IbsuPtS0WGlu+vhLbHXkjmGdMfReSRK/ge28S6TQu9JcHzKFCcjVZA+KKUo g7ldYjn9vHdvwGnOBQ6z2MpLjV35jbenY7HaSdVUHvSj281TdE4jhOorz1SXmw4t +1ZN3O29CWan0C8CAFfFbmHTZ0F/WeSuWe0RIX3ZHrf+Vp+y2Rh3H+Z89QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIR0P3ds4pT2J9u6717+YcAYFB3uMB8GA1UdIwQY MBaAFCjGgA10vEEFtA536ghboCbb7sNfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS01hQURYUzhRUVcwRG5mcUNGdWdKdHZ1dzE4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83ZC8yNDI5MTEtOTNjMC00NWU3LTkwMTIt NDkzOWJiZmRmYjg2LzEvS01hQURYUzhRUVcwRG5mcUNGdWdKdHZ1dzE4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83ZC8yNDI5MTEtOTNjMC00NWU3LTkwMTItNDkzOWJiZmRmYjg2 LzEvS01hQURYUzhRUVcwRG5mcUNGdWdKdHZ1dzE4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiEazZmGe ekGIjaeRM3XzbtFK3KCeSPefmh++LRkKaDt0pIjijGehZrNkge0eKjK2p/wwnpkF KIZMj5GH6R40KX0MCdycevSbgAu0T0Gz14S4DUej7XR+WrrZDPP6zSezHjxV4am2 LxeDSiYeUSCokdOsjTSflicqUcGbMdX8L+mRMZRuJ9UdWjYADQLqnb+/3c6moxxe 141NJ8x/fW1w0UaF+FFKmdlKPbTiQ+If8lbfWcUYweiu10DrPRzgHBdWNatxYv6J pny9mNN6HDylDsGCOUHHlosfc1NOeXDTK3xt/6YR9b6saTwQAN1Kfcj4l08la/x4 0qsU9OB3btKNLQ== -----END CERTIFICATE-----Generated at Mon Jan 19 13:05:57 2026 by rpki-client